{"id":224,"date":"2020-06-10T10:28:52","date_gmt":"2020-06-10T02:28:52","guid":{"rendered":"http:\/\/www.gbase8.cn\/?p=224"},"modified":"2023-04-14T11:43:04","modified_gmt":"2023-04-14T03:43:04","slug":"gbase-8a%e9%9b%86%e7%be%a4ssl%e9%85%8d%e7%bd%ae-%e5%bc%ba%e5%88%b6%e7%94%a8%e6%88%b7%e7%94%a8ssl","status":"publish","type":"post","link":"https:\/\/www.gbase8.cn\/en\/224","title":{"rendered":"\u5357\u5927\u901a\u7528GBase 8a\u96c6\u7fa4SSL\u914d\u7f6e-\u5f3a\u5236\u7528\u6237\u7528SSL"},"content":{"rendered":"<p>GBase 8a\u652f\u6301\u6570\u636e\u5e93\u7528\u6237\u901a\u8fc7require ssl\u53c2\u6570\uff0c\u5f3a\u5236\u5fc5\u987b\u4f7f\u7528SSL\u8fde\u63a5\u6570\u636e\u5e93\uff0c\u672c\u6587\u4ecb\u7ecd\u5176\u65b9\u6cd5\u3002<\/p>\n\n\n\n<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_84 counter-hierarchy ez-toc-counter ez-toc-grey ez-toc-container-direction\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Directory Navigation<\/p>\n<label for=\"ez-toc-cssicon-toggle-item-6a2b0c247f00b\" class=\"ez-toc-cssicon-toggle-label\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #999;color:#999\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #999;color:#999\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewbox=\"0 0 24 24\" version=\"1.2\" baseprofile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/label><input type=\"checkbox\"  id=\"ez-toc-cssicon-toggle-item-6a2b0c247f00b\"  aria-label=\"Toggle\" \/><nav><ul class='ez-toc-list ez-toc-list-level-1' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/www.gbase8.cn\/en\/224\/#%E5%88%9B%E5%BB%BA%E7%94%A8%E6%88%B7\" >\u521b\u5efa\u7528\u6237<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/www.gbase8.cn\/en\/224\/#%E8%AE%BE%E7%BD%AESSL%E8%A6%81%E6%B1%82\" >\u8bbe\u7f6eSSL\u8981\u6c42<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/www.gbase8.cn\/en\/224\/#%E7%99%BB%E5%BD%95%E5%B0%9D%E8%AF%95\" >\u767b\u5f55\u5c1d\u8bd5<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/www.gbase8.cn\/en\/224\/#%E6%9F%A5%E7%9C%8B%E5%BD%93%E5%89%8D%E7%94%A8%E6%88%B7SSL%E7%99%BB%E5%BD%95%E6%83%85%E5%86%B5status\" >\u67e5\u770b\u5f53\u524d\u7528\u6237SSL\u767b\u5f55\u60c5\u51b5status<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/www.gbase8.cn\/en\/224\/#SSL%E9%85%8D%E7%BD%AE\" >SSL\u914d\u7f6e<\/a><\/li><\/ul><\/nav><\/div>\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"%E5%88%9B%E5%BB%BA%E7%94%A8%E6%88%B7\"><\/span>\u521b\u5efa\u7528\u6237<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p>\u67e5\u770b\u5176\u4e2d\u7684ssl_type, \u770b\u5230\u662f\u7a7a\u7684\u3002<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>gbase&gt; create user ssl_user identified by 'ssl';\nQuery OK, 0 rows affected (Elapsed: 00:00:00.02)\n\n\ngbase&gt; select * from gbase.user where user='ssl_user'\\G\n*************************** 1. row ***************************\n                   Host: %\n                   User: ssl_user\n               Password:\n            Select_priv: N\n            Insert_priv: N\n            Update_priv: N\n            Delete_priv: N\n            Create_priv: N\n              Drop_priv: N\n            Reload_priv: N\n          Shutdown_priv: N\n           Process_priv: N\n              File_priv: N\n             Grant_priv: N\n        References_priv: N\n             Index_priv: N\n             Alter_priv: N\n           Show_db_priv: N\n             