holm/egroupware
1
1
Fork 0
forked from extern/egroupware
Code Issues Pull Requests Packages Projects Releases Wiki Activity

added a check agains ldap-insertion in the login-name

Browse Source
This commit is contained in:
Ralf Becker 2003-10-02 21:01:37 +00:00
parent 01dcc7cae1
commit c218e158b1
1 changed files with 6 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
phpgwapi/inc/class.auth_ldap.inc.php
View File

@ -37,6 +37,11 @@
*/ */
error_reporting(0); error_reporting(0);
if (ereg('[()|&=*,<>!~]',$username))
{
return False;
}
if(!$ldap = @ldap_connect($GLOBALS['phpgw_info']['server']['ldap_host'])) if(!$ldap = @ldap_connect($GLOBALS['phpgw_info']['server']['ldap_host']))
{ {
$GLOBALS['phpgw']->log->message('F-Abort, Failed connecting to LDAP server for authenication, execution stopped'); $GLOBALS['phpgw']->log->message('F-Abort, Failed connecting to LDAP server for authenication, execution stopped');