Securing Database Server with SSL Necessary?

Posted March 17, 2016 4.4k views
UbuntuMySQLSecurityLAMP Stack

Hello All,

I recently followed the How To Set Up a Remote Database to Optimize Site Performance with MySQL tutorial and now have my web server separated from my database server. While my web server is secured with an SSL certificate from Namecheap, the database server is not.

Is securing the database server with an SSL certificate necessary and/or a good idea? Are connections between the web and database server already secure as a result of the private networking?


These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

Submit an Answer
3 answers

It’s really your own decision. Maybe you trust DigitalOcean’s infrastructure to be secure, maybe you don’t. If you don’t, put VPN or TLS in place.

I actually don’t have reply to your actual question but still wanted to throw a suggestion: you said you’re paying to Namecheap for SSL certs. I suggest you to switch over Cloudflare, they’ll provide free (yes, free!) SSL certs (and they also provide protection for attacks etc.).

Since you have two servers, i’d be inclined to say “maybe”. If it was localhost I’d say no (then you would use sockets or local TCP connection).