SSL cPanel mySql setup

matthias_livecode_150811 at m-r-d.de matthias_livecode_150811 at m-r-d.de
Fri Oct 16 05:51:17 EDT 2020 

Hi Sean,

there was a discussion a few weeks ago with the topic "Strange behavior between Mysql, MariaDB and SSL."
I am not sure if the information in that discussion will solve your problem.

Another approach is the following. For security reasons we do not let communicat our LC apps directly with MySQL Databases, if the Database is hosted on a public server.

We using a Livecode Server Script on the Webserver for doing the complete DB communication.
Our standalones (Mobile and Desktop) send the requests (password encrypted string) either as POST or GET to the LC Server script. The script encrypts the  request string and executes it. The return from the DB is then returned to our standalone.

Another way would be to use an LC server api HostM is providing for free.
https://www.hostm.com/tutorials/livecode/api-mariadb-mysql


Regards,
Matthias

-
Matthias Rebbe
Life Is Too Short For Boring Code

> Am 16.10.2020 um 10:34 schrieb Pi Digital via use-livecode <use-livecode at lists.runrev.com>:
> 
> Hi
> 
> I’ve found myself out of my depth and in need of advice. 
> We have a cPanel webspace with mySQL running on a phpMyAdmin layer within the cPanel setup. Communicating with it from LC has been a breeze. However, doing a traffic scan we noticed that our queries and responses from the database are completely visible. Obviously a high security risk. 
> 
> Using an ssl certificate set, how do I implement this? How do I get cPanel to allow for it and get LC to make use of them when using revOpenDatabase? I have the useSSL flag set to Boolean ‘true’. I’ve tried using the set certificates pointing it at the three ssl files. But the data still is fully readable as plaintext in both direction when checked by our traffic scanner. 
> 
> Thanks
> 
> Sean
> 
> _______________________________________________
> use-livecode mailing list
> use-livecode at lists.runrev.com
> Please visit this url to subscribe, unsubscribe and manage your subscription preferences:
> http://lists.runrev.com/mailman/listinfo/use-livecode

More information about the use-livecode mailing list