>So, um, what exactly is the solution to using referrals in a >protocol that allows servers in the chain to not support >critical extensions? > >It seems that the safest thing for a client to do is use >LDAP v2. :-(. I'm having trouble seeing the bear here. It all just sounds like a kind of option negotation. Can someone give a clear example where extensions and referrals interact disasterously ?