{"id":2599,"date":"2019-07-01T22:08:40","date_gmt":"2019-07-02T02:08:40","guid":{"rendered":"http:\/\/ninecrows.com\/career\/?p=2599"},"modified":"2019-07-01T10:32:08","modified_gmt":"2019-07-01T14:32:08","slug":"a-weekend-of-database-and-certificates","status":"publish","type":"post","link":"https:\/\/ninecrows.com\/career\/2019\/07\/01\/a-weekend-of-database-and-certificates\/","title":{"rendered":"A Weekend of Database and CertificateS"},"content":{"rendered":"\n<p>Spent some time over the weekend doing some more work on the <a href=\"https:\/\/mariadb.org\/\">MySQL <\/a>database layout for the <a href=\"https:\/\/github.com\/ninecrows\/Cluster-1\">cluster <\/a>game and working on getting self-signed certificates prepared for my various development machines.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">PHP and MySQL<\/h2>\n\n\n\n<p>The database work went smoothly. Still largely on the whiteboard at the moment. I&#8217;ve also been going through a PHP re-familiarization as I&#8217;ll need to code this stuff in PHP for my hosting and I haven&#8217;t worked in that environment in some time. I did grab an evaluation license for <a href=\"https:\/\/www.jetbrains.com\/phpstorm\/\">PHPStorm <\/a>a few weeks back, but I fear that was premature as I haven&#8217;t reached the point where I need such tools on this sandbox project yet.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Certificates<\/h2>\n\n\n\n<p>I finally took the time to create SSH certificates to permit direct logins to my linux machines from my windows systems. That part I&#8217;ve done many times before and it went flawlessly.<\/p>\n\n\n\n<p>I created and installed self-signed certificates for various local systems and set up TLS on their Apache servers. The creation and installation went smoothly, but the end-result was not what I was hoping for.<\/p>\n\n\n\n<p>After installing the certificates in several different ways on the systems\/browsers involved, I still did not see the secure icon in the address bar. I&#8217;m not sure whether this is caused by the certificates being self-signed (shouldn&#8217;t be as I installed the keys directly from files into the trust stores) of something else I&#8217;m not doing properly. I&#8217;ll need to keep looking at that one. <\/p>\n\n\n\n<p>I do want to verify that the connections are using TLS. If they&#8217;re encrypted but not &#8216;safe&#8217; because they&#8217;re not signed by a major cert vendor then I&#8217;m probably ok with that. If the TLS handshake failed because they don&#8217;t have the right certs then there&#8217;s a bigger problem.<\/p>\n\n\n\n<p>Sunday evening I started down the road to building a local CA to sign  all of my certificates with. I&#8217;m wondering if setting this up and loading its public key as a trusted root may give better results. The process is a bit more involved but may be worth it if it gets closer to the results I&#8217;d get with a commercial certificate.<\/p>\n\n\n\n<p>I still haven&#8217;t found a way to load a <a href=\"https:\/\/letsencrypt.org\/\">FreeTLS <\/a>certificate on my GoDaddy hosting. One of these days I&#8217;ll spend the time to get on the phone with their support folks and see if this can be worked out.<\/p>\n\n\n\n<p>I may try setting up a <a href=\"https:\/\/letsencrypt.org\/\">FreeTLS <\/a>cert on my <a href=\"https:\/\/www.noip.com\/\">dynamic DNS<\/a> connection that targets a port on my home firewall. That would provide more flexibility, but be less robust and scalable.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Samba SMB Shares<\/h2>\n\n\n\n<p>Toward the end of the evening I ran through samba installs on several systems. I had been pushing files around between my windows and Linux machines all weekend and wanted to make things closer to seamless. <\/p>\n\n\n\n<p>I had no real luck on that front. I could get things to the point where windows recognized share names from the Linux machines. I could never get things to the point where my windows systems could connect to a share and see files inside. Not sure what I&#8217;m missing and the samba logs were not at all helpful.<\/p>\n\n\n\n<p>I&#8217;ll probably re-visit this again sometime soon, but for now the convenience of having it working isn&#8217;t worth the effort involved in finding out why it isn&#8217;t.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Spent some time over the weekend doing some more work on the MySQL database layout for the cluster game and working on getting self-signed certificates prepared for my various development machines. PHP and MySQL The database work went smoothly. Still largely on the whiteboard at the moment. I&#8217;ve also been going through a PHP re-familiarization &hellip; <a href=\"https:\/\/ninecrows.com\/career\/2019\/07\/01\/a-weekend-of-database-and-certificates\/\" class=\"more-link\">Continue reading <span class=\"screen-reader-text\">A Weekend of Database and CertificateS<\/span> <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":true,"jetpack_social_options":{"image_generator_settings":{"template":"highway","enabled":false},"version":2}},"categories":[75,9,81,79,80,78,19],"tags":[],"class_list":["post-2599","post","type-post","status-publish","format-standard","hentry","category-cluster-1","category-daily-blog","category-database","category-linux","category-mysql","category-php","category-security"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p7F2Qc-FV","jetpack-related-posts":[],"jetpack_likes_enabled":true,"_links":{"self":[{"href":"https:\/\/ninecrows.com\/career\/wp-json\/wp\/v2\/posts\/2599"}],"collection":[{"href":"https:\/\/ninecrows.com\/career\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/ninecrows.com\/career\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/ninecrows.com\/career\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/ninecrows.com\/career\/wp-json\/wp\/v2\/comments?post=2599"}],"version-history":[{"count":2,"href":"https:\/\/ninecrows.com\/career\/wp-json\/wp\/v2\/posts\/2599\/revisions"}],"predecessor-version":[{"id":2601,"href":"https:\/\/ninecrows.com\/career\/wp-json\/wp\/v2\/posts\/2599\/revisions\/2601"}],"wp:attachment":[{"href":"https:\/\/ninecrows.com\/career\/wp-json\/wp\/v2\/media?parent=2599"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/ninecrows.com\/career\/wp-json\/wp\/v2\/categories?post=2599"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/ninecrows.com\/career\/wp-json\/wp\/v2\/tags?post=2599"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}