Reputation: 127
Do I need to specify certificate authority when using pdo in php to connect mysql server over tls?
We enabled ssl on mysql server with self-signed certificates and require ssluser to use ssl. So I cant connect with options below;
mysql -u ssluser -p
but I can connect with options below;
mysql -u ssluser -p --ssl=1
And while connecting I don't need to specify CA certificates created for client side.
I am connecting to mysql server with options below;
PDO::MYSQL_ATTR_SSL_CA => true,
PDO::MYSQL_ATTR_SSL_VERIFY_SERVER_CERT => false,
But I don't specify any files. Does mysql works like a webserver and sends to the client the public key? Or are my settings are wrong?
I am using mysql 8.
Thank you
Upvotes: 2
Views: 565
Answers (1)
Reputation: 108839
Your connections seem to be fine. You can verify this on the mysql command line by issuing the status command and looking for the SSL line.
MySQL does indeed work like a webserver. Your configuration does not require your client to present a certificate.
Web servers can require browsers to present client certificates, but most don't. Similarly, the MySQL server can require clients to present client certificates, but yours doesn't.
You are good to go, I believe.
Upvotes: 1
Related Questions
- MySQL connection over SSL with Laravel
- Can't connect with PDO using ssl but mysqli with ssl works
- PHP Mysql connection with SSL is not working PDO
- Connect to MySQL/MariaDB with PHP PDO with --ssl without certificate
- PDO connection with database failing on certificate vertification
- Is it possible to connect via ssl to a remote mysql db using php without certificates or keys?
- PDO with self signed certificates
- PHP PDO SSL MySQL connection fails
- PHP: PDO(MySQL) SSL Connection
- Error on PDO SSL connection