Super_priv: N\n  Create_tmp_table_priv: N\n       Lock_tables_priv: N\n           Execute_priv: N\n        Repl_slave_priv: N\n            Unmask_priv: N\n       Create_view_priv: N\n         Show_view_priv: N\n    Create_routine_priv: N\n     Alter_routine_priv: N\n       Create_user_priv: N\n             Event_priv: N\n           Trigger_priv: N\n               <span class=\"has-inline-color has-luminous-vivid-orange-color\">ssl_type:<\/span>\n             ssl_cipher:\n            x509_issuer:\n           x509_subject:\n          max_questions: 0\n            max_updates: 0\n        max_connections: 0\n   max_user_connections: 0\n               max_cpus: 0\n           max_memories: 0\n          max_tmp_space: 0\n         resource_group: 0\n          task_priority: 2\nuser_limit_storage_size:\n      user_storage_size: 0\n                    UID: 529422\n1 row in set (Elapsed: 00:00:00.00)<\/code><\/pre>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"%E8%AE%BE%E7%BD%AESSL%E8%A6%81%E6%B1%82\"><\/span>\u8bbe\u7f6eSSL\u8981\u6c42<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p>\u901a\u8fc7grant \u547d\u4ee4\uff0c\u8bbe\u7f6e\u6743\u9650\uff0crequire ssl\u53c2\u6570\u8981\u6c42\u5fc5\u987b\u7528ssl\u8fde\u63a5\u3002\u67e5\u770buser\u8868\u7684ssl_type\u53d8\u6210\u4e86ANY\uff0c\u800c\u4e0d\u662f\u9ed8\u8ba4\u7684\u7a7a\u3002<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>gbase&gt; grant usage on *.* to ssl_user identified by 'ssl' require ssl;\n\nQuery OK, 0 rows affected (Elapsed: 00:00:00.01)\n\ngbase&gt; select * from gbase.user where user='ssl_user'\\G\n*************************** 1. row ***************************\n                   Host: %\n                   User: ssl_user\n               Password: *035E199C2E188B7300132D5C991D9E002AB5C150\n            Select_priv: N\n            Insert_priv: N\n            Update_priv: N\n            Delete_priv: N\n            Create_priv: N\n              Drop_priv: N\n            Reload_priv: N\n          Shutdown_priv: N\n           Process_priv: N\n              File_priv: N\n             Grant_priv: N\n        References_priv: N\n             Index_priv: N\n             Alter_priv: N\n           Show_db_priv: N\n             Super_priv: N\n  Create_tmp_table_priv: N\n       Lock_tables_priv: N\n           Execute_priv: N\n        Repl_slave_priv: N\n            Unmask_priv: N\n       Create_view_priv: N\n         Show_view_priv: N\n    Create_routine_priv: N\n     Alter_routine_priv: N\n       Create_user_priv: N\n             Event_priv: N\n           Trigger_priv: N\n               <span class=\"has-inline-color has-luminous-vivid-orange-color\">ssl_type: ANY<\/span>\n             ssl_cipher:\n            x509_issuer:\n           x509_subject:\n          max_questions: 0\n            max_updates: 0\n        max_connections: 0\n   max_user_connections: 0\n               max_cpus: 0\n           max_memories: 0\n          max_tmp_space: 0\n         resource_group: 0\n          task_priority: 2\nuser_limit_storage_size:\n      user_storage_size: 0\n                    UID: 529422\n1 row in set (Elapsed: 00:00:00.00)\n<\/code><\/pre>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"%E7%99%BB%E5%BD%95%E5%B0%9D%E8%AF%95\"><\/span>\u767b\u5f55\u5c1d\u8bd5<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p>\u56e0\u4e3a\u5e76\u6ca1\u6709\u914d\u7f6essl,\u6240\u4ee5\u76f4\u63a5\u62a5\u9519\uff0c\u867d\u7136\u7528\u6237\u540d\u548c\u5bc6\u7801\u662f\u5bf9\u7684\u3002<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>&#91;gbase@rh6-1 