You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@guacamole.apache.org by GitBox <gi...@apache.org> on 2020/04/03 13:35:02 UTC

[GitHub] [guacamole-client] necouchman opened a new pull request #492: GUACAMOLE-728: Add SSL configuration options for MySQL and PostgreSQL

necouchman opened a new pull request #492: GUACAMOLE-728: Add SSL configuration options for MySQL and PostgreSQL
URL: https://github.com/apache/guacamole-client/pull/492
 
 
   This pull request adds the configuration options for both MySQL and PostgreSQL to enable these drivers to establish SSL connections to the secured MySQL and PostgreSQL instances and configure the various options associated with them.
   
   Have not had a chance to test, yet, but will try to spin that up, soon.  If anyone else is able to test, that'd be great.

----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
 
For queries about this service, please contact Infrastructure at:
users@infra.apache.org


With regards,
Apache Git Services

[GitHub] [guacamole-client] echu2013 commented on issue #492: GUACAMOLE-728: Add SSL configuration options for MySQL and PostgreSQL

Posted by GitBox <gi...@apache.org>.
echu2013 commented on issue #492: GUACAMOLE-728: Add SSL configuration options for MySQL and PostgreSQL
URL: https://github.com/apache/guacamole-client/pull/492#issuecomment-609865805
 
 
   I am trying to figure out this..
   I use the following setting because of the lack of this feature:
   `mysql-database: guacdb?useSSL=false`
   
   Using this branch I've tried to specify the regular way:
   `mysql-database: guacdb`
   And:
   `mysql-ssl-mode: disabled`
   
   > Also tried the values: 0, false. But logs say these are invalid ssl modes.
   
   But, the following keeps showing up in logs:
   > Mon Apr 06 12:23:26 ART 2020 WARN: Establishing SSL connection without server's identity verification is not recommended. According to MySQL 5.5.45+, 5.6.26+ and 5.7.6+ requirements SSL connection must be established by default if explicit option isn't set. For compliance with existing applications not using SSL the verifyServerCertificate property is set to 'false'. You need either to explicitly disable SSL by setting useSSL=false, or set useSSL=true and provide truststore for server certificate verification.
   
   **Reverting to my original setting, WARNs vanish.**
   

----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
 
For queries about this service, please contact Infrastructure at:
users@infra.apache.org


With regards,
Apache Git Services