[rt-users] LDAP Overlay Security Patch

Jim Meyer purp at acm.org
Wed Jun 21 02:59:34 EDT 2006


Hello!

Thanks to Walter Duncan, a critical security bug in the LDAP overlay's
account autocreation callback has been fixed. If you're using this
code, please update it from the wiki:

    http://wiki.bestpractical.com/index.cgi?LdapAutocreateAuthCallback

The bug, left unpatched, could allow user accounts to be compromised.
Please update as soon as possible.

Thanks, Walter!

--j
-- 
Jim Meyer, Geek at Large                                    purp at acm.org



More information about the rt-users mailing list