-######################################################################
-Changes
-#######
-Changes since 3.0.1pre2
------------------------
-
-Please refer to the CVS log for the SAMBA_3_0 branch for complete
-details:
-
-1) Skip over the winbind separator when looking up a user.
- This fixes the bug that prevented local users from
- matching an AD user when not running winbindd (bug 698).
-2) Fix a problem with configure on *BSD systems. Make sure
- we add -liconv etc to LDFLAGS.
-3) Fix core dump bug when security=server and the server goes
- away.
-4) Correct crash bug due to an empty munged dial string.
-5) Show locked files for -u <user> (bug 590).
-6) Fix bug preventing print jobs from display in the queue
- monitor used by Windows NT and later clients (bug 660).
-7) Fix several reported problems with point-n-print from
- Windows 2000/XP clients due to a bug in the EnumPrinterDataEx()
- reply (bug 338, 527 & 643).
-8) Fix a handful of potential memory leaks in the LDAP code used
- by ldapsam[_compat] and the LDAP idmap backend.
-
-
-Changes since 3.0.1pre1
------------------------
-
-1) Match Samba 2.2 behavior; make ACB_NORMAL the default ACB value.
-2) Updated Japanese welcome file in SWAT.
-3) Fix to nt-time <-> unix-time functions reversible.
-4) Ensure that winbindd uses the the escaped DN when querying
- an AD ldap server.
-5) Fix portability issues when compiling (bug 505, 550)
-6) Compile fix for tdbbackup when Samba needs to override
- non-C99 compliant implementations of snprintf().
-7) Use @PICSUFFIX@ instead of .po in Makefile.in (bug 574).
-8) Make sure we break out of samsync loop on error.
-9) Ensure error code path doesn't free unmalloc()'d memory
- (bug 628).
-10) Add configure test for krb5_keytab_entry keyblock vs key
- member (bug 636).
-11) Fixed spinlocks.
-12) Modified testparm so that all output so all debug output goes
- to stderr, and all file processing goes to stdout.
-13) Fix error return code for BUFFER_TOO_SMALL in smbcacls
- and smbcquotas.
-14) Fix "NULL dest in safe_strcpy()" log message by ensuring that
- we have a devmode before copying a string to the devicename.
-15) Support mapping REALM.COM\user to a local user account (without
- running winbindd) for compatibility with 2.2.x release.
-16) Ensure we don't use mmap() on blacklisted systems.
-17) fixed a number of bugs and memory leaks in the AIX
- winbindd shim
-18) Call initgroups() in SWAT before becomming the user so that
- secondary group permissions can be used when writing to
- smb.conf.
-19) Fix signing problems when reverse connecting back to a
- client for printer notify
-20) Fix signing problems caused by a miss-sequence bug.
-21) Missing map in errormap for ERROR_MORE_DATA -> ERRDOS, ERRmoredata.
- Fixes NEXUS tools running on Win9x clients (bug 64).
-22) Don't leave the domain field uninitialized in cli_lsa.c if some
- SID could not be mapped.
-23) Fix segfault in mount.cifs helper when there is no options
- specified during mount.
-24) Change the \n after the password prompt to go to tty instead
- of stdout (bug 668).
-25) Stop net -P from prompting for machine account password (bug 451).
-26) Change in behavior to Not only change the effective uid but also
- the real uid when becoming unprivileged.
-27) Cope with Exchange 5.5 cleartext pop password auth.
-28) New files for support of initshutdown pipe. Win2k doesn't
- respond properly to all requests on the winreg pipe, so we need
- to handle this new pipe (bug 534).
-29) Added more va_copy() checks in configure.in.
-30) Include fixes for libsmbclient build problems.
-31) Missing UNIX -> DOS codepage conversion in lanman.c.
-32) Allow DFMS-S filenames can now have arbitrary case (bug 667).
-33) Parameterize the listen backlog in smbd and make it larger by
- default. A backlog of 5 is way too small these days.
-34) Check for an invalid fid before dereferencing the fsp pointer
- (bug 696).
-35) Remove invalid memory frees and return codes in pdb_ldap.c.
-36) Prompt for password when invoking --set-auth-user and no
- password is given.
-37) Bind the nmbd sending socket to the 'socket address'.
-38) Re-order link command for smbd, rpcclient and smbpasswd to ensure
- $LDFLAGS occurs before any library specification (bug 661).
-39) Fix large number of printf() calls for 64-bit size_t.
-40) Fix AC_CHECK_MEMBER so that SLES8 does correctly finds the
- keyblock in the krb5 structs.
-41) Remove #include <compat.h> in hopes to avoid problems with
- apache header files.
-42) COrrect winbindd build problems on HP-UX 11
-43) Lowercase netgroups lookups (bug 703).
-44) Use the actual size of the buffer in strftime instead of a made
- up value which just happens to be less than sizeof(fstring).
- (bug 713).
-45) Add ldaplibs to pdbedit link line (bug 651).
-46) Fix crash bug in smbclient completion (bug 659).
