java配置连接ssl加密mysql数据库_使用Java建立与MySQL的安全连接Amazon RDS(SSL / TLS)

最新推荐文章于 2024-07-02 05:01:36 发布
原创 最新推荐文章于 2024-07-02 05:01:36 发布 · 1k 阅读 · 0 ·
CC 4.0 BY-SA版权
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
文章标签:

#java配置连接ssl加密mysql数据库

在尝试使用JDK 1.8和MySQL Connector / J 5.1.23连接到Amazon RDS的SSL加密MySQL数据库时遇到问题。用户已经尝试设置truststore并授予用户SSL连接权限,但遇到SSL通信链接失败的异常。错误信息提到“trustAnchors参数必须非空”。调试信息显示支持的密码套件和证书链。问题可能在于证书的信任路径建立失败。

摘要生成于 C知道 ,由 DeepSeek-R1 满血版支持, 前往体验 >

我正在尝试使用JDK 1.8和MySQL Connector / J版本5.1.23安全地连接到Amazon RDS,我对

MySQL Connector/J documentation中的说明感到困惑.

说明指出在当前目录中创建信任库并导入服务器的CA证书.当我运行以下命令时,我被要求输入密码,我不知道输入什么:

keytool -import -alias mysqlServerCACert -file file_location.pem -keystore truststore

虽然我理解SSL / TSL和私钥/公钥的概念,但我很困惑如何实现它?

当我运行SHOW VARIABLES LIKE’has_ssl’时;命令我收到“是”作为值.当我连接到数据库并运行SHOW SESSION STATUS LIKE’Ssl_version’;时,我没有收到任何值.

如何建立从Java到MySQL数据库的安全连接?

更新:

我正在使用ubuntu,我使用keytool在JRE目录/usr/lib / jvm / java / jre /中生成truststore.jks文件.我还执行了以下命令:GRANT USAGE ON db_name.*到’username’@’address’REQUIRE SSL;

以下代码是我连接数据库的方式:

import com.mysql.jdbc.Connection;

public class mainClass{

public static void main(String[] args){

System.setProperty("javax.net.ssl.trustStore", "/usr/lib/jvm/java/jre/truststore.jks");

System.setProperty("javax.net.ssl.trustStorePassword", "truststore_password");

final String url = "jdbc:mysql://mysql_rds_enpoint:port/db_name?verifyServerCertificate=true&useSSL=true&requireSSL=true";

final String username = "username";

final String password = "password";

Connection mysqlConnection = null;

mysqlConnection = (Connection) mysqlMethods.connectToMysql(url, username, password);

}

}

上面的代码产生通信链路故障消息,并且从服务器成功接收的最后一个数据包是在24毫秒之前.成功发送到服务器的最后一个数据包是在24毫秒之前.我能够成功连接吗?verifyServerCertificate = true& useSSL = true& requireSSL = true从uri中删除,REQUIRE SSL从用户权限中删除.

更新2:

我已经将代码带回基础知识,当我运行以下代码时:

import java.sql.DriverManager;

import java.sql.SQLException;

class testClass{

public static void main(String[] args){

System.setProperty("javax.net.ssl.trustStore", "/usr/lib/jvm/java/jre/truststore.jks");

System.setProperty("javax.net.ssl.trustStorePassword", "truststore_password");

final String url = "jdbc:mysql://mysql_rds_enpoint:port/db_name?verifyServerCertificate=true&useSSL=true&requireSSL=true";

final String username = "username";

final String password = "password";

try {

Object connection = DriverManager.getConnection(url, username, password);

} catch (SQLException e) {

e.printStackTrace();

}

}

}

我收到以下错误消息:

com.mysql.jdbc.exceptions.jdbc4.CommunicationsException: Communications link failure

The last packet successfully received from the server was 206 milliseconds ago. The last packet sent successfully to the server was 203 milliseconds ago.

