Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

If I have no LDAP configured, is my installation still vulnerable?

michielhaisma
michielhaisma
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
October 20, 2016

This question is in reference to Atlassian Documentation: Crowd Security Advisory 2016-10-19

Ask your question here...

Answer
Watch
Like Be the first to like this
416 views

1 answer

1 vote
Kim Slotte
Kim Slotte October 20, 2016

According to my understanding, your installation has then a quite low risk of a security breach. Only a admin are able to breach your installation by setting up some type of "invalid" LDAP that use the exploit. 

 

Reply

Suggest an answer

Log in or Sign up to answer
Crowd
Crowd
TAGS
AUG Leaders

Atlassian Community Events

    See all events