From: Graham Leggett <minfrin@apache.org>
Date: Fri, 21 May 2004 20:05:16 +0000 (+0000)
Subject: Mr ldap_simple_bind_s() bug, with three votes, you are the weakest link,
X-Git-Tag: pre_ajp_proxy~242
X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=933f4e69ae4a7792e5044d481fcf77ca8142135c;p=apache

Mr ldap_simple_bind_s() bug, with three votes, you are the weakest link,
goodbye.
PR:
Obtained from:
Submitted by:
Reviewed by:


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@103722 13f79535-47bb-0310-9956-ffa450edef68
---

diff --git a/CHANGES b/CHANGES
index fedc7cabd3..7650cb1612 100644
--- a/CHANGES
+++ b/CHANGES
@@ -390,6 +390,12 @@ Changes with Apache 2.1.0-dev
 
 Changes with Apache 2.0.50
 
+  *) mod_ldap calls ldap_simple_bind_s() to validate the user
+     credentials.  If the bind fails, the connection is left
+     in an unbound state.  Make sure that the ldap connection
+     record is updated to show that the connection is no longer
+     bound. [Brad Nicholes]
+                                                                                
   *) Ensure that lines in the request which are too long are 
      properly terminated before logging.
      [Tsurutani Naoki <turutani scphys.kyoto-u.ac.jp>]