> > i guess what he means is something like this: imagine the following filter: > > (&(objectClass=inetOrgPerson)(uid=$input)) > > where $input comes from a web form, or similar. if $input==')' you get > > (&(objectClass=inetOrgPerson)(uid=))) > > which is invalid. > > so some form of input validation must be used. > > please correct me if i'm wrong > > best regards > burak It's have a login window. You can write your dn and password, after login you can search, list etc. But it's not to be too security. How can i stop them?
Sorry for my english. It's not good at all. good day. ------------------------------------------------------------------------------ Register Now & Save for Velocity, the Web Performance & Operations Conference from O'Reilly Media. Velocity features a full day of expert-led, hands-on workshops and two days of sessions from industry leaders in dedicated Performance & Operations tracks. Use code vel09scf and Save an extra 15% before 5/3. http://p.sf.net/sfu/velocityconf _______________________________________________ Python-LDAP-dev mailing list Python-LDAP-dev@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/python-ldap-dev
