On 27/05/2016 18:29, Matt Caswell wrote: > On 27/05/16 16:20, counterpoint wrote: >> Thanks Matt, good points. Not easy to implement though! >> >> In the problem case, my code is the server (it is a proxy), and the standard >> MariaDB command line client is the client. Yes, it does look as if >> everything is happening as it should, except that the process stops before >> all the data has been handled. >> >> The client is sending a large query (about 500 KB, using "load data local >> infile '/root/bigdata.txt' into table upload;"). >> >> If the client is connected directly to the database, using SSL, the query >> runs successfully. >> >> If the client is connected through the proxy without SSL (most of the logic >> exactly the same), the query runs successfully. >> >> If a shorter query is chosen, it works with SSL. >> >> Looking at the data flows with Wireshark, it looks about right, but I can't >> see the data in detail because of the SSL :) > Perhaps using an eNULL ciphersuite might help? > > Matt For future reference, another way is to load your private key into WireShark. This works for all but the EDH/ECDH suites that provide PFS security against enemies who steal your private key and then decrypt previously recorded TLS/SSL sessions. Enjoy Jakob -- Jakob Bohm, CIO, Partner, WiseMo A/S. https://www.wisemo.com Transformervej 29, 2860 S?borg, Denmark. Direct +45 31 13 16 10 This public discussion message is non-binding and may contain errors. WiseMo - Remote Service Management for PCs, Phones and Embedded -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20160531/346d0389/attachment.html>
