CSOonline

Critical Windows LDAP flaw could lead to crashed servers, RCE attacks

LDAPNightmare: If December Patch Tuesday server updates have not yet been installed, it’s time to do so to avoid DoS or RCE attacks on Active Directory domain controllers as shown by PoC exploit.
Houston Chronicle

What Is LDAP Authentication?

Business computer networks employ the Lightweight Directory Access Protocol, or LDAP, to distribute lists of information organized into hierarchies. To access a network's LDAP services, your computer ...
CSOonline

The cloud is not your only option: on-prem security still alive and well in Windows Server 2025

Reports of the demise of Windows Active Directory are greatly exaggerated – here’s how Microsoft is supporting AD in its latest server platform. We’ve often heard that on-premises solutions are on ...
Ars Technica

Issues with squid_ldap_auth against a windows AD Server

I posted this in the squid-users mailing list, but figured I'd try here as well. I've been trying to get this to work for a few days now.
Dark Reading

Unpatched Active Directory Flaw Can Crash Any Microsoft Server

One of two critical Active Directory Domain Controller vulnerabilities patched by Microsoft last month goes beyond the original denial-of-service (DoS) attack chain and can be used to crash multiple, ...
Ars Technica

How to restrict a Windows AD account for LDAP auth only?

I'm attempting to set up LDAP auth for our Linux servers (yes, I could use kerberos, but LDAP appears to be sufficient for the moment) against our Active Directory server. I'm able to authenticate the ...