<HTML><HEAD>
<META http-equiv=Content-Type content="text/html; charset=unicode">
<META content=Word.Document name=ProgId>
<META content="MSHTML 6.00.2900.2838" name=GENERATOR>
<META content="Microsoft Word 11" name=Originator>
<STYLE>
<!--
font-face
{font-family:Verdana;}
p.MsoNormal, li.MsoNormal, div.MsoNormal
{
margin:0in;
margin-bottom:.0001pt;
font-size:12.0pt;
font-family:"Times New Roman";}
a:link, span.MsoHyperlink
{color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{color:purple;
text-decoration:underline;}
p.MsoAutoSig, li.MsoAutoSig, div.MsoAutoSig
{margin:0in;
margin-bottom:.0001pt;
font-size:12.0pt;
font-family:"Times New Roman";}
p
{
margin-right:0in;
margin-left:0in;
font-size:12.0pt;
font-family:"Times New Roman";}
span.EmailStyle17
{
font-family:Verdana;
color:windowtext;
font-weight:normal;
font-style:normal;
text-decoration:none;
text-decoration:none;}
span.SpellE
{}
span.GramE
{}
div.Section1
{page:Section1;}
-->
</STYLE>
</HEAD>
<BODY lang=EN-US vLink=purple link=blue>
<DIV class=Section1>
<P class=MsoNormal><FONT face=Verdana size=2><SPAN style="FONT-SIZE: 10pt; FONT-FAMILY: Verdana">Hi,</SPAN></FONT></P>
<P class=MsoNormal><FONT face=Verdana size=2><SPAN style="FONT-SIZE: 10pt; FONT-FAMILY: Verdana"><SPAN> </SPAN>When <SPAN class=SpellE>Nessus</SPAN> was run against our two Domain Controllers, we received the following report:</SPAN></FONT></P>
<P><B><FONT face="Times New Roman" size=3><SPAN style="FONT-WEIGHT: bold; FONT-SIZE: 12pt">Synopsis</SPAN></FONT></B>: It is possible to disclose LDAP information.<BR><BR><B><SPAN style="FONT-WEIGHT: bold">Description</SPAN></B>: Improperly configured LDAP servers will allow any user to connect to<BR><SPAN class=GramE>the</SPAN> server and query it for information. <BR><BR><B><SPAN style="FONT-WEIGHT: bold">Solution</SPAN></B>: Disable NULL BIND on your LDAP server<BR><BR><B><SPAN style="FONT-WEIGHT: bold">Risk <SPAN class=GramE>Factor<SPAN style="FONT-WEIGHT: normal"> :</SPAN></SPAN></SPAN></B> Medium / CVSS Base Score : 5.0 <BR>(CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N)<BR><SPAN class=GramE>CVE :</SPAN> CVE-1999-0385<BR><SPAN class=GramE>BID :</SPAN> 503</P>
<P><FONT face="Times New Roman" size=3><SPAN style="FONT-SIZE: 12pt">Now when we look for a method to disable the null bind on out LDAP server, we are directed to a Microsoft update for MS Exchange 5.5.<SPAN> </SPAN>Since, we do use Exchange 5.5, <SPAN class=GramE>I <SPAN> </SPAN>don’t</SPAN> think it is this problem.</SPAN></FONT></P>
<P><FONT face="Times New Roman" size=3><SPAN style="FONT-SIZE: 12pt">Can someone let me know where I can go to find a method(s) to disable the null bind on my Windows 2003 LDAP server(s)?</SPAN></FONT></P>
<P class=MsoAutoSig><A name=_MailAutoSig><FONT face=Verdana size=2><SPAN style="FONT-SIZE: 10pt; FONT-FAMILY: Verdana">Thank you</SPAN></FONT></A></P>
<P class=MsoAutoSig><SPAN><FONT face=Verdana size=2><SPAN style="FONT-SIZE: 10pt; FONT-FAMILY: Verdana"></SPAN></FONT></SPAN> </P>
<P class=MsoAutoSig><SPAN><FONT face=Verdana size=2><SPAN style="FONT-SIZE: 10pt; FONT-FAMILY: Verdana"></SPAN></FONT></SPAN> </P>
<P class=MsoAutoSig><SPAN><FONT face=Verdana size=2><SPAN style="FONT-SIZE: 10pt; FONT-FAMILY: Verdana">P. J.</SPAN></FONT></SPAN></P></DIV></BODY></HTML>