MySQL Forums
Forum List  »  Router & Proxy

Re: Selecting backend based on the user connecting
Posted by: Jan Kneschke
Date: August 13, 2007 06:17AM

Yeah, with shared I didn't meant physically shared (like NFS, ...). Just replication.

Let me explain the way the authentication works in MySQL and let's see how we can fold your needs in here:

- client connects to server (no data)
- server responds with a auth-challenge (server-version, capabilities and a random challenge)
- client sends a auth-response (username, scrambled-password, capabilities)
- server accepts or denies auth

The problem is that client and server need to use the same "challenge" to scramble the password. Otherwise the login can't be successful.

This challenge/response is a security feature to make sure that no man-in-the-middle can capture the clear-text password on the network.

This is (as said before) a chicken-egg problem.

Any ideas ?

--
Jan Kneschke, MySQL Enterprise Tools

Options: ReplyQuote




Sorry, you can't reply to this topic. It has been closed.

Content reproduced on this site is the property of the respective copyright holders. It is not reviewed in advance by Oracle and does not necessarily represent the opinion of Oracle or any other party.