From: cvs2svn Import User <samba-bugs@samba.org>
Date: Sat, 16 Nov 2002 23:59:58 +0000 (+0000)
Subject: This commit was manufactured by cvs2svn to create branch 'SAMBA_3_0'.(This used to... 
X-Git-Tag: samba-4.0.0alpha6~801^2~15026
X-Git-Url: http://git.samba.org/samba.git/?p=ira%2Fwip.git;a=commitdiff_plain;h=6c7c5b64be7ceb657627f7afd91db73ccc7f3516;hp=ab539de20f9db300a1476a85bf768548c7280b68

This commit was manufactured by cvs2svn to create branch 'SAMBA_3_0'.(This used to be commit b3e68c1283aac417956ba8c21b7dd80fc55ab580)
---

diff --git a/docs/Samba-Developers-Guide.pdf b/docs/Samba-Developers-Guide.pdf
index dcfec122423..0f2c716a6d5 100644
--- a/docs/Samba-Developers-Guide.pdf
+++ b/docs/Samba-Developers-Guide.pdf
@@ -1,60 +1,60 @@
 %PDF-1.3
 %âãÏÓ
-1 0 obj<</Producer(htmldoc 1.8.22 Copyright 1997-2002 Easy Software Products, All Rights Reserved.)/CreationDate(D:20021105230851-0100)/Title(SAMBA Developers Guide)/Creator(Modular DocBook HTML Stylesheet Version 1.77)>>endobj
+1 0 obj<</Producer(htmldoc 1.8.22 Copyright 1997-2002 Easy Software Products, All Rights Reserved.)/CreationDate(D:20020930200402+0500)/Title(SAMBA Developers Guide)/Creator(Modular DocBook HTML Stylesheet Version 1.76b+)>>endobj
 2 0 obj<</Type/Encoding/Differences[ 32/space/exclam/quotedbl/numbersign/dollar/percent/ampersand/quotesingle/parenleft/parenright/asterisk/plus/comma/minus/period/slash/zero/one/two/three/four/five/six/seven/eight/nine/colon/semicolon/less/equal/greater/question/at/A/B/C/D/E/F/G/H/I/J/K/L/M/N/O/P/Q/R/S/T/U/V/W/X/Y/Z/bracketleft/backslash/bracketright/asciicircum/underscore/grave/a/b/c/d/e/f/g/h/i/j/k/l/m/n/o/p/q/r/s/t/u/v/w/x/y/z/braceleft/bar/braceright/asciitilde 128/Euro 130/quotesinglbase/florin/quotedblbase/ellipsis/dagger/daggerdbl/circumflex/perthousand/Scaron/guilsinglleft/OE 145/quoteleft/quoteright/quotedblleft/quotedblright/bullet/endash/emdash/tilde/trademark/scaron/guilsinglright/oe 159/Ydieresis/space/exclamdown/cent/sterling/currency/yen/brokenbar/section/dieresis/copyright/ordfeminine/guillemotleft/logicalnot/hyphen/registered/macron/degree/plusminus/twosuperior/threesuperior/acute/mu/paragraph/periodcentered/cedilla/onesuperior/ordmasculine/guillemotright/onequarter/onehalf/threequarters/questiondown/Agrave/Aacute/Acircumflex/Atilde/Adieresis/Aring/AE/Ccedilla/Egrave/Eacute/Ecircumflex/Edieresis/Igrave/Iacute/Icircumflex/Idieresis/Eth/Ntilde/Ograve/Oacute/Ocircumflex/Otilde/Odieresis/multiply/Oslash/Ugrave/Uacute/Ucircumflex/Udieresis/Yacute/Thorn/germandbls/agrave/aacute/acircumflex/atilde/adieresis/aring/ae/ccedilla/egrave/eacute/ecircumflex/edieresis/igrave/iacute/icircumflex/idieresis/eth/ntilde/ograve/oacute/ocircumflex/otilde/odieresis/divide/oslash/ugrave/uacute/ucircumflex/udieresis/yacute/thorn/ydieresis]>>endobj
 3 0 obj<</Type/Font/Subtype/Type1/BaseFont/Courier/Encoding 2 0 R>>endobj
-4 0 obj<</Type/Font/Subtype/Type1/BaseFont/Courier-Bold/Encoding 2 0 R>>endobj
-5 0 obj<</Type/Font/Subtype/Type1/BaseFont/Courier-Oblique/Encoding 2 0 R>>endobj
-6 0 obj<</Type/Font/Subtype/Type1/BaseFont/Times-Roman/Encoding 2 0 R>>endobj
-7 0 obj<</Type/Font/Subtype/Type1/BaseFont/Times-Bold/Encoding 2 0 R>>endobj
-8 0 obj<</Type/Font/Subtype/Type1/BaseFont/Times-Italic/Encoding 2 0 R>>endobj
-9 0 obj<</Type/Font/Subtype/Type1/BaseFont/Times-BoldItalic/Encoding 2 0 R>>endobj
-10 0 obj<</Type/Font/Subtype/Type1/BaseFont/Helvetica/Encoding 2 0 R>>endobj
-11 0 obj<</Type/Font/Subtype/Type1/BaseFont/Helvetica-Bold/Encoding 2 0 R>>endobj
-12 0 obj<</Type/Font/Subtype/Type1/BaseFont/Symbol>>endobj
-13 0 obj<</Subtype/Link/Rect[72.0 684.0 197.9 697.0]/Border[0 0 0]/Dest[524 0 R/XYZ 0 734 0]>>endobj
-14 0 obj<</Subtype/Link/Rect[108.0 670.8 174.9 683.8]/Border[0 0 0]/Dest[524 0 R/XYZ 0 696 0]>>endobj
-15 0 obj<</Subtype/Link/Rect[72.0 644.4 112.9 657.4]/Border[0 0 0]/Dest[526 0 R/XYZ 0 734 0]>>endobj
-16 0 obj<</Subtype/Link/Rect[72.0 618.0 409.3 631.0]/Border[0 0 0]/Dest[532 0 R/XYZ 0 734 0]>>endobj
-17 0 obj<</Subtype/Link/Rect[108.0 604.8 173.7 617.8]/Border[0 0 0]/Dest[532 0 R/XYZ 0 672 0]>>endobj
-18 0 obj<</Subtype/Link/Rect[108.0 591.6 237.6 604.6]/Border[0 0 0]/Dest[532 0 R/XYZ 0 201 0]>>endobj
-19 0 obj<</Subtype/Link/Rect[108.0 578.4 200.3 591.4]/Border[0 0 0]/Dest[534 0 R/XYZ 0 705 0]>>endobj
-20 0 obj<</Subtype/Link/Rect[72.0 552.0 219.9 565.0]/Border[0 0 0]/Dest[536 0 R/XYZ 0 734 0]>>endobj
-21 0 obj<</Subtype/Link/Rect[108.0 538.8 181.6 551.8]/Border[0 0 0]/Dest[536 0 R/XYZ 0 696 0]>>endobj
-22 0 obj<</Subtype/Link/Rect[108.0 525.6 244.6 538.6]/Border[0 0 0]/Dest[536 0 R/XYZ 0 529 0]>>endobj
-23 0 obj<</Subtype/Link/Rect[108.0 512.4 199.0 525.4]/Border[0 0 0]/Dest[536 0 R/XYZ 0 335 0]>>endobj
-24 0 obj<</Subtype/Link/Rect[108.0 499.2 200.3 512.2]/Border[0 0 0]/Dest[538 0 R/XYZ 0 734 0]>>endobj
-25 0 obj<</Subtype/Link/Rect[108.0 486.0 186.2 499.0]/Border[0 0 0]/Dest[538 0 R/XYZ 0 434 0]>>endobj
-26 0 obj<</Subtype/Link/Rect[72.0 459.6 252.9 472.6]/Border[0 0 0]/Dest[540 0 R/XYZ 0 734 0]>>endobj
-27 0 obj<</Subtype/Link/Rect[108.0 446.4 214.6 459.4]/Border[0 0 0]/Dest[540 0 R/XYZ 0 696 0]>>endobj
-28 0 obj<</Subtype/Link/Rect[108.0 433.2 223.8 446.2]/Border[0 0 0]/Dest[542 0 R/XYZ 0 734 0]>>endobj
-29 0 obj<</Subtype/Link/Rect[108.0 420.0 247.6 433.0]/Border[0 0 0]/Dest[544 0 R/XYZ 0 734 0]>>endobj
-30 0 obj<</Subtype/Link/Rect[108.0 406.8 245.2 419.8]/Border[0 0 0]/Dest[544 0 R/XYZ 0 514 0]>>endobj
-31 0 obj<</Subtype/Link/Rect[108.0 393.6 194.2 406.6]/Border[0 0 0]/Dest[546 0 R/XYZ 0 734 0]>>endobj
-32 0 obj<</Subtype/Link/Rect[126.0 380.4 193.8 393.4]/Border[0 0 0]/Dest[546 0 R/XYZ 0 700 0]>>endobj
-33 0 obj<</Subtype/Link/Rect[126.0 367.2 192.0 380.2]/Border[0 0 0]/Dest[546 0 R/XYZ 0 602 0]>>endobj
-34 0 obj<</Subtype/Link/Rect[126.0 354.0 244.5 367.0]/Border[0 0 0]/Dest[546 0 R/XYZ 0 491 0]>>endobj
-35 0 obj<</Subtype/Link/Rect[72.0 327.6 216.8 340.6]/Border[0 0 0]/Dest[548 0 R/XYZ 0 734 0]>>endobj
-36 0 obj<</Subtype/Link/Rect[72.0 301.2 202.8 314.2]/Border[0 0 0]/Dest[552 0 R/XYZ 0 734 0]>>endobj
-37 0 obj<</Subtype/Link/Rect[108.0 288.0 213.7 301.0]/Border[0 0 0]/Dest[552 0 R/XYZ 0 696 0]>>endobj
-38 0 obj<</Subtype/Link/Rect[108.0 274.8 209.1 287.8]/Border[0 0 0]/Dest[552 0 R/XYZ 0 568 0]>>endobj
-39 0 obj<</Subtype/Link/Rect[108.0 261.6 224.7 274.6]/Border[0 0 0]/Dest[554 0 R/XYZ 0 705 0]>>endobj
-40 0 obj<</Subtype/Link/Rect[126.0 248.4 223.5 261.4]/Border[0 0 0]/Dest[554 0 R/XYZ 0 630 0]>>endobj
-41 0 obj<</Subtype/Link/Rect[126.0 235.2 222.2 248.2]/Border[0 0 0]/Dest[554 0 R/XYZ 0 571 0]>>endobj
-42 0 obj<</Subtype/Link/Rect[126.0 222.0 245.8 235.0]/Border[0 0 0]/Dest[554 0 R/XYZ 0 513 0]>>endobj
-43 0 obj<</Subtype/Link/Rect[126.0 208.8 222.2 221.8]/Border[0 0 0]/Dest[554 0 R/XYZ 0 455 0]>>endobj
-44 0 obj<</Subtype/Link/Rect[126.0 195.6 219.8 208.6]/Border[0 0 0]/Dest[554 0 R/XYZ 0 383 0]>>endobj
-45 0 obj<</Subtype/Link/Rect[126.0 182.4 228.4 195.4]/Border[0 0 0]/Dest[554 0 R/XYZ 0 325 0]>>endobj
-46 0 obj<</Subtype/Link/Rect[126.0 169.2 225.9 182.2]/Border[0 0 0]/Dest[554 0 R/XYZ 0 266 0]>>endobj
-47 0 obj<</Subtype/Link/Rect[126.0 156.0 244.5 169.0]/Border[0 0 0]/Dest[554 0 R/XYZ 0 208 0]>>endobj
-48 0 obj<</Subtype/Link/Rect[126.0 142.8 242.1 155.8]/Border[0 0 0]/Dest[554 0 R/XYZ 0 149 0]>>endobj
-49 0 obj<</Subtype/Link/Rect[126.0 129.6 256.2 142.6]/Border[0 0 0]/Dest[556 0 R/XYZ 0 734 0]>>endobj
-50 0 obj<</Subtype/Link/Rect[126.0 116.4 253.7 129.4]/Border[0 0 0]/Dest[556 0 R/XYZ 0 675 0]>>endobj
-51 0 obj<</Subtype/Link/Rect[126.0 103.2 235.1 116.2]/Border[0 0 0]/Dest[556 0 R/XYZ 0 617 0]>>endobj
-52 0 obj<</Subtype/Link/Rect[126.0 90.0 232.6 103.0]/Border[0 0 0]/Dest[556 0 R/XYZ 0 558 0]>>endobj
-53 0 obj<</Subtype/Link/Rect[126.0 76.8 257.4 89.8]/Border[0 0 0]/Dest[556 0 R/XYZ 0 500 0]>>endobj
-54 0 obj<</Subtype/Link/Rect[126.0 63.6 254.9 76.6]/Border[0 0 0]/Dest[556 0 R/XYZ 0 428 0]>>endobj
-55 0 obj[13 0 R
+4 0 obj<</Type/Font/Subtype/Type1/BaseFont/Courier-Oblique/Encoding 2 0 R>>endobj
+5 0 obj<</Type/Font/Subtype/Type1/BaseFont/Times-Roman/Encoding 2 0 R>>endobj
+6 0 obj<</Type/Font/Subtype/Type1/BaseFont/Times-Bold/Encoding 2 0 R>>endobj
+7 0 obj<</Type/Font/Subtype/Type1/BaseFont/Times-Italic/Encoding 2 0 R>>endobj
+8 0 obj<</Type/Font/Subtype/Type1/BaseFont/Times-BoldItalic/Encoding 2 0 R>>endobj
+9 0 obj<</Type/Font/Subtype/Type1/BaseFont/Helvetica/Encoding 2 0 R>>endobj
+10 0 obj<</Type/Font/Subtype/Type1/BaseFont/Helvetica-Bold/Encoding 2 0 R>>endobj
+11 0 obj<</Type/Font/Subtype/Type1/BaseFont/Symbol>>endobj
+12 0 obj<</Subtype/Link/Rect[72.0 684.0 197.9 697.0]/Border[0 0 0]/Dest[467 0 R/XYZ 0 734 0]>>endobj
+13 0 obj<</Subtype/Link/Rect[108.0 670.8 174.9 683.8]/Border[0 0 0]/Dest[467 0 R/XYZ 0 696 0]>>endobj
+14 0 obj<</Subtype/Link/Rect[72.0 644.4 112.9 657.4]/Border[0 0 0]/Dest[467 0 R/XYZ 0 734 0]>>endobj
+15 0 obj<</Subtype/Link/Rect[72.0 618.0 356.5 631.0]/Border[0 0 0]/Dest[475 0 R/XYZ 0 734 0]>>endobj
+16 0 obj<</Subtype/Link/Rect[108.0 604.8 154.4 617.8]/Border[0 0 0]/Dest[475 0 R/XYZ 0 672 0]>>endobj
+17 0 obj<</Subtype/Link/Rect[108.0 591.6 218.3 604.6]/Border[0 0 0]/Dest[475 0 R/XYZ 0 201 0]>>endobj
+18 0 obj<</Subtype/Link/Rect[108.0 578.4 181.0 591.4]/Border[0 0 0]/Dest[477 0 R/XYZ 0 705 0]>>endobj
+19 0 obj<</Subtype/Link/Rect[72.0 552.0 167.0 565.0]/Border[0 0 0]/Dest[479 0 R/XYZ 0 734 0]>>endobj
+20 0 obj<</Subtype/Link/Rect[108.0 538.8 162.4 551.8]/Border[0 0 0]/Dest[479 0 R/XYZ 0 696 0]>>endobj
+21 0 obj<</Subtype/Link/Rect[108.0 525.6 225.3 538.6]/Border[0 0 0]/Dest[479 0 R/XYZ 0 529 0]>>endobj
+22 0 obj<</Subtype/Link/Rect[108.0 512.4 179.8 525.4]/Border[0 0 0]/Dest[479 0 R/XYZ 0 335 0]>>endobj
+23 0 obj<</Subtype/Link/Rect[108.0 499.2 181.0 512.2]/Border[0 0 0]/Dest[481 0 R/XYZ 0 734 0]>>endobj
+24 0 obj<</Subtype/Link/Rect[108.0 486.0 167.0 499.0]/Border[0 0 0]/Dest[481 0 R/XYZ 0 434 0]>>endobj
+25 0 obj<</Subtype/Link/Rect[72.0 459.6 200.0 472.6]/Border[0 0 0]/Dest[483 0 R/XYZ 0 734 0]>>endobj
+26 0 obj<</Subtype/Link/Rect[108.0 446.4 195.4 459.4]/Border[0 0 0]/Dest[483 0 R/XYZ 0 696 0]>>endobj
+27 0 obj<</Subtype/Link/Rect[108.0 433.2 204.5 446.2]/Border[0 0 0]/Dest[485 0 R/XYZ 0 718 0]>>endobj
+28 0 obj<</Subtype/Link/Rect[108.0 420.0 228.4 433.0]/Border[0 0 0]/Dest[487 0 R/XYZ 0 718 0]>>endobj
+29 0 obj<</Subtype/Link/Rect[108.0 406.8 225.9 419.8]/Border[0 0 0]/Dest[487 0 R/XYZ 0 493 0]>>endobj
+30 0 obj<</Subtype/Link/Rect[108.0 393.6 174.9 406.6]/Border[0 0 0]/Dest[489 0 R/XYZ 0 734 0]>>endobj
+31 0 obj<</Subtype/Link/Rect[126.0 380.4 166.3 393.4]/Border[0 0 0]/Dest[489 0 R/XYZ 0 700 0]>>endobj
+32 0 obj<</Subtype/Link/Rect[126.0 367.2 164.5 380.2]/Border[0 0 0]/Dest[489 0 R/XYZ 0 602 0]>>endobj
+33 0 obj<</Subtype/Link/Rect[126.0 354.0 217.0 367.0]/Border[0 0 0]/Dest[489 0 R/XYZ 0 491 0]>>endobj
+34 0 obj<</Subtype/Link/Rect[72.0 327.6 164.0 340.6]/Border[0 0 0]/Dest[491 0 R/XYZ 0 734 0]>>endobj
+35 0 obj<</Subtype/Link/Rect[72.0 301.2 149.9 314.2]/Border[0 0 0]/Dest[495 0 R/XYZ 0 734 0]>>endobj
+36 0 obj<</Subtype/Link/Rect[108.0 288.0 194.4 301.0]/Border[0 0 0]/Dest[495 0 R/XYZ 0 696 0]>>endobj
+37 0 obj<</Subtype/Link/Rect[108.0 274.8 189.9 287.8]/Border[0 0 0]/Dest[495 0 R/XYZ 0 568 0]>>endobj
+38 0 obj<</Subtype/Link/Rect[108.0 261.6 205.4 274.6]/Border[0 0 0]/Dest[497 0 R/XYZ 0 705 0]>>endobj
+39 0 obj<</Subtype/Link/Rect[126.0 248.4 196.0 261.4]/Border[0 0 0]/Dest[497 0 R/XYZ 0 630 0]>>endobj
+40 0 obj<</Subtype/Link/Rect[126.0 235.2 194.7 248.2]/Border[0 0 0]/Dest[497 0 R/XYZ 0 571 0]>>endobj
+41 0 obj<</Subtype/Link/Rect[126.0 222.0 218.3 235.0]/Border[0 0 0]/Dest[497 0 R/XYZ 0 513 0]>>endobj
+42 0 obj<</Subtype/Link/Rect[126.0 208.8 194.7 221.8]/Border[0 0 0]/Dest[497 0 R/XYZ 0 455 0]>>endobj
+43 0 obj<</Subtype/Link/Rect[126.0 195.6 192.3 208.6]/Border[0 0 0]/Dest[497 0 R/XYZ 0 383 0]>>endobj
+44 0 obj<</Subtype/Link/Rect[126.0 182.4 200.9 195.4]/Border[0 0 0]/Dest[497 0 R/XYZ 0 325 0]>>endobj
+45 0 obj<</Subtype/Link/Rect[126.0 169.2 198.4 182.2]/Border[0 0 0]/Dest[497 0 R/XYZ 0 266 0]>>endobj
+46 0 obj<</Subtype/Link/Rect[126.0 156.0 217.0 169.0]/Border[0 0 0]/Dest[497 0 R/XYZ 0 208 0]>>endobj
+47 0 obj<</Subtype/Link/Rect[126.0 142.8 214.6 155.8]/Border[0 0 0]/Dest[497 0 R/XYZ 0 149 0]>>endobj
+48 0 obj<</Subtype/Link/Rect[126.0 129.6 223.2 142.6]/Border[0 0 0]/Dest[499 0 R/XYZ 0 734 0]>>endobj
+49 0 obj<</Subtype/Link/Rect[126.0 116.4 220.7 129.4]/Border[0 0 0]/Dest[499 0 R/XYZ 0 675 0]>>endobj
+50 0 obj<</Subtype/Link/Rect[126.0 103.2 202.1 116.2]/Border[0 0 0]/Dest[499 0 R/XYZ 0 617 0]>>endobj
+51 0 obj<</Subtype/Link/Rect[126.0 90.0 199.6 103.0]/Border[0 0 0]/Dest[499 0 R/XYZ 0 558 0]>>endobj
+52 0 obj<</Subtype/Link/Rect[126.0 76.8 224.4 89.8]/Border[0 0 0]/Dest[499 0 R/XYZ 0 500 0]>>endobj
+53 0 obj<</Subtype/Link/Rect[126.0 63.6 221.9 76.6]/Border[0 0 0]/Dest[499 0 R/XYZ 0 428 0]>>endobj
+54 0 obj[12 0 R
+13 0 R
 14 0 R
 15 0 R
 16 0 R
@@ -94,53 +94,53 @@
 50 0 R
 51 0 R
 52 0 R
-53 0 R
-54 0 R]endobj
-56 0 obj<</Subtype/Link/Rect[72.0 684.0 202.8 697.0]/Border[0 0 0]/Dest[552 0 R/XYZ 0 734 0]>>endobj
-57 0 obj<</Subtype/Link/Rect[108.0 670.8 244.9 683.8]/Border[0 0 0]/Dest[556 0 R/XYZ 0 370 0]>>endobj
-58 0 obj<</Subtype/Link/Rect[126.0 657.6 202.4 670.6]/Border[0 0 0]/Dest[556 0 R/XYZ 0 220 0]>>endobj
-59 0 obj<</Subtype/Link/Rect[126.0 644.4 210.0 657.4]/Border[0 0 0]/Dest[558 0 R/XYZ 0 441 0]>>endobj
-60 0 obj<</Subtype/Link/Rect[108.0 631.2 217.7 644.2]/Border[0 0 0]/Dest[560 0 R/XYZ 0 734 0]>>endobj
-61 0 obj<</Subtype/Link/Rect[72.0 604.8 205.8 617.8]/Border[0 0 0]/Dest[562 0 R/XYZ 0 734 0]>>endobj
-62 0 obj<</Subtype/Link/Rect[108.0 591.6 201.5 604.6]/Border[0 0 0]/Dest[562 0 R/XYZ 0 696 0]>>endobj
-63 0 obj<</Subtype/Link/Rect[126.0 578.4 260.4 591.4]/Border[0 0 0]/Dest[562 0 R/XYZ 0 423 0]>>endobj
-64 0 obj<</Subtype/Link/Rect[126.0 565.2 289.5 578.2]/Border[0 0 0]/Dest[562 0 R/XYZ 0 259 0]>>endobj
-65 0 obj<</Subtype/Link/Rect[126.0 552.0 266.6 565.0]/Border[0 0 0]/Dest[564 0 R/XYZ 0 652 0]>>endobj
-66 0 obj<</Subtype/Link/Rect[108.0 538.8 157.8 551.8]/Border[0 0 0]/Dest[564 0 R/XYZ 0 240 0]>>endobj
-67 0 obj<</Subtype/Link/Rect[126.0 525.6 223.2 538.6]/Border[0 0 0]/Dest[566 0 R/XYZ 0 665 0]>>endobj
-68 0 obj<</Subtype/Link/Rect[72.0 499.2 246.5 512.2]/Border[0 0 0]/Dest[568 0 R/XYZ 0 734 0]>>endobj
-69 0 obj<</Subtype/Link/Rect[108.0 486.0 181.6 499.0]/Border[0 0 0]/Dest[568 0 R/XYZ 0 696 0]>>endobj
-70 0 obj<</Subtype/Link/Rect[108.0 472.8 176.1 485.8]/Border[0 0 0]/Dest[568 0 R/XYZ 0 595 0]>>endobj
-71 0 obj<</Subtype/Link/Rect[108.0 459.6 195.4 472.6]/Border[0 0 0]/Dest[568 0 R/XYZ 0 216 0]>>endobj
-72 0 obj<</Subtype/Link/Rect[108.0 446.4 173.7 459.4]/Border[0 0 0]/Dest[570 0 R/XYZ 0 692 0]>>endobj
-73 0 obj<</Subtype/Link/Rect[108.0 433.2 163.9 446.2]/Border[0 0 0]/Dest[570 0 R/XYZ 0 458 0]>>endobj
-74 0 obj<</Subtype/Link/Rect[108.0 420.0 183.8 433.0]/Border[0 0 0]/Dest[572 0 R/XYZ 0 734 0]>>endobj
-75 0 obj<</Subtype/Link/Rect[108.0 406.8 194.8 419.8]/Border[0 0 0]/Dest[572 0 R/XYZ 0 566 0]>>endobj
-76 0 obj<</Subtype/Link/Rect[108.0 393.6 186.2 406.6]/Border[0 0 0]/Dest[572 0 R/XYZ 0 438 0]>>endobj
-77 0 obj<</Subtype/Link/Rect[108.0 380.4 219.2 393.4]/Border[0 0 0]/Dest[572 0 R/XYZ 0 178 0]>>endobj
-78 0 obj<</Subtype/Link/Rect[72.0 354.0 253.5 367.0]/Border[0 0 0]/Dest[576 0 R/XYZ 0 734 0]>>endobj
-79 0 obj<</Subtype/Link/Rect[72.0 327.6 212.9 340.6]/Border[0 0 0]/Dest[580 0 R/XYZ 0 734 0]>>endobj
-80 0 obj<</Subtype/Link/Rect[108.0 314.4 181.6 327.4]/Border[0 0 0]/Dest[580 0 R/XYZ 0 696 0]>>endobj
-81 0 obj<</Subtype/Link/Rect[126.0 301.2 188.3 314.2]/Border[0 0 0]/Dest[582 0 R/XYZ 0 626 0]>>endobj
-82 0 obj<</Subtype/Link/Rect[126.0 288.0 185.3 301.0]/Border[0 0 0]/Dest[582 0 R/XYZ 0 516 0]>>endobj
-83 0 obj<</Subtype/Link/Rect[108.0 274.8 218.9 287.8]/Border[0 0 0]/Dest[582 0 R/XYZ 0 394 0]>>endobj
-84 0 obj<</Subtype/Link/Rect[126.0 261.6 179.2 274.6]/Border[0 0 0]/Dest[582 0 R/XYZ 0 360 0]>>endobj
-85 0 obj<</Subtype/Link/Rect[126.0 248.4 214.6 261.4]/Border[0 0 0]/Dest[584 0 R/XYZ 0 718 0]>>endobj
-86 0 obj<</Subtype/Link/Rect[126.0 235.2 198.1 248.2]/Border[0 0 0]/Dest[584 0 R/XYZ 0 235 0]>>endobj
-87 0 obj<</Subtype/Link/Rect[108.0 222.0 283.7 235.0]/Border[0 0 0]/Dest[604 0 R/XYZ 0 428 0]>>endobj
-88 0 obj<</Subtype/Link/Rect[126.0 208.8 216.8 221.8]/Border[0 0 0]/Dest[604 0 R/XYZ 0 366 0]>>endobj
-89 0 obj<</Subtype/Link/Rect[126.0 195.6 185.3 208.6]/Border[0 0 0]/Dest[606 0 R/XYZ 0 567 0]>>endobj
-90 0 obj<</Subtype/Link/Rect[126.0 182.4 171.2 195.4]/Border[0 0 0]/Dest[614 0 R/XYZ 0 531 0]>>endobj
-91 0 obj<</Subtype/Link/Rect[126.0 169.2 249.5 182.2]/Border[0 0 0]/Dest[614 0 R/XYZ 0 407 0]>>endobj
-92 0 obj<</Subtype/Link/Rect[126.0 156.0 286.4 169.0]/Border[0 0 0]/Dest[616 0 R/XYZ 0 548 0]>>endobj
-93 0 obj<</Subtype/Link/Rect[126.0 142.8 231.7 155.8]/Border[0 0 0]/Dest[616 0 R/XYZ 0 140 0]>>endobj
-94 0 obj<</Subtype/Link/Rect[126.0 129.6 256.5 142.6]/Border[0 0 0]/Dest[618 0 R/XYZ 0 492 0]>>endobj
-95 0 obj<</Subtype/Link/Rect[126.0 116.4 303.5 129.4]/Border[0 0 0]/Dest[618 0 R/XYZ 0 145 0]>>endobj
-96 0 obj<</Subtype/Link/Rect[126.0 103.2 231.1 116.2]/Border[0 0 0]/Dest[620 0 R/XYZ 0 586 0]>>endobj
-97 0 obj<</Subtype/Link/Rect[126.0 90.0 207.6 103.0]/Border[0 0 0]/Dest[620 0 R/XYZ 0 301 0]>>endobj
-98 0 obj<</Subtype/Link/Rect[126.0 76.8 243.3 89.8]/Border[0 0 0]/Dest[622 0 R/XYZ 0 734 0]>>endobj
-99 0 obj<</Subtype/Link/Rect[126.0 63.6 250.0 76.6]/Border[0 0 0]/Dest[622 0 R/XYZ 0 249 0]>>endobj
-100 0 obj[56 0 R
+53 0 R]endobj
+55 0 obj<</Subtype/Link/Rect[72.0 684.0 149.9 697.0]/Border[0 0 0]/Dest[495 0 R/XYZ 0 734 0]>>endobj
+56 0 obj<</Subtype/Link/Rect[108.0 670.8 225.6 683.8]/Border[0 0 0]/Dest[499 0 R/XYZ 0 370 0]>>endobj
+57 0 obj<</Subtype/Link/Rect[126.0 657.6 174.9 670.6]/Border[0 0 0]/Dest[499 0 R/XYZ 0 217 0]>>endobj
+58 0 obj<</Subtype/Link/Rect[126.0 644.4 182.5 657.4]/Border[0 0 0]/Dest[501 0 R/XYZ 0 428 0]>>endobj
+59 0 obj<</Subtype/Link/Rect[108.0 631.2 198.4 644.2]/Border[0 0 0]/Dest[503 0 R/XYZ 0 734 0]>>endobj
+60 0 obj<</Subtype/Link/Rect[72.0 604.8 153.0 617.8]/Border[0 0 0]/Dest[505 0 R/XYZ 0 734 0]>>endobj
+61 0 obj<</Subtype/Link/Rect[108.0 591.6 182.2 604.6]/Border[0 0 0]/Dest[505 0 R/XYZ 0 696 0]>>endobj
+62 0 obj<</Subtype/Link/Rect[126.0 578.4 232.9 591.4]/Border[0 0 0]/Dest[505 0 R/XYZ 0 423 0]>>endobj
+63 0 obj<</Subtype/Link/Rect[126.0 565.2 262.0 578.2]/Border[0 0 0]/Dest[505 0 R/XYZ 0 259 0]>>endobj
+64 0 obj<</Subtype/Link/Rect[126.0 552.0 239.1 565.0]/Border[0 0 0]/Dest[507 0 R/XYZ 0 652 0]>>endobj
+65 0 obj<</Subtype/Link/Rect[108.0 538.8 138.6 551.8]/Border[0 0 0]/Dest[507 0 R/XYZ 0 223 0]>>endobj
+66 0 obj<</Subtype/Link/Rect[126.0 525.6 195.7 538.6]/Border[0 0 0]/Dest[509 0 R/XYZ 0 652 0]>>endobj
+67 0 obj<</Subtype/Link/Rect[72.0 499.2 193.6 512.2]/Border[0 0 0]/Dest[511 0 R/XYZ 0 734 0]>>endobj
+68 0 obj<</Subtype/Link/Rect[108.0 486.0 162.4 499.0]/Border[0 0 0]/Dest[511 0 R/XYZ 0 696 0]>>endobj
+69 0 obj<</Subtype/Link/Rect[108.0 472.8 156.9 485.8]/Border[0 0 0]/Dest[511 0 R/XYZ 0 595 0]>>endobj
+70 0 obj<</Subtype/Link/Rect[108.0 459.6 176.1 472.6]/Border[0 0 0]/Dest[511 0 R/XYZ 0 216 0]>>endobj
+71 0 obj<</Subtype/Link/Rect[108.0 446.4 154.4 459.4]/Border[0 0 0]/Dest[513 0 R/XYZ 0 692 0]>>endobj
+72 0 obj<</Subtype/Link/Rect[108.0 433.2 144.7 446.2]/Border[0 0 0]/Dest[513 0 R/XYZ 0 458 0]>>endobj
+73 0 obj<</Subtype/Link/Rect[108.0 420.0 164.5 433.0]/Border[0 0 0]/Dest[513 0 R/XYZ 0 145 0]>>endobj
+74 0 obj<</Subtype/Link/Rect[108.0 406.8 175.5 419.8]/Border[0 0 0]/Dest[515 0 R/XYZ 0 665 0]>>endobj
+75 0 obj<</Subtype/Link/Rect[108.0 393.6 167.0 406.6]/Border[0 0 0]/Dest[515 0 R/XYZ 0 537 0]>>endobj
+76 0 obj<</Subtype/Link/Rect[108.0 380.4 200.0 393.4]/Border[0 0 0]/Dest[515 0 R/XYZ 0 277 0]>>endobj
+77 0 obj<</Subtype/Link/Rect[72.0 354.0 200.6 367.0]/Border[0 0 0]/Dest[519 0 R/XYZ 0 734 0]>>endobj
+78 0 obj<</Subtype/Link/Rect[72.0 327.6 160.0 340.6]/Border[0 0 0]/Dest[523 0 R/XYZ 0 734 0]>>endobj
+79 0 obj<</Subtype/Link/Rect[108.0 314.4 162.4 327.4]/Border[0 0 0]/Dest[523 0 R/XYZ 0 696 0]>>endobj
+80 0 obj<</Subtype/Link/Rect[126.0 301.2 160.8 314.2]/Border[0 0 0]/Dest[525 0 R/XYZ 0 626 0]>>endobj
+81 0 obj<</Subtype/Link/Rect[126.0 288.0 157.8 301.0]/Border[0 0 0]/Dest[525 0 R/XYZ 0 516 0]>>endobj
+82 0 obj<</Subtype/Link/Rect[108.0 274.8 199.7 287.8]/Border[0 0 0]/Dest[525 0 R/XYZ 0 394 0]>>endobj
+83 0 obj<</Subtype/Link/Rect[126.0 261.6 151.7 274.6]/Border[0 0 0]/Dest[525 0 R/XYZ 0 360 0]>>endobj
+84 0 obj<</Subtype/Link/Rect[126.0 248.4 187.1 261.4]/Border[0 0 0]/Dest[527 0 R/XYZ 0 718 0]>>endobj
+85 0 obj<</Subtype/Link/Rect[126.0 235.2 170.6 248.2]/Border[0 0 0]/Dest[527 0 R/XYZ 0 235 0]>>endobj
+86 0 obj<</Subtype/Link/Rect[108.0 222.0 264.4 235.0]/Border[0 0 0]/Dest[547 0 R/XYZ 0 428 0]>>endobj
+87 0 obj<</Subtype/Link/Rect[126.0 208.8 189.3 221.8]/Border[0 0 0]/Dest[547 0 R/XYZ 0 366 0]>>endobj
+88 0 obj<</Subtype/Link/Rect[126.0 195.6 157.8 208.6]/Border[0 0 0]/Dest[549 0 R/XYZ 0 564 0]>>endobj
+89 0 obj<</Subtype/Link/Rect[126.0 182.4 143.7 195.4]/Border[0 0 0]/Dest[557 0 R/XYZ 0 518 0]>>endobj
+90 0 obj<</Subtype/Link/Rect[126.0 169.2 222.0 182.2]/Border[0 0 0]/Dest[557 0 R/XYZ 0 394 0]>>endobj
+91 0 obj<</Subtype/Link/Rect[126.0 156.0 258.9 169.0]/Border[0 0 0]/Dest[559 0 R/XYZ 0 522 0]>>endobj
+92 0 obj<</Subtype/Link/Rect[126.0 142.8 204.2 155.8]/Border[0 0 0]/Dest[561 0 R/XYZ 0 734 0]>>endobj
+93 0 obj<</Subtype/Link/Rect[126.0 129.6 229.0 142.6]/Border[0 0 0]/Dest[561 0 R/XYZ 0 433 0]>>endobj
+94 0 obj<</Subtype/Link/Rect[126.0 116.4 276.0 129.4]/Border[0 0 0]/Dest[563 0 R/XYZ 0 734 0]>>endobj
+95 0 obj<</Subtype/Link/Rect[126.0 103.2 203.6 116.2]/Border[0 0 0]/Dest[563 0 R/XYZ 0 501 0]>>endobj
+96 0 obj<</Subtype/Link/Rect[126.0 90.0 174.6 103.0]/Border[0 0 0]/Dest[563 0 R/XYZ 0 217 0]>>endobj
+97 0 obj<</Subtype/Link/Rect[126.0 76.8 210.3 89.8]/Border[0 0 0]/Dest[565 0 R/XYZ 0 639 0]>>endobj
+98 0 obj<</Subtype/Link/Rect[126.0 63.6 217.0 76.6]/Border[0 0 0]/Dest[565 0 R/XYZ 0 154 0]>>endobj
+99 0 obj[55 0 R
+56 0 R
 57 0 R
 58 0 R
 59 0 R
@@ -182,53 +182,37 @@
 95 0 R
 96 0 R
 97 0 R
-98 0 R
-99 0 R]endobj
-101 0 obj<</Subtype/Link/Rect[72.0 684.0 212.9 697.0]/Border[0 0 0]/Dest[580 0 R/XYZ 0 734 0]>>endobj
-102 0 obj<</Subtype/Link/Rect[108.0 670.8 301.4 683.8]/Border[0 0 0]/Dest[624 0 R/XYZ 0 413 0]>>endobj
-103 0 obj<</Subtype/Link/Rect[126.0 657.6 259.8 670.6]/Border[0 0 0]/Dest[626 0 R/XYZ 0 665 0]>>endobj
-104 0 obj<</Subtype/Link/Rect[126.0 644.4 241.5 657.4]/Border[0 0 0]/Dest[626 0 R/XYZ 0 273 0]>>endobj
-105 0 obj<</Subtype/Link/Rect[126.0 631.2 267.5 644.2]/Border[0 0 0]/Dest[628 0 R/XYZ 0 531 0]>>endobj
-106 0 obj<</Subtype/Link/Rect[126.0 618.0 232.3 631.0]/Border[0 0 0]/Dest[628 0 R/XYZ 0 165 0]>>endobj
-107 0 obj<</Subtype/Link/Rect[126.0 604.8 234.2 617.8]/Border[0 0 0]/Dest[630 0 R/XYZ 0 353 0]>>endobj
-108 0 obj<</Subtype/Link/Rect[108.0 591.6 269.6 604.6]/Border[0 0 0]/Dest[632 0 R/XYZ 0 734 0]>>endobj
-109 0 obj<</Subtype/Link/Rect[126.0 578.4 220.7 591.4]/Border[0 0 0]/Dest[632 0 R/XYZ 0 658 0]>>endobj
-110 0 obj<</Subtype/Link/Rect[126.0 565.2 208.8 578.2]/Border[0 0 0]/Dest[634 0 R/XYZ 0 734 0]>>endobj
-111 0 obj<</Subtype/Link/Rect[108.0 552.0 267.5 565.0]/Border[0 0 0]/Dest[636 0 R/XYZ 0 705 0]>>endobj
-112 0 obj<</Subtype/Link/Rect[126.0 538.8 226.2 551.8]/Border[0 0 0]/Dest[636 0 R/XYZ 0 577 0]>>endobj
-113 0 obj<</Subtype/Link/Rect[126.0 525.6 240.6 538.6]/Border[0 0 0]/Dest[638 0 R/XYZ 0 734 0]>>endobj
-114 0 obj<</Subtype/Link/Rect[108.0 512.4 346.9 525.4]/Border[0 0 0]/Dest[638 0 R/XYZ 0 433 0]>>endobj
-115 0 obj<</Subtype/Link/Rect[126.0 499.2 203.0 512.2]/Border[0 0 0]/Dest[638 0 R/XYZ 0 400 0]>>endobj
-116 0 obj<</Subtype/Link/Rect[126.0 486.0 190.8 499.0]/Border[0 0 0]/Dest[640 0 R/XYZ 0 734 0]>>endobj
-117 0 obj<</Subtype/Link/Rect[126.0 472.8 201.2 485.8]/Border[0 0 0]/Dest[640 0 R/XYZ 0 385 0]>>endobj
-118 0 obj<</Subtype/Link/Rect[108.0 459.6 193.9 472.6]/Border[0 0 0]/Dest[640 0 R/XYZ 0 128 0]>>endobj
-119 0 obj<</Subtype/Link/Rect[126.0 446.4 235.8 459.4]/Border[0 0 0]/Dest[642 0 R/XYZ 0 633 0]>>endobj
-120 0 obj<</Subtype/Link/Rect[126.0 433.2 238.8 446.2]/Border[0 0 0]/Dest[644 0 R/XYZ 0 665 0]>>endobj
-121 0 obj<</Subtype/Link/Rect[72.0 406.8 250.1 419.8]/Border[0 0 0]/Dest[648 0 R/XYZ 0 734 0]>>endobj
-122 0 obj<</Subtype/Link/Rect[108.0 393.6 170.0 406.6]/Border[0 0 0]/Dest[648 0 R/XYZ 0 696 0]>>endobj
-123 0 obj<</Subtype/Link/Rect[108.0 380.4 307.2 393.4]/Border[0 0 0]/Dest[648 0 R/XYZ 0 621 0]>>endobj
-124 0 obj<</Subtype/Link/Rect[108.0 367.2 216.6 380.2]/Border[0 0 0]/Dest[648 0 R/XYZ 0 361 0]>>endobj
-125 0 obj<</Subtype/Link/Rect[108.0 354.0 358.2 367.0]/Border[0 0 0]/Dest[652 0 R/XYZ 0 692 0]>>endobj
-126 0 obj<</Subtype/Link/Rect[108.0 340.8 309.3 353.8]/Border[0 0 0]/Dest[652 0 R/XYZ 0 630 0]>>endobj
-127 0 obj<</Subtype/Link/Rect[72.0 314.4 240.4 327.4]/Border[0 0 0]/Dest[658 0 R/XYZ 0 734 0]>>endobj
-128 0 obj<</Subtype/Link/Rect[108.0 301.2 200.3 314.2]/Border[0 0 0]/Dest[658 0 R/XYZ 0 696 0]>>endobj
-129 0 obj<</Subtype/Link/Rect[72.0 274.8 263.3 287.8]/Border[0 0 0]/Dest[660 0 R/XYZ 0 734 0]>>endobj
-130 0 obj<</Subtype/Link/Rect[108.0 261.6 248.5 274.6]/Border[0 0 0]/Dest[660 0 R/XYZ 0 696 0]>>endobj
-131 0 obj<</Subtype/Link/Rect[108.0 248.4 236.0 261.4]/Border[0 0 0]/Dest[662 0 R/XYZ 0 639 0]>>endobj
-132 0 obj<</Subtype/Link/Rect[108.0 235.2 291.6 248.2]/Border[0 0 0]/Dest[662 0 R/XYZ 0 498 0]>>endobj
-133 0 obj<</Subtype/Link/Rect[108.0 222.0 162.7 235.0]/Border[0 0 0]/Dest[662 0 R/XYZ 0 198 0]>>endobj
-134 0 obj<</Subtype/Link/Rect[126.0 208.8 210.9 221.8]/Border[0 0 0]/Dest[662 0 R/XYZ 0 165 0]>>endobj
-135 0 obj<</Subtype/Link/Rect[126.0 195.6 224.7 208.6]/Border[0 0 0]/Dest[664 0 R/XYZ 0 734 0]>>endobj
-136 0 obj<</Subtype/Link/Rect[126.0 182.4 224.1 195.4]/Border[0 0 0]/Dest[664 0 R/XYZ 0 596 0]>>endobj
-137 0 obj<</Subtype/Link/Rect[108.0 169.2 197.8 182.2]/Border[0 0 0]/Dest[664 0 R/XYZ 0 485 0]>>endobj
-138 0 obj<</Subtype/Link/Rect[126.0 156.0 287.3 169.0]/Border[0 0 0]/Dest[664 0 R/XYZ 0 451 0]>>endobj
-139 0 obj<</Subtype/Link/Rect[126.0 142.8 196.9 155.8]/Border[0 0 0]/Dest[664 0 R/XYZ 0 366 0]>>endobj
-140 0 obj<</Subtype/Link/Rect[108.0 129.6 230.8 142.6]/Border[0 0 0]/Dest[664 0 R/XYZ 0 229 0]>>endobj
-141 0 obj<</Subtype/Link/Rect[108.0 116.4 165.8 129.4]/Border[0 0 0]/Dest[666 0 R/XYZ 0 489 0]>>endobj
-142 0 obj<</Subtype/Link/Rect[72.0 90.0 313.7 103.0]/Border[0 0 0]/Dest[668 0 R/XYZ 0 734 0]>>endobj
-143 0 obj<</Subtype/Link/Rect[108.0 76.8 187.1 89.8]/Border[0 0 0]/Dest[668 0 R/XYZ 0 696 0]>>endobj
-144 0 obj<</Subtype/Link/Rect[108.0 63.6 216.2 76.6]/Border[0 0 0]/Dest[668 0 R/XYZ 0 568 0]>>endobj
-145 0 obj[101 0 R
+98 0 R]endobj
+100 0 obj<</Subtype/Link/Rect[72.0 684.0 160.0 697.0]/Border[0 0 0]/Dest[523 0 R/XYZ 0 734 0]>>endobj
+101 0 obj<</Subtype/Link/Rect[108.0 670.8 282.1 683.8]/Border[0 0 0]/Dest[567 0 R/XYZ 0 281 0]>>endobj
+102 0 obj<</Subtype/Link/Rect[126.0 657.6 232.3 670.6]/Border[0 0 0]/Dest[569 0 R/XYZ 0 533 0]>>endobj
+103 0 obj<</Subtype/Link/Rect[126.0 644.4 214.0 657.4]/Border[0 0 0]/Dest[569 0 R/XYZ 0 141 0]>>endobj
+104 0 obj<</Subtype/Link/Rect[126.0 631.2 240.0 644.2]/Border[0 0 0]/Dest[571 0 R/XYZ 0 424 0]>>endobj
+105 0 obj<</Subtype/Link/Rect[126.0 618.0 204.8 631.0]/Border[0 0 0]/Dest[573 0 R/XYZ 0 734 0]>>endobj
+106 0 obj<</Subtype/Link/Rect[126.0 604.8 206.7 617.8]/Border[0 0 0]/Dest[573 0 R/XYZ 0 291 0]>>endobj
+107 0 obj<</Subtype/Link/Rect[108.0 591.6 250.4 604.6]/Border[0 0 0]/Dest[575 0 R/XYZ 0 705 0]>>endobj
+108 0 obj<</Subtype/Link/Rect[126.0 578.4 193.2 591.4]/Border[0 0 0]/Dest[575 0 R/XYZ 0 630 0]>>endobj
+109 0 obj<</Subtype/Link/Rect[126.0 565.2 181.3 578.2]/Border[0 0 0]/Dest[577 0 R/XYZ 0 734 0]>>endobj
+110 0 obj<</Subtype/Link/Rect[108.0 552.0 248.2 565.0]/Border[0 0 0]/Dest[579 0 R/XYZ 0 705 0]>>endobj
+111 0 obj<</Subtype/Link/Rect[126.0 538.8 198.7 551.8]/Border[0 0 0]/Dest[579 0 R/XYZ 0 577 0]>>endobj
+112 0 obj<</Subtype/Link/Rect[126.0 525.6 213.1 538.6]/Border[0 0 0]/Dest[581 0 R/XYZ 0 734 0]>>endobj
+113 0 obj<</Subtype/Link/Rect[108.0 512.4 327.7 525.4]/Border[0 0 0]/Dest[581 0 R/XYZ 0 433 0]>>endobj
+114 0 obj<</Subtype/Link/Rect[126.0 499.2 175.5 512.2]/Border[0 0 0]/Dest[581 0 R/XYZ 0 400 0]>>endobj
+115 0 obj<</Subtype/Link/Rect[126.0 486.0 163.3 499.0]/Border[0 0 0]/Dest[583 0 R/XYZ 0 734 0]>>endobj
+116 0 obj<</Subtype/Link/Rect[126.0 472.8 173.7 485.8]/Border[0 0 0]/Dest[583 0 R/XYZ 0 385 0]>>endobj
+117 0 obj<</Subtype/Link/Rect[108.0 459.6 174.6 472.6]/Border[0 0 0]/Dest[583 0 R/XYZ 0 128 0]>>endobj
+118 0 obj<</Subtype/Link/Rect[126.0 446.4 208.3 459.4]/Border[0 0 0]/Dest[585 0 R/XYZ 0 633 0]>>endobj
+119 0 obj<</Subtype/Link/Rect[126.0 433.2 211.3 446.2]/Border[0 0 0]/Dest[587 0 R/XYZ 0 665 0]>>endobj
+120 0 obj<</Subtype/Link/Rect[72.0 406.8 191.8 419.8]/Border[0 0 0]/Dest[591 0 R/XYZ 0 734 0]>>endobj
+121 0 obj<</Subtype/Link/Rect[108.0 393.6 145.3 406.6]/Border[0 0 0]/Dest[591 0 R/XYZ 0 696 0]>>endobj
+122 0 obj<</Subtype/Link/Rect[108.0 380.4 282.4 393.4]/Border[0 0 0]/Dest[591 0 R/XYZ 0 621 0]>>endobj
+123 0 obj<</Subtype/Link/Rect[108.0 367.2 191.9 380.2]/Border[0 0 0]/Dest[591 0 R/XYZ 0 361 0]>>endobj
+124 0 obj<</Subtype/Link/Rect[108.0 354.0 333.5 367.0]/Border[0 0 0]/Dest[595 0 R/XYZ 0 692 0]>>endobj
+125 0 obj<</Subtype/Link/Rect[108.0 340.8 284.6 353.8]/Border[0 0 0]/Dest[595 0 R/XYZ 0 630 0]>>endobj
+126 0 obj<</Subtype/Link/Rect[72.0 314.4 182.0 327.4]/Border[0 0 0]/Dest[601 0 R/XYZ 0 734 0]>>endobj
+127 0 obj<</Subtype/Link/Rect[108.0 301.2 175.5 314.2]/Border[0 0 0]/Dest[601 0 R/XYZ 0 696 0]>>endobj
+128 0 obj[100 0 R
+101 0 R
 102 0 R
 103 0 R
 104 0 R
@@ -254,13 +238,51 @@
 124 0 R
 125 0 R
 126 0 R
-127 0 R
-128 0 R
-129 0 R
-130 0 R
-131 0 R
+127 0 R]endobj
+129 0 obj<</S/URI/URI(http://devel.samba.org/)>>endobj
+130 0 obj<</Subtype/Link/Rect[139.5 617.8 243.7 630.8]/Border[0 0 0]/A 129 0 R>>endobj
+131 0 obj<</S/URI/URI(mailto:jelmer@samba.org)>>endobj
+132 0 obj<</Subtype/Link/Rect[347.9 617.8 434.4 630.8]/Border[0 0 0]/A 131 0 R>>endobj
+133 0 obj<</S/URI/URI(http://www.fsf.org/licenses/gpl.txt)>>endobj
+134 0 obj<</Subtype/Link/Rect[72.0 565.0 223.3 578.0]/Border[0 0 0]/A 133 0 R>>endobj
+135 0 obj<</Subtype/Link/Rect[72.0 525.4 340.6 538.4]/Border[0 0 0]/Dest[475 0 R/XYZ 0 734 0]>>endobj
+136 0 obj<</Subtype/Link/Rect[108.0 512.2 152.0 525.2]/Border[0 0 0]/Dest[475 0 R/XYZ 0 672 0]>>endobj
+137 0 obj<</Subtype/Link/Rect[108.0 499.0 211.6 512.0]/Border[0 0 0]/Dest[475 0 R/XYZ 0 201 0]>>endobj
+138 0 obj<</Subtype/Link/Rect[108.0 485.8 176.8 498.8]/Border[0 0 0]/Dest[477 0 R/XYZ 0 705 0]>>endobj
+139 0 obj<</Subtype/Link/Rect[72.0 472.6 159.7 485.6]/Border[0 0 0]/Dest[479 0 R/XYZ 0 734 0]>>endobj
+140 0 obj<</Subtype/Link/Rect[108.0 459.4 163.0 472.4]/Border[0 0 0]/Dest[479 0 R/XYZ 0 696 0]>>endobj
+141 0 obj<</Subtype/Link/Rect[108.0 446.2 226.6 459.2]/Border[0 0 0]/Dest[479 0 R/XYZ 0 529 0]>>endobj
+142 0 obj<</Subtype/Link/Rect[108.0 433.0 179.8 446.0]/Border[0 0 0]/Dest[479 0 R/XYZ 0 335 0]>>endobj
+143 0 obj<</Subtype/Link/Rect[108.0 419.8 181.0 432.8]/Border[0 0 0]/Dest[481 0 R/XYZ 0 734 0]>>endobj
+144 0 obj<</Subtype/Link/Rect[108.0 406.6 166.4 419.6]/Border[0 0 0]/Dest[481 0 R/XYZ 0 434 0]>>endobj
+145 0 obj<</Subtype/Link/Rect[72.0 393.4 192.1 406.4]/Border[0 0 0]/Dest[483 0 R/XYZ 0 734 0]>>endobj
+146 0 obj<</Subtype/Link/Rect[108.0 380.2 192.9 393.2]/Border[0 0 0]/Dest[483 0 R/XYZ 0 696 0]>>endobj
+147 0 obj<</Subtype/Link/Rect[108.0 367.0 203.9 380.0]/Border[0 0 0]/Dest[485 0 R/XYZ 0 718 0]>>endobj
+148 0 obj<</Subtype/Link/Rect[108.0 353.8 226.5 366.8]/Border[0 0 0]/Dest[487 0 R/XYZ 0 718 0]>>endobj
+149 0 obj<</Subtype/Link/Rect[108.0 340.6 222.9 353.6]/Border[0 0 0]/Dest[487 0 R/XYZ 0 493 0]>>endobj
+150 0 obj<</Subtype/Link/Rect[108.0 327.4 174.3 340.4]/Border[0 0 0]/Dest[489 0 R/XYZ 0 734 0]>>endobj
+151 0 obj<</Subtype/Link/Rect[144.0 314.2 183.7 327.2]/Border[0 0 0]/Dest[489 0 R/XYZ 0 700 0]>>endobj
+152 0 obj<</Subtype/Link/Rect[144.0 301.0 183.1 314.0]/Border[0 0 0]/Dest[489 0 R/XYZ 0 602 0]>>endobj
+153 0 obj<</Subtype/Link/Rect[144.0 287.8 234.4 300.8]/Border[0 0 0]/Dest[489 0 R/XYZ 0 491 0]>>endobj
+154 0 obj<</Subtype/Link/Rect[72.0 274.6 159.7 287.6]/Border[0 0 0]/Dest[491 0 R/XYZ 0 734 0]>>endobj
+155 0 obj<</Subtype/Link/Rect[72.0 261.4 144.4 274.4]/Border[0 0 0]/Dest[495 0 R/XYZ 0 734 0]>>endobj
+156 0 obj<</Subtype/Link/Rect[108.0 248.2 197.5 261.2]/Border[0 0 0]/Dest[495 0 R/XYZ 0 696 0]>>endobj
+157 0 obj<</Subtype/Link/Rect[108.0 235.0 188.1 248.0]/Border[0 0 0]/Dest[495 0 R/XYZ 0 568 0]>>endobj
+158 0 obj<</Subtype/Link/Rect[108.0 221.8 206.7 234.8]/Border[0 0 0]/Dest[497 0 R/XYZ 0 705 0]>>endobj
+159 0 obj<</Subtype/Link/Rect[144.0 208.6 210.3 221.6]/Border[0 0 0]/Dest[497 0 R/XYZ 0 630 0]>>endobj
+160 0 obj<</Subtype/Link/Rect[144.0 195.4 209.7 208.4]/Border[0 0 0]/Dest[497 0 R/XYZ 0 571 0]>>endobj
+161 0 obj<</Subtype/Link/Rect[144.0 182.2 232.0 195.2]/Border[0 0 0]/Dest[497 0 R/XYZ 0 513 0]>>endobj
+162 0 obj<</Subtype/Link/Rect[144.0 169.0 208.5 182.0]/Border[0 0 0]/Dest[497 0 R/XYZ 0 455 0]>>endobj
+163 0 obj<</Subtype/Link/Rect[144.0 155.8 206.6 168.8]/Border[0 0 0]/Dest[497 0 R/XYZ 0 383 0]>>endobj
+164 0 obj<</Subtype/Link/Rect[144.0 142.6 214.0 155.6]/Border[0 0 0]/Dest[497 0 R/XYZ 0 325 0]>>endobj
+165 0 obj<</Subtype/Link/Rect[144.0 129.4 212.1 142.4]/Border[0 0 0]/Dest[497 0 R/XYZ 0 266 0]>>endobj
+166 0 obj<</Subtype/Link/Rect[144.0 116.2 230.2 129.2]/Border[0 0 0]/Dest[497 0 R/XYZ 0 208 0]>>endobj
+167 0 obj<</Subtype/Link/Rect[144.0 103.0 228.3 116.0]/Border[0 0 0]/Dest[497 0 R/XYZ 0 149 0]>>endobj
+168 0 obj<</Subtype/Link/Rect[144.0 89.8 235.7 102.8]/Border[0 0 0]/Dest[499 0 R/XYZ 0 734 0]>>endobj
+169 0 obj<</Subtype/Link/Rect[144.0 76.6 233.8 89.6]/Border[0 0 0]/Dest[499 0 R/XYZ 0 675 0]>>endobj
+170 0 obj<</Subtype/Link/Rect[144.0 63.4 215.2 76.4]/Border[0 0 0]/Dest[499 0 R/XYZ 0 617 0]>>endobj
+171 0 obj[130 0 R
 132 0 R
-133 0 R
 134 0 R
 135 0 R
 136 0 R
@@ -271,55 +293,16 @@
 141 0 R
 142 0 R
 143 0 R
-144 0 R]endobj
-146 0 obj<</Subtype/Link/Rect[72.0 684.0 313.7 697.0]/Border[0 0 0]/Dest[668 0 R/XYZ 0 734 0]>>endobj
-147 0 obj<</Subtype/Link/Rect[108.0 670.8 220.7 683.8]/Border[0 0 0]/Dest[670 0 R/XYZ 0 718 0]>>endobj
-148 0 obj[146 0 R
-147 0 R]endobj
-149 0 obj<</S/URI/URI(http://devel.samba.org/)>>endobj
-150 0 obj<</Subtype/Link/Rect[139.5 617.8 243.7 630.8]/Border[0 0 0]/A 149 0 R>>endobj
-151 0 obj<</S/URI/URI(mailto:jelmer@samba.org)>>endobj
-152 0 obj<</Subtype/Link/Rect[347.9 617.8 434.4 630.8]/Border[0 0 0]/A 151 0 R>>endobj
-153 0 obj<</S/URI/URI(http://www.fsf.org/licenses/gpl.txt)>>endobj
-154 0 obj<</Subtype/Link/Rect[72.0 565.0 223.3 578.0]/Border[0 0 0]/A 153 0 R>>endobj
-155 0 obj<</Subtype/Link/Rect[80.2 525.4 351.6 538.4]/Border[0 0 0]/Dest[532 0 R/XYZ 0 734 0]>>endobj
-156 0 obj<</Subtype/Link/Rect[124.5 512.2 171.2 525.2]/Border[0 0 0]/Dest[532 0 R/XYZ 0 672 0]>>endobj
-157 0 obj<</Subtype/Link/Rect[124.5 499.0 230.8 512.0]/Border[0 0 0]/Dest[532 0 R/XYZ 0 201 0]>>endobj
-158 0 obj<</Subtype/Link/Rect[124.5 485.8 196.0 498.8]/Border[0 0 0]/Dest[534 0 R/XYZ 0 705 0]>>endobj
-159 0 obj<</Subtype/Link/Rect[80.2 472.6 170.7 485.6]/Border[0 0 0]/Dest[536 0 R/XYZ 0 734 0]>>endobj
-160 0 obj<</Subtype/Link/Rect[124.5 459.4 182.2 472.4]/Border[0 0 0]/Dest[536 0 R/XYZ 0 696 0]>>endobj
-161 0 obj<</Subtype/Link/Rect[124.5 446.2 245.8 459.2]/Border[0 0 0]/Dest[536 0 R/XYZ 0 529 0]>>endobj
-162 0 obj<</Subtype/Link/Rect[124.5 433.0 199.1 446.0]/Border[0 0 0]/Dest[536 0 R/XYZ 0 335 0]>>endobj
-163 0 obj<</Subtype/Link/Rect[124.5 419.8 200.3 432.8]/Border[0 0 0]/Dest[538 0 R/XYZ 0 734 0]>>endobj
-164 0 obj<</Subtype/Link/Rect[124.5 406.6 185.6 419.6]/Border[0 0 0]/Dest[538 0 R/XYZ 0 434 0]>>endobj
-165 0 obj<</Subtype/Link/Rect[80.2 393.4 203.1 406.4]/Border[0 0 0]/Dest[540 0 R/XYZ 0 734 0]>>endobj
-166 0 obj<</Subtype/Link/Rect[124.5 380.2 212.2 393.2]/Border[0 0 0]/Dest[540 0 R/XYZ 0 696 0]>>endobj
-167 0 obj<</Subtype/Link/Rect[124.5 367.0 223.2 380.0]/Border[0 0 0]/Dest[542 0 R/XYZ 0 734 0]>>endobj
-168 0 obj<</Subtype/Link/Rect[124.5 353.8 245.8 366.8]/Border[0 0 0]/Dest[544 0 R/XYZ 0 734 0]>>endobj
-169 0 obj<</Subtype/Link/Rect[124.5 340.6 242.1 353.6]/Border[0 0 0]/Dest[544 0 R/XYZ 0 514 0]>>endobj
-170 0 obj<</Subtype/Link/Rect[124.5 327.4 193.6 340.4]/Border[0 0 0]/Dest[546 0 R/XYZ 0 734 0]>>endobj
-171 0 obj<</Subtype/Link/Rect[168.8 314.2 211.2 327.2]/Border[0 0 0]/Dest[546 0 R/XYZ 0 700 0]>>endobj
-172 0 obj<</Subtype/Link/Rect[168.8 301.0 210.6 314.0]/Border[0 0 0]/Dest[546 0 R/XYZ 0 602 0]>>endobj
-173 0 obj<</Subtype/Link/Rect[168.8 287.8 261.9 300.8]/Border[0 0 0]/Dest[546 0 R/XYZ 0 491 0]>>endobj
-174 0 obj<</Subtype/Link/Rect[80.2 274.6 170.7 287.6]/Border[0 0 0]/Dest[548 0 R/XYZ 0 734 0]>>endobj
-175 0 obj<</Subtype/Link/Rect[80.2 261.4 155.4 274.4]/Border[0 0 0]/Dest[552 0 R/XYZ 0 734 0]>>endobj
-176 0 obj<</Subtype/Link/Rect[124.5 248.2 216.8 261.2]/Border[0 0 0]/Dest[552 0 R/XYZ 0 696 0]>>endobj
-177 0 obj<</Subtype/Link/Rect[124.5 235.0 207.3 248.0]/Border[0 0 0]/Dest[552 0 R/XYZ 0 568 0]>>endobj
-178 0 obj<</Subtype/Link/Rect[124.5 221.8 225.9 234.8]/Border[0 0 0]/Dest[554 0 R/XYZ 0 705 0]>>endobj
-179 0 obj<</Subtype/Link/Rect[168.8 208.6 237.8 221.6]/Border[0 0 0]/Dest[554 0 R/XYZ 0 630 0]>>endobj
-180 0 obj<</Subtype/Link/Rect[168.8 195.4 237.2 208.4]/Border[0 0 0]/Dest[554 0 R/XYZ 0 571 0]>>endobj
-181 0 obj<</Subtype/Link/Rect[168.8 182.2 259.5 195.2]/Border[0 0 0]/Dest[554 0 R/XYZ 0 513 0]>>endobj
-182 0 obj<</Subtype/Link/Rect[168.8 169.0 236.0 182.0]/Border[0 0 0]/Dest[554 0 R/XYZ 0 455 0]>>endobj
-183 0 obj<</Subtype/Link/Rect[168.8 155.8 234.1 168.8]/Border[0 0 0]/Dest[554 0 R/XYZ 0 383 0]>>endobj
-184 0 obj<</Subtype/Link/Rect[168.8 142.6 241.5 155.6]/Border[0 0 0]/Dest[554 0 R/XYZ 0 325 0]>>endobj
-185 0 obj<</Subtype/Link/Rect[168.8 129.4 239.6 142.4]/Border[0 0 0]/Dest[554 0 R/XYZ 0 266 0]>>endobj
-186 0 obj<</Subtype/Link/Rect[168.8 116.2 257.7 129.2]/Border[0 0 0]/Dest[554 0 R/XYZ 0 208 0]>>endobj
-187 0 obj<</Subtype/Link/Rect[168.8 103.0 255.8 116.0]/Border[0 0 0]/Dest[554 0 R/XYZ 0 149 0]>>endobj
-188 0 obj<</Subtype/Link/Rect[174.2 89.8 268.7 102.8]/Border[0 0 0]/Dest[556 0 R/XYZ 0 734 0]>>endobj
-189 0 obj<</Subtype/Link/Rect[174.2 76.6 266.8 89.6]/Border[0 0 0]/Dest[556 0 R/XYZ 0 675 0]>>endobj
-190 0 obj<</Subtype/Link/Rect[174.2 63.4 248.2 76.4]/Border[0 0 0]/Dest[556 0 R/XYZ 0 617 0]>>endobj
-191 0 obj[150 0 R
+144 0 R
+145 0 R
+146 0 R
+147 0 R
+148 0 R
+149 0 R
+150 0 R
+151 0 R
 152 0 R
+153 0 R
 154 0 R
 155 0 R
 156 0 R
@@ -336,9 +319,59 @@
 167 0 R
 168 0 R
 169 0 R
-170 0 R
-171 0 R
-172 0 R
+170 0 R]endobj
+172 0 obj<</Subtype/Link/Rect[144.0 721.0 213.4 734.0]/Border[0 0 0]/Dest[499 0 R/XYZ 0 558 0]>>endobj
+173 0 obj<</Subtype/Link/Rect[144.0 707.8 236.9 720.8]/Border[0 0 0]/Dest[499 0 R/XYZ 0 500 0]>>endobj
+174 0 obj<</Subtype/Link/Rect[144.0 694.6 235.0 707.6]/Border[0 0 0]/Dest[499 0 R/XYZ 0 428 0]>>endobj
+175 0 obj<</Subtype/Link/Rect[108.0 681.4 223.8 694.4]/Border[0 0 0]/Dest[499 0 R/XYZ 0 370 0]>>endobj
+176 0 obj<</Subtype/Link/Rect[144.0 668.2 195.3 681.2]/Border[0 0 0]/Dest[499 0 R/XYZ 0 217 0]>>endobj
+177 0 obj<</Subtype/Link/Rect[144.0 655.0 200.5 668.0]/Border[0 0 0]/Dest[501 0 R/XYZ 0 428 0]>>endobj
+178 0 obj<</Subtype/Link/Rect[108.0 641.8 201.5 654.8]/Border[0 0 0]/Dest[503 0 R/XYZ 0 734 0]>>endobj
+179 0 obj<</Subtype/Link/Rect[72.0 628.6 147.5 641.6]/Border[0 0 0]/Dest[505 0 R/XYZ 0 734 0]>>endobj
+180 0 obj<</Subtype/Link/Rect[108.0 615.4 180.4 628.4]/Border[0 0 0]/Dest[505 0 R/XYZ 0 696 0]>>endobj
+181 0 obj<</Subtype/Link/Rect[144.0 602.2 250.3 615.2]/Border[0 0 0]/Dest[505 0 R/XYZ 0 423 0]>>endobj
+182 0 obj<</Subtype/Link/Rect[144.0 589.0 280.0 602.0]/Border[0 0 0]/Dest[505 0 R/XYZ 0 259 0]>>endobj
+183 0 obj<</Subtype/Link/Rect[144.0 575.8 257.1 588.8]/Border[0 0 0]/Dest[507 0 R/XYZ 0 652 0]>>endobj
+184 0 obj<</Subtype/Link/Rect[108.0 562.6 137.3 575.6]/Border[0 0 0]/Dest[507 0 R/XYZ 0 223 0]>>endobj
+185 0 obj<</Subtype/Link/Rect[144.0 549.4 213.7 562.4]/Border[0 0 0]/Dest[509 0 R/XYZ 0 652 0]>>endobj
+186 0 obj<</Subtype/Link/Rect[72.0 536.2 185.0 549.2]/Border[0 0 0]/Dest[511 0 R/XYZ 0 734 0]>>endobj
+187 0 obj<</Subtype/Link/Rect[108.0 523.0 163.0 536.0]/Border[0 0 0]/Dest[511 0 R/XYZ 0 696 0]>>endobj
+188 0 obj<</Subtype/Link/Rect[108.0 509.8 157.5 522.8]/Border[0 0 0]/Dest[511 0 R/XYZ 0 595 0]>>endobj
+189 0 obj<</Subtype/Link/Rect[108.0 496.6 176.8 509.6]/Border[0 0 0]/Dest[511 0 R/XYZ 0 216 0]>>endobj
+190 0 obj<</Subtype/Link/Rect[108.0 483.4 155.7 496.4]/Border[0 0 0]/Dest[513 0 R/XYZ 0 692 0]>>endobj
+191 0 obj<</Subtype/Link/Rect[108.0 470.2 143.4 483.2]/Border[0 0 0]/Dest[513 0 R/XYZ 0 458 0]>>endobj
+192 0 obj<</Subtype/Link/Rect[108.0 457.0 163.3 470.0]/Border[0 0 0]/Dest[513 0 R/XYZ 0 145 0]>>endobj
+193 0 obj<</Subtype/Link/Rect[108.0 443.8 176.8 456.8]/Border[0 0 0]/Dest[515 0 R/XYZ 0 665 0]>>endobj
+194 0 obj<</Subtype/Link/Rect[108.0 430.6 168.2 443.6]/Border[0 0 0]/Dest[515 0 R/XYZ 0 537 0]>>endobj
+195 0 obj<</Subtype/Link/Rect[108.0 417.4 199.4 430.4]/Border[0 0 0]/Dest[515 0 R/XYZ 0 277 0]>>endobj
+196 0 obj<</Subtype/Link/Rect[72.0 404.2 193.9 417.2]/Border[0 0 0]/Dest[519 0 R/XYZ 0 734 0]>>endobj
+197 0 obj<</Subtype/Link/Rect[72.0 391.0 153.8 404.0]/Border[0 0 0]/Dest[523 0 R/XYZ 0 734 0]>>endobj
+198 0 obj<</Subtype/Link/Rect[108.0 377.8 163.0 390.8]/Border[0 0 0]/Dest[523 0 R/XYZ 0 696 0]>>endobj
+199 0 obj<</Subtype/Link/Rect[144.0 364.6 178.8 377.6]/Border[0 0 0]/Dest[525 0 R/XYZ 0 626 0]>>endobj
+200 0 obj<</Subtype/Link/Rect[144.0 351.4 176.4 364.4]/Border[0 0 0]/Dest[525 0 R/XYZ 0 516 0]>>endobj
+201 0 obj<</Subtype/Link/Rect[108.0 338.2 200.3 351.2]/Border[0 0 0]/Dest[525 0 R/XYZ 0 394 0]>>endobj
+202 0 obj<</Subtype/Link/Rect[144.0 325.0 169.1 338.0]/Border[0 0 0]/Dest[525 0 R/XYZ 0 360 0]>>endobj
+203 0 obj<</Subtype/Link/Rect[144.0 311.8 205.7 324.8]/Border[0 0 0]/Dest[527 0 R/XYZ 0 718 0]>>endobj
+204 0 obj<</Subtype/Link/Rect[144.0 298.6 189.2 311.6]/Border[0 0 0]/Dest[527 0 R/XYZ 0 235 0]>>endobj
+205 0 obj<</Subtype/Link/Rect[108.0 285.4 264.4 298.4]/Border[0 0 0]/Dest[547 0 R/XYZ 0 428 0]>>endobj
+206 0 obj<</Subtype/Link/Rect[144.0 272.2 206.6 285.2]/Border[0 0 0]/Dest[547 0 R/XYZ 0 366 0]>>endobj
+207 0 obj<</Subtype/Link/Rect[144.0 259.0 177.0 272.0]/Border[0 0 0]/Dest[549 0 R/XYZ 0 564 0]>>endobj
+208 0 obj<</Subtype/Link/Rect[144.0 245.8 161.7 258.8]/Border[0 0 0]/Dest[557 0 R/XYZ 0 518 0]>>endobj
+209 0 obj<</Subtype/Link/Rect[144.0 232.6 236.9 245.6]/Border[0 0 0]/Dest[557 0 R/XYZ 0 394 0]>>endobj
+210 0 obj<</Subtype/Link/Rect[144.0 219.4 274.5 232.4]/Border[0 0 0]/Dest[559 0 R/XYZ 0 522 0]>>endobj
+211 0 obj<</Subtype/Link/Rect[144.0 206.2 219.8 219.2]/Border[0 0 0]/Dest[561 0 R/XYZ 0 734 0]>>endobj
+212 0 obj<</Subtype/Link/Rect[144.0 193.0 243.9 206.0]/Border[0 0 0]/Dest[561 0 R/XYZ 0 433 0]>>endobj
+213 0 obj<</Subtype/Link/Rect[144.0 179.8 292.2 192.8]/Border[0 0 0]/Dest[563 0 R/XYZ 0 734 0]>>endobj
+214 0 obj<</Subtype/Link/Rect[144.0 166.6 219.2 179.6]/Border[0 0 0]/Dest[563 0 R/XYZ 0 501 0]>>endobj
+215 0 obj<</Subtype/Link/Rect[144.0 153.4 190.1 166.4]/Border[0 0 0]/Dest[563 0 R/XYZ 0 217 0]>>endobj
+216 0 obj<</Subtype/Link/Rect[144.0 140.2 223.4 153.2]/Border[0 0 0]/Dest[565 0 R/XYZ 0 639 0]>>endobj
+217 0 obj<</Subtype/Link/Rect[144.0 127.0 230.8 140.0]/Border[0 0 0]/Dest[565 0 R/XYZ 0 154 0]>>endobj
+218 0 obj<</Subtype/Link/Rect[108.0 113.8 281.6 126.8]/Border[0 0 0]/Dest[567 0 R/XYZ 0 281 0]>>endobj
+219 0 obj<</Subtype/Link/Rect[144.0 100.6 247.9 113.6]/Border[0 0 0]/Dest[569 0 R/XYZ 0 533 0]>>endobj
+220 0 obj<</Subtype/Link/Rect[144.0 87.4 228.9 100.4]/Border[0 0 0]/Dest[569 0 R/XYZ 0 141 0]>>endobj
