问题描述
我正在运行Ubuntu Server 12.04,并且想启用与MySQL的SSL连接。
我已经使用OpenSSL生成了以下密钥/证书文件:
ca-cert.pem
server-cert.pem
server-key.pem
我将它们存储在/etc/mysql,然后将以下行添加到/etc/mysql/my.cnf:
ssl-ca=/etc/mysql/ca-cert.pem
ssl-cert=/etc/mysql/server-cert.pem
ssl-key=/etc/mysql/server-key.pem
接下来,我使用sudo service restart mysql重新启动服务器。
但是,这似乎没有启用SSL。在mysql会话中:
mysql> show variables like '%ssl%';
+---------------+----------------------------+
| Variable_name | Value |
+---------------+----------------------------+
| have_openssl | DISABLED |
| have_ssl | DISABLED |
| ssl_ca | /etc/mysql/ca-cert.pem |
| ssl_capath | |
| ssl_cert | /etc/mysql/server-cert.pem |
| ssl_cipher | |
| ssl_key | /etc/mys