at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)

at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:62)

at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:45)

at java.lang.reflect.Constructor.newInstance(Constructor.java:422)

at com.mysql.jdbc.Util.handleNewInstance(Util.java:389)

at com.mysql.jdbc.SQLError.createCommunicationsException(SQLError.java:1038)

at com.mysql.jdbc.ExportControlled.transformSocketToSSLSocket(ExportControlled.java:110)

at com.mysql.jdbc.MysqlIO.negotiateSSLConnection(MysqlIO.java:4760)

at com.mysql.jdbc.MysqlIO.proceedHandshakeWithPluggableAuthentication(MysqlIO.java:1629)

at com.mysql.jdbc.MysqlIO.doHandshake(MysqlIO.java:1206)

at com.mysql.jdbc.ConnectionImpl.coreConnect(ConnectionImpl.java:2239)

at com.mysql.jdbc.ConnectionImpl.connectOneTryOnly(ConnectionImpl.java:2270)

at com.mysql.jdbc.ConnectionImpl.createNewIO(ConnectionImpl.java:2069)

at com.mysql.jdbc.ConnectionImpl.(ConnectionImpl.java:794)

at com.mysql.jdbc.JDBC4Connection.(JDBC4Connection.java:44)

at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)

at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:62)

at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:45)

at java.lang.reflect.Constructor.newInstance(Constructor.java:422)

at com.mysql.jdbc.Util.handleNewInstance(Util.java:389)

at com.mysql.jdbc.ConnectionImpl.getInstance(ConnectionImpl.java:399)

at com.mysql.jdbc.NonRegisteringDriver.connect(NonRegisteringDriver.java:325)

at java.sql.DriverManager.getConnection(DriverManager.java:664)

at java.sql.DriverManager.getConnection(DriverManager.java:247)

at apples.main(mainClass.java:18)

Caused by: javax.net.ssl.SSLException: java.lang.RuntimeException: Unexpected error: java.security.InvalidAlgorithmParameterException: the trustAnchors parameter must be non-empty

at sun.security.ssl.Alerts.getSSLException(Alerts.java:208)

at sun.security.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1949)

at sun.security.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1906)

at sun.security.ssl.SSLSocketImpl.handleException(SSLSocketImpl.java:1889)

at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1410)

at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1387)

at com.mysql.jdbc.ExportControlled.transformSocketToSSLSocket(ExportControlled.java:95)

... 18 more

Caused by: java.lang.RuntimeException: Unexpected error: java.security.InvalidAlgorithmParameterException: the trustAnchors parameter must be non-empty

at sun.security.validator.PKIXValidator.(PKIXValidator.java:90)

at sun.security.validator.Validator.getInstance(Validator.java:179)

at sun.security.ssl.X509TrustManagerImpl.getValidator(X509TrustManagerImpl.java:312)

at sun.security.ssl.X509TrustManagerImpl.checkTrustedInit(X509TrustManagerImpl.java:171)

at sun.security.ssl.X509TrustManagerImpl.checkTrusted(X509TrustManagerImpl.java:184)

at sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustManagerImpl.java:124)

at sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1488)

at sun.security.ssl.ClientHandshaker.processMessage(ClientHandshaker.java:216)

at sun.security.ssl.Handshaker.processLoop(Handshaker.java:979)

at sun.security.ssl.Handshaker.process_record(Handshaker.java:914)

at sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:1062)

at sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1375)

at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1403)

... 20 more

Caused by: java.security.InvalidAlgorithmParameterException: the trustAnchors parameter must be non-empty

at java.security.cert.PKIXParameters.setTrustAnchors(PKIXParameters.java:200)

at java.security.cert.PKIXParameters.(PKIXParameters.java:120)

at java.security.cert.PKIXBuilderParameters.(PKIXBuilderParameters.java:104)

at sun.security.validator.PKIXValidator.(PKIXValidator.java:88)

... 32 more

我还确认使用Workbench和用户能够使用SSL登录的.pem文件.

更新3:将javax.net.debug设置为ssl后的调试信息:

keyStore is :

keyStore type is : jks

keyStore provider is :

init keystore

init keymanager of type SunX509

trustStore is: /usr/lib/jvm/java/jre/truststore.jks

trustStore type is : jks

trustStore provider is :

init truststore

adding as trusted cert:

Subject: CN=aws.amazon.com/rds/, OU=RDS, O=Amazon.com, L=Seattle, ST=Washington, C=US

Issuer: CN=aws.amazon.com/rds/, OU=RDS, O=Amazon.com, L=Seattle, ST=Washington, C=US

