Bug #17320 allow to setup SSL connection without the global System-wide settings
Submitted: 11 Feb 2006 8:41 Modified: 2 Dec 2008 16:09
Reporter: Ralf Hauser Email Updates:
Status: Closed Impact on me:
None 
Category:Connector / J Severity:S4 (Feature request)
Version:any OS:Any (any)
Assigned to: CPU Architecture:Any

[11 Feb 2006 8:41] Ralf Hauser 
Description:
this would probably require 7+ properties to be added to com.mysql.jdbc.Connection.Connection() and be used in  com.mysql.jdbc.ExportControlled.transformSocketToSSLSocket()

the 7 properties are described in http://issues.apache.org/bugzilla/show_bug.cgi?id=38614

How to repeat:
see http://lists.mysql.com/java/8689 and http://lists.mysql.com/java/8695

Suggested fix:
complementary server-side measures to make this really secure are
- Bug #17319
- Bug #17318
[9 Mar 2006 20:19] Ralf Hauser 
see also Bug #6773
[2 Dec 2008 16:09] Tonci Grgin 
Ralph, I believe this is fixed in c/J 5.1, see related Bug#36948:
System.setProperty("javax.net.ssl.keyStore","c://jvms//jdk1.5.0//bin//bug36948");
    System.setProperty("javax.net.ssl.keyStorePassword","*****");
    System.setProperty("javax.net.ssl.trustStore","c://jvms//jdk1.5.0//bin//bug36948");
    System.setProperty("javax.net.ssl.trustStorePassword","******");

If not, please reopen the report.