Threat Post

MySQL Bug Can Strip SSL Protection From Connections

Researchers have identified a serious vulnerability in some versions of Oracle’s MySQL database product that allows an attacker to strip SSL/TLS connections of their security wrapping transparently.
Ars Technica

Using SSL to connect to mySQL

Our current set up has our mySQL servers and our web servers all on a private backbone with 3306 being firewalled away from all but the web servers and a few other machines. So we haven't been using ...