[Date Prev][Date Next] [Chronological] [Thread] [Top]

Null Search Base



A security scanner was run against our ldap severs and came back with a
warning stating "The remote LDAP server supports search requests with a
null, or empty, base object.  This allows information to be retrieved
without any prior knowledge of the directory structure.  Coupled with a
NULL BIND, an anonymous user may be able to query your LDAP server using
a tool . . ."  

I'm not overly concerned with the warning, but I was a little confused
what the scanner was reffering to.  I used the following search in an
effort to somewhat duplicate what the scanner was sending and what
information is retrieved and was hoping someone could commet if I was
ontrack.  I assume the warning is due to the namingContext attribute and
if desired an acl could be setup to stop the retrival on the
information.  This is on a RH5 openlap 2.3 server.

ldapsearch -x -s base -b '' -H  ldap://my.lapdap.server
"(objectClass=*)" "*" +  

I got back this:

#
dn:
objectClass: top
objectClass: OpenLDAProotDSE
structuralObjectClass: OpenLDAProotDSE
configContext: cn=config
namingContexts: o=mydomain
supportedControl: 1.3.6. .....
. . . .
supportedControl: 1.3.6. .....
supportedLDAPVersion: 3
entryDN:
subschemaSubentry: cn=Subschema