Centos

如何在 MySQL 5.7 伺服器上禁用 ssl 外掛?

  • January 21, 2022

MySQL 伺服器上新引入的 SSL 連接現在預設安裝在 CentOS 6.7 預設代表上。

只需刪除證書文件就可以使用 Docs 解決它:

“如果伺服器在數據目錄中沒有找到有效的證書和密鑰文件,它會繼續執行,但不會啟用安全連接。” 參考:http ://dev.mysql.com/doc/refman/5.7/en/secure-connections.html

但我想完全禁用 MySQL 伺服器上的 SSL 連接外掛,因為我想通過刪除我不使用的所有內容來優化 MySQL 伺服器的性能,這包括這個外掛。

如何在 MySQL 社區伺服器上禁用 SSL?

我的測試:

$ mysql -u root -p
Enter password:

Welcome to the MySQL monitor.  Commands end with ; or \g.
Your MySQL connection id is 3
Server version: 5.7.12 MySQL Community Server (GPL)

Copyright (c) 2000, 2016, Oracle and/or its affiliates. All rights reserved.

Oracle is a registered trademark of Oracle Corporation and/or its
affiliates. Other names may be trademarks of their respective
owners.

Type 'help;' or '\h' for help. Type '\c' to clear the current input statement.

mysql> SHOW VARIABLES LIKE '%ssl%';
+---------------+-----------------+
| Variable_name | Value           |
+---------------+-----------------+
| have_openssl  | YES             |
| have_ssl      | YES             |
| ssl_ca        | ca.pem          |
| ssl_capath    |                 |
| ssl_cert      | server-cert.pem |
| ssl_cipher    |                 |
| ssl_crl       |                 |
| ssl_crlpath   |                 |
| ssl_key       | server-key.pem  |
+---------------+-----------------+
9 rows in set (0.00 sec)

編輯配置文件:/path/to/file/my.cnf

[mysqld]
...

skip_ssl
# disable_ssl

...

$ service mysql restart

$ mysql -u root -p
Enter password:

Welcome to the MySQL monitor.  Commands end with ; or \g.
Your MySQL connection id is 3
Server version: 5.7.12 MySQL Community Server (GPL)

Copyright (c) 2000, 2016, Oracle and/or its affiliates. All rights reserved.

Oracle is a registered trademark of Oracle Corporation and/or its
affiliates. Other names may be trademarks of their respective
owners.

Type 'help;' or '\h' for help. Type '\c' to clear the current input statement.

mysql> SHOW VARIABLES LIKE '%ssl%';
+---------------+----------+
| Variable_name | Value    |
+---------------+----------+
| have_openssl  | DISABLED |
| have_ssl      | DISABLED |
| ssl_ca        |          |
| ssl_capath    |          |
| ssl_cert      |          |
| ssl_cipher    |          |
| ssl_crl       |          |
| ssl_crlpath   |          |
| ssl_key       |          |
+---------------+----------+
9 rows in set (0.00 sec)

引用自:https://serverfault.com/questions/770618

相關問答

Linux

伺服器崩潰後 MariaDB 將無法啟動。沒有錯誤日誌

  • December 5, 2021
檢視問答
Mysql

如何清理centos上的mysql安裝

  • November 24, 2021
檢視問答
Centos

CPanel:什麼覆蓋了我的 MySQL 配置設置?

  • October 20, 2021
檢視問答
Centos

訪問 phpmyadmin 時如何阻止 DNS 伺服器直接傳輸到我的網站

  • August 21, 2021
檢視問答
Centos

無法以非 root 使用者身份通過套接字’/var/lib/mysql/mysql.sock’ (13) 連接到本地 MySQL 伺服器

  • July 1, 2021
檢視問答
Mysql

為什麼 MySQL 慢查詢日誌不存在?

  • June 17, 2021
檢視問答