As you may know, Apache's mod_authzn_ldap [http://httpd.apache.org/docs/2.2/mod/mod_authnz_ldap.html] allows to authenticate users in Apache HTTP server using an LDAP server. Unfortunately, it has a little implementation flaw. The filter used to authenticate the user is built by abusing