Samba 3.0.6 Available for Download

Gerald (Jerry) Carter jerry at samba.org
Fri Aug 20 02:35:25 GMT 2004 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

(Samba goes for the gold!)

This is the latest stable release of Samba. This is the version
that production Samba servers should be running for all
current bug-fixes.  There have been several issues fixes since
the 3.0.4/5 release and new features have been added as well.
See the "Changes" section of the release notes for details
on exact updates.

Common bugs fixed in 3.0.6 include:

~  o Schannel failure in winbindd.
~  o Numerous memory leaks.
~  o Incompatibilities between the 'write list' and 'force user'
~    smb.conf options.
~  o Premature optimization of the open_directory() internal
~    function that broke tools such as the ArcServe backup
~    agent, Macromedia HomeSite, and Robocopy.
~  o Corrupt workgroup names in nmbd's browse.dat.
~  o Sharing violation errors commonly seen when opening
~    when serving Microsoft Office documents from a Samba
~    file share.
~  o Browsing problems caused by an apostrophe (') in the
~    computer's description field.
~  o Problems creating special file types from UNIX CIFS
~    clients and enabling 'unix extensions'.
~  o Fix stalls in smbd caused by inaccessible LDAP servers.
~  o Fix issues in the password lockout feature.

New features introduced in this release include:

~  o Support symlinks created by CIFS clients which
~    can be followed on the server.
~  o Using a cups server other than localhost.
~  o Maintaining the service principal entry in the system
~    keytab for integration with other kerberized services.
~    Please refer to the 'use kerberos keytab' entry in
~    smb.conf(5).  When using the heimdal kerberos libraries,
~    you must also specify the following in /etc/krb5.conf:
~    [libdefaults]
~       default_keytab_name = FILE:/etc/krb5.keytab
~  o Support for maintaining individual printer names
~    stored separately from the printer's sharename.
~  o Support for maintaining user password history.
~  o Support for honoring the logon times for user in a
~    Samba domain.


smb.conf changes
- ----------------

~    Parameter Name              Action
~    --------------              ------
~    cups server                 New
~    defer sharing violations    New
~    force unknown acl user      New
~    ldap timeout                New
~    printcap cache time         New
~    use kerberos keytab         New


- --------------------------------------------
unix extensions = yes (default) and symlinks
- --------------------------------------------

Beginning with Samba 3.0.6pre1 (formerly known as 3.0.5pre1), clients
supporting the UNIX extensions to the CIFS protocol can create symlinks to
absolute paths which will be **followed** by the server.  This
functionality has been requested in order to correctly support certain
applications when the user's home directory is mounted using some type of
CIFS client (e.g. the cifsvfs in the Linux 2.6 kernel).

If this behavior is not acceptable for your production environment you can
set 'wide links = no' in the specific share declaration in the server's
smb.conf.  Be aware that disabling wide link support out of a share in
Samba may impact the server's performance due to the fact that smbd will
now have to check each path additional times before traversing it.

- ------------------------
Password History Support
- ------------------------

The new password history feature allows smbd to check the new password in
password change requests against a list of the user's previous passwords.
The number of previous passwords to save can be set using pdbedit (4 in
this example):

~   root# pdbedit -P "password history" -C 4

When using the ldapsam passdb backend, it is vital to secure the following
attributes from access by non-administrative users:

~   * sambaNTPassword
~   * sambaLMPassword
~   * sambaPasswordHistory

You should refer to your directory server's documentation on how to
implement this restriction.

~                  ---------------------------------

The source code can be downloaded from :

~  http://download.samba.org/samba/ftp/

The uncompressed tarball and patch file have been signed using GnuPG.
The Samba public key is available at

~  http://download.samba.org/samba/ftp/samba-pubkey.asc

Binary packages are available at

~  http://download.samba.org/samba/ftp/Binary_Packages/

The release notes are also available on-line at

~  http://www.samba.org/samba/whatsnew/samba-3.0.6.html

Our Code, Our Bugs, Our Responsibility.  (https://bugzilla.samba.org/)

~                                  --Enjoy
~                                  The Samba Team
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFBJWNtIR7qMdg1EfYRAmfTAKDep5pAgyPx0iqMY/BfitM9Knxa0ACePGu+
FnhaE6Kugb+wTWmxgNwrT6U=
=iQU+
-----END PGP SIGNATURE-----

More information about the samba-technical mailing list