[users@httpd] Apache module <----SSL-----> MySQL

[Naveen Rawat <na...@otssolutions.com>]

Hi,


1. Please tell me, if it is possible for an Apache 
(--enable-mods-shared=all --enable-ssl=shared --enable-so) module to 
interact with a SSL-enabled MySQL (--with-openssl=<DIR>)?

2. If yes, then considering that I have got required keys/certificates 
for both the client, server and the CA, what are the apache-end APIs 
that would be needed to make this SSL session possible?



My case scenario:
**********************
I am trying to find an implementation for supporting the universal basic
client authentication functionality for anyone who intends to access my
Apache httpd server. 

I am using a third party authentication module 'mod_myauth' which will do
this task for me. Unfortunate to my specification this particular module
does not provide for SSL encryption when it validates the data (username /
password) against my database on MySQL. This module is having MySQL C APIs
usage for talking to the databse. 

My communication from my module, is database specific (my MySQL is already
SSL-enabled). So is it only up to the MySQL SSL-specific C API to provide
SSL (I tried using mysql_ssl_set() with no success) or there has more to be
done at my module's code end?


Thanks in advance,


Best Regards,
Naveen Rawat





---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

RE: [users@httpd] Apache module <----SSL-----> MySQL

[Naveen Rawat <na...@otssolutions.com>]

Hi Joshua,

Thanks for the response,

>> My communication from my module, is database specific (my MySQL is  
>> already SSL-enabled). So is it only up to the MySQL SSL-specific C API to
>> provide SSL (I tried using mysql_ssl_set() with no success) or there has
>> more to be done at my module's code end?
>
> You've so far asked this question four times, including on completely
> inappropriate mailing lists, without giving people time to respond.
> This type of impolite behavior makes me very reticent to even bother
> replying.


I really regret this. 


> But anyway, your problem has nothing directly to do with apache APIs.
> If you want your mysql communication to be encrypted, then it is up to
> your module to use the correct mysql APIs in the correct way. Apache
> Has nothing to do with it.
>
> If you don't know how to use the mysql APIs, then I suggest you get
> some help from a mysql forum.

MySQL C APIs provide for enabling SSL support and they work perfect for a
standalone. The APIs when used within a module is not working the expected.
So what I think is, the deficit for this is somewhere at the Apache module
end. Please correct me. 


Best Regards,

Naveen Rawat



---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Re: [users@httpd] Apache module <----SSL-----> MySQL

[Joshua Slive <jo...@slive.ca>]

On 4/26/07, Naveen Rawat <na...@otssolutions.com> wrote:

> My communication from my module, is database specific (my MySQL is already
> SSL-enabled). So is it only up to the MySQL SSL-specific C API to provide
> SSL (I tried using mysql_ssl_set() with no success) or there has more to be
> done at my module's code end?

You've so far asked this question four times, including on completely
inappropriate mailing lists, without giving people time to respond.
This type of impolite behavior makes me very reticent to even bother
replying.

But anyway, your problem has nothing directly to do with apache APIs.
If you want your mysql communication to be encrypted, then it is up to
your module to use the correct mysql APIs in the correct way. Apache
has nothing to do with it.

If you don't know how to use the mysql APIs, then I suggest you get
some help from a mysql forum.

Joshua.

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

[users@httpd] Apache-MySQL-SSL

[Naveen Rawat <na...@otssolutions.com>]

Hi there,


I am having my implementations as add-on modules on Apache that does my job
against my data-store (MySQL). Till now I had been using one same machine
for both my Apache and MySQL. Now the implementation is to be done on
separate machines. I want to make both the ends to talk in a secure manner.

Is it possible in the nature of Apache modules to talk to a remote database
(specifically MySQL) over SSL/TLS layer? 



Thanks and Regards,
J. Tripathi





---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org