gcluster]$ gccli -ussl_user -pssl\nERROR 1045 (28000): Access denied for user 'ssl_user'@'localhost' (using password: YES)\n&#91;gbase@rh6-1 gcluster]$\n<\/code><\/pre>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"%E6%9F%A5%E7%9C%8B%E5%BD%93%E5%89%8D%E7%94%A8%E6%88%B7SSL%E7%99%BB%E5%BD%95%E6%83%85%E5%86%B5status\"><\/span>\u67e5\u770b\u5f53\u524d\u7528\u6237SSL\u767b\u5f55\u60c5\u51b5status<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<pre class=\"wp-block-code has-small-font-size\"><code>gbase> status;\r\n--------------\r\n\/opt\/gccli_install\/gcluster\/server\/bin\/gbase ver 9.5.3.27.88ef4e28, for redhat-linux (x86_64) using readline 6.3\r\n\r\nConnection id:          3525\r\nCurrent database:       gbase\r\nCurrent user:           root@60.30.204.30\r\n<span class=\"has-inline-color has-luminous-vivid-orange-color\">SSL:                    Cipher in use is DHE-RSA-AES256-SHA<\/span>\r\nCurrent pager:          stdout\r\nUsing outfile:          ''\r\nUsing delimiter:        ;\r\nServer version:         9.5.3.15.122811\r\nProtocol version:       10\r\nConnection:             101.200.58.199 via TCP\/IP\r\nServer characterset:    utf8\r\nDb     characterset:    utf8\r\nClient characterset:    utf8\r\nConn.  characterset:    utf8\r\nTCP port:               5258\r\nUptime:                 Elapsed: 422:36:52.00\r\n\r\nThreads: 10  Questions: 5779  Slow queries: 0  Opens: 42  Flush tables: 1  Open tables: 26  Queries per second avg: 0.3\r\n--------------\r\n<\/code><\/pre>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"SSL%E9%85%8D%E7%BD%AE\"><\/span>SSL\u914d\u7f6e<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p>\u8bf7\u53c2\u8003<\/p>\n\n\n\n<p><a href=\"https:\/\/www.gbase8.cn\/en\/214\/\">GBase 8a\u96c6\u7fa4SSL\u914d\u7f6e-\u96c6\u7fa4\u914d\u7f6e\u90e8\u5206<\/a><br><a href=\"https:\/\/www.gbase8.cn\/en\/216\/\">GBase 8a\u96c6\u7fa4SSL\u914d\u7f6e-\u5ba2\u6237\u7aefgccli<\/a><\/p>","protected":false},"excerpt":{"rendered":"<p>\u5357\u5927\u901a\u7528GBase 8a\u96c6\u7fa4SSL\u914d\u7f6e-\u5f3a\u5236\u7528\u6237\u7528SSL<\/p>","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[15],"class_list":["post-224","post","type-post","status-publish","format-standard","hentry","category-gbase8a","tag-ssl"],"_links":{"self":[{"href":"https:\/\/www.gbase8.cn\/en\/wp-json\/wp\/v2\/posts\/224","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.gbase8.cn\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.gbase8.cn\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.gbase8.cn\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.gbase8.cn\/en\/wp-json\/wp\/v2\/comments?post=224"}],"version-history":[{"count":6,"href":"https:\/\/www.gbase8.cn\/en\/wp-json\/wp\/v2\/posts\/224\/revisions"}],"predecessor-version":[{"id":11409,"href":"https:\/\/www.gbase8.cn\/en\/wp-json\/wp\/v2\/posts\/224\/revisions\/11409"}],"wp:attachment":[{"href":"https:\/\/www.gbase8.cn\/en\/wp-json\/wp\/v2\/media?parent=224"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.gbase8.cn\/en\/wp-json\/wp\/v2\/categories?post=224"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.gbase8.cn\/en\/wp-json\/wp\/v2\/tags?post=224"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}