AWS AmazonRDS high security documentation change
Summary
Added ssl_verify_cert=True parameter to database connection code
Security assessment
Enables full SSL certificate verification to prevent man-in-the-middle attacks. Previously missing verification could have allowed insecure connections.
Diff
diff --git a/AmazonRDS/latest/AuroraUserGuide/UsingWithRDS.IAMDBAuth.Connecting.Python.md b/AmazonRDS/latest/AuroraUserGuide/UsingWithRDS.IAMDBAuth.Connecting.Python.md index 97e412b7a..87a99a6e5 100644 --- a//AmazonRDS/latest/AuroraUserGuide/UsingWithRDS.IAMDBAuth.Connecting.Python.md +++ b//AmazonRDS/latest/AuroraUserGuide/UsingWithRDS.IAMDBAuth.Connecting.Python.md @@ -79 +79 @@ Before running this code, install the PyMySQL driver by following the instructio - conn = pymysql.connect(auth_plugin_map={'mysql_clear_password':None},host=ENDPOINT, user=USER, password=token, port=PORT, database=DBNAME, ssl_ca='SSLCERTIFICATE', ssl_verify_identity=True) + conn = pymysql.connect(auth_plugin_map={'mysql_clear_password':None},host=ENDPOINT, user=USER, password=token, port=PORT, database=DBNAME, ssl_ca='SSLCERTIFICATE', ssl_verify_identity=True, ssl_verify_cert=True)