精华网络内容 :http://www.qqread.com/network/
;;移除client-key中的passphrase(可选)
openssl rsa -in client-key.pem -out client-key.pem
;;签署客户端证书
openssl ca -policy policy_anything -out client-cert.pem -config openssl.cnf -infiles client-req.pem
# Sample output:
# Using configuration from /usr/local/myssl/openssl.cnf
# Enter PEM pass phrase:
# Check that the request matches the signature
# Signature ok
# The Subjects Distinguished Name is as follows
# countryName :PRINTABLE:'CN'
# organizationName :PRINTABLE:'Centeur CA'
# commonName :PRINTABLE:'MySQL user'
# Certificate is to be certified until May 18 16:08:20 2006 GMT
# (365 days)
# Sign the certificate? [y/n]:y
#
#
# 1 out of 1 certificate requests certified, commit? [y/n]y
# Write out database with 1 new entries
# Data Base Updated
修改/etc/my.cnf,添加如下内容:
[client]
ssl-ca=/usr/local/myssl/cacert.pem
ssl-cert=/usr/local/myssl/client-cert.pem
ssl-key=/usr/local/myssl/client-key.pem
[mysqld]
ssl-ca=/usr/local/myssl/cacert.pem
ssl-cert=/usr/local/myssl/server-cert.pem
ssl-key=/usr/local/myssl/server-key.pem
重启mysql服务
/usr/local/etc/rc.d/mysql-server restart
更多内容请看SSL技术专题、MySQL数据备份、MySQL专题,或进入讨论组讨论。
相关专题
- 专访MySQL CEO:无形之手指导开源发展 (0次浏览)
- 专访MySQL CEO:MySQL与企业级应用 (0次浏览)
- 深入了解MySQL系统日常管理 (0次浏览)
- 如何保护MySQL重要数据 (0次浏览)
- 浅析MySQL数据库常用管理 (0次浏览)
- 缓存PHP页面代码 可减轻CPU和MYSQL负担 (0次浏览)
- 浅析Tomcat5配置Mysql JDBC数据库连接池 (0次浏览)
- MySQL数据库敏感数据安全保护六大措施 (0次浏览)
- apache+php+mysql+serv_u迷你傻瓜安装程序 (0次浏览)
- Oracle,SQL Server,MySQL的自增变量设置 (0次浏览)
