If MySQL is running on a unix/Linux server you can use the native ssh that is available on that system and then you don't need anything special in so far as ssh or SSL is concerned with MySQL. You don't have to use MySQL 4.x.
The basic idea from VB.net is to create an SSH tunnel to the MySQL host server and forward port 3306. >From the client VB.net application, you connect to localhost( it uses port 3306 by default) and use the username and password for MySQL( on the remote host). The connection is sent securly through the tunnel and your problem is solved. Make secure you close the tunnel after you use it. Paul -----Original Message----- From: Joe Audette [mailto:[EMAIL PROTECTED] Sent: Tuesday, September 21, 2004 3:01 PM To: [EMAIL PROTECTED] Subject: Re: Secure logon from VB.net Thomas, http://dev.mysql.com/doc/mysql/search.php?q=ssl&lang=en&charset=iso-8859-1 It looks like SSL/SSH are only available as of MySQL 4 or higher. Is your Net Admin really worried about eaves dropping of packets on the local network. It must be very sensitive data. If you already have a MySQL database on your network that is lower version than 4 then how do the other apps connect to it securely? Or is your app the only one that needs this level of security and other app can transmit to the db in clear text? Joe Audette Thomas Trutt <[EMAIL PROTECTED]> wrote: Thanks, Actually it is the transmission connection string he is worried about. I might have to go with an SSL connection and go from there.. The problems being that I'm not sure what software i have available to me on the server and what software i can add to the client machines.. this might be another simple question but with SSL can i have 5-6 machines all connected to the same server with the same user id being used?? Unfortunately I'm new to SSL.. Many thanks, Tom T At 03:31 PM 9/21/2004, you wrote: >Thomas, > >Are you sure that encrypting the connection string is what your network >admin means? > >When I hear someone say they want the logon encrypted I would think they >mean store the password of a user encrypted in the db. That is, the >application requires the user to logon and user info is stored in the db >to logon against. When the user enters a username and password the >password is encrypted and compared to an encrypted password in the db to >validate the user. > >I think you can use ssl to encrypt all communication between your app and >the database but I don't know of a way to pass an encrypted connection >string and have the db decrypt it before it makes a connection. My >ignorance doesn't mean its not possible so maybe someone else can suggest >something. > >If the idea is to prevent someone from seeing your code and learning a db >logon I guess you could store the connection string encrypted in a config >file for your app then decrypt it before you connect. You'd have to use an >encryption that can be decrypted with a key. >Checkout the System.Security.Cryptography.DESCryptoServiceProvider class > >Hope that helps, > >Joe Audette > >Thomas Trutt wrote: >Hello all, > >Ok i know this may be a simple question but i need a little help. >I am writing a program in VB.net that uses MySQL as a backend. My net admin >wants the log on to be encrypted?? > >This is currently how i am connecting: > >Public LocalSYS As New OdbcConnection("DRIVER={MySQL ODBC 3.51 >Driver};" & _ >"SERVER=192.168.0.1;" & _ >"DATABASE=DB;" & _ >"UID=User;" & _ >"PASSWORD=Password;" & _ >"OPTION=3;") > >As you can see its a public variable that i have declared so that i don't >have to continuously add it for every form in the program.. So the question >i have is how do i change this so that it is encrypted??? Any ideas and >suggestions would be greatly appreciated.. > >Many thanks, > >Tom T > >[EMAIL PROTECTED] >http://www.joeaudette.com >http://www.mojoportal.com -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe: http://lists.mysql.com/[EMAIL PROTECTED] [EMAIL PROTECTED] http://www.joeaudette.com http://www.mojoportal.com -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe: http://lists.mysql.com/[EMAIL PROTECTED]