+221 0 obj<</Subtype/Link/Rect[144.0 74.2 256.1 87.2]/Border[0 0 0]/Dest[571 0 R/XYZ 0 424 0]>>endobj
+222 0 obj<</Subtype/Link/Rect[144.0 61.0 217.3 74.0]/Border[0 0 0]/Dest[573 0 R/XYZ 0 734 0]>>endobj
+223 0 obj[172 0 R
 173 0 R
 174 0 R
 175 0 R
@@ -356,59 +389,9 @@
 187 0 R
 188 0 R
 189 0 R
-190 0 R]endobj
-192 0 obj<</Subtype/Link/Rect[174.2 721.0 246.4 734.0]/Border[0 0 0]/Dest[556 0 R/XYZ 0 558 0]>>endobj
-193 0 obj<</Subtype/Link/Rect[174.2 707.8 269.9 720.8]/Border[0 0 0]/Dest[556 0 R/XYZ 0 500 0]>>endobj
-194 0 obj<</Subtype/Link/Rect[174.2 694.6 268.0 707.6]/Border[0 0 0]/Dest[556 0 R/XYZ 0 428 0]>>endobj
-195 0 obj<</Subtype/Link/Rect[124.5 681.4 243.0 694.4]/Border[0 0 0]/Dest[556 0 R/XYZ 0 370 0]>>endobj
-196 0 obj<</Subtype/Link/Rect[168.8 668.2 222.8 681.2]/Border[0 0 0]/Dest[556 0 R/XYZ 0 220 0]>>endobj
-197 0 obj<</Subtype/Link/Rect[168.8 655.0 228.0 668.0]/Border[0 0 0]/Dest[558 0 R/XYZ 0 441 0]>>endobj
-198 0 obj<</Subtype/Link/Rect[124.5 641.8 220.7 654.8]/Border[0 0 0]/Dest[560 0 R/XYZ 0 734 0]>>endobj
-199 0 obj<</Subtype/Link/Rect[80.2 628.6 158.5 641.6]/Border[0 0 0]/Dest[562 0 R/XYZ 0 734 0]>>endobj
-200 0 obj<</Subtype/Link/Rect[124.5 615.4 199.7 628.4]/Border[0 0 0]/Dest[562 0 R/XYZ 0 696 0]>>endobj
-201 0 obj<</Subtype/Link/Rect[168.8 602.2 277.8 615.2]/Border[0 0 0]/Dest[562 0 R/XYZ 0 423 0]>>endobj
-202 0 obj<</Subtype/Link/Rect[168.8 589.0 307.5 602.0]/Border[0 0 0]/Dest[562 0 R/XYZ 0 259 0]>>endobj
-203 0 obj<</Subtype/Link/Rect[168.8 575.8 284.6 588.8]/Border[0 0 0]/Dest[564 0 R/XYZ 0 652 0]>>endobj
-204 0 obj<</Subtype/Link/Rect[124.5 562.6 156.6 575.6]/Border[0 0 0]/Dest[564 0 R/XYZ 0 240 0]>>endobj
-205 0 obj<</Subtype/Link/Rect[168.8 549.4 241.2 562.4]/Border[0 0 0]/Dest[566 0 R/XYZ 0 665 0]>>endobj
-206 0 obj<</Subtype/Link/Rect[80.2 536.2 196.0 549.2]/Border[0 0 0]/Dest[568 0 R/XYZ 0 734 0]>>endobj
-207 0 obj<</Subtype/Link/Rect[124.5 523.0 182.2 536.0]/Border[0 0 0]/Dest[568 0 R/XYZ 0 696 0]>>endobj
-208 0 obj<</Subtype/Link/Rect[124.5 509.8 176.7 522.8]/Border[0 0 0]/Dest[568 0 R/XYZ 0 595 0]>>endobj
-209 0 obj<</Subtype/Link/Rect[124.5 496.6 196.0 509.6]/Border[0 0 0]/Dest[568 0 R/XYZ 0 216 0]>>endobj
-210 0 obj<</Subtype/Link/Rect[124.5 483.4 174.9 496.4]/Border[0 0 0]/Dest[570 0 R/XYZ 0 692 0]>>endobj
-211 0 obj<</Subtype/Link/Rect[124.5 470.2 162.7 483.2]/Border[0 0 0]/Dest[570 0 R/XYZ 0 458 0]>>endobj
-212 0 obj<</Subtype/Link/Rect[124.5 457.0 182.5 470.0]/Border[0 0 0]/Dest[572 0 R/XYZ 0 734 0]>>endobj
-213 0 obj<</Subtype/Link/Rect[124.5 443.8 196.0 456.8]/Border[0 0 0]/Dest[572 0 R/XYZ 0 566 0]>>endobj
-214 0 obj<</Subtype/Link/Rect[124.5 430.6 187.4 443.6]/Border[0 0 0]/Dest[572 0 R/XYZ 0 438 0]>>endobj
-215 0 obj<</Subtype/Link/Rect[124.5 417.4 218.6 430.4]/Border[0 0 0]/Dest[572 0 R/XYZ 0 178 0]>>endobj
-216 0 obj<</Subtype/Link/Rect[80.2 404.2 204.9 417.2]/Border[0 0 0]/Dest[576 0 R/XYZ 0 734 0]>>endobj
-217 0 obj<</Subtype/Link/Rect[80.2 391.0 164.8 404.0]/Border[0 0 0]/Dest[580 0 R/XYZ 0 734 0]>>endobj
-218 0 obj<</Subtype/Link/Rect[124.5 377.8 182.2 390.8]/Border[0 0 0]/Dest[580 0 R/XYZ 0 696 0]>>endobj
-219 0 obj<</Subtype/Link/Rect[168.8 364.6 206.3 377.6]/Border[0 0 0]/Dest[582 0 R/XYZ 0 626 0]>>endobj
-220 0 obj<</Subtype/Link/Rect[168.8 351.4 203.9 364.4]/Border[0 0 0]/Dest[582 0 R/XYZ 0 516 0]>>endobj
-221 0 obj<</Subtype/Link/Rect[124.5 338.2 219.5 351.2]/Border[0 0 0]/Dest[582 0 R/XYZ 0 394 0]>>endobj
-222 0 obj<</Subtype/Link/Rect[168.8 325.0 196.6 338.0]/Border[0 0 0]/Dest[582 0 R/XYZ 0 360 0]>>endobj
-223 0 obj<</Subtype/Link/Rect[168.8 311.8 233.2 324.8]/Border[0 0 0]/Dest[584 0 R/XYZ 0 718 0]>>endobj
-224 0 obj<</Subtype/Link/Rect[168.8 298.6 216.7 311.6]/Border[0 0 0]/Dest[584 0 R/XYZ 0 235 0]>>endobj
-225 0 obj<</Subtype/Link/Rect[124.5 285.4 283.7 298.4]/Border[0 0 0]/Dest[604 0 R/XYZ 0 428 0]>>endobj
-226 0 obj<</Subtype/Link/Rect[168.8 272.2 234.1 285.2]/Border[0 0 0]/Dest[604 0 R/XYZ 0 366 0]>>endobj
-227 0 obj<</Subtype/Link/Rect[168.8 259.0 204.5 272.0]/Border[0 0 0]/Dest[606 0 R/XYZ 0 567 0]>>endobj
-228 0 obj<</Subtype/Link/Rect[168.8 245.8 189.2 258.8]/Border[0 0 0]/Dest[614 0 R/XYZ 0 531 0]>>endobj
-229 0 obj<</Subtype/Link/Rect[168.8 232.6 264.4 245.6]/Border[0 0 0]/Dest[614 0 R/XYZ 0 407 0]>>endobj
-230 0 obj<</Subtype/Link/Rect[168.8 219.4 302.0 232.4]/Border[0 0 0]/Dest[616 0 R/XYZ 0 548 0]>>endobj
-231 0 obj<</Subtype/Link/Rect[168.8 206.2 247.3 219.2]/Border[0 0 0]/Dest[616 0 R/XYZ 0 140 0]>>endobj
-232 0 obj<</Subtype/Link/Rect[168.8 193.0 271.4 206.0]/Border[0 0 0]/Dest[618 0 R/XYZ 0 492 0]>>endobj
-233 0 obj<</Subtype/Link/Rect[168.8 179.8 319.7 192.8]/Border[0 0 0]/Dest[618 0 R/XYZ 0 145 0]>>endobj
-234 0 obj<</Subtype/Link/Rect[168.8 166.6 246.7 179.6]/Border[0 0 0]/Dest[620 0 R/XYZ 0 586 0]>>endobj
-235 0 obj<</Subtype/Link/Rect[174.2 153.4 223.1 166.4]/Border[0 0 0]/Dest[620 0 R/XYZ 0 301 0]>>endobj
-236 0 obj<</Subtype/Link/Rect[174.2 140.2 256.4 153.2]/Border[0 0 0]/Dest[622 0 R/XYZ 0 734 0]>>endobj
-237 0 obj<</Subtype/Link/Rect[174.2 127.0 263.8 140.0]/Border[0 0 0]/Dest[622 0 R/XYZ 0 249 0]>>endobj
-238 0 obj<</Subtype/Link/Rect[124.5 113.8 300.8 126.8]/Border[0 0 0]/Dest[624 0 R/XYZ 0 413 0]>>endobj
-239 0 obj<</Subtype/Link/Rect[168.8 100.6 275.4 113.6]/Border[0 0 0]/Dest[626 0 R/XYZ 0 665 0]>>endobj
-240 0 obj<</Subtype/Link/Rect[168.8 87.4 256.4 100.4]/Border[0 0 0]/Dest[626 0 R/XYZ 0 273 0]>>endobj
-241 0 obj<</Subtype/Link/Rect[168.8 74.2 283.6 87.2]/Border[0 0 0]/Dest[628 0 R/XYZ 0 531 0]>>endobj
-242 0 obj<</Subtype/Link/Rect[168.8 61.0 244.8 74.0]/Border[0 0 0]/Dest[628 0 R/XYZ 0 165 0]>>endobj
-243 0 obj[192 0 R
+190 0 R
+191 0 R
+192 0 R
 193 0 R
 194 0 R
 195 0 R
@@ -438,9 +421,30 @@
 219 0 R
 220 0 R
 221 0 R
-222 0 R
-223 0 R
-224 0 R
+222 0 R]endobj
+224 0 obj<</Subtype/Link/Rect[144.0 721.0 218.0 734.0]/Border[0 0 0]/Dest[573 0 R/XYZ 0 291 0]>>endobj
+225 0 obj<</Subtype/Link/Rect[108.0 707.8 242.5 720.8]/Border[0 0 0]/Dest[575 0 R/XYZ 0 705 0]>>endobj
+226 0 obj<</Subtype/Link/Rect[144.0 694.6 211.8 707.6]/Border[0 0 0]/Dest[575 0 R/XYZ 0 630 0]>>endobj
+227 0 obj<</Subtype/Link/Rect[144.0 681.4 196.2 694.4]/Border[0 0 0]/Dest[577 0 R/XYZ 0 734 0]>>endobj
+228 0 obj<</Subtype/Link/Rect[108.0 668.2 245.2 681.2]/Border[0 0 0]/Dest[579 0 R/XYZ 0 705 0]>>endobj
+229 0 obj<</Subtype/Link/Rect[144.0 655.0 216.1 668.0]/Border[0 0 0]/Dest[579 0 R/XYZ 0 577 0]>>endobj
+230 0 obj<</Subtype/Link/Rect[144.0 641.8 229.8 654.8]/Border[0 0 0]/Dest[581 0 R/XYZ 0 734 0]>>endobj
+231 0 obj<</Subtype/Link/Rect[108.0 628.6 326.5 641.6]/Border[0 0 0]/Dest[581 0 R/XYZ 0 433 0]>>endobj
+232 0 obj<</Subtype/Link/Rect[144.0 615.4 192.9 628.4]/Border[0 0 0]/Dest[581 0 R/XYZ 0 400 0]>>endobj
+233 0 obj<</Subtype/Link/Rect[144.0 602.2 182.5 615.2]/Border[0 0 0]/Dest[583 0 R/XYZ 0 734 0]>>endobj
+234 0 obj<</Subtype/Link/Rect[144.0 589.0 190.4 602.0]/Border[0 0 0]/Dest[583 0 R/XYZ 0 385 0]>>endobj
+235 0 obj<</Subtype/Link/Rect[108.0 575.8 174.0 588.8]/Border[0 0 0]/Dest[583 0 R/XYZ 0 128 0]>>endobj
+236 0 obj<</Subtype/Link/Rect[144.0 562.6 224.4 575.6]/Border[0 0 0]/Dest[585 0 R/XYZ 0 633 0]>>endobj
+237 0 obj<</Subtype/Link/Rect[144.0 549.4 226.9 562.4]/Border[0 0 0]/Dest[587 0 R/XYZ 0 665 0]>>endobj
+238 0 obj<</Subtype/Link/Rect[72.0 536.2 183.8 549.2]/Border[0 0 0]/Dest[591 0 R/XYZ 0 734 0]>>endobj
+239 0 obj<</Subtype/Link/Rect[108.0 523.0 145.3 536.0]/Border[0 0 0]/Dest[591 0 R/XYZ 0 696 0]>>endobj
+240 0 obj<</Subtype/Link/Rect[108.0 509.8 283.7 522.8]/Border[0 0 0]/Dest[591 0 R/XYZ 0 621 0]>>endobj
+241 0 obj<</Subtype/Link/Rect[108.0 496.6 192.2 509.6]/Border[0 0 0]/Dest[591 0 R/XYZ 0 361 0]>>endobj
+242 0 obj<</Subtype/Link/Rect[108.0 483.4 336.0 496.4]/Border[0 0 0]/Dest[595 0 R/XYZ 0 692 0]>>endobj
+243 0 obj<</Subtype/Link/Rect[108.0 470.2 281.6 483.2]/Border[0 0 0]/Dest[595 0 R/XYZ 0 630 0]>>endobj
+244 0 obj<</Subtype/Link/Rect[72.0 457.0 172.8 470.0]/Border[0 0 0]/Dest[601 0 R/XYZ 0 734 0]>>endobj
+245 0 obj<</Subtype/Link/Rect[108.0 443.8 174.3 456.8]/Border[0 0 0]/Dest[601 0 R/XYZ 0 696 0]>>endobj
+246 0 obj[224 0 R
 225 0 R
 226 0 R
 227 0 R
@@ -458,2095 +462,1767 @@
 239 0 R
 240 0 R
 241 0 R
-242 0 R]endobj
-244 0 obj<</Subtype/Link/Rect[168.8 721.0 245.5 734.0]/Border[0 0 0]/Dest[630 0 R/XYZ 0 353 0]>>endobj
-245 0 obj<</Subtype/Link/Rect[124.5 707.8 261.7 720.8]/Border[0 0 0]/Dest[632 0 R/XYZ 0 734 0]>>endobj
-246 0 obj<</Subtype/Link/Rect[168.8 694.6 239.3 707.6]/Border[0 0 0]/Dest[632 0 R/XYZ 0 658 0]>>endobj
-247 0 obj<</Subtype/Link/Rect[168.8 681.4 223.8 694.4]/Border[0 0 0]/Dest[634 0 R/XYZ 0 734 0]>>endobj
-248 0 obj<</Subtype/Link/Rect[124.5 668.2 264.4 681.2]/Border[0 0 0]/Dest[636 0 R/XYZ 0 705 0]>>endobj
-249 0 obj<</Subtype/Link/Rect[168.8 655.0 243.6 668.0]/Border[0 0 0]/Dest[636 0 R/XYZ 0 577 0]>>endobj
-250 0 obj<</Subtype/Link/Rect[168.8 641.8 257.3 654.8]/Border[0 0 0]/Dest[638 0 R/XYZ 0 734 0]>>endobj
-251 0 obj<</Subtype/Link/Rect[124.5 628.6 345.7 641.6]/Border[0 0 0]/Dest[638 0 R/XYZ 0 433 0]>>endobj
-252 0 obj<</Subtype/Link/Rect[168.8 615.4 220.4 628.4]/Border[0 0 0]/Dest[638 0 R/XYZ 0 400 0]>>endobj
-253 0 obj<</Subtype/Link/Rect[168.8 602.2 210.0 615.2]/Border[0 0 0]/Dest[640 0 R/XYZ 0 734 0]>>endobj
-254 0 obj<</Subtype/Link/Rect[168.8 589.0 217.9 602.0]/Border[0 0 0]/Dest[640 0 R/XYZ 0 385 0]>>endobj
-255 0 obj<</Subtype/Link/Rect[124.5 575.8 193.2 588.8]/Border[0 0 0]/Dest[640 0 R/XYZ 0 128 0]>>endobj
-256 0 obj<</Subtype/Link/Rect[168.8 562.6 251.9 575.6]/Border[0 0 0]/Dest[642 0 R/XYZ 0 633 0]>>endobj
-257 0 obj<</Subtype/Link/Rect[168.8 549.4 254.4 562.4]/Border[0 0 0]/Dest[644 0 R/XYZ 0 665 0]>>endobj
-258 0 obj<</Subtype/Link/Rect[85.8 536.2 200.3 549.2]/Border[0 0 0]/Dest[648 0 R/XYZ 0 734 0]>>endobj
-259 0 obj<</Subtype/Link/Rect[130.0 523.0 170.0 536.0]/Border[0 0 0]/Dest[648 0 R/XYZ 0 696 0]>>endobj
-260 0 obj<</Subtype/Link/Rect[130.0 509.8 308.4 522.8]/Border[0 0 0]/Dest[648 0 R/XYZ 0 621 0]>>endobj
-261 0 obj<</Subtype/Link/Rect[130.0 496.6 217.0 509.6]/Border[0 0 0]/Dest[648 0 R/XYZ 0 361 0]>>endobj
-262 0 obj<</Subtype/Link/Rect[130.0 483.4 360.7 496.4]/Border[0 0 0]/Dest[652 0 R/XYZ 0 692 0]>>endobj
-263 0 obj<</Subtype/Link/Rect[130.0 470.2 306.3 483.2]/Border[0 0 0]/Dest[652 0 R/XYZ 0 630 0]>>endobj
-264 0 obj<</Subtype/Link/Rect[85.8 457.0 189.3 470.0]/Border[0 0 0]/Dest[658 0 R/XYZ 0 734 0]>>endobj
-265 0 obj<</Subtype/Link/Rect[130.0 443.8 199.0 456.8]/Border[0 0 0]/Dest[658 0 R/XYZ 0 696 0]>>endobj
-266 0 obj<</Subtype/Link/Rect[85.8 430.6 211.0 443.6]/Border[0 0 0]/Dest[660 0 R/XYZ 0 734 0]>>endobj
-267 0 obj<</Subtype/Link/Rect[130.0 417.4 245.6 430.4]/Border[0 0 0]/Dest[660 0 R/XYZ 0 696 0]>>endobj
-268 0 obj<</Subtype/Link/Rect[130.0 404.2 234.2 417.2]/Border[0 0 0]/Dest[662 0 R/XYZ 0 639 0]>>endobj
-269 0 obj<</Subtype/Link/Rect[130.0 391.0 289.8 404.0]/Border[0 0 0]/Dest[662 0 R/XYZ 0 498 0]>>endobj
-270 0 obj<</Subtype/Link/Rect[130.0 377.8 162.7 390.8]/Border[0 0 0]/Dest[662 0 R/XYZ 0 198 0]>>endobj
-271 0 obj<</Subtype/Link/Rect[174.2 364.6 228.3 377.6]/Border[0 0 0]/Dest[662 0 R/XYZ 0 165 0]>>endobj
-272 0 obj<</Subtype/Link/Rect[174.2 351.4 240.8 364.4]/Border[0 0 0]/Dest[664 0 R/XYZ 0 734 0]>>endobj
-273 0 obj<</Subtype/Link/Rect[174.2 338.2 239.0 351.2]/Border[0 0 0]/Dest[664 0 R/XYZ 0 596 0]>>endobj
-274 0 obj<</Subtype/Link/Rect[130.0 325.0 194.8 338.0]/Border[0 0 0]/Dest[664 0 R/XYZ 0 485 0]>>endobj
-275 0 obj<</Subtype/Link/Rect[174.2 311.8 305.9 324.8]/Border[0 0 0]/Dest[664 0 R/XYZ 0 451 0]>>endobj
-276 0 obj<</Subtype/Link/Rect[174.2 298.6 215.5 311.6]/Border[0 0 0]/Dest[664 0 R/XYZ 0 366 0]>>endobj
-277 0 obj<</Subtype/Link/Rect[130.0 285.4 229.6 298.4]/Border[0 0 0]/Dest[664 0 R/XYZ 0 229 0]>>endobj
-278 0 obj<</Subtype/Link/Rect[130.0 272.2 165.1 285.2]/Border[0 0 0]/Dest[666 0 R/XYZ 0 489 0]>>endobj
-279 0 obj<</Subtype/Link/Rect[85.8 259.0 259.0 272.0]/Border[0 0 0]/Dest[668 0 R/XYZ 0 734 0]>>endobj
-280 0 obj<</Subtype/Link/Rect[130.0 245.8 187.8 258.8]/Border[0 0 0]/Dest[668 0 R/XYZ 0 696 0]>>endobj
-281 0 obj<</Subtype/Link/Rect[130.0 232.6 215.6 245.6]/Border[0 0 0]/Dest[668 0 R/XYZ 0 568 0]>>endobj
-282 0 obj<</Subtype/Link/Rect[130.0 219.4 218.9 221.4]/Border[0 0 0]/Dest[670 0 R/XYZ 0 718 0]>>endobj
-283 0 obj[244 0 R
-245 0 R
-246 0 R
-247 0 R
-248 0 R
-249 0 R
-250 0 R
-251 0 R
-252 0 R
-253 0 R
-254 0 R
+242 0 R
+243 0 R
+244 0 R
+245 0 R]endobj
+247 0 obj<</S/URI/URI(http://lxr.linux.no/source/Documentation/CodingStyle)>>endobj
+248 0 obj<</Subtype/Link/Rect[72.0 499.0 310.3 512.0]/Border[0 0 0]/A 247 0 R>>endobj
+249 0 obj<</S/URI/URI(http://www.fsf.org/prep/standards_toc.html)>>endobj
+250 0 obj<</Subtype/Link/Rect[72.0 472.6 263.0 485.6]/Border[0 0 0]/A 249 0 R>>endobj
+251 0 obj[248 0 R
+250 0 R]endobj
+252 0 obj<</S/URI/URI(http://mailhost.cb1.com/~lkcl/cifsntdomain.txt)>>endobj
+253 0 obj<</Subtype/Link/Rect[226.0 637.0 433.6 650.0]/Border[0 0 0]/A 252 0 R>>endobj
+254 0 obj<</S/URI/URI(http://ntbugtraq.rc.on.ca/SCRIPTS/WA.EXE?A2=ind9708;L=ntbugtraq;O=A;P=2935)>>endobj
+255 0 obj<</Subtype/Link/Rect[72.0 386.2 451.3 399.2]/Border[0 0 0]/A 254 0 R>>endobj
+256 0 obj<</S/URI/URI(http://mailhost.cb1.com/~lkcl/crypt.html)>>endobj
+257 0 obj<</Subtype/Link/Rect[72.0 359.8 250.6 372.8]/Border[0 0 0]/A 256 0 R>>endobj
+258 0 obj<</S/URI/URI(mailto:linus@incolumitas.se)>>endobj
+259 0 obj<</Subtype/Link/Rect[244.7 333.4 317.4 346.4]/Border[0 0 0]/A 258 0 R>>endobj
+260 0 obj<</S/URI/URI(http://samba.org/cgi-bin/mfs/01/digest/1997/97aug/0391.html)>>endobj
+261 0 obj<</Subtype/Link/Rect[72.0 307.0 346.5 320.0]/Border[0 0 0]/A 260 0 R>>endobj
+262 0 obj<</S/URI/URI(http://mailhost.cb1.com/~lkcl/crypt.txt)>>endobj
+263 0 obj<</Subtype/Link/Rect[72.0 280.6 242.0 293.6]/Border[0 0 0]/A 262 0 R>>endobj
+264 0 obj[253 0 R
 255 0 R
-256 0 R
 257 0 R
-258 0 R
 259 0 R
-260 0 R
 261 0 R
-262 0 R
-263 0 R
-264 0 R
-265 0 R
-266 0 R
-267 0 R
-268 0 R
-269 0 R
-270 0 R
-271 0 R
-272 0 R
-273 0 R
-274 0 R
-275 0 R
-276 0 R
-277 0 R
-278 0 R
-279 0 R
-280 0 R
-281 0 R
-282 0 R]endobj
-284 0 obj<</S/URI/URI(http://lxr.linux.no/source/Documentation/CodingStyle)>>endobj
-285 0 obj<</Subtype/Link/Rect[72.0 499.0 310.3 512.0]/Border[0 0 0]/A 284 0 R>>endobj
-286 0 obj<</S/URI/URI(http://www.fsf.org/prep/standards_toc.html)>>endobj
-287 0 obj<</Subtype/Link/Rect[72.0 472.6 263.0 485.6]/Border[0 0 0]/A 286 0 R>>endobj
-288 0 obj[285 0 R
-287 0 R]endobj
-289 0 obj<</S/URI/URI(http://mailhost.cb1.com/~lkcl/cifsntdomain.txt)>>endobj
-290 0 obj<</Subtype/Link/Rect[226.0 637.0 433.6 650.0]/Border[0 0 0]/A 289 0 R>>endobj
-291 0 obj<</S/URI/URI(http://ntbugtraq.rc.on.ca/SCRIPTS/WA.EXE?A2=ind9708;L=ntbugtraq;O=A;P=2935)>>endobj
-292 0 obj<</Subtype/Link/Rect[72.0 386.2 451.3 399.2]/Border[0 0 0]/A 291 0 R>>endobj
-293 0 obj<</S/URI/URI(http://mailhost.cb1.com/~lkcl/crypt.html)>>endobj
-294 0 obj<</Subtype/Link/Rect[72.0 359.8 250.6 372.8]/Border[0 0 0]/A 293 0 R>>endobj
-295 0 obj<</S/URI/URI(mailto:linus@incolumitas.se)>>endobj
-296 0 obj<</Subtype/Link/Rect[244.7 333.4 317.4 346.4]/Border[0 0 0]/A 295 0 R>>endobj
-297 0 obj<</S/URI/URI(http://samba.org/cgi-bin/mfs/01/digest/1997/97aug/0391.html)>>endobj
-298 0 obj<</Subtype/Link/Rect[72.0 307.0 346.5 320.0]/Border[0 0 0]/A 297 0 R>>endobj
-299 0 obj<</S/URI/URI(http://mailhost.cb1.com/~lkcl/crypt.txt)>>endobj
-300 0 obj<</Subtype/Link/Rect[72.0 280.6 242.0 293.6]/Border[0 0 0]/A 299 0 R>>endobj
-301 0 obj[290 0 R
-292 0 R
-294 0 R
-296 0 R
-298 0 R
-300 0 R]endobj
-302 0 obj<</Dests 303 0 R>>endobj
-303 0 obj<</Kids[304 0 R]>>endobj
-304 0 obj<</Limits[(aen1008)(wins)]/Names[(aen1008)305 0 R(aen1019)306 0 R(aen103)307 0 R(aen1040)308 0 R(aen1053)309 0 R(aen1100)310 0 R(aen1127)311 0 R(aen1138)312 0 R(aen1177)313 0 R(aen1208)314 0 R(aen128)315 0 R(aen1365)316 0 R(aen1388)317 0 R(aen1399)318 0 R(aen1445)319 0 R(aen151)320 0 R(aen1571)321 0 R(aen1574)322 0 R(aen1588)323 0 R(aen159)324 0 R(aen1649)325 0 R(aen1688)326 0 R(aen1693)327 0 R(aen1704)328 0 R(aen1744)329 0 R(aen1755)330 0 R(aen179)331 0 R(aen1799)332 0 R(aen181)333 0 R(aen1819)334 0 R(aen184)335 0 R(aen1842)336 0 R(aen1854)337 0 R(aen188)338 0 R(aen1898)339 0 R(aen1939)340 0 R(aen1943)341 0 R(aen1962)342 0 R(aen1973)343 0 R(aen1977)344 0 R(aen1988)345 0 R(aen2001)346 0 R(aen2003)347 0 R(aen2006)348 0 R(aen2025)349 0 R(aen2027)350 0 R(aen2030)351 0 R(aen2054)352 0 R(aen2056)353 0 R(aen2063)354 0 R(aen2071)355 0 R(aen2075)356 0 R(aen2102)357 0 R(aen2130)358 0 R(aen2134)359 0 R(aen2165)360 0 R(aen2193)361 0 R(aen2232)362 0 R(aen2240)363 0 R(aen2259)364 0 R(aen2267)365 0 R(aen2275)366 0 R(aen2294)367 0 R(aen2306)368 0 R(aen2316)369 0 R(aen2327)370 0 R(aen2335)371 0 R(aen2339)372 0 R(aen2346)373 0 R(aen2359)374 0 R(aen2363)375 0 R(aen2370)376 0 R(aen2382)377 0 R(aen2386)378 0 R(aen2390)379 0 R(aen24)380 0 R(aen2425)381 0 R(aen2460)382 0 R(aen2468)383 0 R(aen2519)384 0 R(aen2550)385 0 R(aen2562)386 0 R(aen2568)387 0 R(aen2603)388 0 R(aen2623)389 0 R(aen2627)390 0 R(aen2638)391 0 R(aen2654)392 0 R(aen2656)393 0 R(aen2699)394 0 R(aen2709)395 0 R(aen2716)396 0 R(aen2724)397 0 R(aen2726)398 0 R(aen2761)399 0 R(aen2812)400 0 R(aen2815)401 0 R(aen2829)402 0 R(aen284)403 0 R(aen2847)404 0 R(aen288)405 0 R(aen2896)406 0 R(aen2899)407 0 R(aen2925)408 0 R(aen2959)409 0 R(aen2962)410 0 R(aen3033)411 0 R(aen3054)412 0 R(aen3071)413 0 R(aen3075)414 0 R(aen3086)415 0 R(aen3088)416 0 R(aen3091)417 0 R(aen3095)418 0 R(aen3098)419 0 R(aen3100)420 0 R(aen3103)421 0 R(aen3107)422 0 R(aen3121)423 0 R(aen3147)424 0 R(aen3151)425 0 R(aen3162)426 0 R(aen317)427 0 R(aen320)428 0 R(aen323)429 0 R(aen326)430 0 R(aen329)431 0 R(aen332)432 0 R(aen335)433 0 R(aen338)434 0 R(aen341)435 0 R(aen344)436 0 R(aen347)437 0 R(aen35)438 0 R(aen350)439 0 R(aen353)440 0 R(aen356)441 0 R(aen359)442 0 R(aen362)443 0 R(aen365)444 0 R(aen371)445 0 R(aen39)446 0 R(aen4)447 0 R(aen406)448 0 R(aen420)449 0 R(aen451)450 0 R(aen472)451 0 R(aen484)452 0 R(aen495)453 0 R(aen515)454 0 R(aen530)455 0 R(aen54)456 0 R(aen540)457 0 R(aen544)458 0 R(aen552)459 0 R(aen557)460 0 R(aen563)461 0 R(aen571)462 0 R(aen575)463 0 R(aen579)464 0 R(aen584)465 0 R(aen65)466 0 R(aen652)467 0 R(aen688)468 0 R(aen695)469 0 R(aen70)470 0 R(aen702)471 0 R(aen704)472 0 R(aen717)473 0 R(aen719)474 0 R(aen739)475 0 R(aen775)476 0 R(aen777)477 0 R(aen780)478 0 R(aen783)479 0 R(aen786)480 0 R(aen789)481 0 R(aen8)482 0 R(aen814)483 0 R(aen817)484 0 R(aen832)485 0 R(aen843)486 0 R(aen850)487 0 R(aen86)488 0 R(aen861)489 0 R(aen884)490 0 R(aen911)491 0 R(aen918)492 0 R(aen92)493 0 R(aen941)494 0 R(aen960)495 0 R(aen987)496 0 R(architecture)497 0 R(codingsuggestions)498 0 R(debug)499 0 R(internals)500 0 R(netbios)501 0 R(ntdomain)502 0 R(parsing)503 0 R(printing)504 0 R(pwencrypt)505 0 R(sam)506 0 R(samba-developers-guide)507 0 R(samba-developers-guide.html)508 0 R(smbpasswdfileformat)509 0 R(tracing)510 0 R(unix-smb)511 0 R(wins)512 0 R]>>endobj
-305 0 obj<</D[592 0 R/XYZ 0 734 0]>>endobj
-306 0 obj<</D[592 0 R/XYZ 0 639 0]>>endobj
-307 0 obj<</D[540 0 R/XYZ 0 696 0]>>endobj
-308 0 obj<</D[592 0 R/XYZ 0 439 0]>>endobj
-309 0 obj<</D[592 0 R/XYZ 0 292 0]>>endobj
-310 0 obj<</D[594 0 R/XYZ 0 626 0]>>endobj
-311 0 obj<</D[594 0 R/XYZ 0 345 0]>>endobj
-312 0 obj<</D[594 0 R/XYZ 0 251 0]>>endobj
-313 0 obj<</D[596 0 R/XYZ 0 639 0]>>endobj
-314 0 obj<</D[596 0 R/XYZ 0 413 0]>>endobj
-315 0 obj<</D[542 0 R/XYZ 0 734 0]>>endobj
-316 0 obj<</D[600 0 R/XYZ 0 679 0]>>endobj
-317 0 obj<</D[600 0 R/XYZ 0 438 0]>>endobj
-318 0 obj<</D[600 0 R/XYZ 0 344 0]>>endobj
-319 0 obj<</D[602 0 R/XYZ 0 639 0]>>endobj
-320 0 obj<</D[544 0 R/XYZ 0 734 0]>>endobj
-321 0 obj<</D[604 0 R/XYZ 0 428 0]>>endobj
-322 0 obj<</D[604 0 R/XYZ 0 366 0]>>endobj
-323 0 obj<</D[606 0 R/XYZ 0 567 0]>>endobj
-324 0 obj<</D[544 0 R/XYZ 0 514 0]>>endobj
-325 0 obj<</D[610 0 R/XYZ 0 734 0]>>endobj
-326 0 obj<</D[610 0 R/XYZ 0 467 0]>>endobj
-327 0 obj<</D[610 0 R/XYZ 0 378 0]>>endobj
-328 0 obj<</D[610 0 R/XYZ 0 283 0]>>endobj
-329 0 obj<</D[612 0 R/XYZ 0 639 0]>>endobj
-330 0 obj<</D[612 0 R/XYZ 0 545 0]>>endobj
-331 0 obj<</D[546 0 R/XYZ 0 734 0]>>endobj
-332 0 obj<</D[612 0 R/XYZ 0 213 0]>>endobj
-333 0 obj<</D[546 0 R/XYZ 0 700 0]>>endobj
-334 0 obj<</D[614 0 R/XYZ 0 705 0]>>endobj
-335 0 obj<</D[546 0 R/XYZ 0 602 0]>>endobj
-336 0 obj<</D[614 0 R/XYZ 0 531 0]>>endobj
-337 0 obj<</D[614 0 R/XYZ 0 407 0]>>endobj
-338 0 obj<</D[546 0 R/XYZ 0 491 0]>>endobj
-339 0 obj<</D[616 0 R/XYZ 0 548 0]>>endobj
-340 0 obj<</D[616 0 R/XYZ 0 140 0]>>endobj
-341 0 obj<</D[618 0 R/XYZ 0 734 0]>>endobj
-342 0 obj<</D[618 0 R/XYZ 0 586 0]>>endobj
-343 0 obj<</D[618 0 R/XYZ 0 492 0]>>endobj
-344 0 obj<</D[618 0 R/XYZ 0 433 0]>>endobj
-345 0 obj<</D[618 0 R/XYZ 0 339 0]>>endobj
-346 0 obj<</D[618 0 R/XYZ 0 145 0]>>endobj
-347 0 obj<</D[618 0 R/XYZ 0 115 0]>>endobj
-348 0 obj<</D[620 0 R/XYZ 0 734 0]>>endobj
-349 0 obj<</D[620 0 R/XYZ 0 586 0]>>endobj
-350 0 obj<</D[620 0 R/XYZ 0 556 0]>>endobj
-351 0 obj<</D[620 0 R/XYZ 0 501 0]>>endobj
-352 0 obj<</D[620 0 R/XYZ 0 301 0]>>endobj
-353 0 obj<</D[620 0 R/XYZ 0 271 0]>>endobj
-354 0 obj<</D[620 0 R/XYZ 0 203 0]>>endobj
-355 0 obj<</D[622 0 R/XYZ 0 734 0]>>endobj
-356 0 obj<</D[622 0 R/XYZ 0 675 0]>>endobj
-357 0 obj<</D[622 0 R/XYZ 0 475 0]>>endobj
-358 0 obj<</D[622 0 R/XYZ 0 249 0]>>endobj
-359 0 obj<</D[622 0 R/XYZ 0 190 0]>>endobj
-360 0 obj<</D[624 0 R/XYZ 0 639 0]>>endobj
-361 0 obj<</D[624 0 R/XYZ 0 413 0]>>endobj
-362 0 obj<</D[626 0 R/XYZ 0 665 0]>>endobj
-363 0 obj<</D[626 0 R/XYZ 0 515 0]>>endobj
-364 0 obj<</D[626 0 R/XYZ 0 367 0]>>endobj
-365 0 obj<</D[626 0 R/XYZ 0 273 0]>>endobj
-366 0 obj<</D[626 0 R/XYZ 0 135 0]>>endobj
-367 0 obj<</D[628 0 R/XYZ 0 652 0]>>endobj
-368 0 obj<</D[628 0 R/XYZ 0 531 0]>>endobj
-369 0 obj<</D[628 0 R/XYZ 0 354 0]>>endobj
-370 0 obj<</D[628 0 R/XYZ 0 260 0]>>endobj
-371 0 obj<</D[628 0 R/XYZ 0 165 0]>>endobj
-372 0 obj<</D[630 0 R/XYZ 0 734 0]>>endobj
-373 0 obj<</D[630 0 R/XYZ 0 665 0]>>endobj
-374 0 obj<</D[630 0 R/XYZ 0 353 0]>>endobj
-375 0 obj<</D[630 0 R/XYZ 0 281 0]>>endobj
-376 0 obj<</D[630 0 R/XYZ 0 213 0]>>endobj
-377 0 obj<</D[632 0 R/XYZ 0 734 0]>>endobj
-378 0 obj<</D[632 0 R/XYZ 0 658 0]>>endobj
-379 0 obj<</D[632 0 R/XYZ 0 600 0]>>endobj
-380 0 obj<</D[532 0 R/XYZ 0 672 0]>>endobj
-381 0 obj<</D[632 0 R/XYZ 0 347 0]>>endobj
-382 0 obj<</D[634 0 R/XYZ 0 734 0]>>endobj
-383 0 obj<</D[634 0 R/XYZ 0 622 0]>>endobj
-384 0 obj<</D[634 0 R/XYZ 0 264 0]>>endobj
-385 0 obj<</D[636 0 R/XYZ 0 705 0]>>endobj
-386 0 obj<</D[636 0 R/XYZ 0 577 0]>>endobj
-387 0 obj<</D[636 0 R/XYZ 0 492 0]>>endobj
-388 0 obj<</D[636 0 R/XYZ 0 239 0]>>endobj
-389 0 obj<</D[638 0 R/XYZ 0 734 0]>>endobj
-390 0 obj<</D[638 0 R/XYZ 0 675 0]>>endobj
-391 0 obj<</D[638 0 R/XYZ 0 581 0]>>endobj
-392 0 obj<</D[638 0 R/XYZ 0 433 0]>>endobj
-393 0 obj<</D[638 0 R/XYZ 0 400 0]>>endobj
-394 0 obj<</D[640 0 R/XYZ 0 734 0]>>endobj
-395 0 obj<</D[640 0 R/XYZ 0 385 0]>>endobj
-396 0 obj<</D[640 0 R/XYZ 0 128 0]>>endobj
-397 0 obj<</D[642 0 R/XYZ 0 633 0]>>endobj
-398 0 obj<</D[642 0 R/XYZ 0 603 0]>>endobj
-399 0 obj<</D[642 0 R/XYZ 0 351 0]>>endobj
-400 0 obj<</D[644 0 R/XYZ 0 665 0]>>endobj
-401 0 obj<</D[644 0 R/XYZ 0 594 0]>>endobj
-402 0 obj<</D[644 0 R/XYZ 0 407 0]>>endobj
-403 0 obj<</D[552 0 R/XYZ 0 696 0]>>endobj
-404 0 obj<</D[644 0 R/XYZ 0 141 0]>>endobj
-405 0 obj<</D[552 0 R/XYZ 0 568 0]>>endobj
-406 0 obj<</D[648 0 R/XYZ 0 696 0]>>endobj
-407 0 obj<</D[648 0 R/XYZ 0 621 0]>>endobj
-408 0 obj<</D[648 0 R/XYZ 0 361 0]>>endobj
-409 0 obj<</D[652 0 R/XYZ 0 692 0]>>endobj
-410 0 obj<</D[652 0 R/XYZ 0 630 0]>>endobj
-411 0 obj<</D[658 0 R/XYZ 0 696 0]>>endobj
-412 0 obj<</D[660 0 R/XYZ 0 696 0]>>endobj
-413 0 obj<</D[662 0 R/XYZ 0 639 0]>>endobj
-414 0 obj<</D[662 0 R/XYZ 0 498 0]>>endobj
-415 0 obj<</D[662 0 R/XYZ 0 198 0]>>endobj
-416 0 obj<</D[662 0 R/XYZ 0 165 0]>>endobj
-417 0 obj<</D[664 0 R/XYZ 0 734 0]>>endobj
-418 0 obj<</D[664 0 R/XYZ 0 596 0]>>endobj
-419 0 obj<</D[664 0 R/XYZ 0 485 0]>>endobj
-420 0 obj<</D[664 0 R/XYZ 0 451 0]>>endobj
-421 0 obj<</D[664 0 R/XYZ 0 366 0]>>endobj
-422 0 obj<</D[664 0 R/XYZ 0 229 0]>>endobj
-423 0 obj<</D[666 0 R/XYZ 0 489 0]>>endobj
-424 0 obj<</D[668 0 R/XYZ 0 696 0]>>endobj
-425 0 obj<</D[668 0 R/XYZ 0 568 0]>>endobj
-426 0 obj<</D[670 0 R/XYZ 0 718 0]>>endobj
-427 0 obj<</D[554 0 R/XYZ 0 705 0]>>endobj
-428 0 obj<</D[554 0 R/XYZ 0 630 0]>>endobj
-429 0 obj<</D[554 0 R/XYZ 0 571 0]>>endobj
-430 0 obj<</D[554 0 R/XYZ 0 513 0]>>endobj
-431 0 obj<</D[554 0 R/XYZ 0 455 0]>>endobj
-432 0 obj<</D[554 0 R/XYZ 0 383 0]>>endobj
-433 0 obj<</D[554 0 R/XYZ 0 325 0]>>endobj
-434 0 obj<</D[554 0 R/XYZ 0 266 0]>>endobj
-435 0 obj<</D[554 0 R/XYZ 0 208 0]>>endobj
-436 0 obj<</D[554 0 R/XYZ 0 149 0]>>endobj
-437 0 obj<</D[556 0 R/XYZ 0 734 0]>>endobj
-438 0 obj<</D[532 0 R/XYZ 0 201 0]>>endobj
-439 0 obj<</D[556 0 R/XYZ 0 675 0]>>endobj
-440 0 obj<</D[556 0 R/XYZ 0 617 0]>>endobj
-441 0 obj<</D[556 0 R/XYZ 0 558 0]>>endobj
-442 0 obj<</D[556 0 R/XYZ 0 500 0]>>endobj
-443 0 obj<</D[556 0 R/XYZ 0 428 0]>>endobj
-444 0 obj<</D[556 0 R/XYZ 0 370 0]>>endobj
-445 0 obj<</D[556 0 R/XYZ 0 220 0]>>endobj
-446 0 obj<</D[534 0 R/XYZ 0 705 0]>>endobj
-447 0 obj<</D[524 0 R/XYZ 0 696 0]>>endobj
-448 0 obj<</D[558 0 R/XYZ 0 441 0]>>endobj
-449 0 obj<</D[560 0 R/XYZ 0 734 0]>>endobj
-450 0 obj<</D[562 0 R/XYZ 0 696 0]>>endobj
-451 0 obj<</D[562 0 R/XYZ 0 423 0]>>endobj
-452 0 obj<</D[562 0 R/XYZ 0 259 0]>>endobj
-453 0 obj<</D[564 0 R/XYZ 0 652 0]>>endobj
-454 0 obj<</D[564 0 R/XYZ 0 240 0]>>endobj
-455 0 obj<</D[566 0 R/XYZ 0 665 0]>>endobj
-456 0 obj<</D[536 0 R/XYZ 0 696 0]>>endobj
-457 0 obj<</D[568 0 R/XYZ 0 696 0]>>endobj
-458 0 obj<</D[568 0 R/XYZ 0 595 0]>>endobj
-459 0 obj<</D[568 0 R/XYZ 0 216 0]>>endobj
-460 0 obj<</D[570 0 R/XYZ 0 692 0]>>endobj
-461 0 obj<</D[570 0 R/XYZ 0 458 0]>>endobj
-462 0 obj<</D[572 0 R/XYZ 0 734 0]>>endobj
-463 0 obj<</D[572 0 R/XYZ 0 566 0]>>endobj
-464 0 obj<</D[572 0 R/XYZ 0 438 0]>>endobj
-465 0 obj<</D[572 0 R/XYZ 0 178 0]>>endobj
-466 0 obj<</D[536 0 R/XYZ 0 529 0]>>endobj
-467 0 obj<</D[580 0 R/XYZ 0 696 0]>>endobj
-468 0 obj<</D[582 0 R/XYZ 0 626 0]>>endobj
-469 0 obj<</D[582 0 R/XYZ 0 516 0]>>endobj
-470 0 obj<</D[536 0 R/XYZ 0 335 0]>>endobj
-471 0 obj<</D[582 0 R/XYZ 0 394 0]>>endobj
-472 0 obj<</D[582 0 R/XYZ 0 360 0]>>endobj
-473 0 obj<</D[584 0 R/XYZ 0 718 0]>>endobj
-474 0 obj<</D[584 0 R/XYZ 0 688 0]>>endobj
-475 0 obj<</D[584 0 R/XYZ 0 515 0]>>endobj
-476 0 obj<</D[584 0 R/XYZ 0 235 0]>>endobj
-477 0 obj<</D[584 0 R/XYZ 0 205 0]>>endobj
-478 0 obj<</D[584 0 R/XYZ 0 151 0]>>endobj
-479 0 obj<</D[586 0 R/XYZ 0 734 0]>>endobj
-480 0 obj<</D[586 0 R/XYZ 0 665 0]>>endobj
-481 0 obj<</D[586 0 R/XYZ 0 611 0]>>endobj
-482 0 obj<</D[526 0 R/XYZ 0 734 0]>>endobj
-483 0 obj<</D[586 0 R/XYZ 0 411 0]>>endobj
-484 0 obj<</D[586 0 R/XYZ 0 356 0]>>endobj
-485 0 obj<</D[586 0 R/XYZ 0 235 0]>>endobj
-486 0 obj<</D[586 0 R/XYZ 0 141 0]>>endobj
-487 0 obj<</D[588 0 R/XYZ 0 734 0]>>endobj
-488 0 obj<</D[538 0 R/XYZ 0 734 0]>>endobj
-489 0 obj<</D[588 0 R/XYZ 0 639 0]>>endobj
-490 0 obj<</D[588 0 R/XYZ 0 465 0]>>endobj
-491 0 obj<</D[588 0 R/XYZ 0 265 0]>>endobj
-492 0 obj<</D[588 0 R/XYZ 0 197 0]>>endobj
-493 0 obj<</D[538 0 R/XYZ 0 434 0]>>endobj
-494 0 obj<</D[590 0 R/XYZ 0 665 0]>>endobj
-495 0 obj<</D[590 0 R/XYZ 0 518 0]>>endobj
-496 0 obj<</D[590 0 R/XYZ 0 279 0]>>endobj
-497 0 obj<</D[536 0 R/XYZ 0 734 0]>>endobj
-498 0 obj<</D[548 0 R/XYZ 0 734 0]>>endobj
-499 0 obj<</D[540 0 R/XYZ 0 734 0]>>endobj
-500 0 obj<</D[552 0 R/XYZ 0 734 0]>>endobj
-501 0 obj<</D[532 0 R/XYZ 0 734 0]>>endobj
-502 0 obj<</D[580 0 R/XYZ 0 734 0]>>endobj
-503 0 obj<</D[562 0 R/XYZ 0 734 0]>>endobj
-504 0 obj<</D[648 0 R/XYZ 0 734 0]>>endobj
-505 0 obj<</D[668 0 R/XYZ 0 734 0]>>endobj
-506 0 obj<</D[660 0 R/XYZ 0 734 0]>>endobj
-507 0 obj<</D[524 0 R/XYZ 0 734 0]>>endobj
-508 0 obj<</D[524 0 R/XYZ 0 734 0]>>endobj
-509 0 obj<</D[670 0 R/XYZ 0 718 0]>>endobj
-510 0 obj<</D[576 0 R/XYZ 0 734 0]>>endobj
-511 0 obj<</D[568 0 R/XYZ 0 734 0]>>endobj
-512 0 obj<</D[658 0 R/XYZ 0 734 0]>>endobj
-513 0 obj<</Type/Pages/Count 80/Kids[514 0 R
-516 0 R
-518 0 R
-520 0 R
-522 0 R
-524 0 R
-526 0 R
-528 0 R
-530 0 R
-532 0 R
-534 0 R
-536 0 R
-538 0 R
-540 0 R
-542 0 R
-544 0 R
-546 0 R
-548 0 R
-550 0 R
-552 0 R
-554 0 R
-556 0 R
-558 0 R
-560 0 R
-562 0 R
-564 0 R
-566 0 R
-568 0 R
-570 0 R
-572 0 R
-574 0 R
-576 0 R
-578 0 R
-580 0 R
-582 0 R
-584 0 R
-586 0 R
-588 0 R
-590 0 R
-592 0 R
-594 0 R
-596 0 R
-598 0 R
-600 0 R
-602 0 R
-604 0 R
-606 0 R
-608 0 R
-610 0 R
-612 0 R
-614 0 R
-616 0 R
-618 0 R
-620 0 R
-622 0 R
-624 0 R
-626 0 R
-628 0 R
-630 0 R
-632 0 R
-634 0 R
-636 0 R
-638 0 R
-640 0 R
-642 0 R
-644 0 R
-646 0 R
-648 0 R
-650 0 R
-652 0 R
-654 0 R
-656 0 R
-658 0 R
-660 0 R
-662 0 R
-664 0 R
-666 0 R
-668 0 R
-670 0 R
-672 0 R
+263 0 R]endobj
+265 0 obj<</Dests 266 0 R>>endobj
+266 0 obj<</Kids[267 0 R]>>endobj
+267 0 obj<</Limits[(aen1007)(wins)]/Names[(aen1007)268 0 R(aen1018)269 0 R(aen103)270 0 R(aen1039)271 0 R(aen1052)272 0 R(aen1099)273 0 R(aen1126)274 0 R(aen1137)275 0 R(aen1176)276 0 R(aen1207)277 0 R(aen128)278 0 R(aen1364)279 0 R(aen1387)280 0 R(aen1398)281 0 R(aen1444)282 0 R(aen151)283 0 R(aen1570)284 0 R(aen1573)285 0 R(aen1587)286 0 R(aen159)287 0 R(aen1648)288 0 R(aen1687)289 0 R(aen1692)290 0 R(aen1703)291 0 R(aen1743)292 0 R(aen1754)293 0 R(aen179)294 0 R(aen1798)295 0 R(aen181)296 0 R(aen1818)297 0 R(aen184)298 0 R(aen1841)299 0 R(aen1853)300 0 R(aen188)301 0 R(aen1897)302 0 R(aen1938)303 0 R(aen1942)304 0 R(aen1961)305 0 R(aen1972)306 0 R(aen1976)307 0 R(aen1987)308 0 R(aen2000)309 0 R(aen2002)310 0 R(aen2005)311 0 R(aen2024)312 0 R(aen2026)313 0 R(aen2029)314 0 R(aen2053)315 0 R(aen2055)316 0 R(aen2062)317 0 R(aen2070)318 0 R(aen2074)319 0 R(aen2101)320 0 R(aen2129)321 0 R(aen2133)322 0 R(aen2164)323 0 R(aen2192)324 0 R(aen2231)325 0 R(aen2239)326 0 R(aen2258)327 0 R(aen2266)328 0 R(aen2274)329 0 R(aen2293)330 0 R(aen2305)331 0 R(aen2315)332 0 R(aen2326)333 0 R(aen2334)334 0 R(aen2338)335 0 R(aen2345)336 0 R(aen2358)337 0 R(aen2362)338 0 R(aen2369)339 0 R(aen2381)340 0 R(aen2385)341 0 R(aen2389)342 0 R(aen24)343 0 R(aen2424)344 0 R(aen2459)345 0 R(aen2467)346 0 R(aen2518)347 0 R(aen2549)348 0 R(aen2561)349 0 R(aen2567)350 0 R(aen2602)351 0 R(aen2622)352 0 R(aen2626)353 0 R(aen2637)354 0 R(aen2653)355 0 R(aen2655)356 0 R(aen2698)357 0 R(aen2708)358 0 R(aen2715)359 0 R(aen2723)360 0 R(aen2725)361 0 R(aen2760)362 0 R(aen2811)363 0 R(aen2814)364 0 R(aen2828)365 0 R(aen284)366 0 R(aen2846)367 0 R(aen288)368 0 R(aen2895)369 0 R(aen2898)370 0 R(aen2924)371 0 R(aen2958)372 0 R(aen2961)373 0 R(aen3032)374 0 R(aen317)375 0 R(aen320)376 0 R(aen323)377 0 R(aen326)378 0 R(aen329)379 0 R(aen332)380 0 R(aen335)381 0 R(aen338)382 0 R(aen341)383 0 R(aen344)384 0 R(aen347)385 0 R(aen35)386 0 R(aen350)387 0 R(aen353)388 0 R(aen356)389 0 R(aen359)390 0 R(aen362)391 0 R(aen365)392 0 R(aen371)393 0 R(aen39)394 0 R(aen4)395 0 R(aen406)396 0 R(aen420)397 0 R(aen451)398 0 R(aen472)399 0 R(aen484)400 0 R(aen495)401 0 R(aen515)402 0 R(aen530)403 0 R(aen54)404 0 R(aen540)405 0 R(aen544)406 0 R(aen552)407 0 R(aen557)408 0 R(aen563)409 0 R(aen570)410 0 R(aen574)411 0 R(aen578)412 0 R(aen583)413 0 R(aen65)414 0 R(aen651)415 0 R(aen687)416 0 R(aen694)417 0 R(aen70)418 0 R(aen701)419 0 R(aen703)420 0 R(aen716)421 0 R(aen718)422 0 R(aen738)423 0 R(aen774)424 0 R(aen776)425 0 R(aen779)426 0 R(aen782)427 0 R(aen785)428 0 R(aen788)429 0 R(aen8)430 0 R(aen813)431 0 R(aen816)432 0 R(aen831)433 0 R(aen842)434 0 R(aen849)435 0 R(aen86)436 0 R(aen860)437 0 R(aen883)438 0 R(aen910)439 0 R(aen917)440 0 R(aen92)441 0 R(aen940)442 0 R(aen959)443 0 R(aen986)444 0 R(architecture)445 0 R(codingsuggestions)446 0 R(debug)447 0 R(internals)448 0 R(netbios)449 0 R(ntdomain)450 0 R(parsing)451 0 R(printing)452 0 R(samba-developer-documentation)453 0 R(samba-developers-guide.html)454 0 R(tracing)455 0 R(unix-smb)456 0 R(wins)457 0 R]>>endobj
+268 0 obj<</D[535 0 R/XYZ 0 734 0]>>endobj
+269 0 obj<</D[535 0 R/XYZ 0 639 0]>>endobj
+270 0 obj<</D[483 0 R/XYZ 0 696 0]>>endobj
+271 0 obj<</D[535 0 R/XYZ 0 439 0]>>endobj
+272 0 obj<</D[535 0 R/XYZ 0 292 0]>>endobj
+273 0 obj<</D[537 0 R/XYZ 0 626 0]>>endobj
+274 0 obj<</D[537 0 R/XYZ 0 343 0]>>endobj
+275 0 obj<</D[537 0 R/XYZ 0 248 0]>>endobj
+276 0 obj<</D[539 0 R/XYZ 0 639 0]>>endobj
+277 0 obj<</D[539 0 R/XYZ 0 413 0]>>endobj
+278 0 obj<</D[485 0 R/XYZ 0 718 0]>>endobj
+279 0 obj<</D[543 0 R/XYZ 0 679 0]>>endobj
+280 0 obj<</D[543 0 R/XYZ 0 438 0]>>endobj
+281 0 obj<</D[543 0 R/XYZ 0 344 0]>>endobj
+282 0 obj<</D[545 0 R/XYZ 0 639 0]>>endobj
+283 0 obj<</D[487 0 R/XYZ 0 718 0]>>endobj
+284 0 obj<</D[547 0 R/XYZ 0 428 0]>>endobj
+285 0 obj<</D[547 0 R/XYZ 0 366 0]>>endobj
+286 0 obj<</D[549 0 R/XYZ 0 564 0]>>endobj
+287 0 obj<</D[487 0 R/XYZ 0 493 0]>>endobj
+288 0 obj<</D[553 0 R/XYZ 0 734 0]>>endobj
+289 0 obj<</D[553 0 R/XYZ 0 467 0]>>endobj
+290 0 obj<</D[553 0 R/XYZ 0 375 0]>>endobj
+291 0 obj<</D[553 0 R/XYZ 0 281 0]>>endobj
+292 0 obj<</D[555 0 R/XYZ 0 626 0]>>endobj
+293 0 obj<</D[555 0 R/XYZ 0 531 0]>>endobj
+294 0 obj<</D[489 0 R/XYZ 0 734 0]>>endobj
+295 0 obj<</D[555 0 R/XYZ 0 199 0]>>endobj
+296 0 obj<</D[489 0 R/XYZ 0 700 0]>>endobj
+297 0 obj<</D[557 0 R/XYZ 0 692 0]>>endobj
+298 0 obj<</D[489 0 R/XYZ 0 602 0]>>endobj
+299 0 obj<</D[557 0 R/XYZ 0 518 0]>>endobj
+300 0 obj<</D[557 0 R/XYZ 0 394 0]>>endobj
+301 0 obj<</D[489 0 R/XYZ 0 491 0]>>endobj
+302 0 obj<</D[559 0 R/XYZ 0 522 0]>>endobj
+303 0 obj<</D[561 0 R/XYZ 0 734 0]>>endobj
+304 0 obj<</D[561 0 R/XYZ 0 675 0]>>endobj
+305 0 obj<</D[561 0 R/XYZ 0 528 0]>>endobj
+306 0 obj<</D[561 0 R/XYZ 0 433 0]>>endobj
+307 0 obj<</D[561 0 R/XYZ 0 375 0]>>endobj
+308 0 obj<</D[561 0 R/XYZ 0 281 0]>>endobj
+309 0 obj<</D[563 0 R/XYZ 0 734 0]>>endobj
+310 0 obj<</D[563 0 R/XYZ 0 704 0]>>endobj
+311 0 obj<</D[563 0 R/XYZ 0 649 0]>>endobj
+312 0 obj<</D[563 0 R/XYZ 0 501 0]>>endobj
+313 0 obj<</D[563 0 R/XYZ 0 471 0]>>endobj
+314 0 obj<</D[563 0 R/XYZ 0 417 0]>>endobj
+315 0 obj<</D[563 0 R/XYZ 0 217 0]>>endobj
+316 0 obj<</D[563 0 R/XYZ 0 187 0]>>endobj
+317 0 obj<</D[565 0 R/XYZ 0 734 0]>>endobj
+318 0 obj<</D[565 0 R/XYZ 0 639 0]>>endobj
+319 0 obj<</D[565 0 R/XYZ 0 581 0]>>endobj
+320 0 obj<</D[565 0 R/XYZ 0 381 0]>>endobj
+321 0 obj<</D[565 0 R/XYZ 0 154 0]>>endobj
+322 0 obj<</D[567 0 R/XYZ 0 734 0]>>endobj
+323 0 obj<</D[567 0 R/XYZ 0 507 0]>>endobj
+324 0 obj<</D[567 0 R/XYZ 0 281 0]>>endobj
+325 0 obj<</D[569 0 R/XYZ 0 533 0]>>endobj
+326 0 obj<</D[569 0 R/XYZ 0 383 0]>>endobj
+327 0 obj<</D[569 0 R/XYZ 0 235 0]>>endobj
+328 0 obj<</D[569 0 R/XYZ 0 141 0]>>endobj
+329 0 obj<</D[571 0 R/XYZ 0 692 0]>>endobj
+330 0 obj<</D[571 0 R/XYZ 0 545 0]>>endobj
+331 0 obj<</D[571 0 R/XYZ 0 424 0]>>endobj
+332 0 obj<</D[571 0 R/XYZ 0 247 0]>>endobj
+333 0 obj<</D[571 0 R/XYZ 0 152 0]>>endobj
+334 0 obj<</D[573 0 R/XYZ 0 734 0]>>endobj
+335 0 obj<</D[573 0 R/XYZ 0 675 0]>>endobj
+336 0 obj<</D[573 0 R/XYZ 0 607 0]>>endobj
+337 0 obj<</D[573 0 R/XYZ 0 291 0]>>endobj
+338 0 obj<</D[573 0 R/XYZ 0 220 0]>>endobj
+339 0 obj<</D[573 0 R/XYZ 0 152 0]>>endobj
+340 0 obj<</D[575 0 R/XYZ 0 705 0]>>endobj
+341 0 obj<</D[575 0 R/XYZ 0 630 0]>>endobj
+342 0 obj<</D[575 0 R/XYZ 0 571 0]>>endobj
+343 0 obj<</D[475 0 R/XYZ 0 672 0]>>endobj
+344 0 obj<</D[575 0 R/XYZ 0 319 0]>>endobj
+345 0 obj<</D[577 0 R/XYZ 0 734 0]>>endobj
+346 0 obj<</D[577 0 R/XYZ 0 622 0]>>endobj
+347 0 obj<</D[577 0 R/XYZ 0 264 0]>>endobj
+348 0 obj<</D[579 0 R/XYZ 0 705 0]>>endobj
+349 0 obj<</D[579 0 R/XYZ 0 577 0]>>endobj
+350 0 obj<</D[579 0 R/XYZ 0 492 0]>>endobj
+351 0 obj<</D[579 0 R/XYZ 0 239 0]>>endobj
+352 0 obj<</D[581 0 R/XYZ 0 734 0]>>endobj
+353 0 obj<</D[581 0 R/XYZ 0 675 0]>>endobj
+354 0 obj<</D[581 0 R/XYZ 0 581 0]>>endobj
+355 0 obj<</D[581 0 R/XYZ 0 433 0]>>endobj
+356 0 obj<</D[581 0 R/XYZ 0 400 0]>>endobj
+357 0 obj<</D[583 0 R/XYZ 0 734 0]>>endobj
+358 0 obj<</D[583 0 R/XYZ 0 385 0]>>endobj
+359 0 obj<</D[583 0 R/XYZ 0 128 0]>>endobj
+360 0 obj<</D[585 0 R/XYZ 0 633 0]>>endobj
+361 0 obj<</D[585 0 R/XYZ 0 603 0]>>endobj
+362 0 obj<</D[585 0 R/XYZ 0 351 0]>>endobj
+363 0 obj<</D[587 0 R/XYZ 0 665 0]>>endobj
+364 0 obj<</D[587 0 R/XYZ 0 594 0]>>endobj
+365 0 obj<</D[587 0 R/XYZ 0 407 0]>>endobj
+366 0 obj<</D[495 0 R/XYZ 0 696 0]>>endobj
+367 0 obj<</D[587 0 R/XYZ 0 141 0]>>endobj
+368 0 obj<</D[495 0 R/XYZ 0 568 0]>>endobj
+369 0 obj<</D[591 0 R/XYZ 0 696 0]>>endobj
+370 0 obj<</D[591 0 R/XYZ 0 621 0]>>endobj
+371 0 obj<</D[591 0 R/XYZ 0 361 0]>>endobj
+372 0 obj<</D[595 0 R/XYZ 0 692 0]>>endobj
+373 0 obj<</D[595 0 R/XYZ 0 630 0]>>endobj
+374 0 obj<</D[601 0 R/XYZ 0 696 0]>>endobj
+375 0 obj<</D[497 0 R/XYZ 0 705 0]>>endobj
+376 0 obj<</D[497 0 R/XYZ 0 630 0]>>endobj
+377 0 obj<</D[497 0 R/XYZ 0 571 0]>>endobj
+378 0 obj<</D[497 0 R/XYZ 0 513 0]>>endobj
+379 0 obj<</D[497 0 R/XYZ 0 455 0]>>endobj
+380 0 obj<</D[497 0 R/XYZ 0 383 0]>>endobj
+381 0 obj<</D[497 0 R/XYZ 0 325 0]>>endobj
+382 0 obj<</D[497 0 R/XYZ 0 266 0]>>endobj
+383 0 obj<</D[497 0 R/XYZ 0 208 0]>>endobj
+384 0 obj<</D[497 0 R/XYZ 0 149 0]>>endobj
+385 0 obj<</D[499 0 R/XYZ 0 734 0]>>endobj
+386 0 obj<</D[475 0 R/XYZ 0 201 0]>>endobj
+387 0 obj<</D[499 0 R/XYZ 0 675 0]>>endobj
+388 0 obj<</D[499 0 R/XYZ 0 617 0]>>endobj
+389 0 obj<</D[499 0 R/XYZ 0 558 0]>>endobj
+390 0 obj<</D[499 0 R/XYZ 0 500 0]>>endobj
+391 0 obj<</D[499 0 R/XYZ 0 428 0]>>endobj
+392 0 obj<</D[499 0 R/XYZ 0 370 0]>>endobj
+393 0 obj<</D[499 0 R/XYZ 0 217 0]>>endobj
+394 0 obj<</D[477 0 R/XYZ 0 705 0]>>endobj
+395 0 obj<</D[467 0 R/XYZ 0 696 0]>>endobj
+396 0 obj<</D[501 0 R/XYZ 0 428 0]>>endobj
+397 0 obj<</D[503 0 R/XYZ 0 734 0]>>endobj
+398 0 obj<</D[505 0 R/XYZ 0 696 0]>>endobj
+399 0 obj<</D[505 0 R/XYZ 0 423 0]>>endobj
+400 0 obj<</D[505 0 R/XYZ 0 259 0]>>endobj
+401 0 obj<</D[507 0 R/XYZ 0 652 0]>>endobj
+402 0 obj<</D[507 0 R/XYZ 0 223 0]>>endobj
+403 0 obj<</D[509 0 R/XYZ 0 652 0]>>endobj
+404 0 obj<</D[479 0 R/XYZ 0 696 0]>>endobj
+405 0 obj<</D[511 0 R/XYZ 0 696 0]>>endobj
+406 0 obj<</D[511 0 R/XYZ 0 595 0]>>endobj
+407 0 obj<</D[511 0 R/XYZ 0 216 0]>>endobj
+408 0 obj<</D[513 0 R/XYZ 0 692 0]>>endobj
+409 0 obj<</D[513 0 R/XYZ 0 458 0]>>endobj
+410 0 obj<</D[513 0 R/XYZ 0 145 0]>>endobj
+411 0 obj<</D[515 0 R/XYZ 0 665 0]>>endobj
+412 0 obj<</D[515 0 R/XYZ 0 537 0]>>endobj
+413 0 obj<</D[515 0 R/XYZ 0 277 0]>>endobj
+414 0 obj<</D[479 0 R/XYZ 0 529 0]>>endobj
+415 0 obj<</D[523 0 R/XYZ 0 696 0]>>endobj
+416 0 obj<</D[525 0 R/XYZ 0 626 0]>>endobj
+417 0 obj<</D[525 0 R/XYZ 0 516 0]>>endobj
+418 0 obj<</D[479 0 R/XYZ 0 335 0]>>endobj
+419 0 obj<</D[525 0 R/XYZ 0 394 0]>>endobj
+420 0 obj<</D[525 0 R/XYZ 0 360 0]>>endobj
+421 0 obj<</D[527 0 R/XYZ 0 718 0]>>endobj
+422 0 obj<</D[527 0 R/XYZ 0 688 0]>>endobj
+423 0 obj<</D[527 0 R/XYZ 0 515 0]>>endobj
+424 0 obj<</D[527 0 R/XYZ 0 235 0]>>endobj
+425 0 obj<</D[527 0 R/XYZ 0 205 0]>>endobj
+426 0 obj<</D[527 0 R/XYZ 0 151 0]>>endobj
+427 0 obj<</D[529 0 R/XYZ 0 734 0]>>endobj
+428 0 obj<</D[529 0 R/XYZ 0 665 0]>>endobj
+429 0 obj<</D[529 0 R/XYZ 0 611 0]>>endobj
+430 0 obj<</D[469 0 R/XYZ 0 734 0]>>endobj
+431 0 obj<</D[529 0 R/XYZ 0 411 0]>>endobj
+432 0 obj<</D[529 0 R/XYZ 0 356 0]>>endobj
+433 0 obj<</D[529 0 R/XYZ 0 235 0]>>endobj
+434 0 obj<</D[529 0 R/XYZ 0 141 0]>>endobj
+435 0 obj<</D[531 0 R/XYZ 0 734 0]>>endobj
+436 0 obj<</D[481 0 R/XYZ 0 734 0]>>endobj
+437 0 obj<</D[531 0 R/XYZ 0 639 0]>>endobj
+438 0 obj<</D[531 0 R/XYZ 0 465 0]>>endobj
+439 0 obj<</D[531 0 R/XYZ 0 265 0]>>endobj
+440 0 obj<</D[531 0 R/XYZ 0 197 0]>>endobj
+441 0 obj<</D[481 0 R/XYZ 0 434 0]>>endobj
+442 0 obj<</D[533 0 R/XYZ 0 665 0]>>endobj
+443 0 obj<</D[533 0 R/XYZ 0 518 0]>>endobj
+444 0 obj<</D[533 0 R/XYZ 0 279 0]>>endobj
+445 0 obj<</D[479 0 R/XYZ 0 734 0]>>endobj
+446 0 obj<</D[491 0 R/XYZ 0 734 0]>>endobj
+447 0 obj<</D[483 0 R/XYZ 0 734 0]>>endobj
+448 0 obj<</D[495 0 R/XYZ 0 734 0]>>endobj
+449 0 obj<</D[475 0 R/XYZ 0 734 0]>>endobj
+450 0 obj<</D[523 0 R/XYZ 0 734 0]>>endobj
+451 0 obj<</D[505 0 R/XYZ 0 734 0]>>endobj
+452 0 obj<</D[591 0 R/XYZ 0 734 0]>>endobj
+453 0 obj<</D[467 0 R/XYZ 0 734 0]>>endobj
+454 0 obj<</D[467 0 R/XYZ 0 734 0]>>endobj
+455 0 obj<</D[519 0 R/XYZ 0 734 0]>>endobj
+456 0 obj<</D[511 0 R/XYZ 0 734 0]>>endobj
+457 0 obj<</D[601 0 R/XYZ 0 734 0]>>endobj
+458 0 obj<</Type/Pages/Count 72/Kids[459 0 R
+461 0 R
+463 0 R
+465 0 R
+467 0 R
+469 0 R
+471 0 R
+473 0 R
+475 0 R
+477 0 R
+479 0 R
+481 0 R
+483 0 R
+485 0 R
+487 0 R
+489 0 R
+491 0 R
+493 0 R
+495 0 R
+497 0 R
+499 0 R
+501 0 R
+503 0 R
+505 0 R
+507 0 R
+509 0 R
+511 0 R
+513 0 R
+515 0 R
+517 0 R
+519 0 R
+521 0 R
+523 0 R
+525 0 R
+527 0 R
+529 0 R
+531 0 R
+533 0 R
+535 0 R
+537 0 R
+539 0 R
+541 0 R
+543 0 R
+545 0 R
+547 0 R
+549 0 R
+551 0 R
+553 0 R
+555 0 R
+557 0 R
+559 0 R
+561 0 R
+563 0 R
+565 0 R
+567 0 R
+569 0 R
+571 0 R
+573 0 R
+575 0 R
+577 0 R
+579 0 R
+581 0 R
+583 0 R
+585 0 R
+587 0 R
+589 0 R
+591 0 R
+593 0 R
+595 0 R
+597 0 R
+599 0 R
+601 0 R
 ]>>endobj
-514 0 obj<</Type/Page/Parent 513 0 R/Contents 515 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-515 0 obj<</Filter/FlateDecode/Length 93        >>stream
+459 0 obj<</Type/Page/Parent 458 0 R/Contents 460 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+460 0 obj<</Filter/FlateDecode/Length 93        >>stream
 x
+ä2T0BCs#c3…ä\.§.}7K#…4CCK=ccS=3…= D²F°£¯“£‚KjYjN~AjQ±‚{ifJªfH—kW SÙ?endstream
 endobj
-516 0 obj<</Type/Page/Parent 513 0 R/Contents 517 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F5 7 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>/Annots 55 0 R>>endobj
-517 0 obj<</Filter/FlateDecode/Length 2528      >>stream
-x
Õ[moGþî_±S Úììû~ôK’Ð$=K×O
-ÙZÛ:XRN–zÍ¿ïCrfÈ]%HÃyÝHõèYΐəUþsæ’ÿ¹¤É“¢Nn7gYšá›ø×õ;ú&©Ëo’¢K“ù™›¤+ÓÒpn—WigÈ¢¦A‹*m1hS¥ÎÔ@f9	ò“D²2Y‡™6I™Å PU[=]"Àëà&©2L§œ°¡ÃÊUœƒºJZ¶j ”a
‹‘²o’<ÏÒÂÈZV–5+’ƒy-[4ƒ‘ÙïUMÊÀ9Ë€œd ùÝa¥•ÁªNë(È@=çrG.Œ¤Å¶®0‚²2lI&}谞kK’‹œ4oÉÈHRŒT®1À@Ás²ò‘3p“´UšûAHÎ@ÌW6db#°êTj„çbVD’Ë.S§
-ˆ‚#'‰’ClÃβƒmrŒ¯²2iCÑê]^2ÐI=ç2Š;%-&§“ƒ••aënÃ2Ða=燉¤Å4,­eY¶r¼˜¡%Ös-m!åÄ ŽÔR’¤Ì)¢8£9hL¸.@˜A™Bäù"i9’!Î@̗•ä¹HZ¶¬á{Ãšc1£¬8©G—‹:Às
¥Ô2r’By'’“B!‘å)‹®Õ¥§"«DI Ù
-1(ç4%-‹Uk¨L‰]FE†—¹` SzN¦ŒœdG‰õRA‹Á¢®Ô†•)±nq×tJÏÉ‘3¦¤4©‚Ӕ\£¬LYµºß:¥çxñ”3ƒæ9
ª‚%œV”HӒ[ðŠ($Aöy$+,h4„3?É@=GK‡)")‚N:d ‚ž£ÔS%E$i˜¼£`óûNÉñ¾ï;åDbn°ÆÊH«QÂ|%y¾ºfe:Ÿçd‚ÈèA9D^žÄ|EFóE’×7¯¤á(@ˆ6£%OðƒÄHFPH))ƒBý§9Ôs˜Êˆ	©Â*g YÁ.ƒÊ„¹)õ9Ðs-m|åäFª2ڝ1!|
uP
-ÄÜIÀñ$€&4
ÃO²6,ˆ2#8g ‚žsXR¨IŽ`‡Ø¡tÃSˆ‚£Ü"'ӓqFù2ò*ȐT¥åI¬¥ÔˌTÐsÔ\`ÆHŠªø’ò¿2PAÏ9´\%¢‡žÔ)È"È@=燢€žTA$uôœloJ+Ö9éTe ‚žs
URI¶çÊèìr:JÔ¬‹"¸TAT³•ºÈ&F	ÑnŠÏTKeãÇøsòŒ«è)ª¤6±ŽBž‘%‹a+“/Xˆ?G!Ï8äôôQ,„(:‚?G!ϸ–ÎD‘ºXœ½~œ%‹;ÄÒr•ÔM™,V|ŽÃ×·¯˛Ç>ÙÝ%—»í¡ßž~XüRZ#’šy±YNb¯æç.Îé	ä„&§#"¾L®úßûÇÝç~ÏÂPµnõî¸^õ$cŸw­¤Sÿqb$6…Ù¶0”*òÈDçjoâ¢_n،:mÛò…˜ÜèÍÑ5Ëòd†$ÊKv~ótØ/o¼jmÚT/Lù`Äèÿ9é;+XáhËåÃòó¡ß³)hÇ΀.¥¯°˜!ïÖÛõa½ÛÒ׸ h3yty2í\áŸþØ.Þšó£UZåÿþçýî°»Ý=26„Âr»¢¯Ðú”mÆXn8ÊQöQKý—×ýÓîñÔ@ikë0Ƈݪç͂֩(ÿ‡mQ‘*¯ßÆHÎQO±Ä1š]ê}S£>Šw>¾YD{ëlÒ‰6ؑË«ןί.Ïçr
î*Šè]»¢EZL·_ŇÜ7´¥Ûòñâ# Â!k›°P&0ó¥G¾m”g‡µ„œfd
-¹p¾µIý†M:_nn–4nð\‚ó|û°>ô·‡ãž7ºÉ3V3ÚcÎeºÁ°0ãÅ|¿=ìw«ãmÜù/+å²93œZÍöÂQolŇããa}xØ÷ËÕz{Ï{L«GⓠCGRør˜èŠâð6ãs‡§XG=«MƒÈ²cûÖ4ôÆ]ÈÍO›Ið8úTþÜFŒç£p8´©üË6m_žM-…ÔìĦjlÓöf#ˁÓC,ãWýÓú~ËÙ—/Ãc·M‚Ù.Û@£ÑønnôÑrãâAzfœŸb5xŠù%Mñæâ_ïÈtR{.yúòtè¹_EA‰ôYÝёR¦1q%Üzl¢ÆËü±ÿ/IäEZ¹Ð¬}:>¥qµ6Ï¿lË?xñÑÞà<Ã}ͳZ7œŒmÉ]®±ñ$¥úeÅ­W[…‚wEøë«_àE4ièÃòv¿F¶S–—‘3çÐÛ5üJJå°=µïüê*˜ˆºÓ´!ÕFÑ!ÕÉÖñÙ	‹ÖmûJjý†m?ýòS°šÐ2TCk[Vù=Œ›ÿ7ŠÆ
‹!¶Ø_Ù}o[naøœ‚»á¼x!iÖÉÙ°n]5Y%YoHBϘ¬nîý‡°BxŸ1åN2þm#$mŒŒxXíƒ
tõòBŒHƒôVËd¾Ê·[ֈ»Ý~³<ü¶êoŽ÷¿Ù5™¦z‹æ¶Nãê‘Ú«ïc|f¥úrÚc܎wñB`~¼¿ïŸèÀÛ7°“Ÿß\!ioÃé4ú=;}Žvjsok8êôûíòQr.h_B`ºñ¥^j˜ðiÂéUŽ¬tE&7KHuUÎàÿÀAçџ<ÊnêC¸7n6Ç)ýkÍÆÖ7Yè+›Pƒïi§ÂzŠ:l2#>z#»N“JH)fÕ¸Âräá
-¡‰×nk>àµvÉ7_ýn¿ê÷éí
¼,êª)Òñʬ4dái
»üåýÅÍñîÇÏ»'éúanª‡>{.tö¤üiáúù4³¶`Í®ÿñ÷壸¯ &©¿Þñíõ ›áí(ïýîÇK±Ê¿?U^z½	£囫'š•ØçPÌ×_uý|¼céä4™ö!pè%÷(ršõÉù'êã­ü„úGߟ¤ËöDýù܏ٴ“œ]‚çQ´¨µ×8ݩꃸWÕ[~{0EôDõË¡î.cåée—‹„ý®q£Ús{f坿ÆÇnG[@ûx ú0äê“$ú¨ü(`œ”W«ùõ Ø}s€Ÿ0LµWƒêY;®Pˆü±Û¯á0OFåÑKŽ]/vèúï5hèG«Ï¾Awh8V]ÊëPõçUõé¶êë·øa“ü?‘ÃeYÝÐùï1ÌL’øƒ’"ÿÀá¬É:zrM
öfqöϳ?
