Please can someone help with advise on setting up a Secure MySQL Connection. The details are as follows.
I have built and configured OpenSSL 0.9.7 and MySQL 4.0.12.
MySQL was configured with the options ....
./configure \
--enable-local-infile \
--with-vio --with-openssl=/usr/sfw \
--enable-thread-safe-client --with-pthread \
--sysconfdir=/etc/sfw/mysql \
--prefix=/usr/sfw/mysqlI have set up the certificates as described in http://www.mysql.com/doc/en/Secure_Create_Certs.html
and ran the mysql daemon as follows .....
CONFF=/export/openssl/my.cnf
/usr/sfw/mysql/bin/mysqld_safe --defaults-file=${CONFF} --user=mysql &the contents of /export/openssl/my.cnf being ...
[client]
ssl-ca=/export/openssl/cacert.pem
ssl-cert=/export/openssl/client-cert.pem
ssl-key=/export/openssl/client-key.pem
[mysqld]
master-ssl-ca=/export/openssl/cacert.pem
master-ssl-cert=/export/openssl/server-cert.pem
master-ssl-key=/export/openssl/server-key.pemmysqld started okay after changing the [mysqld] entries and added the 'master-' bits.
I then tried to run the 'mysql' client as follows ...
/usr/sfw/mysql/bin/mysql --defaults-file=/export/openssl/my.cnf
but this fails with the following ....
/usr/sfw/mysql/bin/mysql: ERROR: unknown variable
'ssl-ca=/export/openssl/cacert.pem'The clients does not seem to like these options either in the my.cnf file or if put on the mysql command-line.
Has anyone got any ideas where I am going wrong?
Thanks Paul
-- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe: http://lists.mysql.com/[EMAIL PROTECTED]
