> Sandy can probably explain better what is going on as he looked into > it on my server for me. Maybe he will chime in here. I'm actually not convinced that it all was the 'Cuda's fault. Grant and I worked on implementing ldap2aliases on his server, and with his few hundred domains, there was inconsistent behavior from OpenLDAP: some domains with a higher number of users and aliases performed flawlessly before and after the script ran, while others with very few users and aliases had to be reinitialized every first or second time. Despite the high number of LDAP requests overall, ldap2aliases runs synchronously, so I do not believe this was a simultaneous load issue; it looked more like a memory leak or some internal corruption.
I didn't sniff the line, so I don't know whether (a distinct possibility) ADSI sends some malformed LDAP requests under certain conditions, which would then point to both a bug in ADSI _and_ a vulnerability in OpenLDAP. Someday, I'll rewrite the stuff to use the LDAP C library (and not Microsoft's) directly, which would be a sounder test. --Sandy ------------------------------------ Sanford Whiteman, Chief Technologist Broadleaf Systems, a division of Cypress Integrated Systems, Inc. e-mail: [EMAIL PROTECTED] SpamAssassin plugs into Declude! http://www.mailmage.com/products/software/freeutils/SPAMC32/download/release/ Defuse Dictionary Attacks: Turn Exchange or IMail mailboxes into IMail Aliases! http://www.mailmage.com/products/software/freeutils/exchange2aliases/download/release/ http://www.mailmage.com/products/software/freeutils/ldap2aliases/download/release/ To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html List Archive: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/ Knowledge Base/FAQ: http://www.ipswitch.com/support/IMail/
