disable null bind on your ldap server in linu

November 11, 2011 at 22:54:39
Specs: Windows XP
how to disable null bind on your ldap server in linux

See More: disable null bind on your ldap server in linu

Report •

#1
November 12, 2011 at 08:09:00
"Administrators are recommended to disable the NULL bind entry in the LDAP configuration file or control the entry with Access Control Lists (ACLs)"

http://www.iss.net/security_center/...

"The NULL bind entry allows a user to access the Lightweight Directory Access Protocol (LDAP) directory anonymously. An attacker could take advantage of the NULL bind entry to anonymously view files on the LDAP director."

This may or may not be needed in your situation but it would be discovered as a bad or good change in a few moments.

1/3 of highway deaths are caused by drunks. The rest are by people who can't drive any better than a drunk.


Report •

#2
November 12, 2011 at 08:57:45
That exactly what i want to disable anonymous access. How to perform it??????

Report •

#3
November 12, 2011 at 09:35:47
As I said in your other thread, the guys at Nessus say that if you are using LDAP 3 this is a false positive (as null binds are a requirement of LDAP 3). They suggest you either ignore it or disable that module of Nessus if passing all tests is a requirement of your system.

https://discussions.nessus.org/thre...


Report •

Related Solutions

#4
November 12, 2011 at 14:12:44
http://seclists.org/basics/2008/Aug...

1/3 of highway deaths are caused by drunks. The rest are by people who can't drive any better than a drunk.


Report •

Ask Question