æšñ'endstream
-endobj
-518 0 obj<</Type/Page/Parent 513 0 R/Contents 519 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F5 7 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>/Annots 100 0 R>>endobj
-519 0 obj<</Filter/FlateDecode/Length 3031      >>stream
-x
Í[Ms9½ûWôm³)Ýìï£ãLf\å8N¤ÔžeY™h#©½úÈLþý>$nyÖ»[É3U‰žž@€ìο.²$ÅÿYR»$¯’ùú"§ø&þñéWú&©Š®“¼g¬’É…ë¤L{œë¤)ÇÎȸN²<7†Ì+š0/ñ%uãÒšÐÀuR×ãÖpbЬ׆´,Æ),k0ØÚõ.Rȹq…ꆔe@
-(–`ØHŠ`Úb® È@=—eéI‹i؆ˆ,/PÙVXR¿@âʕ‰rbP—õH‹Á%–OE)ʪe—°ÓЌúPŽc ÈÕVÎ@̗UX%-¦È1³²²eÅá(èx®ihÊÈHÐÒD’U¹:K@tVà2øºò/‰´˜t-ú¬Á`¡‚••I±
ȕK%Ôs~’HZ'UV&
²e=Î83x¸¬¦uˆ²¢¾¤ý.*1P•<—¥ÅH$-†JU†MdXƒÁ¶œ§¬x4%7‡f@“Šƒ=‡ÌHPŽ¶fѦº5De—a÷„_i1Ô))6U”½¨
-ö
-Ç·4Ї»rîA®-¡”rb¾´î‘ƒÍÈHµlÁº²vl‰Á`ëÞTY^Øæ‘7y%¤¤RK*ñ/ÙNÊÂE^«G¨ ç²´@ÞWRftäß0#ô²l‘‘3Ú8ڇJÊ œ%àtPÏI‘dÁ¼¥<àDÁÀµ®Ê‰¢-®[Î@å<WSETÎ@X
5CÊ H|1Ês:¨ç8·+g -£A£ Z6ºÞ9ÔsuŽŸ(g iJÁ®¤Š"@•‹ã$g ƒz®¥ú¬œ´¨iÐ(H»*G]Ž„“wUàx)gà:ÁVÇró $g ­’ƒÅ2„ùIÔb°
•C•%]¬¡ fåD]ÇÊ)gà:©誜˜/¥TÒb°EŠhT–Ýá[ÑHöNàd’ò£«¤Uàd.€
Č(À¹ÿ%Ê‚eÎΒ_2PAÏeYN‚‘U±d1ÆUÕs
›9áe*Í*g ­MEk¹^9'̀hÊ@5õ%Y,y$EêÇîÌ1PAÏeŁ’"˜š¢í¨ ç2̅ˆ$¯MÖHie¿	ˆk8NFÊHž¢­ª¤Å`¡\kYƒÁ6BFÖ`ꨠ+ËvfÈäJ^Y
ÑÎÀe³’“Ã
-Œ ¬[™š1Ða='¡¥¤"©D‡Q†)ôâêDNäÐÅ&‹š4gä<—¥±¬¤Å°ÞÄâEQ‹ÁæŽ&UÖ`°h3{²ƒÅÑ¥4²¢0ô؂Qwž…=G»ގ¤Å4)u†5,²[fYƒ)¨UYQ	;Hc®½çüšEÒbLêRXYƒIa:´)˓r§èã?Ç)=#3DÊ@Œ/”‰r
-i6*ˆÊ)×P9V"ŽŠxFfŽ”4™ƒiÊ)¤É¨&*§~È©.EŽA!‰‘ÌŸ£"ž‘™#e &ãWN!)ÉÇ{ž†äÉJi°t’òA¨BìÌH§x´ùAŒD»J1ÄCðgšJQ0R2 —’\¢§–À¡%ʓÈñd°Ž*8ϟãdž‘Ñ#e áѕSù••†§!ßL/^¿CUJ“é^Æ·u‘Lø._Ï_Mg÷«EÒ}I®ºÍ~±Ùïþ>ý'¤°ñ3’ÑêCläHìÕÕ×Ùã~±¥ß Ôe 0Èë¤ÓW8™­ïgü£rŒC»ÿöl7³•ŸY¦À-ŽÃ¨kŽC{'£Uˆ1ïæò–Fså8/Ãwïg›Ùï¢
-­nQ͍úØ:ÿíåÝ5kØ`„V¾Ÿô¿¬¦ùG”끱›‹#±÷n¶­X-^*´o9©ÊÃɼ	u	¿ô¼åŽø´Ø¶Žë…ï³ÕaÁžD_—6çðƒ5*kÄ'teÐ3ɇ³àU÷ z—ã¶Q>ÿ
-7ÍývÀÅKZ†ÜÓ¦b;12b›½jg>åç¬%M얆®´á¸sø›ºb·ÆM=ýLJ›Úên}?žw›/4NT΅µù²” KƒÜÿú”Fçr©,BL:tz5>GK,ÖªÏo.ç³É¡`Ô¹OÉ%R؏ݒ·&î@Ë°@Ã)O‹ÅÀî+l(“YÇéå·ÙæaµÜüÎ^C»³dǎDÃÝf¹÷ð?¾.÷‹ÝãlÎÎGƒÐ´'Žgo]·=vœxþÓn–‰h\¬G{©.7‡Ù~ÙqþBwZ4¾Šü\;qκ0çØ´â¿Ò#¹48òãa¹ý&A‹'OU?פ0ºË(ÔÐKô‹¶àpÓM~lö³?yÏyÅÃ/âoo·¿±’Ǜìò¾;ìÙx!öG*ì»ñœ¿Ç±âÄ[©¿†Î‘½ÂÐpè=WjñZÈõ·‹ý›ë5 t!Q.yQ6Aó(
7…èäÃz|Þ,ÙÙÔÙUUH9ÝvõÀ+„ƒ¯óßöUÿÉÈå²2±Zd¸V6Õ¢>®hn·ÝÃaóÆY];X±g„£Hψ£Ý÷yG
úzÁimùK²a<öV NâÖÃ#¤ay:\öŐúðÇÍô×å#)–ž6ÿ
Üa ·	×ö¶¶¡æͺ›ívtÛq
çѳv•Æþè
-ZÚQÕ/ÒØ5CCnºù7ß{P÷${~8Ú±7çLe¾ÖæðíbóƒFª,됸Þã”ÀþA}À#¯—cš+Ù9x
-׏2ŸÈÕ¬évöøÐu|ÀÇ)¡jBŽÿ|ý–-C¢N«³ CÂ[u´wšaÈÝu[®Ät#.›ÃúÞ°q•Q„ðxš“¼UÛlŒÚvûnÞñùfÒXv¯ºõã
-g—=(î‹pb=¹%2¡ØÓë3ÂŸk2¼C"2çáÈb­ÝÅ«&<ñ	W
-ÉîÇn¿XSÐãê»ÌüMC‚ãœÜ>Q$œ~:T·Ï›ïýÌ¿’1x¢¡~~Û­gÒbõÜÿéîêo’„Ð=ýèíüåƒvRx0oR+.‡ý²;)¶g„]50âø0éÛ¹¯/àDöbÎ÷ #¼öbϘä…ã³ôÕvñ°”az€ôrJµ7¢6	WÈÃ8ºípqÁ5o7…ôžàêÃï¤*§’É~‹Æý°õ}/Š•ç=|zq/{2ð8ÆÔÆs“þ²žxýåâºgÂq”ý‚B¼Øò}{KBó¼½m.÷
5F=õ/b±Ã}üy•÷ݛÐXŽKï'(\&Ñå~‡'Ýwy®‚wz\®zQ€7;\wÓ¯Qp*.–nq`”ãº-µwËG¾\ÃK1
6êI–¤×LýÓT‹CâñÖyÚtR[Ý3§<ož¼Ú¶Ì9ÞF¿-fþÁ܋ÊÕ_2ðÐÍl$´jœ­íæt¶ä^onž÷Z쉬VTõ#¼qÓËh­Ìðû	/}ŧAo–Rs`­>}M#âáHlYŸüÕåüýŽ6Qu’Kè¾ñÞnz¹or®·¼ÞL.I[ëñ‡¿ÌûÿÓF›&m¾+/©RÎüÖBoù6ž¶><.6dtï"à®[-çr?€µÀûk{lÃS€Þö“ƒÿs¶}<,¶l½†Ÿ]o¾tl1ÎPñê£oqyòn¤ðrgž­r|ÎÖІÈc®t\¤Á&¥Âá±u|
AÎ_\,ðjÒÏ-rÁB¼•5܋rV|ÎÂ'#u²˜or9ræH•ƒU6ŒÔ,åKړ§¶áÕªÛÉÃ<,Ox
-}’-öô$…˜ƒû³^,âagÈg¬¹éºo¾«Æ˙úÂÁäúíDrÍÏ
µ§M*åè8|ƒ…»+éGžsÒ_˜E
$o#~¬v’NÑZ(v½~‡·Aù}$ü€ÿ‚‹ßkÆÛ“Ë÷o.“·‹ï‹U÷ˆÃä×ÃR^Éñ>
-©Q¶ôâÒrIÎùezññâßûˆ)endstream
-endobj
-520 0 obj<</Type/Page/Parent 513 0 R/Contents 521 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F5 7 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>/Annots 145 0 R>>endobj
-521 0 obj<</Filter/FlateDecode/Length 3462      >>stream
-x
Í[ÛrI}÷WôÓÂ>Xôý²/ÆƱÆ0Hó@ÄF#·±Ií‘å!øû=™Y••-Ùà˜E¶™ÐéÓuÉKeeeõü¹—D1þK¢*²2š.öâQŒ'ú×»Wô$*ó/¢¬%Ì£ñž‹¨ˆœ‹¨¬œ‹(‰ëQj:µlÃf%M'+F5¦S¤£Â
šŽh˜4&¿I¤Å`³„º
¬Á`«aÇ/¢4®=[6mF¹é¹ÈiÂi:*1áªÆ¼МÄ q:Êi1Xè
²r?,ŽÁ`ëjбÓLü  Žsƒ(i1º-2M`
&¶¡))˃M‰&nP
:¨çd@ZŒn³lTE†5,t6`
Û˜Rh+Sª3v^ÖvÁ LÉqn
-JZŒnÓÞšZ¶Œa¸ÀÊ P¹¨Ê ê87ˆ’렁•Iø¶e
-=Êòº(Š’ÝŒ‚Ô@RQ…wIþYäYp
a¶ŽK`hÿ&‘Ólsê–ßeÖ`°9[MYQQWau\¤[%-F·º6¬(!©ØÜ"5êÖÀEÔÔ$ŠrR§<W%-[e¤÷ÀVüOY‘3Ό+0r:FÉAéEâD§iAC*i1XŒaY2oâo萞ã1g 
I*ƒÍ+¬2Ãѽ4,%¯H@±¨Q<—$<(¿I¤Åè›M…¦ƒ-(RÖ`RèY¦èæ”ÆäE¡­ÅˆçUŽµXÑoIJw«;gôë8Úbâ(Ò󢍔ÃBÎ 4tœ“[Ii˜Q„÷
„†ŽK°õ@	JŠæy!zÍ3 †¼rÇAh§œX*‰¯œÐkJ»h e¦IbIÎ ÌÔqd<èFI‹É\´ËÝfX¤ªr
ڭ礛@ZLݒK‰MV%¬VÎdP¯Bsü9pB;1uɝP;1^F›~ -HËÆÊ
-Z;’â“êÖ@»'íòB–·cÚ9Ž7æL9iªÃ†ƒEö—E¡©Å`ëN`Xƒ±|Êjk1X$`È<uR"ôF–©aW§¤<åĄ’Œô®¤Å$mT•!ÉoeHaHÇ%0Š’Ó ÉXƒiPÖQ`

Ú–ßôl0iòãÀZ=A¿:®‹=•³g¶9ƒ ¬ã(A·JZŒ)¡¸}`
‹¤¤°¬Á˜Zٞ-&qXÚ3­Ñ´’<–¥š¯nŽ×¨oNj2pb®H¨k7uj1IRcY…¦¬¾aDÝS€ªÏs5勁3†¬aí@²ˆ†L"21":NdRÎ@ì
-%’âT9i¼j@ZÁSÕ¦ƒmš«²¢€Ôe™ä?)ƒ Çq68Ñ)|˜­6´˜¦Ë
-¬Á`‘HÚA-ÁÓ³Lá€SnÉ L×q”Ë–ˆUô&‘£[œ@à$5,ö{LIY4–Ü–JÊ ê8D`ôªœè§Wxž’ƒE°ƒ…k؎-‹Í
-=¶¡³’a
ÆêD š´-‹JgOJiXT
*ªç°æ*>¤Æ¬^ÞÐ)“&Ÿ¯)•@íÄt°/5†”†8oÑ&)o2
—$´1ÓɬƒLJi>ÊJ·ÈbÉO¤[¡[ǹn•´XºM`ꇚŠz2IE=ˆ3‡,!+½è†ô"û‡$JÊ\‘x‘Îe®Â\—ÀX9šÓ›DZLsÝ`
&CÓ±+´•AQ÷cuœ¬ÞDIVAC;®sþMÍX
ŽÁŽVFÊDÓ¤3RÜ]-ù%wÀ¿µ;ÇÀgëHŠ¯XZ¾âßÔQ-ñGSeBºE¹2
anP0NŸÔ5ug 8N ¸š,¸¡ø<g*Çòâ‘n×ü[åuŒ”¶”âFØdTçü[9†S&eÂü°û"P,W€$sFÑC¹Á!
-¥{>Ù{ö’"M49gw‹Q,ªòhrÆõE<ž>´Ÿæ]ԟG‡ýrÝ-×Wÿœü­
-ŒC­öÉKÑl?¥fO/ÚËu·¢wÈv ÐÉÙÓ¨Ñ#4x:aˆpŸ6îÑQ¿hgKzŒ²Yxüîíá7$VŠ‰ÒΚÎùèËDº§­Å
ðbròæ՛Sêe˜2ͱºœòÐ؍›Ê=›¬ÚåU;]»ÁÃ˧í¢;£§XÚER»×ßÎ.;zˆe›gnú£]ý)j?ÁJ¶',3¶ÞÊ}2>àye£BÕú®ûóº»bѨ“&uBÀPóy·ü̒ Õ­ª]K²¡¡"Á°Q§’¥w’ìàz}
œMÛ5`ӔN:îB•Îá6ÆÞ5ô²%ùÐdٝw«¿Ü‚‡y‘Þ¶WW_û»#Vq“xwlÝ)Nã\t×òIÿEæ,ˆ\q²ä›ãƒ×ì¯X¶µ_‹'ýç~IOqhªë\ìy?òØQ¼l¬›²w3â-²Ÿ?ár1\Š*þÀp"ZÂèGüy}p|2>y3ùøñôýk’;´šÛÙYcݘôv$üíº[}sŠÆÑÈE…óž7&$NE¥ËêèÞãXîâèÎ$ø~ÇN>DhæQ{Ùr·ï.ÔK썼~¼²EÉÆj+LÉ¢÷¿{?~ÏúGy©p‹=ú›Û1R=ܵܧäE%I·—,GÛ.yêÂ4ò²ÌK:¾hW’Jàü¯éȋåõ‚}%§ä^Úp	'*ÒmûäÒݸ½ºAÇËóž%Æjê2”¹ìµ³å`ùU›{¸úv¹î?¯Úˋ'’TiRË]ÍÎĜñ(¯|®ÛsÄG=lÙ.ýÅ!TwñþÒ4“äÌd_,±#!¯ø¹ÜIŸâzg`jÜ¢o…Ÿ£î|¶œ­1ÎËñ
œÿçNçïۉPÑí²	 ¸6ْàíª_÷Ó~NÇ)åQLŸD.öA«6DØÎûÅÂÆò{Íún³›<•‘³¯7—ÐøøˆÇf‡í’óZ¸_Žïü{¨s”n»¾mðûzî-¯Úr{|èæóý/Ëþ뒬ŠBVꐪ
Ô2]Þ{_è8e,ñ…Þ
I¶×Ëí’ÀFcê¥àŠÛ£’ȶ IÖÁœ¾[’@¹‘¦nӑvñ©¥g¸òJrª~»šá”¹üLp¼/FǨ‡¬–휽ßM¨ëª’ïáG™Ñ¼ž½Ôâ}…db:ßôGÿƒOWë•+w`³yÁÛ*J$Úǂ1Ž	)œ_z)¬Y Eûó0›å¼JeË<³æ$;qû¥ø¾]Íúk¶ êáXð¼~!Å¢²›Þºå¿‰ÃBïrÏsJÀÅbØÌ ·tÀÓ̍ÃâðsÍÂãë-LŽžKÞ·­Úïó·—5è
Wu…/ ªT(QñÚ«B}çô``ÈÃùû!ë¶ӷv±Ó‡t놤ŒÊÕ]P1ÔJ%§«EK	uO_eüÔcF)çÚwC‡w…¯‹³åYÿU‚­ÿœNž¥ÿ¦™¡’RÌÛ¤òë8^¨kŸöëÙ¹?1×ÕNw%ØDìåpJ~±%ý0b8>³„é(ÖÂÒ0Z#À?Ð)¹äƒ†
ؙ9rÀ§7¢µ
-ƒz˜šëe;›÷¾Hˆ+Ÿf·Ñ莱Á‹î`Ñ;Vb»1ìäBR¸Sþ~9ín1ӗWZãöœVtՎ¿]­;>Fc3×>î(ÈÿûZɉ¼µ1Šz(Áç66wÓëÕl-ëφ)¹:½É·¡« ì“e÷•¢ ¾²­<á‡Ø먃‹ö·ò|9ĉ—O£ñé;ï—,,«‰Tt¾ê¥‚ýM«&¿Ÿÿá«°vv¹
ßî•ËŸáá6jãKª¡p¿B¶y'	ÊDZ*¸ñă¤E\©éuÓ}À»†7ýÂÀ§÷rÈõJÁÅîP)ÛúIû­[‰N8Y}Þnܑ„nô7‘¥K_;û´ðàòrN·P>AÀõÛ9¥Jäæoåía±Úù{/±×0Ã$Ÿh<Ðn)Ur	:,D²4²Ú~$ÍëþìÚ-BœŽ…,ôAÀе6Ò½›¬bä°Ù¬šýa~8ëTñ`‹C†µíi—ÝtÖJÝ
¼Ft‘ë_Ô—ÿWíâ?—¸÷<ûD>¹È²f¦^N"úúhcýøûëq4ËVN†§šèD¨íù§šáæôº[ôrOFË"˜£]¶Ÿ;ª/²Úñ-¤¯yxÝã¿Þi2p/©Ìk1Á7þœÇW¶lK©ø‹sæÁPwʌ%À™Ìø¤]¾n—¼TЅV=\>‘âæ¡ö'ƾ²|E€µÞR¼XNéj#ìažÙ‰©«Œ0	2Ê7ƒp˜m¦ÈؐVˆâSáƒï±ªf‡æâ㣖áRûµ—Ý&²g½K÷ð!·^ÍxÑá“:¿æ"|õñåÒJ7÷U¶­Þrøޑ?ÆÂé*Ïñ¿iòàøÛÖóƒè¨û«›÷—Hò¢W×îR,Ã7©
ù|7ôÕÖl6#¡^Lö~ÛûŒ8Çendstream
-endobj
-522 0 obj<</Type/Page/Parent 513 0 R/Contents 523 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F5 7 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>/Annots 148 0 R>>endobj
-523 0 obj<</Filter/FlateDecode/Length 385       >>stream
-x
ÅSËr‚@¼ós4Ç}²ìQz‰©$ò¨Xš0bLåï3³"µ~A 
-ª»çÙ,_‰A·§@§°©‚˜þñ±`RãéYö(;p„UÁ
-¬Å4Ò"X÷¨#-‚Hé1‹Ä“ªÝ£aR3û¨F¸e$º¨²NyÍ)4nÖ^%‚8‡¾d-‚<ä]BcLªÉ¸e¯Nòd4÷ ä;–\´:ù6˜Lôfëc	ͦM})ëKû”R–%g8kØ¥
§
¦ûât)ÏÃöS=*²Ð\ȜLñμõ²¨™4Ð]`Qo™SM¦:î5¹d‰òõV´íOs±†üp|T¸Ñ¬ÞœO—CJæ¦Ÿ“‰ó4¯Főô¾Í¤îmò}úз÷)Ûj}âV¡‘ÕhúF»Ãñn-Ýñ.gxîÑ<ëvÕ
-Sï鯹mº/'cx.¯å±9•ç߇m˜]Ú’)NxöäpåB³<yOþ9ÄPendstream
-endobj
-524 0 obj<</Type/Page/Parent 513 0 R/Contents 525 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-525 0 obj<</Filter/FlateDecode/Length 155       >>stream
+461 0 obj<</Type/Page/Parent 458 0 R/Contents 462 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F5 6 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>/Annots 54 0 R>>endobj
+462 0 obj<</Filter/FlateDecode/Length 2062      >>stream
+x
ÕZÛnÔH}ÏWø$ƸÝn_s!,	lf–'$4'™Õ\Ø¿§ªoåR–Œ4HIŽ«\U]]]Ýö?'*Éð_%Užè2™.O²4Õðãæ5]IÊ¢ÁÏe¢›´r`‘O\&M‘‚p™¨Ü¤ uIJµIk(­Lª ¥B0ËIï$’É<i™Q<ejÍvTZ@”€ËĐ+‘W¤Fƒ…)*1ز‚YQ±Ä`›
+¡¬ÀË$7Y﹃­ûVqôLÙpôꜞʀ\µœ)Ӣ蕉aD¤ÄäN™jÁZÑBspKC’ÔrIƒbÅÂæ0`s"D†˜pc45ÓìF“‘Wà¢w#K,"’ÜðÖät—`k4‰,;YT4TˤVižX@z$'+I+Xð‚¢ ãltŠ@ZA£8<¥BbHP@žÈQT‹¼°¨É	€‘ÏŠÜœ€P©‘V‘âV‡'Rk§R¤œg@œ€Pš‘”RúD’•ê¦æ¨a(J
V!…›"I‰Á"­Œ`­Úšò	
`=¢ZÇ)Ä¥It %†ZøUÖª­g¤UË ªuœÊ)¯u %&µšX«ÖÔ<”JÍ DÖB
+U;ApP†‡U;À‚Ì!.”
‡‡A䔭Ù
+òЈHÊ«4³4¥³D	È:ýA¬,ùq<És,FÁ°Õ¼‚‚£JŸ# 4RUÈZ@rÂwi$9h9VZ"x,, A
¡”}àYi„PŠBki•æ¶:¢fÂ4$( &x†`GN@(Քã‘44¹²u“Ì#6•a–qÜÈÇ*ÉRÕ¶rÚrlQ$+[­¤bÉÒÕGT<õ‡P$±XQ£iÞðÒU’GšHšŠQ”Ìm­²‰£E’Ë"$Ê [$‰åz”S? ÌAmekŠ`¤J[”¦ºÂ PÆÎp•WÐÅ P…¥ÊPò1<f3д`ð	u6:yy	œ%£[LQ¾IʪHF3îwpyúl4ž,Úd}›œ¯W]»ê¶ÏGCÊ ‘HjàÄ9‰=ž^ÒÔåÔJábrÑ~iëÏ톅‘eí©×»ù¬%¼IMS[ôÐÿ”uy`¬k8ª1‚\Tªt.ŽÚñ’ÝÀ*QG↣s'ŽY–'Îsøs:Ùv›ñ´ãQC*š#3Þ;ñàwNö4|¹hoç«y7_¯ˆ¥ÞÔ¸”BÓ%,эÒnÌ®ÛîìÍ»!ßjR“7îúûͺ[O×&0—üW3º„ÒRÔ¹×1^rúb¦¢¦º‹7ív½Øy30ëÒë¸ZÏZžX0ã,yàÚ¯BCÖ½¼Y›#&&îõ«Qp÷Ø2Ô»Ì.Š"Z}vóîôâüt8"ç°¾–aÊÉáCG{ðYgmW*‹Æ_Ÿ]sz¡¸i]ù”i—§ªÜoøHþêïÒ&‘¨œD¾ZÇËɘnAþêÆՊät3½Ÿwí´Ûmx6 ‰×æIõ`†ì@Åy³ê6ëÙn*fn~„^¤)û1@ayaaºÚ-ºyw¿idzùêÎN—r®r),üÚMý$ŽdëÓ¯fÍå¬?J¡
+GFÒt졝Ø.'¶£õv%÷‰Ïߗ¸õ»œÇ¸±:Z7jJžAߍÕdiƒŽþ3,ªív~Çk-ÊAÙ¸Eq_Ñ܇vE´«Øïӌ÷åltÏõ
+#Öçm(qXU2ß?\¼:ûë5Ņ발o¿m»–?ì€B°ߢ£yPæp!ËÜuû/݀>¦*½{ïvÝçí
¥×Ão«nü•îÖ8ŒÀրú§Ø¶Yöp€3Yý`⤷õ aûøìãs:l}C#6žnÖÞ±úª¼ÊȚAƒ¢Ö«6A¿óéô⻅‰ZÕßùE=‡9`yT¼ë(Ì­G9ôöÃ[ïÎ4z@;‚W~ àPfܾq?Yô?µzËԏfÓånÅMwú´téã*Êîž
+±­Mîºök燀öïG0)ú#ä̶¶…¾–ßÏ6Áp×f÷%Š¼ÙUìmnכå¸û4k'»»O2îuC³å U֚+ÖL…×4…ý¢y¾ö
&’ùÔN†»»»vK½3§=NuÃòrÐð÷®´-³*ú;a¹§Áf Ý¬Æ;‡‹´>Æ

ù¦îûѡȊ{~?¦óvÃK Ž[ß‰þ}ÁÂípxY4G²µ=fy_¹Vdz•_
o{ŽxyÀUðAòÙ3‚Š‹k(`¼ÂqšÑ¡PíO‘æÜXãÄ*6¡“o]»ÞÌÚMzOƒ‰Cå}Ÿ!õí}$R|h0Àˋ^Þ}8Ŋ>Ùݾø¼ÞÚïƒ]ݼKÎfkQŠ÷¿¡ÍÃsiô‹/ã…
ö·c.À°"Dw(
ýM2âÍl¦oºDû$Æé!¯fx³.öæკWQÝ?£}­`{BfP”¿3™¾ÃÁŠàìaþð‹cÝa/‘ãŒ;†æÍ&„µ$„wØËbapyðLvá­É’ho?…£ÁxƒzØ4VöˆÏÚíí篰÷°û>o­¨Á7½ÜµEߗCmpÖ²5!´7½ÔuöM1s¾ýbvó³ú€ÜgŸ
½·‚7?«
G2Õ^^Öî-<ΚŸ7¢{Žßˆo’ð-Îð%ξUÖÐ
+2§EòÕèäϓÿ‡íŠendstream
+endobj
+463 0 obj<</Type/Page/Parent 458 0 R/Contents 464 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F5 6 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>/Annots 99 0 R>>endobj
+464 0 obj<</Filter/FlateDecode/Length 2547      >>stream
+x
ÕZÛr7}×WÌÛf8`0·GYŠUɲlÒµÏ5Š¹&9Z^œøïsNãJ‰.U¥‘kWÙ<ÓÓ@ßÐh4æg*+ðWeÎÊ:›-ϊ¼À“ðϧ_ø$«M‡—Y©sãÀ"Ÿ%p™5MÞ¥´š|e•·à«Ú¼v€|	\fª(8¨¼IbŠA-Ë\¥ÔƒZ•ûNª5r`M‰ɬB,:̶Ìڒ4
¤%ŒªÈ«„XR•ª«sMU:üg¡±Lˆ”ÀcPu©#+
[՝Hµ|Q€Ø Â%”‡:‘–@¨¡Â 䳒VµèÑ0ÒhU„XÑ6•)Å6m, c©b½GL1¨u±GµÃ–…XΎ# ëhn˜@L1-G+U‘š`P;±d ÚIU•†îÀIÆÒÐ!˜bêÒ ò"ÕÚ¶(Å_5M\	à°2¥Œ;ø¤Ê, -Ô¤Ì›„HÉMM—™ÑÚò%QgÈ&/ºù<”øðƒ†øð²0"_)‹‚¼‘(
+šŠµÌ ‹É,ࠖV6¢|Ëø0"MQRA4BLX˜=¢T)	º–©Åƒ–]+–i4´· ÒÚJÅzl³R€L!”ÐðD¤É|e£D‰†ql
ùHAK2ʛqBÉZâŠ2+Ȅ¶R¦H³šJlJ¾(@&Œ®hɈ‹R¹œÛO€È!¢›i	¤¬‰)¶3¦¬œQÃ^’8+Ìh
gTBûDû%Øü ")Ó¦nl¾•x²@ø˜o4VQÙ:i$Æ!š€8fi“f­Zi	_A-Ô½Ùc”Õ«‘©<äÅ ¢0Ê&FS¨LŠDì_Ô±ZgZ@Tµ.1€- MâÙÓ$f"-»b0¦Tø[¥Ôƒ
+oš„*Z*D!7d¸	 @	#b™-#2»$7úƒiÞ­oúQ™ÆF8ýaA°s*­ƒÄ>
bÅr]Bƒ!=„0È40¦T¬ÿ.‡M1¨£:òZEõ$°—L…$ª6B0b/a1Å "
Ã)‘š`P[&–Hµ“6sZ+ˆVp4U0ª@L1EÒ°c¤Ê°ØQ%diLùu®ù"’ˆã*¡EZŸ
CÊdØÇX8‰
+ò;Læ(JW1ˆ
±8«„ák†Aød²Ú%~j&¿ÃdŽb­H	¤­¸±šˆ¼åÊ
ütÖjØÒ=I˜ŒÛ*(…üLŽ¢°_%¤R
+Ù{ùÙd@„kp˜ü:Š!ˆ
±= ir²½œ½y×ÁzÙä
Ãfšµ1Ùä^êw<žý4™Þ-úlxÈ.†Õ¶_m7ÿžü\Ö8¹FŽm¤ÉöÓxº¼›ò
ÄZÙU8àavÎõjºp¼QáEQŠ	Gȅš¯]Ÿß“Å6[Î÷ÓÕô·~Í紗1îy:OÝi÷ôüöŠo²®:û,?ÆÕPŒQ× `ƒz·ÓõtÙÃbÓQ¾ç6qCª ï§~»[¯Ä#]ÞoãoÓÅ®—§u^'¤…jÅè,Ï«_÷VZ™æQ•ñ8û_Ìà
+ràÄRT>®¶ŒvÑƑ÷Ÿ›ëUŸ¨Ž¥Kkm„\++nòEäe̗Óo³¼ËgÃêAÔCF
Š?Ì­v
+ÌÞ£¯ªË˓éÂjë“Äk>ÄäuÿÇ|6]ð
$˜®u‹<;Grù¾™ËÊBܐ_NÁsV[«Ñh—¿NW÷‹ùê7qN¼ÞÈ´|„M¡S¥sç¾Ì·ýæq:OW8ãùÌú²9ÿî7œ2,š¿¨Îõ|e—<täî2_í¦Ûù 9Ճi]Îù»uøÑx^7ô‡ÒäEEW{Ÿ<•å¬.<ñãn¾þjƒ±ÈÛÖ%—MûO=׊‘4bç#Ugü}µþ!K2ŸFŠ;h‚ ÿžøçwÃnKéqóUÂ#·ÖM>¥pø:¥´¦@{‰[‰.>wßôÛ·WÆ|­š¦ñél.K€9™ÞnYRT¡¢õ*^ÍŇ(˜Ëºö‰bX/îÅXZå‰ä@]Z+„„Žóx(×ÃýnV>N)'âÀ4,­#dßTø϶Ë^»©O&ôRÉóÜÉnå›é;_ I©|}ø}…
+õËüQ‚]•ce¯}
rª 䃷ÓÍæ÷a}o}p¤d<üCÚs¿–f_]
€Í©ä¬çâ;Ñ­ŒÁè—ýê;UB3ºÕ>xÞ£Ø/àô¬pŽ<̪åT©’Âe²ž>Þƒ=	 óY3û|u)ª Áõ1“<RI0í­a-›âÞ1`µ[Þ¹ã&º˜Æ×ZÏ<ÖmA­—Ö’·ëa;Ì[å79:¾n{»–œ¶y¨§Ms{œUcoŸ— žÑpÚôK=Uhº%èäû³t¶ù¾ÙöKº-ËJ¹#v†sm  kX›“Ø!µís°
H†²fBáÑ莮»–S[Õ4Tµ÷è§Û‹لÚÚ·qŽçÕîðª\c'éãÿ¥x-Fl'‡Ýzæ¶PN-_cQH¦{"÷ź¿ŸÛF$6š“X	ObÇɽ+7NñÔ[J’èÈjAO¶ôÅþx»F=¼[‡²ÒTîhùdžW†N-Þ=%aõ’sóɍä$Gµ’.€Ÿ±Cöké9ˆcŽÚ4Þ÷eiï(”\O¢‚Ó§ek'3Z!It¼#É3Âq“]·Näløf›¯höëη-Q‹­6èËòmlµöý”œ°ì¹6Ýo珶õ‰«Üƍ±oÄ×ZÁOÁ=‡¥~ÑõÉxÌ)ÀûîÄW¿öÓ{ë—Í«F:*#‘.~2K­¨NƺÏâÎԌiܕÅpq«BãÝWCoçv/À§/¸¨sEïrâÆ<”‡ß:Ÿ}å{øÄ£­_¹kº¯¬Ó÷¾i`ÝL®Çç§ÈpñýõõÞ©×]ï9Žփ¸ÖOœè´¢ƒ?<öö֬ΫƟŒo‡Å|fÌmtî¾é^w_V½¤ÐÇ]¿Ñùy\éƒõjõ0Ð$ü†ájVNûWVL¦sÚñKÐtÇ?ä0_ØÛ|´Vø»ÎÉz‡£˜Ýypۉ¾l¸™=ÍHZGßV«Wët[Ç+–éò:¤ÕÁ0÷³u/û+¾
9æþ	s:•šÃðb1l콎ÐþF3sÜN‰ôúüO®‡áëN:«(†:ß¼ÈÆW—cYJG\/Ö~•=oáSæ—Â몰R“uqüÂêòæ¾³_›pëÁÛò5!?U9ÿö<»ì¿õ‹ám²ì—ÝÜ~+PâÛMƒfÔ¿˜Ï靟'gÏþ$…endstream
+endobj
+465 0 obj<</Type/Page/Parent 458 0 R/Contents 466 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F5 6 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>/Annots 128 0 R>>endobj
+466 0 obj<</Filter/FlateDecode/Length 2020      >>stream
+x
ÍYMsÓH½çWè´Ë"4>Ž‰©Ô†b\¸GN´ØVPœ¥ø÷ûºç«
	¡¶*lËӛîéîéééÙSI†ÿTRå‰.“ùj/K3|	]ӗ¤,ü½J”IµËdº'à*1ۜ€«¤®ƒ’Ó%AmÒ:“6' æSyZ	Rb²F“9¬Çš1غ‚~Á
+¼Jr•¥J°¦ “ò<-aRU$Ò+ ™¤ÃHžT`°eF&Q«6kÒ"¨eÕ:NiMžRb¨-rš4°¬Ö4eš{µµžS‰¤ÄPkÔ6+0ùB«eí¤5¹ïBdÄI§2#)1Ôêэ¬U[6œjà ªuœSH‰ImFQÎ1cJ^PUÕd#Òkç,4/K­R“Ä	ˆä¬%‘3æ½ h•êÌ.
+%ŸaÀŽDA¬£¤5UU6°5	2`Á!¨(‘")1Xl‡F²ƒ­8‚bkm¦9ìˆ)$Фr×À!Bi^D‚¬´h2:k± (õ­N")1©¥¢#XÁ
+‹Y_QU¼˜MƒÅ´€&0¨å‘Dºiœ¤Ò
+Aˆ¢Ó¤´f‚,j‹œVbÔÔÂJÈÚ(•'ŠBd!Ê(†‘vYÃQb9M¹„9BheD¤
C^pì
m݂
Fˆ­K{"r’Rª€‘´¦*ÚÏ ñ˜Êˆ´J BeQÝÔÖKµ(ŠVSp#K«¯+Ån¢Z°—r‚$ÅÃC2–*J$9<qáO…¬”Î#]öꌬ4BRʂ<’H‰Ár¼­f[æ…`Ë$Xíi…(„y­3
ÕC™¯ЬòÁÛ簇äíú(h•â#eª Œe@JDVæ¡À	H1`/)1Å@!þQTb°mÁ
+ŒðQY‰ÁB³”µÎd¶Å@õ‡3È
)
+9ªI$%[P+ XÁ",[²Ó¢Ñ^Š²”Õye[
ÎjÈ"
Wè¯àIä$k£¤ÌÍKÛ`¤r€8
!ÈeƎ$òp¶÷òuƒ &³N,ºIʪHf—ÜýáóüŬý´ì’a‘L†õ¦[onÿšý)+Hj߉íç$öâlF4ZB˜Žž_’£aÕökú\Àìܾ8ŸüétA*@VC§ÆR‘¶W³Ó·ÇoÏHÖՕv:Ǜ9σƒ§©Ü·ÙØ®oÛùÆÍTæ~ðY»ê.é+š£j7ü¼¿éè#ÎïB;£Ò'þc͈!>&ºy:=`K²´
+Q»è¾Üu·ìŒ®SÕäÎìÉu»\vë+¶½€ÿ^â‰M¿G½É­7ØRÕ#ÞÜm®‘;ý¼Ý°á¨ÀMé<b-p¤¤kýž™vóÉùS—Øy!ï[›i7þۍä<º…ÂûqÞÞÞ~FÎ4ˆFùü›v¼Œ
+—‹ÆeßnŠ³m—
+ðc‰7=xÃɈ(Ô~kWï`´²u]<ó:Á-S°?TÃ[«ÜY,xý~/è.'üùˆ?oNN§§og?¢â¯XÊ)Fï|Ïcs‰Îxaì»»nüƙƒN¤öU~1ð>Á`ª°QŽ&<Ž
+ï3Øw…ø—sŠÙ°÷ýVÀõHÿ°ò&-K·Å…¢çû§)y]¸s.\¼Ÿ¾çpãñÀÉÿ<*ÑÏáj½ûŒCîؔ#bi>su흯IÉôºí±Žjh
^­ïVœr¸œ¨çpàǬp.UÙ#þÜ{Ô;ÏqÑ®''ëÅÀ>f©É]·ðã´;úbj»`u±!'㷛Íp5¶7×=÷o%ZýÂï¬ÛþÒ®\–•ëÐw’"[ñ8u-&ªL8ac‹¹Õ+‰®£·çW‰VE=Ñùå}Ækƒ¬‹GÝ¢_÷ÀÝnñLÀUa•ÎÇa3̇%ޗ½¤Ÿã³i8µ`Y°x2¬Vþf‚ÛñsŠ?‹„³É.óbzrÄ	á÷jÒ®¹uTrS_øAxV/Ýùù³©vÈ9¯dæ|è–ËýÏëá+÷Šx‚0¡ö~à±Õí÷šúýTeÆ)T«˜B›Ž%˜Òp<rú¥ú^ßîpÉHyûÆË]¾`ß¿§íêSË;7Ou㺫ä|ìqùZ_wÓÚ§M7®Û¥-Mx‹ÜÕMøѐ•šŒ}ù:¼
ÔôÞ¶üÁ§ÛÍè.ûøé!Øyü¨<Àú±omæË
U„Â²hçöz¥Ò~møtÇIH/$öeå};öÃ¯Ò 6؇íü3§,ª†ñ9Э/y$Þ;ª]UHç<=éÉÒÇÞ³ð&$).w춼Tώí+µÛÅï²Êίí”ÄËžeNŽx“áò-ÌôakÝ&ËÇ@x•LÚùµÛ¤x
+ÝÍ==GÐ=Aà}1¼Q8®Zê6H½Ážyš†½´—À—@ùöó¡___m5Á‹ª¿%g³—ùßd~àŒÜC^ØHòp4ì!ƒÏ†M¿à+&=CT»9G¬£¢ââA÷±rûáälÊÖã÷Úð†²]jñû©‰üµ:òÄ£JnØE¹Ý¾Fzr<EâØ–Ÿ×m¿üC~Žò;ù‰MýUõÞ¥Ú½.ÓO\
~Û£Þq»?<HŽº»åpӍ·Éñ»è,KJë*khdß÷´œ¯f{ïöþ±dÕÔendstream
+endobj
+467 0 obj<</Type/Page/Parent 458 0 R/Contents 468 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+468 0 obj<</Filter/FlateDecode/Length 155       >>stream
 x
}Ž»Â0E÷|Åa ØiHÃ؊ÇĀð 6•Š¨€"ø~\ډ
Y–,ßã#?ƒ´¹CPu†,!d+ëác®³Óîš1pdÝoPŠYîÖpiÔò©¡ÒM5;‡²À&½ÓõvOýûW[§¹\¾WìÇ«EÆj–zÂ%»‰`žàƒÜ”>’ÑëŠñ`؊9šÒ°7~endstream
 endobj
-526 0 obj<</Type/Page/Parent 513 0 R/Contents 527 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F6 8 0 R/F7 9 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>/Annots 191 0 R>>endobj
-527 0 obj<</Filter/FlateDecode/Length 1735      >>stream
-x
WÛnÛF}÷WÌ[ ¦ER¼ÈOõ%q
؎k)y
-PÒJbJrUriÇß3³¹’Ò¤0`ûè̜¹ììúçħ~|J
-cZ”'#o„Oú_Ï·'qâE¥—RI~â{I‡
-šžIäMz6Œoì°Ð¡(äßðŒ|/ì{¦^@ãÉö%E‘w€)–Ç`
™s 4G)²HsDŽì°OÃ:ì$Aëà’‚1÷d`]6™ì—°q’ à’&®[€”*\<¶-òNX“¾ƒ¹)¶g#qEM|.8ŸÆØӁpXÞ!9ƒ0AŽ%GÜ]
ìç@¤šrzÎƃŸ˜ïXEÐP‡ïK~೪ ©ÃÁpûœëÀ:lò‘ö¬D
‘ŠÌЈ]-asÉk]Ó±\k*ÈqݱAŠa{ÖºbÖ¹G8΄B
ìé@îC›ä©qPÜ#¤u€ýˆ‰Ÿ  kȜeD\³ƒˆJ$‚8ò„ãHúžp©H¢„#®
-Z'–Lº,‰÷¬­?¤ë¨²Dv€\ÿ„e{ÒÅ`qç!Û³VÖç9F[EGÀ Ûq<#èyOº²2#keG¼Dv²َóCž£°']̲#®¥gE6˜ðJƒ,7Ó‘ 1ß±CNb¶Åœð…÷Cþk{ZkL	ÁSÐ@"°ìÚt‚kb’g+€šÜÛYYÀÔx€Ý½8qb©Bîw @Üøö[ˆ"=g«ÇxK£æ,Ď¾ƒQâXºÑ³Ö&\¢s €=ˆL.©çÈ}‹p%RDý”[‹\S$n
‹:ŽÐÒÅ`£pÏUŽƒŠ»êÇä-b]KÆö!Å$t
$žÒ ”/»/h Ãn¯ËÎö
d`7·g¦b4#»žù!YA=9éV0Ì1	è©´[Ài„ë# §ân…â˜SÀ”?â#ˆøüP>êÅÝÁÀá&Jkˆ÷2ÀÀakÊà ‰!"€¹«ÙÉùÌՈf+¼\ÄIJ³¥¼Sà“Åéå¼1u¶0ïfß`c…X»3°<½ÏCŸ¶ËÌ(k3îlNé‚tESµÅ5ÅQ^áEÒõ͌%`ëÉCg¶Éšký7áoF]jarè-õ¢-Ue2›ÌP™¯7†æŠÚF­Ú‚Vº¦­ÒÛBÑR½¨BoójMMVÎ3e6ºQ”WFÕª1j‰»àr	|©ÅA{tg~k¨ÒfÔºV±úIB¯unŒªhþÖì2P5ʘëÖ@ ^eEƒjb¿du®Û†¶YúP¬Í;«–â9}¸¢m­FGºô“ŠXè%åÑ!Jƒ¨Õm¢DïZ‡Jš¾¡¨]\éÁÐ׍1ۋós©À“4<]¯Ï=z*T†6
-v­œ5NBÓ7U”ªþ£·ô~t¦»³Ëä09™#•Ï[>	V|@Šn?Ñ­ªTôÔ΋|A÷9ŠAØ/§·O÷_ÞõU]b@¶oÜ-øTWqC(ô¨h—ˆóš›m§E£ÛzaÙe‚^õš{MÑÕY‘W
-Í9ÒµêõõÕ[5+iS·9_oÏ|ï®Lâ\^ë<êÙ“ŠÜ¯5fSÍÚ{—k7—¾G7j•Wùî"<*su÷qJOÝDÉcV*zV.Z±{ÐK%šø’p6HAìñýŒÝjÁòèêùãåÍõåtF]Œ#£þWS—?s#@d*ݽ¬›Üàö¶µœÍ¾Ò¸«L­—­\os†=°ËΣ‡¶08±ZeK¾‡\¤HäxÈi֛5å|yd1v-ªYDUór‰N7ùZ6Ã^Y³/¥Ý¼¿útKÍÖHÉ¡ÜÒB;¬^éck¶¸÷Ó·ÊdßÂÚ^WQúrŠ±~ȵ>2ëŠÙåÍÍO,¥BEbyÿùþ'–¨”óûÐVÒú£	½ˆkXÎ×F}7,t”žªb°YÖ;Þ==V@æXÈef¾.Õ¼]uµÎðÕµ?j$~­å€§ízÕŒk(99〔íPafTÍô°í’òõ&ã§vɟ\ÙõAæ’7¯É
-
X¹
؆Üå8xu`¥¥k,(osTNûúó%ú=oW¿ousÔ-nºõôK#DîIýþ’?”C˦Çrî	pP4íîØê ÐØJMò?ÔJ¬Ö¯ÌR¨íeöŸ%L`¹—Ý`y_[­ê}0>(ßA­îÿ±Å©<ïek›}þ
ï“ò‚#sLì¾v߁Æ)^ýÒ1ޔ°Èåæýì䯓
…˜V¸endstream
-endobj
-528 0 obj<</Type/Page/Parent 513 0 R/Contents 529 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F6 8 0 R/F8 10 0 R>>/XObject<<>>>>/Annots 243 0 R>>endobj
-529 0 obj<</Filter/FlateDecode/Length 2009      >>stream
-x
uXÛrÓH}ÏWÌÛBÝ/&\6U¹Íò‹"+‰6¶ä•e ¿çôXš¶Š*¨Ãé{÷ôŒüßY`|ü	Lš(5ÕúÌ÷|üÏô××Ïgz¡IóÔóÍÚYìÅ{´2ó‘ÍB/'[d^aRAŠM
-/–6RAd“ÐKL§0¸6YB»È)³A>IŠY…Á&
œT5fÀ
Nl‘"Ò4Š BUB4lÉù“†$H¼*LUIfbm2>­#‰W€$ã ÍÆh"5ç^¦Øq&E$õ3TÁZUpmÒjŽSpmÐ:­'‘&¹/eÏ3˜¶€6d¤Š$I©N’f¶tqàÆ"’Â¬NóŠUxmB?A™k
'¬+ †)Ã#k
9Vaèb:±c†Û(a!&Öº9P
-æ#HÜ*LÃ[±
-Ãp²Š“.b‚TSŸÇä¸"<E0J!‰S…Á¢‹èþÄÊ,øöµÁà"Z
TT³°ö§à8'Ž“±ÙÛĘ¡+§ #ew))Æyn[øÊ"‰†ùǨ½ÖgO,r$‚bq²b
ä]:ÒºÄùÊa+&䬢Á,NáӣDž¡Ä*G3 y4-„Gä1"§èç’V[lb
äœBH	5*›#ë`xt¹öis¤Á~DÄ£ƒPÄBKÉوd^Ö&æPY@=Qð̋§ lú\xNQc°+îXñ(K FÝ"
ô¨ &ŽgÃq
-"C^Ž³ÙÇû»D†*$ésµFØÁr•D1óäÈÀ^%A0RA$­Yß®|l3(
- § ¡qÇ)Ȃsû*’ᄘ4{Uð[4…fö20Þ¡±È‘©ÝéAÌÓ
-šb
qœe8Lj¢ƒˆ'àÑq¤Æ`±ä
-Í*çÁ‹֘Û,8t+™FûµÂð QU†ÑÝ@±²aCY 1@‰±HÒ»è²]¿´
-šH>'¤Û¸e#y\¤Fœ*»1†•Va²lªf‹hVa°˜ÏX±’N€….S† ‰[…­áP³0<b”ØÏèvÒÕlÄ©r¬u‹wŒ<Y‚ŒÙ
-·
-3[§X…T']k8—¸¤,6-"v¬Â0œr*Va°8HjÒµnÙØxä#H¹Y*4«0ËÈ}ït5‹›)ÖºE—d¤lÙ)·#kËæX…YFžYn™ý8Ê™T™‹0b‘‰e…¡‹Ç*êèX«+‰€µ²‚”îÈâå]Ç*]™&ŊeL°]PJ€³;rbÆqÂh K'›7¨m\ˆ*°œ Ô0Áø¨  p‚Ãׁ¯8mCDZŸ{.¤¹É¦t3µ7l Í`Cá$\"ÎAº‹Ð²IOL"E题àLŽ;ÞeÎÁ±'&#>ã@‰I
ÎäÈaKáZ¢ pBï¾FÎAd€]+käÄ]¸ÿRwœ»‘íŠËƒ‚ÖÝmp9ŒÜûÅÙ»OX YÜó31Í3³XÊ'¢oÕ+lW‘ùzñÏìòÇ«»Ýý›M·ýñúõâß³·¾y.„‚•‹!7ŸkÁ7?ËÕ„
-XUÂøZU¦a÷rvm®Ê¶|¨{3/×w¥™Ý^0ˆcÉÀ3·e_®ë¡î·82öB¸­‡]ß„¶«%Cì¼[Ö¦z„
-fÌPÞ­N%SÏ,k³]ßyU×ޛûÆ
-ik©‡x.ëßMU®Ì¬-WÏÛF¢:‚Øße»\5íƒéîÍ÷Çf¨·›²·*D
-Zö²ikDÜM»+‡¦k²¦
-:x"f¾ìšþI¢y{̟ۡü}\`&4»ëvƒÙ°Ì[¯’bt¦†ež¹®‡÷7sÓ´¦4ßÚæ·ùÞõ«å±=\“ž¹h‡¾[îªBÇ£Á3߶uߢ¡ÇÝÄS×3ŸPtsó«E³›ÍQæxÒs¶Û_]¿<UG£/»ê	%?ÑCo?Ôí³¹Â œ*"ÁE_n–]כoNr¸íúÁ´»õÝéâGð}7tU·Bç֛&dx–BêNÀüTœ‰­Ìüöy;ÔkƒaZ;…Éë…ùЭKÔüëíù_" ­áv9-ö±DæÝ®¯N²¦6šqÞ×ËfÛCƒ…:­Á›ùУ¡»Þš9t"#$¢Ge§
XùˆªÕ½Lòi’!›~hý(ðWsÀt?qtQ¿v‹Sl®1AKsÛläDF„7*QàÔ+–Î\].ëþ$fܼhSÙ¬¤}ê¨båsþÊû5ygÿ™UO/ØÀ,^/.ç³?¬w-
c@)}³©[ŒÚª©dzŽ¼cN)ôeW÷Ï8f÷ݟE1jk_#Žfm¹Ÿ(Ûð#ó¹)†y]õõðBbxò‹ÔùªÛÚzdWœ\vÝÓncææ/™Aèl/Ånژ;‰z_\\Þ|¾¹6ý¦úS5•ö!|­ÿÛÕÛÁœ?â€ÕíÃñòÅ;—ƒÀ8f»á±ÆÊ­Ê¡6áIÀø|µróºçŽKÈÌ_(Þô{áÙ|°üÝ'¼›åZðcbZà‡×\®Úùìêýëég½ê6Ø.æó®YÚÒx?Qòm漕gwہwã‹ñ-œç1~ñ>.ξœýì¤ó§endstream
-endobj
-530 0 obj<</Type/Page/Parent 513 0 R/Contents 531 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F6 8 0 R/F8 10 0 R>>/XObject<<>>>>/Annots 283 0 R>>endobj
-531 0 obj<</Filter/FlateDecode/Length 1844      >>stream
-x
}XËrÛF¼ó+ö;ÁxÌ%¥‡­¨BѲIÛ9¸*‘ „˜´JŸîY;U±«$µzÞ3;»Ô¿£Àøø˜,4QjõÈ÷|ü¦ÿòùz4N½Ü¤yêù¦6Aõhmf#ÁÆ!¤¬¬°
-ƒÍ"/Qlf!‚ÌÇ^v@Tµ^“±—’3Ú$v¶^SÍÂëƒM3/R¬5§^,†}olRAÖ°ÃPM&Û³6à(òB¨Ž#r$^¡%Œ '5fDc&îX…ÁŽC„æXoˆ–0Þ ¦WA¯Â`c†¦X…Áf
ƒêu­aŸÝí
R†,JÎUºiÌ":Va°yÂú÷¬1Aõlc™—EÇú1Tc…R¬Â`¥;ŠU˜AåCË
-×&D8¡²¬1Xj¦X©T’ûvdâß-’Ƴ€	†ŒCDâU#“Ø6/NP§DI[	äÄd)
-’ § FMôzNAxfâH	çCʛ$N­
-C53žžµib¢ädXQAJõÈæÒıœþÄg(µ‘ób
5¬
†
.Eœ‚L%Ǥ82a-ãœ_Q¨h¹Œ§
\†`b
ädG˜¤#5‹™	5«0XøÎ5«0¦$à:s–5qÃ8Öœò¢
-9
RáE…ÓžÔ,fEéYkVF$¦:5± Ú՘†3V±
-ÓpÆl«0؜¥X…Á¢9Ë
-³’^oYc°¨i¦,ۄ°?å8aP²	9·²A«0XBvº
-íXrŒITºï8äåvo“Œ÷‘Ã¢"HNA„zÃhOÚL}Ž&B¦E„¢ÜvqObîrap”³TTF9mVPŒ:£~‚8Rc°85Ú¬ÄÉ¡Çq㊱€f¤Ùs¤ǢuU¬Â`1r]…Áb)#‰nmH¸:ePß#A$…¡Šª bÇ*6
ºÖpbß;²K"
’+7…PR–°'5‹“:`›ðE£t‹\‘Ž³¬0X\žË
-cvå…ætm:xɦô©)@ÊäKêáá•èŽ Å"KûTâ÷H°¡Ãˆ	×+JìXkÙ·o¥ÀÊ
-RºG'µèY‰8Ûú¨© œâ,åŠÄiˆ»“¹›e‘8Ulö‚U˜ ÂAVºÖrzxµà]•˜P-ۀû>‰	SNÑåÔ8Ò*".Î0ºˆLØp™wNÂ
¶@:ˆ—7€ãÄàñpœ‚¬OÂúˆëÐa°ØðÚ¬
ÇJJð]
-’xx9HU.·Å±€–ÐÂ*Ön¬HÁb³EšU,ªž*V"
-rû\A÷BÄL@§
-B1òQYGjL³)ZíXŽ]€ÅëΖ¸+Íjt1½û€3_ñóRšgf¾”ÏJ¾™/ގ½ØK<3™›Ùù­™´íjõëüŸÑ>Y!•␂Ìwü»=¿™Ì&çß¿OßóË|òñúã”ò/ÅÏ|ڗݳYµ¹»º›þÐdèõN›W|¦ ?}½4ó®h¶Åbg¦E].Í]µ)O}¦|N˝™=Èý}³¯Oâ}*»Ÿeg®!Ó¬ÚWÜgž¹ìž7»ö¡+6ÕÂl«eiڕ™ÎÍU[UcÎ÷»Ç²ÙU‹bWµ’°¸<sU®ª¦¢À–^5Àxæ®kwí¢]¿ÂFˆ¡­køÝMÉQ ›«­)š¥ùŒh`î5Ï|+×ë³MûԈø‰›œA(!˜šQèóҏŽ™õ}p+¤Ü< n»²kŠõ‰_ÈÂíùývסibJe
V’ÖVVÅ¢4»Ö|-ºªÝoÍE±øaÊfi³*£&çk_šùÕÅJŨÜcÑ<”7Wæs¹®PCsY,9š(&0l~W÷ý;ZÁØ«šeû´E×߅öjÖ¶™¶»jõ,êÂHßëÛÍtö?…ÂË(ó¡¨Ö-&òÔŠ5,͗͢­<Ïéìy»+e¼nqíÀq¹ØwÕîÙ`@1žæMS>Qé
MëôpBz‡é)Ömƒmѵµù2½ùë¤c¡‡¢ÿ
Áuy˜6ôk{tp°j=˜Ïew: ø &#²Ù¬ÕáKxHVæŒòšƂܶË=‚“È_”=|!q"ÀªmÊEU¬†~3Û¢þ{Sl·ËûS¯xç{"Pô…A,®Û²n±ün‹¦x(y~O­`¿ÌË-OÒiÔÈjR4Ж³…s‡PžÚn‰µ¶àRzeÝ`Y#«C-G	]Sls´±}2˖ÝÛXüñûËÈpyüÝ[»m}Ï2<-ͪZKÞ}È÷	ÿr–Žùiœ—î	Ôùâïg¹n7軹ÞcgJzA–‹ìYæ)ª·CŒ¿RäyŒ¿éˆ)þ~>ú4ú_êr£endstream
-endobj
-532 0 obj<</Type/Page/Parent 513 0 R/Contents 533 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-533 0 obj<</Filter/FlateDecode/Length 1571      >>stream
-x
•WÛRÛH}ç+ú¤Ê–-c°!O@`ËU,8±©¤*ه±4²'Hef„ãýú==º ´Ùl¥r
[ӷӧϴ¾…4Ɵf:9£(;ø8›šÎgø}‚FRrtµ>ݞÓdLë&g³9­cÂñ1¾‰Þ\ïDᤡ0 ÷2Q¹rJ示—îjñ°¢¥ÑNG:%‘Ço×ߎÆ4œLáâͽÈ$}”V§¥·ùSÇÒò	ΪpÓ)RÂé0@„û›5û¬M)ëC“Ypæ]Ö1M™[ÒÏHËíPƒNS½Wù–œy¡³´¾^ŽËw>͛ÇgG‹åçÑjù9 •È6‚tž¨´Ò¶µ°Ëº†ð¤Ê«òЭ6K'TŠÈ¹[=jWÒZÆf%ͳŠdûý{áÄֈ¬y0ð¹Ôðõ¢1fv@VJ2IŽÇaà~8oP}žðç ¶šœҀ…kT–±oC'+©h:¤²"•™Ìð
q;
׌Ýq¬%§i#‘IîH—®—g‹ýñ^yL2ÛÈ8–1í•Û©œîî®É·hêKv¹v Ý÷68º“9àç¾5\òn+X{
›P!©×Z™H#6)°~XsÂ*·½„Løh$r.E<k…ûàÕ¤ðà¥VÓoäXuòÿ’
E{Å4!™®–ùJež‚=tÐ%	Le
-à@1|’@^:O;|8P*…uƒ##¡¯ÜßTöûRz‘€Ž_!^çs܇æË'nQmÃ}ú¤ò˜Ùr~:ð¹îòƒ(Ôa›Nwf͗S{@v¼ÂÄÆ2eêZfÚ&r;u;ô72˜P6:xWlm=-ÐД‰\låºÖIŽ‡Ú#'j[šŠìpÖ0ï¯&Zw~XÊDQ¤*òç-}}cËhÇ[V‹¯o!z §¢Œo
-†œ%PùCðl
hõç
#ƒÂ(LÝ	üܲƒœD¯!Mrj@k.3+QZ”
-•!ÒæGääÒíµy.ˆ
-5wÅjoÙN͇…ˆ»Ô‹"KÉ¡tžËˆ¡U¶Ç܄HTZë^7ç*QtvsðíX~}Êöâ6¦MŠÔ#‘
-·µcêÑãï¢T±ñû”+žGò¿:ÈXY®È*€ˆ[*<¥ø‹w#-Y"Ý¡€hµ¾Šo –J…Á`åì…ñ0ͱ$ÇØöjâN¾oȏr^Bá
'†3|Mw†bÏÞ-–iA;„ý<U4‹³‹¯ÛØ[bÜq%µÇh=]¸@Ü#ߘJ`ð¯Ü×·X…™öâ”+ê•[Õ×Nl†ªxCs=Á_bMÞJ5›/\…yÖ;»Eå­É€N/[*çµßûækSgË
¢¼CÁw:)])y?4˜S
•ˆå«¯M%î•Ä¨ïo^þøøð¸è÷¿n&Sµ^ÑXt;Ó+¢‹K?‘5‚Â7þ!}z‚Êb>_ö®{–¬^¯.èÊhG¸üô,!
nèôÐÿâ}÷÷.¿;„Á$ «—ï¯/W놥œæèö'صHŒX[¦ïQÕS†©¦ŠÃ]NAL!—6)S€ÖТ¶
-0UýÕkÓ4T¨R8ð¨ê/CYM[隬ÛQéˆ7œì™xØ¿‡W™ŠŒ¶:q
´e›í(–Y]˜Ñõâv5b{žÞ»À+Ìz#ñ£WòîýS¤;å£P{æË3÷¸×ö»Ë{æÑ'ü¹ý5ö$ùF5d°l±TAß!PÜ°-TˆèI:<5:«W\¯:–“ÙÿÍ}ŠáÉù¿Ù¤ ;½Gu¬o¸Wü2Ön
-©ïÄ3hGÁ­¤—Lzã[Íw“·3^Âú*
dç§THù]2©zMNÁ4–"eŒxm씉Å(ITЗnNÍÚ@=TÜzøòþÓÛMüUŠªE
-Iˆ„פæ‰!jX
HcÔ½­Xq]nw ,þíe
-t2•£KÀsg^˜F·óÎëʼz]ù­w'òý³÷¥é|ÌçS¼œá=é”K½Y}8ú3llendstream
-endobj
-534 0 obj<</Type/Page/Parent 513 0 R/Contents 535 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-535 0 obj<</Filter/FlateDecode/Length 1468      >>stream
-x
…V]oÛ6}ϯ¸{J8²åx¶³
’nݬndhŠŠ¸H¢FRvýïw.)9ŽÚa(âԑx?Î9÷\þs–ÒÿRZLézN²:›$š/æɔfËþ?ŏU”‡ÓÉ÷ø:xp·9˜QšÒ&G¬ùrA›Œg2¡¼p{áåÈä´µFdR8Oފ<×ò»¿’ËÍß8~C)Nññ«ëY2C€‹4¹Nhu·ZÓJù»ûOëøæk¢«é"™ó›6—éd’&þ‹§L9iõV¹‰ÊÔÏÈeÞ’/4¾ð[‘®šRUªöÂkS“¨3jB…8Dç]:Z‰JÑZٝ–ê<ԉêÒk ƒœ«Íøv¹²ŽÎt™½£ûÚ+[+ÿö,í-Ҏò¶,ÔÕ;ž’4¨D‹ÚhÛz*„ÃOFސ/Š>Ié%5@#!CÙ{í’Êz¡ë#ªQ´#üÁ،»6T!iÏ"}B¹±¤¾aÄO2%JG!ÐdµêY;ÐR‚ßRù¨w]>Q–œ3ӌp¥½8¸„î¡´¤Ñp·Jd`¥À_?ji3¹§‡ûU ÷¤[
ü¦Ê†r]¢).›
D½h¹t—=)Óy”ÌA#‘à‘c’‹Qdë!ÀRŸ¨Lí}éÕ2ôì3(ؙ²åÖÑLäçk„š–YN
ªãþnðUïq„W¹v‹¬Ä<+¼b
8äp®TG4
È£ƒi-ý~»©vnW#–ŽŠÑ
]ÎÜ¡°yÿy|ÿù¤ŽFȤ÷P¨š³@};DzƒëóâYjp̊AŸ[¼¿Ezt!
