SSL - FILES mariadb 10.4.12
I followed the tutorial:
https://www.cyberciti.biz/faq/how-to-setup-mariadb-ssl-and-secure-connections-from-clients/
I block on step 7 and 8. With the version mariadb 10.4.12 the structuring of the files has changed. I'm not sure where to place my server and client certificates. In / etc / mysql, we find: my.cnf and mariadb.conf.d I will not want to make an error and my configuration will not be overwritten during an update Thanks for your help
I placed my SERVER KEYS in the my.cnf file? Is it correct ?
- * Security Features
- ssl-ca=/etc/mysql/cacert.pem
- ssl-cert=/etc/mysql/server-cert.pem
- ssl-key=/etc/mysql/server-key.pem ssl ssl-ca=/etc/mysql/ssl/ca-cert.pem ssl-cert=/etc/mysql/ssl/server-cert.pem ssl-key=/etc/mysql/ssl/server-key.pem and where to place my user keys? and is there anything else to do after that?
Answer Answered by Daniel Black in this comment.
server keys need to be in a `[mysqld]` or equivalent section. As as long as the wifle are readable by the server's `mysql` user. it shoudl be ok. Your directories are ok as they won't be read as configuration files. Recommend etc-keeper for preserving etc against accidential packaging faults however I see no immediate problem with your configation. It will require a restart to take effect. Using `\s` in the mysql client can show if a TLS connection made over TCP.