[Freeipa-devel] [PATCH 0019] Add proper DN escaping before LDAP library calls
Petr Spacek
pspacek at redhat.com
Thu May 3 09:25:43 UTC 2012
Hello,
this patch adds missing DNS->LDAP escaping conversion. It's necessary to
prevent (potential) LDAP injection attacks in future.
Code isn't very nice, because DNS users decimal escaping \123, LDAP uses
hexadecimal escaping \ab and set of escaped characters is smaller in DNS than
in LDAP.
Any improvements are welcome.
Petr^2 Spacek
-------------- next part --------------
A non-text attachment was scrubbed...
Name: bind-dyndb-ldap-pspacek-0019-Add-proper-DN-escaping-before-LDAP-library-calls.patch
Type: text/x-patch
Size: 6387 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20120503/755be42f/attachment.bin>
More information about the Freeipa-devel
mailing list