LDAP security hole

  • Thread starter Thread starter Mike Z
  • Start date Start date
M

Mike Z

Working on closing up a reported hole in our server. It is
with LDAP and deals with Null BASE and Null BIND query. It
says to disable these 2 queries, but can't find info on
how to do it?

Thanks for any information

Mike
 
Let me guess... Nessus?

They tend to bitch about the RootDSE being open to anonymous query but it
needs to be so LDAP applications can ascertain the LDAP server software
level (V2,V3,etc) and the LDAP controls that are accepted.

joe
 
Back
Top