&
-Hp
§èãQr7ÔÖ)֐ËÊxÄ)°¬1&¾0ʨφ£,!¶ì(\rLÙiâ®À
f;í4*Nh3¨óIŠú)BàØä‘´k5$(²	яf=	/¶%>^´®ç‡  §dkµ?²BûÎԁKªôsÁ3‚A‰°9ÍÃÚ´Þ³|ܙ©x®Skʒmú^ÿ2{úFaŽbɃ¬]áÑ^˜`W˜¶Ì¨6œ b°g
BZèTQ¥*… û^/cAf·2ðÕFXøÖÙÇ	QÙ
C¥%#5à†kh¬Ù
´b@$:Ï[ÇþÌYKÄyĔ	¶Åž#_˜ [9^dì0Rê(øΏ£}ó9Z}ڐÔ´fDj‡ÐÁ™p…ïôpÜ œ0Ak¢{Ë`	Ýr>ÕJeîéÛI;_Ú*)xT¿Qo7„QùaÆã
-yuO¯%„µ·(̳7Â÷݄BÐ$K¡«èÓ0”èÄV
S^x°ë×V
µk%švqO…“h9ì”Q”ŠÒC:šÜÕÀäúT+Þ,r¸ÝQ*Gl/¯`ñ"Ȟ-ðT3t‰Ü7	dWE‚}2Îìó8_¥iìøýý‡õ˜Ïóöá;À¡ËõÇ»°7ƍ…ÅB÷¿c|Âus~õñ’ôÂÂAóCyDÇ%x,M„UÆĚ›>줽°Ypü#˜Œà²”[SQçÁ<±ŽÒëÅËPbz}ÓÏA­ø#\+ǍbD…Ù£M‹-{Îp1àIáb©öYuk=›WA0ÈP!¶LØmx;Ü2”çqÇe¬jT6˜ƒíáÈ
¤'£ïãD}ûâvÒ:
-¢#VºÖ•†–y:jÅ*‚	òÈqdíî€=½vÃPöF°N«'2Ž¸rž³Ç‚Ž·Š“¿1-|-ëó×{ÑWL³ÂãÕ0ÎÛ9ü"^:¡G4“
x¤7‰¯†'Pá |.üíî
-´òÉ
ÿ¿5An_MˆÎ
Æ–ݍ;],“ùÍ
Ínº«éúöãÝ-ýçƒEúkWåCWý»W‹ÉÍÞ±gËI²\ÎpÇ=wÎç~ٜýqö/M5øþendstream
-endobj
-536 0 obj<</Type/Page/Parent 513 0 R/Contents 537 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-537 0 obj<</Filter/FlateDecode/Length 1660      >>stream
-x
…W]oÛ8|ϯطK€Duçë^Š¶¸yhÑC|ÈK€‚–(‹‰TIʪï×ß%َÓáHaÅ"wwfvvóãäRføw)·s¹º‘¼9™e3YÜßgw²¸»Åç9~¼–2}q5»þõ×÷<öúÀÇåÉ»Ï÷2ŸÉ²DŒ›Û;Y‚ûgøM~ú©RmÔ
äQ5+%|^™¨óØy}¶ü;¾¼_\-²9ŽŸÎ³ËLlô®èòhœÞ\Èååøæü6»á›ËÊ)\Þ5ÚFY›¢d­­öª·Ñ~ct/®”Êõc
-½ó/AŒE^VÕõ6“e¥Çï–Z5R© Ñ]Ht’»&%:“‹Ë«!½®•ÞÄ
-WèZúÊä• ‘ˆ{V:Di]fUkžn½kLà±×ڊ®õZÙ\Ÿã-ÕÊÔ&nÏ%è¼óø$Ê"nu3w6D¯5Rop?²[mSD¹•F‡°•Ç/ÓùOŸ£Ë]=¤?¿ÉÄì!ŠªƒK%"g‡¡G
•)VQzý£¤5ò	/ˆ…§@&‚„Ūð;o…šö׆ÃT‰*(ÖwÖ»gå/k~¾OPÿÜþ#m­bé|ó^ž*…„V®‹)²wøy0Y›5Ø4!tú=ƒ]€}ˆª8…8øŒÇ%ß¼ñ@Ž8±ˆ¦«#8òZŒo¬l”7®Ò*ñJ䫋¡Ò㋟ª­XdT©áA㸊šàæ€\PƒX༮îѹ<=|}<O鬼ëx]ÀÕ‡3hÿb~-Tâgž!/¯ógi»|ß}þE'|Ó®…àHb4PˆMˆ
@öè¬!äàtíE†Ä’øA2º?éȚ\-ˆÀx²„Ç.â?:t.
:ècU,@Q!¡Y™XüϖP¯‚¸Ño(‰›‹r¢ô®«!èƒ$ŽU»„*C…Žaž
0
í0 HÓ
íº¢©:5z„¢@ŸçiT‡sQ½h‚€$Y‚‚¬;[ W*õ¨ÌçÓQöò¸µQýÄՃ\‰5ÅÔ£w
çóú£,qIôžT$ÅiOÜÙôÒjxN4´)PJTkÊÈ»Uⶣè¬l€¨!k"IVRö(`¥sÕÁcLœ€Ø9ú»pü.}¼hݲ!r8Wj"­“Ù~TS¬r4W«k
»CÊSó†LžGöª_©üepàY³DÄÞ³œtñ|6–6™i­]±‘W¶<Ž
ø"ØNšI´s`‹§¾#áê…å$
êJCƒ©‡ö:;uœÂ$âàEÓhèp¡v0Å󁞐«ZÁÏÇÇ	¨„Zzû‰¬©ÄÅCý1ž$ê?œDS„°0‹
9JÜÙ¤¯Ôü¿i³†+‚¯b£ D|N²·ôæÞH`4˝#bðKûø %æ$ÚU6#þ#BžÓ«ÄCÖ;&ÀAÍÛ1‘%ë,Påe°†á$ç.§
-öÌè¡:bÞºý‹ÚrR>LP“Œ›àãlNÛdÆGl"Üc"¡Õ¹)Mub¨úaŽ¡k¶{ŸY×n¥ê糄'Ë4܆ˤQ„%ãå•ý|ªadq
ªáÕh|°Ð½+ofò„6S0«¦Ñ=’ T˜
-cË[vÿ8ûŽJê
죓àÁš„µl	(2°¾
bÖu^º& «Úåì•L¾:{1=	æ¼Ù¨
s“W
‡yh0›£ÄÈ®Ú(“Z‚¦øê_zå C+a÷'P;v?7ÚJ‘9b0%j9,ƒIಣx½Jފ•°Qk&FBBÅÀôïO¾bé)ar#̃ˆ¤
”îU!ž•Þ "ìY°Ë1Wà “í0§ddÀ¶Õ0`H;^®î‡UtêÜJ®çX ±¨PÑ ÿ·È=h˜Á…át ãvSËÊþc‡°eQS£±–¥TÓhLûÒØ<9¨Lñn†Õø0íïšsü{Z[8²ÆTÁÆ·°¡Ϲ%²ô]!S,ö[Ð$0ÂØ¢ǎM(K¡CîM!€Ú4œ0)S&ÜáßÀ9O¿JVº–¾	²ÒÛÒvÍ
-—ºòˆïQ	o»~›Ø‚ÓW:`”û$fzGMê
zlÔ?aR¥”9ÖÜçS¨5)i,ñ<yØdx»TÒþy3­owã$i}»áŸS ýÿäYÜͲ»»Å°ËÞ²ö?–'žü)l(endstream
-endobj
-538 0 obj<</Type/Page/Parent 513 0 R/Contents 539 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-539 0 obj<</Filter/FlateDecode/Length 1662      >>stream
-x
uWÛnÛF}÷Wú°XÉql¹/…’ôâ"MRXAú` X’#i#r—Ù]ZÑß÷Ì,©D‹ ²MîÎå̙3£¯gšã߂n¯èå
UíÙ¼˜Óõü•|.oñy…ÿi£/ËëâfúâõúìÇ_ïhqKë
lÝ,´®	væsZWçWÅuAë]`S[·%זõÅú®\Ó'åÊìêf×õùzg#|ßÔT2ٚMsIeŸhË)RìݞÊ#u>$SÚƦ#BûÚÛÀ-»±+ÖnŠk±¶ruà¥`¹¦äélb2”8&JQ¤Æ–Á„#m|ÐØðÂ$ê#®x×ɸhgo¨ò.¦ÐWãñ¼’Iäô¥íp@óßÅËâJü6Þmñæñ¢ OvSïLb؊¾eúðÀ‘jÞ0Ü$ÉDl•Äìp[®LÓÈ#S#‘qOƒ3¨GÜá?pr}ã€Ã)¦ª
 Œw‘Œ>ŽÉT{¤`ºf\BT«û¿©öjÜF	Z«Ðš=
¬ÐãL†¼aؐBž`›x·mçc´eÃ=xI!öÜ%DK¾§°ºÆ$@Ó¢Ü<T|gž`Yûšs)JŸvt°øÈú‹ïÓÄåÐ¥1‚NӐ±-ùÍ)`
ے•Q'UÃ!|ÁùDÆÖXwD‰Ü¶b6l˜‰û`Pk™‘\àV¤‰‰C1!¥„‰Æ"†À(P´Þ]W(Úó{˜_҉´Ñ8&Îåšiæ1jèЧêQ8¥d€È¯å´óõãÅp}ì7» ¨Œí;®P#Ô
-íæ8Ú£Ý
-q_nKS‚©¦ûGRzBg2ØŽS|•™úxŽçê~t&þüx¡%+Ғ©äªGðòýv—sƒY}¼¸)lu/$¤AàÊ ]s­‚IÓ¡W‚ú\+Æã8ùÊ7(p‡Î™±¹S6}êÑh5wìT¹ÐAãç—Ä©*Ä*hÓ%¢Fہ¼“„3p9V {’·'†ìTMßÆcfo	´¸ÚAoìÏa>;¦V›á¦c\Ì©#¢OÎ~vÞëµ0õ
‚|xÈõ͞E"Ä%¥˜0c%ï²0¤Ú±é²Kƒ84
$AŸ;-Z«ö¢1ܑ>½ý8`•}›ìǂ~7OR	A
æ~3ê;}àv”íüíòQš§¶Á´ÀŽHtÝ«nü'´¾GŸâê
ê£•…ÒÅ%j»†¿M\guGÅ!àT:0gœb*è3êk„xAÔ\²5ՎF)åÈÉ
.[n=ÀˆGˆ@«Ãéùœœ½¼ÎcêªxU+ۚÞj»I`ÿ9?»µJ
-ÍΣMÇÔIJTomÛCZeÌá—dgY
»'¼“IyI‡EäÒ6*0:FìšãßÖ@”…0¢­R}ï6yÖ\ö[Ä%í‹9Yл÷Žív—€†0ºóªáÕ©¡¯=÷zGÁQ–L¼î™;(K’d¬ŒÑÖ$Xÿ»¶«(³
#Ôÿyx’!
-9vHú€!¡¸A#e*
€‰ç±áÕ7²Y喴Î&k‡8d¶€–ÏìòŠ°X®U3LØöº› Ã‡Æîæ¼G±¾L×èžÆw\ëPآ׺À	¤oìQFª¾ƒvʚÇ#í€5‡™5Äa3øÈ3dƐ€?•FfXFtÚ
|-_í¥}]³ô˜Ö_gP±ÀˆYßpø‰äˆyÝ·%à—†½C8†Mn’¦Úpm•…òÒbq=ø®JL™|Ä»²p&jåÐÄï×/"í98Ɔ(E'ZÀ÷ìo6\M×­‚ê,h0ubÊÐéÓ5sôcɔE-SY¶ØL½<²¼À˜¼À×鄩‰ AHIå€-µ {ybÈÙJ»	”ÆK| _Î	PÈޝ‡*z:Ñg²ÇdÁÝÜ#b^ve
ßPmñ¬a¦2K‡gÿä¿~Qçà$x*vÝ$€àzƒ0Û¨s'›†îVøá 1<“ô”¦C
e¬c”"3YâU9²\À%"ܤ$ómVÔ}âXÔZžc…ÂÁ2øƒ®ÜRèÏ÷ïƵrÕåðMbq»,nîîè¶aý>ñ°úóõ
+469 0 obj<</Type/Page/Parent 458 0 R/Contents 470 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F6 7 0 R/F7 8 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>/Annots 171 0 R>>endobj
+470 0 obj<</Filter/FlateDecode/Length 1633      >>stream
+x
…WÛNÛX}ÏWì·¡Ò`âKœ„§	¤e€2$íS¥Ê‰OwlŸŒ}åïgí}û$ô¢J”åµï7›ÿ>
ñϧq@aLëb0ô†xÒýxºÄcoD£IàM¨ ì{ãå´ã‘7íØ0¼Èaa‡F!ÿ„æÈ÷±&?¦CÈE^ܦXЈXAæXÐtŒ z΁ðN;¬èbŽf‚hzUƒÄÈÒa\PƨHϺl<9JÂHt<ö$:‘¬pL–‹#)¢‡O
Ì9Ð&ƒ
+u¤U
¥'(:*$€ÅaÄ%êHñŽ!"²žÖs •`:Îú"éÖÔçŒôIø¾$èÎ^“.F4Ï.{ÖÁ`G2+NÃéDª3ñ‘‡lׁœ$ÏAOZÅ	gŽLDQ@¯Ørþg$ìH«ˆçòÄ<›¡Vt +Ñs\ÕųìópX è!æœsé9"Îc΁\·¡ç;Š6Îh$%ÇFÄ
+`‡£S‡ƒÑ´Fˆ­Ñ0rÎB€í!’Ÿrµ;΁0r‡{Òõ'Ò
+kT@o´åü€OGؑ.†YŒâéXkvșãBHpz³-ç‹Jؑ.f³CŽ¶cÅl0åHäðÄØb–8ëÐ!Ç\µ`<µ;€	·ˆ5-ó€K>Ž£žD
+r]å~‚˜ä¹
+pÇ8KÔ;j
Sl·Õ
+vjA,YÈV˜r`£Ï&;Îfï‡öRñ>X[t€È!¡=i‡mۍ@+Js,„Ðê8rab.LGŠQ>Ä\˜˜k`
u ’çöœa4ŒÐŠž”VøðËõC~XÄV-){Î$_@_POFöŒóc¼5õ$|I‡ùH<;æ
–C™ê5q¿$ ˆÇˆ¯YÜφœÄñ	ÐéIS@áò|ç‚^/!ûҍ‘¢€N«dg-D‚:*²—Ϗùf
+訠½n‡¦®–ƒ‹St–|GÄã	-Sù|À“õÙlU›*Y›wËoCÞ¾•;‡’gwImèÓ>MŒ²2Q+sF—t¯KZ¨=ö)^áå(¤ëù’g$`é!ËìÂÎr—Õ´Òú_Âÿ	­už«µÉ`@o(Õë¦P¥©ÉìCE¶ÝZ)jjµirÚèŠöJïsE©zV¹Þgå–ê¤X%Êìt­(+ªTmTŠ_[ç²pžjQÐݚ?j*µÙñƒBWŠ=–¿è¥ÊŒQ%­^[‡mªB+Ýh—I^#›ßÏI•é¦¦}R!?$kãNÊT4÷W´¯´Ñ¨H^m²<Gk] e£<ZÂE¡ÑˆJ­Q&z†÷¶tȤîêwâzÌPōnàuݳ¿¼¸<	ÃÓÕö£Ç\%(a­ ×H¯Ñ	MßT^¨ê¯NÒûQO½K¤™L†‘ÊV
wŽ7HÑÍÃ'ºQ¥ª’œ›Už­é.C2pûåìæñîË».«À£dÿÊՂîIVP5¸Bò&…Ÿ—Ììl9e(jÝTkË!Ôª³yT]žçY©Pœ'm©^^^¼M½‘2µ~ë‹í>÷Ì÷vepº•á{Ӟ¬0©ˆýZc&1Õlûh¹s9W›¬Ì[ð ÌÕíÇ=¶ã@<#I¡èIÕ:oDî^§J⏁󃝇÷KÖ<Éáêéãl~=[,©µÌü9v²S»zXq®Í…TrV­w™Á¦6•ôÁ•¸-M¥ÓF¶øÄõ}“´¤RIʋƉˆ½±e'Q«ô4¼ž-[։½\)ÍUmeÙÏÝÀx]dhiþþêÓ
Õ¯8›w¥Ô}lÌ+¼x-MòýMpÊê9ÃpÞ'ëJÿLb6Ÿÿ^èîóÝO…8–M)¥|ÓÝtµ5ê»aå“ÀìÒê.f‘˜¯©Z5Û¯®ò9þŒìú­¥;‹f»ÅáĒˆk§ÈvÐgUñq;­àõ.áw6üot‹´=‰Q"µ›šc_ŠÊkŒój”®p,¼Ý/Ÿg(ܪÙü¹×õ›<þ’]\»ôŸÏIþÆÀ•°¬»#·oi'
V^œwªý+~qäýÇñEЋ¸nÄLï§rCe;¿‘y:
+Çãâä=q2;ø<•#ç~8Dø¢›L"|^àúɋÿýrðÏàp-¦endstream
+endobj
+471 0 obj<</Type/Page/Parent 458 0 R/Contents 472 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F6 7 0 R/F8 9 0 R>>/XObject<<>>>>/Annots 223 0 R>>endobj
+472 0 obj<</Filter/FlateDecode/Length 1857      >>stream
+x
uXËRÛJÝó³»IUp¬·´t ªìÜl²²ºØ’#ËIøû{N<Ó(IQ…}83ý8ÝÓ#ñý$0sü&M”šj{2ŸÍñ÷ëöýIÎæ&ÍSüޚ fñˆ6f9’X’“LãYaRAžLŠY*dD;‚HF4˜Æ)ÌmM’ΐSpkŠb)𸣀Å
+7j6	—gm&Q Èvù`C¤Nr.v‰]…¹5Ÿ%&u¬MežŠHñ	T<¤Ùx–)Rcš-hÖme(Iê²@âI„x9ŒzNÁ­É·û$Ò$Ÿ‹èiŽÈ)ÈHŸ“"]’fVº€AY$Ñ(Ì4ØŠUl–CvÏZÃIle·†)ÃGÖò¬Â03¸Ä³
+oMˆ| ¦c­Ûx.%+¦#€^„Ù$¤JŽÔlžÌÅZ}ÃLj–&ÌTÍZ—A,Ú¢‚qé!3	XPGJ 
ÙµQA¸OAô
Ëê9=âöÙmæ<½~Ÿ‚ˆnn£$ç'3À‡OtœÅ¢)„IF๔B#˜ùÅÈ)‡8"¹"­Ã˜Ý¸5¹làF‰(“q0Å<rvÁ!a,@z(IDŠ³þÐ-hèUìÀ}
+Ú@‘…#ecT$6C~X =„CÎ:ÏÙ}	B¼ÄDÄ¡‡pˆNŠɶˆR¦‚¶ hpŸ‚[“¦hCÏ)ˆX¨«ç¤?Î@OŠ?Lf™ã@h’#„Ø,²çD
9=gsíí!Ý	ÜYº#Q.Šy2°—[Y’ìc4·c]Œ€œ‚ˆfNed!9™=¤'åô†E€lŒZà¢	3;ÿÜ(™±È“é8Æ©PI ”“Šâ³ƒ-£•…äD¨húTmÔ,Z$ѬÂ`6žrJÕÃhœósvœEô(L·1ÝÊZ‰W¶b&KƒÌäÉÀÎÛ¼ B@SVñ䈊€œ‚ðˆGŠÔ,Îw Y…ÁÆÉÖ¬<¹xVªävVèÄ$ˆ1il
gš…£#›±Õ^…y+…¨g­[ô
Ï4z
É
+%<„Y(Q(Rc†”1`·ÕšÅ̗Þ;¼Ù‘ðHƒh©1ÍrÞ+VafÊqáYë4¶·ÍE€w:rö‘2p¤Æ4›QNÏ*
p¨Xë…ÒJ’©ïtäFÁ©±fkÍö²¹ðfG.À'zБv#΂/¨¿qä‚0åFGjŒx0DcŊY
WOùŒµá(i‘7œãdáz㥇ْðæËí
t›pdO)Hƒ!êä¶)/©â<äà
qû$3<8¹úÉw—ÙÈð*Äc?—‘RÎðÈ«81(Ïp㉒ïÎàÈx¦À#g¡ô™ñ¬9Nâ¹ËUT¾;ƒ#ÃË7—Ù„A<Fãbuœ‡”*F8Nœ¡5\¡å»s62
1â¹LœyƒG‘çÞ¬N^¿ÃÌêž/}iž™ÕZ^øæfU½¸½øwqùõÅÝáþÕ®Û}ùrõßÉéܜ↱ðÅír©¼úQnþ´è™µï˜ÎÔåâÊ|,Ûò[ݛe¹½+Íâæ‚þô¢›²/·õP÷{2:z8ô­ÿC-Aê]gݺ6ÕöVØj†ònóû¢ÕCmöÛ»YÕµ÷æ¾±+´•ËúWS•³hËÍÓ¾‘4ÿ¡lכ¦ýfº{óå¡êý®¬¬¨^uÙ´µ9ëÚ¡iåÐtí$©ßxóéÐôâùT»^>µCùk*Öâ®;fGÉö³JTA‰àWõðæâzišÖ”æsÛü2_º~³žZ¹h‡¾[ªc|ºüŸ÷uߢ Ój¼ƒ|æúg‹:=4»IV7å~ÿ³ë×ÓM—]õù$N%ØyÝ>™¨àtýª/wë®ëÍç‹ó)wÓõƒiÛ»ß;å¦ï†®ê6~»Û ¦Ã“¸ÔzÂtÅJî¥÷Oû¡ÞÔ~3õsµ2çݶ„„·7gÿ«íLµÓܲ;ôÕoIõõºÄг
+_uè'ƒ3Ë¡G1½Ýª-ʚ‰Øo!BÝKsY£JÙ疞¹û¸D>¦ûÓ-Ú=Ž¹B¡×æ¦ÙIOkÇv5™©>êr]÷“˜Ve³™ü‰ÞÞ4ÈîµýXTRíÕêr¹ø[4jW]ïêÖÜt›¦’ÚNØO‡º2í}§Ö趦‰£p5\PÿõXèi†Îݲ®úz˜äEölÓíE²I—]÷xؙåÅùrš+·4U·•ÓŠ_½]]^¿¿¾2ý®ú›&z=
ÞÖßõ~0ghäºýö§˜‡á¡Æ<ªÊ¡6á’YÖ=›âx†Íò)/ÿ7;Ð^¿Ãç\0
^ÛÒ·q.—V½Y˜óúG½év8¨æý¡YہÉqåi6/xÏ,îö§7#Šñb–ç1þO	"â_Þ®N>ü½°endstream
+endobj
+473 0 obj<</Type/Page/Parent 458 0 R/Contents 474 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F6 7 0 R/F8 9 0 R>>/XObject<<>>>>/Annots 246 0 R>>endobj
+474 0 obj<</Filter/FlateDecode/Length 1094      >>stream
+x
uVMSÛX¼ûWÌi“=`ô-ùhl ¨%†`\¸(¶J,‰•í¤ø÷Û=¤ÁÔ&U†¦ßôÌô̓üïÈÿ}I	YÕ#oìá/ýÇÝå(
ƞ$Y‚ÏZ&Þ8|[YŽ¬Å÷£qlH‹ÁFTp:
B<ƒ¬ŸzUDÒåŒ'ã„9'ähÎ
2g<ö
i1Øpù!ÔÉ¢ˆ²!~$
+Tv€"öٓ®Ø0LµMZëYœž´l¬ö
¬Á`Sê±®ÚÃ@Ò,eA
+˜Ô@&Ç©!-E´¨u²^¢Æ;ƒìçûe{ÒbȆ);XƒÁÆ)ïY50†å¨ïy bV‹Á>l0¬ÁL@ðƒ²ÊƒE·ž5¸– æ eõ)Î<]öMÄ!:/Eœ¤º¾Ïíuh !ÇÁѵHbE$¨.S@Î@¬YÂF{Î@ˆzš ©³7È°+±"ªú#4˜³g]›¸º¼oG™ÐwMÀ„žåfƧ÷&¤0ÐÀZ’	3öœ´ÇçÄzR퉲L½Ã…Å
Š:׏֡îT"ä¤(Ÿ
+i1›ä5¬Á`ÎÍ°ƒEe™e
†	hÆå
+N|KœáG¤€¨UÔÛsx¬¾C–ëÁát¢Xl,£{‘Š¨8¨ô.ß;¤(¼i1=8b
Óߕ˜ÔbxàiŸ}Z‹Á:7{Ö5ƺCXqŒ[Žt€H
+Y­'-…ÚÀ̂¹œ†5˜ó53°Üêöðòê;ÀŠÄÝՂô 9Y-ï÷èÚDÜ\ŒK¢€20 =ÉbB¼Q’>¬XVWÊft–N/lºä¾½“,•|­onOòÕ×ëåT–ÓorÝ>µ›ÍßùÏÑ	^ð'>_1ùúë#þ}›^]/¯oòÇÇÅ9?òë›Ë›Ú“ße÷*›¶“ÛùŒ¤7¨¼'h>é/ïî—÷3É»¢Ù«½,Šº\ËmõRë/ʽ,Ÿ4uÞê£J–ÝﲓKœ»j6í§T³îõeß>uÅËsµ’]µ.¥ÝÈ"—y[U#ÓÃþ¹löÕªØW­Vjۛ—›ª©ÈìŽrßví¾]µÛ£?ÏÚº†œžþ`éòj¾“¢YË~aMóPn·'¿šöO#<w¤iX/ɞ`¦ý´–Eý£Û®BÍlؗ]Sl?e™þØí;Ø­fN#7Ū”}+÷EWµ‡œ«_R6ëãª4J0ÿC)ùüìË1?{.š§òj.Él[Á™«gÿ5cãȺº·ÞõP5ëöÏ“:
þéÏ;QY´ûjóª}XW‹åÿ› ìEQm[¬
N/²·{âGøò0™àZOÜ5ÀŸMe^þ.·íKÙíäò€ýÑ´~ŠçΞ¤Þ„7Æzá[A–Eøæ"âñó|ô}ô(¬Ž$endstream
+endobj
+475 0 obj<</Type/Page/Parent 458 0 R/Contents 476 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+476 0 obj<</Filter/FlateDecode/Length 1556      >>stream
+x
•W[SÛ8~çWœ7Úâ\èPØÉi¦i÷A±åDŖ\I&ÍþúýŽ|Áx»ÝÝᒋtnßùÎ'ùûÁ˜FøÓلŽO)ÎF>žM¢	Mggx?ÁŸ•”\­†·ç4Ñ*…ÉéٌV	aûßÄoÞËTiå•ÑdRº—þjþ°¤…5ÞÄ&#¡º¹|»úv0¢Ád
+ã7¥3Yl~7‰t¼È1ÆgUŒÁñy`ãý͊ÝUëSëõÉYtÖëp¶ÔŽÌ³´ä·ÈÙd™Ù)½!o….Œõî‚V׋á|ñ.dxó8‰ÍŸ‡ËÅ爖"_2:ÛSé¤kË`—uæãã*¥ÊOD·ÆR"½P"ë·Zj—Ò9†e)í³Šeûý{áÅƊ¼Y8ª@ªJéEcèÜ9)ɦñx4Gþ‡Õç	Žj«Éiðå.pÊ‘ +vmèa%MsT^d2—ڋпpÍؽ ÔÉ:ò†Ö™hO¦ô½<[ìwÊÊC’ùZ&‰Lh§üViº»»¦ÜE!™:;m<Hö½„
¶n¥üÜ·†FÁmk/`S*ÔçZ+SiÅ:Ö+NXiçQÐKȔ·ÆBs)âÙ(¤Ø¯&E/s†þGŽU'ÿ-P´WL’é꘯Tê졽)I`
+kTŠqà“´òÒÚáÞ2)œ?ª°269úÊ
Me?I(¥¹
èðâu>‡}h¾|âÕ6ܧOJ'̖󓣐ëN!?èA¶á!·¨©‘Ë©= ;
^ab™Š2ó-3]¹º-ú‹ßµŒ&”ö
¶vÇhʅy®u’㡶ƒØèTmJ[‘ÎæýÑDëΫ˜(ŠLÅa¿£¯o\o9cÇjñõ-ôtãT”
MÁó¶Ê ž­#Zþ~@ÀHÆ °
+Ó㶯v IôÒôAcP#Zq™y‰ÒâL¨±6/5’£¥ßû\8îŠ3Á²"(Z"&w©E —8–B­e̊Ð*[ˆCnÂVd)*­u¯›s•(:»Þ‡Îv,¿¾e{qÓ&Å5ê‘H…ÛÚ1
èñwq¦X€x‚CÊÏcùOd¬Wä@Ä
5>¡ø‹Øc„¨ÈJ–ÈC¿/ ZíÃWñ
ÔR™°,Í^Ÿ#¦âÏ$’ÄÛ^MÜiÁç
…QÖ%´°³`X1Ã{Ñtg v<Ýb™´5H8ÌSE³D1Û¸øºý°%ÆGR»­6ЅÄ9ò©ÿÊ}}Š5Q˜i/N¹¢^¹U}íÄög¨ê@à047Ðì%Öä­T³Ù
)ÂUQ˜g½s­¨œ¡59ÐéåáJåƒöß|Œ`ê\¹F”w(øÎÄ"£K+#†s* ‰|õõ¯©Ä½’8ÓõãýüÃã
ÁËo=ðýÁè×ÍdªVÃ+‹ngzEtqé'²BPøÆÒ§'¨,æóåÊuϲ’Õ7«º²F$1Ž…0=Hƒx3o‚ïþ•+Ü®>>\¾¿¾\®‚r†Ã۟\¾®Ã,bºÚ
+C{ªv2B•&UôíÒ	:
+¥ti™
¯†µ-€©êߺÖM-………ªÖ2êP4
µ1´‘¾Éº’ŽnÃɎyqÅþœú"ÊUl3© +ÃÄn†‰Ä´šÂ¯ç·Ë!Ûó(𕔘7ê>|¥ìÁ?Å*uSÞ
+¡gº±2s{{¿»¼g
+}ÂxN°'ɇ©%‹{«¤
QÁáÚA…ˆŸ¤Çª5y}»
‚ãh||v„³âøøüïDRЂ­Ù¡:–6)áÖ^"š§á<ߊg0Ž €I/™þô°w†¥`gƒzõ
+òÈÎO¨6×È´ê5yÓDŠŒ1âc§L܉ÒTÅ}éæÔÜ&h€ª“[_¾úô®%áEÕ"ƒ${ÚB|¥Ä5¬€Ndû?1åÁÖ
,(¸)7[P–aßv2:¹ÒèðÜÀYФáí¬ó¤2«žTþãcýìÑh:E³Ù_x$:áúnVþ@xãendstream
+endobj
+477 0 obj<</Type/Page/Parent 458 0 R/Contents 478 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+478 0 obj<</Filter/FlateDecode/Length 1463      >>stream
+x
…VkOãFýί¸ýHÁy&a[­´´HÝìV‰„*Q¡ÉxŒ§Øwfœlþ}ϝ±C0HՊ°Ážû8çÜsçߓ1ðoLó	]ÎH–'£dD³ù,™Ðt1Çÿ'ø±Š²ð`2ú_{nÖ'û)Ç´Îk¶˜Ó:%čh-ÏÜNø\92m¬©Γ·"Ë´üáïä|ýŽ_ѧøøÅå4™"ÀÙòf¹¢¥ò7÷_Wñ¥×“y2ã—l&Ç£Ñ8ñß=¥ÊI«7Ê
H”¦zFƒÌ–|®ñm€ßŠtYªT•^›ŠD•RãŠÃ!:mÓÑR”ŠVÊnµT§¡D6¾(\Øzx½Â‰LYG§ºJÍÎÑ}啭”{–v¹–9iGYS{jëNHT¢Eå´i<åÂá'%oȋÅ
¥tµ’x‘¡ìö9Ie½ÐU‡U(Úþ`lÊ]*‰´ç‘>¡Ç³ÌXR߃0à'©…£èô²Zõ¬˜
+)AßÏcù)¨Ïm>Qœ3Ռp¥Ø»„î!´¤Ñp·J¤`UÀ_¿hi3™§‡ûe ÷¨[
ü®Šš2] ).›
D½h¹pç)“YTËA#‘à‘c’‹Qdã!ÀR	LíŒ}é„2tì3(ؙ¢áÖÑLäç=B
+MKÈ,£Õq7ø*u8«”\³AVbž^±€
	r8W¨NšäÈÑÞ4–þ¸^‚Ô;×Ë
ËGÅÖè€.gnQXß~Þ;ª£òéûÀ=äªâ,Pß‘Þ`ĺüƒø@³bÐçïo]Hƒ‰\À1úx€ÜöµuŒ5ä²4qr
,+Œ‰Ï
†2ê2†‡¡Æ(Kˆ-=—Svœ¸-°‡ÙV;ŠZ÷ê|’¢zŠ8¶y íZ
	Š4EBô£YO‹@‰gkÀù>È)ÙXí÷½¬Ð¾3Uà’JýœóŒ`P"lNó°Ö÷,ŸwjJžkÆԚ¢`›þ£—Á¿ÆÇ£¾Q˜£Xr/k[x´&Øå¦)RªŒ'¨ìÂC€:UT*J!讗ÇóGÙ-
|µ¾õ†Ã^vqDTºÇPiÉHõ¸æjk¶­‰Î³Æ±?sÖÂq1e‚m±gãÆ&ÈVŽ;Œ”úßXøq´o2G˯k½ú‚V¢ÑHm1:82°ð}ƒûäƒF hMÔpo¬1¡ë^ΧJ©Ô=}œ´õ¥’‚GõƒzÛ!ŒÊ3WȨ{z-!¬µ¸@ažÞ¶
+A“,„.£OÃP¢[LyáÁ®_[Ô®‘hÚÅ=N¢å°SQ*J÷-è`r=“Kèk¥x°Èáv©°}<C¾œÅ‹ ;¶ÀO¨¦ï™¯È&®Šûd˜Úça
+¾
+SÛáíýÝjÈçyûðà§ÐåêËMØÃÚÂb¡{ß1>aº¿úxÎ
+zaá ù¾<¢ã<–„&Â*
cbMƒMvÒNØ48þ
LFpYʬ)©õ`žXGãËù‹Pâøòª›ƒîZñF4¸V†ŀr³C›[:öœâbÀ“ÂÅR!ì³j×{6¯‚`¡Bl™°Ûðv¸e(ÏãŽ{XY«´7›ýHGF×Ǒúvù>:줵DG,u¥K
-ótTŠUä‘=àÒËÚ^ÿ::톡ìŒ`­Vdqå<GfoGcZøZ†WKæ¯ó¢wL³ÂãÕ0ÎÛ)ü"^:¡G4“
x¤7‰wèáPP>þvwZùd†ÿߚ ·«&DçûE{ÙÏÉìꊦWíÕtuýåæš~‰óÁ"ý­«ò¡‹î݋ùèê£ëõt1J‹)nà¸âÎøȯë“?Oþ¬j÷>endstream
+endobj
+479 0 obj<</Type/Page/Parent 458 0 R/Contents 480 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+480 0 obj<</Filter/FlateDecode/Length 1643      >>stream
+x
uW]oÛ8|ϯطK€Äuçë^ŠöpòТ‡ø—-Q/钔߯¿R²§‡"…e‘ÜݙÙYúçÉ¥LñïRngru#E{2Le~?¹“ùÝ->ÏðçµTéÅÕôú×/®ï¹íí†Ï‹“_îe6•E…7·w²(çOñMqú¨Ú¥’O¾¨MÔEì¼>[ü“v\ÞæWóÉ{Nlô®ìŠhœÍ‹æry9,šÝNn¸hQ› ¥+ºVÛ(+³ÑA”¬´Õ^5â6ÚoŒîÅUR»^rôÞù— ÆFí­jšíDµÞ-´j¥VA¢7º”è¤pmÊq*—W9³n-½‰5µ®Ôôµ)jA"ç,uˆ²v!˜e£¹{í]k_Ä^k+ºÑ+e}ŽU>ª¥iLܞKÐEçñI”EÜú8fálˆ^!k¤Þâ|d·Ü¦ˆ(r+­a+_?§ý<|yŽ®p̈́è!ýÙÍdž€¢šàR‰ÈÙaG赗€J‰«¨¼þÙ
Òù„ÄÂS AB‡bUø§B=ûcÀaªDë;k]‰³ò·5¯Ô¯ÛeݨX9ß~”§Z!¡¥ëbŠì~L6f6MþÈ``"*O/'Âg<î(ùîˆrĉE´]Á‘תd|ce£¼q]µòÀK’Þ<{ðS½‹ŒjµÑ <hlWQܐj«œ×Á5!:—§‡oç)¥w}@o¸ÊqØ(Yö³k¡ð?_ߦΪv©~øò‹&ø®ÝZ#Ñ@à4Éâ
+;¢³†hƒÎ•sÔrJº¿hô$!k
+M À¿ñ$KÄ?;ô+±:hcÕ0€+B B»,'bñ?»A
·ºjUD«e<-¼Dé]×@ËIv
A†ÍÂ<νÙ0 ÈÐ
ãºÌÑT“z<BL`Îs7ªÃ¾¨^4A@’,AAѝ-‘+EzTæóé xyÜÚ¨^qtV*±¦Žz´-à|>CkT‰^ÎÊ$6í‰;û]Öv

+”Ն
+ònم¸ƒí(:+Ëp¡	5M$ÉJÊ,u¡:؋‰#;óAk—Ž/`PÐNjÖköB
ÓJ}bB¤k2›lEÍ1Ū@_¹º°Û:¤<öm˜Èóà¾^õKU¼dS
ž
KDì=ËIÏgCi£‘ÖÆÙxe·c[ÆÁvÒL¢…œ»;µ	W/,'iàPWL=´×Ù¨Yr
+ó‡þσFÿoin¡qðÃóLO(T£`åÃãTB-­~C"kªpp®¢?ƓDý‰hŠîe1‰;›ô•šÿ70mV0DðUn„ˆÏ©Qö.‚Þ=d±s>ÂÃò韤ÂtD Àv€~ÇsfU˜]Hx'À„5Xyoþ	R«ÎPŽM°WÈ;9m¡5U²]çÔ!ëxë:´.Ê*Èvž`%Ù5qÇÞ4’¶É‚ˆD G"a­S™ÂÄ(õyz¡a¶{‹Y5n©šç³çÉ8ÒFÊ(O„%
Ãá%Eý|ªáš$p–aÓèy°~³++'ò„Sð©¶Õ%푠ԘC·[6þ0ñŽJê
œ£—àÁh„«l	(2°¾-b6M^gIÐeã
+¶ÉD¾9{1>	¦»Ù¨åiÉ£òfnÊ>s”ÙUeR7Ð_ýK¯|	dè"lBâBŸÈ£œ	¥Èœ.˜µnÁ$pØQ¼^%[ÈC«VL„„šiÝ)ž|ÃU§‚¿
0"’fO:T…xNTzƒˆpfÁ
Ž¹½8j‡9%¶k
ïЈ´ãåê>_@‡QλÈõ×d\O¨hÿ[äí'ßÒp0Ðl;ƒeeÿÅÐ!ƨ©Õ¸Œ¥TÓTL·¤pßäŒ2å‡ÈâôhŽð鸆k”‡ƒÙŠé‰ðIP"Kß2vÀ|÷F×pç¡cÊRêPx³Ž@cZ—”)î°nà\¤¯’„nMËYi5€´]»Ä¡®:â{P»Įß'6† ƴԃä>Š™žÆ)“z€öõ+Lª’ªÀåöùjMJJ<O6Þ.•të¼/mwÃϐti»á&žZÿ°™ßM'wwó|m½eÁ.Nþ:ù•Nbºendstream
+endobj
+481 0 obj<</Type/Page/Parent 458 0 R/Contents 482 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+482 0 obj<</Filter/FlateDecode/Length 1656      >>stream
+x
mWÛnÛF}÷Wò°XÉql¹/…’ôâ"MRXAú` X’#i#r—Ù]ZÑß÷Ì,©DD¶Éݹœ9sfôílAsü[Ðí½º¡ª=›sºž¿–Ïå->¯ð?0môÅby]ÜL_¼YŸýôÛ-ni½­›å‚Ö5ÁÎ|Nëê|½ljë¶äÚ²¾XÅékZàœž]ÝÂâºÆ1éàû¦¦’ÉÖlšK*ûD[N‘bïöT©ó!™Ò66Õ·ÞnÙ¥Xˆ]±vS\‹µ•«(Ë5%O‡`“¡Ä1Q҈"5¶&iãƒÆ†&QqÅ»æHÆE;{K•w1…¾Bç}”L"§¯m‡šü.^Wâ·ñn‹7}v°›zgÃVô-ÓÇŽTó†á&I¾È( ¢`«$f‡ÛpešF™‰Äˆ{œA)âïüÃóèN1U}e¼‹dôqL¦Ú#Óu0ã¢ZÝÿCµWã6JÐZ…Öìñ`…g2ä
ÆòÛÄ»m;£-.èÁK
+±ïä.!Zò}8…Õ5&
šåæ¡â;óûÈÚלKQú´£ƒÅ@Ö_|Ÿ&.‡€.õˆ„pš†ŒmÉoN
hؖ¬ôˆ:©áGÎ'Ò0¶Æ:0À¸#J䶳‰`ÃLÜ·8ƒZˌÌà·"mLLŠ!)%L41F¢õî’`¸BўßÓÀ”ø’N4 Æ1q.×Ls0GˆQC‡UÂ)%D~-§¯/†ëc¼ÝAelØq…¡Vh7Ç
ÖíVˆƒür[šL5ÕØ?’Ò:“Á&pœºà«ÌÔÇs<W÷“ s0ñ—Ç-ÙX‘–L%W…<‚—ï·»œÃÌêÓýÀMa«{)!Wíšk
LšÖ½$ÐçZ1GÀÉW¾A;t†ÈŒÍ²éSF«¹c§Ê…8¸$NU$V‰@£˜.5Úä$œË±ݓ¼=1d§jú63{K 
ÄÕzcÿxóéØ1µ°Ú7ãbN}vö»°ó^¯…©oäãC®hö,!Þ(y(ń+y—ýƒ!ՎM—uXÄ¡i 	ú”Øi¡ÐZµ‘àŽôùݧ
«ìۄ`Ÿ8ô‡y’J
+0÷›	T?è·£”hàoÒÄ8µ
¦vlD¢ë^uCàG8¡õ=úŸP?€T­,¼.v(QÛ5ü}â:«;*	§Ò9óàSA_P_#Ģ播©v4J™(GNnpÙrë
F<BZNÏGäìÕuS®lkz§&1ýï`üìÖ:ˆ(ä:O5P'Q©µmU•	‡_’eiDîìžlðN†ä%vAKǨ¶è<akŽTDw[=®ˆ¬Já½Ûä	XsÙo—ÌBt.FdAï{¨Û{¶Û]@˜¿h0Œr†W§†¾õÜëÅE	2ñºgî *I’±2A[“`ýâÚ©"ÌLs°Nüç¹mHæ3däTÓ!éæƒây”&žÇ^WßÈf•»Ñ:›¬il␱F>³˪¿b¹V¹0aÛëZ‚æzºwñeÄæ2q\£qßq­ó`‹6ë'ð½²G™¦úB2ÆU(kžŒ´Öf>ÔЅÍà#Côu˜@þT
D˜aÑA7Pµl|µD6öuÍÒ^Z?Äw"Æ|Ãágj#Fuߖ€_zmôÍ–¸IšjKÀµUÖ<(H‹9Äõà¸*1eèuÐíÊ™@¨•Cÿ~X¿Œ´çàË¡Mh
ß³{¼Ùp5Ý´
+:£³–Áԉ)C“O7HÌџŒýRv´LeY`3õò4ÈÊcòó]&‚!%•Ԃîå‰!g+í&P/ñ|E3'@!{gtªÞédDŸÉ.“wsˆyY“|CµÅ;plÐ^°†™^d–Ïþͽ)çà$x*vÝ$€àz30Û¨s'K†®Uøá 1<“ô”¦C
e¢cŠ"3ÙßU9²\À%"ܤ$ómVÔ}âX„Zžc{ÂÁ2øƒnÛRè/÷ƍrÐÓåð%bq»,nîîè5aý*ñ°úëÍ
 ²šÛ
-ôü­G<âk6žÝÎïdiÿŸ¯)×Ëy±\^ãK
-Î,åæ/볿Îþ­lQendstream
-endobj
-540 0 obj<</Type/Page/Parent 513 0 R/Contents 541 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 6 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-541 0 obj<</Filter/FlateDecode/Length 1191      >>stream
-x
Vmoã6þž_ÁoNÄ÷ 7àÚKo
z9ç4E!ÛJ¢Í–<KišößGJvÞÚÃú†F¦’’þ³@¿†Ð@’7:~º?‚Þhˆÿ†ø[rX6n£ÆõýÂDK¼1Ž J
­;x’4ïÖ¬0¼„®њƒfyÌàÓôöûgÐ;mx~ýn
‚¡hw{~ˆÍ®ø0ç[øº1ÅÆÀ·4ìՙ÷ *ópèÈÜ¢[PK`òx³Z	¹‚L­`)2BcÈEÉ5—†§ÀôÄ¡u`\ƒõü
üdïÓµ˜|øU'¹^ÝÀßt¯í0p¾ksûК»ëë´¼
o±^uÛðWssá²5¶—½G¢Ù—)x-¦¿NÀ{òà~ö€Gï¿Ïï¢Ù×ù‚7Ñd6Ç‹+ï²õz’E&$æu)
÷”²Ž¦¿E.
ÇÔ1ïŽu2@^hSÙÈ}²f%K°èøk’mR:7X|É·}0ð뀎v—+‘µIÆ_xF¨t”s­ÙŠÃ¢É$,â
-•%¤}V2‰O:¾tWçÀ–M¦bX^œ›Xv+גå¼öi•³,UÛµHÖ֗ÕÆ>š-Ӱ⒗Uõ¶*‘D),721BIøÿ¶ÜœåSnò‰¨HrÁaŽØ\(tôÊÌ!>DÅãy¬·L‹„eÙ®…¹â%{?c¦LjÌÀöŽƒvXìã…6ËYÊaSPH'\i벍͋Ã!mbƒ“ðc;躮Ÿ2äøä1w„Ç`ͽ&S e»ÁR¢­æêÜRL¤“Ä;`䭍[{«¹ª>Õ©FˆS9‰9Î
[aœöš²1¹àßÕ-—I¦4F†š±GþàFÛð«>¨Ý“æHƒ­½\Zú¸ÚXŸƒ ëÆ8‘",U–©­ã§†D6Ϝa£æBZˆ"HT¦¤ów"XÛ$»{2A¾Qhk®ñ©‹)Q8««Æ¤ ßðnëÃ'^piçæÀž °Då¦_¶ì§}»Xï9ÛAŒc@hM3eцԱo>ª1bœ%øü\ÏËçgTRR*Ò7õ2ޕÊÀFŠœV¤|y‘Ù¾áiRœ)ÂTã„TÛq
ÚÝ´î`¿}ê"Xµ!ô‘hðR*!W¸3‰ÝNJ?%“Õ#r/HÛ&=§ÆvØ?tÞϼäŠ]á¤â¯8Ïp¿)»(ÿe©
<ãñ躃?]ÂI¿?	û-ž@æqê'“EsÐ/®j;.]°_snb¡2T¦æ%RD
³ÀûÁ¸»•eŚ–
+†ap‚s§Š])VkeZ₏J‘®8Î®×Æ?Ãwü¿y÷	×;KQ¹~8è^ˆ~&…,?H9«LÅ,#áb.´©Èáõý›õ6W§ÍÂJÌ,V/ÂI¯'
-ÅEˆ&Me_nR¨D]
ª<µ#3Xº˜'l£	þ\°u=³ÓžF@Ü}ß>Ï`&SÔv
-btR·¤ŠkéЛ¢P%
rÇ]PÓ[Í\ÛVr×÷£Ã›U/to7ÿé®7zn®ÉÁ4jüÒøgæ"Òendstream
-endobj
-542 0 obj<</Type/Page/Parent 513 0 R/Contents 543 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 6 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-543 0 obj<</Filter/FlateDecode/Length 1137      >>stream
-x
¥V]oã6|÷¯X(âEr¤O	.¹½´(êë=Ô} $ÊæYu"Ÿÿ}g)Ég'uCó
Ø"¹;;;;â×^D!~#šérLIуF“`D£é‡ø¯%e½Ûyïâ~FфæNŒ§ÍSÂî0¤y2¸†
ÍW’ÞßÝ~ú°,NéQ$µ>Á¹EØÎç·“`Œ“ƒOF’ÎÈ)ø)C®LV¢\Ê4ØhÅZ²M•¨E!­¬M“4Sµ±|ŽÃÒ±””Ë'™Ÿñ#Ô@rj#]¦ÝöX§[F"(CV«tI‰Ès²º
'c·Œ|AÝzÐÆŽAâÍWžBÐÌU.Ÿ¯ÿ"k‰uQ’ü&Š*—´Y©dE…ØÒJæRÇÊôÑV;Úh—§´©•õÀ/îCšu䍚ŒU­J›-ԟ¯P5þýdºÊƒÅ¢ìŸQ?eè}Zœþü²¾(ÑH0Á¬ig+g¹jcS|ñĕoÔvÂ3z3ªÆ0}M”©\tƒ.µ*u]ˆœ:^ ¾ŒŸX‹v4‰¨ œ®×Ï{ó›¶õ¨§ô<ˆX?É]£8¥¯­ã¶Q3n¤g+豚`ÛåD¾[Óêrvú»F±Ä¶g¤š	8,Ï’a•¤k’_jkõ¸ÌuŒoO"w-´wÝ}lÛµÃû\òVXYÈÒIUëñ1\/„¼ÓAËë!2cIFcúVÌm®Öòº‘×K™~þŽf³éE8¹¸„ÍŒ¯Ãðú*:£ðŸ¦‡Éu7T‹A4œ.N;Üa0åÑâ_éDÞ´¿¥ËÃ?4/ë;áêfø»%µ	<*¥Ü`ðD*kzçJæúÝþ€ŸÔ%2¥xëWµ|RÚaÂ[_ØÅìжƒª”Jm‰gj£ì
-©N0‹'
ý¾›®Cs¯+Á½@¦Z»%ŸÙ“nì²(¿ÀÞ,wf…Í°¶zû,»U…lŠËU)9²,íJØ$û(܅s·±ê‘•Ý"¼,÷|k\©L½¨<[ªdsÀ‚Q0°ç™EU¡ä—z
-‚ fOiüôCóôÅÁªýš»t‰!~°´ Ã—Tå"
F™‡÷ÎgZaK,A•nì‘ßVa¸`Ó©¹³ÎvÌƔº"†5t.Üj|­Ð.ÿ™ýpR9.	êwöUu·߃ÃK$Ê«¥uu	¤ì¾ÏñhO֊ý›wûwËå·ñ½­ö絓ý£ñdnv/º½4Ô±ØĸØv<ÈA>ÿùžï?&í3DŠ¼°Õ¶új”ƒ%îëb…»‚ÝÕ»cÈ¢(äh¬%×zí-•y•ù·ûÊðj|„Ýýê&j¿ÉsÔ¿Pãÿ=ŽŽ”pÌ?û†2剥ÂÁ18í]É¿;Xû1„ã«û,Ü/ÎeÑž¶7·h2
Ƴ¯Znþ¼y¼½¡÷|ÇÒ.bôÁ©ÔWyÞí=Ÿ„¸¸¤¯Þ
G“Q0Oq3ÄÆ(d–îæ½?zÿ
ƒ!;endstream
-endobj
-544 0 obj<</Type/Page/Parent 513 0 R/Contents 545 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 6 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-545 0 obj<</Filter/FlateDecode/Length 1174      >>stream
-x
•VkãFý?Ÿb8`+’åøG
-I“9ÚR÷ ÔŬ¤•¬FÚõ­¤8¦ô»÷Íʲåœîì&ØزôföÍ{3óåÂ#ÿM†ä)Ì/\Ç¥ÑôÆá}‚ÏC¼Œ¤Øþp3uÆo¯ßÏ/®š‘7¡y¨ñÔ£yD€q]š‡=ßñš¯$=<ÞÿþáîáaÑ[\Ñ'}5ÿŽÈÃüè`8
ü<ê}T$¢(-S­¨ÔTâé笊¹¥BgUûz`ô³T”¥JÒÚè “9E²MȈD _dŸ
p„´ Aa&…Ú£ØÌ8
÷|gÈÁòÌ9ORòEJ¤’F”’aVRDÒ8ô±¤Mše$Ök©"ܸ¡R¾–MÖaeŒT%2
-ª„rY"‘4Eiü&.Ÿ2Ö&%U# –ùºÜÖü[UŠWÒ±å£#KÜÎ…È%	þ¤öÝLü›˜öxN]—fMF¨>˜ üÙ8‹¹}Zô.ç+ÙʼnSS”–xg±P—„ª.®~h¸Îô¾¥¡q\?†i(W©9üÒp,+™_ŒŽªPß;˟Þl6½v'×>?¾uÝÛ¯Oî_§™tÂÛ¸R!kkÑ»ñ†®ZG!(¹“ŽcßÛ>çɛ['¯Ïs°×À·¥ñQËUOŸŸÎpÕÏ°ÈN;§o¹:èɂԒß4
-Ú	ÕåAVÐ9œ[&²„‚"Ð*qèG­Š®^jëÐ2•|ù:ƒÀÎIåA´,€#”Òàœ¹ÿvÝv	ø}èZf:Ù2E)ͲÈa³[*·kIï^ÙG¤Øï
-B)ª@!Y|á6Ú<'FWk\`åö;ëÁâ'ا$Ó
‡Ü2fŸáŒïkØe}‘Qïù}iÁW;7tˆ•+qÜÈv¢ÒdñLà4ÒEU‘ª¤ñ J `•¶óûlôXg™Þ§)$ŸML'Yl[k¸7À!tÕEø%.êð†¶oõ‡¯1
-°ºÏë,¸•@»X-¼ŽrÝQ‘æi&Lš7I%‚lK*
¡v´~£E¸²}Q£dò`¨Æ˜uŸ­›Gí/#Ëʨ‚æ¦Âd²=½‘án5Ó"øÈ<Ãøà®®"–_*‘5c¦Ög­Œ§ÇϏOô"²Š•ª¿£Š4†,ý6Mòkš4öU'ú§ãZ$<éÎÕS×`hAü/À:O?'@ÎÖMοÌW‡½9ôþØ0t3rì¬]g=6¢@ÂÐÎ~
Çõ<ÆÃXc¿(Ʀ!¢ á®Ì[4R„+™K[t¬sƒÖ“hÜ׸e-
—#ŒV±æþËù°†ac‹zžCü_÷;Ѻ¢Âè4!V èˤð"ë8n¦JQŠð™º[Š,~ Ù‘4)Ö9pЀø|œÀðë0Þ1Üm7´ø8‡E7ö	L@½déª\äœ-Bc¹(kNyҝk]Àén5õn|g<›Ñ؟ÕêowŸîï聝©ÁgA*L¾šÅ	vdÜ;˜¸Ø§¢Sûïh2r&ãéŽy!ç¿^üK¯mÕendstream
-endobj
-546 0 obj<</Type/Page/Parent 513 0 R/Contents 547 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-547 0 obj<</Filter/FlateDecode/Length 836       >>stream
-x
…UËnÛ0¼û+ö˜	kَåäÑi¢j{	P"e3•IW¤âúï;KÊy(iò,’;»3³«_£ŒÆød”Oh:§j=‹1äS\g‹×	¾­¦:.Ìæ™X¼·0=‹ùpá¼}¸:¥,§¢È|‘Q¡ã1ÕÁTœú¬·tÕÙ*gýañNÌ҉ã)G-Tܚ	Rå2èßáîàî0mQ†˜üxuP¬Œ§ºG›ÖØàIé²[ÒZ{/—š8Ga¥û•Ú4šî¤U´qޛ²Ùñ¿ó[ÞÒ£‘qwíÚµTvu­[AÅJsÀΦbÂèOÀ×ž$=ÊÖÈÁe»ìÖÚjŒôÐáҘŸ:%Xs=äZºà<3þƒ“±›.
-Šuh…HKö	Pç]rbƒ,}¤¸ûœŽˆëÃnKé=¢!Vªè>t¿§VÐMM;×
@ÓÅåù·ëÛï·1G~¸5Mƒ„\‰Âvä©*Ú‘«ãýžø”ï
EyÒ;¸MzO¢Þ+ÕþOnÄZîň´mMˆ¼¥¥bí>Æ_hk[¸ 
-þ+û¬ñnP-ÎÁMfR¡¯üÁºqd½Þ„ȧJ‚8pú¢—=¼ê*øõ.@vA_5G×T¹5[ÇCýA/"
šÖÅ[»È+·Ä<±yMÄ8l:67'^µJ”µ²Ê´º
-Í^ˆ‡aEå.Ù!zÝÍqvq-ûO1§â}¯¥Cï·1”äƒ¦z×ØÔ´¢Š©ù€¢“þ‰·ÔÞLs÷ž
ṅl0
™0 VÛÊu6è–3°zÛ«ýàÞá¨ýªV²•¶±Ö5N¨£„?d>õfÜô6?O€§ŠŸúvßö‹’5‡ôr[^e©b‹Ã
-–
sŲԠB/µ<1ЖZV+˜ÁGÇ c™¾„/aÒÖw‰í>fOù‹BeŒÊ˜™fÍcu»2«--ÒÜôcuPxŠ„Á—±èçz–/Äüô”¦³<½¾ž}:?à|ԍ۰>םQ±ŠãýÞã||ºŸ!o_/³|&òùoŒ™lÂp—ÅèËè‘;6Iendstream
-endobj
-548 0 obj<</Type/Page/Parent 513 0 R/Contents 549 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 6 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>/Annots 288 0 R>>endobj
-549 0 obj<</Filter/FlateDecode/Length 1887      >>stream
-x
…W]oã6|ϯX´õ‰'i>îí.MÚ<´¹ÆnÑ
Z¢,6©#)ûÜ_ßYR’m¥hq¸Àú wwvf–ú|4£Sü›Ñ՝_R^f§¸3üyúïÐÅåþÖtv~wWšæéÙùUv‰g³›¿¯øÙÇÅÑôþ†ÎNiQ"ÆåÕ5-Š¸5îä“ÛJ4A:ºÈèÖʬhÞ®VÒe·ø‹/h6K‹Oή³3,ŸÌ-mmKaK¢((·…äßsQ/eYƋOéäì2»à%F’-)T’
-њÀ¡‚ð¯žJ‘ó… ÆٕutD²nÒK–6N™"”Öu!”§ÖÒù LL[w1gç)͵pʶžWr„ÜšµDdTF­—-·ÈÇzIµõDÔZ’21I$ó—ÌCF‹JâýµéÒ½l
§¤!äD•Ô
¢¨{ac©¡K›[ÄRi¶Ç„ÒOBmˆã•Çù¶‡‹‘å4Ppaó¶F	´QZbwq†×•rÓïS[¤d86¶è@iםˁ†r¤ jô+A‘ZºÈ(ô›­"É/
ðCýH(¯„YIòZ­ª Qٚ@ˆã”D[øµ•³íàL=i)œÁbiÛ@véó֍{Ëéð‹à"ö˜m,ҜÜýOœýôz‹´žxfìÔÛÖårªÔ`„öÞO/öüŸp®‡kÁïžk»—W lï¿mĄPЄ£8W¡A;P»Ž™¥’¶à)sRõs›4ÊÍíà÷a«#lwK
”7f&Ɩö	tÛX0>©Œ¡G&Nú¨ø½¢B>øvÉJ8”¹l¢à½`åàÙUÔFk¤[s¯ù¦ä.sϙZÜh±ô䥬9ÐRB粔Îáuh-‘+¡ßÞcúPF›a6ž ä´BÂ^ÊÇåS@ÏmN>·–_î‹ö„]Þw¼í=©
-¡y?ê/.ÓÊ´_2c{|ß)-6dz
dÎÿû›Í&+}™Y·š¢¼f]I¸Â¿›gU¨{¹ö±?‚Ñè
ê`È[Ø£Âþ…VmtV.ºfK…*ÛxÔ9¦§MeS3 ‚àÔ²Eù= }Ð{«µÝD·¦ÞB㇚‰xûʶº`‹Ä¦ìe`)d`%ÈsçòÝ+Øo”0È+ÙE;xú⦬—ÑõDÃÿi炬vªàîANL’.ƒ²5ð*kàžW‰n»W¼_7bpÑ
|–&æJ°ÌÚdÇoRƒê°•Þ>ÜϧóŸ>²;jdlÂà plÈÿµ
žÙÖ@¬TX$7.ÑwÙ*]à±
¦·\´œhÄo·«EP.´ŽÒ#­–ŽëîëK[s©2kûšhߗÒEåfdôA#æŽI<cRÆ̕QìÏ-ÒP󔋧\+T}P8îA±¾mØd“e g °©T^Qé„l%Í~øqE\ȼ2
-¥Ò‹sMÒóƒŽÁÞ×ÑO*wÖCµ°·þ¥p»—Ÿ>6 ãÒÚ×a0¡esÿÚó»Qd`	ÛÒÛ±~ì
Šü·j=‘¥8…
'ÖAñnšP¢ð QD&¤;|")”/à‰ò× à¼ïI±„!ƒ	öŠ))øä„ñÉÉ5Fc+V½±ôÊá­¸¢L©þÞ,‹³w’›¸¿{¹º»ÛÏ®tR©Àk[¨Í`'¦E+5ú>G™°˜œíÂô‘k¾	‘ÙË¿¥K‡²½-PÿŸwO/óÅÓ¯·‹è{ןàYÜÝ!æô§ÇùÃï}u1æùÅôÁåÍ6,xžpW¼(åË·$AëµÀíàŸß
qx¨­­ÂLÚ¯zÙ²wƈkÓ	w¨g`Ήá}[÷Jbà„mÍê8ÑàrP,ì¨#Fßý½sÉA¡ß½
‚“’V¹âƒÌ!º_À€Z•PG´•F¸šá=1±w
-¶}¦s|ÃP¦á“’ÁVÏæ÷&Åñ÷†zœ|ó
-²Äœè"æê’ôu!KO]±MªÚçàå.ÿ~ªÄ!Ñ''h-^4,—=;
-¼@Î}e8}‹/
nˆÀ҃ã
-ô’ûɞðۇ—ÛÇO<OÐÊȜQö=¾Ñk1¿?>ÇY¢´9faÒu‹tPš28m
Ö¿;;ìaÝLÁ0¿ûá7Rå((ìD	D/a8úÚ¯vpœßàòä8LBÒ±(V{…¬1úÜ÷¸6á°	“…ZǧÆøQ"×»P‡ôÜã2¹n1ûxVWˆ	|K¥áãàÌm÷ó$=í®ºaщkãgQ7¤Ðz…eGûºH>«†²âØNß.¼hŸ57»Ü{䒥ìåÃÃÑ{hˆ4ˆMð<ƒ‰®¤á£=z‡ï¶¯jñÊ'IìWÈ	ÅßYµs€Qâo²»Ì¾Û9ëiJpzÝ}œÌnðüäâ,5õ¿“/®.²«Ëëä ³s~·8úåèñ4ëendstream
-endobj
-550 0 obj<</Type/Page/Parent 513 0 R/Contents 551 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F8 10 0 R>>/XObject<<>>>>>>endobj
-551 0 obj<</Filter/FlateDecode/Length 1703      >>stream
-x
mWasÚ8ýž_±ß.MÁ
J ¹o„¤Î5moBç¾d&#luȒO’!¾_oelÇt2MŒ¬Ý}ûÞÛ埋!
