176k views
3 votes
Angela is concerned about attackers enumerating her organization's LDAP directory. What LDAP controls should she recommend to help limit the impact of this type of data gathering?

A. LDAP replication
B. ACLs
C. Enable TLS
D. Use MD5 for storage of secrets

1 Answer

3 votes

Final answer:

Angela should recommend using ACLs, enabling TLS, and avoiding the use of MD5 for storage of secrets to limit the impact of attackers enumerating her organization's LDAP directory.

Step-by-step explanation:

Angela should recommend several LDAP controls to help limit the impact of attackers enumerating her organization's LDAP directory.

First, she should recommend using ACLs (Access Control Lists). ACLs allow organizations to restrict access to certain information in the directory, ensuring that only authorized individuals can view or modify the data.

Second, Angela should recommend enabling TLS (Transport Layer Security) to encrypt the LDAP communication between clients and servers. This ensures that sensitive data cannot be intercepted or tampered with by attackers.

Third, Angela should advise against using MD5 for storage of secrets. MD5 is a weak hashing algorithm that can be easily cracked, putting the secrets at risk of being exposed. Instead, she should recommend using stronger and more secure algorithms for storing secrets, such as SHA-256 or bcrypt.

User Mr Sam
by
7.8k points