3.0.11 Always escaping = and ,

Arran Cudbard-Bell a.cudbardb at freeradius.org
Mon Feb 29 17:02:29 CET 2016

>> Any way to stop the xlat from expanding the value, I've tried unescape and
>> a number of different options without success?

Yes, create the entire DN as the value of an attribute and use &<attribute>
(with no quotes) as the configuration item in the LDAP module.

String escaping is (and can only be) applied to xlat expansions.

The taint functionality Alan described would be useful for making this safer.


Arran Cudbard-Bell <a.cudbardb at freeradius.org>
FreeRADIUS development team

FD31 3077 42EC 7FCD 32FE 5EE2 56CF 27F9 30A8 CAA2

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 872 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20160229/cf6d2278/attachment.sig>

More information about the Freeradius-Users mailing list