Markus Ullmann

LDAP the world

Post details: Security vs. config bug?

23 May , 2006

Permalink 22:33 UTC, by Markus Ullmann, 91 words, 2837 views   English (US)
Categories: gentoo

Security vs. config bug?

Okay, now we have a really weird situation....

On the one hand, OpenLDAP 2.3.23 has a problem with new-style slapd.d

slapadd -v -F /etc/openldap/slapd.d -l /root/200605191201.ldif
slapadd: ldif.c:416: r_enum_tree: Assertion `itmp.bv_val[ 0 ] != '-'' failed.
Aborted

(bug #133898 on bugs.g.o)

On the other hand we have a (hard to abuse) weakness in slurpd (which is used for some older replication setups)
(bug #134010 on bugs.g.o)

But masking 2.3 completely would really end up in breaking many setups and databases, so no option as well.

PermalinkPermalink Leave a commentTrackback (0)

Trackback address for this post:

http://planet.gentoo.org/developers/htsrv/trackback.php/759

Comments, Trackbacks:

No Comments/Trackbacks for this post yet...

Leave a comment:

Your email address will not be displayed on this site.
Your URL will be displayed.

Allowed XHTML tags: <p, ul, ol, li, dl, dt, dd, address, blockquote, ins, del, span, bdo, br, em, strong, dfn, code, samp, kdb, var, cite, abbr, acronym, q, sub, sup, tt, i, b, big, small>
(Line breaks become <br />)
(Set cookies for name, email and url)
(Allow users to contact you through a message form (your email will NOT be displayed.))

Markus Ullmann

July 2008
Mon Tue Wed Thu Fri Sat Sun
<< <     
  1 2 3 4 5 6
7 8 9 10 11 12 13
14 15 16 17 18 19 20
21 22 23 24 25 26 27
28 29 30 31      

Search




Categories

Archives

Misc

XML Feeds

What is RSS?

Who's Online?

  • Guest Users: 119

powered by
b2evolution