Hi MySQL Community,
Greetings !
I have a query regarding encryption-at-rest feature in MySQL Community Edition -
What i understand is that Encryption-at-rest is supported from MySQL-5.7.11
community edition and only on file-per-table basis which means encryption at
table-level can be
Mike,
Encrypted filesystems can seriously impact performance of MySQL.
Its an entirely different issue to MySQL encryption but one would hope that, if
you are going to go to all the trouble of using two part keys and the strongest
encryption available in your database, you would also take
At 03:21 PM 3/21/2010, John Daisley wrote:
Mike,
Encrypted filesystems can seriously impact performance of MySQL.
Its an entirely different issue to MySQL encryption but one would hope
that, if you are going to go to all the trouble of using two part keys and
the strongest encryption
On Sun, Mar 21, 2010 at 9:49 PM, mos mo...@fastmail.fm wrote:
At 03:21 PM 3/21/2010, John Daisley wrote:
Mike,
Encrypted filesystems can seriously impact performance of MySQL.
Its an entirely different issue to MySQL encryption but one would hope
that, if you are going to go to all
Hi
What sort of information are you looking to encrypt ? If it is for user
passwords I'd recommend SHA256 which is one way encryption. Or are you
looking to encrypt more sensitive information like card holder data ?
Regards
Neil
On Fri, Mar 19, 2010 at 4:22 PM, Jim j...@lowcarbfriends.com
Hi Neil.
Information (in most cases a string 100 chars, but that's probably not
important) that actually needs to be decrypted, so a hash won't do.
Jim
On 3/20/2010 5:09 PM, Tompkins Neil wrote:
Hi
What sort of information are you looking to encrypt ? If it is for user
passwords I'd
-
From: Jim j...@lowcarbfriends.com
Sent: Friday, March 19, 2010 4:22 PM
To: John Daisley daisleyj...@googlemail.com; mysql@lists.mysql.com
Subject: Re: MySQL Encryption
Thanks for the reply, John.
What you are describing seems to be the approach I've seen on the few
places I've seen
trust the internet service provider to be your only
means to protect your data or your drives.
Mike
-Original Message-
From: Jim j...@lowcarbfriends.com
Sent: Friday, March 19, 2010 4:22 PM
To: John Daisley daisleyj...@googlemail.com; mysql@lists.mysql.com
Subject: Re: MySQL
Jim,
I tend to derive a key based on a separate character string and the contents
of the data in the same or a related table. This means each row has a unique
encryption key and you never have to have the whole key stored somewhere
(you don't even know it :p ). Biggest advantage to this is should
Thanks for the reply, John.
What you are describing seems to be the approach I've seen on the few
places I've seen this topic discussed.
I've been considering something along those lines, essentially a two
part key.
Part one of the key is made from some data that is in the record I want
In terms of encryption functions AES_DECRYPT and AES_ENCRYPT, can anyone
point to any good links or offer any suggestions in terms of best
practices on storage of the associated symmetric key? I've found very
little information on this when searching.
Does MySQL offer any asymmetric
On Mon, 24 Aug 2009, Mike Scully wrote:
Hello, all.
=20
Can any of you share with me the names of any third-party tools or
appliances that you are using to encrypt your MySQL databases? I am
doing a search and would like to narrow down the initial search list.
Thanks!
=20
Mike
I use
: Tuesday, August 25, 2009 2:08 AM
To: Mike Scully
Cc: mysql@lists.mysql.com
Subject: Re: MySQL Encryption - Third-party tools
On Mon, 24 Aug 2009, Mike Scully wrote:
Hello, all.
=20
Can any of you share with me the names of any third-party tools or
appliances that you are using
Hello, all.
Can any of you share with me the names of any third-party tools or
appliances that you are using to encrypt your MySQL databases? I am
doing a search and would like to narrow down the initial search list.
Thanks!
Mike
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I am interested in feedback, advice from anyone who has changed the
AES_BLOCK_SIZE (default 16 bytes, for 128 bit) to 32 bytes, or 256 bit
encryption as mentioned on:
http://dev.mysql.com/doc/mysql/en/Encryption_functions.html
I am only attempting to
On Fri, Nov 22, 2002 at 10:32:59AM +0100, Roger Baklund wrote:
How would MySQL react to having some of its data files stored on
encrypted loop-back devices that aren't available all the time, but are
always available when a certain user logs in?
I'm sorry, I don't understand the
: Roger Baklund [mailto:[EMAIL PROTECTED]]
| Sent: Tuesday, 19 November 2002 1:15 AM
| To: [EMAIL PROTECTED]
| Cc: Alexandre Aguiar; Fraser Stuart
| Subject: Re: Mysql Encryption
|
|
| * Alexandre Aguiar
| On 14 Nov 2002 Fraser Stuart shaped the electrons to write something
| about [Mysql
* Fraser Stuart
Here are my two main security issues.
