LDAP security hole

  • Thread starter Thread starter Mike Z
  • Start date Start date
M

Mike Z

Working on closing up a reported hole in our server. It is
with LDAP and deals with Null BASE and Null BIND query. It
says to disable these 2 queries, but can't find info on
how to do it?

Thanks for any information

Mike
 
Let me guess... Nessus?

They tend to bitch about the RootDSE being open to anonymous query but it
needs to be so LDAP applications can ascertain the LDAP server software
level (V2,V3,etc) and the LDAP controls that are accepted.

joe
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

LDAP-NullBase Anonymous Access 2
disable NULL BIND on your LDAP server 2
LDAP Connection Issue 1
LDAP / MembershipProvider 2
nessus scan 4
Windows 2000 security vulnerability solution 2
Secure LDAP Question 1
A Question for LDAP URL (namespace) for CA CRL and AIA Distribution Points 0

Back
Top