Slide 36
Slide 36 text
ࢼͨ݁͠Ռ
$ openssl x509 -text -noout -in /var/lib/mysql/server-cert.pem | head -n 12
Certificate:
Data:
Version: 1 (0x0)
Serial Number:
db:86:48:69:9f:07:9b:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=MySQL_Server_8.0.11_Auto_Generated_CA_Certificate
Validity
Not Before: Jul 7 04:43:14 2018 GMT
Not After : Jul 4 04:43:14 2028 GMT
Subject: C=JP, L=Default City, O=Default Company Ltd, CN=*.example.jp
Subject Public Key Info:
$ mysql -h db01.example.jp --ssl-mode=VERIFY_IDENTITY --ssl-ca=/var/lib/mysql/ca.pem
ERROR 2026 (HY000): SSL connection error: SSL certificate validation failure
$ mysql -h ¥*.example.jp —-ssl-mode=VERIFY_IDENTITY —ssl-ca=/var/lib/mysql/ca.pem
mysql>