Algorithm: RSA; Serial number: 0xe775b657e21a8128

Valid from Tue Apr 06 08:44:31 AEST 2010 until Sun Apr 05 08:44:31 AEST 2015

trigger seeding of SecureRandom

done seeding SecureRandom

Ignoring unavailable cipher suite: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384

Ignoring unavailable cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA

Ignoring unavailable cipher suite: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384

Ignoring unavailable cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA

Ignoring unavailable cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384

Ignoring unavailable cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256

Ignoring unavailable cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA

Ignoring unavailable cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_GCM_SHA384

Ignoring unavailable cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384

Ignoring unavailable cipher suite: TLS_RSA_WITH_AES_256_GCM_SHA384

Ignoring unavailable cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384

Ignoring unavailable cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384

Ignoring unavailable cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA

Ignoring unavailable cipher suite: TLS_ECDH_RSA_WITH_AES_256_GCM_SHA384

Ignoring unavailable cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384

Ignoring unavailable cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256

Ignoring unavailable cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA

Ignoring unavailable cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256

Ignoring unavailable cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA

Ignoring unavailable cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA

Ignoring unavailable cipher suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384

Allow unsafe renegotiation: false

Allow legacy hello messages: true

Is initial handshake: true

Is secure renegotiation: false

Ignoring unsupported cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 for TLSv1

Ignoring unsupported cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 for TLSv1

Ignoring unsupported cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256 for TLSv1

Ignoring unsupported cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256 for TLSv1

Ignoring unsupported cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256 for TLSv1

Ignoring unsupported cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256 for TLSv1

Ignoring unsupported cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256 for TLSv1

Ignoring unsupported cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256

Ignoring unsupported cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256

Ignoring unsupported cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256

Ignoring unsupported cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256

Ignoring unsupported cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256

Ignoring unsupported cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256

Ignoring unsupported cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256

Ignoring unsupported cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256

Ignoring unsupported cipher suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256

Ignoring unsupported cipher suite: TLS_RSA_WITH_AES_128_GCM_SHA256

Ignoring unsupported cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_GCM_SHA256

Ignoring unsupported cipher suite: TLS_ECDH_RSA_WITH_AES_128_GCM_SHA256

Ignoring unsupported cipher suite: TLS_DHE_RSA_WITH_AES_128_GCM_SHA256

Ignoring unsupported cipher suite: TLS_DHE_DSS_WITH_AES_128_GCM_SHA256

%% No cached client session

*** ClientHello, TLSv1

RandomCookie: GMT: 1425012760 bytes = { 250, 182, 202, 168, 139, 248, 125, 121, 251, 188, 182, 110, 1, 234, 29, 105, 158, 219, 212, 122, 105, 57, 87, 80, 44, 141, 121, 154 }

Session ID: {}

Cipher Suites: [TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDH_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_DSS_WITH_AES_128_CBC_SHA, TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA, TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA, SSL_RSA_WITH_3DES_EDE_CBC_SHA, TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA, TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA, SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA, SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA, TLS_EMPTY_RENEGOTIATION_INFO_SCSV]

Compression Methods: { 0 }

Extension elliptic_curves, curve names: {secp256r1, sect163k1, sect163r2, secp192r1, secp224r1, sect233k1, sect233r1, sect283k1, sect283r1, secp384r1, sect409k1, sect409r1, secp521r1, sect571k1, sect571r1, secp160k1, secp160r1, secp160r2, sect163r1, secp192k1, sect193r1, sect193r2, secp224k1, sect239k1, secp256k1}

Extension ec_point_formats, formats: [uncompressed]

Extension server_name, server_name: [type=host_name (0), value=abcd.abcd123.ap-southeast-1.rds.amazonaws.com]

***

main, WRITE: TLSv1 Handshake, length = 202

main, READ: TLSv1 Handshake, length = 74

*** ServerHello, TLSv1

RandomCookie: GMT: -1571637097 bytes = { 78, 228, 80, 30, 162, 233, 208, 59, 196, 166, 88, 129, 155, 99, 123, 252, 123, 153, 129, 25, 144, 235, 185, 112, 68, 79, 2, 79 }

Session ID: {104, 7, 155, 31, 238, 102, 222, 218, 193, 219, 108, 206, 57, 235, 53, 253, 1, 200, 64, 46, 92, 60, 63, 251, 142, 106, 233, 54, 27, 110, 79, 128}

