LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Server
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices

Reply
 
Search this Thread
Old 01-24-2010, 10:52 AM   #1
c-splat
LQ Newbie
 
Registered: Jan 2010
Posts: 2

Rep: Reputation: 0
pam_mysql: is the database connection encrypted?


Hello,

I'm interested in using pam_mysql or pam_ldap for authentication with my vsftpd server on CentOS. Does anyone know if, when pam_mysql connects to a remote database, whether or not the connection is, or can be, encrypted with SSL or some other means? While I know that passwords are hashed, I'd rather not have my usernames or my pam-related SQL queries travel in the clear.

If pam_mysql DOES communicate only in the clear, what about pam_ldap? I'm more familiar with LDAP than pam_mysql, and have always secured my conversations with LDAP servers when using an LDAP client or my own LDAP connection libraries.

Thank you for any help you can offer!
 
Old 01-25-2010, 04:11 AM   #2
zhjim
Senior Member
 
Registered: Oct 2004
Distribution: Debian Squeeze x86_64
Posts: 1,436
Blog Entries: 11

Rep: Reputation: 181Reputation: 181
As I could not find any options for the config file of pam_mysql I'd say the traffic is unencrypted. But maybe stunnel can help out.
Or build a tunnel with the ssh client.
Code:
ssh -L 127.0.0.1:3306:your.sql.server.ip:3306
This build a tunnel between the two machines. Originating from localhost port 3306 to the sql.server on port 3306.
 
Old 01-25-2010, 10:58 AM   #3
c-splat
LQ Newbie
 
Registered: Jan 2010
Posts: 2

Original Poster
Rep: Reputation: 0
That's the answer! Thank you for sharing your knowledge, zhjim! I owe you a beer!
 
Old 01-25-2010, 12:09 PM   #4
zhjim
Senior Member
 
Registered: Oct 2004
Distribution: Debian Squeeze x86_64
Posts: 1,436
Blog Entries: 11

Rep: Reputation: 181Reputation: 181
While waiting for yours to arive I'll sip on mine. Yummy
 
  


Reply

Tags
authentication


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Python: Trying to store AES encrypted string into database - can I convert to ascii? BrianK Programming 2 01-23-2009 01:58 PM
What's the easiest way to see if my nntp connection is encrypted? Randux Linux - Networking 1 02-26-2008 07:11 AM
Encrypted Internet Connection , possible ? medya Linux - Software 1 04-18-2006 01:14 PM
pam_mysql + sshd Sern Linux - Software 1 12-06-2005 09:17 AM
Snort database: Closing connection to database "" Homer Glemkin Linux - Security 2 07-14-2005 06:58 PM


All times are GMT -5. The time now is 04:53 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration