Sure, We will not be moving to 1.0.0 until its had a full 120 day dev QA, so far there are a lot of bugs that need to be worked out.
1. https://securitytraning.com/ldap-injection-attacks-web-for-pentester/ 2. https://www.hackthis.co.uk/forum/hacking-security/tutorials-articles/604-ldap-injection-tutorial 3. https://tools.kali.org/information-gathering/enum4linux I can cite a lot more, but we are running advanced security labs with tools that can rip a network apart if not correctly isolated. So this is why we don't use LDAP which can be exploited. Hope this helps. Thank you for the reference to the guacamole-auth-json I was unaware that this would generate urls and tokens, but fully aware it does authenticate users in a static template. I will look in to custom extensions. Thank You -- Sent from: http://apache-guacamole-general-user-mailing-list.2363388.n4.nabble.com/