ðoHÓ}šPZ\’
ÆƒdBãÛ)ÿŽ'iuq¿¸¸þ<¦á+>;¹Ò"#œh‘^V^’4™†¼XI*D꬧].
U¦éF™5=?Ý{z¹ôRÒ²ÒºLº$'a2R&Hg„öIfӗˆ*¼5¿“±áÃâï‹
õ‡Ÿ’b^Ê­tµ5’ÓÓW¼§ùD8In¨=4&ÄOãÃþh’ŒùÕï6HúeTj3Iª(µJEPÖx²+Jsá¼”#ÍÙ6‰ž$–Ð3²/+­_¯bâeåóæד<SkixõÁñm«Ê¤1VÒÕƹ£f~*´ú7þr¦”ѹR¬ù-ð¾*$=šµV>'ktÝÝÎyŠ¥ÝÊÕhUv	ˆŽ i
[¸š‚%±µ*²œ±2׶
-T
-'
-‰L¹u]r+TÎP&‚@¯UŠPóΩ€Ö(S¾{ýåÃ	Bmç`M*˜B>ˆ¥Ò*ÔT:»Ô²ð‡äÛL‡ããüÛÖ>_©©-k§Öy`â¨YˆøÔ9™†e
je	®Ò©l-ódPiëÊ%e*c„c-	}]Qm«“üq„Ã4g‡Ïdäß N'^¦ªC…V¾)Ó*äñ°“øÄãŸE±ôåç7™ÅK’3uߜ«{ö*È=kÉ×=̳×ûo? µ•u¤¥Y# /eªV
-׳òúܱ;ØQªLŽC¶
Xpy"Û
-ö!C¶l‚ñµKFj…3-Y:JBH“Ö§‘¦ç"íIž¢¾iöô:›Ïüú¾W\•‚~Ü*î®®{|¦&ŸÛJ£N$ßDÍ[%¨Ì–¯k’$y¹„Á@å'íä0€ö@›½?ƒSM:SJ‹Ððö¸š–¢M5i.Ó
!hwì²'±ʀÌþ4[öH蝨=[]|_~m_uDZ‰T6”92ÊV^ÚBÌÐoA¥®Öë½Â
è²¾;—õÞ8áKXYX‘ÈÑ!#кlü
Bƒ¤Ví0~4¦´Þ+Èø+Òj48Ԇÿ…ƺBhšÞ¢&xº¦+	8#2&÷üãǣϮž…\¡I3Ðøu£­£s¬‚BœNåÙØ:ýÍïîØ|L&\Ö#oaV³¬¶p
-¨(fT*Í.˜Ù¨z&WH…3Z?{(£¥à–Ö
	±ýG¥Î~~í$ÓÀÙQܓ|+5èÁ¾ùaшÖ<×áÇ Ë	©a>= ‰¨Ž%t–´AåLíÇ ƒV}¥ð|nñЖhY)Whf8¹¶	P¼Ž>âÞÕ@d‚D:×Ñ!ÈR¥ȱ*áBô`ßêµ4Hˆg£'+@|„g+Ñ»øé
-&ÙR–
Ûy„sv—Ђ/*¤ÀX‡¿›½×[á”@žǀˆ
-oWúŽÂsâÉüŽlåâ¸ðXi˜ßZWAf	=
-̾Âf•†ó7þ“‹-$CšÆœ6U±DpX¾5«fõVuú8¯sóºŒÏÁòn”·°°Ú+b4ا¥
ãµ1v§%/Í|•FOK%yb"ÅfAòVTÇÍá}„Ëž`š¡áa[sï®ãÛÚd°ä`²#0
V%âªèI[ȧcOý†=<Kãl9	ºrb
®ôâºÆwPGÀOÌ»ñŒ|éÕڀð(¸³SF°¡aX1 ~ó˜)n'aˆ÷FÉÊmgjú¾À=
÷Ó@‹Vã5ëà0!jýus¼^5¸måèÝ®s3Jn™÷ ¸Ù@RN®°‡ÖûFîXlûNiÍ7#b7ãþIÍ%cÇ˲øÂw a¹aMgè/Võ?î·;2\þÌ¥ÝMp,„€	ÅrÄs®tT[ë÷£ý>ÓÞaqï·%/`cc
-ËQÜÌã
-·8Ïȃ?¨}8Ò£%X„H@³ñzvÔBԔK]2{Ìª´µNÖ+sJb'1Œ7,|8¿!#w{884(•2ã°gåèÇØ9 ŠozÚ_Ì
ÁN‰|UrÏÛ¢§Ÿðiÿ=‰—T´NŸ_¾ÝÓNo“	FÓøfÚXÞóìé~Fp,
ËÃ0úRaûã—úíÙþtpÇ,™ç¢­šÛ˜ûó
3~c<'ÓÉ-¾
ò·‚1?z\\üyñxD‰Âendstream
-endobj
-552 0 obj<</Type/Page/Parent 513 0 R/Contents 553 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-553 0 obj<</Filter/FlateDecode/Length 1908      >>stream
-x
}X]OÜ8}çW\ñD+&00t߶´h‘º­vVBBNâL¼$v;óï÷Üë$3lUª’Äö½÷œs?ܟGS:ǟ)-g4¿¤¬>:OÎébþ)YÐâj‰ßgøÛj*Ž>¯ŽÎn>ÑìœV¶\.¯h•–ŸãMvr]ª&è–.ºSuªèÖâѪÊXý+;§Ë¸s2_$3ì=¹H¦	a_«2Þù‡²yeì:®_ÐtÚ¯Ÿ-“K^¿*'¯³`œ¥\û¬5©ö”'x¨ìO!c£#§¤<™º©t­áR>~ 9BÃjR©{Ölõœ&³KD[·–B©©Q>ôñ”*§gÝnIå“ÒeÿcÑg* 
-eëºuéº ge.×´Á²]­ñ	®«*âËÓyDeSš¬¤ÌYcwÕ“u•jɇøx
-î¬h]M_~Üaa®µÖ>¡;ܺ‘
-¥Ã0¸
ÖáŸ-¹‚‚®g2Eô`ZícX?ò92wðµ7D®¥Îš—ñƲŠ#v¤Èšuj³°%AGOZWd®G&”Ö÷͔±¼†Á(0®µÕ­ª€×IÔÊ'Úזðw‘Ì" Vo¨è¬ˆ¦—â»Ò+Xé·>½kŸ‘yÒ@ÑøßØÒcThþ?Ž”ë
èÒç؏£ãá»øâ5ñ—º«‚™¤Û ‡¯‘*þ¬YvŒ=Ä|P®caº•EbaXzL®‘¼À	¾Nè§t&H£_¤‰7c$°ÆfE¢¨êæF^gU1ÞKð”R£ìö`0Ó:#r­fÖË!¿W
-WUnÃ*„b(Ýè·0ײϺ٠Ù÷ûoß<é—L7Ø'$Zm¬âÈ9²Éô<™_-PžÂª6¾óKM5-'©á“ëۑ3"7º89%ïz^ؼʆþgÀ¸u½PDz$s<›‘lèÃ"“!]¤	³¬væYUx;<ÒＶ{6 …7d¦oÉܔصuu
 åaWsÿ F;¡'ئh¬²ka%èZ³²U¿å
ºÙ¯ÑUŒ(âÌ\Û¢bW[*]…RÛ'ŽTü¾DÁaàYÆAp亹!/#À
-Bóhr2»ØU˨_—÷Sº_ÝL®X̜'¨û¨íµƒ„ö2Nyƒwì
Y/Y·°ªï¯ïf𻃻¬½7¬Š¶‚›8E>ôRµJûŽ´éUÂýòUiHÁé\ºàHZÌG
gÖȔ•ššvEÙé1‚€!‘@è„,¥i0°`öå ½H	{{=æUüœHµ´
-†œýë”àó#=øöª×âKÔÛà: ë
B„3‡V›Î—c1îû•¬´ìÝE/]NIt(8‰€<œìH}øR¬M‚ù^¬+¸ÿÚ²—çiÐܹÅÞÎÈF!>æ;â.f‘K&lÕ\šbÐ,¹Cc#%`²³¹n¹– `K6E·E­²µƒÛ¹—Š2ًf‡TPèNŠRÎòÆ
–AMڕwœEì&L¶z?îþüŒFŸ=aZf„QnÜî…&ï]»’¢Y©³'9¬¨&’Âh˜”ò
‡Ó.8h‹«J@®c½Fɞô±óÂ…’½gW1µ2Dĵ1«Å6֊¬t¨•„$Â;”/@ŒÇag)7ð!<+9`Øõ„þqÝA¬5Æ$Ì­Ž#‹\ό繳ã.a\ýýxÿýöúǗ¯œywxüýîúöVÎÅ8vƒ—ìPAGÎϘáK•Iñ錏ƒX›Vqí³)W(âQôáÛgù]hcLÅQÑÙ¡ìxzâÏ&q<nkƏÂ@‹0»Æ<jûì‡Ȁ—‹×֔όI$z—ùÇ/ö‡÷Hty¿“+çDx²(íâ¾¥=¦÷Æ¿>#À›œÇ§÷ŒŠ4{¨„"Œ›]0hۉP€ŸµE7
u{æí
\É2ûœdћ×á½æÎChU²†ð<æ…s{ð~Æ
-HÇc{8yøÀÞÈh¶À¤Êa±«/Ӌ«x	Y!YS³Æpϙ*ºs¸ŒÕZ"<¤¤>wꇞ9Q
£™Üã@Ê,2ðCsÚÕÎwP‰½™‘æ¼ÔÊza.S–Û¡òjéAºAl¡ªÂÃã2)³-	ý(z„ä u`O`]HU)Õs?4ÈågŒƒ³šUÆe3Eá"µæ’‹×¢žrÖçóüz8ñZc$\W[Bî}‡6•ŠÙÙžÅS².åœX0ô¾zä&T³²}¬™¾„n)$üÈÍÐcԊjó¦pK€ÊÔBßð`Œ	´kd–ƸUò°»Á5´öèG@Ûo2EÉ<RàJ:v§¡áÖÍQòd)íŠkCÕìº-øh't-j_ßz‘Ä6\«µÉèÊc)_\#!wUsŖ×ÎÆëÖ8Ž]F›g7WýU]3Ñóõ/ÿ?`±\$ËË«8×M/Ø÷¯«£¿Žþ)ÄrÉendstream
-endobj
-554 0 obj<</Type/Page/Parent 513 0 R/Contents 555 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-555 0 obj<</Filter/FlateDecode/Length 662       >>stream
-x
µUMsÚ0½ó+vr)™‰Ë6þ8’¦i;ÓL?p{â"ì5V2•dþ}WÐ	qHHé0ÆöH»ûÞÛ'ïïŸ~’ŠyÏg>ÄÏ҄žº4Bµ^ð9½v,¢€Å]Qu§Š‚
K»"ÂÁAöDD&,êJœ¬.ün¸qðíEÞ;¿Š€sÈ+'Rœ&—@Bù>äE_Ìf°¬T­*¬l”
+~!´Jނ±Zª©apÙ¨7ŠF-Q[¸©QÁBC‹`°5ÎOóŸ=ŠPβŸ0pïçWpªVÀ#âI«2¸…nH“•ÅF—¨Y½ºëSXBD)$¯¥
ƒw¡DSh9ABZ#Ì׉J¬¤Âr'!ƒ¼F³Ý$È
-­¡]xkQ¹ÄÙÊE¸<#1Ÿ€Êòt¤²ES"Û2!ðñóBþ—gðöÇðÓ¸?i«³EcƧ\*¶ÕN\*僰ÐT•A7ÒÖN‹¶ªP»BQŒœ:^E-´(,©´OÀàËÁx–bÖ"¡Ù¥…0ö®Á«…sÄŠT§Ï
¡(sFUžT‡d8@²Ü2ýï—#"¯—ÃõjËÚÔ
YÜç1L¤ŸÂLZ;CU)©QQžk+ƒávïŽÙHòÉàÄvvoæhåœl®‘LA Þ䊓¿å'û™|<ó0pŒ_Éw¯[ãu{F‡Ÿ­]]6ž<Rwö¢¥¯š“ôhÿŸ¢))úÀñ/;vGv¹sêOhF€õ@Àÿ"åfv=‚šn¦%ORgÄ46é>^_áij4ÔÞ·²Dgï~§—ø™ÛºÄEIĒ8]ÏJ»ïòÞ×ÞÑ.’ëendstream
-endobj
-556 0 obj<</Type/Page/Parent 513 0 R/Contents 557 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 6 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-557 0 obj<</Filter/FlateDecode/Length 968       >>stream
-x
µVÛr›H}×WtåIvƒä}’“Í®«âÄkió¤ªÔƒ4»0h‡!Žÿ>g°îÎuå’Ó}út÷éùoà“‡?Ÿâ¥åÀs=ŠÂÈQ8Žq=ÂWqÊíÂ%.Œ&nxl!Œ}8b*˜œØ„'vøÿÐÇõ|ðò̈́üæ9‰Æ¸ÈAxÍÓ᥸¾çÒlöaúv¶&M~±®ê‹O¬XœÍÿÁæ|¿ÝìŒblÖ\פWœêU¥4-†~D‰Ð‹3ªÅRòŒ
-¡uÁ.3Á$	©ù’+bšª<Çf‚zz%$Á_Ž5ü#]Y£ðÜp¯ۺß`wXÐ>@ßüèc02˜¿êò'°Ž\º7?ñ{’[Åu£dKoËDfÀu#;rHOÄò;©þ
-³
Ðfڎæ_Ž14ŒîPúm%û¿qjÊw·t=rü2‚UEŽÆÀ;¬¦Ïþ|?ñ•4\šwòð3!þp"³z%0zâaߓHÉÛé;ºe’™vŸ±2a4½»9¢"ndX™¯DM5Oµ¨$e¼N•Hx[úy#íãš$oy+Ù¿œØŽ‡û»W”²¢pÉZ2¯TɬµË(á\ß[y¨̈́Q¨ä‘øgV
-)äÒ¶W‹6­28‘H:n;#ò…²*mJ.µõâҍ6ØÉJÃុ´BÓf6óØ#/1*
-Á’‚wÉ÷hÒkkG¤‰è#[‹ÅÂIk•J}a4”²Íe¹õ¸ìž÷¾= KÝ']1Eçk¦XyAíMÆ4ë¯ÏÕÎÒ¹2‹‹³ß“¶IYŸBú2ž[B!åi!¥›ZZš™„øÏn¯I+&kÖ¦`D&/+
¶×â¹>]èüAÏ5Wõ!,;‘æH—Ã¾Dó}–WEQ=ÔWff·3ŠÚRµä]Ù˦LP«ÐØäQ1.¶ì$|‰¸j•±á`bhfC@2÷¸}êp›„“6
©(ãÖ0ö­µùm͕ì³(›’ž‡ú°éª/Ƅƒ]3Gx¶ƒÂ~àiø3žlßä*°ïÃ2z…”¯+sPý¤ßbe
ЇLC÷­(GŒY„§ÌD‡fÚºß3´ØÆú Pª˜6 -þ}Ïp[0¦8q[Þ¶¤ð-íÙô5JeS£¡9:¡Jºg¡šJt„z|*µ~xÄ-ø—oÆÝAÌ¿Üh2¡(îz}6½½žÒkþ‰Õ@菲cü;~<¶ï:±¡éŽNϝ÷Â8tãhÜzlŒü>ü5øIMOendstream
-endobj
-558 0 obj<</Type/Page/Parent 513 0 R/Contents 559 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-559 0 obj<</Filter/FlateDecode/Length 1561      >>stream
-x
•W]oÛF|÷¯Xø¥6`1’,Krޔ¶)$AZ-Z0ŽäѺ„¼Sy¤Uå×wö>(ŠVŒJºÝٙÙåßgã߄SºžSV“1Í&ÓdJ³åÏSüՒ
-÷ÃÍøå÷ïÖgoÞÏh2¡uÁg̗Zç„sÆcZgu.ñ–mÒ¬©1½»Ê6´SeI©$+þÙ­ä‡f#qyÓÖZæÄç$´ÆW™(Kd
-÷ô(¶êáâáòrýålL£É5b\çUkÊ%–šL4g)K•¬L½Oxéǵ˄ÜWÓ]ß&sޏ‹¬$Ü9Š­¨E%¾%òÞ´dÚ§ØJ_‘Òn©©sö©šÄv+±Yg2.è΢±}}ËW¸ÑtžÌø敦V[õÄIO攪;ù„SWŸïH·U*ë„þDvcÚ2÷¸q~Ï¢l%àl6tÿûêã’Ð冴iè«6»
L»ô)"Y²uIçÒfµJeþ¬‰ðõ#^Ýÿxw÷Ù¦Vú	¸»Ýü8@/T•)Z5Êh
-Åù?¬>ÑG¡r웬­¤nïôt(TRw¨^…
-
¾ÛÊúÈi”%²dªJ5HL§/žRaq»Ý=¸’Oyo€'F\	݊òÊÁ̘­‡@DÖà×r(-®é0%Ÿ0ü^ÅÔ]€ð[
-zVvŒ„˜¢pºË ÇüâúpSdÿJs\~{ÚÆìºR±ô®^/c5@ð¨hØ^8Jç÷®:ç$4cï¼
OJge›Göœ·ä³,Ï{Av9Åf‡´"¦¯Èȃõ¤žeàˆúæԙî|_á
-¦mQ€8;Ö쩅@@ÞZfûx'9ê9Nú©Åž9®‘Mès-m[‰Lp~ô‹jñel«¼Îtê%Ý- ˎ9»êŒ8Ü ù/ܲmÚ±*š]wûTtW€ët¼¤)÷W.µaœÞX}“µ¡Rê§fó¢síh`Ŕ™Ü•(+ԟd$ʝØ[×
üÿ±x<›owpOCÍJØ0d"á7ˆ\zQøBù‚ß9ƒu½	×òoÞßÒF] qŽ®'Þ³o’Yÿ暕·a¿6vF¬rcä¾Ò¡Øc4=\ø™3ËÒ=ÕN’—±¯ •t¥×SРþOñÌÏTiOþ¾µý`ClïÓÄ
-‘sr}î{Ǝã~íõ×Ó-Cä_УÙ̃{5²,}L¢2-¾>à0;ØèGÔ¼Â|D‘ü‘Ñ݇A¤ä	ꉑÓ;a›œ£1˜C²'ØFÔM4ˆã N²'g#¼cô
-†!nAïAÝÑêÙ	ašÂ&7ÄݦMF‚•Em*^‹né8Á‰öŒ™”ì\%kk˜G]°[`”81X·ë䝢טn¦Éҍ'à'ؤø“,%³+Rgƒ=?‰˜a(qº¥åyÏZ•–l‚ó”ÔÄ~”5˜¿Tny¸ØÛvwô}¡åYÊŒ0×¹s
¿Ý^áù!l€uh”ýáC¹–j±“³Í—M2å2ÈY8ò[݀ÁñÀQ3)A‡#ñAXÏÂó|=÷Ý÷ˆ«ñÃ幫›L"Ùf¬„ÐóƒÉP…¶ÏAŸ9>eʧIJÄÁ3Æ«PéÚà¹ó…B“ÄÔ4Hl ™X–¾ÇÒ·;+‰ù9màÂ(Èàù‰Í…rh<h¿N!™ñlŽ0¸;•…Á0„ŧð8ʑv”=^z pBŸŒ{™Q¹Z1¹×
`èû¹W˜n *Ô?ÙFԏۦæi5Ýõ¸Lh®—ˉyilÛ‚9™ ¤S÷ëýpá÷jÝg¨;îÝ Nc7w¡}ϵPõ0
ò
-Fg6T͓`ñ†ׅ6äÓë6A
-Róg/»üÚd‡—ân¦è7ï—áÝs²X&óÛ[šÏœMݯ>¾[ÑO<9š-¿·ýÒªÜÏlqåh1¾eGûNóž-fÉb¾D›ÇšÉ’ƒøy}öëÙ¿U^æjendstream
-endobj
-560 0 obj<</Type/Page/Parent 513 0 R/Contents 561 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-561 0 obj<</Filter/FlateDecode/Length 550       >>stream
-x
•TMoÛ0½ûWð˜¬ÚŽã]‚$]‡Y¡véE¶éXƒ#e’ܬýõ£œ ­klXaĐò½Gò1¿¼zBH#˜'Pí½€g1‹èÒ9¢Fh¼uá]ßæ¦P4”’d!5Px@QÍlÁ`£j„ªåšW5X^vxUü¤ÄBŠw‰~”²„RgԖ	5·ŒÕ}e{8ÑÕh*-J¬¡|†=ri@5°zØÜݽ¸X!w*%éø–Ø0(Z48@Ùv@Äᜪ"âwÁŸœB*ޏ»ßû|@⶝°¶Ce-¸„^±“¤KH‹;Ô.קҨõ,dàît½pÝV¥zi~ӗoê<¶¢j¡Q]§Ž#˜h
-sC0êõ‡%ͧXkÂ*{œ…mA¬P’wgøû@S0T"7`5kðÐz¨ÅNXóx5’O)^FrUÓ´`}{ÿ}»òÆ^Hn‰ã4Ëùè}»¿àI%ýô†ç¬4ÂJ¦X%Ð_%
î;wâ4¨7 ’h8(çÚ
EëCÆvž¸Ê¾iP/—Ë‘ÐlŠ±…åŽD;âæ5¬Àÿ`åS¬d¿/I¹ð‚%d£ôž»é¢A»u½KØâìêà„w}›—8\ä,ÌsˆÂa_V_×+¸Á'ìÔ
µ/½¨‡¥óÃ4c	Eúi»
ùç¿DœÆ,M²3kîúó¹ð¾yd`endstream
-endobj
-562 0 obj<</Type/Page/Parent 513 0 R/Contents 563 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 6 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-563 0 obj<</Filter/FlateDecode/Length 1256      >>stream
-x
VËnã6Ýç+.Ѕm RüªL1‹™ AÈ¢E
Ì¢ÚÐ2m³‘HH%ñ|}Ͻ”,?’™&ÈÃyçžsÈoW#â{Dó1Mf”—WÃtH“»i:¦éíÿñSiZˋñdxùâóâêæáŽÆCZ¬k6¿¥ÅŠgˆ'yÿ~«vAW4Ki±ÕäËeš;»¦µ)ô`ñ¯ìÍãÞd‰«þ,¥ô¨_M®
-údU±÷ÆÇÕSšÕãy:ã՟•ç…ÅþšRpd2žv•Ëµ÷zEΒ¢ÂXMË}ó[¼T„æ7èêŠÂ~§=¹µ¬ñ¦‚¼¬tî6Ö|G(@.eHÉhË-šJWúÍfýªTéÓ<|àÅ7ÏÒ©”[(ûÔ¤Hèey$AkìÅ{zٚ ýNå:åí	zš«>`áÏøxH~ïÊRÛpp©7ÆJ¼¶¤ñu)òº4Iî
-@âøóÎÕvEÞl,ŠîýÖ㧽_zÙà4ïø2ïß:a¶Z­šáõÔös–^!ÛN[òßj{Y©üIÎøÏEªÉeª?LÍ,úI–=9é3ßbGŽ
)r,À‰•^«ºˆ ɘÓlpì4fMÆ¿vƒâkSù@áÅ	¶Ê®
-°@¿æEíͳƨ"#èœ×<Ã|K@ÖU@u•Q…
-Ü
-ÇNFÖ
.èˆU>WÖ"ÙÚUüæ˜B	µè[#ÊøEê¼ÜðÆl7<«¢>Kьè,¥„N#‰ƒ{Ò:T"ÂàD"Œ8K'ÄÉúþÁã’Õ’ž—J€œb
<‚3ŒVæÙ¬£Ê•HŠld¦Òið­v ÞǞpšÍj!²Y%“QÔ$´õÏWD¸¦¯	rΛ‡ãa-vØmÀ0(`Eʬˆô°Ï3÷Àr‘vÖÏ´®mÔQÖ÷ZSÎlÈú“ûl€—à™ÞfÀ®cõ‹ð琊õ”eŠ«mߣ8á+ã´Ô¹ª1'¸Ù`Ö&r“4`†óñð8ª@uL9Ã9lj)*ѱHú"Ø&ÇéL£
ŸºÊnÖòš§ÞQEHK¥Ú·FIÆBC°Ûã¼)}òu[Ÿaïçý@™),wåÚä#ì„9bô8;bX5·v$˜ÖÓ¿œ”²w}™-O<Ög]-U0¥Ô)ˆÅy³«±\U•Q
…º²gÌ?”çãØ+ŒýZ¨‡­ÑzØj+]ºg½ºèáÈeÛaäÌ}†>TʈŽÐDÙM´(·8”Nž‡rR5†Ú©MÜâXo€ñXo`Ýã4¶*N~Cv5úÓÃç”-Ì_/lYjP?€Ú,̼rq˜¦WÁ'X
ó—8—|¡üö=°#ÖYƧ–ÝBȶbžlô{qmZÊIÏŁiÝ!-@†-ð_Ù)œ4Yß:›t¨CˇIw|>köÊà0?9'¹E‡–ärdßô‘×æ`|1Ð0cKÞÄ+çw6WÁY€¢Ü&XÜy]Uíµã½30¥”¦_U	Àåtó0¤»öú6ÞK͗T¥úñ¨•¨*æf–µ“¦|Ï췛¥.éÉ@éSɍñ««6CZ±esÐ÷Jû?eq?¬à¶»µN›;îýO.ÆÓù4Ïnã½o<ä_\ýuõ¤õ¨endstream
-endobj
-564 0 obj<</Type/Page/Parent 513 0 R/Contents 565 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 6 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-565 0 obj<</Filter/FlateDecode/Length 1000      >>stream
-x
µV]oâF}çWÜ7“¼ØPC¶›H¤MV•²Y­–Vª–<önìê±Ãf«þ÷ž;c‹š>”(‰±ïǹçÞsÇvà' qHÈâ¼3ð…CD£É×!~IKû |}ñàzÖys;¢  Ù±¢É˜f	!Î`@³¸{¯KIåZ”ø#Ip´ôI’ÙˆXZê,ÓÛT­ø9mu‘gÊ7¼2o
-i¤*›çZՎ´åVJÕ“PðœããÍþè¨ýPº©²¡K½¡,U²G›¬2öÖRW!C,eÒdp¶i¹ö¨ö42ÖÎÎ>Í»¿KÓ£_¼œb]퐥*
NQ¦Zùó³BH@¸ƒ+ÌÙº²&¯E!âRÆ2’®”.dBZÑ"êÑ&Ã#¤ȗĥ^"Hž#ñi¶–ÏÖ÷\«ìùüEÑ(J¯Tú
1¹T‚*œ¹Aò\"»Ëã³ó›Û
-€–›ØxäþÐ'‹ÿ§}üŸª´x4Îo×ü~ÈÍozŽF·Í•_E¾Éä[ç1 ‹:Q8r‰¨þXd¤€Ž.ióId:oç‚æó¦Ø?á|ìûݛ\º-ñ€üºÜ}؇
£”§I’Iç“:Wº<gD
-4d¯=ÁXTFRZL—iaJ΋R+QÖÌ̞í¦ÚTûœ"ã5$4„ý÷
“Àe
J—ºhfê`þ‡1âÛd§û%›Ó}z¯siNÔk9Ü!b|–Íð*jõ´–"©…Գ͎3mx›, ðGYbcxÞüŒ)Çt˜Ö<Lùå)…mÛuгúäUˆ))Yñ|Í«§™ùf«ª—†*699P\¾´¨ÉiìV¢Xˆ•ü¾~‰Îz´*tC{$Þ먀JNµÃÍ*b™?4uíiù w{I± °_܂²{5òCŸ>?cï~=†5ö[UkÒ°iò…N,!YHm°Ý¦:=NDïØúª©ÿ¿½¼$ú‹ÞÕå\Ñßtóñö¨žÝóÆÙ:6·É
ÐG²…·{
Ok½
-ï‹G÷Ó7„Q;öyÖù8ûK~›ÞýzC÷wÇZ¯…Ic‘eÏ<Þ`+—Bñù)JvÀkC¿9æDËhMPµaÆ¿ÉB¶LŽ®? |´!X#(bãL1ƒPÌVÒ£’[›e~fAox£HºOœ_Û#~Úæ{¹TêÚì’;¤ÈfĐ9n&õkNðÃЏ..(nÈ>O?\Oégù$3½áCý}³S?O¬m<À¡—t_q¤ŽÆ#M\¹aÀanfO±Ý™endstream
-endobj
-566 0 obj<</Type/Page/Parent 513 0 R/Contents 567 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-567 0 obj<</Filter/FlateDecode/Length 527       >>stream
-x
}SÁŽÚ0¼ós[X7	!CAe{Ù]©jº§\Œã€Û`³±CËß÷Ù
í–JU)Øï͛™7¼bDôÄÈÌ3ˆÃ(b²yÆ2¤Ëœ¾z;‰&\,²ý¼¹X—£‡ÇqŒ²ñ Ù2GYƒ€¢¥°R8e4ö’ײƒ²PµÔN5JÖ؞Á5ÌQj¥wØv\ü”ŽŽj8Ù”æn(r{	Ñû¡Š¡ÜËIùcaÏYBcÇRû"jy)ž7ïs,|ÿ…ó=3"|mš3ø#:™%K=N#ïøA	´JKϺV'"^CigÀ‡	ž(Çkñô}èà¾Qu÷o=oaՎÄé0=ÀXéq´7¼=½@¹éÌ!”ÀŸžÁߖphù+ Š=
-ϵ¿<áîªJßU“”¦ƒÒ‡ÇbÒِàfiJû&ÑKXÌPlMïý–	Oô}Áduâ÷;&ë}I؇icat£vhTìâØ*‡^÷Ö;¡œMNaêý~ÈÂVþžâ̅˜R¥5z
-éÃÚ¸½¿S‚Ú¸æíÙª[»ª±\ûÈT“–+”]cºÃ›°F’ÁðÊÛ^ÚÀ 5”Ä'ÅACÚ-…ŽÌ%FtN
*d//¹Žó%ËVdÚü’³oÅóºÀgy’-e·³øÒS6|ÓìZ;Ë£Õ]Mó”åْþ€äg’øæM9ú:úqendstream
-endobj
-568 0 obj<</Type/Page/Parent 513 0 R/Contents 569 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-569 0 obj<</Filter/FlateDecode/Length 1712      >>stream
-x
W]oÛ6}ϯ¸00Ì\%vÒ8¶
kÑ
¶¥[\ôÅ/´DYl$Q#);þ÷;÷Š´]µ†¦@"‘÷ãœs?ôÏŜ®ðoNË]ßRÞ\\eWôæöMvG7wKü¾À§©”sy4zñvuqyÿ-®hUÂÖíòŽVÁΞäÓw•ê‚v´ÌèOÞ><>‘iIÑÇÖ¼Ð'ëêâÕê³X˜/¯¯o²lL—Ù<£‡68[ôy0¶NÞÐ|O.–Ù-Ÿ\UÆ~ùʺ@…ÍûF·B¥ð—ö¹3íÉÛF“-ñXã¸ïñHNä¶-ÅyEO¼%ÓtµæûŠ½~zD;#ÕJ°Wôz~=„XÙ==©f£(·¬íM¨Øz“ѪÒjԁ*]wÔi›´¯,)àY[ûlÚ-!:6ýóë_?¼.
-fœÚ˜Ú„CÆùÂÙâ6»á,í|8‚n)ØÁ´í9n\ó”¤Câ€:…W)¾OȷՀt—¼0ƒçø‹¿e¶Èè£×®Uöÿ
¾Ô:gƒÍmM‚´m}@TÈÓkê£
ö›ë.dô^9¼g¬Ó-Oë©ïóŠpùÝãßï¿
6?þðûǧõ+¸ØijíW–PU×p°BZ­X|''ymÀ+â+B ›.€Î\K–gü®§rÁä}-
wN8:;X˜sæ 4ÎÚ©ÚÐ
“{
-Ì°æ€ÃN»1¯R
-^ç=ˆ=°Œ7Êë:±}[m\vÊû½u…§Œ~éÐƾ°êûº ’=4™ÒÝ×¢”’n}¿ñAµPê'BO™H™x.$ÔJJȶ㸡pFvƒZ¡ÆúF՚R{l‚×u	=²RqeóçAÍÄWR
-z§ë	^Åü®ž¡¢ùj¡KÕ×a”Ÿc±ð	UƒåI 	«êoX”=Äq ÒºŊ¢5pQĊà_Ùà@T2ï¡ÿ‘wq;¤4oƒ4Éi†´
Kžx-²ê8it o‚öc4¾‹#m­k$…-RåŽ¥Û|nâµ÷Ü´¼}79*FH´°¸•Œ’ñ}×q¹¢ òÜ6bdý&ÁI/KÀI›òøÓÁÛ^ðì=ߒ(‚Óˆyè2gAŒü¢Ÿ’ø6’Ë—þ’²¢ôh¶+¨ÇZBî¹éw)îò Ùæ#§…)Kí˜ÄôKð3ˆSíY‹ÉсZ
2‘Ýz°[
Nþd…
$€Ì²ëXÓÜïÏØ7’#q|Ŷì*¦ÃI,T*šÔv»ÅCÄg'rÉ®§kM£ÍÓ'ÓvïYË<FŸ·è_¿J²J•ÎaÀЊþ”WܞÅq$K+Œ&XM/NÓ(å[)LÁK2Ø =
})‹Ä
êÓn‘2Ê7>¢Â1´)
-4z”ãPfííˆÆ=ºSÉ89CŒž¥Ð5%ì³^ÄDÇÅ`a†W`,¶Iɹu“rä<ÙãP0BeôK7Hp…àXíùÎ+HMZ*È£w9USÙÙbˆ4a:æ¬ÊXé;…iÓ¨ÏV¦âÎ15†Ã£h£\ÌëMó}£:ˆ‹ˆM®àWäØ|°îÈ0¶ˍåhc P¦ìÈëin‹²Ð 9îTÃvëWs	I5¯§Ã!†Y@‚€v‹Õ󦏮¨ûï¬1×Ýl_û[Re:õòþ›‹$k°id}ApÅhGI{G”ŠWÒ('ÛþöG
KÈFç
-÷‰ß–ßØýСKD2IÒ8«R,ŠXjfLo©ò0ãõåÀûÃÏ×ØƐ@Ús"槚„˜6XR¶žúŽ7!¬¼NÖØŌÄhf:£Þ –{ª_/¼<µÐÛ%Ûñö&>Y©Ãô–Ê’-Xðç·#Îá
-6ÞQµÂf c‡Ã.hÃÆ
-"3æP<ì
âNµ9KŁkžXòÜkî|c=}KØ°ô×Â=硍Óèõ[ZÎ``Ÿ‚YE„áXR§.$3Ü)¸+ÎY>P•X)O¯àk”þ(÷
Ýãbã´Â†îã÷‚ŒbŽi 6í`Ò¸Øy,àÆ`±BŒÃK{¹î‰–ÊÔÒ4I>ôeÉjÕ¤À6…}ËvòyTT÷méB[§OµyÆ&Ѩg=`ç‚Q€tä]–g$=g¶Un.ïïNŸj×WÃÓÿû¼YÞdËÛ;|Oâ»gqÍîÞ¯.þºøuªìÀendstream
-endobj
-570 0 obj<</Type/Page/Parent 513 0 R/Contents 571 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-571 0 obj<</Filter/FlateDecode/Length 1643      >>stream
-x
}WÛnÛ8}ÏWò²i‘(¶ãµ“Ç^ÒE€&éÖîòBI”Å–"U’²ë¿ïRr¼Ú`8H$r.gΜÿ<™Ò?SZÎèjAEs2É&´X\á÷üz‰ß3|œ¤*¾˜Ïn²ùK/n&ÙlüüíúäòܦSZWð±¸^Òº$؟Lh]œ­k	»/·Ò	M­õ^å¬î‚²ÆS°jå©u/šsR¦Ð]©Ì†:/¤F´-œ“0%UÖüVoe¡*U¼Z?™ÐÅô
-®Ë³Ã5œ¤V¸ ŠNG¾F(>ãӗnhŠ`9ꋫ92ƽe6Ïè“ð~g]éÓ±çä.fËlÁÇî…ÙÓêþ-ZI<um+]!¼„³þ2åÎ9o3	µl2º£Zl%Kª”‚võ©Ë=•	0
ˆù€ôô~”Õ×ê+\
·úÙY£÷¤ªø 
l¤®3&!pƒ-¬¦“>pPz÷øùöÓÇ/«s”cäÍæ[e;ÏVL™?}ï|ˆJ!s·'gQE#9b¥QÎ\£ff€;[$p¿õë&E„yÔVf´.U,:0šú%ËtêØßV†܃3cW+Ñä÷ø¶TØVÒN…a–|Oÿ…Î3<Œäéà4¨ªOɶLOÔH5l!OÉ0–íÖrŒYU¡zå!Ëä²kÅA†DWœ0]“ý­RvŠ±‘þœÀW÷RT©¨CX#Ç)H¡µÝ	V)°s+´BÅ8™­è SoDQ£rôtö­*pyŽúªÌìe=½zXZˌÛ
6i
-·O˜52Զ䖜ÎQ«dô`ƒÄE…os•
Â`d”Ö‘Iû^Îz[22 Cpé´e”Á:Ì×Ç|<mµ`ªÈ_äÏN
P÷4£5S¡‘‚%ñŒ|GÖÓën?{Mªá„…AÐÄ÷èwÈ!‘Â7y
ò¤ o…5
n{v)Ã|sώ¼¢9KÁòØgm`šC²O	­(º¤ŠÞ>¼ûüíÓúîñ!H¯aÝ)%ÜëÿÕº?3úhF‘ƒ8–ñƒÒ­ Å ml§Y6ƒLÄ?HL8ʨ“9žvRëb/‹H>θ`¢,ǼZ#¯á23ѓØ"üˆDgJtŠ ÷«K°³dŠK³UΆ!jNÓ¡Gu6ð˜?

:èÏàwGñ@Ï|4…V?dê÷§WTÔÖ&¥°‘²\>”¡ޅ	úéÇrŒÐž…îßل±º‚Pu>7ÇpÔe‚ᥳ[Å	P®Âô ¤hÚF|çі&&+}dci}´å£öåQ"]ÍØ
-Rê ´#KDêXo2Šš<xïyÒ
ÈQÞE|G$MVÎi£¶Ìï8zàfÝ,ƒŠ¡3¨6tåñãíìyZ"10Ø6Þ@Æ^jé±D+Q@F¾™à°†X	j0=Qühά-±8€ԁ' 3•Zµ°XztŽ£Ç'¹Tá¤TâœÀÞálëòˆÁúZU<·GÁy)›XÁƒߐÛ8íÑw)V]`ù€¾z–d,1+
-Û¨P¢¼{,$Ê|B@Çók<túÜÆ,¹œÚ[ȅŒÃ»–sˆu·áõå@ҒJ!ÞÃx¦"*xî6Ì€W8ˆ)õZíµÚÔ
Ë	ùµE ÆAŽUÌX×Äy²±P#À€ÎÄi€>ìí¸…sç+Ur—ƒƒÀ’çC¾6©:==¢Ó1öKÊ*Tw¬XqÀT	ëíÏ¡{ªœmŠ¿ÜõZ2,q¼.üPZGN$L@m,FX?ýÞ”vŒ1RGõ õ\±ÿ4$v
-%°ÆFWä>‚IÓ1:èƒE*”þŽÅEôh»}Ñ(GmÒªù£‘¹Ý¯‚ h¨ª´ÌÁ…Ù[¨ˆÔ܊Nq#0Sb²h˜ØÔèý˜o<Þ°‡‡~3
-
-ø°«>èCèÁ_lri†ò6	PÌü6®%\Ë^X÷°û¨Š´Ãe[Ê{ÌÜK°¦ïEçdŒK½>˜N+Kœ½¢^~¸î¿·L—×Ùâ憓k^ïWoîß¾¡÷¼bmtžþê°­s<Ãɋåäæå/óå<[.®ñ­–fs¾u»>ùûä7BP…endstream
-endobj
-572 0 obj<</Type/Page/Parent 513 0 R/Contents 573 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-573 0 obj<</Filter/FlateDecode/Length 1775      >>stream
-x
}W]O;}çWŒòR*AJ MàåJ|^U*ЖTèJ•®œ]oÖe×ÞÚ^Bþý=3ބ°ÀUÕ*õڞ™3gΌÿìŒèF4=¤£	eõÎÁð€>Mñïø˜ÿ=Ä_¯©ビ·?ŒÆo|8›í|º:¡Ñ”fŒLŽG4Ë	h–íN‡“!]h»¢k—ëðqöÛÇ4Â.Þ¾ˆ
8°{_jKŠî®Ï(«Œ¶‘\£mÀRa*M&’
-
-ç±Ô(MÖVÊÓ ç»kÜ= èh®©©T¦sr–b‰pzH³R-»ÄØ
Ùî¯Ý‹Ë›þ½¹½¹Ü#ùùãòô¢ûyÿãËl½|úõk·zu~FÊæi÷Åíݯ™bEËREqˀʢq$”®­rvPU•[ÂÃù
-׬œÕ¤+x·,Eotà8Z,¬Ý'åwP5Mx¾Ͼ’	]Ì=Ë[ì	púIÕM¥÷ø6€
ÜTŒºnp½¸ŸM2Î^«ÜØÅÚóB™jؙ8œnjÞOkž¨T¬#ý§5ªâÔYÇ1vG†-Ö¼K8z§ê¹âèi7<U.{,š«ð2qŒEfí^l]’
s&hðAE®Ê×Yt~EB•P*Kk]óÒÆÕ9†lÀ¦Xºœñ̪¶œž¾Ý©lkxßx—é悐ÔëàZeA¸½oš<ª«n҅fù,ÇÖ[¡2è’ëBµU”dÂUp$¬2ˆC …¶iœ(ÉÓvYîSƦÃ)òâU“;àóóËÅû%y*ՈT$“2eÉ·––H Ô^UԚ<¬+‰L¹ÞH©)áe*m$Ýð³Hp<.]¨_“b"7ÃâðAî!T]HN¡¸HZf!6Á'²ZÃ%ð9à–¬Lò… 
-ïe/»Ü
éÖö0%Æ×!ÿvC‹@î»ó[Ô¸˜CX 75 Ì“²`©Ö
-.9¢ãÌt·°ÍNаA‰gù…‹ªol‚Ö
Ô~Ý8Ð[î_¹VR¡ªàh¡“2â:¡8;€;!¨´vRd(åæé[…_ȓNòruú]vå:¢ºÃÿÑ懙\¶­çڿϚŠzÍʍd?"Ìñ=á „ID	¢s¥Y”4hmãÍ£©à8Bw¦‰¿Fh'È
—HG!؇O ×C`iðÞ}=ᢶ€ˆ›È!R&Jf÷½CŽ™vPe?¤^ÄJ#ôfÄz¦+ƒ2´,ˆõ…ïrÁÑ[âúy½v!Ò·óNùž›ß6ûî‹û¤1÷ÆÞÌBîØ¥ÂqÁՈcè̱àF]­8Lô<eú$Gã4	vL£bâÜ8ðšKvQ´y“"aN î=Z

õzИ­b­ð®dXøÒ
Wœ™ÁµNB”J§FÃC>»znP—ðIJŸ½Âå5°, æK4Lv*ꬴÆ	¸
-¥‘òc±4Šõ§o÷0TÛyé8°U¸0ŠÂXS4¥=¬^ANÃóšœRl§²XMmLŸ3Ä»¡Sq…BÍ:¡Ûdˆ{aˆ*¶ArY
£À‡G®ô•!EÆtÙ#på䳔‹°æhˆÿTUÏ5¨Qãøœ{Žðµ‰
¥‘Tîó5
^FáOêy	Ý%
-¨ڎ&	èžá¥ó˜åæ:.5(P«êÌs71ôLšVԟd”5–÷hÞrgë´ÖÄ/•Xd“·é4*-±2NtvŠcBþnïàKk»ÊÕàZŸÔ7duHÅÕ_
-.ž^²‡——fÝ­A	ÆeiÐZ`nËáD¹¤$À™µÀ•0&tyÑ̗ª÷ÐÍHûJÐ]o+¸à)Ó<u±—1ÛÞÎ\/k|þùáÀ»è2Wѹ¨Í“‰«tàÁä|aÍ'T¹;[áU¬ùÂâ·þ†Ø9¦Í`£Á™|ÁÓ%­•™ZU°KL9•çÒQ{Q+º6™wÁ¢à˜™Qid’
©M'
ÆÖøº6 \æê‡v¼ðºã
-ÏG=“›}€x Ÿ@7?N`ƒoÊT£æ®sõv§×ã4+æf˜MH0cjð0;”ƒ=˜Çhı¤KµBÓ+@w^¬dÅ Ä!Ë þ|ñkŸÓäú`tbjà‰F£‹<‰€à•µà'ë-fŽ$™àÜÚ)Ôø1&¯ˆZ=ÈdQ£\h:Ä^ìßmçѧ«ãî8š'''4™NÓ{ìîôúìFpƒýô7FÍ8í¯÷îONøññÆÓr<§“c<,ñýð3»œí|ßùÝ^èúendstream
-endobj
-574 0 obj<</Type/Page/Parent 513 0 R/Contents 575 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F8 10 0 R>>/XObject<<>>>>>>endobj
-575 0 obj<</Filter/FlateDecode/Length 1041      >>stream
-x
mUÁnã6½û+¾4
lÅvÛ9&»I`½íÂÚC.”4ŠØH¤JR6¼_ß7”ìÍj‹ ‰M9oÞ¼yüw4§~æ´^Ð튲z4Kf´œ/’-7k|^à×1£ÇýèæyIó9íYmÖ´Ï	á³í³«ªSE¡T|[ì<ÎÖXўgӊë	ÙP²#Ïî 
¾ÍJRžþÒæëžrk~“ÃMc] FĉÊi´5d‹~)SUu½ÿg4£éü0÷ù•29é@%®RUm} Œ]PÚT'J™
)*Yå*+Qˆu´ÝQŽû+ÛŠ`/IŽêRæ’o·}$Ɇ)K9æ=(])T–ô‹U²@{TÉr€TjÛ@«;ÛP%YÇ$ycUž´ÁåS¤`3[ÑëH3ož*ý·À“	DG§¿^'´³5å.óŒ[³ªÍ™ÊÖäŽs/Õø6­É„M¸+8…‘¶l
-ÄͳŸ#'ŠÏÖÿé´	ßòeö+‡{«ŸL[¼‡ª’¬À
(Ôᥣ
-‹M‡ rš)CY©ÌGŽê$ÿOt´î=¡­2ø.‡sû
õ—r‹¤hµAgëN+‘f?ÆUhۇë}pmZÇ}G
s.íOǺá¼F!÷2AU”¢…‹_“Kã>¶õÂnB/!´Èpƽ¥B¹×ëžéfׁŸZ“ÐÓ
’ÁþÃH(ÌÝP{þ¬uŽM@æK%m#µFиü˳;_Œe6£ì&t,5æã*1Ö0¶ƒ
Qz’!½¿pÄá½MîúÒfïÏ#ß©96£3Õ¨TW:hF
-ÍUÞ§õ
gþü½ÅLsù;Hhø8- ™
-¸~ˆI&®"õÂ?|B{qž’«&Žx-2’ÂtÝÀŠÀÍÅWþo
käÅ|hvCº÷qԑIUè¯:[u(c>q‘X\֍<†9@ßüÑ Õ²;‰"|ýbjí»DA1ÑH`tښDS(`B±ÄÌJýµ
Š	Ê\á[ö˜bV˜
-IagèZ½iaaØt欷EÀ,dt  Uó°áRJ8‡>½<ï ïO¶®aÔ/&0&)гÆ\îN>0!"-Õ
¢jÓJûÍC#;f
-}át¿Ä9Qø ft–†÷2¶OÏVn³VzêÏ4ööëƒÆüÂû}dí]Ü´`Í —J¯À
-xdWpN¸·¼(£8”ÐÈl¨ŽƒJ¦HJÅÄ'	±ìH.BTÑÍó¦NçëM²º¿§Åf%ÏÇîaûø@Ÿ<Q¿·è·à™ž#§ëÙ½„®“U‚H´|ksŽ˜—ëe²^mðFc±’cOûѷѤќÕendstream
-endobj
-576 0 obj<</Type/Page/Parent 513 0 R/Contents 577 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 6 0 R/F5 7 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-577 0 obj<</Filter/FlateDecode/Length 1533      >>stream
-x
WkoÛ6ýž_qç8®íºNZ`ÖuM·xø%Q6‰ÔH*ŽÿýÎ%)?”ÖHä}sϽúçbJüÒõŒ^/(¯/>¬.^}zK³	­J¼Y\ßЪ Éx2Á“|øëV4^ZºÓʊ\é
9Qg‚ÜÞyYS.ªÊ½\}‡‘9M§ÑÈÕìf<ƒ™áj«•ª’TH—[•IG[³#o¨0tf„<ÌK2šî‚}Ù{O¦õ´Û
-OÊ;\âvÖè
âaãø§§ÒXbBWÓ×ѵßJ*…ÒžLI[)¬Q[ª¤½iIXIVŠ‚íy6„óúð¦±&Yµç°i…—ãd~¶Ï9³_rß"õ}‹#Ž2QðöÌÿEf$ÕâI+OδºÑ÷Öyä¡/=ÉÇFæ>œE–
‚Cҙ¤i÷ÔXéýžÞ]­_ö\ßޏ``§ÃéÖ)-Ó­FñÊ`,SŃÐ^làO[­b¡džŠ÷¤QdT(7µ¤òÛ0ý’„Z¯*…È‚
Ü3;ê†Øk£•76X;åG:‹œÌƊšACYPú#ˆòÑ[YK„Âm~h!³v³áwB£Î•3€µjØ
ä¼Ý(ÏX³GÑk	xq	>b•xD:ÖLƒ9žµNö2NI05Ù‡ù(4,;%BÕU	¯À\Óð×çÊ
-d8±$©+!bâþ‘ª,¥•`kˆ é“gñr™>+ݞ`‰¦H&\h Îw×ê)ßµúöŽæ¬éx<Méý·?æäüš|Ñz¨t^µ¡Aœ©„UnýòÜ@˼‹j”¤W»wƸw“ßû³0»vâ•Ê¢5"ZÜ¢µ®PÃØq¯â÷“¦¼f†0ï,i–*Ìn¢–Ø1-AÜ)”Ë,C”I éòW„s-øi,(wtú
a°5£ÁÒÆX…8¸
YY®R”à·dieü…‹Z±çßïÉÅe^‡ëÌí
4…ÙÛ5µV¹DyJ)|kåŽ}A¸Rÿ¤‘q0âTÝ ´8‚(Û'&?q8¯>½Iò=ìÒíëú¢Èþà¨Ì·¡+mu£`ØѱíÆņ`"T3è:ëBÑ"=ÏçÛgõB°QÌî?f# ìXiT¢#ƒ\ž¡ŸÔ­WæN}¢"s±ÙjÙV~LßXt!leÂÌk¤†RjDÔ];4ÿӀGµ‘ž*ƒ€Ž±÷¼§Ìƒn•*8’<,°
´3°’@іå!Ž·2qháœÛbŠ:³hO”Oú%ÛhcûBFÜzØê
-Ã"ls¥?=1§ì8r¾Â¨‰˜!>ž}µðØ
BÚ34z–	dü.^ÐÛn˜Ç)»³ÊËõp:¢
´¾2뵌h^yòçgZD+÷°Ì<ªƒ D¤›Âv˜®L©¶aÙ6
-EºÏZž¸k¾ÄÞPŠ#PØ8,“îÒÊðAm;3CK@©!åZ­Ù·«3ț›<û˜íĞ–ä%¸^$Û¬A&Iee0!/¦¦zOT<‹¿þÊ'ØO\¤œ´èhI¶·ÎCE’%]ô˜ºÛª|Ë´GG:Z~Œç•âñÿ]äېU²
-‰´1.!Öϰડ¯Ëç
9Ðh-†Œ†HnAã^T uHÊ+ÛíMÎc¼ÙŽI¡êI肃¸€²cLcb¡k¨Î5÷ÂåeÔSôœçnÃxd&¾vŠ˜	›P¾*		¿¾Á–ýþE‚~M;Ïÿä‚ë6¯ÿïéÄÍÞ¿˜>ëí‹ñqE\•ƒ´µW±0ߎ#ì0BÂÂïFiý:ÝûÂð{xè-æ^ÞZ^gzuLèÆMœ§a¾UUƒÜ6@è“i•Öú
D&<~:¬!Å:ύ3Pǚw
-º Œ·QɺÉû~Â~ÐóI¾¿benŽ,oÒËþܙ_ÏÇ׋|1Aaf×lð·ÕÅïÿ¥­\Œendstream
-endobj
-578 0 obj<</Type/Page/Parent 513 0 R/Contents 579 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 6 0 R/F8 10 0 R>>/XObject<<>>>>>>endobj
-579 0 obj<</Filter/FlateDecode/Length 815       >>stream
-x
TÑnÛ8|÷W,òä±l«†­8’4)´—61P—Á‘V1/©’T|þûÎRVšú¥…aX¹³³³³ûm4§>sZåôfIe3še3Z,O³‚Å
-Ï9¾ž©¯GÓ«Íç´®²,V´®×g3Z—ã[2í\G
-·UŒªÜp•^Ä
[*•¥ÊÑv£"?³'Ir–pJ¥Ñl#Uz[ª.hûH­w†›@ÊöH[mÌñú¿ÑŒ&ó7YŽüãRµ±“ŒÆ$¨°‘¤3&ô€¡y¨¨QO²}l¾Ì{çhã¶BKxkÙ·ž…£äЙþ¤÷lÙmG×XùrƒsïºGùer]l»Hµó¢ë}Ökz²ÀƤځķ¢Š 쫤\³!£+`ñÿªi
Ÿ®‘W58}I¢ë 	`ã†ZöA;›„TTk]ÓÖu¦¸‚ØA⤲\
dUè;Ñ{…îëōsOèdÚyÔl+á`´…–tfè{BÕå“43:È¡O×&*y+¥×mDu¶kØ÷}=ª1n{”¬1ˆ X0Œƒ }UÚìMS¸:læ9ïHÇ
˜H;“òP«ɛ°ÕQ«¨Ÿ9£µ£G<ô¦µ¤+VäêžÇ`dÑ@j–þ¢X¨Ö…µšE¸ZðJ¤s€ÁöŽ¨éf-
ÐxZñóÔv½¡ÖX2@YtÑ£‹[¯#+´ü¼4´•Ù@çZX-ö† ZAqÄ
¯;Õ<¨·CÚÓ~l'ù¢7ÿß­®(/òeñOÒù~|ôBéè„nþ½}÷åöþ˜ˆþÀ´ÑåÙÅÅåݏ?½¸Ž*¶š«ûã!ïKcõKä/·7}ø
-ìßBþ¡
Æ>_J†u?6%‡ŒçwƒڇØÛf¨ûWr{VÕ$É,F·|üwÖì2:‡Á“ºðŠØªaeÃϸ¯6ыzýaSŽái°´¥óžËøzj“…§WÅÞóU‘-OO)ϋý~:ûx~Fï°/
&
óò¾ƒI~2ܝ¬fhl5¾ÀöÀú¢TaB‘#Hûéõ>”ÈÅj‘­–8¢òB^]®GŸGß
ýQçœendstream
-endobj
-580 0 obj<</Type/Page/Parent 513 0 R/Contents 581 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 6 0 R/F6 8 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>/Annots 301 0 R>>endobj
-581 0 obj<</Filter/FlateDecode/Length 1651      >>stream
-x
WmOGþίåK@Âw>l„*B€¢âbWi*KÕÞÝÚÞr·{ÙÝ3øK{ŸÙ;;`Ò´ ^öm^ž™yfüu/¡.¾ö¨? ¬ÜëF]ìlÝ_ï%ÇGQ—Ý~—¸•DƒvUЄïSÿ8‰z|6Eývµ=ëE'8K†'x×+>K†½hH½ÑIt„Ó^··+>}¾ÆéÑ1n5w7r{xÏöô†Gü2¬¶g¸?:Ù:~= >{?݋¯FPFÓ9¼Ohšg±“í_,E奥QDwSú`J¡4ݏ/Þºƒé_áe2l^vúGpxšï¢$¢í­ÉëÌ+£››G”$íÍÞÊqsºTŽr“Õ¥Ôž2£=¤;Rznl)ø)yC•5+•KšMx4öÁùæðQù%f
“œ´+•IwH¼ijO~)IK™„á-Ñ¥NÒoŒ„$~"-Lõ3øº[”aϱf3§¥÷Õ»8†ÏÅÒ8eie¦Œÿ.²"ÎÔÜiŸH"ÿäƒÖ”¦kº­dÔªí
,x]Ö¸ ©2Ω´ì¤“…Ì<	À ^Šœ­Áç…5uE³}øʦ¾Dâ­£éÅ8¾CŽ÷J/Üì>ç;N‹9‡’Ÿ›´Pá]“•©10Þ¯+	è¡®2Z”ò*áÏ_Ùáäêˆ»y]k^MXÿv5W••™žÃ¸¦9⒊쁀óÚԖäS%­’òBa$b‚ȳ‚Cv%¼øœ*ØɌ…@Nלæ¹
-«ŀ6ˆÚdÙn@¦£‚%Ò#¥Ë¬J½¥´’2$¢$…Sð/‡}+Î&kJ„!X„K01)ÎSpk‹Î“Fbv°cНô¥Ñ‘|’}15¼-Š&Oa*áy–ƒÍ}ì
-O¨‰l	„dn)9dˆÇÕlP)Ö;Js™TPHœËéí§ëOw‡T8a«, çìÊ­2šZ¡@Vª’.¢—õɵú¤à¤©:s,“¥‘¬!T®2:ÏË«…¢-@¥½xyã*°Z:vš‘·"“¡pµH¤åãReˀáŽòB=È*
ÂÄåd™VŒ„ÿ0)ÎgBLX`m2\•U!SÁó–	où´0 -["ÙdÛ&¥Øq?³ëʛ…ìÞ±¸Ös¹‡ MIÔøG{•ªûN,Ä
-´„Ô“MJ¢4ªÙèMf
-¹2=mXJFfµU~iéwçj!¨á
-ÉÍœ(SpQ8Aù!c¸bpdÉ¡`Q–»•tŽ@WkFà¥eïZu
-lIUû´^ ¢_#›E(ˆLē‹û›ñt>.¿üé¼w¦t>vONo϶×O?ŸŽÏz£þñ÷ÿ[3ôÑҗÅÎ3ØÝ	Õ±o@ä×ô†Ë•®Ý¡ÐRiM˜‚
-xÿo¯®‘±‹8[¨Nªt\Î]ÜMâê8†ñh(êEÜ폒ïÙûM)¸‰n´ë%§4èåõ­£æ1@÷dæþÖrÛ¾XJõûZ¡Y=ç£-¸¡f©‘‡,†¥U¼i´ÏuÐ]K>m:s®dK%™WÑ0ÛÞ*`Ž6jYæýåõŸ“?Ц
-5¼¦¹fºOÉ<|…üŠ¯0°mNj¶ÙþüËíÇÙlòe2½ÄߋCûLèÑéqÔ
³¨
ÌèÙl,,Z¨¼p¯åÞè¶û @¸	‘äÞSÛêݚÊ$LꁱKvV‡v?Gí24·ÀЃöÆuµ‘½ãËä|•€¨Xқ[%RU Ìß½!‘šU3ÄWÏg¯œ÷RXî%jˆ£»H˜·¡Z<µT{ç6=j)ÀÌçÆ*ž¸xTÐt>¾ÝE㌕È"Œ
Lhôøii؛wÐWB®-ÏlRc´¡îšvžË9â©†± €Ø°ð†Z‘2²pò‘UíRÑ«¾…ä҆J‰ö–bÇ Âc!Hîð8	¬è£Â@†8‚,›ÉÑ(ê¥(Ùt$øT*îJބÔÃG„ΆÛ>Šª‚`4§û›°?]˜¦\;5ð˜ÚႳƒ`x‰‹Y;ßÇØÌ0a¹S?ÿé7Ldtó!ÐÂõØì^‡‘0l¿ÔkÅW'mòvzÇÔéó¨ùñH„ÏÃÁIcQoÄ]N÷~ÝûÊ5³endstream
-endobj
-582 0 obj<</Type/Page/Parent 513 0 R/Contents 583 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 6 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-583 0 obj<</Filter/FlateDecode/Length 1751      >>stream
-x
WMsÛF½ëWtù²r•“àwr²£8å*IV–Lía•Ãh’
df ™ùõy=ÀðKÞ¶T&Mp¦?^¿~ÝüójHü
i–ÑhJyu5H4YÌð:žËk†–i¾G“ï}1šŽÓÅåŸVW>i8¤ÕF¬Oç3Zƒ
­òëՎ‰¿©ÜSÅÊh³ýPðFíum¨ÞЋ²ºnUj«sÊkã¼2ÞQm‰M[±UrÒ¥ïW\%ð£Åõ(%ùŒÉp”fòHüXnÊ=±µ¸œ×“2µŽÅß)úÕëŽ
)z­í3<†h֜×;<­¸Z³•kŠŠºRڈ»ÁÑÛÓµ¯iÍT°Ë­^sA¥òlŸÞ§ôY鲘8`Ù·ÖÀµvg®uY"ßgœAЧ Úú.VíI»õ‰_UZVÅþ,D1Òy)›¦c
e|Äi´H§òHNçvßøzkU³æN©€Ó{»dûÂöQ9‡ÐŠ%{`YU€ò†^q~‡ˆÛ² U–õëe0
ƒ|§Ì–I£¤Mo2¥• ?"M)R!ˆmÙHÅ;dÊÚl Z‘cç„/ϼOé¿_jj<[—ô…WË0ø`?„.TxfnBÄ  jK†}ç÷7(N:?|^аn(É&”Lfé\]¤CüѲnmΡ`Ç~¦ãQ†ãóðŽÃù3à\Y…“´±u%€W5º
Œ}ºäuÎô¨òg´«„¬Öõ?½NÓÁt"^ے>º&rê®™îXoåÉ¿Ð<¨²¥w+º
ì}‚ä]^B¦ƒ•ÏKù]fúH(×7Mý7ÿÆåÿ8eñü	D}ê£,‚§,¥Ÿ, ƒXÿœQž>Á¨¬Uœ6¡\ôªýN`£û·©5[‘òê‹ÄUŒ×y×Ûnï<W?¢%7lÙäÓëåCWMÉGb;¬úÎ"×6¡5
xׁ]<ácmõVtŞÖ
-tþÜ·­É•¡%BuÍe!¹½&%¿p‰:ªrïÄІî—ÿ~ü‰uÝðíNèåzµý[m.©çIP½@,ALèZ\Ã]ýÏ,ýG›¢~u=w-ÔÔÀ@žUÕ	¬‡¤ƒõ±¤“cIQЇڋf‚…KoÛŠ» ¶|Žú,ÒLš%Ü9§FG’Éè¸þ"ŠÉ´¼ÿ$bœÌŽF ¸!}¦wG?ïnN”çRMÃʊ–@žÇÉz1Q¥ÞL l_Ô^<í «lq]tƒµ%ðÉú”~–Ñ…’vE?uM†a2˜ìQ8S#P˹vŒϦ~ń³Î"e"A0âZ9,S-ªuÅo·ô°ºûúË׺Ç|qeíÿ8²38.‹àt™Ç€Ù¼½AFnË<ŽóLˆÁÇ|:í¡å—ÛÐ2ƒ±cÔ¶ÈËÄò‹QO0l»tì0‘×,MSyH‰ÓíEœËd˜L’a6JƓi2›/âÿÓ`‚i%ã	ÕWèÚõÁÏAÖcÄ'KDŒX™½¨I/‰(ïºÝ@/0k´Á –Ò:/¦
âþ‹mMºËÊy+$èctqBC¬4DP<é¾^p01Ä(’<ȼ¨²
óoOnS
»Z•ÒàV+,tƒA†ÁÈUðRÔ!{„Ññf"¢ÏEÅlGð)ÓÎ#E¿ÝÝŧ}º¯ÁC¼w‘hP«DÉfëw
ä“,¿tðœÃ(lw7²Áj \+åe
8ñÕé‰9*·¿®¨iqÏà§ë7Mæ±\¡÷p¢Þ<½7AN
-åÁ	ªêwØâªÑ@-7$@¿ QСª”F&C•î–iùñþ‚wõS
ª×`Oe¬52äeW‚E~ü²ûXdÒ5†l9J¤œa+€H–>%£³lŽ:…ïDëôGY«öÒÑça¸è)^zn»ƒ˜_¸cЧ m‹MŒdˆ¡	*Hæ¡«ٛ•s8˜tªàï‡
-§bwÈêÜKw óN½Hÿ¢•1ŠÂ{0vß
+¡_¨ÏEÐc:•®çR K›Ö?Œ;¡˜„zŸ2çû¼é;>º¿p…¡ç¶Ôé2Žx™T–!‹q±©eŸŽÌÉ1Ñ㰅ŽÜ\8ìî¡4kü*8)u/;HSDðˆz§’½Á0+嶋ÎÓ¯jQ
-©—ʶÀ^µÎlj?Á’'“û°(Ïû߃ÃÉ(.4ÍFéhΠ>}¤ÛnÓIý¥ÅïI*Îæát2,âÆx¾Ygãt6÷?rëçÕÕ¯Wëö¹Ûendstream
-endobj
-584 0 obj<</Type/Page/Parent 513 0 R/Contents 585 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F6 8 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-585 0 obj<</Filter/FlateDecode/Length 537       >>stream
-x
”ooÓ0Æß÷SÜK˜;Áqx×n+L¢c´·(sÜÖ¬ù3ÇAƒOÏ%nYË"wŠ*Uò=?ßÝs¾Ç	…?
