Il giorno mer, 10/08/2005 alle 19.35 +0400, Alexander Gerasiov ha scritto: > Package: phpldapadmin > Version: 0.9.6c-4 > Severity: critical > Tags: security > > Even if you deny anonymous login with disable_anon_bind anyone could > access your LDAP server. > > As I can see this option only hide checkbox from the input page, but > anyone can create workaround hack:
Thanks for pointing this out.
I'm preparing a patch and a new package for this, it will be ready in a
few hours.
--
Fabio Tranchitella <[EMAIL PROTECTED]> .''`.
Proud Debian GNU/Linux developer, admin and user. : :' :
`. `'`
http://people.debian.org/~kobold/ `-
_____________________________________________________________________
1024D/7F961564, fpr 5465 6E69 E559 6466 BF3D 9F01 2BF8 EE2B 7F96 1564
signature.asc
Description: This is a digitally signed message part
