26 Jan
2015
26 Jan
'15
9:15 a.m.
Olle E. Johansson writes:
I've started labbing a bit with this. I did not
get the client to connect
with SSL unless I added ssl-cipher to the client like this
/usr/local/mysql/bin/mysql -h 127.0.0.1 -P 63306 --ssl
--ssl-cipher=DHE-RSA-AES256-SHA:AES128-SHA << EOF
SHOW STATUS LIKE 'Ssl_cipher';
EOF
i can connect to mysql server without any mysql cli options if i have
ssl-ca=/etc/mysql/ca-cert.pem
in [client] section of my.cfg:
# mysql -u root -p
Enter password:
Welcome to the MySQL monitor. Commands end with ; or \g.
Your MySQL connection id is 1462
Server version: 5.5.40-0+wheezy1 (Debian)
Copyright (c) 2000, 2014, Oracle and/or its affiliates. All rights reserved.
Oracle is a registered trademark of Oracle Corporation and/or its
affiliates. Other names may be trademarks of their respective
owners.
Type 'help;' or '\h' for help. Type '\c' to clear the current
input statement.
mysql> SHOW STATUS LIKE 'Ssl_cipher';
+---------------+--------------------+
| Variable_name | Value |
+---------------+--------------------+
| Ssl_cipher | DHE-RSA-AES256-SHA |
+---------------+--------------------+
1 row in set (0.00 sec)
did you try to connect to the server with ssl from kamailio using
[group]?
-- juha