]> git.ipfire.org Git - thirdparty/squid.git/commit - helpers/basic_auth/LDAP/basic_ldap_auth.8
projects / thirdparty / squid.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: a394841) | patch
Bug #935: squid_ldap_auth can be confused by the use of reserved characters
authorhno <>
Sat, 3 Apr 2004 22:15:28 +0000 (22:15 +0000)
committerhno <>
Sat, 3 Apr 2004 22:15:28 +0000 (22:15 +0000)
commit307228f182ee6ec50cfcb73c0b66f73e6144a8ca
tree16a922d96d5c89172c8812a549d61f3dd7bb53datree | snapshot
parenta394841f0ef5f31bd5f7816953f9717d69251a4acommit | diff
Bug #935: squid_ldap_auth can be confused by the use of reserved characters

squid_ldap_auth may be confused by the use of reserved characters allowing
the login name to be masqueraded in different manners possibly allowing the
user to partially bypass certain per-user restrictions or confuse third
party accounting packages.

Note that the user can not bypass the login procedure as such. All he can
do is to make the login name look different than normal. There is still
full audit trails on who the user is etc.

The patch also adds and documents a -d flag to both squid_ldap_auth and
squid_ldap_group to allow for easier tracing of the operation of these
programs if results is not what is expected.
helpers/basic_auth/LDAP/squid_ldap_auth.8 diff | blob | blame | history
helpers/basic_auth/LDAP/squid_ldap_auth.c diff | blob | blame | history
helpers/external_acl/ldap_group/squid_ldap_group.8 diff | blob | blame | history
helpers/external_acl/ldap_group/squid_ldap_group.c diff | blob | blame | history
Mirror of https://github.com/squid-cache/squid.git