Modify

Ticket #619 (closed defect: fixed)

Opened 6 years ago

Last modified 6 years ago

Server internal LDAP security poor

Reported by: matt (daily at) monki.org.uk Owned by: juruen@…
Milestone: Component: base
Severity: major Keywords: security ldap
Cc:

Description

A quick search of the machine reveals that the LDAP admin password is readable by any user in the following files:

/etc/smbldap-tools/smbldap_bind.conf /etc/saslauthd.conf

Attachments

Change History

comment:1 Changed 6 years ago by juruen@…

  • Status changed from new to closed
  • Resolution set to fixed
View

Add a comment

Modify Ticket

Change Properties
<Author field>
Action
as closed
The resolution will be deleted. Next status will be 'reopened'
Author


E-mail address and user name can be saved in the Preferences.

Attachments
 
Note: See TracTickets for help on using tickets.