[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: M$ Outlook crash slapd (ITS#844)



> Method 137 is (I think) NTLM and is not supported by Cyrus_SASL.  Kurt has
> posted changes to reject 137 and similar non-supported authentication
> mechanisms more gracefully.  The easy answer is don't use the "Secure
> Password Authentication" option.

I understood that after I have sent bug report, but I think it's not good
when remote client may kill ldap server.

Good luck !
SGI

>
> ----- Original Message -----
> From: <sgi@mail.ru>
> To: <openldap-its@OpenLDAP.org>
> Sent: Wednesday, October 18, 2000 9:47 AM
> Subject: M$ Outlook crash slapd (ITS#844)
>
>
> > Full_Name: Serge Ivanchenko
> > Version: 2.0.6
> > OS: Linux-2.2.14
> > URL: ftp://ftp.openldap.org/incoming/
> > Submission from: (NULL) (208.135.251.216)
> >
> >
> > I tried to search something in my ldap server from M$ Outlook Express in
> result
> > I've got core dump :(
> >
> > P.S. Log is included
> >
> > .......................
> > daemon: select: listen=6 active_threads=0 tvp=NULL
> > daemon: activity on 1 descriptors
> > daemon: activity on: 9r
> > daemon: read activity on 9
> > connection_get(9)
> > connection_get(9): got connid=0
> > connection_read(9): checking for input on id=0
> > ber_get_next
> > sockbuf_read: want=1, got=1
> >   0000:  30                                                 0
> > sockbuf_read: want=1, got=1
> >   0000:  84                                                 .
> > sockbuf_read: want=4, got=4
> >   0000:  00 00 00 10                                        ....
> > sockbuf_read: want=16, got=16
> >   0000:  02 01 05 60 84 00 00 00  07 02 01 03 04 00 89 00
> ...`............
> > ber_get_next: tag 0x30 len 16 contents:
> > ber_dump: buf=0x080dfd10 ptr=0x080dfd10 end=0x080dfd20 len=16
> >   0000:  02 01 05 60 84 00 00 00  07 02 01 03 04 00 89 00
> ...`............
> > ber_get_next
> > do_bind
> > sockbuf_read: want=1 error=Resource temporarily unavailable
> > ber_get_next on fd 9 failed errno=11 (Resource temporarily unavailable)
> > daemon: select: listen=6 active_threads=1 tvp=NULL
> > ber_scanf fmt ({iat) ber:
> > ber_dump: buf=0x080dfd10 ptr=0x080dfd13 end=0x080dfd20 len=13
> >   0000:  60 84 00 00 00 07 02 01  03 04 00 89 00
`............
> > ber_scanf fmt (o}) ber:
> > ber_dump: buf=0x080dfd10 ptr=0x080dfd1e end=0x080dfd20 len=2
> >   0000:  89 00                                              ..
> > do_bind: version=3 dn="" method=137
> > conn=0 op=0 BIND dn="" method=137
> > slapd: result.c:397: send_ldap_result: Assertion `!(((0x51) <= ((
err )))
> && (((
> > err )) <= (0x61)))' failed.
> > Aborted
> >
>
>