If you are using Win2k Professional LDP.EXE from the resource kit
is a simple but functional LDAP client.
Construct queries, playing around will often reveal a lot.
ld = ldap_open("victim-server", 389);
ldap_search_s(ld, "dc=victim,dc=com", 2, "cn=*", attrList, 0, &msg)
ldap_search_s(ld, "dc=victim,dc=com", 0, "objectclass=*", attrList, 0,
&msg)
ldap_search_s(ld, "dc=victim,dc=com", 2, "name=*", attrList, 0, &msg)
Expanding base 'dc=victim,dc=com'...
Adrien de Beaupré, CISSP, GCIH, MCSE
IT Security Specialist
Elytra Enterprises Inc.
----- Original Message -----
>
> LDAP uses an anonymous access for reading the tree, so if using a
Netscape
> browser you type:
>
> ldap://machine.com:<port>/o=suffix??sub?
>
> you should see all the tree, including the ACI´s
>
> port is usually # 389
> and the machine.com must be the FQN.
>
> hope this help
>
>
>
>
----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/
This archive was generated by hypermail 2b30 : Mon Oct 15 2001 - 21:42:56 PDT