Commit 3507e96b authored Nov 18, 2021 by Andrew Bartlett Committed by Douglas Bagnall Nov 25, 2021

CVE-2021-3670 ldap_server: Clearly log LDAP queries and timeouts

This puts all the detail on one line so it can be searched
by IP address and connecting SID.

This relies on the anr handling as otherwise this log
becomes the expanded query, not the original one.

RN: Provide clear logs of the LDAP search and who made it, including
a warning (at log level 3) for queries that are 1/4 of the hard timeout.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=14694



Signed-off-by: Andrew Bartlett <abartlet@samba.org>
Reviewed-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz>

Autobuild-User(master): Douglas Bagnall <dbagnall@samba.org>
Autobuild-Date(master): Thu Nov 25 02:30:42 UTC 2021 on sn-devel-184

parent 5f059036

Hide whitespace changes

Inline Side-by-side

Andrew Bartlett @abartlet
mentioned in commit 9aa03f40
· Dec 02, 2021

mentioned in commit 9aa03f40

mentioned in commit 9aa03f402b7af97384e44dd4417587ccf98e138d

Toggle commit list
Andrew Bartlett @abartlet
mentioned in commit 3e8d6e68
· Dec 02, 2021

mentioned in commit 3e8d6e68

mentioned in commit 3e8d6e681f8dbe79e4595549f78c42649b3573a2

Toggle commit list
Ralph Böhme 🔜 @slowfranklin
mentioned in merge request !2259 (closed)
· Dec 03, 2021

mentioned in merge request !2259 (closed)

mentioned in merge request !2259

Toggle commit list

Please register or to comment