我正在运行Ubuntu Server 12.04,我想启用到MySQL的SSL连接.
我用OpenSSL生成了以下密钥/证书文件:
> ca-cert.pem
> server-cert.pem
> server-key.pem
我将这些存储在/ etc / mysql中,然后添加了以下行添加到/etc/mysql/my.cnf:
ssl-ca=/etc/mysql/ca-cert.pem
ssl-cert=/etc/mysql/server-cert.pem
ssl-key=/etc/mysql/server-key.pem
接下来,我用sudo service restart mysql重新启动服务器.
但是,这似乎不启用SSL.在mysql会话中:
mysql> show variables like '%ssl%';
+---------------+----------------------------+
| Variable_name | Value |
+---------------+----------------------------+
| have_openssl | DISABLED |
| have_ssl | DISABLED |
| ssl_ca | /etc/mysql/ca-cert.pem |
| ssl_capath | |
| ssl_cert | /etc/mysql/server-cert.pem |
| ssl_cipher | |
| ssl_key | /etc/mysql/server-key.pem |
<