Re: Tunneling DBD::mysql connections over SSH without using external programs

May I cordially suggest that this is a perfect application for VPN ... whether you do it in local software or even in the built-in VPN capability of a modern router device.

Simply establish a secure tunnel to the target system, preferably using digital certificates, and the entire problem goes away. The two systems simply talk to one another, over what appear to each of them to be a “local” connection, and .. mirabile dictu! .. the connection is secure! Courtesy of a third-party agent that is quite unknown to (and therefore, no longer a concern to) either of them. They no longer have to take any special steps at all to secure the connection ... they may simply take for granted that it is. “Priceless!”™

Replies are listed 'Best First'.
Re^2: Tunneling DBD::mysql connections over SSH without using external programs by wwinfrey (Acolyte) on Apr 12, 2013 at 02:47 UTC
I agree that a VPN would help certainly fix the problem, but again - I have a design requirement that states that there can be no external dependencies. The solution must live completely within the Perl code. Another restriction is that I am trying to avoid any bootstrapping of the remote system, and using a VPN would defeat this requirement as well.	[reply]
Re^3: Tunneling DBD::mysql connections over SSH without using external programs by salva (Canon) on Apr 12, 2013 at 07:58 UTC
OpenSSH has native support for creating VPNs (no external programs required). Though it must be enabled on the configuration and requires root access.	[reply]