The SSL filter is different from other security mechanisms, such as DCE and Kerberos, which are defined with SECMECH (security mechanism) lines in the interfaces file (sql.ini on Windows). The master and query lines determine the security protocols that are enforced for the connection.
For example, a typical interfaces file on a UNIX machine using SSL looks like this:
[SERVER]
query tcp ether hostname port ssl
master tcp ether hostname port ssl
A typical sql.ini file on Windows using SSL looks like this:
[SERVER]
query=TCP,hostname,port, ssl
master=TCP,hostname,port, ssl
where hostname is the name of the server to which the client is connecting and port is the port number of the host machine. All connection attempts to a master or query entry in the interfaces file with an SSL filter must support the SSL protocol. A server can be configured to accept SSL connections and have other connections that accept plain text (unencrypted data), or use other security mechanisms.
