I've blogged before about how complicated setting up SSL with MySQL can be. Since then many bugs have been fixed related to SSL.
But still many people are using unencrypted connections for replication and client connections.
This could be because of possible performance degradation. But then it could be used for only the admin connections.
It could also be because they already use SSH or VPN.
But for many it's because they think it's complicated. This is not necessary. I've created mysslgen which makes it easier to setup SSL. Just run mysslgen.py and then the CA, server and client certificates and keys will be generated for you. The most difficult part it to get python 3.3 or python 2.7 to run on [Read more...]
Content reproduced on this site is the property of the respective copyright holders. It is not reviewed in advance by Oracle and does not necessarily represent the opinion of Oracle or any other party.