If I have no LDAP configured, is my installation still vulnerable?

michielhaisma October 20, 2016

This question is in reference to Atlassian Documentation: Crowd Security Advisory 2016-10-19

Ask your question here...

1 answer

1 vote
Kim Slotte October 20, 2016

According to my understanding, your installation has then a quite low risk of a security breach. Only a admin are able to breach your installation by setting up some type of "invalid" LDAP that use the exploit. 

 

Suggest an answer

Log in or Sign up to answer
TAGS
AUG Leaders

Atlassian Community Events