Escape LDAP filter chars

[stroeder]

Your module is prone to LDAP injection attacks.
You should properly escape special LDAP filter chars in user's input probably in method LDAP._search().

[fschulze]

Help with this is appreciated. Especially raw example data which can be used in tests.