subject:"RE\: Is the MyODBC password encrypted\?"

RE: Is the MyODBC password encrypted?

2003-06-27 Thread Mike Hillyer

Plain text. Use of the upcoming MyODBC 3.52 will make it in binary form,
but not encrypted. Is the remote server MySQL 4.x? You could possibly
use Stunnel (www.stunnel.org) to access the server via SSL.

Regards,
Mike Hillyer
www.vbmysql.com


 -Original Message-
 From: Mike Fish (Shoal Computer Solutions Ltd) 
 [mailto:[EMAIL PROTECTED] 
 Sent: Friday, June 27, 2003 10:51 AM
 To: [EMAIL PROTECTED]
 Subject: Is the MyODBC password encrypted?
 
 
 Hi
 
 I'm connecting to a MySQL server on the internet from a VB6 
 app on Win2K
 using MyODBC.
 I understand that the connection itself is not secure. I 
 cannot implement
 SSH for the connection as my ISP does not support this with MySQL.
 
 However, when MyODBC sends the username and password etc to the MySQL
 server, is it encrypted or sent a plain text?
 
 
 
 Thanks
 

--
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]

Re: Is the MyODBC password encrypted?

2003-06-27 Thread Mark Matthews

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Mike Hillyer wrote:

 Plain text. Use of the upcoming MyODBC 3.52 will make it in binary form,
 but not encrypted. Is the remote server MySQL 4.x? You could possibly
 use Stunnel (www.stunnel.org) to access the server via SSL.


The MySQL protocol sends the _username_ in plain text, but in all
versions of the protocol, the password is _never_ sent, just a hash of
the password combined with a 'seed' that was sent from the server when
the client connected.

-Mark


- --
For technical support contracts, visit https://order.mysql.com/?ref=mmma

__  ___ ___   __
   /  |/  /_ __/ __/ __ \/ /  Mark Matthews [EMAIL PROTECTED]
  / /|_/ / // /\ \/ /_/ / /__ MySQL AB, SW Dev. Manager - J2EE/Windows
 /_/  /_/\_, /___/\___\_\___/ Flossmoor (Chicago), IL USA
___/ www.mysql.com
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.2.1 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQE+/HqltvXNTca6JD8RAhuSAJsEZ/hmELd27gXtTrLPlBqP84k42gCfZ5xh
rOH0z+1RguqqS8MSadFGxFA=
=DMus
-END PGP SIGNATURE-


-- 
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe:http://lists.mysql.com/[EMAIL PROTECTED]

RE: Is the MyODBC password encrypted?

Re: Is the MyODBC password encrypted?

2 matches

Site Navigation

Mail list logo

Footer information