Securing Database Server with SSL Necessary?

Hello All,

I recently followed the How To Set Up a Remote Database to Optimize Site Performance with MySQL tutorial and now have my web server separated from my database server. While my web server is secured with an SSL certificate from Namecheap, the database server is not.

Is securing the database server with an SSL certificate necessary and/or a good idea? Are connections between the web and database server already secure as a result of the private networking?



Submit an answer
You can type!ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

Since you have two servers, i’d be inclined to say “maybe”. If it was localhost I’d say no (then you would use sockets or local TCP connection).

I actually don’t have reply to your actual question but still wanted to throw a suggestion: you said you’re paying to Namecheap for SSL certs. I suggest you to switch over Cloudflare, they’ll provide free (yes, free!) SSL certs (and they also provide protection for attacks etc.).

It’s really your own decision. Maybe you trust DigitalOcean’s infrastructure to be secure, maybe you don’t. If you don’t, put VPN or TLS in place.