Wireshark-bugs: [Wireshark-bugs] [Bug 3440] Failure to dissect long SASL wrapped LDAP response

Date: Tue, 16 Jun 2009 04:08:09 -0700 (PDT)
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=3440


Graeme Lunt <graeme@xxxxxxxxxxx> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |graeme@xxxxxxxxxxx




--- Comment #2 from Graeme Lunt <graeme@xxxxxxxxxxx>  2009-06-16 04:08:07 PDT ---
(In reply to comment #1)
> Any comments on this bug ??
> 

OK - lets see if we can get to the bottom of this and find the right solution.

As I see it, the LDAP dissector currently knows if SASL authentication was
used, but not if SASL integrity or confidentiality services have negotiated
(requested by the client). If it knew a security layer had been negotiated,
then it would know that any PDU was SASL, regardless of the PDU size.

The security layer negotiation is mechanism specific and I guess we are looking
at GSSAPI in your case?

Would that be a sensible, solution?

Also, in your scenario, you appear to be using SASL for integrity or
confidentiality services - but you imply there is also an SSL layer (presumably
providing confidentiality). Is this correct?

Thanks,

Graeme


-- 
Configure bugmail: https://bugs.wireshark.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.