PS1.6: Secure connection to remote database

[tanasi]

Moving the database of a web app to a different server is a common practice when it comes to optimizing the performance. Doing so, requires that the connection between the web server and the database server should be encypted. 

I have a PS1.6 with mysql 5.6 on the same server and while on the front end use an SSL (I can see the padlock on the site) I am just wondering what's going on under the "hood":  

If I move the database (mysql 5.6) to a different server and want to secure the connection between Prestashop front end and the DB server, is that possible?

In order to do this, this seems to be a two step process as described here:

1)  generate the SSL certificates on the DB server 

2) Somehow activate the encryption on the Prestashop (web server) part

 

To give some info from my experience, just in case it helps: Recently did the same on a Wordpress installation. 

- I had to run the mysql_ssl_rsa_setup command on the DB server. (mysql 5.7 provides that utility)

- On the web server part which hosts the wordpress I had to activate the SSL connection by adding the following on the wordpress config file:  define('DB_SSL', true); define('MYSQL_CLIENT_FLAGS', MYSQLI_CLIENT_SSL);

Do I need to do something similar for Prestashop or am I doomed to "eavesdropping"!?

Edited November 10, 2018 by tanasi (see edit history)