Different parameters in Samba 3 and Samba 4
Jelmer Vernooij
jelmer at samba.org
Tue Oct 21 13:10:17 GMT 2008
I had a look at what parameters are only present in Samba 3 and not
Samba 4 and the other way around.
Here is the list - lines with - are what's in Samba 3, + is what's in
Samba 4.
+ server role = standalone
+ ncalrpc dir = /usr/local/samba/var/ncalrpc
- display charset = LOCALE
+ display charset =
- config backend = file
+ ntptr providor = simple_ldb
+ dcerpc endpoint servers = epmapper, srvsvc, wkssvc, rpcecho, samr,
netlogon, lsarpc, spoolss, drsuapi, winreg, dssetup, unixinfo
+ server services = smb, rpc, nbt, wrepl, ldap, cldap, kdc, drepl,
winbind, ntp_signd
- auth methods =
- update encrypted = No
- client schannel = Auto
- server schannel = Auto
- allow trusted domains = Yes
- map to guest = Never
- smb passwd file = /usr/local/samba/private/smbpasswd
+ sam database = sam.ldb
+ idmap database = idmap.ldb
+ secrets database = secrets.ldb
+ spoolss database = spoolss.ldb
+ wins config database = wins_config.ldb
+ wins database = wins.ldb
- passdb backend = smbpasswd
- algorithmic rid base = 1000
- root directory =
- guest account = nobody
- enable privileges = Yes
- pam password change = No
- passwd program =
- passwd chat debug = No
- passwd chat timeout = 2
- check password script =
- username map =
- username level = 0
- unix password sync = No
- restrict anonymous = 0
- lanman auth = No
+ lanman auth = Yes
- client lanman auth = No
+ client lanman auth = Yes
- preload modules =
- use kerberos keytab = No
+ client use spnego principal = No
- syslog = 1
- syslog only = No
- max log size = 5000
- debug timestamp = Yes
- debug prefix timestamp = No
- debug hires timestamp = No
- debug pid = No
- debug uid = No
- debug class = No
- enable core files = Yes
+ nbt port = 137
+ dgram port = 138
+ cldap port = 389
+ krb5 port = 88
+ kpasswd port = 464
+ web port = 901
+ tls enabled = Yes
+ tls keyfile = tls/key.pem
+ tls certfile = tls/cert.pem
+ tls cafile = tls/ca.pem
+ tls crlfile =
+ tls dh params file =
+ swat directory = /usr/local/samba/swat
- max protocol = NT1
- min protocol = CORE
- min receivefile size = 0
+ server max protocol = NT1
+ server min protocol = CORE
+ client max protocol = NT1
+ client min protocol = CORE
+ unicode = Yes
- reset on zero vc = No
- acl compatibility = auto
- defer sharing violations = Yes
- nt pipe support = Yes
- max xmit = 16644
+ max xmit = 12288
- name resolve order = lmhosts wins host bcast
+ name resolve order = wins, host, bcast
- max ttl = 259200
- min wins ttl = 21600
+ min wins ttl = 10
- unix extensions = Yes
+ unix extensions = No
- client signing = auto
+ client signing = Yes
- server signing = No
+ server signing = auto
- client use spnego = Yes
- client ldap sasl wrapping = plain
- enable asu support = No
- svcctl list =
- deadtime = 0
- getwd cache = Yes
- keepalive = 300
- lpq cache time = 30
- max smbd processes = 0
+ rpc big endian = No
- max disk size = 0
- max open files = 10000
- use mmap = Yes
- hostname lookups = No
- name cache timeout = 660
- ctdbd socket =
- cluster addresses =
- clustering = No
- load printers = Yes
- printcap cache time = 750
- printcap name =
- cups server =
- cups connection timeout = 30
- iprint server =
- disable spoolss = No
- addport command =
- enumports command =
- addprinter command =
- deleteprinter command =
- show add printer wizard = Yes
- os2 driver map =
- mangling method = hash2
- mangle prefix = 1
- max stat cache size = 256
- stat cache = Yes
- machine password timeout = 604800
- add user script =
- rename user script =
- delete user script =
- add group script =
- delete group script =
- add user to group script =
- delete user from group script =
- set primary group script =
- add machine script =
- shutdown script =
- abort shutdown script =
- username map script =
- logon script =
- logon path = \\%N\%U\profile
- logon drive =
- logon home = \\%N\%U
- domain logons = No
- init logon delayed hosts =
- init logon delay = 100
- os level = 20
- lm announce = Auto
- lm interval = 60
- preferred master = No
+ preferred master = Auto
- domain master = Auto
- browse list = Yes
- enhanced browsing = Yes
- dns proxy = Yes
- wins proxy = No
+ dns proxy = Yes
- kernel oplocks = Yes
- lock spin time = 200
- oplock break wait time = 0
- ldap admin dn =
- ldap delete dn = No
- ldap group suffix =
- ldap idmap suffix =
- ldap machine suffix =
- ldap passwd sync = no
- ldap replication sleep = 1000
- ldap suffix =
- ldap ssl =
- ldap timeout = 15
- ldap connection timeout = 2
- ldap page size = 1024
- ldap user suffix =
- ldap debug level = 0