-	ƒˆƒ,'!	‹”Ä‹ÿ3üëá ï‰;`!'|ì€2:®à=ü¿+fÙäÝ<C¶Æ¬8¨Í
-ÀœÂ2ù&%?¸®ºR™Üêºjßf?ˆ:QÀ”ì#)Åjyw	ŸT^(öw£œ úOÀ±X”Ⱥ,óª„ßc¬®Àn”­i$4¹|P¶ÆøKÂp׏¥zìTk?œ^„Ý
hDXSø†§àøø€i¬Où9ì,g¦«ÂϘ½Š1•~̥àCg‡’˜p½uÆ¡uΎ;×N]­k'±#뛯òJW¨×½-Žá.ß´ [誢–8•UÅiú!lïè\›ÖÎM¾ñ'NO
'^|Î_Cð¹p[Ûü|±'‡¥’KÕÃ…‡q[/ºÕÍN=y›A}ƒ‰¥ÌksS¨²ñBØȺ63‰õBb?ä[§ýí{ýaŸ¶Fôy#+k:i;£|k$"¸F¾¹¹‚×à‘amõ…CÚG]ôã1¸×¶%Npxýh=Üä67ç°}LOÇP±g4„§)p¬mØ.«éb6…+õKíêF™>b«†µbƒ$LŸ·ä‹}'1I¸ÀŒË*žÇu6ù:ù‡µendstream
-endobj
-586 0 obj<</Type/Page/Parent 513 0 R/Contents 587 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F6 8 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-587 0 obj<</Filter/FlateDecode/Length 701       >>stream
-x
­UÁr›0½û+ö˜t‚ŠÈ-§­q¦5éÅÉd0ˆX#\$Òäﻂ›ì6ÓaìÑj÷½§·«_#
-6>|\I>²‰
Ìe„øøîà¯äÕ〒 oÁ\pL’žTŽÍˆÓ·@é@
Ï}_û<}þ¥eȃ>D) ۆ(9
-‰C\|à:š^^Gí½F[#ÆÕ« ¸,…V' d*’XyZä¿Añ¤©%dÂÁ¦±¤¡oH‹¤Ê¹Ô<5a‰È#úIÃÍnÑ¢à’1lâ{~Rÿ6XÔEþXܵoŽImKÄr‚ZÃÀ#0‹öRh–
æÕþü
’1ÉÕåÝ|:A~i‘ÇHÙ|(]V‰®J~sÜpa=2Og‘ëtO
M÷ª„¬r(2PÕҊ+½*J¡WFÔm¡nrkwû5¦†³”%ʜ–ZòòãÉþÔ»FË`ù¬‘|V”;ìÁ‚iŠV™à%œ½ˆôübŸVòwªP¶w(«QUí)º•ùí!ô(Õ6ϬÐüôŠïâDî´_+þ{ÅK~ÈçŒÀ<úa:G—Ø{­—zZ¶f|C²ŠËÅ-œâ«¬ÖkKó226Ùä3îŠU"D' Aòqx̦ß&U%ER¤¼Í¶âqÊËd«>¶v+q$eǼæò^¯ªnæµÛiq(e?ÁÓîkMWÉ푾Q­v\wd­nΐp°YW
-–U–¡—7…À	ºWÌú†ÅìJÍáìQòçÕtòi_º-Û7 ›Mí°îáÖÜ‹va4ËbO{›º-b: cëàe
-SÏ!,½æ^™Ÿ]žŸÁ„?òu±Á6€¯•H¹afQ?¨c-ßÍÕ\A0o'¼2QžïŸxçš+¬êÑèûèÓW>?endstream
-endobj
-588 0 obj<</Type/Page/Parent 513 0 R/Contents 589 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F6 8 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-589 0 obj<</Filter/FlateDecode/Length 683       >>stream
-x
­VÛrÚ0}ç+ö‘tjÕ·Ú憴¡ ÅN_’NƑ(c,"Ëiøû®°I€“K‡a±òÙݳgw}×rÀƏ¡^tѲ‰
cü(Äß.~‡éÚà{
	^2¸‡N=¢—´¾|ë€ã@2EïABÂ=Û6$´Ý!.ñÆ£îð®ÚÏgzn‰œ	šjΠÌ•ŒC¡•ÈgW''É-"ˆ–1ÛƒQ⹕ٯ͘§åx˜ Ú+dÓ=È]@kûé—ƒæe–Yš«…È×ÑVQn;¡óT¥¯¤‚ِ±öäFUð5‹Ñ N&.R‘fb–¿•¨)ÚeÊ’ZŒë=À·nVšÃÆí_¡ç ç†ùTi“’9ÄÃÌyʸªÓÙTâqMµX¤ðÎz4ÁÚ`aRLÒrÁsϑÒ6A½3ºfµl«c-ê'q׆K`ÜûqÝM’	ŠCÞÜrª!ÕØ7¥æÅ:Ã~p"d®Nùª-r0J@H9ÍÊJ3XüúÆTðŒ5•ÿ÷xÐÿt¸iL™””˜P˜„T+Lh)–Lí§±#«WàÖ¼ä邿ôØÜ0Ñ>ь Û
-ûh¸§¥zŒT‰¥RýǸáïJlktƒ]\pu/(?.8ÀÏñùõÙ¨Ç]XÊLÐÌӜe|?s¤i3‰ª/]»alî Ä'ЯãAßÌE&)JOf)”T—Š6ÇÏRáÄDk½6¢<V÷¯XwãC¯–5Yïuo™I£ÁYҰ¶2ß]‹õH®˜|9ÌõZ9ܓ¡«G¢z¡:¾K‚N‚0 ‘ÙªqwØëBŸßóL.qÉÁ÷R°5_–âûÞµB»c®V;âMÍ
-í‡>	ƒ_
ð†ç™¿N“Ö¯Ö?+CO-endstream
-endobj
-590 0 obj<</Type/Page/Parent 513 0 R/Contents 591 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F6 8 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-591 0 obj<</Filter/FlateDecode/Length 765       >>stream
-x
ÕV]OÛ0}ﯸ“€‰„&
I»=ñ1P¥R´6ã©2ÎMã-µKì4ðïw„Ò"¨˜x@ªH{ÝsÏ=çØî}ǃ.ýyùЁ/:]·a/tCú=ûô*ÒºônðZÁnÿµBºþËÏOãÎÑEžqJÍÃ~qԸۅ˜ï•Áo`2¤¶B®dšnàM…(m
J)¸J´)„œC†,Á˜L^«
-£1Oi0
-ªLðÌ>”éßAü»ÓÇëÑ8Ù2œ™5pŽrn2—P‰K%ò$"5QƄÑ*_aⶠ~HòÈz˜ÏÁ<.i’WBª
-À¶XæxHŒå‚éï4h…yîü‘ª’0/T¹4¼íLÍÅËJCݵZ`eª]Öb:~¿¡0p}·çzÇ.œ__ÝNˆÆl?Q&$Ø7$[ÉMYàìÀrßôÃyšâ×p÷ü¦´($k©ŽÁÙ¤L£º”$ÇêZԃÏö5"L3UœôËNÎ&Ö{z•òY‚mÒÿõ¬Â@(1dH-'9‹ JŠ"v§V6)™#9¶ktÓéɦšî£BFח·ÃñÅ59E
-®° tp®Jiç‚¬—mMør5WlaÍ
-c3l(ý•‚½ÙlxÆ
-Æ
´ÑhïPÌÊå’ìãL7á¢AŸòз”LZo7cÓ¬åX7Kµ¨K£é	Lð¾Dmà,c¹ÝOûšƒ/@$-Rs’OШBZµ6¶äیn®‡ç_m_èf`à®LÉX*A[¨Øeýx8';r¿%íö9ôØ-aßK›ÔßÖ@#¿%“%å•ËB˜Gkº”˜×ÓGoÙ¾`<òåÁÜÀï
-~äÂÙhßN'7ÁßȒþÜÔÿOûL®­c»bÐo//ðÝp0€Ð¯¯ÜéÉÕé	œã
-sEg†ËR$h“ãxQ¿^éD݁½X›[
¦O·W}°QàFaŸ~JЊ^`¿ø#îüìüm‡×endstream
-endobj
-592 0 obj<</Type/Page/Parent 513 0 R/Contents 593 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F6 8 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-593 0 obj<</Filter/FlateDecode/Length 762       >>stream
-x
ÝVQoÚ0~çWÜc»Aš„,„½Líh;¤[I»‡vB®cÀk§¶SÄ¿ß9	ª&¨/Ó4P$ˆÏßÝw÷ÝÙO-lü:Ðs¡ëMZ¶eƒïؖ^ÐÃß.>’Á¼Xðê\¿‹v¯vœ…­“‹>8„stâ=#@¶
!=ê[®ÕµœÀ‚¯×çƒ)ÜQÉ"–jNbAó„Ò$ÉÃ߈å¿`u\ßòíˆ.‰¼~•ë^µŽL:N)ƒ-æ>Hg×ê&ŽÎëA¶¡”6R†”¡T|úÈçjΆ㋉‹¤“ÏL¶Æ¹!!™SKöòf'¢c¡ÙgX-YÊô’«-,cD*à),×SΔnÃZääJƒ&¨ÈÖ æ¸™Uát(‰iÍ"؉ð´·9”Œ2þÌ¢6<0JrÅÂV<Žñ
þŒc•?(ãIn¡€.}TVá3“LåIa­ME
-ÈBHO5>@ÒW®IŽ®Ð”!VÌN'©‰C[՞&ŠôO¯oËZ½)Š²$ ,¤$aªÜ°QÙ¾@†ã0¸kÐÙü@F¢ˆ§‹6̅¯ó°Ö˜ö˜/ÒÄdeÅõ¦£3X21Y„½õž»ÛÉpð¡>þL`¾Œ
-ÄFVی«&Ü¢ÓêqKÖˆ[²Ò°i‡¤¡\{§vú€P*òÕùß6üsq5¹,æQ}åc±Àn¬jƒÝ<¥í›Íð7UäX0ÁÏT7£f.¶£¯
fD@ŒS1§a€j)-g<šð™ÓÀýf<ü6¸®Od$Ì0+æ	ä)§"bU¿7âtéºõ ‘$Áñj)â8¾WSVy8h‚8Àµ-ßËîäJÈDžyöNÜâìwü†¡L$õàj“Ÿð(…ž¢îû€Au›pzå÷ûà÷<+0WŠééèìFq"cxê^æ<*bgcÛéÙ}cZÞ	`º9ô‹#ÆC žà•-ºŸL@çaëGë´Î¾Cendstream
-endobj
-594 0 obj<</Type/Page/Parent 513 0 R/Contents 595 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 6 0 R/F6 8 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-595 0 obj<</Filter/FlateDecode/Length 766       >>stream
-x
­VßoÚ0~篸·µÓHó«I覶”
i…­M·—JÈ$xKlf'íдÿ}g'ÙÊ
-AÝ
-"ßÝçï>ߝùÖsÀÆ·¡^Iѳ-Ž!>ýH?]üH
-™1xN`Û®ëZî߆³¸w4òÁq Î4z…§€;Ø6ÄÉ
‘‰“¦ŸGð(u/dzÁ  	êcTßñ:Nn&ãëøÊ­=ÀþvHEAN
-
-g‰H)¨R2¾øÔJQùܘ˜éWU’’‰ºƒ‡"¸‘åk–k¡®ק—³ñd4…ÛE
-ÈÅBð#ýÌ2`)0ž	}•”•¤·‡›ØÐwƒq"Jz+IUUy¾~å’â‘c‡DҔò’‘\
S ªÕJ(šækȄ4Ž¨Î
-T
-À/–­q‘”Æò'’¥>˜%QüE©‰àöí©Î)ÅmD±’¢`m5ö–ÞùûIlòì8ø$gH³ÖT3–aH…‰àBýÓ²)ÂFu}šŽ‡/kû¶ÚZ	ÆË:ÏÇÒÎ;ªöüêb¸ö1ô-¸@Ý»PoƓØ	vãšj€œÞѼ#ç}(ꞕÉîH^ÑƆnf£œë×Í«ñÆr4a3Vž>oۊt
·Þ	Qœ
»ÅúcǺŽM=ÌÅҙ.õ™ózGÈϚyÛMºò
‘¦“<ގ‡ØD)ªUÛ9ý¢Eó:Š±Å©·Ý>Éö@˜‘CJ]óª¤
-É	Ž-‡Ë)Ì×zdz–„§ø}ì´\ÛëÃٜ¾Ãéåìêb„`͜”4£’ò„šÖhQZÂZ§fBìiŠ§"©
-l5M¯ÊšvÙWÂ]:òªÀ)ÔPL¡&­ÞtÈúžïŠçãì¹Ø¾ùH~Ž2ˆPɨ꠽¯ |Ä|ºx[¾þÛm	KJR*kÊQs9¾kƒ
a ÛoŸ³Sê
#VT*x[áøÕ!}'ŒŒg?´qX´W\·w‘ÑÂ}+"ü™dqïcïß~LIendstream
-endobj
-596 0 obj<</Type/Page/Parent 513 0 R/Contents 597 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F6 8 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-597 0 obj<</Filter/FlateDecode/Length 686       >>stream
-x
ÅVMoÚ@½ó+æVÕ®mÛô%"i9@Ô`z	U´ñ®a‹½Kw×Aù÷$Á-ª*d	Éã÷Þ̼ÙÙ_ü¹zÐ É;Ží@à:¶~âÅ ­^ô¢žm¿¸Ž;Ÿnp]ˆSÄ
-¢b
-ˆã8'Ýéxøupï=ˆ"T,}¤2זûã,þ‰ŸùÍgÈm¹=$iƒ˜b"a0–p
…à‰¤´Q\ÌaÁeJׯÄÖ&rNâûý
® 9Û?:¸=N†ƒV"”~܈î7iW¢½Èö˼û¶gc	.l(™†ãÛ;˜u¥\¤ò#dì™ez@… سÀ²`³³ÙY[»–ÔÈÓá8Žh½¼¼„¡´¬®‘0g|ëéÅ0 Ÿ‹œ	knØ
¢È&£ë¦mÖv×
ŽkCÓی‰9òœƒ÷p¿ß
çûå‚ʤ(‹ñnÍÊBö§"EçÂJrŒPôÿzçÕþGÓÔSÐrפmŽÁ¬Ûž²m;µیÂþR5ȨºŽ9døÀ†éäæþÕñ…Æfr.”®ßÖ±aë±4ì3p´¦,2
-OðœÀ‘°r
ë1Õ|¸
T^®5Ӛ#ö’½×Je—7aãx8ºÙŸ[­ÍðœÕ1;O ñ i
-'¢,y²”§Ã¬ˆÖk©(dDÐ8ý'êzLˆ€dAÄÛrZÁÞ ó5‡Y¯žý,
±cq°U;í0ð4W‘eðOjêDñ•ÙÚ`§«_)™òŒáFÀ“¸}*œ¾¸s)W,1R½‚š%éúžôû„^>pQN®F×W0(—¡\áE¾œVÃh¹aTÅZ¡Óß©01ªHL¡Xµýзà »
-‚õ²7qç[ç7	y*endstream
-endobj
-598 0 obj<</Type/Page/Parent 513 0 R/Contents 599 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F6 8 0 R/F8 10 0 R>>/XObject<<>>>>>>endobj
-599 0 obj<</Filter/FlateDecode/Length 551       >>stream
-x
­–ßoÚ0Çßù+îmÝ$²Pž¦VÙX¤–j%쥚PˆðìÌ?Øøïw&©ÖVÅ
xŠ8üõÝ×çûÝÀÇ_ц!›ÞMÖûø%„ €¬ÄÂ8‚Œ€ïù¾Yq5Ÿ¦_“‡÷ÙOŒµQ¸°½
^­Å†a’ZÈɶg… ”–Œ¯`MsBeÃxÚ©ÿ2O§YÞ¤+Á¡†ë3(˜@+õGHrl88,i®¨„4éã"L¤0õyn6°²åÐñý>M>>ˆáDfC¹¦–¦,ñ\µ`ø)A‹ï9ø¶x®s›©²ÊW.‘Å:—AøáÓbUŠ¡~ѝKQ‡g;!o‹È“½zœˆMÎøÉðSj՜¢Ýˆ¡µ›¢9ò²OòÈw$yä£äg~¨sBì
^î4U”FIþ­snëðɱY—-|èúw!ôšÊ…bD¹h‰™Îoo‘÷Rûï÷€6U³4QN?OÓYöà¸úÖÐ<Ƕ÷Ò:®\ƒ|§0¿UF·f/$«õ×R”¬¢ØPõú‚ØWÏÉå2ü
-üÖ;å*`G;ªOÒäÑ:¾é؎[¸ÆKá’Ôå)G—;ûfs`“û»^¼&"nçˆ Š½p<ƙc?JÌ®ïn®!¡[Z‰šJõKúO‘ýÈÛ©cì
¼¡3-Ma[ÒþiE#/
-cb0bۅŸ³Þ·Þ?áFglendstream
-endobj
-600 0 obj<</Type/Page/Parent 513 0 R/Contents 601 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 6 0 R/F6 8 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-601 0 obj<</Filter/FlateDecode/Length 694       >>stream
-x
­UßS›@~Ï_±Ú)W>´£FÛ<˜h‚}ÑN†Âa®Ê…Ãjÿúî
И¤Ž“aÈp»ßî~ûÝîï
<lâl`\' >8¾‡ÿ-|
-i}à˜
¡«lêïùÁa8øt⥦Ýõ=À¦	a¼“È,âf£ánøMÝÖÔ@[ƒÚÄBëáätŽ—¢Êæ%OʍmöÉTª+`‰Z~ilƒ.®åGãÄ"Â#0û6O&s:?§pµ“K.+JPnÙ»EzÊE„$p‘J(UÁÅuyµÛOÚÃrè±TlJÆ æiYD¹EԽ±âRì}„<ºf@MÒ/…ǶÅ#>¾1ERY`hNçê!×áGŠ•Á—7µ?Æ¥.1Ý=íA×xœaÚ
-Î+V±—ŽÖÇ!»ãñ
-ûu
£³#Èy¾Âͼ÷uÿñ1‘l%søÉ59
-ë[{µÛ+wÁ“„éclCKۓZ^ðö}2~èsÛUTM¨`JDÚvënãGÐ_ûíÉñb4mkxÝ-ê—LÛ¬ñšP‰DÆUÆP`Éó:º9nSBÁ²¨¸éWËLƒ·Ðë„ïw…?«…ÿ&±_ŒG轉‘%ݕà±LX{éنõ­‚<ò2Æö¼š—ƒéñãL8
-§ýnw.z3b)Î1=¸Z`›±
gå~_F¿M"ÒJ9n@¦,Jú8ÿ%GtX¥)+4Híú8¥V&ÿù=ÒŸÔ…Æ_VÈ^¯,‰M„n—Qo\v|Ö윆E†Ízxœ$åš~-Cà¥yCˆvù4üv¯QÇ"n€ëí‘Àª·Ûìàôðpr³[™ë]öµâI=×êùµµá™ÁrÂLU¬ª‚Õé;îs×G5àV±ï8œþ
v£8{endstream
-endobj
-602 0 obj<</Type/Page/Parent 513 0 R/Contents 603 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F6 8 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-603 0 obj<</Filter/FlateDecode/Length 888       >>stream
-x
¥V[¢H~÷WœÇÙdd
‰â¾âÆ´€
ÕmO6‚P¶µƒ”Sc÷¿ŸÃ­íNf×Ú]D±8_}—:UßFèø6`fÂd
-Ùi¤k:L
]3Á²gøÝď p¹dôëj
-†
䀏Líp¸®É>=¬bÿñç/ä/fõðäؘ`-’:§yÎÊgž©„ºdÏ)TR4w­ñþURHö\Ò.Lñ¯THàG
-±ï‘¦9Z‡1Leü¤™ÅÄüûIx%ÂÑ*ÂBÿ£ŠcèétUæ=ßv.¦­Y
á¹fjm¢k{Ñ£%ë`&†n|DÆbæ´{"à’þ¥±C5Õä‹Ä_™d¼„fȸUâÀh‘WÓ*lb¡<‚²E+
-ØÓF±´ªÊWfETƒ@_ÒÓ¹ ŸÛ*òõL›‰ üàP`¹=-øXÕ«ÒºRÁ!¦â;Ÿú—#ˎ͈ëg¨­9ï(ŏ	ù²õ’]ÝÅÄ!ë0èèÿ,"ú†©yà •_‘DC¿ú¨ÙψNe…êf[½j	)¾ß(׶À)_Ñ´F,uY6ánÓßoúû
-\–¡ï¬ƒdA¢!¶‚Rñ
-9?¥hEÆ1ç¼(¨PÇr;58C7;Öçÿ„FÖ¾—ÄáC´ðn33uèr÷&eÓ
-$;ъ×ÃÝͲ6È×æôÓt8«ím<KçŒKV/[Á%ÏxÑÛ¦• |ô6
-–Ù:ü;Ő«Ç°Ï„ïù®Ýäb`[^viðéi¯”„m„íó>Q»‰½;Õ1m»ø¯¾Õ´V±d¹v6rE8ë
-7¬«œá~Q!ø§}aèO^°~RE´ñ‰–ì¥7Ia-ä–1èzOÔKîV»[5щ7+mv¬Ìù7Wé
Éíé£&:µ‘F‰[Ór¡Îf/ h|âFáaopkäzã&©„,-›nÐîN{±Ñª·
×YÜ=lÁ]ߚÝ{,¥Õä;1Á]_'¦¡üw`
ÿjh
-â
E¯­¡tßé¨Äm.ÐÂÍ:&Il¾tv
-2f¶6ÏñˆØžƒbÇwXRlwüLE¿×,oûÃx9žéóë‘	b)êLւ¶-ךYÚljã™U–Þ`ydt?ú
ÌRç
endstream
-endobj
-604 0 obj<</Type/Page/Parent 513 0 R/Contents 605 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 6 0 R/F6 8 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-605 0 obj<</Filter/FlateDecode/Length 1261      >>stream
-x
­VÛRÛH}ç+ºò[X‘lǗG°qU ›Ô¦Ö[ÔXÁ$òŒ¢دßÓ3òu¹U톊¤q÷éÓ}Nϯ½„bü$ÔoS§Gé|/Žbê‡øìúølã%)/:ühçÅñdïýY—’„&9é
ú4Ɂâ˜&é~üÐÅoüNu=—•p’Œ.IjW)ii.ªŸ2£w…IEñî`ò
{MÀ"¶’NÔFÌýñ·›É÷Ëӛ“/çG£‹›Ó‹ëópz#ýêpü0i7󞘹PÚF4¹“TڿDzZȊ„Îø¯ð–JQ‰¹t²´Ú:šIº¸þü9zY»uÙõèbÒi?æªoQY—›j~£²'b-«üöetòÛó¡J£4°‘3¤
ó…@¯‚¤¹øa*Výbu9–ÒÿK,÷XJš®ºE͔£\É"›¼òíÌ¥f>Çø½ëúb4ž\½ÐR»Hâä†[€Òk­R“I²˜h}K&'&ëµ½žå†Ó4x_ÊÔyjJ—“Å1øó¯PõSš)E–1~ÌÖ­t»Uu[³GhWêVC¯÷ÊÝ¡`Q9®×APãócº“"“UƒbH	Ì '¯âN7heu":_]~$Ãâ›TB[‘:º—]ª²ê%BH§Ýz¬³3X&P……‡¬’>␔ªÜö"÷Ðtx ×–×ê$k4Éç¶Ûôø䜚# V–R£³:u€ëKÚ×¾‚Áq?‹”	
-aa¶Þ(÷§ÓËÑåétºm?¢ï¦¶“«
-æcf¨V“ ¤Ç*à〴ìh®
-Iw°¯BÒì5kß@ÁxL)õ
w§dP~^Ÿb«…]¤;€†EòAÌËBp)ªE<ïPJY±·ÁK×\zgõ&šŠªz$S»æ@ZË{À÷p£<J%=‚Á{Gieïdæç‰[Ñø­gš®ä¯ZZ·¶i”ïš‚ï
ÈpuI<ôIÏ’6ÍïÁà-,F-é§6÷ xlӃ€Øe‡êL8±¹lç*UœrÁ@ø>1ÑaJ‚B¼ð„#„ÍZ50WKg'írI¨
b‰â¸ÝãŒ
-Ny—‚phéÐ'~'[oÇÐñZXôÉÏ
-ËÖ¡ µ’‡y'kmjµ¹¾Ínñtð3.@ðÃ
-U€Í…üWÓpî„YDJ‡uãGè.Gô†Ì[BiJœî³CpÜé
ŠõY¶ÚNÐ!§æcŸ¼ëîT‘›¢0÷€e,O2€Pø¡€Oì¢çYiCÓÇ^Ù\4ümg!ŠšÙ–¡nàÁü¯r1\8>º]âÂø\I[mqabeøQ—³ð”xºÀ“U~
KQek%®ÎAÞ¸™÷iîÂ;Ï÷%üÉÆ»nä»­m‰®‚kw' Dßj–EÖ¢ -ùÈÁØ:*¤€Ãµ·×Êt¿¬ÌLÌpAgzÀýBå­yƒiLq(³¬°?|ƒÇÎÞ,QX¯	+ÌXªÍ¦23¿Ÿ³&EØi|#`œXkŒsµíV`c©p¥Ó¢{_Ûܒµº{îúšñðEïë‡Ü?Ïíû³A³$’þ ê
‡ÔûÐo.ÀGçÇGt"²€¹ã~ú{v3¸Öòl«y]½qËvûݨß`#â;݄CNö¾îý©,—»endstream
-endobj
-606 0 obj<</Type/Page/Parent 513 0 R/Contents 607 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 6 0 R/F5 7 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-607 0 obj<</Filter/FlateDecode/Length 944       >>stream
-x
ÅVێÛ6}÷WLƒ>8@¤ÕÍ·ÍÓîfØ8n­ê>еfV&’¶×ŸC]҅³N
-AmX–EÎ̙3g†þÜ)À;¤QDñ²m/ðÄc?¢d<Â}„æTô®ÓÞÅ4¡0¤´€Ép<¢4'lJ³þThc_“´|m3%ÿ$\$ϬP’„¡-Ë9YEvÃi¶¸ù•Ì†iîSŠßOvnwÆҚ7ÛwFÈ{â2ÓÇÊòüeú©Æ@—æýŠsP:7¯H*KYəö,´µSفQ˜
À8•¨šØn-¹¥9ÛòœxNï˜ÌKNKË,?‰ÙÁ3\ºlË56"Û|õê"iÎò£K–e¯,]-fÈq»…_ãÓ3¶<:x¹#++•áÎÊùôÛxÑÐO\Ž©rdhnT¹çùåÉjù•A(Õ~2rP(VU Áņ=BžWVÒúh¹iA;ä®,A˜Þ
-‰LsZ­³ÅíjE\P¡à»~_Ü4tPñ‘•;¸3œK2Š
-DEA©ÆùZóRj¼Ӏ&h¼(iÒ¢ö%$°
hhʤùg8µ—݆:úú(xŒ†T1Ͷ¦c#ü±ãª³y±Â«Édµ*
ÓUö¢[ûç;xàm¿ÆòÇ%p·Iâž^wÙ~ϹÑ{³Þù(v‡µÇ[ܵóÁ‹×Î/¦
-Qd×M^Œ¶ÊûÒöéäõð´ã¼Èu\ÿ/ÓöTSbÍZXË¡ãB•àÜuŒæН*
ò€ÂӛÌ\sZ&M!x™ÿ}¢¥™„@½³G;ñKÕ¶ <{@QsfœWØ­²ºµ
م˜˜SŒ$V–”xNnµÈ£æÖõjÇjÛÂxµ‹ù۝–ˆÁ´ÚÉü—t)„h,ÓuNœ¡ß›Sç<½[^ÕQæ·é݇·æµzóZ²2¼ÒÐAØM+ÆÁ×æuM¦ŠI¶ë݈ë#Ÿ¦ÏX|dZ°5f„=VüÃ?fótüc[Çæ7¶òjÍoÙ'ôߞkƒÞ=ëëòð¬ÅÏC7ȅüÈ£ÿ
yÔ"‡¬+%1Œk¹Û³HαŸµøy¬ÇÀ¾jNß©f÷´Ö;ä€8Õק[Y½<‹î\>ÉY‹çÿ‹B>ÛÁ#fI;L¼ïžÛ¸íæp4ö‡“	þ–Í	³¼z}EoøçP….¢·;‘ק¹×íõF
Î¥g¦n2JüÑpŒ¹ŒÕ¤Nä6íýÖûv•Ýendstream
-endobj
-608 0 obj<</Type/Page/Parent 513 0 R/Contents 609 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F5 7 0 R/F8 10 0 R>>/XObject<<>>>>>>endobj
-609 0 obj<</Filter/FlateDecode/Length 506       >>stream
-x
µUˎœ0¼ó-åÂÆ
†ð؜f7ÏC¢<HN#E^hG`Ïb³ÊæëÓfÈCZ,ffHà.QEu—o½:CH#X'Pv^ÀHrºÅYJ÷ˆ®¡ö®
-ïé«g†PԄH²Š
-¨: (}U×ÍåEñÊâ©Ì‡ ;¼ù\E	‹	êå½à7-‚¹ßãà—·ï‹0YWÜðàºç»¥åÎ4°[ZüDØú7÷õö„,¡A^a\V`¸h™óƒ.}'â?êHLCEɍPrRê$ã¢íD,Ó_GËàY{JÞ¶ *˾Ø3è¸)ÔFd–u~ª­AªrŸ>\žlO,St¶ßÙúHžšliuá|û‘²A?º
Ãø
-Ï0ۀû5Yxh¿RIƒ?Ì?®:i9Zñ.N«ŽH™ÙN´:J.Kl¡Tƒ4'“Nˆåù9—´”ÈûV ¾¤ ^уÆþ«ç40ôp; 6´¤örèhY#“
-k!QŸ>@Gœu…ÇòߙµEÞ›cloý¢p «EõŸáú6הæ‡/eÓƦKò’(g‘Ýl>oÞ]màÞa«öØkx=PYÐêwí*
r[š³5‹¼w[§1K“Œþ5­Ækûêeá}ô~
"Êð\endstream
-endobj
-610 0 obj<</Type/Page/Parent 513 0 R/Contents 611 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 6 0 R/F6 8 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-611 0 obj<</Filter/FlateDecode/Length 985       >>stream
-x
VMoã6½ûWöÒ¤ˆUR¢õq*ìÄisH±M¼è¡)
-Z¢lmôá%'î¯ï)fãfm§‹À#g8o޼ᗆ"‚ÒjÄ<"ˆ½DáÚÇ_« 7Hhûí†?oOÌ£Ÿ®à9	ã`Æ`‘ž%^àù÷àîãåßeú¨:ț£}é•î.p¡7M­Õ,‹:‰?»Hëæ©TÙJUªîΟ1Nøg쇞ÀHgŸn~[Ä°U­.šº’Ÿ­¡1Ý1ǐe«6å´¬Hí.gì™MÎ÷Œ_ÜQÔß‚½#D·Û¨ÃΛZA“C·Vp{Op.ÐTÝWúäåóR®«ÿ	
3åšam.‘
-Ì¿w¶z'S
-|Äyƒ%Æ
-Êt8»#ÕA*1ÆOÈCÈ[¹*U½êև#€ÖÆÁ™ÉN‚V)ÝÐ}»¿A×ÊZÃÆ°öÄ[öÝúklö•xÄD"•eYd‡ïEûPdU‘ªõšÊ[y„:ã"™$â(Þ?‚îú%|ºŸÃbk;íp, U•Ä²ªÖ¥l…LmTõ
-
2ü@¼ü`¹N7
âǶm“ûÜԝjs™ª—<Òo”¡qÝKîwHƒDB>/U«2ºt‡rqk¹Uõ–HÕP5hÔ­%V
-âå0ôZeîƦÉ7¶GMí®Û­Þ¦6
‰Uª±/ìíåRc¡ÓÎH˜¾¸¾Œ
ÙùUÀÈÑZD“isŸÖq<çá|vml9Y`KCEg^Ljc¸“#¸$0ñ4Ž'WLÐ	Î/~9Ÿ
§ãyœO!1g¾ûN~}Wp‡:!g¼[Ä+«7ñ»?l‚5r¹ëԟ<üë0+Äd¤‰¶û.ߨ"²zPÞÃN÷J¼çÖeõ
.	›ê)¸Üœvý‡A‡˜,s¤£¡ðZI"z‘d†'$—q]XŽ»1ÖòÂÙéuӗ8’Œ.Sy‡aBg§éã>>¯®E=pVò¹ÓÅ?GT-Šª¯¬ÖT…¦1fdŒ¦ÐYà ï@t‡“ðD@lýT[ø(—ßË.µnÒÕ193…ì°+WmÓoPL&§Ó@÷È>UšÁdj³,M‰°ÎÞÂå:ÇuÃêbqÒ•ç¹;–ÄëÙåì_´mhîÓ	ÅtM½Ãø¬Þ³Ç|ÖHVY>ɝF"¢òŸÎIV¸Ë2ž;\ø^˜$ø
-hz?½MáJmUÙlð¿ô8aˆµcáûmÇCĔ—üj:…,D$¼(ŒñQ‡»BЧùbôûè_Q#ÜFendstream
-endobj
-612 0 obj<</Type/Page/Parent 513 0 R/Contents 613 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F6 8 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-613 0 obj<</Filter/FlateDecode/Length 804       >>stream
-x
½VÁNÛ@½ç+戸vHçÐiiË
DÁ¨‡RU{¸µ½fwƒ¾¾ob’‚BÊÎΛy3ófï{¹øx4ЉOQÞs—|Ïu4Æø€?-)ÙŒ¼‘¼và'/¦aïß<Â ~0¦0&¸.…ÑÁíùeüüuþÙ°6C}ïèa|0ìÏÖV’ÈÒy‘ËÂR)â8-æÇ$æ"-Œ¥›‹)-¤ˆ¥®¼4`ým7G$fÆjÙ>noÎèúêÓïóDD²»Xæ$Š˜¤6©„pWj¾CQ–r0©¡¥A4È€-L"õÛ [HÔBi”¤D¦ŸÔämÒΐٛ8 Ñ9›lOãXKcèúÇn¸.õ~eÏåð|Êd1·‹vbªsfÄ.$WPr¢lÉ¥¡b™e¦ò´Vu—¥TºªGå¥sIÌԃ1õ™$îã]T3Cù^jüŠški¦)*ÝPÓtâ5ŒúJU€}¡Ì¸D‚<7,T-ÈQU–e¶F¯F¥ÝÇv.VÖ¤hD(üû¥4ÿ9Üéóº€p©ßÒåÉðFEó4n¯Ð£Ôj7םЎÈÈH1æW?M`ݓíN™L¾Á[µ&ßP,M¤ÓÊ,…Æt5Ù{iÌm˜#Øefë¹lZi[8)ØÍÐ:˜¡ÚœîܕëÝvpøž©@ªÈڋSW»ô‘DÉÒîÍ`ãYUtyæógυB0›ŸL)£4IeÜ	sDêšuaÅê©áöH>W¦¹IõÕD«¼ê­ñëÐÛq#*÷—Рý¢’c‘a}5zZ©ÆKiaɗØEkRæ›ïW5aK·¸ex|³LE¬ vÎ9w&c—3Š…,j¬±uG¿º`u-Ñr+W@l„í)lŠ×֔Æø‰««ªw–·FS%¦¨=!UJ]ÔÃÆæ:=C¥8m~!„W[úÔûÕŽ?™?ⵃ{sz1=¥Ï¨Lƀ†¾.‘GÕolûcwò¼ŽéÛÓke'c?Àȟ:#¾tö¾÷þ
o°¬Äendstream
-endobj
-614 0 obj<</Type/Page/Parent 513 0 R/Contents 615 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F6 8 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-615 0 obj<</Filter/FlateDecode/Length 1020      >>stream
-x
µVÛrÛ6}×Wì¸/r§b¨K))}èØ­›x&Q\›™ö3ˆ-ÔI d÷ë{ ÑvT硺Œ(r±—³gpßRˆ÷¦#G”nzaR4‚MfS\ðՒr÷àÇpD/=OgÏWœÇ½7¿Mh8¤8gïÑlJqFˆ†§}A•H拉LV²Èda©,È®$Uª’Tˆ¤¤_ér)–ëG÷@Vê\¤29%Qdî^YQQo–R'§§ñß9oBs0šDíσq0
-f
]_ýò×µ4‹Roèú¿"jV„°¼ýçËE<‘X¯Ët…°Þð šÁÙówdÔ?’ÊÜecl½¤LXAª å£•¦Â%Õ.å È*-MZ¢´‡£aØ 	«ScOŠqS¹’X†L4쾖ƶ€´å=‹=£T©\§e}¼Bo† °ûÂ‡ðÎ9_½•Ù1ì9º.TàC–©âöbߓøóÍÅÛ+GŸcޙLZn„½tÛ"-«õ£_ª€99dÆÃ/Tµîúfz0…û1܂±ìPŠtÕ:^ÄnÎ/ñ‡Oï>-‰3ÇgÃ+í”]½íxÀºÀ½ºQ™Å-aš Ì¯®g­¾îEK[k¦P&½ÑWa˜¸y¡sàGoüÏYz×õ¼G“åL	(†›c]¦ÒÆGS¦
-Ü-nO¡Ÿò¤/ƒ[J’«Ë«‹$Y¡«ÃÍ0‘ «EarôÎ<‚ù'Lré²FØéKVC×)Šƒ> ¬$µ®Jý*5e%·+eŸº¸+Ê]tq<èÅ¢´ò­sÒH†Cáæã9Ŝ”Hm;gìŽ'Ógmw%ÕP¶
ÐX­1—.ãsʕ6–×`ŠÂQôgpP
g$æ;cþ—«µ¤ô?¾w2ÃÀ¸gȧ„zþy˜”©ÊÂHWÙÖ³‘,†6âÁ²ŽýÀWÚ)¬kÛ­ÂEÓR'16Îóí"±ä¸¬Qæ“bZ÷Í
-ä=#é±8„ÖÛRÛrßñƒ#q›­r¿Ü·}®M0ôF;)…BøÜ®¾îVÂõˆE·Þo[ÒÒ±úI…,q
-Ô[Jl~GBQŽÜ¾Ä¨*&Þ^©32%åB£4§=R…²J¬ißÕFÉÅxiû9D°-ò‰ÀtÄá$ÁËO[’½5Ûô„KêlÕûÑêXƦ±~qS阣eúµ®1øæõž½Lü?¾wwæ õ·@Òî¯Mý‰ý¬9§'8‡Íç8Q¹ÈÍÙÇó3úUnåZ€a~WƒlÜÔÁ3¶LÃù—c½—"[L¦“`Ípľ6‰øÖEÜû½÷/áfêRendstream
-endobj
-616 0 obj<</Type/Page/Parent 513 0 R/Contents 617 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 6 0 R/F6 8 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-617 0 obj<</Filter/FlateDecode/Length 812       >>stream
-x
UïoÚ0ýÎ_qªö¡•ŠIBH ß -[¥µ£%“ö¡Òd’d;µü÷;҂4röó»»wÏ/
z»zÐ ^4æ@Çí±øݐ~{ô)Rp]—¹:ß?DÖ0ׅ(¥3‚nQ„ï8ÅçRãD3„§Ñõïç¨!-ù4G1Õ3Xàb‚%d&’þjZ8ÈDOøR¡ÒÀé·}ЏçB¾æ˜L(4,*
-ÆRhž‰‹èOÁ¦Ûf}n0Öè2µˆ´!£ìˆ
$\óK:.Ϋ$SÞa6Cž`Ébkèo²jz
ó
öšÖ•Yà2¿íAÓY—¾Mp“¡	7
¥€9A§ŽÑf“Š
nFUH¡ð¡U
ÝöÀ%²)¿bØöj†=ÖfÑ÷q¢’Åc
|	Œ²ó6Ý<7íS¦!"F šÒ¦Œ¸‚æs U1SPðò“n•æ“<S3à¦o-hi[p7ºþjF»áù||?дä×óƒJ!бå²ÐıàJ½Ê2Q¶C{þQ.l“M*ðš­õ$(=8{¦×èntk¾sÅË">c0֒N4‚I³aFjËñû§ª¥²³ì’JBâä0&EoKß,Pºš %8o~ÛqAÇv·Ó
-K~$ó,^ÒZåï’[GVÈi_\[~{+×Í
–K¸©„ýcÔ% ŽÙ‡¤:Ôë\ªÊe¿këŠõêo0Í*He¹ÍgbF6]Öe§ŠýZ[»~³™Ìwe´c´ar½?8o^¼zm[ÍÝð‡å:
-ç„'ànEµÀÒè!*É·HÈ7rAÆ¥ŽÃZ§Ø&{ÀÒªfŒq‰ú(Pšžà÷]ÊyUÀøîæ8£tmŸÖm
d¦áҩܬ†Žfå8«¬6ngšØ&…Ç2F°÷³µ_²ÏÚÛöŽ*V#¸ò
ˆIæ²4±$£»b)+ȳùJñ­aw}=¸a—½~‡u\{Œû÷ƒ>Üà_Ìe¥‚¯IÚ߬W7C§W3=eÉ~è³0èÒõJ©ùVm·Qã±ñŽ	4žendstream
-endobj
-618 0 obj<</Type/Page/Parent 513 0 R/Contents 619 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 6 0 R/F6 8 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-619 0 obj<</Filter/FlateDecode/Length 703       >>stream
-x
­T[oÚ0~çWœ·ÒixqœÐ—‰Švcj¡wOH•IÌH	µ^4í¿ï8÷uÒ@(Æçä\¾ó}ç±AÁÃ/…ȇ€A2oxăv;"!„q„gJ¤2„,À¿»^HØ.C@=âï2PÊvºû”7>w€Rà,—Åð°TÏž4;$ ŒP7ò±”Úóôgoþ-ŸaLž6¿û½ÎÖVìºE,Íãr2‘
-E–©Ö£´Vïý[~ã¥zÂH¹˜KhA™gI‘JÐFeù|eìá93S0ύFGú@¾áé·û.ç7ûã™SŒK#E»ëxp xŠ%§RgJ¦ ’Dê:Ør~ì uØû{½(r-×Ûðà
ü«áÅý×Ao·]Ä~–%¯0y:Ûµ6
%M©òý±0/dyš%±]®·d˜@¯bŽÞ¶°%\—R½B?ŸpUU³Ý‘¥_sPy|*1ú&3¡5Q-˜—ÚÀX‚Am™ 4ž…±NöN9¶‰®ElÛè=¼þ¯ÐZzP¶ڕnGM1Óˆõ±}¯·´E˜ˆ¼‡0Qk™§ERÎ%j5…÷K÷_º[Nm¥åjÀՖדó óÆ'?t²Ð¨íd
-£æŸW*8^\‰±%P"´„àÄbµyÛÞ¼ý¹áÕ^Þ÷çCH‹¹Àšlš0“Or¦!”´1»ÀÕ½¤_]ïJª_uPŸâòƂœ¨?è„!Ê]ÜÇN:±“ÎYŽóP(9à
-ɏséUåm,|Õ¯$dUo|¹š­[½¸óä‹QRa„#W\/pńu:Às°Þv/O»Ð³P©4|)³´Ú%­¥o+òpd®tæJ.d¾¢÷0
-IÄbÝÂئ<ãëÆo>“âendstream
-endobj
-620 0 obj<</Type/Page/Parent 513 0 R/Contents 621 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F6 8 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-621 0 obj<</Filter/FlateDecode/Length 527       >>stream
-x
åTMoÛ0½çW=¥«’íÚò1mº k»Å»4IA=8R*ÙC¶_?Ú²·´u³Ým¡øH¾÷ÈûŠyIr3£„ÂéiNRHyŽ¿cü:
ë>æ1ɦñs
–§Óœ’ø1ÒY9;yScP®±«ŒçP*ÀŽ(…RÎ’NbŸ´ßZãõqù
²ß	Qœaߥš~U&q§CNjX‚E1N!mڍv¢©¬
iM£wÍC¼h?ãeˆ«´Gº„z%TãZß@eÖÖmúà9Ý´ÎvÇ;)eÇ>2zt­@ٍ¨Œ?ßJ©½GÔ@*ª€L®¡'!aÖN€‚Àåj
×[m`¥%•ÿÈŝl½ZaZ÷­öóQ
T`Bî%ñŒï×þWâ·FY‰ú£ì¯•ê¿ƒê-1ŠÌtGÏ{%éà1´ÔøÞ ‡ü…>Øw£Á^çµ×{ÒXøî±³&ÎÀÍõå—wWËçWckëJþ€;aT­¡±ðUƒìJ¦k‡‘÷œˆõ_bÅ¿6@=Ò*ÂÃfn碮á§vÖßwLҎٕQ•
ޝa‹Ã¸|8{,ç$+
-Èï¶rµøp¶€¥þ®k»ÕÎÃÛ¶
-;/£œãó ÇÅp+5”ÝaÂÓ±§£«•â‰Ï3ŽñÓ¢û뢜}œý8-Ëendstream
-endobj
-622 0 obj<</Type/Page/Parent 513 0 R/Contents 623 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F6 8 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-623 0 obj<</Filter/FlateDecode/Length 588       >>stream
-x
ՕÝn›@…ïýséT…²kº@ï9i-9vÓÞ$‘…a¬ÐKXˆä·ï`Ö?$&­Õ´ReYBÚÝÃ93³=ý8´g™[˜lסgNÿaµY°»8óL÷Ø	&˜i?]8÷{ï.=`6ø+z»pé!z³eö=s`2fÂd>„‰”?ªæãÑüÌÿNÇ0Ö3¸CÇúSYâȪtYYĨ ÎȱÊe¦ÒJ•°DPAŠ¨çû*T¥Ùh“¥¶K¶I]{!7׸Ùú܅hv~žMŸ¦£fÝÖJTSƒ
¨˜$UÇÉe‡k¸²(Á¶”q¸÷ëxêx·ÖAÜT¾ÍÆ£7Ý"UÉ°J©lA$Ӏ
-G…†eµZaA^cZ)^W?«ûpÚnÂÞA—iíVA)ë~'Ä
¥ªrÝÚc
Í®”·­¿¯C—Ô–ÀVÃÂû ¸aâ®»Ú¡LóKLÖíLÀr]¢zÂàF·)ä5…
Øí®X`paêúâ²Û‡X õ³wßJ[²•îᶟĪ&*XÊG¼={Aö>›™¿äUÃÂ[´ü²Ê„—¢Š¬
-™nÈ[h×G÷ý(Uš¥H“Q`YÍ[ƒ&d‡
Aª
-CTª	²ÉÆ ÛÛùGÜÌâ)}ÂúÀÖtÍß¿ÆÜü?‡ñ	½|¥Of?ʎN\WßQÌæ¦ð<}
÷çëó!Œð™c¡àcG›»Ê`Ž»Ùi8–·ƒãøEm;¶é—h#ˆÞ[u¢¿÷¥÷ŽçNendstream
-endobj
-624 0 obj<</Type/Page/Parent 513 0 R/Contents 625 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 6 0 R/F6 8 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-625 0 obj<</Filter/FlateDecode/Length 903       >>stream
-x
µ–ooÚHÆßó)FU_$§xëµMߜÐj \pۓšª2ö8¸5»Î®–o³‹IpKH«ÓE <ûÛÙgž™å¶ç€M/B¼ÒuÏf6ŽÍ\ð£>»ô/róÀ‹<ýøà<î½x€ã@œ+ˆBˆ3 ŽmCœž¼¿œŒþ8¿PßÑN–ãÑqvÒðL¤Íydbx²FX6yŽ*QÐ#¹ìv±ö	³Átü‘7ëÏĐªOo¦Á
-j
K„Rˆ¯´eS±#ìt•ÈG€ì—›šèäI©°Ü@-®ÊDl1ªe“֍Ä?·ö[5Ìa܈ùZŽ>ó˜ã2—ÁªJp…Ýìl°Ü`:ºœ~¾¿~ü´­šIGä)R!;b¾›ÌbÏ}œ¹§3\Ÿ”…Ò§K–â¯O»™v°¿c‚_.üÿ”«Ñu2úEKµ"S	’K±¦ÊÝ6¨ê3èÊsÌgÿõ([µÆH.ãԊ<+Rr Õ¤)*µ­YšTw«åù;ãùfãøâòÍåd•B¬í›¤5̨k2˜UëÅ]k/†,жWJ[ÛLä@Ë
-2/ÔÉWä 8Ô«BAEH$¾ÒY8Ì÷\Cˆèu²$ÁV@*8GCнZ{2>E͈$òbz^SÈ?ק…@›ÊM¥X%J}2SFkÊÏ	˜¼ÔtJ#áp5šƒÀ·¢^²™5Ï®éo>™õûN„gµ uyQ"¬ž•ø3»à7?‘œ:¸/ üe4¨(úpöwß³mƒ´ºùê€aYÐPƒá*)Kä7HiêÅb°3Yç™ÉvòŽææÃ-v]¦žJÄRŠªoqӂI!Í4$Ž»‡h…Ðßï­ÉݬËôÅ{”E¾¹O]"Uã!텼ƒù­
-ƒaò¾ËڄÈø)ì`
-â†óöwÓm¹yþ·#° Sv]»-ðO–a^pjÎ\HZÐvÈUDÜùŠúJntãhaöïÚû»à #L›¾uíï¶ß…uƵƵ™·-¥Kv<ÜÕè8¦½|^õ&¯û’çxÛt¢ö–u|—ý>!]±‘§GÂb0=Àï°JoR^/³œ02ÑVh÷uh{-›î¸ Me¦¢§~è³0ˆh˜RàKG¯ǽ¿{ÿí\¨kendstream
-endobj
-626 0 obj<</Type/Page/Parent 513 0 R/Contents 627 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F6 8 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-627 0 obj<</Filter/FlateDecode/Length 933       >>stream
-x
¥VߏÚ8~ç¯éʞ MBB߶ímµ»{W¸¾”SåuâÛ`ÓØٔÿþf‡Â6ÝV:!Áó㛙o>óeAˆ¯æ1ÌRà»Q„ÎÒ …$›ã÷ßµ€Â$Ù« :˜Í²a8I‚xÈ#
-r¼Y^^¥E°.VšÍaB
-CXóñru	—-!~}±þMoŠÐ§Ñ­óqø5,ºÓ>Ðôô˜b,õV+x«•­uõ|(хZ@”&jøAD
PÄâK#Œ…·%«*¡¶Þ­GÂ4¦RƷڊ×P¹üFԏ¢ÅvŒeµ5ÐJ,ζ^l6/€—¬f܊ÚS9HÍ~œ.
-›vXNóJ
-eÉޖvŒ—R‰	(mÝ
&v's©¤•¬‚%S7L±-æÛ3cZ]çP2SN€m™TXk[JŽhсvUSNiL#òɓô®L¹Ÿ”´FTlƕn}Y›‹€""áZYUp/8Fîc¢%õzÕõíÏÕJØͅGã¼NãH3Ša¤pÑ©¶O `.ƒø]üЭƒnÀj`UËr½èƂ…šÕ±›±(€åÍo ÷Õ·»«T8k¬íIV VJ¿¾¼BjyºOãì”XH-O«Îð”L~êï®ßýޝ­B£r͛’Aäpß
SK|tˆ¾­Úنü}{½ZˆöŒ¾’\çÄàÚ·÷ÿ…õäýå°´$Ÿ²~ŒÖ<r´³ì»î*?ï{L}7{­ÌÀûÆÿ4«_].¡¶©ŠÜW.—ijÀ4œcŽæ É©â ¼^q°Îü°Nr"7ÈÂ{a[!®A§S¤'µ/rBüç
-Šcpß°Z䔀U¸EdÏKÁÈbw”| ¬ˆ°ßéÎyzŒˆnßâàÓR¾ÖT& uµ¯Å£Ô©ˆŠùˆ|ý†_™ïTO‰íç¢b[Ô	å*è+ë5È­-£Te±·qBҀ]ƒgك\ïý‚?_á>‰ØÄ	VI¨½¤QÙ¨æêIçLsoh:¨Üï8?[‰՞ñaÍózÓUô3½XÞ½ÿ|}{u×lH2|×¥}Aì"Rºóé)v¦gېy=‹æø—`±€tã¼ûV—7o.áx•ÆkÌÀûÓPØio;‡‹_¹Y“yÌÓ·ã¾rìÿc=úkôxf•4endstream
-endobj
-628 0 obj<</Type/Page/Parent 513 0 R/Contents 629 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F6 8 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-629 0 obj<</Filter/FlateDecode/Length 920       >>stream
-x
­VÛrâF}ç+úW,Y, y·ÔVÙN²(Oë”k<j‚˜ÑÎÂߧg$n68û¢¨1ÝÓçôéÓ|ïÅÑ+†ai|ً²$
0
ésBo…Pú®£$ÌNý&ק#’4¦'RÅiv:Õp&ïnòÞÕÃâòÒՙ†@µFä¼Ïë
-…	8«¹­™Á¸Â‚U¬ÖùߝuÑ
…qJwäEÿÏ/ÏùèÛ_퉃ü»
+ŠJÌÀHoƒÀêj&`]™9hÔ
YÂôéæÈ
-Tá\–&çï8{-k6Ó}–T¼CÒ>zé[mY
+V[„JCôa§ÞÅeùrÑ&BLFÔ‚8aB/øŠº‘Bãq…I֞äs¦¾>!C£Z¡:¤öÿ‚«Ù’˜ÕvGA%Huß-jãïð]ÛªÐX%H¶
T¢¨8ѤA[ÎQëJVՖÛ2eÅBȵè
-%†ˆ”Ò…’.wü¤!<N'0mñýδ^KUÐwó‘,'¼þ³4ø3˜9RÅkh¶
ÔmuƒÜõ$óF àî~
-(¸Ú4¦’¬öz¢PYûP:=CŠ°ø¼ÜøšúÓ^Jļ¡Y#î&
-"«íî%ì†Àçi'ã°g—þ<Ÿ#_¸K`3V	mÜ—n܎ǧc/}3'蒎xF]p”4
-W•´ºÞPU«•G? ‡e¼\œÆç2|0ê('ùe=»¥’Ë€gFßCu»ûME:û	âw85Rêât=iai=láÚÉe³q3¿Ïzîîø9*¼¤®qF¹À
ùG];yЃ‚Dü¾û¦ø…
fé<ù‰Ü©§a|FûR¯¶ïDr0îi»q÷ÓóQÀÝ´ß>>ç¯_ž~kOœ2¿Ž´Êiٕpõ®¢J”òø’#‡õ¦ò‰§ÍOV’Û%!ƶ{­ÁüW»ýz7=ñ£Ô­ü¼XÈã—
°¦A¦HÞ~¦i
HZ/¾	?lL¿cßzǎ2và[]µžñ§AçO“'x”3éå²ßh®û®D¾W¯$,åÖD®Üº([½º‡Â[-9ÆεæLÏý|ùH(¥òâîì—ôYÈ%9D§¹Q·dbÚÓÙxLÿhýéäéfw¸ÂZ6HTýjI7U°=£ñ~#yǝìՍàWã`8‡Ùˆš’^§.Á}Þû£÷/®Ì„endstream
-endobj
-630 0 obj<</Type/Page/Parent 513 0 R/Contents 631 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 6 0 R/F6 8 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-631 0 obj<</Filter/FlateDecode/Length 758       >>stream
-x
ÝUMo›@½ûWÌѩ–/cÜ*竍”:jŒ{Š„,ÉVx×YÀMZõ¿w†…[D=U•jd¼Ã̛·oÞ>Ž°ñr`ê‚@ºÙ̆ÀX~8Å{¿šCÞ,x®Ç¡wâ2whÁ	ýá…Àcþá'ÑèíÅ¢Qá¢‘mC”ŽgÌÇËapÃk^VGÑ7Œ^â-7ÀœQ6^Î?Ǘ‹‹kà·
؟åxˆ#Êd‹ÊJ×iUkn"»Ò…º¡IfªºTµÜ(Y¶±e¿^_ž½y½f-3•Ök.+žÁ]ç\ÃF	|Ôû4å;¤§7çgËד–\o1Oªy†‰ER”Úÿ*±æØa²Þ@²ÙðD—P)¸ã î¥Âxf²Ú0#ºMÏH0Ñ#r¸o“BdqÙn(ÔFúlÜ~\ÿyðígu¹ˆœÀ<x`Aù]Té`¦ËÊL¤I%ä=¬–ç7Íív AÓ+AIB›lRIë×
-s¶”Q/i€í¢¨(Ô½’&Wzh”l_qÔ<öFõ¨Ï¥;+ÎëêAiQaô–ã0¼G…Z°@`´þa ‹æ(-IY(²mŸ—PÖiÊËòꯃg^©õ8ù3íT¨O:ƒ–|d«RAÃÄ[A=!ôÊâõöŽšýô»À,;f_©ÛÆ¿ÊæÓ©Aø´Q¼ŒæÑj/®ãåêôSL°:bvsA“¹XºLÖxʄÁÕrèp…âÈsډ}c!#/TÅ߁a-¹+ž¡zàôځ”A”ĺÈœôcHd	ÎSZk3Z<Cß	n€k­p„UFâ"Éð¬ÓBkW8TÊ £ôB6š.û–¹çZ“â•ö¿z¥±ÈöŒi‡{&ÚÉf{;y"
-<cº
DËi÷-lO&g²`6Ãs×7þŠš:™ÃßòBm8÷ÇZdÍÁcu±ÖÔFß6ö÷,I=þÔgÓ D¥cÐħ¿Î£Ñ—ÑoE'-Nendstream
-endobj
-632 0 obj<</Type/Page/Parent 513 0 R/Contents 633 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F6 8 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-633 0 obj<</Filter/FlateDecode/Length 659       >>stream
-x
ÕUQoÚ0~çWÜc+A›„iš+« ¬Å<iJÙBLcC׿³CR²¶À´ía "“³ï¾ûî»ó}ƒ€_…¶Ѻa[6¸´k9àø®)þrcèxÿ¾`hߢ/ÜÎsO}Öxó±Ä¶Àà®O€Å€mXtѵ:Ìñ3î
GÓфÍçÁ@?Øhr=	.Ù7<îÁSúx‹z–‹.¡ø[X‡I*S¡$<$i
-‘ÈT˜dbr#2É«MPVI´µâOv¹Û4†;’gÊ2FæK® àª?œL5Lژ3ÎÂ5‡DÂíàf6˜²¯Ao<xGí÷MôΑ»Ã÷zŸŽfΈ…Y¯Ãh•dס21Íۜßo¹TV‘/Òåìóm¤Ãjžˆ7[ž?ÂBäðéêÃä<Q°Ïe"²&ŒÆ
Sâ;7Kj›% MI!âÖ8¥Î-ԘR·Lv<Óû
-Â~
XÄ?ˆo‹Tžƒs‹³aÀˆ[˜}aQÁö”†­c¹¶LÙíëÞJºu	êÎ÷QñTÊíˆ#ÿùËë€6a'ÙRˑ¶îž&Ë¬V Qz
-P)e¤½ ʨažÿ‘ºFܦ¯®„t"ëc5­øG>öÒ-|`	JhM„T‹°èÿz<=?~G…=T¡ñ„Ý€õ:Ò|µÂœ]˜_`{m7žG¡äóË:ܚÓÿPX'ôTyf†ã‰¼Ï’'’YߜG‡W\93¸Nr{–|ÿiŒr2Ÿ•‡¿—?q¨åv»à¶©åëé?íû=¸â;ž
-ԕ„ëm›Ñ×"žoö¶<»[Þ)'î^Çs,ÏõñæEםŽ®Ó€5n?
„X8bendstream
-endobj
-634 0 obj<</Type/Page/Parent 513 0 R/Contents 635 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F6 8 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-635 0 obj<</Filter/FlateDecode/Length 608       >>stream
-x
ÅUïo›0ýž¿â¾µ“
-Cø±/Q«nS¤6Òö©&œ„•Ø)6Ͷ¿~g 4Þ˜TiKé*_Þ½{çw~¹ààŸ!