-47) Fix packet length for browse list reply (bug 771).
-48) Fix coredump in cli_get_backup_list().
-49) Make sure that we expand %N (bug 612).
-50) Allow rpcclient adddriver command to specify printer driver
- version (bug 514).
-51) Compile tdbdump by default.
-52) Apply patches to fix iconv detection for FreeBSD.
-53) Do not allow the 'guest account' to be added to a passdb backend
- using smbpasswd or pdbedit (bug 624).
-54) Save LDFLAGS during iconv detection (bug 57).
-55) Run krb5 logins through the username map if the winbindd
- lookup fails (bug 698).
-56) Add const for lp_set_name_resolve_order() to avoid compiler
- warnings (bug 471).
-57) Add support for the %i macro in smb.conf to stand in for the for
- the local IP address to which a client connected.
-58) Allow winbindd to match local accounts to domain SID when
- 'winbind trusted domains only = yes' (bug 680).
-59) Remove code in idmap_ldap that searches the user suffix and group
- suffix. It's not needed and provides inconsistent functionality
- from the tdb backend.
-60) Patch to handle munged dial string for Windows 200 TSE.
-61) Correct the "smbldap_open: cannot access when not root error"
- messages when looking up group information (bug 281).
-
-
-
-Changes since 3.0.0
--------------------
-
-Modified parameters
- * mangled map (deprecated)
-
-Removed Parameters
- * mangled stack (unused)
-
-
-1) Change the interface for init_unistr2 to not take a length
- but a flags field. We were assuming that
- 2*strlen(mb_string) == length of ucs2-le string. (bug 480).
-2) Allow d_printf() to handle strings with escaped quotation
- marks since the msg file includes the escape character (bug 489).
-3) Fix bad html table row termination in SWAT wizard code (bug 413).
-4) Fix to parse the level-2 strings.
-5) Fix for "valid users = %S" in [homes]. Fix read/write
- list as well.
-6) Change AC_CHECK_LIB_EXT to prepend libraries instead of append.
- This is the same way AC_CHECK_LIB works (bug 508).
-7) Testparm output fixes for clarity.
-8) Fix broken wins hook functionality -- i18n bug (bug 528).
-9) Take care of condition where DOS and NT error codes must differ.
-10) Default to using only built-in charsets when a working iconv
- implementation cannot be located.
-11) Wrap internals of sys_setgroups() so the sys_XX() call can
- be done unconditionally (bug 550).
-12) Remove duplicate smbspool link on SWAT's front page (bug 541).
-13) Save and restore CFLAGS before/after AC_PROG_CC. Ensures that
- --enable-debug=[yes|no] works correctly.
-14) Allow ^C to interrupt smbpasswd if using our getpass
- (e.g. smbpasswd command).
-15) Support signing only on RPC's (bug 167).
-16) Correct bug that prevented Excel 2000 clients from opening
- files marked as read-only.
-17) Portability fix bugs 546 - 549).
-18) Explicitly initialize the value of AR for vendor makes that don't
- do this (e.g. HPUX 11). (bug 552).
-19) More i18n fixes for SWAT (bug 413).
-20) Change the cwd before the postexec script to ensure that a
- umount will succeed.
-21) Correct double free that caused winbindd to crash when a DC
- is rebooted (bug 437).
-22) Fix incorrect mode sum (bug 562).
-23) Canonicalize SMB_INFO_ALLOCATION in the same was as
- SMB_FS_FULL_SIZE_INFORMATION (bug 564).
-24) Add script to generate *msg files.
-25) Add Dutch SWAT translation file.
-26) Make sure to call get_user_groups() with the full winbindd
- name for a user if he/she has one (bug 406).
-27) Fix up error code returns from Samba4 tester. Ensure invalid
- paths are validated the same way.
-28) Allow Samba3 to pass the Samba4 RAW-READ tests.
-29) Refuse to configure if --with-expsam=$BACKEND was used but no
- libraries were found for $BACKEND.
-30) Move sysquotas autoconf tests to a separate file.
-31) Match W2K w.r.t. writelock and writeclose. Samba4 torture
- tester
-32) Make sure that the files that contain the static_init_$subsystem;
- macro get recompiled after configure by removing the object
- files.
-33) Ensure canceling a blocking lock returns the correct error
- message.
-34) Match Samba 2.2, and make ACB_NORMAL the default ACB value.
-
-
-
-######################################################################
-
- =======================================
- The original 3.0.0 release notes follow
- =======================================
-
-
-Major new features:
--------------------
-
-1) Active Directory support. Samba 3.0 is now able to
- join a ADS realm as a member server and authenticate
- users using LDAP/Kerberos.
-
-2) Unicode support. Samba will now negotiate UNICODE on the wire
- and internally there is now a much better infrastructure for
- multi-byte and UNICODE character sets.
-
-3) New authentication system. The internal authentication system
- has been almost completely rewritten. Most of the changes are
- internal, but the new auth system is also very configurable.
-
-4) New default filename mangling system.