- ldap debug threshold = 10
- eventlog list =
- add share command =
- change share command =
- delete share command =
- config file =
+ share backend = classic
- lock directory = /usr/local/samba/var/locks
+ lock dir = /usr/local/samba/var/locks
+ modules dir = /usr/local/samba/lib
- utmp directory =
- wtmp directory =
- utmp = No
- default service =
- message command =
- get quota command =
- set quota command =
- remote announce =
- remote browse sync =
+ setup directory =
- homedir map =
- afs username map =
- afs token lifetime = 604800
- log nt token command =
- time offset = 0
- NIS homedir = No
- registry shares = No
- usershare allow guests = No
- usershare max shares = 0
- usershare owner only = Yes
- usershare path = /usr/local/samba/var/locks/usershares
- usershare prefix allow list =
- usershare prefix deny list =
- usershare template share =
- panic action = /bin/sleep 999999999
- host msdfs = Yes
- passdb expand explicit = No
- idmap backend = tdb
- idmap alloc backend =
- idmap cache time = 604800
- idmap negative cache time = 120
- idmap uid =
- idmap gid =
- template homedir = /home/%D/%U
- template shell = /bin/false
+ panic action =
+ host msdfs = No
- winbind cache time = 300
- winbind reconnect delay = 30
- winbind enum users = No
- winbind enum groups = No
- winbind use default domain = No
- winbind trusted domains only = No
- winbind nested groups = Yes
- winbind expand groups = 1
- winbind nss info = template
- winbind refresh tickets = No
- winbind offline logon = No
- winbind normalize names = No
- winbind rpc only = No
+ winbindd socket directory =
+ winbindd privileged socket directory =
+ winbind sealed pipes = Yes
+ template shell = /bin/false
+ template homedir = /home/%WORKGROUP%/%ACCOUNTNAME%
+ idmap trusted only = No
+ ntp signd socket directory =
+ prefork children:smb = 4
+ registry:hkey_users = hku.ldb
+ registry:hkey_local_machine = hklm.ldb
+ auth methods:standalone = anonymous sam_ignoredomain
+ auth methods:member server = anonymous sam winbind
+ auth methods:domain controller = anonymous sam_ignoredomain
- username =
- invalid users =
- valid users =
- admin users =
- read list =
- write list =
- printer admin =
- force user =
- force group =
+ ntvfs handler = unixuid, default
- acl check permissions = Yes
- acl group control = No
- acl map full control = Yes
- security mask = 0777
- force security mode = 00
- directory security mask = 0777
- force directory security mode = 00
- force unknown acl user = No
- inherit permissions = No
- inherit acls = No
- inherit owner = No
- guest only = No
- administrative share = No
- guest ok = No
- only user = No
- allocation roundup size = 1048576
- aio read size = 0
- aio write size = 0
- aio write behind =
- ea support = No
- nt acl support = Yes
- profile acls = No
- map acl inherit = No
- afs share = No
- smb encrypt = auto
- block size = 1024
- change notify = Yes
- directory name cache size = 100
- kernel change notify = Yes
- max connections = 0
- min print space = 0
- strict allocate = No
+ max connections = -1
- sync always = No
- use sendfile = No
- write cache size = 0
- max reported print jobs = 0
+ case insensitive filesystem = No
- printing = cups
- cups options =
- print command =
- lpq command = %p
- lprm command =
- lppause command =
- lpresume command =
- queuepause command =
- queueresume command =
- use client driver = No
- default devmode = Yes
- force printername = No
- printjob username = %U
- default case = lower
- case sensitive = Auto
- preserve case = Yes
- short preserve case = Yes
- mangling char = ~
- hide dot files = Yes
- hide special files = No
- hide unreadable = No
- hide unwriteable files = No
- delete veto files = No
- veto files =
- hide files =
- veto oplock files =
- map readonly = yes
- mangled names = Yes
- store dos attributes = No
- dmapi support = No
- blocking locks = Yes
- fake oplocks = No
- locking = Yes
- level2 oplocks = Yes
- oplock contention limit = 2
- posix locking = Yes
- strict locking = Auto
+ strict locking = Yes
- share modes = Yes
- dfree cache time = 0
- dfree command =
- preexec =
- preexec close = No
- postexec =
- root preexec =
- root preexec close = No
- root postexec =
- set directory = No
- wide links = Yes
- follow symlinks = Yes
- dont descend =
- magic script =
- magic output =
- delete readonly = No
- dos filemode = No
- dos filetimes = Yes
- dos filetime resolution = No
- fake directory create times = No
- vfs objects =
- msdfs proxy =
Cheers,
jelmer
--
Jelmer Vernooij <jelmer at samba.org> - http://samba.org/~jelmer/
Jabber: jelmer at jabber.fsfe.org
More information about the samba-technical
mailing list