As a reminder, the conference is scheduled for this October 6-8 in Tübingen, Germany. Workshops, presentations, discussions around LDAP, Directory Services, Identity Management, etc...
#LDAP
Jetzt wollen wir in der Arbeit auch den Passwortmanager in die Cloud hieven. Und was war der Vorschlag der Kollegen?#Passbolt mittels #VPN bei #Ionos. Hmm, musste kurz schmunzeln. Das ähnelt meinem Privaten Setup doch sehr. 😂 Natürlich wird das etwas mehr aufgebohrt mit Gruppenrechten, #LDAP muss auch dabei sein usw…. Ich bin gespannt, wer es umsetzen darf. Wenn es läuft, wird wohl #Nextcloud angegangen. So wenig wie möglich bei #Microsoft und Co. #OpenSource #digitalindependence
Apparently Pinterest fired two engineers for using ldapsearch https://www.cnbc.com/2026/02/03/pinterest-ceo-puts-staffers-on-blast-who-created-tool-to-track-layoffs.html
"Pinterest fired the engineers after they posted instructions showing how to prompt the company’s staff directory to show who was laid off, the employees said. The employees said Pinterest’s claim that the engineers created custom software was inaccurate, and said the directory tool is accessible to anyone in the company." #LDAP
Save the Date: LDAPCon returns in 2026! 📣
After 7 years, #LDAPCon is back — OCT 6–8 in Tübingen, Germany!
3 days of workshops, talks, & networking around #LDAP, directory services, and #IdM.
More details and a website will follow.
Bug Bounty Tutorial Series—Part 2: Understanding SSRF (Server-Side Request Forgery)
This article focuses on Server-Side Request Forgery (SSRF), a technique used to execute requests from a vulnerable server to internal or external resources controlled by an attacker. The underlying flaw revolved around insufficient validation of user input in a DNS resolver component, allowing the researcher to control the hostname and manipulate requests made via the resolver. By crafting a specially-crafted payload using JavaScript to invoke an LDAP query against an internal Microsoft Active Directory server, the researcher obtained the domain administrator's email address. The article explains that SSRF attacks can be used for various malicious purposes like lateral movement, data exfiltration, and reconnaissance. The researcher received a bounty of $1000, with the organization addressing the issue by whitelisting trusted IP ranges and disabling external DNS resolution where possible. Key lesson: Validate user input in resolvers to prevent Server-Side Request Forgery attacks and their potential consequences. #BugBounty #SSRF #Cybersecurity #WebSecurity #LDAP
🔐 LDAP es el protocolo que permite gestionar usuarios y accesos en redes empresariales. Conoce cómo funciona, sus puertos y aplicaciones prácticas. 💻
Lee más 👉 https://www.soloingenieria.org/ingenieria-en-sistemas-computacionales/ldap/
Imagen creada con IA.
#LDAP #RedesDeComputadoras #SeguridadInformática #ProtocolosDeRed #IngenieríaEnSistemas #TecnologíaEmpresarial
Sin LDAP, cada aplicación empresarial necesitaría su propia base de usuarios. Este protocolo unifica todo en un solo directorio. La centralización bien aplicada ahorra tiempo y reduce errores. 🔐
#LDAP #RedesDeComputadoras #SeguridadInformática #ProtocolosDeRed #IngenieríaEnSistemas #TecnologíaEmpresarial
AlpOSS – Le Renouveau de l'Écosystème Open Source Alpin
AlpOSS 2026: The Rise of a Regional Open Source Powerhouse
Worteks kehrt auf die AlpOSS 2026 zurück
🏔️ Worteks revient à AlpOSS ! 🏔️
💬 Rendez-vous sur notre stand pour discuter avec nos experts.
🎤 Cette année, @clementoudot animera la conférence : “Des outils IAM Open Source pour OpenLDAP et Active Directory, votre RSSI vous dira merci !”
📅 17 février 2026
📍 Échirolles
🎟️ Inscription sur : https://alposs.fr
Organisé par @echirolles @Belledonne_Communications et @ow2
I’ve documented a clean, native way to integrate FreeBSD 15 into a FreeIPA realm. No heavy dependencies, no Python shims, just pure Kerberos (GSSAPI) and nslcd.
