Be warned, MySQL prior to versions 5.7.3 do not require the server to use SSL [1]. In the case of PHP the client won't throw an error if the connection is downgraded to plain-text [2]
[1] https://dev.mysql.com/doc/refman/5.7/en/encrypted-connection-options.html#option_general_ssl
[2] http://www.idontplaydarts.com/2015/03/mysql-with-ssl-does-not-protect-against-active-mitm/
mysqli::ssl_set
mysqli_ssl_set
(PHP 5, PHP 7)
mysqli::ssl_set -- mysqli_ssl_set — Used for establishing secure connections using SSL
Beschreibung
Objektorientierter Stil
public mysqli::ssl_set
( string
$key
, string $cert
, string $ca
, string $capath
, string $cipher
) : boolProzeduraler Stil
mysqli_ssl_set
( mysqli
$link
, string $key
, string $cert
, string $ca
, string $capath
, string $cipher
) : boolUsed for establishing secure connections using SSL. It must be called before mysqli_real_connect(). This function does nothing unless OpenSSL support is enabled.
Parameter-Liste
-
link -
Nur bei prozeduralem Aufruf: Ein von mysqli_connect() oder mysqli_init() zurückgegebenes Verbindungsobjekt.
-
key -
The path name to the key file.
-
cert -
The path name to the certificate file.
-
ca -
The path name to the certificate authority file.
-
capath -
The pathname to a directory that contains trusted SSL CA certificates in PEM format.
-
cipher -
A list of allowable ciphers to use for SSL encryption.
Rückgabewerte
This function always returns true value. If SSL setup is
incorrect mysqli_real_connect() will return an error
when you attempt to connect.
Siehe auch
- mysqli_options() - Set options
- mysqli_real_connect() - Opens a connection to a mysql server
add a note
User Contributed Notes 2 notes
quackfish at gmail dot com ¶
5 years ago
