http://threatpost.com/en_us/blogs/cert-releases-basic-fuzzing-framework-052710
Would be interesting to have a tool that can generate random data at arbitrary points in an LDAP session. Before Bind is the most obvious case, which we've tested many times before. But what about after a session has already been fully authenticated?
-- -- Howard Chu CTO, Symas Corp. http://www.symas.com Director, Highland Sun http://highlandsun.com/hyc/ Chief Architect, OpenLDAP http://www.openldap.org/project/
