LanDscAPe: Exploring LDAP Weaknesses and Data Leaks at Internet Scale
Jonas Kaspereit, Gurur Öndarö, Gustavo Luvizotto Cesar, Simon Ebbers, Fabian Ising, Christoph Saatjohann, Mattijs Jonker, Ralph Holz, Sebastian Schinzel
33rd USENIX Security Symposium · Day 1 · USENIX Security '24
This talk, presented by Jonas Kaspereit and a team of researchers from FH Münster and other institutions, unveils the findings of a groundbreaking, internet-wide study into the security posture of Lightweight Directory Access Protocol (**LDAP**) servers. Titled "LanDscAPe," the research highlights pervasive misconfigurations, insecure practices, and widespread data leaks affecting critical infrastructure globally. The presentation details the methodology behind scanning the entire IPv4 internet space for exposed LDAP services, meticulously analyzing their configurations, and identifying the extent of sensitive information, including personal data and plain-text credentials, made publicly accessible.
AI review
This groundbreaking internet-scale study into LDAP security posture unveils pervasive misconfigurations and millions of exposed credentials, including plaintext passwords. The research, backed by a novel methodology and extensive data, provides an urgent and actionable call for defenders to secure foundational directory services. This isn't just research; it's a critical alarm bell.