Question

How to secure MySQL droplet with HTTPS

I have added a fresh droplet with MySQL from the one-click apps to my account. The entire setup is working fine and I can access PhpMyAdmin as well as log in through terminal to change whatever I want. I used to set up SSL on my other droplets manually, but read it can be done automatically in this article.

Quick question: can I do this automatically and if so, how? Or do I need to go through the entire process using Certbot, changing proxies etc?

Thanks!


Submit an answer

This textbox defaults to using Markdown to format your answer.

You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!

Sign In or Sign Up to Answer

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

Want to learn more? Join the DigitalOcean Community!

Join our DigitalOcean community of over a million developers for free! Get help and share knowledge in Q&A, subscribe to topics of interest, and get courses and tools that will help you grow as a developer and scale your project or business.

Hi,

This works just fine and I know have a URL https://database.mywebsite.com which redirects correctly to the MySQL database login via phpmyadmin. However, I can still access the IP address of the MySQL server with regular http. (http://xxx.xx.xxx.xx/phpmyadmin) which then indicates “not secure” in my browser.

My server communicates with the MySQL database via SSL certificates so I’m confident this works correctly, however I can’t find any information on how to secure the IP address itself so accessing the root or phpmyadmin is forced over a secure connection.

Hey friend,

I would say that certbot should do just fine for this, though I’m not certain what you are referring to with proxies. This guide should work well:

https://www.digitalocean.com/community/tutorials/how-to-secure-apache-with-let-s-encrypt-on-ubuntu-18-04

Jarland