Hi Pali! On Fri, 18 Aug 2023 at 11:47, Pali <pali@cpan.org> wrote:

CCing choroba (for Perl's DBD::MariaDB) and replying to developers@ ML.

I have read proposal and the first thing which worries me is how the proposal handles security aspect of the whole solution.

...

If TLS is used then any protocol redirection information must happen inside of the TLS tunnel.

Thanks for the comments! Actually Daniel's submission has already this covered and the redirect works only if the connection is TLS protected: * https://github.com/MariaDB/server/pull/2681, server-side implementation * https://github.com/mariadb-corporation/mariadb-connector-c/pull/226, MariaDB Connector/C implementation