/€t3rlƱgûàG!Æ¿%ƒe}@¼1þûÛÁU2zû!ׇd‰XA„Aˆã8¤ç±=¶‰
‹Ë[¸+Áß$ß0?×mò-bþùL(ö64]çœ
§9ÇÊr+¸ÄX¶d)ËX?@íœÝߟAº¦%M+¥­°H€Ü;ÀYòŒg¹àps;K”xduHœ:4jPìS­H]œJŒV^åόë<}T²§ŠIu¼V%YÙ1o²
ö²ÚЇÉ5¨:^+Ú)5-5Rº6ÌJÙöþy:KÜ 9ö[¥q¼–ëÙDkã|w—€uj*ÖaòX«	¤¢âʤdâ̦‹d~šÔáì_
ÓM¡£—Gwç64/d!z{B¡=rº'ZbÇpêx¡ÒAÀ2Œ8,¦× 󟬧?íŠ;™g_uޗÓô^/@,µù:L±ÆP/N5g‰T£»ä	~`K³,ç+Pü		Xh‘¯8ìrµ©h©té½Öµ³zŠö‰Ýy½G™¡ËÜ-‰Wa´Û¥ÁÀÕX¹Vƽ8o7œYï`
1®½ì¡—÷HZîÛ֜á?ö#R܉òG®pƒ*+©þÆ4Û;¬_SC³Ù
oý»µÃ
#;ˆcÂv}ãô®.áš=³Blñù‚UžÕÝYû\+tb½É½®~èÛaá[Œ	ãúxŸŒ>~
«{Vendstream
-endobj
-636 0 obj<</Type/Page/Parent 513 0 R/Contents 637 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F6 8 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-637 0 obj<</Filter/FlateDecode/Length 755       >>stream
-x
ÕUMsÚ0½ó+öH:ŵc›\:ù.3
iÁÉ¥t2Š½µXr%9
ýõ]ÙÐØBÒca`+=í¾÷võ£çKo"†!¤EÏu\£Ðñ!ˆ#zöé£ò:pÄ»A8t‚];|ÏuÂ]¡ÿ눓¤÷î"σ$·é„qI”’ëB’ö?^ù®‘ßQ$ßhå<Šç0 ¥ƒa@	$Yä„̦·³ÛSHš¥&¬À>ñ›Û3\øåGûÎ0ç5äRYr
%­~<Cax¾æbA#ü¨P­)<jÂM¶)l2˜ Ù’–À¹¨Šî6SoH҉wAêB¶áÕ*¸$ıÈå>,ﰉ)ÄÖï‰ρ]™µ°l÷'Òà躀>à
-˜È@ÿä&]Â[U\Ô\(Ô¥-PÒ¯ª`÷«uÓÄ80MϒüÙ@ôiãØLۄÕ'¦<׊•¾c
ÌûSÃ¥€Ãù
l
÷2‡/¸!)™Ö\&R„%*¬kCÔÖ±Øq»rª}ŠõÙ]Â[IÜ^ÏÞ<Op)¹0$żo$èFA5¾Ÿt!;ÞLƳdê?ÛBÚ3ž$ñ—¯ÏÔ,Ëj‡JXW*ÁS™!h£ì¿Áà~mH_⎔\6¦ŒeÕ{vuBT²Ն̭1ºQ&Ã}õ<Ùæ…zö¢´Ì¶敒‘`³ÇÓó»ñäâúλ;M¦{@w/ÝŒvÿ6-©/J] Q¡8ê=è7/ðG]”£R¤RÁyQ°B± ½æ4.rzýÚzŽz½ö{-Q×ñ¾u|ӞÝtZ–)™Öèbü›%þ71ç})hŠQK‘<ߌÂZçÒ( «AH1ø…J6:4ìo†¿BS)AWꀆ^ÆSfèNÑUš¢Þø"ވæE±ŽF†^s̎¯NŽá̎\Y¢ÒpYÑíc™l×"wôÊK.ˆ'
-cʄfúadaΓÞçÞo1ž!endstream
-endobj
-638 0 obj<</Type/Page/Parent 513 0 R/Contents 639 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F6 8 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-639 0 obj<</Filter/FlateDecode/Length 914       >>stream
-x
•VQ›8~ϯ˜‡>¸@X •úÀ&Ù*ÚmÚ&´÷PV+×8nÁ¦²ÊýúÉ]Ú,«S‰àñ7Ÿ¿ùfœŸ#lü8¸0ñ#›Øà{>qÁ|vñ[qضWW	/-x¶Gü‹áïï¯ãÑۛ)8Ä[Lî‡ø&¶mˆ™1%˜ÀŠ×°á՞Wð
—b+Çñ_¸ÓÇévZn€;•¬ù;Èùžç)¨w-8ìiÞp 
-2Ѿ¬øφ«št0HàM¡ÏìXw‘¿çó»À¯«å&^»Ýº×¡~–3AáIuÄÒ8±þõu¹Š'C(ÏYÍvÝÉÎI·0îm”lÍU)…ú%¥
–{äý¿Å>ãýíÓrþǡ/e&j,[-a³X[¬–«›OŽíhq1r@Úý‰!E~š¦<…l½ìíZYWÚ
B
-ëo^Éd¬“wºõjT¼n*´Ð!iÆhͨ†1®ÔInt˜6©5ñŽ	̪CYËNJ–»ŒÊRr«沠趨AŠZCfRœ°zÃ[›¢õ[@Ðms¾ÍD¦#û´GÑuåZ‡Giš‘cFnwŒ·7—”Y¢ê9ü8ÔȦJy…š 2-°¦ÇdUµI3ñ^øŒ‘mƒÐª¢‘T¤õ®<29+ÿ"1nÍù“ùb‹Ù5pÁ´Rx2M ìR¦´¦0‡FiA÷î‰àvÀy!Ÿ·‰1”óŽ
-(ð»£j7€$êW‘°Ž¯€|þ³Ëp©
-Eê%FAÙ.ü¡¤Ji‰“1¼íR®hÚ%¼éce¬[.ŸõÂió|›­3hžÚ]q3`§M#2&S~ڞŒõg@‰h=C¦·æݓ97ïâËgÒ¡¿³¯"–5çâ±ÞÁ]
-8®vЖR—ûøþi€Ãþ{AˆH3OÆ÷/çWÍ…w‚îa[É¢5‚Ba‚l-¦E‚²›-ÝöØÑÓSɘ̰]^õµvþ÷€ÀîÍö‡Mˆ¯›
ËÃdQ6z†P`ˆ¦Jg–kH÷¾IYƒ+j¨qÃИ9ë'È%cöíÇòLcé.ïÇ%Û¡tXDd¾fæZ½;vê…ÐÓ¹úDaù9žKüéÿ:àõ­gÛ&úxáhÃKY–¼Rð¡Á1©Ù[N€
-0Ö
-ìé¿×îK¾x$ðCœÁˆzj„E<ú2úra¡endstream
-endobj
-640 0 obj<</Type/Page/Parent 513 0 R/Contents 641 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-641 0 obj<</Filter/FlateDecode/Length 1362      >>stream
-x
•VÛrÛ6|÷Wœ§FN(V²e]<ÓÌ(LÒz_*ѓ‡(0™ŒIBÀ¨úûî
E™fÜN;u98—Ý=>
i€×&'t:&Y
Â
ž…SM'x‚?£hí˜ÍÂQ÷ûwñѯg4Q¼FªñoBšÁ€bٛ…“ð$¤£–:?Ž¿#|DÃaÞ?™ ¼õß.i¡£TäA$iÙQd9z@ý“1ÊrýBK’ºØTN‘UÖfº¤µ£O–~£«Þ͗¯³0ž}êƒ0æI²êE2ˆìê˜_ݴ紐8…¸O
¬ŽÉ·4¯\ªJ—IáT€ %B¹ÔS(R$¬UÆ­zœ¦ý#ò “Ç¢ó}ááixÂóŽ!eû˜o³ÓäuIßuVfå=¡%Jt!²Ò¿•y†i›å9é$"Ïw$œSÅƑÓ$SQÞ+ʜ¥
jnµIH”I;‘Ô¥3:ϕ¡Bì:}µ®¬âLÕ&
ÈD‰Ú¨2áv@Q÷™ufNœÃw6¤8Ílݓȭ&-eeh«Ô·¶vÊl…Ilؙ2:‡f€oœjÕchòUï…|ØY*óC™›ýHKå@Ñ« –A§a䈉ý
-9L‚!‘z»^õP€šö	¸ ߕƒ¯ùfÈLž·¨F_-Òö¡åNñ˜õÒÌSèùDÕÙYô‹	X+O•l§Rs nÈë§:HÞB‘çt
-\úÄú
>ÛTYæ2×÷¬ ݖÁª—•2K '‘¨d+™¢‚h¬,/¯Z€Yu‘AuÉKö?h½Rî³¾×åRþÃêmڟyŽƒÒyjoÀÄpì—ó'öµ@õŸ˜íÛlo#‹ÍqË¥Ëh—ó˚¢gèðT;ÝÁyš7ÍaìžÉʵ^õ@à·ÒdÜ^¼–ïm œßˆ¶b ÍN·OŽåK´òÿ‹à9GÛÜû§ÃډÙÕOCŠtQ@+Þ§_puxÖ:3Öý“sµ\ê*OèN5öŽ÷0Šr§KE9ÌEy몀
°TŽ%ÉÒÄÇΰ…i†ƒ
5”"LÀ~`‘¥Þ–ôCä•
-éޞû|͸–QwZCÆlsÞU½ù±ŸµvºST•Òì`¸W±_Ï—hUÑVìh]•’ǒ^zÂJ¥ïn×CŸê±ÊÐcÒ¼Üs@¿­¢êÔ¼SkóH3z§›ò~,±‚¿ÃïáªõD©øáOeæ¥Ú¤þÚ@ÃIH×kðQÛ¸f`{(z íãB_ø쫂I ѵû+F˜p:£\eJ îGf½¼ç™ìicô:Ë48_c¼ôZl6J˜×lhP‚œ’Lâ]÷6C+è‹/.”5¨-jEÅÑ
nJ%lUtÑ ˜ÀmS',6”¯¹/™Ý—à"yéèþŠ¶¸1Y‡?jëÙBöF¡ñ<ÀñX)¬N-’’¢|å°N˜W0DâCúCo7ÅW;ãܑÐG(Nø%ñ¾ó'°±d\¶ží¥ÖÌ^ùˆHýš^]Ç2æq¤=(ÈÑl¤áŽlv‡‹~¿¬$ ˆÇƒúxs´² ¡Óò|ù»:(üg+ç;ÙßbOîM‚Iô_
-èºY2LÜ|Óõ¢óæÔðÎ/ýÞÔðäÉO¬ýÓQcjÓ°«j
Uqo_Çüäæ%×DùöޒhY±!r•[µ…¾Ô¾ÞtÿÈ;œLÃñlFãñÏ؜j~ùnNï
Z®7Ž~¯p
så~۟fú³ôh2
-'ã)ÆÀïg3>ö!>úóèo×Ü«:endstream
-endobj
-642 0 obj<</Type/Page/Parent 513 0 R/Contents 643 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 6 0 R/F6 8 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-643 0 obj<</Filter/FlateDecode/Length 659       >>stream
-x
•moÚ0Çßó)î%•f7NBöÆZUjÓ­dê&!M^0#«±['òíwNš–nȁ%àóïþ÷àËӀ‡ƒØ‡ ‚|3ð¨‘Ò„IŒÏ>~€U³øŒÆÿ.L³ÁùEŒA¶BV”Đ-
9žY>œÀüjE	\AšÁ\äµ)ª=àŸ‹a)Ìno~Z“²2u^ÕF,Î(dk±ŽŽõ
-ª5ú×fóñ,û3`4| ~L¼gË¡Û¢,´"iJæõ¯I]­Y÷àw
¥Ôî&Q/½Ûê=§Ÿn“óŸ
-ÊUÉý‡F®§fcgMD€úˆ¨1…À”`€Jïðî„äU±˜™Ss‡7̄U}~1¶é%
ú¶âÇ4¡ˆ½R’–NËWó—j`¢ÞŒÑü›B¦ävÇ6F¯e$~ÔúIk)m	[rWglÂÚT`Nñˆ×trhq¯\º
ˆp®uÎ¥à;
ŸŒà•6p»SÂ`†Ý¬à$Ö¥Ñõã	,æì½®¹0Xþ	ÈVÞÉÈÀ\S<`µ*žê¦=gîü…í2vmӆM/øÉaßúÔƒ“{0ƒîØìݞGŽ(f—õcÏ~âªV*ª6}Wu¦¼Ê×}W-®T%Ïí¤èü”á葴}Q佈¨õq1QZí7º.¯õo­CþÀAÙi!ío(Eiçr_¯ŒHìðñÅè羒“Ä
hûÿ@áRox¡ ת2ZJ<n<Ïu­ª~¡.?‹aãÃï~Ј|'?ZÑÉËa¡O£ñ_Ÿ>eÙóÉÍt3±R?â̆˺X6#,Nc{ã·ñ~ì]Æ!£ßËHŒšû9|üP_endstream
-endobj
-644 0 obj<</Type/Page/Parent 513 0 R/Contents 645 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F5 7 0 R/F6 8 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-645 0 obj<</Filter/FlateDecode/Length 553       >>stream
-x
½UÛnÚ@}ç+æёX×ëËÚô¥22 K\Zl”$˅%qklâµÓôï;kLJb ­‚BÂÌΙ3s³
-¾)Ø:Vێ¦jÀ¦20¿ëø)8lê€Å,|<0lGÕO(Õہ~Øù4d@)„¬ÎÂ5`eMƒp¥,•iYž‘*K*¾'–77áL2›$äJ¨ÈáZ	%ў¨ETUݟ;€“ãƒK¥_%iI’Öù6N²K¨¢AÕµ=b¨)éֈUña­ôTl[…[ž¦äg–ÿÊ`î{ÁKª]ö§¸2‰€DõÄUyŸIùã´â]ˆì⢄|<)ïyßëB^RÆ_`.ã£"¯vNtŸsdܛM¢‘ïIXö0 QÕª¬
-¬Ñà,‚Á<ò§ÃYD¡.îÆù]ž¡øb—g‚7“Å94²Ý9ž}=¨/Ä~ÖQÛgÕ=dñ–~9/EváúÓ¨&‰=F®7ñ§gq¾à«¡=¡—åNÔFÔv
-šg‹ü;ÙÑb„gq®HÖÚ9«G˗p']óAFóÙâkô¬Hãóã½Z—ú
ߔä/]é¤aKÏ
-ÿlk}]ý
­¿tœ&¸‚Þá!wì»ÁU<ä4+…âÕÃz=`ÌnîwÒwÁã<Íw¸`T%k.[%‡³ÄÖz—÷·i›ªÍ¼ps³Z×AØùÖù[ÞË_endstream
-endobj
-646 0 obj<</Type/Page/Parent 513 0 R/Contents 647 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F5 7 0 R/F8 10 0 R>>/XObject<<>>>>>>endobj
-647 0 obj<</Filter/FlateDecode/Length 324       >>stream
-x
½•_KÃ0Åßû)îã|hL³4I}‘¬«£¸­µI>Ù2P÷ÏÉԏïu›ø0ú „6B8çÞròD@qE ôÌ×
%8#¸’¸eøï,ƒ
®ïbˆ"°Kt%Á.Ք‚÷ª|xse_PÃϚPÆèéìÏ2A8:{£ýö°Û<­Ý…mXLt>mô8צÁºMm²Ê´ºÅï¢ýB®öæ-´Qk“ЎêÌØNp™ܲ˜eUw#îû`ÖiZÔSÛe'sæ>˜Í£±Ù¤+äØrYåÝ
Yø èô¾.»²ô\eå8Oµ-ªÖjNš¨sFGR‘$ âSÙèÉ@ÃÐ}¸Õvçöï0:</܏)üՆ’&?҄(ÂÌÜj¾n¶ŸÀT=ÞG.9‘Bá+2qL©ÌÁ7%ۈendstream
-endobj
-648 0 obj<</Type/Page/Parent 513 0 R/Contents 649 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 6 0 R/F8 10 0 R/F9 11 0 R/Fc 12 0 R>>/XObject<<>>>>>>endobj
-649 0 obj<</Filter/FlateDecode/Length 1454      >>stream
-x
­WMsÛ6½ûWìä%Ӓ¬Zv{Šó1õ!‰Ó(mžÑ€ ("!	-kúçû%[ö´$ñdF$Èýxûöíòú`BcüMh>¥ã’ÍÁ8Ó/gÓlJ³Ó9~Oñß**ÃÁññ#狃£·g4Ó¢„­“ù)-
-‚1îÈÑ«Jt^YšŒ3ú$š\Ð¥Õ­×íŠ.Z´¢vÏ_ƒÉ<Ú8<ž!€E1ÂK“Œ^æÎ[!}|lF“Izl:ÏNø±E¥¨ëmgœ"S’¯´£ÂȾQ­'üö†:knt¡È™F‘n^U8jq‚zêðD
-«ì[éµA`ÚoH´!D#ìL‡“ã\¡œ´:Wð»ªÈJ:@*ë…n©TÂ÷V…{é¶0kG²ÖÕà-{,÷YÊ}šíU
-	w†þV›ÞѹßHµEBðh"ä½C‚¼Èë€Ð"uI+ rêF!攽ˈa.@oü¦cC D¡Jݪrú1	i¨Ì€QL³¼_¹¡ž½dh`GÖ°Ý·2ÚBTí½0]§'Y€Ê*o5¢•µ>€."ÎtÝ«>)S‡óì”Ùú\MOætßG8ÜVº01ý¨90ÔD=‚ÝâçÄX¨Zy6úÕäTZӄxJâÑf¬ôÏ	–¨ý>yòòƒq»>o4Ûg“èîÐï,Ýáô4›œí¸öª·ôª7læf0-_®Ye’†ä©1I7]­X‡K
-d)öÍ
-Z©VY-¡$ž5dh<G¥±´6öKæZû
-ÝQ¶ Ïï/¾ì|"i·q^5I
¾‡ébpÿêóå'r’ºDL»`®FA]!ª!iÕ²¤ {Yu…·j[è„bÍÕF
-G„'išNסïè¨×ºz–„ð~ЃŒÜéÐ3ŠSb¨Ë,͌Šã$—ô‘۝¯ÏŸþ—0¦±õö¦@ªRȊ‘s¥í}×û]C=©»kÎj_<	¥Á›¨®!ÍV	‡*³t!6õX²<’ R¥^õ6(2HïîxóC~ÃÒùðÚ†'c¬ƒ.kåXâ u䚼3êš0Œ¬ºî5êƒy¥n•DKHÓm8;$’Ñïf
Ý´/‚I!%’át¯c8Þ¨ª…v]-6ÁAf(tr^èF·ÚUª`9½ScÁd¨ëPdÜ„{¼jíáá;5–éÐ
-÷d1Ö´œbizeüP·‚ý¡Zî`Èù24â²Èw“ÆÑÕh/(§’*àÁe¥DBCg’@JzŞಥÐz78][с
ÛÙs±³öëJùmXË|Ó
-°~Ä.„¡Á0Ì]Ø|…~	…-:©5À°PcÐR8l÷½{ùeyùÇÅûÅòõù§å‡Ë7ïYJ—*ÁNÏ"ØY𬊘¸«A² @$¸º­0éÂn&À&q#tZ>ìÚ¸ýtÞXö"¶Û79l\!Ö â©têV*U`Ï@²ÄZƒ8þEL¸„ïзwøô9ºX%£c.óz¶2Â؄~l°yñöÅBª‰]!  p0É8+øZl#·®´¬ðþ°Að Iôƒgè“%JY‚-.REµE  Jã¹ïUm;«íí‡Ñè+l«Ø'rqB¹áqB:]ò,
-±0¶[ÿQP¨Q¾2ˆuPDU‰´1ÅØv§å7dÖw”oÐ]Jöløžð%±ÓÙ°‰Ïâ&vô¡Èº/`%,!Û¨èùѐý8ão„QÜãcïïSú×éb‰Y¿ìGd ܒ°ØW¡7[xx¬"Â|„£`†sŠãÂPwWÏ®ü¯FÊ÷Æ9plYîcÆECGoOw«1ö‰ðÑò?ŒfóY6?9«êÉ1côfqðñà,n@Âendstream
-endobj
-650 0 obj<</Type/Page/Parent 513 0 R/Contents 651 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 6 0 R/F8 10 0 R>>/XObject<<>>>>>>endobj
-651 0 obj<</Filter/FlateDecode/Length 1640      >>stream
-x
WÛnÛF}÷WòÙ°dIQ$')ZøZ¨õ%•&„¹²Ø»
-—´âù÷ž™Ý•d9¶¡½$Ϝ9så×­µñÓ¡A—^õ))¶G[{§mzC£)nô÷ñKJíV»Ý¦QÒ ð¯Ê
-=®ÈUª¬ø÷w´·C‹™6TÍ4ýc'þ–NÉÍ­Í3sC;{Û£¶ÚÔì´[û]beF€ªÚ	
-’.s‚÷èë.ûW¨à²zø·KSU>Ma®nô8±µ©"Œ!S]2ßuäžÁ9¼¼<óëTPfÊQVÑDC§áheE!QÈwºúíqZ®˜@OAsº¢Œ5ñ^AEWç‡Oë3uUÉúO³\BÅñ€j‡8˜t¾õ8­ˆZ÷9ì|@7Ù-g‚2Mî1É3vÿÑ(FLp)£þL¬DVç“ž?óµÖõÊ[ÀÜf‰^'$©>µ%@ŸK±‹ÑøøäïáÑÉùåñ	í˜jœêÛ¦úÝFJ—ƒ½Óu:¾€šÝ>çúēº,YƒB™lª9Å3kb–ɐ¯›²NªºÄóÖT*3äi¦ó4ÕôñbøYbž¥Tj<k Í´´…èó"Ÿ´^µºl=±Œ¦/ÿ
íSfR»ðe5<¦ëÆ«nsÂYŠäO
…½ÿ0„ÓçŸÇ\¯·[ô‰«[‘õÖÝÒú†½sf/‚íj¦*J-ªÈX¡JfàCú[æ*ÎOv>óýC¢÷ÒÑèøp&=~tÕÄÞjötÃè/;·Ê Èl¼¬è‹±$Œ.l™b\dα¥™.õί|r£.‚³JSþåe·ÇW£ƒ£X±Yºa¯Ôs+I‰7áh+Üîö[=Ö|ˆÐ–)ReœŽ¬é"ÊNvúƒ\„j]åt—\1I¹
-†5*taË;–è´¼-©o[Þ¾Š™¯æóÒ"‚ªBù#õ-²*Xôê6ݐ¨×óԋÃ/

-¼YžÓ\—Àó	8µyn¬¤«ôÜ!¿'SaÂ\yº,«£2T²ª•¼•ëXàÇbU_7®·ýk±¨t½ý–0°P^^N¾°ÖNkî‘
-I†8{ééP|ù]Ì1‘h'3fé«&¶¥öP«Ò¾††;BóÃsÄÏU¶DÑ ,÷½kœ]ý)3oï´<nˆºs›ÜðªEÃ)Ì.§¶AK™x
¤®m	NâEÙ:-1Š“¥g–u·¢®ô7‚ȔPWœ0Ü„2Ù	°@®ei‹‚~\.Ò]$Z£ì’βEeùÒ<V´Ñ]َt®X
-1îy£ac7€9U̗ÝËè%
-¢Rî+Ÿu`§õÕCÔLûšá	oÒm¦è^—¹‡ÕóXËuFdêù|‰‹²VƒÌƒîÃ@?ØUþ{ä<ÂmNçتw)TJþKT6‡GĈ×5,^#V}{¢x`£fˆgË3¤ž#
žYû¥žKüJpÓ\L=G7¢Ú¹ã¼á$ú	š ^+VŒ·'q>*ù³48kŸÑ%Š×µbãY—P“ß=ôý‘ûr¾Ú|åJš¿^Kó^×ïÃÇ:ל!æŽc‹½ÑCéò\—
-µÅ£3œ‡ÏØRÍBh²«ò”6j)¸¹²ÆÎ,ëqðfM&_ÇkE®n°±ÜØ÷ÍîëUº°ðSö
D͙Ûo;ÒqãÒ¿ô,·4ø8=ÃÀ’†Æ²0ˆÂæ¤ò¨Çr'Šá	:ÜëÒÔPéqŒsß
Y8ÇúÄ¢ËUZ:!Æ¥õ{¦ŒxcM3ÕSUçÕ£cÍûé96J$»³	è”Y5·|¸-bzT&Â4M)¼üÛvf’¼æN‘·°aV†À_εyï·â“o<tѤ
)㢞8¹h*ŒOWOŠ¬bzJš&¯>öY	«ã¯€Þ͵Œ5ÄfÃt`˜b€úœ¦K¢ô4µ’é¸JÚ
-­Öñ°'#Ï΄ûCË\ÚÜOqÇ×%VM,ôü…ÀKýƒðj|‡'$r’/{§ûa¢wû­þ›7Ôü®}up~xÀrëÜb+rô{¥â}3>Û´ù«ºq4SsþÁ1]©b¢HÀBùëĨܱl½A¯5èïû
ÙïñÑÉh믭ÿ
‚¸¯endstream
-endobj
-652 0 obj<</Type/Page/Parent 513 0 R/Contents 653 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 6 0 R/F8 10 0 R/F9 11 0 R/Fc 12 0 R>>/XObject<<>>>>>>endobj
-653 0 obj<</Filter/FlateDecode/Length 1508      >>stream
-x
¥WïoGýî¿b>Õ$5gÀpÔTJˆ‰Ü*àⓢªTÑr·˜M–[²{gìþõ}³»‡11‘"ç—"Î7óæ͛7÷£6µð»Mýõ([µ’õzgø·;èãßþZI‹ð ÕþþÁ»ôètÔ¥v›Òbõ}JsBœV‹Ò¬1)ô=¦hær!*]Ò{y«2IM.I ´+•9mT¹¤µUEI_Ìܑ*¨\ÊøÉ·JV’Ò÷ïšàS»QNžøç!ڋôËQ‹ší³¤ƒä
[92óR¨ÁÖ¬ÂI‹'_dVÒf)CšL+‰ÌʹJ:ôA–˜ù¬¡å­Ôôæ
uf/Àp¸2ál§£sj£R.¹yÖMºœ·ÝJº	
—¢¸‘—ï醰C‘-UqCfAW\!\cW¢T¦álvúIÃý“šƒ{¥5j!ZàÕ”þUBŸT‘›£qzÚùs›/€¢±)Õâþ`ÆOÌÇÆدŒÖwä!Ú¯Hr'¤˜)ZçÔ\ ± ,ôÎI{‹òJC•“4½ò,rî¾È–Ö¦r`§_™g*
8•yRÄ¥ã·cZŸ&“–[’!@à­hH”¥Uóª”.¡t	ˆ™(˜A@YTzÛíýì¡I…”¹Ï÷µ0ˆE”(ª–#-…C #ò½*ge(ÿF
ðñø§r‹G6°´—ÚCdzmøÀDžp£d…àOn
-IàDY‰‰2¶\šSí)‚ÀPæ:‡@T8`4Ëø÷RnÕ¹Ó5 ᥍ÆtzAÐ)¢"šÊÐ’勆;æÓs Vk-W<8OuÃ͹á+ÛxS¹B]#(t¤¬+ã0HAšw4kÐt4ºŽiö‚œŽ²è.Í~2`ÇÂlÌ:½>…§õäø‡[xH5–w?Ê4~n&.g¨“O”ƒZFÃç&˜Êµ¾Ÿ¬e<‡DÚÅúŒPs6•+Ýò‰Â}¡–Ÿmb³3HÚ犙@ô˜9ÅF	­³¡`Ä­PZ°÷`ÄɦsB}~ZÀ;léüÞjíbnmŒÆ3~
Kè5—ÿHŸ¡(Kš5~Nƒûðy€Ìº¨Vaüµæ!‚)oÄ(ñÄfô[
-¾¦ŠLW¹<µëì³ë\²d”;CY3Ny®K1Wÿ	‹¨+	‡€
,¼ý²¡¯ývýÞewL–}“—®É¤Ãþ\ÄÔõbµòF9ì ŽÌñ©Á‡›çh
÷É¡n­±ŽBàãá1ÌÖ7.8ø ãëí“Ð̈́Þj½—^ZËoš"èÁÁ7oaPìËR«•*`y\Ï-:Û¹·óð5ù_à]ò¼°ú½Åhâ'uúV2`Ï	¯S”Ý*á¡»‘„ÍigD/îX9Ø?ZמŠãÀG¹Ž0¦
Fõ~Í
-ºZå; ‚!×­o‡‹ .áÚ/ÔÚ&ã]"ø¸±°fyOÄè@)‘AⳆòè÷-nb¿ÂŽkù@4p¹2…ÂAwÂdÎsDt5½§ÓÏãIz9úûóä*½œŒ¯qøÙ*+«°%øØ£}æ]ÏZã¢|fÄî&–mL—×í&œ>ÐÕÃÏËÖðUꅃ[“ÝÃï3>Y<èC=Kã·—¸:Œ§j…{Ñ_JÆæ/Ǡ˂G>Òá8Äc¬aàä¢âgrY9L*¤h¡œ8°õýƒ0¸e†—#Pç
ÏÏ×FjÍ,CI|fmO«=2ío/ÐZ: îW_«Ž«EÀõY¼®Vo=BõPñõôp|1¹Êô§ahí#cZ;qƒCnï½zzK`
L®qÁ9rUæ]+ÖoˆÝ£Mto’8N”
Õ‰–団Ä!ŽøZ؃TÛ—YfËÐô
-^Œ	ãÍß,àÆÜØ([™µsÈòOœŽñj÷Iïüß²b×o?¾{Ëß©¤†ü¬£•ÊýÝÕ¬¶ÙoÁ
-Ÿóí¤Ûï&ýÞ \^½Wé"=úëè{¦_êendstream
-endobj
-654 0 obj<</Type/Page/Parent 513 0 R/Contents 655 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 6 0 R/F8 10 0 R/Fc 12 0 R>>/XObject<<>>>>>>endobj
-655 0 obj<</Filter/FlateDecode/Length 1693      >>stream
-x
¥X]oÛ6}ϯàÓæb»©íô-qæ5@—d‰¡˜ƒ–h›­Dª$•Ôûõ;—¤,ى4i_K¾çÞ{νù~Ôc]üï±aŸ½°´8ºœNºìœM—x0ᇌu“n·Ë¦içá#óÿ¦kÁ¬0Â0#Ê\
-˞¤[3®7†oØÃÝííçùÍíôzòe~}3¹_]L/Ž§_ºì¤×MF0Û	¶³ÎT©«¬Ì:©VŽK%2&a칡æíÙq
ö{ɀŽcx×Kæaºæj%˜ÒN.eʝԊá£,LZ&Bô¹àÎúʁSd¨{”MÆwã¤ý½Ö½óŽ"V¨Ìâ{@²çڊ;#•f֙0í°O¿1§CÜÁÝRëÆ>é'+¯2MùI{À¤â„%[]´Í!e½t *@›Õ€¸5wþµÒˆG©«ƒVÛ("àñÄ-Ë
-nìšç9`Lµ1"uù&»ä@¤Ú­RŠTPJwÜÛ|2Z­êÚÖÍòB륱õÁ{˜Ïÿ§æb˜uîn?_¿Ì?Ý\͎
NÆ2
«”Ÿlز2èó’õf=Bˆm·¢HØã]†¾`øý«^øTO'g¬×cwÒ÷íLS–VXçÒ:i§™£[•¥6.tñ/œ¥(ò= +d€Þ?x!•T«]´_äÈUª:‹÷IŸɚǹ-µÎ­+—¤ôü€¸’3zãŸûh6soæïè­ÓIÓ8&#¢¼>ë†,<­“ôOzÑ@xƒ­“þ(é7Ñýµ]ºT§Àº}žê*‚ZI§ÈÞ1[,2_iÝBXËÁ¨›tVäKƺ
-è$aT–XŽ=ؚ¢Ã…3\ÙB:ªÇ<‚/ª-ѯ¥Ñ)zïumZÐDRíQK
²Ê5Ϩ¦W—{~+3µ.ºÕåÐ,Ô¦0ùèdDz
-m·ò®Eщs­K®Kt7’ö…ÅK§¡²Iꂬ.+•ƒnù¡nÌHÓ+D›þ¼°+â<ÿeo²®.MÔ<Æeý+-ÍEøf"•–øù>­04,4”Ldv$†˜µO?B<臈Ès(²´ §LÔtdPLˆlÊt½‡"‡Å6±ÈO{ÚàŽ@íOÈGОD¹b¢€ tҁ/EÊ+‹Z9Vjk%ƐR!‘ŒŠ…ü‹*w²Ä!k‹©6͇qmP¢vÀ¤pÊ!ÿʺ½T	2ȶ£^
j܉•6¤âACrÅA
ïQüFL±ï
-x–M,±,;c@¥Ùóî…Ý";ät7f<…ld”-‚!ØcNµXëEÜ‚{y½-…ºkÔµV‹š ¦°êY÷Ê2ȧ8h•ŠBñ~ïÍVÚ)´˜{	qÄ~5ñÐfÃB6b…
-LXŒè•Ð’˜<ϬÔÐ*ôa»¥=[ákÙ블R…˜çú‰=ò¼ŠýîÅՏ
-„»äÆ
-E–sˆËý䦝ýÞúð¶xž­ƒ5–@Á/ŽE ;©¨,~YûŸûpõË­Õγ‚õZ:uDö#=Ø//è×Óqì2ç+¡"vÐt&–~e¥ÇvíE†¨
-c*ñÖrBÆ]ôHœ°TU,¨…–óåGSEžåé7ﰖ¿Ð)l‡ï†t»ä7ËLg_œžgð’a·)‰ó	D\û|”coîÃÎØìOñÚ£~&½ÝýƒbðR¡ÀzVӃâõN¨:ž…6s¿êVŠ®&•PUVú…˜¾Àª»¨œ?M^OB¥óÉ¶•ÿnýlo° .q£§Ì©§+UïøøäõÌ:K
¹–™—%š®÷ØÔ4”È4…£xñüûdÅ'“$ŒX–j(›qSiìÑë¸4_¶îIהx3bä¢n9œNâ4Ì'wk‰½¯x™Øó%-²+z[EÁ©7ñ0¥ÚR•°¸Ð‡;Û	\
-°°ï¯+£C1ʌ?
-Œàߘr}TP›(+€@ˆ…Îp3#Gh#®3 ù<iAƒ§ƒ°Q¾xÖìÞúáöo£HѽÝäC÷œ
 âþï\^°+”3אkË~¯0’Þwo8JçØù‡ø.\‰g	#Ž•¸¾b¿°q¸¡Ç<Ô<·v½+0gód8…Ce0 ë¿Mþ<úMšbendstream
-endobj
-656 0 obj<</Type/Page/Parent 513 0 R/Contents 657 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F8 10 0 R/Fc 12 0 R>>/XObject<<>>>>>>endobj
-657 0 obj<</Filter/FlateDecode/Length 304       >>stream
-x
5ËnÂ0E÷ùŠ»ª@"Æi– bїšî²	‰C\‡Ú‰~}'<dydÙgŽgæ7à´d„Y‚êpƑ$3Šq*)F´­B,ó`º‰!òf`“T"¯A<çÈ«QÞ*8ý§ ”ö­²(Fe1á¼ÕfN™½o¡
¾ß¶Ùûj¦·÷G7!~÷à¯"ƒÝÅ+‡¾¹ITu²Ú_ÆùOÀŠ‹¨‚Q­\eõÑ÷v²£Š$üj®K_â\v'åؐ5ÝT÷BÉR‡¢ˆ‰Þ
ñÌÙ3Ÿ#ºþñµx].°RgÕõGe^NºVCF(dʒù¡$šÊœÅY[š½Ú®ð„¬ÓÊxdeÕ3 f>hžæ³5Ôþ¡ôº7ƒ*–1“IJµ“&‘ÃÕ:>ƒv8endstream
-endobj
-658 0 obj<</Type/Page/Parent 513 0 R/Contents 659 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 6 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-659 0 obj<</Filter/FlateDecode/Length 1223      >>stream
-x
VmOë6þί8â˸7´¥k˕øPv/S¥
6èÝ>À„ÜÄi½%v°¤ýø=ÇNhZƄƋš¸¶Ï9Ï˱úÔÃoŸÆ:QZô¼~?JF4œŒñ<À¿•”\ÌN.ÏhУyŽ%£ñ„æaz#éÑ+Qyi©ßOèV”A¿Ï®ni¦1¨Eá>Ìÿëûã¸þãé0`‡#,À’0ùR¨Â¬¥s‡Ø«™;#̝¯$¥µµRû&Hj2¹NReœ“üGž'‰J,T¡ü3yC5¾_ZSWŽLC9iˆ'On%P¢ Ô”¥Ñ½Gû§1?-Jé*‘céJú‹Ùõ-ñ(pY*ç­ðÊh:À3Eͯ	q®XQŠ‚*a1ÑqÏڋ'R
=:k+&C®šÆãáöËÍo_n~™ÞLnÆÏ)Òø‹ùõM3ôðÓìvN´é÷&èn”v
9|cu´Íîå󜦟?ßÜ}šO|+0Ox™ßy8'U=ˆ,³ô7åÙì{ycç΢íã9
y¥—o&܂³]ÂOçd˜÷÷î»7ÜžÝåïÿ䲫ܠÛ)9UV…$ù$Â'd(h-
-•Q}à=jú}Ü-³Å[`w7;§þÙ é&ð× ó|ÊUÿK’3¬#×ì®àmˆáWŽ2™+-3R:¸@´*Ä;Û­€
ŽÉ•‹Œ„sj	=	^#ê‡-Pï᷇	Mù­E½1¶‡A36j0i#ÅàU½™íø.ºÑ›¥Dl›Ð×
-ös^X_WǤ9‹*
-Þ˲B-¦qjì,osîZú…2.:”Ô«ýŠŒ–M&\µ銼X.‘hÈ2iªŒ¢q§˜Ó[;æ“Ñ^ښB{i:Mꌬ[™
¡™Ð•ñ2ÏyqÓlŠhÎí'4"¼ïÁÇsC,lftñL‹gh\3‹m[Â7ÚxPâeºÒ*EK²ò±VV–˜*9¹|݋þ¯Ö>"/â;Ý$è¿!ï½’F¹ZÖ±Á¶Ìšº€Ê^S„þÆíèeËg‡…×@Š#·t!SÁ0¸‡\Îa£Í•©Ójô¸‰ŠL³V-›a¤"Ð9®$ˆ=âvNû#.ÛããþC`Hº ^Î"W/±>d0hô‹W%TiêÈ$äÝjrï°jÏ&X¸(̆=Š¶¤
-aqB
P‹tsÃáÌé‡äÖ¬l±‹îZíWÆ0·í¸äo›óº²f‰Ãнrèc-ísÈH/Ñ(w™bév¼G5´]ìÁ)aZ„|P^­ùxvè`‘±ð"t0÷…€Òhx
- ‡½8p¸PnMIèHf'$7Ìd¶ZË%îk	óÁðÌV¸ĒØià1¡÷|æ
-L‘Iq

-Œl˜u•LU®Òný¬1¾¤ÄüâÕ¡ÓÃJaÿýH/3èÂPecÏk ib‚o²“OÛýbxG9Eãy‘z™%tÍ0Å{UsD)²ã†ÙÐrC›Ùz¶à}v
-à[Ô«ÛÓÉVú
…{O›Ò*
å{Ñû=*•®½tMÿšl¯‹ýÑ86å÷\J‡ãa2Mp¥Åmi4á0_æ¿ü[ueendstream
-endobj
-660 0 obj<</Type/Page/Parent 513 0 R/Contents 661 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 6 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-661 0 obj<</Filter/FlateDecode/Length 1633      >>stream
-x
W]O*I}÷WÔÛ¨AtõÞd_\Åìͺ˜]0wLH3S@_gºÇ§º%ãÍfc‚Àt×Ç©S§Š×£!
ð7¤ë]\Q^ý6;:¿ÿJ£
͖xruý…f
úƒ
¾Éoתìh8êÓlÍôTç¶ÒfEӛ?iºó«“ُhbxLœ]\öG0rŒ;Ã>M9oœ;҆,d†·r;K÷.i8lûWrïÑ0Ùe<¼Ð«û@µ³‹’+O[ÖT+ï‹iO:dx©j<cTÐÖÈÕÌ·N³>Ýä9{O¹5ÁÙR.ጢL9¦m$Š

/RÌÎÚ@*Dç•£-”×¾GÊðGkåÉX±—sÄÛdF7·^2žJýÂTªöªÂñ‚‚%U”Uj¥óì¿\g”¯9ñý6¬ÑUÿR ùÎ0b_â߰ۑg§mãËm×lhËäƒrÚZ÷’¢¸m\“‡	ãvÁ^¯Œœ(£AT5-z´t6–ó±±r¶AòMݧ±Êה«²”¤ä™ð@ Q€a>{üc<‰@=ë%9.y£Lx>ÁwH;UBp\ 4ÀÕóĈ„]§(ùFˆ3¯•Sƒ‰=².V\ç: {ßÔu©ql±‹ñØÅÎ-XHš<rхó6øM	oz	?0!¦•H9 ¯{N^¦üºnЗ9žÌ¦³›ÙӔPãùŠÃ®R˜/vsƒHŸAðÌo'³ñ?3:ò[è	y|ødqþ4ÿÝbxšBŸû¦G6ábÔæ3olí€2ÊÑia+¥M¯c5E‘NH\½ÑÍííãêõûÍäîaL§âM¢>Iù6elÉ*ÝF˜à¥ÉÓÃ=Ç®ðÔx”@x^–v+õ±.œó›ü“ÊxA
-ÒÔ4Új[*ސgÂ*iÎ}mG.,hêuՔAŽ”Oa‚¤ûöð`ˆ
€ÑiÕøp*aúšs½Aú4±®‚Äì é¸mb#C¨:~.Ïz©5$YUz+¦­J»Pe'ÀÌGDë¦òvÉv\[8á<X]CWA|´()º&H´­å¹Íɇf¹ü™ÙTós‰WŠK¢i
S(‡|Ç 6„6Xƒ´×j#ï˜ZªÐsýI²ñP ²†üáJaMÔî¦Û˜×F•ÓLê]{P
­À{¥–ü`DÔ/êÌÁ%š~»óÏ'Ý|¾3ô"ÅyJ>[«×FD0"†8cÁ¦ªZ¨-P>d`
¨„Àƒsý¼#ˆ¸ÇB7Èôz»Öùº“UëzßÖÝàjZPƒG`Ä{á!¬lєœ&¥cå&L•x8S»á,fžf·Ty”ed–*@ªZ–¯Áiª-ΑoT#]E%L"^‚9ðaZhT#íÒ,)°Ö,ªa£#ê0„㽐	ñV0…ƒ13ùÜ	À4ÀM¸‰ÉRÆJ{év…za²è<N]¹Ä&9aT­XEãl1ÿñõ~‣”¡b^ÿê;±Ò¶À!êf"È»ê@<—ËXœ¾z¹diíή D'ÙJ
ë /îªys7íÉÖ "(a¿Ô;6„Ò:|6֜M§"ÃH’¤G$ã°J䐧ÂrÚv'tN—Psǯ
†¤ìžÎ¤“'-Yº8Žíږ:߉¦¶µOô‹‹c/Ð(›Qh©(zÒý·ï’IٚKtO&í›s…@”}em±Ÿ”"–¤6VÂ셟¶”çãûÆIž•u˜4ûÓ{ÆTíPË倁Ñ>6sÝxÙA@‘µ-£¢rþ£p€Àð…MKÍY7	œ©l\QF#8íxx¬6"GâFäŠ
- ›cwø4Fâr“”`'ŠáÄ},ÍjTù¾Æ®Jh]d²B@QÒìK~2ˆO!¬¢x·× 09èd‘a$§ÓùÝxòm|»RŠ,ëd+ȐvaœÂܶ9–.âÞókùÕ®V‚Þ&Jú;:nÓtLñ}ÏE(v­ ‚¾	y”În}„8k×,‰¨†€§Ð´Øì=ÚËÄoÀ”6ÀŽëuÐ`:gQÎï¿|ü¸üE­ÿùäòú²}õ¿`pçê«øώþ:ú^<‡endstream
-endobj
-662 0 obj<</Type/Page/Parent 513 0 R/Contents 663 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F8 10 0 R/F9 11 0 R/Fc 12 0 R>>/XObject<<>>>>>>endobj
-663 0 obj<</Filter/FlateDecode/Length 1678      >>stream
-x
VÑnÛ8|ÏW웒ÀVlÇ°“¾¥Ms íÝÕ>ô”DÙ¬)RGRqü÷7KÊNêÅ¡-چÔrwvfvÿ=Ó¿Æ4ŸÐåŒÊæd”h6åš^Íñï	þ8Iu<˜Î®ñß7Æ8˜¾u0›þéýòäânJã1-k<>»šÓ²"<<Ѳ<ý¶–†v¶£Ìː‘0d‹ï²ôpZ
-­•Y‘Íc×V"ÈGQ–¶3ááŒÂZ’2A:#4U2¥=	ä.VB꼬rú(Ê5•kaVˆp¶ü~2¢áøi.«ÓµðTH¼ßˆ
-lÚ?8«µX­d5 o	÷qK<YU‘¥¤ÒšJeG¾ϚÆVªV²ÂQÓZ#MðÈV˜êèíCœ'eµ\§0;’ÏÁ	ºùð	mø·SN6šeè¸\ù`QíéV.Nҧۛ?ÉK÷$ÝÃYÞ?7™¡S(õN
'½ÐVÒZ<IZI#*ñwxô²|¬¤/NSªˆrôCg;¤(SùZÛ-'š°ç\aTÛqÖì_ރ¼\K/©²¤­Ýt-è
W´¸¿—/î®iV0=†—Ó”ðx’OrZ '4p¤ÚنþþrÿWöšQÃÉ<Ÿqà–­#­Sp;
-҈ˆ_úqfä–7Ÿ3R(„ hk;]‘±D²i÷¸’Ày«Âš²-ßëŒz&t½¶.~˜ý\&B¦P…$-ë†û’->/24jÏ?‹¶åV/vOe€ñ€ÕÂ5¦	µÎ¢Ð;U£ŒÂ=¸ž”@:¦P¦:~ù[ßѵ`Ò\W…Wʗ÷è	£½FÓ2`¯Ê,UÓkÉSdP欅þ@4•fÚsN MX+³9æð5—ìÖºMN7Iœ>bÙ:)Ÿ‘=WËzdüÁ#K+êÚ·êÚSvÉÑññÏmËÔúœZáBJªÙ
+YKÇøHS
W¢‘9íጩ¤­,­,”Žæ¥BV}Ñ=¢Ge!-|
f2	5ý’¤—9ý¡âD+ú
-W@ÖI®=Ûþa^d9Is`*cÉâ̱­ ³šÀôd›î
-¥UØ%Æp/m%Vâ¨ÄR[ô€„V+ÃÃaùYhãk²U~$§ûÈ(Uán<Â5°[P¶l#]¶€BXn38z²¥€+“ª™N°W¯G¡ÅÚ·ÎšÕ ²
pð­MÀm‘^”ž¸<h‡ºµ|ë´·Üò€î0CüÑ㰅…h
-'DÓa*pXªA,a¥G¡#Ä.rvi·{­í9yoÐe>÷È)%ŒÎØE©¢Ð‚Ø`ž¤9ÁŠcP£ÕÆ)å
w¯È|åPHNï—ߐÿ
̞
Tx#nM6£
©ø áO[Œºþþ>ÏWV‘áa5ēpHˆéõ>É,c–$?Œó¬Ö
-ö
Õ¦‘ýHËæEX©Ä°µG9ÂڜÅÀ•þŸ`ÁîÓɾÀ]áMûØÙá?¨ÿ¶;Ì^kç]³rd[‰žK?ˆ­´æŸYžìnÀÞÖjÜF—ã£T>
-RdQž{L¼s¾×ð‚ª
‘÷ŽÊšÉ¥%
Í=†ò.:¾B"^‚(<î3vWBwm‰
ÊS÷»§G,+îÃRç%ˇWdÀò3ÔÁÂÖ[ª;‡œP
’<ª /?ø³dÇP¿Ï¤zºCy[L¬
-°~ž9EÓôë8Ò	ëL$Å`4 KßÒd6G/Ƌq58G<ì
-ç=(‰\we¿Ã
çù՘fqä>Lfsâ@/9žç×iÅÊ~èzzß¿£\Û¤/Hx™¸¤‡S`Û
-輸g$—Ìd¼À®«ë‡³
]»„uT€ö¸§J•:h½È*ivX6ÑRÞàz\¸_)ÜmmË
KÁᚫüÑ@øý¾ó
-’ýZ3œ\åãkNûE»Í4§Ob½'ðpkZZ€Fi›‰—Æ𷶅"ãjõ#ÐX–&¼KŸÆž³ë‚K`VSð²*ˆ‹ê˜³<Çâdù ˆ§Œ»%7 v7›¶*$öYò*@˜K¶B¶ìÈtàaL„—Y‘æÖ<^¤Ø·3ßÂa{c·Ø$V2c׉B²…ä-A›(¸‹»«ž^ãùU>»¾¦Ùe\\ñÈûºEþš5áé·ãˆ3îoç£kÆá×+ãt>Íç³+옸:q„Ë“¿Nþëç-endstream
-endobj
-664 0 obj<</Type/Page/Parent 513 0 R/Contents 665 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 6 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-665 0 obj<</Filter/FlateDecode/Length 1820      >>stream
-x
}W]oÛ8|ϯØ7'…­ú+vronÓ;hp=Ô@_´DÙ¬%RGRv|¿þfIú£jîдIj‘»;;;;úûfDCüÑ|L“åõÍ0ÒýlŽ§üï­¤2|0½¿ÏÞú`2™gÓ·>=>þzâÃòæýï4šÒ²DôÙ~(‘‡CZæ·£q6ÍÆ}]¼Ð³öҖ"—wË84¥Ñ(Œç8t»Ü*G•Üˊzæ ]üVÒ^XeZG[¡‹J’ó¶Í}k¥ë‡7Ò¿wғ5­WZ:2ÿoÜõ“„£ÔX³WàK›v]©œóÒ`4ÉÆ_òËh‰gDÓàán¬ÄQZªÅ‘”V^‰Jýƒ¨—œyõÈÔÐ×
-çdÁ¿ˆªÂ£©Þsr}’2TÈR´•ïw2p²*§Né
¥tP¸\ËYɂSd´ÄÑ!±Ré"†¤­i¬^ÒZä;‰ÊkS´@®46Ôî…Ûõ’NpoÐÙK{Ö¶ m<W¢e¬¨nó-õvÚ*Yld/£gOnkÚª ­ó'€C+ÿn•ÅA±FÃD@ÄeŒ}LÇu¢¯ee!-Ö
-½9'¬ì	tªŒ(€J–ÎŽg *÷M'Σ1Ωuu$Q´øø™ò­ÌwŒ£@-	0iÁthoTA…r¹•Ð9¯4©º©d-µOɆˆ×<LF1v ø$ü%*{“Þ½/€(€ÍM]·šé%Ñ[¿
È\3®|¹¯Ž}­–ƒáDÕÆ\Í8æ8ŽHµÇCp¹ÒyG¥5uuæfà:òJ…|‰k\c4#™š€~¸
-€\¢Ÿ/Šñ{Ž2°nr:¡ÈÐê։ãê9Òç§Å¦Êól)çãÄż–¯
ªÄœc-@x0^í$)€ Y4íëóSw”Ò'ZÔ2±JÉ1	aԅ÷ôÓÊ@B¡ÐÅÐ~Lzìd˜øœg™g‰YãL
ÌeÕHÛ)4	Ѕ)Ð4VÄÁdzfÊý<¹hç`2ÌfÌgpê>áY€­¡—ÍoäDý%¦Xsì7(ö¬É؂!Î:z‰œ!‚\mP=aÑXÇ>í„b¬¿óˆ¤ª4¦ÅJ
I‘¯hÞ$%Ò­@¸,‰[³ü™ û˜/H–Ë@ƒEåÄ·ªøÎBxqa¤È1Ã2b ºGzú@Òç«»Œ0݂1eÁq\Êwyösö…‰Y è= Ú§ÿã]$N]!bzݎˈßócø
Ê`ôp2—Je!ˆ¦¿p¸Ÿb7xø•Oôæ罕œ"s™g]æ¢EÎÏA{#CsƒÆ*ýë|ŒÝE©¥ÇRZݶ·;õ·61åʐcš2¡j$kˆ#}õZ`¤*µæ®ç¦ÄI+“Çv
	ßw1
-e°0ÂTçè²ö}ì(åÅI;øz,P´G½Êb€à’ž>¢«[uQž˜·Öâd(‰

-18b<œïÐì›ÒãÄÐrc¹\VÏØN`Q°†3¤®^gXž%zQIHOŒt­+`†ö-†û0¸ë¼?&J«»Nô?©C±1ÀέiMX1aUcJ19§dHô-ì%@ §Åƒ‘b\­³áÏçQh<8ÎÆï'°s Raf´«B4‰hP<Æu1œW]ý_ušeô"knç‹Ðb¶àdµÆ=-<á=ø¸6ÓðÞ$YB}|œY$žK«ÑLåÙÜD¦Â³%ÅqBƒ?¯\àS‡4:Ð×礂õ8‡°9,4Á?`“½[ÝâÓàXð=u•YàÑn“CÆ`Óú	4£T@CjãÈ¨"º<tY`¬`=AіX%+
-#MCìp|(åMÖÎyuuB¢“!HXVø‘V§Ú0QExÞK ž
A“ñE:1.zɆ-hF_¢bM‡ƒ=ÁÍ]ÑI3biî‡õډ¥¿Ïtr¡'DÃFä%UcÂzL…ÃõÅéB?4ˆ”À…˜®SÍÝ
H,¼4œÓGÚ •Á°Ãan“Hò¬/¾<ïÆ?_q2:- ^S¬¿sV·«»v$&°S%V8+8xXÈêso ûæú¹ïŸt['à!›ì™\¥6[–0G‰Yْ™ê–êNÞ½95>xõâƒ+ ¯èˆÃUh2[“v £IåÊUËK>T¶:øm‡å‡%h/¾`©A[(OUu§›öÓËùd*£¯Ç°¨œ'
-ÕÄ÷&–S]|û7vP@8¨
/@ªË/@Ы/ôî]Rž‡ôÒ7š?d³ÇGšÍãËd䞢Ž°²ÿÑb´9×ÁéÙÁ|ø˜ìÑÛï”Óù4›Ï`º`¢æ#>üiyó×ͿÜî¬endstream
-endobj
-666 0 obj<</Type/Page/Parent 513 0 R/Contents 667 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 6 0 R/F5 7 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-667 0 obj<</Filter/FlateDecode/Length 1196      >>stream
-x
VÑNëF}ç+æ¡RB”˜$ä&‡J
BË-µ1Ò}ˆmì1l±½éî:¿ïہbÚ
-!ÐÊ»;söÌ93üu4 >~4Ò阢ì¨ôi4îCM'Xñk™’rcr*»¿_„G'×#(Lj<PÂôûFíkc‰_U¶Mùü8ügûtVí
GÁ‡Û‹p·%9•­Scž‹íÚéxՎLî<-gwëËûE8ÿRŸ<¿ú.U{‹pý°œÿ±ï›/$~Ÿzƒ~0•°EìÜڛgλÎnoï/חáêdœ­#ÿzˆru·^Þ\QYñíIYêtr•q·²Ð¹?RÇï·¼:®ÞóþöÞp,yCõ̎” ¨ä
©45‘òLþ‰©%‘[d€éåI•—Gök<ȹ_oö_ä§
ÿ[Ôà§~[MZÌN[6ÊÔ5âI
TÒ&eš]^Þ? ˯³ÅÕí$Öþ“«YMŒðõ¤ò8eÂ_rÞXp(lÕÔi“¿Š¥R¾¾Ô †ãJM7ØÔùsuD"$I^tþø5
r^d¦Ý4Øàä9þ@&ub“)—ì	ûƒ1/eÚ´©¼Zx5Ÿë’öniçóÅÃÝ;ãî@ù
àH±fï´tÛ`L
-ÙyP"àÿißÞpT"®öI;Úi¯RÒ9*³§­æˆÉ$äLâ_”ånY°¥Ê6JGl=ޔî)70~Ä[Òt““Hê1GR)£œ_ԝ¢ÝÀ8®Ø¸½óœÁŒêîàx	…G±ç®ÀJ{ÉÄÊi¤ñ*:ÕyÌ[ƟÜ<Sˆ*™¶Öx™Ô5eš
-®té;§[¤ÄDﶈ”ZhH¿õé²< ð:Õ~O«¶cg=ÀÔW‚hu,(«X؈)ÕÏLvE©È.m
-¼ÉXÅd¶lѺ`±–Þè{¾AUd¹<®¨pKÖ*¯Ô-§[‰?S{Ú0ÅZJyJ¬ÉÊè1'ªH=íTZ gá€n*‘¶+ù“u]ŒFjñg¤rJ
p+r¼U]ˆKôcµx5Ack²6#—Á΃mÀ6ª™,C<¸e
-kAjªe\dXKa…& qµ"TŠ§Ç¢5;À~§Ô	ÚW
¼üºe<^ÍL\H‡)ü“±Ž^4À$Ž(
-¯ð:*Re
@ˆQ›Ï/˜W“LSïí0ü0ªô“`8¹þVÅ6mt~PFµõy
-þüÖßTìÎÓXmÏONgÃ`0žƒàl\]ü4nVíÒNR颰Õ!P8+»qùyvµ¬)€ÿQ_)\Æ¥€P¥à­rJ¡|˜NIùE` ÄvÇöÐPþ
y=´e°FÅìfAjBS.…û±Ã”ýeÕ¶¿äF]7ÅrÁ‘Í.y
-Ø ‹f—·´QP­!²’ºÝRQÒ-ꮓ=úäµÑÞ*»¯oWªJŒmh%7/¢äu0ًZâŒÚ0%Ɠëi]ÖÁdŒÏÎh<üV50@¼˜Ñï8C;ú¥@’½ÃÙÞ¤âö§.<šŒ‚ÉxŠ>ÝÉP.ÍãߏþÅÖþ endstream
-endobj
-668 0 obj<</Type/Page/Parent 513 0 R/Contents 669 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 6 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-669 0 obj<</Filter/FlateDecode/Length 1654      >>stream
-x
•W]o7|÷¯Xø% ˖¿ä<͇ۍ“Ö
-’y¡î(ã;òBò¬øßwvÉ;Ig·@aO$wvvv–÷ã`F§ø™ÑüŒÎ¯¨hN§§tyþjzA×s|>ß״:x½88¹yEg§´XaËÕüš%aù)žGo*ÕFíiv>¥?”ý ,)[Òí‚>©6ΗôÎþ±Æٗ‹ïrØlž;>¿˜žá¸#ìžM齍ޕ]±]zA³Y^z6Ÿ^ñÒ/&V+M¥~еkm#¹U®ÖÀ¾[ºM` …kZͲÖÔö˜ô€‰VÎӝj–jB&’	d݆žÒ1`	<Å{££U›REM]@˜ÂY«l cIÿTE¬[P¦z$HíBC¬d8åAûiŽvvö‘ᢈҝ¤VêPx³Ô*·‘Ãï>¼~6U¯;
ö{
›JqN¡Ã~†Š*ü©ÄN‚Eå\0võš—Ñ£ë€Ì"k$f¦ô7ž…Êuu	e¨’Ù*pÚª«ëÇ	éÐêÂ(|­ò‘ÔÒu‘‚.:à„ÓGä~úëã|÷æãíÝ!/g
+¬¼]±?\•)ý6J‡´ƒóý%‰ëÅ$YŠ2vÊŽƒk´Lcjå9ÙÏ·ï¿>Çî”Ð\*3Âu]È*ˆÊX7ÊKQ¥B¥KVM§Y¢Jtó"çó¡ÀßŒF¬]‚=uϕQÃò
¢þ‡0ߚ9JÕLœ0#Z@)£ïl
ýó™Žfˆ
JlUYŽo¸½,Jš–e„yWNxÁ@ÉâŽG—W´4qüí»;º×Xá(³Žü_4jmŠ¤ÍºŠ!9á.l‹¢ŽÂkS™¢b†Bt>´-ÄÓ¤‹ÚÀàEÚerûKM÷èk˜“ô
æÚô†p8n.Ý
Ê
-ðàõGú¡êF•²&4(Š³Á¡å.$déÃÛÑ9ħÏÖ®w
| @õ,“ÝÊg¿ÊePupԊGŠ{ª8™œhL
³Ç‰Sa^O²«4CIdÑ·£m‹Lb_ü‚ÆúÍ»®
Ûç¯.Y;[~¾½¤Ð¥Ôë`j$±W*½yІÝl)*¹.¼$¸ÎúÛK1à•ñ!âáXVä.ÛÚ¬˜„Õk
š%lDW¸¬Á阺”Ô
[Onލ¸
€çlðºeÓrøzɑ囄;ï[k«½ÄåÃTÛj[²ÉÒµèuBÏ]3
-œäwœÎÞÊó‚±îP+¤ü8!âÕ<Ü8>ïëš«km×ú09Óðÿ(>6–fµ‚óã$.)kⱯü–Û±B“ŒÈ2a‰ðQ㠞½
-%U„Ë-݃”5‘…îw¹ÜñøV!Ž•×:›
-õ6‚ù¢àèŽÁĂv܅‰XÈEyê.gÉÿÒ£ÈûC—-úçeý|βá1\ „ ‡»7èص_A	ƨPæ©æ[
-Ï´4¥¦5&œ.Ñ7(‡ Î§D”cØ*ÌÖÀÿ:l"GõéõàY8¨¼Ýzgîzü¾§t³×Ú£ðC¯	Ž$©1óPt5†Œç,ž¥¥Ã0Á`Þ<kl"nYÖ#FK=É{È o›Lý„ÖæA&ÆPŸz’á¸h¬ç½nU£Ñz7åB<IfÝóùNÄÓ#¡ÔÔ9£^þ©1ƔõÎoGrgZy×H¡xÝÉ
®àr¿=
-ÍRF‘Ìð“›þs”îÇ;M–µ‡vØD<½ì
€ˆáÛ¢ás¸ªÁCy˜$ûˁ%Š‡Z4’.p…„FšÑ¤Úí1œ®©ì°†FEìIšØ[7
-=”GãæÖ̆4®Ú{	Œa‘½E¢ô7mQ|òÑ,é{«Ó¹pޣɆûRš:L×~µ2gǜåèвÖá2²Ä«Æ&³ÇªƒNk<ãkPQ ýÁÝ
-S71Q–”Fî"ðߒ¿O%£C-Gѹ‰´5ÛÓó÷½Ý2¨aäí	Û²ÃK0¹ä‰dS]ŠZãVÎ÷ÈiÆcúÞaøîð4‚•Ípzžèe*"¿!üÊ÷ák€¶Ù_µØõž«‚4>	úQԈÉù‚Œ‰’LÓjÜ=ý=ñhE1^贒fí+'b:¹¹Þy‡¼JïsoþïKëÅüb:¿ºÆû/ÞÏæçŒïÝâàσo™endstream
-endobj
-670 0 obj<</Type/Page/Parent 513 0 R/Contents 671 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F1 4 0 R/F2 5 0 R/F4 6 0 R/F5 7 0 R/F6 8 0 R/F8 10 0 R/F9 11 0 R>>/XObject<<>>>>>>endobj
-671 0 obj<</Filter/FlateDecode/Length 1549      >>stream
-x
µWÛnÛF}÷W‚–
‰ºX–l£ 4uaÀIÚZi\ÄyX“+ik’«ì.­èÇ÷Ì.II´
'uÀæ^æ̙3—ýz0¤
þ
i:¢ã	ÅÙÁ Ðäô,ÓøtŠßGøo$-ÞÌúg4œÒ|#“ÉItJó„p`0 yÜGÇÑÑüŸƒÍW’lv·ÖnZ¨Tò÷þ؆Ãp¼7šFï\æ¤M"
-´¡k‘Ý	ršÖÂ8«µp’TN÷‰;ý im´Ó±NI9Ê
-ëèŽWRɇR­ï©XûÝÃ	ݕ8¼v%zi!-ƒP@Glz©dN‚
-ó¹ÈdDsÀpE»iÙ%aýeß_Þœ
Ôp)K"µÇu.i#JoŠE;¥sºí(Ü”ªmVekm­ª@錒ðŒ}ŒS	Çå7Gzá?0´C»µ óV‰½ã­ÊÝ
-Y	☳lÍýŽÛ±ÎP¹Ê—0
7jª<G
©÷rí"škÊ°5SÖS̙¥r+F‡onñªˆa[¶KKé_®×"Hm™Ç]ïšw Èô²èô¥‹ûþ¾d_0y⏵N4*kïg0LIáTª\Ù
ë'µ%Ê‘]µNw9¼ÚƒJ §yy‡Á¥Ì¥§Œï©œFg0úƒ¾1VŸ9°1š õ N0ߘáx?e¨Ô…¡ý{(d3,vÏãB§©ÞpœbeÌîùþM;X~
-+ʼ³èø cáh'fôo‹VzMýš~ªc‘ö-gwmÔ$Úo
-—×¥¡çooh¸\¼$dŠÜ‹ÉÞKëdO€.YzyÝåß~܉rÍnÕýÌW¦ïÔëniDÆ\聩
-`(Ž1%%ÊÈØiSFô¦¤D.D‘ºX
±¾ð>®?Ç jÜú|Ä4j;b¿¤7Hº†íG¤óìÕû:èl]$»ÒEšp©·Òq¥7ZÃÙº$¬¥A²¨ºŘ¯ÙÉUTàGÇ'èX·`°	K¼ÊtB¼ôÄÂÛ£vÒ^©{¹A­|:¹E9ñÉWåÀ“.2wðµôN>ããAmS4˜<ï#/5*yÑ)(ºb†$©ºRs¶VÈä]©B+DOB¤ÐX7F¬×pe%
:áeþ*÷Vîœ2w¦$„0œVíøù·o0º=
- tVOãP5¹_r'?/Tr~óÂÏËØkiàGU?ŸgqŒÌ„˵ür~õ˼÷s*¬ëÅ+‘/eÏ©L¾>¿Ò(®fŸaÜw<	÷ÍR‡°-ÑÂó´Üén£ºKÕîìßÐéVE»Oµûå£-ô7l|_#»N·6á¿w’Ž3³ušÚµ®@jûÁ	cj½UË\-T,@2_Æßx¼ƒœ ý‚ëäQó„ØÂØÕ¿˜Ô\Ò_—óÙÕÕßm»<Ždž|3q,WN¿ãÞBjDì¤aU»
[üàsx¾·\¡Ï[_z-bøèVÌìY¨êìæª4¥…P)—8Lc*áQNä¥O…&ç&šríg
ò	€Ö²»Ý„™ŽóYÌÎ;PC·1Þ·+‘c ØÎu<eVMbxDëàÎö~Ry¢7h¿ó–Å0†ŠÜ®ŸV{S#ß	w_Àº·ÁÃf
-欲aÂ\<ŽÒn?lAòÓn¢,,0d&Vı´ø•©¶‘ÇX=¸š‰-è?‰–4BâsÜac¥Z¶Wò›Hd¬2‘¢ê/•³¨™ƒÞY—f½4Ž
-&3Ö9¨÷7àÙµ6øˆiÝ¿(ªâ[ëЦv¬À‡í×FÍ_;˜/¹™Vn¸×S¾3ÎßvXf30ʃ0¿1d‚†Ê*®†I TèÅÀ›
-Ì&a™†±~«¼#õ+¢rÖ¿zxKÿ¢™e_½ÿ@¿Ï®¯?}øóí«°V‰Ї—Ih_í¤­úqÿâ´Êùáô4šœá=ëGêëÙ»73z‹ÇVªÑp,ý†.á«s¯ÞٛÐR’ð–}æ;žŽ£éä4LÀÓ1ãúu~ðÇÁt…ºïendstream
-endobj
-672 0 obj<</Type/Page/Parent 513 0 R/Contents 673 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 6 0 R/F5 7 0 R/F6 8 0 R/F8 10 0 R>>/XObject<<>>>>>>endobj
-673 0 obj<</Filter/FlateDecode/Length 816       >>stream
-x
m•[oÛH…ßý+ÎÛ*€­ÈŽk;úô²(°½ìƋ-P÷a$іšÑ0«‘ìêß/9ò%õF~14òðã!õï`ŒD~cÌ'¸™!«÷«Áõû)Æc¬6r2[̱ʑÄI’`•Eï¹ý4Փ¥!FfÉÔh
-“ñ~ÏuŽ\i=ÕH9¢(=|•†S9+-\SwØsksXæGØò‘°¼ZýÔ	nûÌ£É4žJî‡GÂ-ÇI²üô_îþùü×Û¯/=˗^>·üö÷1&ð}ùǛÕHªÏòžÓß<6­µp¦¢åµd-øðÇdm/óLht3‹ªó÷05ÁXËûÒm¯œH tF‘qU—롧F˼w'~âUFX'7ÛrGš?Áh|O4«’öxÆ¥+›Rtð¬a;äÇ
-³¬ü¥;O5íJný)#ö9d…q[/W{UŽöYOÍ^G¹&­†\Nùú*Æ1‚äP+(‰H<±ƒí!¾:Ø,:;äWº‘hämm*T­o
-ÙT$á2vŽ²æBV¯ø…àùeÜÜPÅF՘¦÷ë¾l
-
uÂãëó©ê´ƒÉóÀEÜnKw²ì±éÊdÖ{Ö©Ž<^£#ÿ«„g—{Õø¶µœû]ì5¥ˆã¢R6±”»é‡g†"h_táܤ,}õ9S—9y¡%_jÚP-ÕtÃfژÌ4¤ê׋7rژÖ6§”yJb(¥¡ZKû?gyI
!¢øsGuÜW?;-–ªO,¹Ãœª+E¶…/¢Þ‹AC9$`‡L&Mµ‹qç:–~„š,#f.€
-12㰎Â19n·ÅƒGÇ{Kù–ŽÌ5glýú
-[#UŸ£†¢>ÞK›Ba"•z¥¢¸)dœ*–àÉy™C8™'!긮LØϧו?Ñ£‘-vntMMvÝïËþäLE‹9\®ç‹xv{‹ÉtÏt!<Ü}¼¿Ã[ڑå'Ý
¿·ent¼;š'²dóHvÈMôŸ×’¦Ð´Óù4žÏò	‹óWúêÝjðçà?}˜ò£endstream
-endobj
-674 0 obj<</Count 16/First 675 0 R/Last 801 0 R>>endobj
-675 0 obj<</Parent 674 0 R/Title(Table of Contents)/Dest[516 0 R/XYZ 0 756 0]/Next 676 0 R>>endobj
-676 0 obj<</Parent 674 0 R/Count -1/First 677 0 R/Last 677 0 R/Title(SAMBA Developers Guide)/Dest[524 0 R/XYZ 0 786 0]/Prev 675 0 R/Next 678 0 R>>endobj
-677 0 obj<</Parent 676 0 R/Title(SAMBA Team)/Dest[524 0 R/XYZ 0 762 0]>>endobj
-678 0 obj<</Parent 674 0 R/Title(Abstract)/Dest[526 0 R/XYZ 0 786 0]/Prev 676 0 R/Next 679 0 R>>endobj
-679 0 obj<</Parent 674 0 R/Count -3/First 680 0 R/Last 682 0 R/Title(Chapter 1. Definition of NetBIOS Protocol and Name Resolution Modes)/Dest[532 0 R/XYZ 0 786 0]/Prev 678 0 R/Next 683 0 R>>endobj
-680 0 obj<</Parent 679 0 R/Title(1.1. NETBIOS)/Dest[532 0 R/XYZ 0 738 0]/Next 681 0 R>>endobj
-681 0 obj<</Parent 679 0 R/Title(1.2. BROADCAST NetBIOS)/Dest[532 0 R/XYZ 0 254 0]/Prev 680 0 R/Next 682 0 R>>endobj
-682 0 obj<</Parent 679 0 R/Title(1.3. NBNS NetBIOS)/Dest[534 0 R/XYZ 0 758 0]/Prev 681 0 R>>endobj
-683 0 obj<</Parent 674 0 R/Count -5/First 684 0 R/Last 688 0 R/Title(Chapter 2. Samba Architecture)/Dest[536 0 R/XYZ 0 786 0]/Prev 679 0 R/Next 689 0 R>>endobj
-684 0 obj<</Parent 683 0 R/Title(2.1. Introduction)/Dest[536 0 R/XYZ 0 762 0]/Next 685 0 R>>endobj
-685 0 obj<</Parent 683 0 R/Title(2.2. Multithreading and Samba)/Dest[536 0 R/XYZ 0 581 0]/Prev 684 0 R/Next 686 0 R>>endobj
-686 0 obj<</Parent 683 0 R/Title(2.3. Threading smbd)/Dest[536 0 R/XYZ 0 387 0]/Prev 685 0 R/Next 687 0 R>>endobj
-687 0 obj<</Parent 683 0 R/Title(2.4. Threading nmbd)/Dest[538 0 R/XYZ 0 786 0]/Prev 686 0 R/Next 688 0 R>>endobj
-688 0 obj<</Parent 683 0 R/Title(2.5. nbmd Design)/Dest[538 0 R/XYZ 0 487 0]/Prev 687 0 R>>endobj
-689 0 obj<</Parent 674 0 R/Count -5/First 690 0 R/Last 694 0 R/Title(Chapter 3. The samba DEBUG system)/Dest[540 0 R/XYZ 0 786 0]/Prev 683 0 R/Next 698 0 R>>endobj
-690 0 obj<</Parent 689 0 R/Title(3.1. New Output Syntax)/Dest[540 0 R/XYZ 0 762 0]/Next 691 0 R>>endobj
-691 0 obj<</Parent 689 0 R/Title(3.2. The DEBUG\(\) Macro)/Dest[542 0 R/XYZ 0 786 0]/Prev 690 0 R/Next 692 0 R>>endobj
-692 0 obj<</Parent 689 0 R/Title(3.3. The DEBUGADD\(\) Macro)/Dest[544 0 R/XYZ 0 786 0]/Prev 691 0 R/Next 693 0 R>>endobj
-693 0 obj<</Parent 689 0 R/Title(3.4. The DEBUGLVL\(\) Macro)/Dest[544 0 R/XYZ 0 567 0]/Prev 692 0 R/Next 694 0 R>>endobj
-694 0 obj<</Parent 689 0 R/Count -3/First 695 0 R/Last 697 0 R/Title(3.5. New Functions)/Dest[546 0 R/XYZ 0 786 0]/Prev 693 0 R>>endobj
-695 0 obj<</Parent 694 0 R/Title(3.5.1. dbgtext\(\))/Dest[546 0 R/XYZ 0 766 0]/Next 696 0 R>>endobj
-696 0 obj<</Parent 694 0 R/Title(3.5.2. dbghdr\(\))/Dest[546 0 R/XYZ 0 655 0]/Prev 695 0 R/Next 697 0 R>>endobj
-697 0 obj<</Parent 694 0 R/Title(3.5.3. format_debug_text\(\))/Dest[546 0 R/XYZ 0 543 0]/Prev 696 0 R>>endobj
-698 0 obj<</Parent 674 0 R/Title(Chapter 4. Coding Suggestions)/Dest[548 0 R/XYZ 0 786 0]/Prev 689 0 R/Next 699 0 R>>endobj
-699 0 obj<</Parent 674 0 R/Count -5/First 700 0 R/Last 721 0 R/Title(Chapter 5. Samba Internals)/Dest[552 0 R/XYZ 0 786 0]/Prev 698 0 R/Next 722 0 R>>endobj
-700 0 obj<</Parent 699 0 R/Title(5.1. Character Handling)/Dest[552 0 R/XYZ 0 762 0]/Next 701 0 R>>endobj
-701 0 obj<</Parent 699 0 R/Title(5.2. The new functions)/Dest[552 0 R/XYZ 0 621 0]/Prev 700 0 R/Next 702 0 R>>endobj
-702 0 obj<</Parent 699 0 R/Count -15/First 703 0 R/Last 717 0 R/Title(5.3. Macros in byteorder.h)/Dest[554 0 R/XYZ 0 758 0]/Prev 701 0 R/Next 718 0 R>>endobj
-703 0 obj<</Parent 702 0 R/Title(5.3.1. CVAL\(buf,pos\))/Dest[554 0 R/XYZ 0 683 0]/Next 704 0 R>>endobj
-704 0 obj<</Parent 702 0 R/Title(5.3.2. PVAL\(buf,pos\))/Dest[554 0 R/XYZ 0 624 0]/Prev 703 0 R/Next 705 0 R>>endobj
-705 0 obj<</Parent 702 0 R/Title(5.3.3. SCVAL\(buf,pos,val\))/Dest[554 0 R/XYZ 0 566 0]/Prev 704 0 R/Next 706 0 R>>endobj
-706 0 obj<</Parent 702 0 R/Title(5.3.4. SVAL\(buf,pos\))/Dest[554 0 R/XYZ 0 507 0]/Prev 705 0 R/Next 707 0 R>>endobj
-707 0 obj<</Parent 702 0 R/Title(5.3.5. IVAL\(buf,pos\))/Dest[554 0 R/XYZ 0 436 0]/Prev 706 0 R/Next 708 0 R>>endobj
-708 0 obj<</Parent 702 0 R/Title(5.3.6. SVALS\(buf,pos\))/Dest[554 0 R/XYZ 0 377 0]/Prev 707 0 R/Next 709 0 R>>endobj
-709 0 obj<</Parent 702 0 R/Title(5.3.7. IVALS\(buf,pos\))/Dest[554 0 R/XYZ 0 319 0]/Prev 708 0 R/Next 710 0 R>>endobj
-710 0 obj<</Parent 702 0 R/Title(5.3.8. SSVAL\(buf,pos,val\))/Dest[554 0 R/XYZ 0 261 0]/Prev 709 0 R/Next 711 0 R>>endobj
-711 0 obj<</Parent 702 0 R/Title(5.3.9. SIVAL\(buf,pos,val\))/Dest[554 0 R/XYZ 0 202 0]/Prev 710 0 R/Next 712 0 R>>endobj
-712 0 obj<</Parent 702 0 R/Title(5.3.10. SSVALS\(buf,pos,val\))/Dest[556 0 R/XYZ 0 786 0]/Prev 711 0 R/Next 713 0 R>>endobj
-713 0 obj<</Parent 702 0 R/Title(5.3.11. SIVALS\(buf,pos,val\))/Dest[556 0 R/XYZ 0 728 0]/Prev 712 0 R/Next 714 0 R>>endobj
-714 0 obj<</Parent 702 0 R/Title(5.3.12. RSVAL\(buf,pos\))/Dest[556 0 R/XYZ 0 669 0]/Prev 713 0 R/Next 715 0 R>>endobj
-715 0 obj<</Parent 702 0 R/Title(5.3.13. RIVAL\(buf,pos\))/Dest[556 0 R/XYZ 0 611 0]/Prev 714 0 R/Next 716 0 R>>endobj
-716 0 obj<</Parent 702 0 R/Title(5.3.14. RSSVAL\(buf,pos,val\))/Dest[556 0 R/XYZ 0 553 0]/Prev 715 0 R/Next 717 0 R>>endobj
-717 0 obj<</Parent 702 0 R/Title(5.3.15. RSIVAL\(buf,pos,val\))/Dest[556 0 R/XYZ 0 481 0]/Prev 716 0 R>>endobj
-718 0 obj<</Parent 699 0 R/Count -2/First 719 0 R/Last 720 0 R/Title(5.4. LAN Manager Samba API)/Dest[556 0 R/XYZ 0 423 0]/Prev 702 0 R/Next 721 0 R>>endobj
-719 0 obj<</Parent 718 0 R/Title(5.4.1. Parameters)/Dest[556 0 R/XYZ 0 273 0]/Next 720 0 R>>endobj
-720 0 obj<</Parent 718 0 R/Title(5.4.2. Return value)/Dest[558 0 R/XYZ 0 494 0]/Prev 719 0 R>>endobj
-721 0 obj<</Parent 699 0 R/Title(5.5. Code character table)/Dest[560 0 R/XYZ 0 786 0]/Prev 718 0 R>>endobj
-722 0 obj<</Parent 674 0 R/Count -2/First 723 0 R/Last 727 0 R/Title(Chapter 6. The smb.conf file)/Dest[562 0 R/XYZ 0 786 0]/Prev 699 0 R/Next 729 0 R>>endobj
-723 0 obj<</Parent 722 0 R/Count -3/First 724 0 R/Last 726 0 R/Title(6.1. Lexical Analysis)/Dest[562 0 R/XYZ 0 762 0]/Next 727 0 R>>endobj
-724 0 obj<</Parent 723 0 R/Title(6.1.1. Handling of Whitespace)/Dest[562 0 R/XYZ 0 476 0]/Next 725 0 R>>endobj
-725 0 obj<</Parent 723 0 R/Title(6.1.2. Handling of Line Continuation)/Dest[562 0 R/XYZ 0 312 0]/Prev 724 0 R/Next 726 0 R>>endobj
-726 0 obj<</Parent 723 0 R/Title(6.1.3. Line Continuation Quirks)/Dest[564 0 R/XYZ 0 705 0]/Prev 725 0 R>>endobj
-727 0 obj<</Parent 722 0 R/Count -1/First 728 0 R/Last 728 0 R/Title(6.2. Syntax)/Dest[564 0 R/XYZ 0 293 0]/Prev 723 0 R>>endobj
-728 0 obj<</Parent 727 0 R/Title(6.2.1. About params.c)/Dest[566 0 R/XYZ 0 718 0]>>endobj
-729 0 obj<</Parent 674 0 R/Count -9/First 730 0 R/Last 738 0 R/Title(Chapter 7. NetBIOS in a Unix World)/Dest[568 0 R/XYZ 0 786 0]/Prev 722 0 R/Next 739 0 R>>endobj
-730 0 obj<</Parent 729 0 R/Title(7.1. Introduction)/Dest[568 0 R/XYZ 0 762 0]/Next 731 0 R>>endobj
-731 0 obj<</Parent 729 0 R/Title(7.2. Usernames)/Dest[568 0 R/XYZ 0 647 0]/Prev 730 0 R/Next 732 0 R>>endobj
-732 0 obj<</Parent 729 0 R/Title(7.3. File Ownership)/Dest[568 0 R/XYZ 0 269 0]/Prev 731 0 R/Next 733 0 R>>endobj
-733 0 obj<</Parent 729 0 R/Title(7.4. Passwords)/Dest[570 0 R/XYZ 0 745 0]/Prev 732 0 R/Next 734 0 R>>endobj
-734 0 obj<</Parent 729 0 R/Title(7.5. Locking)/Dest[570 0 R/XYZ 0 511 0]/Prev 733 0 R/Next 735 0 R>>endobj
-735 0 obj<</Parent 729 0 R/Title(7.6. Deny Modes)/Dest[572 0 R/XYZ 0 786 0]/Prev 734 0 R/Next 736 0 R>>endobj
-736 0 obj<</Parent 729 0 R/Title(7.7. Trapdoor UIDs)/Dest[572 0 R/XYZ 0 619 0]/Prev 735 0 R/Next 737 0 R>>endobj
-737 0 obj<</Parent 729 0 R/Title(7.8. Port numbers)/Dest[572 0 R/XYZ 0 491 0]/Prev 736 0 R/Next 738 0 R>>endobj
-738 0 obj<</Parent 729 0 R/Title(7.9. Protocol Complexity)/Dest[572 0 R/XYZ 0 231 0]/Prev 737 0 R>>endobj
-739 0 obj<</Parent 674 0 R/Title(Chapter 8. Tracing samba system calls)/Dest[576 0 R/XYZ 0 786 0]/Prev 729 0 R/Next 740 0 R>>endobj
-740 0 obj<</Parent 674 0 R/Count -8/First 741 0 R/Last 777 0 R/Title(Chapter 9. NT Domain RPC's)/Dest[580 0 R/XYZ 0 786 0]/Prev 739 0 R/Next 780 0 R>>endobj
-741 0 obj<</Parent 740 0 R/Count -2/First 742 0 R/Last 743 0 R/Title(9.1. Introduction)/Dest[580 0 R/XYZ 0 762 0]/Next 744 0 R>>endobj
-742 0 obj<</Parent 741 0 R/Title(9.1.1. Sources)/Dest[582 0 R/XYZ 0 679 0]/Next 743 0 R>>endobj
-743 0 obj<</Parent 741 0 R/Title(9.1.2. Credits)/Dest[582 0 R/XYZ 0 569 0]/Prev 742 0 R>>endobj
-744 0 obj<</Parent 740 0 R/Count -3/First 745 0 R/Last 747 0 R/Title(9.2. Notes and Structures)/Dest[582 0 R/XYZ 0 447 0]/Prev 741 0 R/Next 748 0 R>>endobj
-745 0 obj<</Parent 744 0 R/Title(9.2.1. Notes)/Dest[582 0 R/XYZ 0 426 0]/Next 746 0 R>>endobj
-746 0 obj<</Parent 744 0 R/Title(9.2.2. Enumerations)/Dest[584 0 R/XYZ 0 771 0]/Prev 745 0 R/Next 747 0 R>>endobj
-747 0 obj<</Parent 744 0 R/Title(9.2.3. Structures)/Dest[584 0 R/XYZ 0 288 0]/Prev 746 0 R>>endobj
-748 0 obj<</Parent 740 0 R/Count -12/First 749 0 R/Last 760 0 R/Title(9.3. MSRPC over Transact Named Pipe)/Dest[604 0 R/XYZ 0 481 0]/Prev 744 0 R/Next 761 0 R>>endobj
-749 0 obj<</Parent 748 0 R/Title(9.3.1. MSRPC Pipes)/Dest[604 0 R/XYZ 0 419 0]/Next 750 0 R>>endobj
-750 0 obj<</Parent 748 0 R/Title(9.3.2. Header)/Dest[606 0 R/XYZ 0 620 0]/Prev 749 0 R/Next 751 0 R>>endobj
-751 0 obj<</Parent 748 0 R/Title(9.3.3. Tail)/Dest[614 0 R/XYZ 0 584 0]/Prev 750 0 R/Next 752 0 R>>endobj
-752 0 obj<</Parent 748 0 R/Title(9.3.4. RPC Bind / Bind Ack)/Dest[614 0 R/XYZ 0 460 0]/Prev 751 0 R/Next 753 0 R>>endobj
-753 0 obj<</Parent 748 0 R/Title(9.3.5. NTLSA Transact Named Pipe)/Dest[616 0 R/XYZ 0 601 0]/Prev 752 0 R/Next 754 0 R>>endobj
-754 0 obj<</Parent 748 0 R/Title(9.3.6. LSA Open Policy)/Dest[616 0 R/XYZ 0 193 0]/Prev 753 0 R/Next 755 0 R>>endobj
-755 0 obj<</Parent 748 0 R/Title(9.3.7. LSA Query Info Policy)/Dest[618 0 R/XYZ 0 545 0]/Prev 754 0 R/Next 756 0 R>>endobj
-756 0 obj<</Parent 748 0 R/Title(9.3.8. LSA Enumerate Trusted Domains)/Dest[618 0 R/XYZ 0 198 0]/Prev 755 0 R/Next 757 0 R>>endobj
-757 0 obj<</Parent 748 0 R/Title(9.3.9. LSA Open Secret)/Dest[620 0 R/XYZ 0 639 0]/Prev 756 0 R/Next 758 0 R>>endobj
-758 0 obj<</Parent 748 0 R/Title(9.3.10. LSA Close)/Dest[620 0 R/XYZ 0 354 0]/Prev 757 0 R/Next 759 0 R>>endobj
-759 0 obj<</Parent 748 0 R/Title(9.3.11. LSA Lookup SIDS)/Dest[622 0 R/XYZ 0 786 0]/Prev 758 0 R/Next 760 0 R>>endobj
-760 0 obj<</Parent 748 0 R/Title(9.3.12. LSA Lookup Names)/Dest[622 0 R/XYZ 0 301 0]/Prev 759 0 R>>endobj
-761 0 obj<</Parent 740 0 R/Count -5/First 762 0 R/Last 766 0 R/Title(9.4. NETLOGON rpc Transact Named Pipe)/Dest[624 0 R/XYZ 0 465 0]/Prev 748 0 R/Next 767 0 R>>endobj
-762 0 obj<</Parent 761 0 R/Title(9.4.1. LSA Request Challenge)/Dest[626 0 R/XYZ 0 718 0]/Next 763 0 R>>endobj
-763 0 obj<</Parent 761 0 R/Title(9.4.2. LSA Authenticate 2)/Dest[626 0 R/XYZ 0 326 0]/Prev 762 0 R/Next 764 0 R>>endobj
-764 0 obj<</Parent 761 0 R/Title(9.4.3. LSA Server Password Set)/Dest[628 0 R/XYZ 0 584 0]/Prev 763 0 R/Next 765 0 R>>endobj
-765 0 obj<</Parent 761 0 R/Title(9.4.4. LSA SAM Logon)/Dest[628 0 R/XYZ 0 218 0]/Prev 764 0 R/Next 766 0 R>>endobj
-766 0 obj<</Parent 761 0 R/Title(9.4.5. LSA SAM Logoff)/Dest[630 0 R/XYZ 0 406 0]/Prev 765 0 R>>endobj
-767 0 obj<</Parent 740 0 R/Count -2/First 768 0 R/Last 769 0 R/Title(9.5. \\\\MAILSLOT\\NET\\NTLOGON)/Dest[632 0 R/XYZ 0 786 0]/Prev 761 0 R/Next 770 0 R>>endobj
-768 0 obj<</Parent 767 0 R/Title(9.5.1. Query for PDC)/Dest[632 0 R/XYZ 0 711 0]/Next 769 0 R>>endobj
-769 0 obj<</Parent 767 0 R/Title(9.5.2. SAM Logon)/Dest[634 0 R/XYZ 0 786 0]/Prev 768 0 R>>endobj
-770 0 obj<</Parent 740 0 R/Count -2/First 771 0 R/Last 772 0 R/Title(9.6. SRVSVC Transact Named Pipe)/Dest[636 0 R/XYZ 0 758 0]/Prev 767 0 R/Next 773 0 R>>endobj
-771 0 obj<</Parent 770 0 R/Title(9.6.1. Net Share Enum)/Dest[636 0 R/XYZ 0 630 0]/Next 772 0 R>>endobj
-772 0 obj<</Parent 770 0 R/Title(9.6.2. Net Server Get Info)/Dest[638 0 R/XYZ 0 786 0]/Prev 771 0 R>>endobj
-773 0 obj<</Parent 740 0 R/Count -3/First 774 0 R/Last 776 0 R/Title(9.7. Cryptographic side of NT Domain Authentication)/Dest[638 0 R/XYZ 0 486 0]/Prev 770 0 R/Next 777 0 R>>endobj
-774 0 obj<</Parent 773 0 R/Title(9.7.1. Definitions)/Dest[638 0 R/XYZ 0 466 0]/Next 775 0 R>>endobj
-775 0 obj<</Parent 773 0 R/Title(9.7.2. Protocol)/Dest[640 0 R/XYZ 0 786 0]/Prev 774 0 R/Next 776 0 R>>endobj
-776 0 obj<</Parent 773 0 R/Title(9.7.3. Comments)/Dest[640 0 R/XYZ 0 437 0]/Prev 775 0 R>>endobj
-777 0 obj<</Parent 740 0 R/Count -2/First 778 0 R/Last 779 0 R/Title(9.8. SIDs and RIDs)/Dest[640 0 R/XYZ 0 181 0]/Prev 773 0 R>>endobj
-778 0 obj<</Parent 777 0 R/Title(9.8.1. Well-known SIDs)/Dest[642 0 R/XYZ 0 686 0]/Next 779 0 R>>endobj
-779 0 obj<</Parent 777 0 R/Title(9.8.2. Well-known RIDS)/Dest[644 0 R/XYZ 0 718 0]/Prev 778 0 R>>endobj
-780 0 obj<</Parent 674 0 R/Count -5/First 781 0 R/Last 785 0 R/Title(Chapter 10. Samba Printing Internals)/Dest[648 0 R/XYZ 0 786 0]/Prev 740 0 R/Next 786 0 R>>endobj
-781 0 obj<</Parent 780 0 R/Title(10.1. Abstract)/Dest[648 0 R/XYZ 0 762 0]/Next 782 0 R>>endobj
-782 0 obj<</Parent 780 0 R/Title(10.2. Printing Interface to Various Back ends)/Dest[648 0 R/XYZ 0 674 0]/Prev 781 0 R/Next 783 0 R>>endobj
-783 0 obj<</Parent 780 0 R/Title(10.3. Print Queue TDB's)/Dest[648 0 R/XYZ 0 414 0]/Prev 782 0 R/Next 784 0 R>>endobj
-784 0 obj<</Parent 780 0 R/Title(10.4. ChangeID & Client Caching of Printer Information)/Dest[652 0 R/XYZ 0 745 0]/Prev 783 0 R/Next 785 0 R>>endobj
-785 0 obj<</Parent 780 0 R/Title(10.5. Windows NT/2K Printer Change Notify)/Dest[652 0 R/XYZ 0 683 0]/Prev 784 0 R>>endobj
-786 0 obj<</Parent 674 0 R/Count -1/First 787 0 R/Last 787 0 R/Title(Chapter 11. Samba WINS Internals)/Dest[658 0 R/XYZ 0 786 0]/Prev 780 0 R/Next 788 0 R>>endobj
-787 0 obj<</Parent 786 0 R/Title(11.1. WINS Failover)/Dest[658 0 R/XYZ 0 762 0]>>endobj
-788 0 obj<</Parent 674 0 R/Count -7/First 789 0 R/Last 800 0 R/Title(Chapter 12. The Upcoming SAM System)/Dest[660 0 R/XYZ 0 786 0]/Prev 786 0 R/Next 801 0 R>>endobj
-789 0 obj<</Parent 788 0 R/Title(12.1. Security in the 'new SAM')/Dest[660 0 R/XYZ 0 762 0]/Next 790 0 R>>endobj
-790 0 obj<</Parent 788 0 R/Title(12.2. Standalone from UNIX)/Dest[662 0 R/XYZ 0 692 0]/Prev 789 0 R/Next 791 0 R>>endobj
-791 0 obj<</Parent 788 0 R/Title(12.3. Handles and Races in the new SAM)/Dest[662 0 R/XYZ 0 551 0]/Prev 790 0 R/Next 792 0 R>>endobj
-792 0 obj<</Parent 788 0 R/Count -3/First 793 0 R/Last 795 0 R/Title(12.4. Layers)/Dest[662 0 R/XYZ 0 251 0]/Prev 791 0 R/Next 796 0 R>>endobj
-793 0 obj<</Parent 792 0 R/Title(12.4.1. Application)/Dest[662 0 R/XYZ 0 231 0]/Next 794 0 R>>endobj
-794 0 obj<</Parent 792 0 R/Title(12.4.2. SAM Interface)/Dest[664 0 R/XYZ 0 786 0]/Prev 793 0 R/Next 795 0 R>>endobj
-795 0 obj<</Parent 792 0 R/Title(12.4.3. SAM Modules)/Dest[664 0 R/XYZ 0 649 0]/Prev 794 0 R>>endobj
-796 0 obj<</Parent 788 0 R/Count -2/First 797 0 R/Last 798 0 R/Title(12.5. SAM Modules)/Dest[664 0 R/XYZ 0 537 0]/Prev 792 0 R/Next 799 0 R>>endobj
-797 0 obj<</Parent 796 0 R/Title(12.5.1. Special Module: sam_passdb)/Dest[664 0 R/XYZ 0 517 0]/Next 798 0 R>>endobj
-798 0 obj<</Parent 796 0 R/Title(12.5.2. sam_ads)/Dest[664 0 R/XYZ 0 419 0]/Prev 797 0 R>>endobj
-799 0 obj<</Parent 788 0 R/Title(12.6. Memory Management)/Dest[664 0 R/XYZ 0 281 0]/Prev 796 0 R/Next 800 0 R>>endobj
-800 0 obj<</Parent 788 0 R/Title(12.7. Testing)/Dest[666 0 R/XYZ 0 542 0]/Prev 799 0 R>>endobj
-801 0 obj<</Parent 674 0 R/Count -3/First 802 0 R/Last 804 0 R/Title(Chapter 13. LanMan and NT Password Encryption)/Dest[668 0 R/XYZ 0 786 0]/Prev 788 0 R>>endobj
-802 0 obj<</Parent 801 0 R/Title(13.1. Introduction)/Dest[668 0 R/XYZ 0 762 0]/Next 803 0 R>>endobj
-803 0 obj<</Parent 801 0 R/Title(13.2. How does it work?)/Dest[668 0 R/XYZ 0 621 0]/Prev 802 0 R/Next 804 0 R>>endobj
-804 0 obj<</Parent 801 0 R/Title(13.3. The smbpasswd file)/Dest[670 0 R/XYZ 0 771 0]/Prev 803 0 R>>endobj
-805 0 obj<</Type/Catalog/Pages 513 0 R/PageLayout/SinglePage/Outlines 674 0 R/OpenAction[524 0 R/XYZ null null 0]/PageMode/UseOutlines/PageLabels<</Nums[0<</P(title)>>1<</S/r>>5<</S/D/St 1/P()>>6<</S/D/St 2/P()>>9<</S/D/St 5/P()>>11<</S/D/St 7/P()>>13<</S/D/St 9/P()>>17<</S/D/St 13/P()>>19<</S/D/St 15/P()>>24<</S/D/St 20/P()>>27<</S/D/St 23/P()>>31<</S/D/St 27/P()>>33<</S/D/St 29/P()>>67<</S/D/St 63/P()>>72<</S/D/St 68/P()>>73<</S/D/St 69/P()>>77<</S/D/St 73/P()>>]>>>>endobj
+ôü½G<âk6žÝÎïò·a…HÒøåäz9/–Ëk|5Á:¿”K¿®Ïþ>ûD¤iªendstream
+endobj
+483 0 obj<</Type/Page/Parent 458 0 R/Contents 484 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 5 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+484 0 obj<</Filter/FlateDecode/Length 1221      >>stream
+x
VkoâFýž_q¿A$p0oP¶Ò>È)›UµÞªRˆ¢±=€[{Æõ!lÕÿÞsÇ6¯Ujˆž¹Ï3çÞ;^ùÔÁǧQ—zCŠ²«Ž7ÓáQ¬ðÒ¡A§ã¨?᷏ß>’–îÖÕÎ`èMʍ
ïÁôþ
C7wêv(XÂãp4¦ vûX‰šÁZ’Y(èÓìÃ÷ÏdvÆÊì:øýŠµüQ©Õîõ½.ôšrK_76ßXú¶SV¼–’}òýJ²;ò†,é;ÒKËp³Z%jE©^Ñ2I%%Aç…4RY“0ÓÒZ‡&lÌ÷ú½.µ»oŒo˜$úÉYaå[š¾{GU+™YÝÒ߬݁‚_FP‹»M'^ª¯ãâ–‹…jTÚV¾ÚÛÊNØ)7̨̿ÑjÐýì×Ù=5žt7¿ÇÒ´Awß>ó¯O0ބÈü
‹ëÆËÎëIi¢×¥4Ê]Î:˜ý”	”xÕè·kÄF9>–̂Œ-{E´…ˆ¬,É×(ÝļnA%·ìã àՑ½>ã_&
s,]Ò%•/2e«¼”IcÄJÒ¢)%8ӕ,ðíö
+¡°Óñ<¿³¸>7ì`uaÚF¬ÈòssåZ‰LÖ>‘–…Îh»N¢µóåH²f+­¤’…Éþe¶:3‰SXnTd­èÿ›tç^™sxªMˆ
+¤28äˆ2ïáUØC|.ˆ
+ÇóX?“D"Mw-ä
+%§‰wd*”A®|ÐMÚÝêÀÞ_¨ºLĒ69‡t‚•q.Û¨eô†¸é{ÄÀkÛï•õ?ÀøD‡‘;²'h-a½ ¡bbŠ{×j²Fæà×»ƒ˜Ag1
+w$Ø[\{«¹ª^ï«S=rJ´CÛĖtØsÊÅTÿ&o¥ŠRm8¢FþÖ¸ð«:¨Ý3瘃­=]ZÎôñiã|„¬ㄊ´Ôiª·%>µI yæ…š%Ê
ÆQ¤S­J'„uEÁ´;‘gà
¢­¥ÁnS¤Ñº«Âä Ï\–„õè“Ì¥ría“£$ØV¤³Ù-÷¶¯ç<;
+Ñc¸¥,š‰erìk6Μ=?×}óùDŠ
+ÍôæR†®Ò–6*yA³bâS’å©+·(FKIlÕM˜´ƒ®ÇíÙ;Ðc¸ŸEõ8²ÁôgÈB“.(Ó®Œ‡i‘d¢Ÿb)ê¹ç£«’~é
sêPx?ËB6ÀuF%_ÑÎ0í´›ÿ9âˆýÉd|ÓÁüît0˜v-òŸHeaìEÓEs8˜,®kqg(‡#áïAÚ0Ñô4²pÄàqGó½‰çOژ·"Í×<DqÔý;u¾+’ÕÚÒ{úA‘Ä+‰fƒàúm<Foø;òÞF¾ˆAÃÌE?ö.D?W‰MDšü`þ¬RŠ”Ù‹\x\±Ã›»ËÃîA[ôE¨_ø3}O‹±ˆófŠ¥	.=1U¯z‹SXœd(#±1lþœ¿õñ–ÎN+1	¿}žÓ\ÅhÛ®'"^©+‰b-jX2›<×·uIÇEQã\u`W"Ž7wãõ«7ôƸ¬U÷®7/tý1_/ûeoŸ°ÙYpõËÕ?29.endstream
+endobj
+485 0 obj<</Type/Page/Parent 458 0 R/Contents 486 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 5 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+486 0 obj<</Filter/FlateDecode/Length 1218      >>stream
+x
¥V]sÛ6|÷¯¸ñLÇrÆ¢I}’ûOìԓ¸N•æ¡êH‚#’`HÀŠþ}÷ÀIvÕ:­mÉ
îÝíí-ñõÌ#¿#ûåg®ã’?›;šÌ|áUIJ°0›Ñþ­Zá‹KÓÉØñÚ­ÞØ	º½.®Íùß®Œ'¾ãwðgº¿ÇóÝÍѦ£l¿p»àtQ@ÿ†¬®ïçä´HP—ïO-b»Ã¥E4X¬%½»»ýô~9X^Ò£ˆ*u¹ørv}?!ÏknŽ¤·ˆŸjI*!}tKηPZ“)¢µ(V2vµØȚôVQ)*‘K-«Ú!š¤U­ù>†Ëe]‹•¤L>ÉìŠ/q.
