httpd-bugs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From bugzi...@apache.org
Subject DO NOT REPLY [Bug 24437] New: - mod_auth_ldap doubly-escapes backslash (\) characters in uids
Date Wed, 05 Nov 2003 16:58:30 GMT
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG 
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://nagoya.apache.org/bugzilla/show_bug.cgi?id=24437>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND 
INSERTED IN THE BUG DATABASE.

http://nagoya.apache.org/bugzilla/show_bug.cgi?id=24437

mod_auth_ldap doubly-escapes backslash (\) characters in uids

           Summary: mod_auth_ldap doubly-escapes backslash (\) characters in
                    uids
           Product: Apache httpd-2.0
           Version: 2.0.47
          Platform: PC
        OS/Version: Windows NT/2K
            Status: NEW
          Severity: Normal
          Priority: Other
         Component: mod_auth_ldap
        AssignedTo: bugs@httpd.apache.org
        ReportedBy: jessh@ptc.com


In order to authenticate against ActiveDirectory-style uids with backslashes in 
them the authentication user name contains this character.

Unfortunately the LDAP logs are showing that Apache is over-escaping the 
backslash -- at least on Windows (2000 SP4, all security updates applied).  I 
suspect this above the LDAP SDK layer and thus applies to all platforms, but I 
could be proven wrong, of course.

This is a serious issue to anyone needing to support use of such (existing) 
directories.  Both workarounds and pointers to code areas to investigate (other 
than "look at the mod_auth_ldap and/or util_ldap sources" -- I know that much) 
would be greatly appreciated!

---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org


Mime
View raw message