Cipher Suite: TLS_RSA_WITH_AES_128_CBC_SHA

Compression Method: 0

***

Warning: No renegotiation indication extension in ServerHello

%% Initialized: [Session-1, TLS_RSA_WITH_AES_128_CBC_SHA]

** TLS_RSA_WITH_AES_128_CBC_SHA

main, READ: TLSv1 Handshake, length = 1057

*** Certificate chain

chain [0] = [

[

Version: V3

Subject: C=US, ST=Washington, L=Seattle, O=Amazon.com, OU=RDS, CN=sifrmedium.cove4uttgoa2.ap-southeast-2.rds.amazonaws.com

Signature Algorithm: SHA1withRSA, OID = 1.2.840.113549.1.1.5

Key: Sun RSA public key, 1024 bits

modulus: 7182371456073335432842458631460148573771628715802835656528548198324749485547005738326606223242830258829871966755842342342342344059076665280539770508892924695580383343581127930380098999434723444448883595421930164673020286553920728427

public exponent: 65537

Validity: [From: Sun Jun 21 11:55:57 AEST 2015,

To: Fri Mar 06 09:03:24 AEDT 2020]

Issuer: CN=Amazon RDS ap-southeast-2 CA, OU=Amazon RDS, O="Amazon Web Services, Inc.", L=Seattle, ST=Washington, C=US

SerialNumber: [ 810c7b2c 621bcf07 366cad3b ab405b]

Certificate Extensions: 2

[1]: ObjectId: 2.5.29.35 Criticality=false

AuthorityKeyIdentifier [

KeyIdentifier [

0000: 89 50 9D 8D 0A 1D 42 A7 D6 36 2E 99 27 44 61 FC .P.......6..'Ia.

0010: 23 FC D7 F0 #...

]

[CN=Amazon RDS Root CA, OU=Amazon RDS, O="Amazon Web Services, Inc.", L=Seattle, ST=Washington, C=US]

SerialNumber: [ 46]

]

[2]: ObjectId: 2.5.29.14 Criticality=false

SubjectKeyIdentifier [

KeyIdentifier [

0000: 0C 5C 64 D5 CE C4 27 13 34 01 A0 0D 64 8C B1 C9 .\d...'.4...d<..>

0010: 4D 6C 3D 16 M\=.

]

]

]

Algorithm: [SHA1withRSA]

Signature:

0000: 16 53 AA 7A 55 49 84 87 5C EC 49 B9 BD 51 98 83 .S.zUI..\.I..Q..

0010: BA 91 84 72 29 77 19 6C F7 CA 0A 36 09 AC 70 F4 ...r)w.l...6..p.

0020: 8A 2C 90 FD 36 3D 3D CD E9 BA 2C 5C 95 C3 79 78 .,..6==...,\..yx

0030: CE FA 46 A0 3D 77 31 11 E3 5B 9C 84 AF 4D 60 51 ..F.=w1..[...M`Q

0040: 80 52 04 1E 65 4D 6E 5B 92 E1 69 79 12 8E 56 0F .R..eMn[..iy..V.

0050: 83 E4 F8 31 4E A7 65 4E C2 BB 97 A8 B4 67 79 F4 ...1N.eN.....gy.

0060: CD 37 F7 00 A5 42 B9 E0 CB D9 CA 81 EC E3 A3 E3 .7...B..........

0070: FB 05 40 2F 9A 4B 5D AE 7C 30 F4 BA ED DC 74 AC ..@/.K]..0....t.

0080: 89 30 AD 13 26 F7 88 09 66 01 E1 4B 3A 8C B1 3D .0..&...f..K:..=

0090: 28 6F 74 1D B0 00 25 FB 9B 1E 00 8D F1 1F 83 84 (ot...%.........

00A0: CE D7 92 39 78 C4 70 26 8E 3C 05 1C 10 3C A3 E0 ...9x.p&.<...>

00B0: CC 30 F0 A0 68 B1 26 C4 23 AC C0 C6 8A 27 DB 3C .0..h.&.#....'.<

00C0: 7F 38 DD EE 92 1B A3 A4 99 13 9F 80 62 66 C8 F0 .8..........bf..

