Permalink
Switch branches/tags
Nothing to show
Find file
Fetching contributors…
Cannot retrieve contributors at this time
58 lines (41 sloc) 1.38 KB

Description

This is a tool to help and configure MySQL for use with SSL

It will create a certificate authoritity in /etc/mysql/ssl and generate a keypair for the server and a keypair for the client.

It will generate the server and client options which must be added to your configuation.

Usage

usage: mysslgen.py [-h] [--config CONFFILE] [--ssldir SSLDIR]

Manage SSL Certificates for MySQL

optional arguments: -h, --help show this help message and exit --config CONFFILE --ssldir SSLDIR

You'll need to do a chown -R mysql:mysql /etc/mysql/ssl to make sure MySQL is able to read the key files.

Requirements

  • Python 3 (or Python >= 2.7)
  • pyOpenSSL
  • Ubuntu: python3-openssl
  • Fedora: python3-pyOpenSSL

Python version

It is made for Python 3.3, but it should be able to run on Python 2.7. You'll need to prepend python2.7 to the command (python2.7 ./mysslgen.py)

The ConfigParser module in Python 2.6 does not recognize the "allow_no_value" option, so Python 2.6 will not work for now.

RHEL6

Enable RedHat Software Collections, there you can find Python 2.7 and Python 3.3

CentOS6

Install the IUS repo: http://www.iuscommunity.org/pages/IUSClientUsageGuide.html Then:

yum install python33 python33-distribute gcc openssl-devel
easy_install-3.3 pyOpenSSL

License

This project is licensed under GPLv2