Questions

Questions and Answers

26.10.1: Where can I find documentation that addresses security issues for MySQL?

The best place to start is 項4.6. 「セキュリティ問題」.

Other portions of the MySQL Documentation which you may find useful with regard to specific security concerns include the following:

26.10.2: Does MySQL 5.1 have native support for SSL?

Most 5.1 binaries have support for SSL connections between the client and server. We can't currently build with the new YaSSL library everywhere, as it's still quite new and does not compile on all platforms yet. See 項4.8.7. 「接続安全」.

You can also tunnel a connection via SSH, if (for instance) if the client application doesn't support SSL connections. For an example, see 項4.8.7.5. 「SSH で Windows からリモート接続」.

26.10.3: Is SSL support be built into MySQL binaries, or must I recompile the binary myself to enable it?

Most 5.1 binaries have SSL enabled for client-server connections that are secured, authenticated, or both. However, the YaSSL library currently does not compile on all platforms. See 項4.8.7. 「接続安全」, for a complete listing of supported and unsupported platforms.

26.10.4: Does MySQL 5.1 have built-in authentication against LDAP directories?

No. Support for external authentication methods is on the MySQL roadmap as a 「rolling feature」, which means that we plan to implement it in the future, but we have not yet determined when this will be done.

26.10.5: Does MySQL 5.1 include support for Roles Based Access Control (RBAC)?

No. Support for roles is on the MySQL roadmap as a 「rolling feature」, which means that we plan to implement it in the future, but we have not yet determined when this will be done.