pam_mysql: is the database connection encrypted?
Hello,
I'm interested in using pam_mysql or pam_ldap for authentication with my vsftpd server on CentOS. Does anyone know if, when pam_mysql connects to a remote database, whether or not the connection is, or can be, encrypted with SSL or some other means? While I know that passwords are hashed, I'd rather not have my usernames or my pam-related SQL queries travel in the clear. If pam_mysql DOES communicate only in the clear, what about pam_ldap? I'm more familiar with LDAP than pam_mysql, and have always secured my conversations with LDAP servers when using an LDAP client or my own LDAP connection libraries. Thank you for any help you can offer! |
As I could not find any options for the config file of pam_mysql I'd say the traffic is unencrypted. But maybe stunnel can help out.
Or build a tunnel with the ssh client. Code:
ssh -L 127.0.0.1:3306:your.sql.server.ip:3306 |
That's the answer! Thank you for sharing your knowledge, zhjim! I owe you a beer! :hattip:
|
While waiting for yours to arive I'll sip on mine. Yummy :D
|
All times are GMT -5. The time now is 10:12 PM. |