[horde] Mysql ssl connection problem

woj woj wojnas at gmail.com
Fri Feb 14 08:54:18 UTC 2014


2014-02-14 9:38 GMT+01:00 Arjen de Korte <arjen+horde at de-korte.org>:

> Citeren woj woj <wojnas at gmail.com>:
>
>
>  Hello,
>> i got problem with ssl connection to mysql server.
>> It is different server for changing passwords.
>> I checked horde and httpd log, and everything is allright.
>> I also checked ssl connection to mysql and its ok.
>> Certificate is readable by httpd user
>>
>> Here is my config/config.local.php
>>
>
> What file is this? As far as I know, the only config/config.php file used
> by horde is under admin/config/config.php, but this does not contain
> variables you can override. So what are you attempting to do here?
>
>
>  <?php
>> $conf['wsql']['username'] = 'username';
>> $conf['wsql']['password'] = 'password';
>> $conf['wsql']['hostspec'] = 'srv_addres';
>> $conf['wsql']['port'] = 3306;
>> $conf['wsql']['protocol'] = 'tcp';
>> $conf['wsql']['database'] = 'databasename';
>> $conf['wsql']['charset'] = 'utf-8';
>> $conf['wsql']['ssl'] = true;
>> $conf['wsql']['ca'] = '/patch/to/cert.pem';
>>
>
> A certification authority (that's what the 'ca' probably stands for) is
> not the same as a client certificate. I'm not even sure Horde is able to
> use client certificates for authentication to a Sql server.
>
>
>  $conf['wsql']['splitread'] = false;
>> $conf['wsql']['phptype'] = 'mysql';
>>
>
> Where is the 'wsql' from? I can't find any references to that in Horde.
>
>
>  P.s. I checked transmission by tcpdump, and everything is in cleartext
>>
>
>
> --
> Horde mailing list
> Frequently Asked Questions: http://horde.org/faq/
> To unsubscribe, mail: horde-unsubscribe at lists.horde.org
>
>
Arjen thanks for your answer.

I have two mysql databases:
1. Localhost database for horde (no ssl).
2. Remote database on different host to reset passwords and activate
vacations. (ssl is mandatory)

I create file config.local.php in horde/config/  with definition for new
variable for connection to different host.

In passwd configuration I use my on varibble $GLOBALS['conf']['wsql'] for
configuration, and everything works ok, except ssl connection.

$conf['wsql']['ca'] = is patch to bundle ca certificate.


Any ideas how to debug this problem ?


More information about the horde mailing list