Keep Server Online
If you find the Apache Lounge, the downloads and overall help useful, please express your satisfaction with a donation.
or
A donation makes a contribution towards the costs, the time and effort that's going in this site and building.
Thank You! Steffen
Your donations will help to keep this site alive and well, and continuing building binaries. Apache Lounge is not sponsored.
| |
|
 Topic: SSL on mariadb? |
|
| Author |
|
mrdj1024
Joined: 03 Apr 2023
Posts: 54
Location: Bridgeton,NJ,USA
|
 Posted: Mon 08 Jan '24 19:44 Post subject: SSL on mariadb? |
 |
|
hello!
so i have a question
my wampserver has mariadb 10.6 on it and apache webserver.
using php 8.1 in fcgid mode.
my actual website has an ssl certificate from a trusted CA.
do i need to worry about also encrypting the database aswell?
both my php and webserver and database server run on the same external ssd and on the same computer.
was wondering if any security flaws would be possible if not using ssl on the database.
my website is public facing meaning my webserver is not on local host its using my actual ipv4 and ipv6 addresses,but i think my database is localhost as i didnt add any ip into the my.ini conf. |
|
| Back to top |
|
tangent
Moderator
Joined: 16 Aug 2020
Posts: 348
Location: UK
|
| Posted: Tue 09 Jan '24 22:57 Post subject: |
|
|
At some point, due to bugs and vulnerabilities, your system may get compromised by the numerous bad guys out there, with the intention of exploiting the data they find.
So perceived wisdom would suggest you encrypt your database content using Data-at-Rest, which is supported by your MariaDB version. Providing your php to database connection is via the localhost, you shouldn't need to set up encryption for the data connection, though that would become necessary should you separate your web server from the database server.
More work up front, but you should be able to sleep better at night. |
|
| Back to top |
|
|
|
|
|
|
