Mysql
From Bashlinux
MySQL
MySQL server with SSL
- Create a certificate as described in OpenSSL section.
- Add the following under each directive on `/etc/my.cnf`, if the directive doesn't exists it should be created
[client] ssl-ca=/etc/pki/openssl/cacert.pem ssl-cert=/etc/pki/openssl/client-cert.pem ssl-key=/etc/pki/openssl/client-key.pem [mysqld] ssl-ca=/etc/pki/openssl/cacert.pem ssl-cert=/etc/pki/openssl/server-cert.pem ssl-key=/etc/pki/openssl/server-key.pem
- Restart the server
service mysqld restart
- Test SSL on Mysql. Login into MySQL Server
mysql -u root -p
- Check SSL Cipher
mysql> show status like 'Ssl_cipher'; +--------------+-------------------+ | Variable_name| Value | +--------------+-------------------+ | Ssl_cipher | DHE-RSA-AES256-SHA| +--------------+-------------------+ 1 row in set (0.01 sec)
- Done
Master-Master Replication
Ensure the following settings in both servers:
relay-log = /mnt/mysql-binlogs/mysql-relay-bin auto-increment-increment=2 binlog-format=MIXED
Primary server only:
auto-increment-offset=1 server-id=1
Secondary server only:
auto-increment-offset=2 server-id=2
Good links:
InnoDB
When work with this engine don't forget to do a "commit" after any INSERT/UPDATE execution.