EmergencyEMERGENCY? Get 24/7 Help Now!

Webinar Tuesday July 11, 2017: Securing Your MySQL/MariaDB Data

 | July 10, 2017 |  Posted In: MariaDB, MySQL, Security, SSL, Technical Webinars

Securing Your MySQL/MariaDB Data

Join Percona’s Chief Evangelist, Colin Charles as he presents Securing Your MySQL/MariaDB Data on Tuesday, July 11, 2017 at 7:00 am PDT / 10:00 am EDT (UTC-7). Register Now This webinar will discuss the features of MySQL/MariaDB that when enabled and used improve the default usage of MySQL. Many cloud-based applications fail to: Use appropriate filesystem […]

Read More

SSL Connections in MySQL 5.7

 | June 27, 2017 |  Posted In: MySQL, Security, SSL

SSL Connections

This blog post looks at SSL connections and how they work in MySQL 5.7. Recently I was working on an SSL implementation with MySQL 5.7, and I made some interesting discoveries. I realized I could connect to the MySQL server without specifying the SSL keys on the client side, and the connection is still secured […]

Read More

MongoDB Authentication and Roles: Creating Your First Personalized Role

 | May 17, 2017 |  Posted In: Insight for DBAs, MongoDB, Security

MongoDB Authentication and Roles

In this blog post, we’ll walk through the native MongoDB authentication and roles, and learn how to create personalized roles. It is a continuation of Securing MongoDB instances. As said before, MongoDB features a few authentication methods and built-in roles that offer great control of both who is connecting to the database and what they are allowed […]

Read More

Percona XtraDB Cluster: “dh key too small” error during an SST using SSL

 | April 23, 2017 |  Posted In: Percona XtraDB Cluster, Security, XtraDB Cluster

wsrep-stages

If you’ve tried to use SSL in Percona XtraDB Cluster and saw an error in the logs like SSL3_CHECK_CERT_AND_ALGORITHM:dh key too small, we’ve implemented some changes in Percona XtraDB Cluster 5.6.34 and 5.7.16 that get rid of these errors. Some background dh key too small refers to the Diffie-Hellman parameters used by the SSL code that are […]

Read More

Percona Server for MySQL in Docker Swarm with Secrets

 | April 21, 2017 |  Posted In: Docker, MySQL, Security

This quick post demonstrates using Percona Server for MySQL in Docker Swarm with some new authentication provisioning practices. Some small changes to the startup script for the Percona-Server container image allows us to specify a file that contains password values to set as our root user’s secret. “Why do we need this functionality,” I hear you cry? When we […]

Read More

Simplified Percona XtraDB Cluster SSL Configuration

 | April 21, 2017 |  Posted In: MySQL, Percona XtraDB Cluster, Security, XtraDB Cluster

wsrep-stages

In this blog post, we’ll look at a feature that recently added to Percona XtraDB Cluster 5.7.16, that makes it easier to configure Percona XtraDB Cluster SSL for all related communications. It uses mode “encrypt=4”, and configures SSL for both IST/Galera communications and SST communications using the same SSL files. “encrypt=4” is a new encryption […]

Read More

How to Setup and Troubleshoot Percona PAM with LDAP for External Authentication

 | April 21, 2017 |  Posted In: Insight for DBAs, MySQL, Security

Percona Server for MySQL 5.7.18-15

In this blog, we’ll look at how to setup and troubleshoot the Percona PAM authentication plugin. We occasionally get requests from our support clients on how to get Percona Server for MySQL to authenticate with an external authentication service via LDAP or Active Directory. However, we normally do not have access to client’s infrastructure to […]

Read More