MariaDB SSL connection with Connector/J Setup help

You are viewing an old version of this question. View the current version here.

This section is about securing your MariaDB installation. If you are looking for the list of security vulnerabilities fixed in MariaDB, see Security Vulnerabilities Fixed in MariaDB.

There are a number of issues to consider when looking at improving the security of your MariaDB installation. These include:

Answer Answered by Diego Dupin in this comment.

Hi,

You are using the good options. Like you must have seen in documentation, serverSslCert can be used in one of 3 forms :

sslServerCert=/path/to/cert.pem (full path to certificate)
sslServerCert=classpath:relative/cert.pem (relative to current classpath)
or as verbatim DER-encoded certificate string "------BEGING CERTIFICATE-----" .

So that remain 2 possible problems : - 256-bit encryption which is not supported by Java out of the box. You need to install JCE (Java Cryptography Extension). Is it installed ? - Have you try to defined the full path of certificate : sslServerCert=/path/to/cert.pem

Since 1.3.4, you can store certificate in JKS keystore using trustCertificateKeyStoreUrl options. That may be a better solution than to have certificate on server.

↑ Data-in-Transit Encryption ↑

Comments

Comments loading...

Content reproduced on this site is the property of its respective owners, and this content is not reviewed in advance by MariaDB. The views, information and opinions expressed by this content do not necessarily represent those of MariaDB or any other party.

MariaDB SSL connection with Connector/J Setup help

Answer Answered by Diego Dupin in this comment.

Comments

Products

Services

Pricing

Resources

About Us

Download MariaDB