LDAP changes between 1.01 and 1.1.5
Peter Nixon
listuser at peternixon.net
Fri Apr 13 01:18:48 CEST 2007
On Thu 12 Apr 2007, Ryan Kramer wrote:
> > No. It's part of the LDAP query.
> >
> > In order to avoid external users logging in with names that are valid
> > LDAP queries, the untrusted user input is escaped before it is passed to
> > the LDAP module.
>
> Apparently something in the ldap_escape_func is broken when talking to
> Microsoft AD. I replaced the code of that function with the much more
> lenient code of the 1.0.1 ldap_escape_func, and it works great with MS
> LDAP now!
Please open a bug report in the tracker...
--
Peter Nixon
http://www.peternixon.net/
PGP Key: http://www.peternixon.net/public.asc
More information about the Freeradius-Users
mailing list