00D0: 46 25 38 C3 99 0A A2 A7 04 E5 FF 4D 31 2B E4 82 F%8........M1+..

00E0: BE D9 D5 07 28 96 17 07 30 B9 EC BA 26 F3 7B C3 ....(...0...&...

00F0: 1A CF 13 73 58 96 F2 87 3F FD 86 09 35 FA A3 7B ...sX...?...5...

]

***

%% Invalidated: [Session-1, TLS_RSA_WITH_AES_128_CBC_SHA]

main, SEND TLSv1 ALERT: fatal, description = certificate_unknown

main, WRITE: TLSv1 Alert, length = 2

main, called closeSocket()

main, handling exception: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target

main, called close()

main, called closeInternal(true)

辰予
关注
Java访问MySQL实现传输加密
qinfeng1937的博客
08-15 1130
最近研究了一下MySQL的JDBC传输加密,网上找了很多资料,写得不是很清楚,有疑问的地方也很多,特意研究了一下记录下来。
java mysql加密源码_Java 实现加密数据库连接的步骤
weixin_28922555的博客
01-26 498
一、前言在很多项目中,数据库相关的配置文件内容都是以明文的形式展示的,这存在一定的安全隐患。在开发和维护项目时,不仅要关注项目的性能,同时也要注重其安全性。二、实现思路我们都知道项目启动时,Spring 容器会加载配置文件并读取文件中的内容,那么我们可以下边步骤操作:通过 DES 算法加密连接数据库的账号和密码并将加密后的密文写到 db 配置文件中。在 Spring 读取 db 配置文件时将密文解...
java配置连接ssl加密mysql数据库_使用SSL连接Java连接MySQL数据库
weixin_29514317的博客
02-26 1125
请知道我在数据库领域还很新.我能够正确安装mySQL并安装Java连接器驱动程序.但是,每当我在eclipse中运行程序并尝试从创建的数据库中检索信息时,都会收到以下消息:“需要SSL连接,但服务器不支持”.在这里,我要使用安全SSL连接运行的代码:`public static void main(String [] args){String username = "";String passw...
Java-mysql】url连接及用户名密码该如何加密
qq_40438883的博客
07-08 2764
为了使我们的数据库url脱敏,我们可以对数据库连接的url和用户名及密码进行加密操作,这边我们将使用 jasypt-spring-boot 进行加密
mysql ssl java_JavaMySQLSSL连接
weixin_39609354的博客
01-18 412
我正在尝试使用Eclipse中的Java应用程序通过SSL连接连接到远程Mysql数据库 .我正在使用Virtualbox来托管具有JDK的远程Mysql . SSL证书在此来宾计算机(Linux)中创建 . 尝试从拥有自己的JDK的主机(Windows)进行连接 . Eclipse安装在主机中 .当我运行java应用程序时,它会抛出以下消息:jdbc:mysql://x.x.x.x:3306...
MySQL数据库连接加密配置:保障数据安全
[MySQL数据库连接加密配置:保障数据安全](http://www.sytonsoft.com/wp-content/uploads/2023/02/image-13-1024x569.png) # 1. MySQL数据库连接加密概览** MySQL数据库连接加密是一种通过加密技术保护数据库连接和...
:PHP连接MySQL数据库连接池管理性能调优:优化连接池性能
[:PHP连接MySQL数据库连接池管理性能调优:优化连接池性能](https://img-blog.csdnimg.cn/img_convert/f46471563ee0bb0e644c81651ae18302.webp?x-oss-process=image/format,png) # 1. PHP连接MySQL数据库连接池...
如何实现MySQL数据库的远程访问
此外,云服务提供商(如Amazon RDS、Google Cloud SQL等)也提供托管MySQL数据库服务,这些建立在云平台上的解决方案通常包括远程访问和安全机制。 6. 处理远程连接问题 在实现MySQL远程访问时,可能会遇到一些常见...
保障数据库安全性的关键步骤:MySQL端口防火墙配置
[保障数据库安全性的关键步骤:MySQL端口防火墙配置](https://img-blog.csdnimg.cn/d6f5a866bfd343c797b8c5c9bea48ff0.png) # 1. MySQL数据库安全概览 MySQL数据库安全至关重要,因为它存储着敏感数据。本章将...
加强MySQL数据库备份安全:审计防范,筑牢数据安全防线
