LDAP changes between 1.01 and 1.1.5

Peter Nixon listuser at peternixon.net
Fri Apr 13 01:18:48 CEST 2007

On Thu 12 Apr 2007, Ryan Kramer wrote:
> >   No.  It's part of the LDAP query.
> >
> >   In order to avoid external users logging in with names that are valid
> > LDAP queries, the untrusted user input is escaped before it is passed to
> > the LDAP module.
> Apparently something in the ldap_escape_func is broken when talking to
> Microsoft AD.  I replaced the code of that function with the much more
> lenient code of the 1.0.1 ldap_escape_func, and it works great with MS
> LDAP now!

Please open a bug report in the tracker...


Peter Nixon
PGP Key: http://www.peternixon.net/public.asc

More information about the Freeradius-Users mailing list