Add DBs.tex
authorAaron Kaplan <aaron@lo-res.org>
Wed, 20 Nov 2013 16:18:41 +0000 (17:18 +0100)
committerAaron Kaplan <aaron@lo-res.org>
Wed, 20 Nov 2013 16:18:41 +0000 (17:18 +0100)
Move Mysql settings to DBs.tex
Make the todo in cipher_suites.tex visible

src/DBs.tex [new file with mode: 0644]
src/cipher_suites.tex
src/practical_settings.tex

diff --git a/src/DBs.tex b/src/DBs.tex
new file mode 100644 (file)
index 0000000..bc17d0e
--- /dev/null
@@ -0,0 +1,22 @@
+
+\subsection{Database Systems}
+\subsubsection{MySQL}
+
+\paragraph*{my.cnf}\mbox{}\\
+
+%Tested with Debian 7.0 and MySQL 5.5
+
+\begin{lstlisting}[breaklines]
+[mysqld]
+ssl
+ssl-ca=/etc/mysql/ssl/ca-cert.pem
+ssl-cert=/etc/mysql/ssl/client-cert.pem
+ssl-key=/etc/mysql/ssl/client-key.pem
+ssl-cipher=EECDH+aRSA+AESGCM:EECDH+aRSA+SHA384:EECDH+aRSA+SHA256:EDH+CAMELLIA256:EECDH:EDH+aRSA:+SSLv3:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!SRP:!DSS:!RC4:!SEED:!AES128:!CAMELLIA128:!ECDSA:AES256-SHA
+\end{lstlisting}
+
+After restarting the server run the following query to see if the ssl settings are correct:
+\begin{lstlisting}[breaklines]
+show variables like '%ssl%';
+\end{lstlisting}
+
index 173bdd4..f33fa8c 100644 (file)
@@ -234,7 +234,7 @@ gets the server key. \\
 All ephemeral key exchange mechanisms base on Diffie-Hellman algorithm and require
 pre-generated Diffe-Hellman parameter (which allow fast ephemeral key generation). It
 is important to note that the Diffie-Hellman parameters need to be at least as strong
-(speaking in number of bits) as the RSA host key. %TODO: reference!
+(speaking in number of bits) as the RSA host key. \todo{TODO: reference!}
 
 
 \textbf{Elliptic Curves}\ref{section:EllipticCurveCryptography} required by current TLS
index b6d5717..6deb371 100644 (file)
@@ -680,26 +680,8 @@ Adi?? }
 \subsubsection{XMPP / Jabber}
 \subsubsection{IRC}
 
-%\subsection{Database Systems}
-%\subsubsection{MySQL}
-%
-%\paragraph*{my.cnf}\mbox{}\\
-%
-%%Tested with Debian 7.0 and MySQL 5.5
-%
-%\begin{lstlisting}[breaklines]
-%[mysqld]
-%ssl
-%ssl-ca=/etc/mysql/ssl/ca-cert.pem
-%ssl-cert=/etc/mysql/ssl/client-cert.pem
-%ssl-key=/etc/mysql/ssl/client-key.pem
-%ssl-cipher=EECDH+aRSA+AESGCM:EECDH+aRSA+SHA384:EECDH+aRSA+SHA256:EDH+CAMELLIA256:EECDH:EDH+aRSA:+SSLv3:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!SRP:!DSS:!RC4:!SEED:!AES128:!CAMELLIA128:!ECDSA:AES256-SHA
-%\end{lstlisting}
-%
-%After restarting the server run the following query to see if the ssl settings are correct:
-%\begin{lstlisting}[breaklines]
-%show variables like '%ssl%';
-%\end{lstlisting}
+\input{DBs}
+