[加强MySQL数据库备份安全:审计防范,筑牢数据安全防线](https://support.huaweicloud.com/usermanual-rds/zh-cn_image_0000001822244669.png) # 1. MySQL数据库备份安全的重要性 MySQL数据库备份是保护关键数据...
java mysql 链接高版本出现SSL验证
weixin_34392906的博客
12-24 365
key1: String url="jdbc:mysql://localhost:3306/test1?useUnicode=true&amp;characterEncoding=utf-8&amp;useSSL=false"; key2: ?useSSL=false
Java学习 ---MySQL 加密函数其他函数
qq_46093575的博客
05-04 448
一、加密函数和系统函数 #加密函数和系统函数 #查询用户,可以看到登录到mysql的有那些用户,以及登录得ip SELECT USER()FROM DUAL; #查询当前使用数据库名称 SELECT DATABASE(); #md5 常用于密码加密,加密为32位得字符串 SELECT MD5('123456')FROM DUAL SELECT LENGTH(MD5('123456'))FROM DUAL #创建表 CREATE TABLE jun2( id INT, `name` VARCHA
java:驱动程序无法通过使用安全套接字层(SSL)加密 SQL Server 建立安全连接:“The server selected protocol version TLS10 is not a
热门推荐
左直拳的马桶_日用桶
07-24 1万+
jdk1.8的较高版本有些设置做了调整,修改%JAVA_HOME%/jre/lib/security/java.security。 题目限制了字数,完整错误是这样的: com.microsoft.sqlserver.jdbc.SQLServerException: 驱动程序无法通过使用安全套接字层(SSL)加密 SQL Server 建立安全连接。错误:“The server selected protocol version TLS10 is not accepted by client prefere
java连接mysql SSL
最新发布
weixin_42086413的博客
07-02 347
Java连接MySQL SSL 在开发中,我们经常需要连接数据库来获取或者存储数据。对于一些敏感的数据,我们通常会使用SSL加密传输数据。本文将介绍如何在Java程序中使用SSL连接MySQL数据库,并提供代码示例。 SSL简介 SSL(Secure Sockets Layer)是一种用于在网络上安全传输数据的加密协议。...
SQLServer JDBC 驱动程序无法通过使用安全套接字层(SSL)加密 SQL Server 建立安全连接
w345731923的专栏
10-22 1万+
此方法适用于JDK1.8,应用场景常见于window server操作系统 网上有不少人遇到过使用jdbc连接sqlserver出错的情况,错误信息为 错误一: 驱动程序无法通过使用安全套接字层(SSL)加密 SQL Server 建立安全连接java.security.cert.CertificateException: Certificates does not confor...
mysql ssl java代码配置_MySQL配置SSL之后的JAVA连接MySQL的代码
weixin_39526238的博客
01-21 147
//密码 private static String KEYSTORE_PASSWORD = "123456"; private static String TRUSTORE_PATH = "file:/D:/myssl/truststore"; private static String TRUSTORE_PASSWORD = "123456"; /** * Description: * @...
MysqlMysql开启ssl协议及Java客户端配置搭建教程
qwertyuiopasdfghjklzxcvbnm
03-08 6005
1. 安装openssl 2.生成证书 mysql_ssl_rsa_setup --datadir=/data/database/mysql ca-key.pem # CA 私钥 ca.pem # 自签的CA证书,客户端连接也需要提供 client-cert.pem # 客户端连接服务端需要提供的证书文件 client-key.pem #客户端连接服务端需要提供的私钥文件 private_key.pem #
mysql ssl 连接配置Java连接配置全教程
qq_26673045的博客
03-08 2627
开篇 由于最近工作中有涉及到为mysql配置ssl连接的需求,而且客户的生产环境是windows系统的,所以小编在自己本地安装了mysql,查阅了很多资料,踩了无数坑,终于实现了基本的ssl配置。以下是本人融合很多博客和自己的总结写出的教程,而且博客的最下方的附录中,还会有相关的工具或教程的参考链接。如果有不足之处,敬请批评指正!
Mysql开启ssl加密协议及Java客户端配置操作指南
csdn565973850的博客
07-08 2134
本文主要讲述的是Mysql开启了ssl协议之后,Java客户端如何正确的链接Mysql访问数据
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值