Bug #86699 | SSL documentation is outdated and misleading | ||
---|---|---|---|
Submitted: | 14 Jun 2017 14:32 | Modified: | 22 Aug 2017 15:27 |
Reporter: | Tibor Korocz | Email Updates: | |
Status: | Closed | Impact on me: | |
Category: | MySQL Server: Documentation | Severity: | S3 (Non-critical) |
Version: | 5.7 | OS: | Any |
Assigned to: | CPU Architecture: | Any | |
Tags: | 5.7 SSL |
[14 Jun 2017 14:32]
Tibor Korocz
[14 Jun 2017 14:36]
Tibor Korocz
I also tested it with 5.6 clients and if you try to connect with 5.6 client to 5.7 server with SSL you have to specify the client keys on the client side.
[19 Jun 2017 18:09]
MySQL Verification Team
Hi, Thanks for submitting the bug, I do agree documentation can (and should) be a bit better with regards to ssl, especially with this changes in 5.7. Documentation team is informed and they will work on it in future. kind regards Bogdan
[22 Aug 2017 15:27]
Paul DuBois
Posted by developer: In addition to https://dev.mysql.com/doc/refman/5.7/en/create-user.html#create-user-tls see: https://dev.mysql.com/doc/refman/5.7/en/secure-connections.html (and see end for timeline of SSL changes in 5.7) https://dev.mysql.com/doc/refman/5.7/en/using-secure-connections.html (particularly the client-side section) https://dev.mysql.com/doc/refman/5.7/en/secure-connection-options.html#option_general_ssl-... Most of those sections already mentioned the "connect securely by default" behavior, but that should be more clear now.