I have never tried this, but you should be able to do it with iptables with ease. Just change the inbound packets ports.
*Edit* I think I spoke too soon, looking at one of my MySQL databases to see if this does work.
I can't test this unfortunately as I can't bugger up my current database. (I kind of need it to keep working... )
However, if you run 2 different .cnf's as shown here: http://www.linuxquestions.org/questi...e-time-658121/
If you put the SSL keys in one and not the other it might work. No guarantees though!