[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: (ITS#8057) slapo-unique can be bypassed by anyone
--On Tuesday, April 07, 2015 4:01 AM +0000 quanah@zimbra.com wrote:
> --On Saturday, February 14, 2015 6:16 PM +0000 ondra@mistotebe.net wrote:
>
>> Full_Name: Ondrej Kuznik
>> Version: master
>> OS:
>> URL:
>> ftp://ftp.openldap.org/pub/Ondrej-Kuznik-20150214-ITS-8057-uniqueness-ACL
>> .patch Submission from: (NULL) (86.177.93.243)
>>
>>
>> This is caused by my fix for #6641. Since anyone can specify the
>> manageDSAit control on an operation it is trivial to bypass the
>> uniqueness check as it stands.
>
> This "fix" causes OpenLDAP to crash during replication:
>
> <http://fpaste.org/207817/70741142/>
Also crashes when using ldapmodify -M or ldapmodrdn -M
--Quanah
--
Quanah Gibson-Mount
Platform Architect
Zimbra, Inc.
--------------------
Zimbra :: the leader in open source messaging and collaboration