We get full SSH SSO, automated home directories, and centralized sudo rules using standard BSD tools. Pure, stateless, and sane.
How to Deploy #LDAP Server and Client on Rocky Linux #VPS (389 Directory Server Guide) Below is a comprehensive, step-by-step guide to deploying the 389 Directory Server on Rocky Linux VPS instances, and configuring a separate Rocky Linux machine as an LDAP client.
It covers everything from package installation and initial instance setup, through ...
Continued 👉 https://blog.radwebhosting.com/how-to-deploy-ldap-server-and-client-on-rocky-linux-vps-389-directory-server-guide/?utm_source=mastodon&utm_medium=social&utm_campaign=mastodon.social #rockylinux #selfhosting #security #selfhosted #opensource #directoryserver #letsencrypt #identitymanagement
How to Deploy #LDAP Server and Client on Rocky Linux #VPS (389 Directory Server Guide) Below is a comprehensive, step-by-step guide to deploying the 389 Directory Server on Rocky Linux VPS instances, and configuring a separate Rocky Linux machine as an LDAP client.
It covers everything from package installation and initial instance setup, through ...
Continued 👉 https://blog.radwebhosting.com/how-to-deploy-ldap-server-and-client-on-rocky-linux-vps-389-directory-server-guide/?utm_source=mastodon&utm_medium=social&utm_campaign=mastodon.social #security #selfhosting #opensource #rockylinux #directoryserver #selfhosted #letsencrypt #identitymanagement
How to Deploy #LDAP Server and Client on Rocky Linux #VPS (389 Directory Server Guide) Below is a comprehensive, step-by-step guide to deploying the 389 Directory Server on Rocky Linux VPS instances, and configuring a separate Rocky Linux machine as an LDAP client.
It covers everything from package installation and initial instance setup, through ...
Continued 👉 https://blog.radwebhosting.com/how-to-deploy-ldap-server-and-client-on-rocky-linux-vps-389-directory-server-guide/?utm_source=mastodon&utm_medium=social&utm_campaign=mastodon.raddemo.host #selfhosting #directoryserver #rockylinux #letsencrypt #opensource #identitymanagement #security #selfhosted
Как не внимательная установка безобидного ПО, может привести к компрометации всего домена
В этой статье речь пойдет об интересном кейсе захвата компании во время проекта по пентесту. Подробно разберем причины пробелов в безопасности и как предотвращать такие проблемы в будущем. Будет много практики по Active Directory, RBCD, PostgresSQL и реальных инструментов, которые используются современными специалистами по проникновению.
https://habr.com/ru/companies/hex_team/articles/988008/
#redteam #pentest #activedirectory #windows #kerberos #rce #rbcd #ldap #privelege_escalation #цифровая_гигиена
How to Deploy #LDAP Server and Client on Rocky Linux #VPS (389 Directory Server Guide) Below is a comprehensive, step-by-step guide to deploying the 389 Directory Server on Rocky Linux VPS instances, and configuring a separate Rocky Linux machine as an LDAP client.
It covers everything from package installation and initial instance setup, through ...
Continued 👉 https://blog.radwebhosting.com/how-to-deploy-ldap-server-and-client-on-rocky-linux-vps-389-directory-server-guide/?utm_source=mastodon&utm_medium=social&utm_campaign=mastodon.social #identitymanagement #rockylinux #selfhosting #directoryserver #letsencrypt #selfhosted #security #opensource
🎊 LTB Service Desk 0.8 released!
ℹ️ LDAP Tool Box Service Desk is a web application for administrators and support teams. It allows to browse and manage (create/modify/delete) accounts in an LDAP directory, view and update their password and security status.
🆕 Improvements on hooks, performances, password history viewer and attributes properties (mandatory, tooltips, patterns)
🔗 https://projects.ow2.org/view/ldaptoolbox/ltb-service-desk-0-8-released
See you next month at @alposs !
I hit a big(ish) limitation with lldap.
I can not use it for samba authentication. It needs objects specifically for Samba, which lldap doesn't support.
Fortunately, I don't have a lot of users on my file server. So I can use lldap for user and group id mapping, but then a local smbpasswd file for auth.
Client Info
Server: https://mastodon.social
Version: 2025.07
Repository: https://github.com/cyevgeniy/lmst