manual.texi added security clarification

Docs/manual.texi: added security clarification
2000-10-19 16:01:10 -06:00 · 2000-10-19 16:01:10 -06:00 · fb7cebbb36
commit fb7cebbb36
parent cc22002ad6
1 changed files with 6 additions and 1 deletions
--- a/Docs/manual.texi
+++ b/Docs/manual.texi
@ -10769,7 +10769,12 @@ consult with a security expert.

 When you connect to a @strong{MySQL} server, you normally should use a
 password.  The password is not transmitted in clear text over the
-connection.
+connection, however the encryption algorithm is not very strong, and
+with some effort a clever attacker can crack the password if he is able
+to sniff the traffic between the client and the server. If the 
+connection between the client and the server goes through an untrusted
+network, you should use an @strong(SSH} tunnel to encrypt the 
+communication.

 All other information is transferred as text that can be read by anyone
 who is able to watch the connection.  If you are concerned about this,