pam_mysql: is the database connection encrypted?
 

Hello,

I'm interested in using pam_mysql or pam_ldap for authentication with my vsftpd server on CentOS. Does anyone know if, when pam_mysql connects to a remote database, whether or not the connection is, or can be, encrypted with SSL or some other means? While I know that passwords are hashed, I'd rather not have my usernames or my pam-related SQL queries travel in the clear.

If pam_mysql DOES communicate only in the clear, what about pam_ldap? I'm more familiar with LDAP than pam_mysql, and have always secured my conversations with LDAP servers when using an LDAP client or my own LDAP connection libraries.

Thank you for any help you can offer!

As I could not find any options for the config file of pam_mysql I'd say the traffic is unencrypted. But maybe stunnel can help out.
Or build a tunnel with the ssh client.
This build a tunnel between the two machines. Originating from localhost port 3306 to the sql.server on port 3306.

That's the answer! Thank you for sharing your knowledge, zhjim! I owe you a beer! :hattip:

While waiting for yours to arive I'll sip on mine. Yummy :D