1) (valid) user does a sudo to root and runs strings db name.MYD - out
drops all the sensitive text
2) (clever) user gets hold of the application user/password for
MySQL (it's
in the app config somewhere) - they run mysql --user=foo
On 14 Nov 2002 Fraser Stuart shaped the electrons to write something
about [Mysql Encryption]
We are about to embark on a project that requires data encryption -
mainly to stop sensitive information being viewed accidentally (ie
Isn´t it possible to tunnel MySQL connections through ssl?
Under
PROTECTED]
Subject: Re: Mysql Encryption
On 14 Nov 2002 Fraser Stuart shaped the electrons to write something
about [Mysql Encryption]
We are about to embark on a project that requires data encryption -
mainly to stop sensitive information being viewed accidentally (ie
Isn´t it possible to tunnel
* Alexandre Aguiar
On 14 Nov 2002 Fraser Stuart shaped the electrons to write something
about [Mysql Encryption]
We are about to embark on a project that requires data encryption -
mainly to stop sensitive information being viewed accidentally (ie
Isn´t it possible to tunnel MySQL
Solutions Inc.
www.comit.ca
- Original Message -
From: Alexandre Aguiar [EMAIL PROTECTED]
To: Fraser Stuart [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Sent: Monday, November 18, 2002 8:09 AM
Subject: Re: Mysql Encryption
On 14 Nov 2002 Fraser Stuart shaped the electrons to write something
Aguiar; Fraser Stuart
Cc: [EMAIL PROTECTED]
Subject: RE: Mysql Encryption
A windows versionof Stunnel is available from the stunnel website
(www.stunnel.org), I would reccomend using it for your needs.
Mike Hillyer
-Original Message-
From: Alexandre Aguiar [mailto:[EMAIL PROTECTED
At 08:15 AM 11/18/2002, you wrote:
* Alexandre Aguiar
On 14 Nov 2002 Fraser Stuart shaped the electrons to write something
about [Mysql Encryption]
We are about to embark on a project that requires data encryption -
mainly to stop sensitive information being viewed accidentally (ie
Isn
Fraser Stuart shaped the electrons to write something
about [Mysql Encryption]
We are about to embark on a project that requires data encryption -
mainly to stop sensitive information being viewed accidentally (ie
Isn´t it possible to tunnel MySQL connections through ssl?
Yes
PuTTY is a nice freeware SSH client.
http://www.chiark.greenend.org.uk/~sgtatham/putty/
-mike
-Original Message-
From: Andy Eastham [mailto:[EMAIL PROTECTED]]
Sent: Monday, November 18, 2002 8:39 AM
To: Mysql@Lists. Mysql. Com
Subject: RE: Mysql Encryption
Don't
Subject: RE: Mysql Encryption
PuTTY is a nice freeware SSH client.
http://www.chiark.greenend.org.uk/~sgtatham/putty/
-mike
-Original Message-
From: Andy Eastham [mailto:[EMAIL PROTECTED]]
Sent: Monday, November 18, 2002 8:39 AM
To: Mysql@Lists. Mysql. Com
Subject: RE
Hillyer [mailto:[EMAIL PROTECTED]]
Sent: Monday, November 18, 2002 2:24 PM
To: Muir, Michael (OTS-EDH); 'Andy Eastham'; Mysql@Lists. Mysql. Com
Subject: RE: Mysql Encryption
As far as I know you have to have a shell account to use ssh
tunnels, am I
right?
If so this may be a concern
Fraser Stuart wrote:
From this I'm leaning towards DES encryption - only because I can store the
key on the server.
Don't use DES for any secure information. If by secure you mean I
don't care if they see it, but I'd prefer if they didn't, the go ahead.
If by secure you mean No way!, then
* Fraser Stuart
We are about to embark on a project that requires data encryption - mainly
to stop sensitive information being viewed accidentally (ie viewing tables
directly through odbc connections or standard mysql clients). The server
(solaris) will not be publicly accessible.
Wouldn't
Roger Baklund wrote:
Wouldn't you be better of using GRANT? If you encrypt the content of the
database, any searching must be done on the encrypted value, and sorting
would be difficult...
How would MySQL react to having some of its data files stored on
encrypted loop-back devices that
Hi All,
We are about to embark on a project that requires data encryption - mainly
to stop sensitive information being viewed accidentally (ie viewing tables
directly through odbc connections or standard mysql clients). The server
(solaris) will not be publicly accessible. Mysql has a variety of
32 matches
Mail list logo