AáˆC×2REÜmU¼ãL%ˆªSUP$²Œ´j’“¡Yy¶ nÝiñF>	¼ÅZ苚š˜:-VÏ×’•Äº(H~y™IÚ®ÓhM¹ØÑZf%B‡©vè!¡2´U&‹i[¥Ú&~}ïҜÉóœÉxDÃXÇÄ-«´ÐÉr@ç‹5jǟ ê®~g¹,ίè<æÎiyùãq/†^`q‡Šk	b˜Deti4“Pë_,Å÷å×JÜ+zu’ÿ=OÎÚÖ
+5dÒ¡·èa+°BU¹È¨ãÚLøŠÖhÉ:%tµUÕæyç~VZ‚
m–ª'Ù·‘CÚ";ÎÍq'jiÉszläˆæèvÙ%‘mÅ®nêbvê¼uÊÜ]QÚÌǑ <$§UªH~5¨­Uë*S!¾=‰Ì´©}¼ûýîcÛ½>ßç¡…–¹,ì••Š€Ñ{!ó^-¯Çl4º
%Õ
+³¹fn³t#oٝ1áço>Ÿ]»Áõné߸îÍÔ»"÷Ϧ“ÑM7xˁ7š-/»ìá—<Œ@°n´¤Ù"öôRôw“Ø
üÞ¼¢J‚ž¨Bn1¥"–½1SÿæpB@Wl"S¸³—ËJ>¥ÊÀZé1»´[ŠÓ˜
+¥‰'n›ê5B]`d/ú¥Ÿ½cMsëKÁ­A¤J™ßs äÐ$	²lÌ{“ÌÔkl†V»gÑušË¦¸,-$#Ë"R¦€§²éŠ8v‹ˆU›i^êàeq`ÊXãJel5fÙJ¶,Ô)ÜîydQ–(ù¥¼Ç	Ùq3ý
úbàë‚>d&^a¦4mH`ø‚ÊLDÈQFÂàaÒóLkl	%²ÄeP¥/准N1\p݉»›ºÎ£›œ%+6y§è,»•ü&E»ìgÖ÷ÃENZd¸¸"ƒÑ¯{›gãŠpnŒD‘•Ô¦*/[uç‚üÐ:PyÊfÏ»íãèÄ ´øÖtÏ•‘ç'ñdV÷Ïƃ0ÔqÙ`Ül;
rÏ>töñþið>Có`Ìê¬q+·FHXâ6/¼É™à¾ðž*ê¬1žL©5 ¦õ+ñz×Mýd¿h_7ft~Oœ“î†Jÿ´ï(á_ò³=¬¤uq¡)7pKŒU{ì²OÑÎ%6vHáÙßø”Ævo3™·fí!ÐfŽ?Ÿã ì:ã‘=Aýööñö-½ã›*qª£÷&mÁÃn÷0pq
+âÃÖá¨÷gÌI0qghÞã¹ÌÕÝâì׳¿ä¼P›endstream
+endobj
+487 0 obj<</Type/Page/Parent 458 0 R/Contents 488 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 5 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+488 0 obj<</Filter/FlateDecode/Length 1264      >>stream
+x
•WýkãFý=Åppà€­èß)$Mî8Èіº¥.a%­d5Ò®o%åƒÒÿ½oV’-çÜØM°bI»ofgޛ™|;óÈůG3Ÿ‚)Eřë¸4/œ1ç3|÷ñ1’¼˜Ïiw1)n\šLæά[:v&ÝZ—ƳÀñÚ7ã)¾¶(.:Ý¥EOyëIƒ©ëø4ñg0ëïôg;=ƒä'hágóž“\ñ[¯·G¿^ž]|\7£e‚hM§gNË؞åe4X®%ÝÜ^ÿöéêæf5XÓ}¾üûÆäy;œžbßà³"ÇY•iE•¦
+»ò:Nå•:¯ûÏC£¤¢<S’6F‡¹,(–ed²PÆ$Bý(‡€àf%	Šr)ÔÅ!xÆn¸4òÄ
Æ÷ü,ØORòQJ¥’FT’aÖRÄÒ8ô¹¢§,ÏIl6RÅXøD•|®:¯£Ú©*xÖ)²,E*	hŠ²ä•]>e¢M!*
+ë$A8,‹Mõb½¤òEUâ™tbãqÀK,gŒR’R5þ•M{<§ÉƒKNƒçŒŸF>Rˆ¿ˆáÇZ[
ÈÒjðn¹†©ÖZ’™²²áwV+õŽÛÕùÈa¦ÿJ)#ðq¦o Zgf÷¦o`GQçôÌ:§6:®#Y?ÚÞb1¿pg
d>½tÝˉ7$÷OJ²\:ÑeR«ˆ	·L<ÀÞÉ$:QØ_Û?öÑŽ@4§êם>˜t§©›”Ý}½;An?A;-QZ	•`uµÞ͂4Zxê¨Õr	紁o$½¦²‚DÂ¼Ð*uèG­Êr
^f3ÒS›|Å&ó.Ha|_G(¥wŽÿ±¶nC“·Þç:ù}!ÊJšû¨€
+/©zÙHzÿÌ2#Å2y_JLY‡
+.ã†_<ió]oð€)=<˜VYÀ!¥¹ÙäcÎÈhô¡½o2êè_ï-ø꼕É[,æÄì¼–gš`B<Bë'Eu™©´S)2" ¦~…rAHtžë§òԈRÀb§£AíK’»UÆ΁êPüß¡<#-¯¢ø_uä{̽ü
ì@ôO;˜ˈ~îzxoeïŠÊ¬Èra†(èP„Ikæ/¤²Z@Ç0ZDk[H52(wrëd۔禼4ê3²ª*iij44Û
+:z¶í«k29ºLÎà9º7E ·üV‹¼ëN
oÛJqûõöŽE^3ƒõQ’d	¸a³a¥ 	Jç̖Dx‡)·ÉSéu¨Ÿô þ­Ž`F§# 'ÓèÎ?¯·xµ²ãÔöü{×£ìÄð¼É
+rL¡„ܝmËò§˜YÑÑ0	þP‚yEď“EÊ%œg-P¦ŒÖ²–zG½¨òh÷X²‘§,`F+pZs±fÇGæ0òÅÏ!¾Çív²ú]ׁ‡u( º™’€e$]*+=0aÛÑÊ⇒Û¶”a(|ÝàB >ì;àï¦Ì¶VZ|œÃ¢	µ €fTÓuµfÙ[˜ÆpR51å¶x¢ý ±ñqÞ¸Þ$p¦‹ÆcŒÐ¾ÍůW_®¯è†¥ªђ>Õh”M1ˆóêÑÌÅ\fÓ¶WÒw#ôsýlŠÿ=lØ=Þ}»<ûåì_^¿¨“endstream
+endobj
+489 0 obj<</Type/Page/Parent 458 0 R/Contents 490 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+490 0 obj<</Filter/FlateDecode/Length 823       >>stream
+x
…U]OÛ@|ϯØÇ 7NBA
ŠD+UuۗHèì;'G»Ôw&Í¿ïìÃ‡
Uˆ|Øç™Ý™Ù͟AJcü¥”Mh:§r;'c:˦x-2¼Nðß(ªÂÙ<Mïݘž“yÿÆe>øt}NiFy’ù"¥\ÆcÊËáWµ§ë֔^[ãNò‡xx¦˜Ë¡,Ö^ýõ«áê$ž™Q
+M€,‡ùF;ª: Ú5ÚxGR횶Ê9±VÄä-ùêîTºV´
+#igÓE}àîàj»^Ð£áte›­ðT´U¥š„òâ*ÀN“	³?·N9ô(-
+€‹fÝn•ñTkçé¡ÅK­«X`ÅýmhÉu¦ü-€“6»Ö
+}(‰(KtPë´Ysa½*]ˆ¸ÇšN‰ûÃiC;áЀ;ºÝ¥M趢ƒmA hyuùãæîç]¨‘/îu]£ [ ±C9Щ
++d«ðù(|¬÷…‡I4©x2:Mð1½‘Íÿ|†2lâ±C|;ûFû þk×7JH6ísx‡9ȱ±ž;)ÈñËµ³½6ñbÄd:vø*l#«íΠ:•ŠAltÞ5Eìèe[" rµ~'ô]1º¢Òn93¶÷
+xjÚZ4£Meƒ <ó(ãmHópÚ8Õ\´5#ÁÏl¨*HݨÒׄ <ŒH*1!£Š‹å2dõCßMW<ýþàB9AίËgWµ‰cš”¡&çÑm4>
+šu`ÑÞž‡Æx]“ö=E•)mk¼j¸£öµ6*¡_<-ŒÚ]¡r#Qâ›\á	yYÃJà‹?ÏO½Y0]¾zÄÏ3ÿÔñÓ¤°hY!a½Á(»w˜N&25ì—È
+”³h–=†j­áAT¢Ü ¦¿,z3ÊòE~Ü“2®jw˜ä/
•9±$õ–é~£AVÖJ”¹ëi¯ñˆ„U±è6yš-’ùù9MgYÜùß/¾\^`5>ªÚî؟›VËÐÅèxv”Ïyk¼ù™e³$›/ðó€»é„™®òÁ·Á?‹0µendstream
+endobj
+491 0 obj<</Type/Page/Parent 458 0 R/Contents 492 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 5 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>/Annots 251 0 R>>endobj
+492 0 obj<</Filter/FlateDecode/Length 1882      >>stream
+x
}WÛrã6}÷WteV³eS–íø2o3^;ë‡Ä³–6•Ýr•"A1pPåë÷4@èÂI¥¦Æ%^€î>}ÎiðëɌÎñoF7tyMe{r^œãÎîÏËO|‡®®¯ð·¥‹ËÛâr¸Ò4OÏ.oŠk<›ÝÍøÍxÅÏ>/N¦wtqN‹1®oniQÅ­q§œÜÛJ™ÍûÕJú ¬ñ¿cÅÍfiÅÙÅmq5“¹¥­íi#L `IT•¶’ü{.Ú¥ ¢(xñ9]\W¼äÙH²5…FR%z8TþÝS-J¾Ô9»r¢m¥#‚l»ô’¥SA¦µuCå©7•t>ÇÖCÌÙeJs-œ²½ç•¡´f-•QïeEË-ò±^Rk} Qµ–¤LLÉü.ËPТ‘xãpíFº´DoG
{éi9Q#u‡(ªÅ^ØX*dèÒæÖ±TZ…í)¡€ô“Pâxå±C¹Íp1²œ
+®lÙ·(6JëQì
2îÁî5AµÜä}Z‹´‘ÇÆ(ãºK9@"ÐPŽT‹~%(RK
…þn+Hò[üP?*aV’¼V«&hT¶f â4%Ñ~må솄G;8SOZ
+g°ƒXÚ>]ú²wãÇrü"x „ˆ=f‹4'w?ƒâ‰³Ÿ>Bd‘ÖόzÛ»RN•	Ò¡}÷Ӌ™ÿÎõx-ø¹v´‹peʖ
ùþÙFL½@8Šs´µÛ˜ùX:` iž9'µ`P¿öI£ÜÜ
~¶:Âp·ÔAqcfbliH ÛƂñIe=2qÒGÅðÁ÷KVÂ) ,eï+Ϟ¨ 6Z#ݚ{Í7%w™{ÎÔâF‹¥'/eˁ–:—µt¯Ck‰\	ý\xÆô©Ž6ÃlŠ}AÉi„„½:UŽË?¥€žÛ:œ}í-¿œ‹ö„]>¼ÍžÔ„Ð}œNõ7Wheúo…±™ÿ”2½2g€ÿ|‹ÍfSÔ¾.¬[MQ^7®$\å߂-‹&´Y®9ög0=@Ùq3*ì_hUÕGgå¢[a¶T©ø±
€GƒczÚ465*N-{”Ÿ
ÍA­Övݘzk&âíÛëŠ-›²—¥• ϽËô¨`¿Q ¯dàÉÄMÙ.£ë‰0†ÿËÞYí<T+ÀÝ£œ˜$CuoàUÖÀ5<¯0Ývïx¿íÄÎE7ðYBš˜+Á2k“
œ~—T‡å¨ôþéq>ÿü™ÝQ#cvdžLñ_Ûà™môÇJ…Erã}—½Ò`q+EωFüFq‡Z•Bë(=Òjé¸î\_ښ„H•YÛ÷Dû\Ê•›QÐ'˜{&ñŒI3WF±¿ö<H÷üAÍS.žJ­PõQMà¸Åú¾c“=M–œÂ¦QeCu¤²•4ÿåéSÄqq!ËÆ(”J/,zÌ5I¯:^{G\G?«ÒYÕÂÞòK{á/ÿ6}î@Æ¥µï»Á„–ÍyüCh¯F‘a€5lKoÇ"øW(òß2`¨qwè‰,ÅÑkwraToà¦	5º
UdBºÃ'’Jyðž(¿q
Îû‘¤K2˜`ÏࡘB!‘‚ANŸœ\c4öb•%+‡·âŠÎ0¥ò½Ygî%7ÿôøðöøòðp˜]í¤Ü¥¯í
<¢v;;1=ZÙÙh¬Ñ÷9‚Õäb&G®¬ù{ˆÌ^þ!]â8”í%húÿ÷ðòü6_¼üç~Ýààú<‹»»Ë…9ýåyþô[®.Ƽü«˜>¸²ÛƝñSƒ¯îŠµ|ûIÐz-p;ø×»8<ÔÖVa&V½ìÙ;ã
Äõ鄻«ûê¯rXIœð¦­YF :\î;ˆ‘»p.9*ôÇïƒà¤¤U©ø`sˆî0à…V5Ôm¥®¥NxÏFCÌNÁ¶ÏtŽÏaÊt|R2ØêuÂüÞÀ¤büƒ©Á¼‚.1(†¥€¼$ý­’µŠÇ®Ø&Y’ðz_@+qJäì­Å›†ç²IcGá8Âɯçoñ)ÀÝ
X{°\frCÙ~ýôvÿü忯ô2R‡Ó?È>Ílgȧ»Àq˜€)}ɧY¸tÛ#”¦Ž[ÀõÁO›Ø0TðÉÂÌ~ú•T=
+Ê_;QÑLŽ\ûÍŽË;|vA?pƒ§Ih:Åro5DÎý€èN›pYÈu|l܃5r»u¬Ë)Sêχuƒ˜À·VFÒÜ?ÏÒÓáj˜ö¸6~
S
+
iGPX¶p´oˆä‹fWVœÛéã%rîÀºîö¹g䒧äÇÃÙ{×h¢à]IÃg{ôn?´â’6ؐŠ¿‹fo
£Ä¿Ëîºøqo­ç)Áéãíð]p6»Ã󳫋ÔÔt_Ý\7×·É7g—ñaqòï“ÿT.Fendstream
+endobj
+493 0 obj<</Type/Page/Parent 458 0 R/Contents 494 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F8 9 0 R>>/XObject<<>>>>>>endobj
+494 0 obj<</Filter/FlateDecode/Length 1702      >>stream
+x
mWasÚ8ýž_±ßš¦à%Ü7BÒN皶7¡s_2“¶À:dÉ'Éî×ß[‡a:™&FÖî¾}ïíòïŐø7¤éˆ>O(-.ɀFãA2¡ñí”Ǐ“´º¸_\\ÓpH‹ŸÜNi‘δH/+/IšL	C^¬$"uÖÓ.—†*SŠt£ÌšžŸî=½\z)i¹ÒºLº$'a2R&Hg„öIfӗˆ*¼5±áã⟋
õ‡Ÿ“b^Ê­t{k$!¦§oxOó‰þp’ÜPsh8LˆŸÆ‡ýÑ$ó«?lôÛ¨Ôf’TQj•Š ¬ñdW”æÂy(G:š³­=I,¡gd_VZ¿^ÅÄËÊçõ¯'y¦Ö ÓðêƒãÛV•Ic¬¤­sGÍüThõ_üåL)£s¥<Xó!ð¾*$=šµV>'kô¾½óK»•Ç+Ѫìu i[¸=KbkUd9ce®m¨N™rëÚ*(ä" V¨œ¡L^«) æS
­Q¦|÷úËǘI§•M“ç M*˜C>ˆ¥Ò*ì©tv©eáÙ7©ÇÝšÞ>_ª©-÷N­óÀÌQ)Òñ©s2
=ÊjØÊd¥…SÙZ~ðdP WyË%e*cˆc1	}[ÑÞVœL'á0õ Âá3Ùû7(…Ó‰—©€êP¡•oÊã´
+y<ì$þóøÅgQ,}ýõ]fñ’äLÝ7çꞃ¾
+:BÓÄZòu³ÅìõþûOhmeiiÖèK™ª•Âõ,½>·ìÈÄöcԚ+“nȦ
.Od[aÂ!dȖu0¾v)ÐH­p¦aKËIhÂiÒýi¤é¹H–§è£¯aš=½ÎæóŸ¿,ÀW¥à·Š»«÷=>³'ŸÛJ£N$ßDÍ[%¨Ì–¯k’$y¹„Ã@æ'íäp€æ@“½?ƒSM:SJƒÐð¶[MCѺš4—醐Ä»ƒ¶Ù“Xe@	æš-{$ôNì={]|_~m^uDƒZ‰TFÊtØÙ¨K[ˆú-¨ÔÕz}Øÿ6é»sIŒ¾„•…9«ËÚß 3(jÕü
ãG_J뽂Š±"«Fƒn &üoD0ÖBÓè…4ÁÓ5]ÁH@‘1·çŸ>u>»®ir…Ít@ß×µ´:çX…8"ʳ±µò›ßݱ÷˜L¸¬GÞ¬fUmaQ̨Tš]0³QôÌ­2
+g¤::;~PFGÁ-)¬
+bûBýúÖ*¦†³e¸'ùVj°ƒ}9ÒâwԦÏÁ•NÃ{Žr@Q7JȄ
hƒÉ™:ŒA©úJàù$܆c¡-ѱR®ÐÌ>prM4 x;ÜáÞÕ@d‚D6ï£ÿA¥J7PcU„èÁ¾í×Ò !ž8Œž¬qÏF9£w3ðóL²?¥,#®òçì.¡_TH±#~7{¯·Â)"<'Žù7Þ(Z®&ô7…ÇÄ	’;ØÙÊÅiá±Ò0¿µ®‚Ìz˜}…Í*
ã¯í'[H†
+49mªb‰0à°|«WÌê­:ꣃ^ë<êµ)ŸÃåÝ,opa%5W Çh°OKlcìNK>Þê

 *¦–JòÄDŽõ†ä­(»Ã—
>'ÈÔC5âöæÞ]Ç·5É`ËÁdG" ¼$jÄ]ѓ¶Ð;NÇ0žú5}x–ÆÙrtåÄdéÅ}ï, €Ÿ˜;vmùÒ«µ
ãQ€g§Œ`Gðb.@
üf—*-n'aˆGÉÒmfjú¾ÀSC‹^ã5ë`1!Š
Ž…s¼_uÜ´rôn×¹%·L|0Ül )'WXD÷‡FîXmÐûNiÍ×#b;ãþIÍ%cÉ˲ø· a¹aQgè/VÉßïPr׌TlÉðù3·¶WÁ3°'tÛO
+øR§¸ÆñG‡…¦?¼ÃêÞoj^ÀÈ<¶£¸›Ç%6®qž¡P(Lúx¤GKБgíö쩅ØS.uÉôu2«ÒÆ<h¯Ì)‹Ä4Þ°ôáý†ŒÜðà|СTʌoÀ¦
˜£#cé€:€(¾;êp1wK%.ðUÉMo>ˆ®~B¨Ã7%ÞRÑx	~ýåöð]k8½M&Nã›imzϳ§û=À³4Lãèk…õ_ê7gûÓÁÓdncÂÏG øØx:N¦“[|ñã/c~ô¸¸øëâ+,†³endstream
+endobj
+495 0 obj<</Type/Page/Parent 458 0 R/Contents 496 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+496 0 obj<</Filter/FlateDecode/Length 1889      >>stream
+x
}WÛnÛF}÷Wüäm]l)}kœ5Ð&h-?0`,É¥¸5¹ËpIËúûž™åÍrZ4E"r9—sÎ\öÇɜ.ñߜÖZ^SRž\F—tµü­hµYãßü_kÊN>oO.n?ÑⒶ>¹^oh›Ž_âIrv¯ÊXѝmtmUá?lÿ‘ãóu8>[®¢>8»ÉU­œ¢ß”McwáèŠæóîèb]óÑmn<y4ÆYJµOjkOÉ`Áë†òÎ
+KÃ9)O¦¬
+]jD“/h‰TpšTì^4{½¤Ùâ™Âם¥&×T)ß30œÒ‹®¤ÒYî’ÿpÑ}¢¤GM^»v—»¶[‰K5íñ†l[j¼BèªÐÀó|Ùç&É)qÎ8ÜJՍIÚBÕä›øxjÜEV»’¾|¿ÇÁTWj§}D[¸v12% ÕäJÃáX‡¿ä2jtÁ8“ɺ¤{×jêŒaýÈvdêkçˆ\M­5¯ÃvŒcgìH‘5»¼)Ü—$"©M8‘¸
+™&?ò>I4QÄò¯§4À¸ÓVתv^GA+Ÿh*+Ᏹ°zOYkE/ªªpÒ|àö®~F2æY@ãa¨„A`L¨ÿ8°a¬7`6žÓ>exNû÷‹×ÄoʶhÌ,>4ºXâw€™Ç°CÇGؤ:3ðÅ9$ú£§ä*)	XðeA:™3CõÔÎ#b“x2doìV”ᡇUm^áämAe=ߝúÎ)'ÊŽÎ	É°Öz˜Hø³š	ÏûÒêCÉ\Q¸=b­ r£ßÃ\¶(<ëÈ6
+™}{øýwOú5ÑUCj¬4VqæœÙl~-7+t"T¯ê²
†Ò£±¦õ,6l¹¬ð9ÊE”F7='çä]Ç»÷²M÷ŽÅ?ƒ°nð-'ÉÏf ú°(b¨Â,ë­yQžö†ú×vâZxGfüžÌ}Ž¯®¥¶¤\*pî~¨ÁOӑlc
4NÙú/tµÙ
Ù¢ûäºÉÿ£«Q䙸ºF³.”»]¶+iö]wBÀÀ³0ŒƒàÈ-sOè[F*€,„¦Áålq56Ê[$¨_wöszØÞÎ6,f®´|´õÒAB“ŠSÞ Á‘= ë¥*Ã'¬ê‡›ûân.k/°:›4g÷qEð€
©(ˆN«¶E[Y›o"žg‹‘¶ùR†ßÀZ(G—Ö@••~·Yèé@‚‚¡‘†0YK{S#c€Áô‹¡‰RBß$…7p%•2&snòok‚í~ðî͜ś ¸>t@ƒÐ+¤þ„`ØëÄiÕúüihÆݨ’£Cƒ–OÇäeÀ)I
G0
Ç³‘ÔÇa…Þ$O¼ný[Ï^~^d6óÐb;?qØzdïXŽ¼]-•ŒK³wTrk
+9³äŽ
Œ€ÈÖ¦ºæ^‚R€/ù(„-j•O»4x’{é(SíH5
+ÓIQÌU^9ÀÒËÃc^B»òŒ«ˆÃ„ËZÁØǏû?>cÆ'ÏX”úõ`POza戻ѯ”h’ëäYŒe…Â2’
—Ò¾  Þ80miq×CHuè×8!’î >ÁªðŒA¡dDOØSL­ìál¨jdq½"Éz%¡†ðíãgÿ
)ð>=+
%`8ôˆþvíQ®%6$l«Žë"	BOŒç•³å)`Üþõôðíîæû—¯\x÷øùëýÍݝØÅ&v‹‡PÁDN/˜á#O…‰ñê‚ÍA
¬ˆ}­¸wU‚Š+ñ$úðõ‹ü[hcL%QÑűìxqâ×G.a·6
+ëGf E¸ÝaµaÂú~û0 ¥ƒâ­3åcàeÞ&~Áé‹ûþ9ê\žª
á\ϝ]¢ג&›_WàM²ùŽQ‘f•P„M³-cm;‘ú˜& nâßáÀ,±/QÂy›ßÏÁ#„–Ñ$KÈ¡Ïc_h±²¿°€$i<U!¯Ç³ÇŒlf««°ð¯Æö2¿Ú„ëǵ›Öz.T‘Ãµ«Ô’0Ð ¥òyP?žñʉfÜÈÎöQf‘ïGÓØ:%ŽI¹
í]n\—ZY/Ô%Êò8TÞC-hý0#T¸[xÜe·å…"¢ïYƒ!5(¦ŽXXÒUrõÒ-
rïáªf™qیѸHí¸å⏫ÑO¹êS‡}
q=žy­±îŠ#!W¾cŸÊ?‡êìÏâÉY˜b'4=UÜk’×O%óÑ]¯e€„?r)ôXµBƒÚ—ä§!̦•Vè+ދ±€¶•¬ÒضrÞu÷¸⊆ÁÞõ-L=ð&K”¬#.£Ãpê'ÑÕ¨žk™VÜŠj¶¼ß¦­ÑÂøâ։$LáRíLB§¸JžJ÷â	µ«’¶ä·s6\´†mì:ø¼¸Ýt—tÙËÐ<d©ùÉ͵^EëëMØåæWÌÊ×íɟ'ÿ«jendstream
+endobj
+497 0 obj<</Type/Page/Parent 458 0 R/Contents 498 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+498 0 obj<</Filter/FlateDecode/Length 639       >>stream
+x
µU_oÚ0çSœú2*5nœ„$<ÒuÝ&­ê6²=ñb’ñ³Z¾ý΅"A“­tLBä»óï_â_=>}8$
„1䋞Ï|ˆ“˜¥	ýè«Ê͂Ïé¶ea,n[ˆÒ¨}TXÚÖ::‚aGG&,jœa;\øípãà9Ú«¬wy
琕N¤8M +€„ò}Èò¾˜ÏaU(•[Y+VüDh”|cµT3ÃàºVo,äµZ¡¶p_¡‚¥0†ÁÖ`+\œg?zmB3‹~ÂÀÝ_ÞÓn%xÁ¼0"ž´z+r]
+¦k‹µ.P³jSÿ„Ó§Ž„8RuVI±A&×rŠ²BXlXJ…ÅÁ@Y…fW$(¡*|°¨Œ\á|í:ܜ±XL…@Ûò$¤móº@¶#A¸K¢æ…|Cáí÷ѧIڔËÚLÎ[À»m£ ´‡£
+ÂB]–-PÜK[9š²Dí. EÒ9s„òJh‘[’§È磁¬Ä¼A‚
 Æ>º¹^:û·¤²8û‚ñޜß©?B
+Ö+ýv0~½Î–OSՔìIŸÇ0•vrsií=T…$O¶2üÍA£]íA Hq²›ø;y]¤ëZ¹ (k$ÿÉn"L
8û6þp÷5;ë¦üñD”ÃÀQ}%ÑÎD:CÆÇ=»H:G¶¹;‘0ˆ'€ùŸ4ÜKõ˞©'Ù¥ñ%ß^Dú/âmϝgÓíIǓ”ÅÃ!ÄtäÑ«x<º½Á5Òk¿^¢6𾑺txO•^â]içñ%KâtsÄñØ5¿Ëz_z¿
 …¤endstream
+endobj
+499 0 obj<</Type/Page/Parent 458 0 R/Contents 500 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 5 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+500 0 obj<</Filter/FlateDecode/Length 955       >>stream
+x
µVMsÛ6½ûWìä${LFüI¹'¹mZÏÄ©k©=i¦’ „–UŒãß@´¥Hò$ד 
ì¾}ûvÁÏãPR”Pќý1%qâ‡g)Æ!þ§ÊNLð*;:NýøØDœ0pÄT4=±#ŠîÈ2ûÃE­ðlaäOã1†PÄ䏷—íÚ Ëž×1]/ÎÞ˜RÓ¢
I†Ai÷ŽiQŒæó?gçËQÞW—›¶»üÌêåùùâolŠ)Ü&/L±iÔqݑ^sêÖ­Ò´	åB/Ï©+ÉKª…Ö5÷¸,“$¤æ+®ˆij«
+›	èA赐æp#ÝZ£ðÜsÂÕwîŸ1{Qæ
`~ó°[¬ß
qõ:Œ÷†Ð'>Or©¸î•ttºÈ[0
n{¹%ó€ä\¬¾“ÚÓLÞ&ßå–Ö7Åf5ùîÛ$ù¿qhä¹/Í1yA„æ
A*CøXÃ:z÷Çü×ßîï^ Ý*øMB{5ñ‡
Ùþ€
+7ýÁ‹bWkgŸè–If*xʜÑìîæHcðCÄb-:êx¡E+©ä]¡DΝº«^Ú×Iî¨jØ?œíz¸¿û‘
+V×>YKBV­j˜µ¶f%åœKã{‡ú6×L˜¦“?ÿÂ!…\Ù
+rh‹¶„‰Ü ¨v]™nP¨l‹¾áR[/>ÝhÓÖúº$Ùj8üÊ]Ñ¢.K›lìŠ×hŵ`yÍ·ùÓÔpˆ^…ÜxáÄÏp7&®¿ØF,G舴Q…Ô—¦9Rù<lv^7Û÷œ	ÆmÿŠ5St±aŠ5—äJ¦Ù0¾P{SÊL.ÏØO7 L-Ú!ƒC®Ù,yeùE³.j ý²ÔwH,Úûüöš´b²c.ë¨
)«xÓj¿§+áÎà皫n2ì›Òf#±‹ˆáÜC‰Um]·ݕلÃܧVKߕ͵웚E;Í5 b°c'ç+ԙpŒ
GÎÁrødžñøTÜ6
'mZ!“ãÖÂCk.ÃÎ\þˆ¦oèe¨kQ¬Qæ´š#ƒ—{¸£#žv€¿àÉðM>âC–Ñ+äzӚc^
‡øÓÐ@2=9´f 1fž2“šqÊÿÊÐ3D냀F-0m@[üúa'#Nӏ¸Õµ•Ôõ©CðþC¶ýP
+&‘ŸL§”¤¸'#«ùìözF?ñϼn7°G¿ôè"ÎLšÙÕ^:FßÀÒS_bqûi‚oC«ÓÔlþyqöûÙ›Þ>	endstream
+endobj
+501 0 obj<</Type/Page/Parent 458 0 R/Contents 502 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+502 0 obj<</Filter/FlateDecode/Length 1568      >>stream
+x
•WÛnÛF}÷WüR°IVtɛÒ6…$Hc¡EÁ’\Z›»*—´¢|}Ï셢ÕmÄ ¤½œ9sæÌð¯‹	ñoB‹)ÝÎ)«.ÆɘnW+ü-ø;ÅÿZRáàoß¿Þ\¼x3£É„6Ÿ1_.h“Ώi“]e¢,?‰z¸z¸¦ªµ
å_™L4’š­²TÉÊԇäzóùbL£Ém2Å
Wu.ñŠíŒÒ¬©1½û­Ê¶´WeI©$+þÙ­ä‡f+
ºik-sâsÚà+†‚ƒLáž"¨Á½ÿq„H#ÆeB¼{4}I£ÛU2gܸÈJàŒQìD-*	ø–<äƒiÉ´[ØJßÒn©©sûTMb·“ج3tgQ
+ú¾¼â«Aøh:Of|óZS«­zä 'sJUƒ|Ä©ëw¤Û*•uBÝš¶Ì=oœ‚'Q¶t6[º¿ÿmý–“•Ð冴iè‹6û
Mû­ô!"X²uAçÒfµJeîòÙ'kâÉ}}Äëûïîþ$ÛÔJ?Bn7?ØYå@ŠVg2š„ņBq¼Ã·ë÷ôNh˜]bzzÊMÖVR7‚·z=ª†;ZoBŠÀ_neýê4ò‡Y2U¥Ä)áSŒ§TXhw;£ñ)ßüDȕЭ(oϼåz"²¿– ´¸¦#5æ|z$5
+2x–Tw
à·8)ô²ì$‰jŠ•Ó]†:ίn7Eù¯5ãÜë6F×åŠkïæùŒ1WO’†í…3°tyï²sIB3÷Îð¤tV¶y”ÏeûV>Éò²²‹)Æ0;†9}¦Ž<YêI¨o®<ÓCƒo`,œÁ´-
+gÏjQ!Po-3‰}¼bdäõS‹Ÿrš"›Ð‡ZÚ¶)„à,3Ô/’ÅZH”©­ò:ÓM¨/énáàNvÌA¹ó
+®×HÃË#3ÿEZ¶M;QE³ën?jŠî
+HNWC3åáƅ6Äé}Ë¯ o²6TJýØl¿ËãÜ£Z1e&wÊJ…âO2å^¬ëþoìž`ó
ãîia¨Y	F•Hø
ëQ…O”Ï÷øÞ¬ëM¸–|ñfEu†;ºxÏþ躔÷_¿(¶R,šr'å†ÒÑ×S2=\ùΘ³ºÒÕ®®cCAéZJ¯™ 3ýŸÎ៧Ò^ô}KûÁlŽèóÒÃ
+‘sp£ž{ñÅVã~í5Öó½BäŸ1?°‰×jdYzL¢2-¾
plô¡®Æ|iùö‡ìø#£«3ŒÆA	¹8BÕDàôZXÅÞæäËçå(ÕÎ
+l#ê&úÂ)†³ª	³Þ(zyC‡„[Ðrv´x6@˜€¦°	¢
¸Û´©Ñ?°²¨MÅkÑ%$q⠓r~›dm
¯bÔ»Fˆ3U0¹®£CôúÑËi²tc	¤Á¹	îè‡þ$KɹìrÔÙ_ÏG"gF\=ŠÒòœg­JK6?9Ê͐â0ÊÌ]ª‚-—<^ìݺ;z(¾ÐéN¬äwfød”õÛíM¨;?|BŒ²Žý±?s(×)А-vp¶÷²	5„H¹qâAÎyüV7W08i&%äpR{¨¬çºóz½ôC·ˆ›ñÃõ¥Ë{LÙe¬DçG¡
+í(žƒþrzʔO‰i‰g/B¥sÔwƽOz#†¥A`ƒ’‰ié{+íq»³`ˆ˜ŸÓV.Œ€LžÔ”cÃA×u’¯æ`ƒ»SYÌ@X|Ž³PN¬°“ìéÒ£€zoÜ{„ÊÙê|ɽf€Ûh@ÿ̽ºtsT¡¾~ʶ¢þ´kj÷J…ªíz[&4çËŎÀ|iìÚs6@”NÝÏ÷ÕOܳyŸ!ïx•Û"
®Æ¶nÜBÛ4^k!ëaÄ|:Î8mªš'Ðâý<®]ȇ×mB)H͓k¹ìNðë’^Š×Í}ž_¼Y†wÕÉb™ÌW+šÏ'þó~ýîõš~â‘Ñìøí—VåN­£¸v´¯ØÓ>Úöl1Kó%:;~œ,ùþŸ7¿^ü
Ù¦öcendstream
+endobj
+503 0 obj<</Type/Page/Parent 458 0 R/Contents 504 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+504 0 obj<</Filter/FlateDecode/Length 546       >>stream
+x
•TMo›@½ó+æè ,Æ|äbÙNSEr#U¡ê%—³Þuw—¸É¯ï,¶œPT)2ÚµgÞ{óñüÛcÒà `ž@µ÷ „8‹ƒˆÞ)#úh„Æ[Þõ],…¢¡”$cPÔ@áaE5Û¨¡j¹æ•E
–—^¿('F¡.ÇÒ ¡¬ÙµåBBÍ-cu_Ù^£
NL5šJ‹k(_`\P
¬7÷÷¯.VȝJI@g:¾'6
- l;H b6§‚ˆøŸà§êö£$ˆÝï?ƒ}9 q[„NXÛ¡²\B/ØIÒ%¤Åj—ëSiT~=c
¸;]/\„U©^Z§ßôå»:­¨ZhTשã&šÂÜL£zýiIó)֚°†ÊžfGa[P+”äÝY'þ9Ð•È
XÍEç<´j±Ö<]äÆSŠ×‘\Õ4-XEß>üØnvc/$·Äqšåo1Åëþƒ'•ôOÐZ8·J#¬dŠUñMÒ°}çNœõé¤S
å6„< È9´Øng®²oÔËår$4›bl¡C¹£
‘Gܼ|+Ÿbµ û}Irh/XB6J﹛>ðg´³ëEX,Î[žð®ï²³‰Ù"XžCÄ¿<®¾­Wp‹ÏØ©j_{Q¦óYš	Eúi˜žùôí"Nã M²3aîZó¥ð¾{
lÝ^Nendstream
+endobj
+505 0 obj<</Type/Page/Parent 458 0 R/Contents 506 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 5 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+506 0 obj<</Filter/FlateDecode/Length 1286      >>stream
+x
VMoã6½çWЃm`¥ø+¶³Åvƒ] ‡5ÐCu¡eÚf#‘^‘Nâýõûf(YþÚ´	âØ9óæ͛G~»P¿ši4¡¼¼é§}ݏÓ!gS¼â¯Ò´’ÃQÿڃٌúióR­ñ¡O³ûô¾	1NïÚ£I:­Fx+Á¿Ì9> ^æöñž†}š¯€p2Ñ|)ÏñMޝo4ùr‘æήhe
+ݛÿ{ÃÓ¸!q
óe÷I¿™\ôÙªbÇ4Ô‡Ót¿(Ï‹ý
+ˆÎAÉxÚV.×Þë%9KŠ
+c5-öõlñ)
ªP\‰ÛUö[íÉ­dG0äa¥s·¶æ;B!r0”>% A5RÅH¿ëŠ²îVUªôižõ>òb´(NÒ±À-”}®S$ôXžÀFPÆ»ØbO¯´ßª\§¼=AÍ`o٤ğññüÁ•¥¶á,àB¯•x¯&lHã¸y]š$w(qüyëvvIÞ¬-@w~íð·_:Yï4ïð2ï_:a6Z-šéõÔÔs–^!ÛV[òßvLö¢Rù³œñŸ‹T£ËT0™:üw–=9©3ß`GŽ
)r É´Ô+µ+"IÒæ4ë;ŽY“á]Û(Þ¸2•^a£ì²€
+ô[^ì¼yÑhUTkà÷0ߘu˜
®RG…
+\
+ÇMFՁt¤*Ÿ+k‘lå*~r,¡„ö-ˆ‘ÉxO"	µ^n¸ÒÛã
/ªØ¥¨[tN–£„J£ˆƒ{Ös¨dƒ“é”Áˆ½t"œ¬[à
¾.yZÒs¨Ê)bàœq´4/fÉU®DR°Q
è
+D§¡·BÔý‘:Ÿ:¢iñ"›S2ęü+Ó·¢¿³ÇÉnO‡‡°]À6iAúKRžàAtž‡AžÙ–ËLgݬG«”u½Ö”³²îè!ëá!¦·[Ån¬~áRñ e™Å(±£QóàD¨LÐBçj‡™@ ̳2Q”¤Á/,»ÆQ…£c­qÄsqkS:¢U‘ÔEðKŽÓN?Gç=µ“+6ÖšÛÝjDÔJ¥Ú7IÆbxà³ÇySúæ[Ï$ö<æÏûÁú™jrWn1“|4@•0EtgF¬áÀê
rcóGƒÒxù×41À!y[†è—ÅòÌ]}ÑÕBS
+L!,¶›Ý„媪ŒZkè'ì*{Ž½±6»^¡ëDyØ-‡-¶Ò¥{ÑˋŽÜµ©á	ÎÒgæC¥ŒÌÁ™€]G‹c{Ҏå!‡œPµ‘¶S&.qmΞ 6zÀÁgìt8©ôʸ=9€ó§§Í©JX·^T²Ð|€¤y óÊy|
ß7[´7®‚1ðԊ_à ò…ò›Ÿ±IÎ2>¦ä¬!6ˆ¹¥ÑàŦi!G;ƒƒÄÚSY‚Û4Œ­ÇMáhɺÖÙ¤¥3|P`«ã³òaÐ
+N‘Ñ(:”$·!{Õ?Þê“ðÕ`nÀ{ð:Þ¡8¿³¹
+ΪåúÀCïªª¹güìÐKéÐô›*A¸\|nûtÏf£
AÁ]:ø(Õ?RCÔOGőñ¡bifYÓ\W7:nìI[„ïVII“{*ØÁÝ®`O„°;7GéÿAɽhVß]@#\µû#®‡MöâV<žŽÓéWt^1ì3Èßæ7Þü¡´²endstream
+endobj
+507 0 obj<</Type/Page/Parent 458 0 R/Contents 508 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 5 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+508 0 obj<</Filter/FlateDecode/Length 1074      >>stream
+x
µV[oâF~çWœ7’¼¾€
ÛM¤¤MªJÙ¬VK+UK3€ÛC=&l¶êßïÌxd7©*(ÆñœËw¾sóߝ€||JBŠbJ‹Žïù‡‘7 Á(Á}ˆ¿JÒ£í.Õÿø4‡^ЈFC/r²>
’À7'Aä%»“h̆­ùChÀ‚öäP'Œco؜„Ü6˜Ðw`÷O˜ç7—m0Ž¼‘³ò|`£ kãÖø»˜0?¿¹PÐd
"ãQB“¹qìÓ$=ºQµ¤z%j\$L6“ÝKÒk‘JM•çj›•K>§­ªæÔÕu…Ý\®+©eY»sU6Š4“õVʲ&QBsŠO÷xòWǧ>è
å(+éZ­)ÏJÙ£u¾ÑæÑBm*‚‡Tʹó`l³zÕ¥FSËTÁ8+{4=úSêýÖ-(U›²¬œ§¨3UzÓãB#1€p
Uˆ³ôƈPº•HkYiÃH¶,U%ç¤Jšå¢¼3Îp·–9’¸U)
+øÑMVòÁ螨28y4‚RË2û
+›"AÎØ\Ãy!áÝúñXùÍ՘ å$ö£`øÏûÀ?n²êN[…]Öû!gÝ%n³*¿ˆbË·Vç1{€õ(¤>:g„_(Ró1À¨8:¥Ê{‘oxS4ºXыNù‡9rá
÷M´|߁I(€
³Tdóy.­r¦é¤Tõ	Ò T 1{iB)¦b£%e5At‘Uºf‡©¨U)ê&5h²‡ê֛œužçæ5œ8þþCĚIþºÕU¹R;(‘ÿ-ÀO­Ë§³)œÌ+²ˆ`UHýBõ½–á@†k¸~=žh½¶	WR̛îë™ÊHs¥yÍ0îd1Ó½íN9!(%Aš+Ð³E†ªbÙv†ôLSóüDIÕ<&øžç•ë7
+55“ÆV ‹¼P})>·ØÉöç--E5KùㆴœZQô²é`[çO7ï†
+̠Þo		 ÜPã‰që‚Ý™ÝÀQ‡µÀ’°“K˜'šÿÓ¦ø—C¤ˆaâÅ|̳AG³.fR´@ãc` _vü½TvDïXçÌEÿoOO‰þ¡wM`gô/]~¸ú.²Ý¹S6Šî1Ùú:cK†‚vÖÃà“ÆZ-‹¢û¹K7çï/	•ø½Îc³VÇʟvéóëß/éæúHG7Ølè¾:KEž?p€¼BŠ’—³¨Y/d}·CEKpÞ¡ÍšðUVŠ0«
+lOW Øμ7aÌ5:g†]Y2•è¬­¤»Rn—é±$}¼¾àue~xd!š7š`yñxLq2òÃȔÈùû‹súEÞË\­yƒÿºA²Z?€K÷‹®YüOìÏA2ð’o”,¬9é|ì|ó,þendstream
+endobj
+509 0 obj<</Type/Page/Parent 458 0 R/Contents 510 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+510 0 obj<</Filter/FlateDecode/Length 562       >>stream
+x
mSÁRÛ0¼ç+öF`ˆ°c‡CÉz
f:¸œrQd9QkKÁ’¡é×÷=% Lflé½Ý}ûÖO£	ýR”¦T7JD‚"›Šù¬¤çŒþ½F/./S1û|±¨F79ÒUà ŬDUƒ€’•Ïáµ
+ÆYNÖî|;ßh:íѸ¶u/ºÆj‡?ºwp=:Gä[ÙËN*iÕ^œV?Gâ#øzœ	ð;½NÒ©ÈøèÈx@&bSkLcöðÒÂmµ5vU/Õ/ m
¢èŒ•a_6ªuþ]•@µÑL—Ù´å"j¹Ÿß]y<¸ÿ0ú›äW‰Ó£ê¬ ³£ês²]µy&á5Œ
Ž‹,Tâq~ûã:ÊÁYczПÙ›5
g#;ÛE7hÿI7ˋ€MïºXþ3>²‚–HXýQՆ@ïd9¾¿Åœ,—ödyúϤù~ҋ›+¤4gƒIv‰Iž‹"½rCØ/ØÅ
+Y"3ŽÒ˜<璸
+WÎ6fÆ´šUJ¬LÀ`Ϙ;7@Rt^y×êßçØI¥Î©Ò;{”À…
ßEmÒÊvçÍgŸ–c¯¤å¬,OcJ^¥0þV÷ë»}`âþhGÙšdQEë(Ü5ž‘´+J¹JŠèœ:*ߏ=;|Bi9Å»uÆÃün1ÇWý¬[
+mïñm PpÓäµvR&Wÿ·3/sQ³Ã·’q×u5ú>ú
%2âendstream
+endobj
+511 0 obj<</Type/Page/Parent 458 0 R/Contents 512 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+512 0 obj<</Filter/FlateDecode/Length 1691      >>stream
+x
}WÛnÛF|÷W(êŽâ[lh4Ahë´vп¬È¥´1Éew—’õ÷9äJ
+ãq›Ü=—™9þ{t&§øw&×çrq%Est:?•·Woç7rysßÏñ?X©ôř>š¼x÷pôæö'9?•‡
+¶®®oä¡Ø9œâøO›Þ}¼»׊‘Ï­{–|¨ËW_ôÚÙõpíõÅåü?¶)ø²/’óípèRÎÎÆCç×ó+zX¹(ø1W>$)}Ñ7¶M’VÙX·°Q¢o¬ø
+-ŽÇôDáÛ*xœ7rÿÇ;qMW[Þ7ô*øé艘Vã<•×gCt+¿‘{Ó,Œ¾ƒµK+Zoæò°²[iÌVV¶î¤³6e³òb€_íý“k—‚èhúç׿~zH’
0ÌÂÕ.mçÌÎίæ—
+E’àR²­$?˜ö=ãƵˆ@é RÒ¼Ê9ð<!ßÖÒuöBÆ¡WŸ£
­ilüîV
ë‚O¾ðµ¬Ÿoë-BŠÑJ?Ú ËÂvi.LÀ{œoEy<Ž}±\~÷÷‡pæãO¿¾|k+­ÿÆ2±4u
k€yÕp8)jJ_Eô0lº$Š7iÖ,¨}<îLH®èk
¸JÏÁyÄBº	åBL²6µ+!òº¤PnÀamÔR-€h‹œn©à…‰¶„D|ߖ;o:ãƇdÂÓ\~SÕÈÂ?Sð}]ÍrÌi‚ébk·£Š²dc¿ˆÉ´ ¥@±©Æs&Z!‘5„2É	ùv7ÄMd(i|L`´1­«lÀ.E[W"EŠƒTø˜?S5³¸Ò*°k[ÏðjÌ¿ñ¥eáÅÌ«¥­L_§I
+<G±ð„©Ár‹$ÎŒj“ú«€²‡8¶RùP NQ¯ªÖÃXü•¢²ùýO¼«Øk Ùñ6HӜN¶ÃcÍï EªŽI ­D—lœ¢ùña@c¤­¦°DªÌ`WZ°Ís³hcd¿Š6õÝl§üY@¢¥Ç%¨d’L컎劂(
+ßtˆ‘ú͂Ó6–#€“6çð=Aô½âÙGÞÒ(R°ˆyh0ALü¢•ŠúvšË×þ²²¢¶gÚUÔÇZBK[¶Ûü‚]Š]Cd[À|â´tUeé@|É>§xqš
µ˜m¥µ Ù-¡¿´ðôO* 
dþI×cM³Õ°1m$;âxÅ·t5¦Ã$JJ#—ÊVfµ_.ññù™žD²Ç‰5&€©åז~©eϧ%ºE_eYåJgX{0´Fÿ[)VlÏêx$K+]|X›^6œQÎwl¥0[”dòI%ºz'R‹ÄêÓ/‘2Êw|$e ´9
+4¹ÓãPfý„Æ
º)ÉØ;SCÄIöÏrèšöA/"ÑãN°ÁœFÃ+1۬䇀!9qží1́PúÚ
2ÜSĆ!ª‘¯½£XAjÖúPA½+˜ZÈΗCÌ 	Ó± *ÇJ_L›Æ|ñ:5w©1žD;ÚÁÅ¢îÑ4wÑ7¦ƒø°ŠØö¾’¸Å҃MG_€±$,_5–@²¯û¹±+Ê҂äqö¯](ؼšÃHD«ùñØb¸"¤Ò‘ô(hí ±±z~Áôâèuÿâsë°sÝmZìF+×1Ê7·/®”_Óè悸ÊÉz’WŽQ%Ñhœm}äÛÙ\ö…-îߔžoüfhÎ"™eU(ÖCì3'd¶2E:áfƒJàªDäy6†òŠ3½/Gèhýd¥ï¸aÑ
ºéÀ.Æ#¦2™¥¡ÜKûl¸ær`¡­k.¾ãâ¦>)ÒapkQéî«Ðóí„nxÇr‚%„›©5X
+tâ0ìR.^™T…‘>õ°qˆ3ÓFôdä¬Åš9¬ôh·l¼±Áv¾,Wö[ážùÐ«<’kìã1´‚``•‚ÝB”ᱚö
H
&Ü9¸Š-x>PØ&÷¯àk’þ$÷
ÝÝN¬Á^ǯÂŒi 6¯_Ú³è|¬àF°¨†4Ƶ3O\÷»D+ãj퀚”˜úª¢t+)±HaÕò~•…ÞÁ–­
hL¥vOX"ódg
tŽù7
+N¼ë¾œ¦Ür•”›7·7û´‹Óá;é;_}—×—óë«|*âCîü‚>><ýuôŠ«ã9endstream
+endobj
+513 0 obj<</Type/Page/Parent 458 0 R/Contents 514 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+514 0 obj<</Filter/FlateDecode/Length 1794      >>stream
+x
}W]Oã8}çW\ñ²ÌªZªa(+$>f¡³h$¤•›8g;c;-ý÷{®”n†]!Míûqî¹çÞü<Ñ)~F4Óٔ²êàtxJÓéþNÎgø;Ư“TÄ/&ã‹áä£/F£épÚÿâjqpr3¡ÑˆœLÏg´È	NOi‘-J	ÿ^®¥šjë½Zj<°º	ÊOÁR(•§ÚY|Q
H™L7¹2+j¼tFT’*Q×x0 ar*¬Ëø[A¾–™*Töiñýà”ŽGgÃ1üí®á$Õ•5Z8ò%BñC>}rsA#ËQŸM2î}Þo¬Ë}:ñž×ñx†Üqâ^˜-=ß_Q¦•4ÁSS×ÒeÂKøi/ÓRÂ/§lb¡”Րn©kIƒʥ M¹EÖrKyÊLX> 3½í%ôR¼ŒÎ +ßý‘5zKªˆp& écHÀ5ØÌjZ9)à…¡ÏOó/w_Ÿ¨Dϛ]®•m<[
0e~ô½ñ!:ÈE„ÌݖœE
ähDˆEF%—åŠ×ñ4áúÕ¨·=|˜2 äUPk9¤gàRÄzS Y©7™§SïÀFÀø¶2àté»zÕRà–2[KÚ¨P"LÀ²Ü’Ä Ðx†‡‘<ì<Kõ!ٚ™‰©¬„-Äã)f®²ÝRö1+
+T/ße™\6ub7Ȑ˜Š¦©–po‹”]†b¬¤¨Šà>Š*µ«ç8)´¶›½ Á*v®…V¨'³VÍccê•ÈJTŽ^Â¶V.oÑL/Ê<,ÀZfÐ맏õ ¡u°Ì¸í`“&sۄY%Cis.aÎéìµÊl¸²ðm®2@èŒôÒÚ3‰bß«ÌYo‹@Ftè.–"êљ@‡ùrŸ‡µLùHþlàu‡´`*TR°ú žžïÈzúý¯ùÓ·ßIUœ°0ڂø¾
ýv9$RøjC€2)([fM€Û–]{ÊÐÅßܳ=¯hÎ\°26ÆÇY$‡æìSB+²¦B©¢ó‡ÏOß¾,n†
	²ÖU¬;¹„{ý?2wg3ýï‹÷Näp¥ÓpTkOb
‹1¸Æä ¯ ëÇç&gÖI³VÎŽ,Ê@Õ mz§ÓP0¼AMHBG±N¶÷ª"⁖Œà©V?djÁ×O”•Ö¦æµ‘EG‰ráP‚Ìýz„cK¨2˜ÈÚóïlB_ðPcŸùÚ›¸æøÒÙµâh©Bt§mè£J|çA“æ‹o$Hn}´å£-£j	:³¤Ô@ûVFæˆÔ±)Êdç½õL7 Ë&âÛãM²2 •Z3åâ4€›Qt³³v„Æ@þÑêwóñûCb`°u¼Œ½Ô2ƒ«ÑJìéžoæ¬át	ò%ÖíIÿÂ÷+xaAx:P­V[,=k,ÇÑâ“\*ƒpR*Qº±8[;…<b°¾TÌÔѽ༔U¬`€Áƒo(`Àš.R,šÀ
Éó¬’X)$¶ßQ!Gy·˜é$ò|B@û#¥?ÚÜú,¹œÚ[t°Œó´”£¥°âbGҜr!+ފxÌ!*xnV+È3ÀËôZùôZ­Ê€}á\Û,jã ûÂb¬«¢Ä¯,Â0 1Q Ñ‡m£í·ðRƑG…ܤÀà`å°dÉ^nMªNKÕ贏}à’²¾—Í
+[Oœyñ3_¶ù³Aèž
+g+€âO6­–t{OðJëȉ„	¨]Ë ßú€Òö1Fê¨ԗ+öKCbÌÛ8»€5–¬¬#÷aLXÑA(R ô©;wý]óC£µIÛ	§s»ÝÎ@!ÐPi¿‚³µP©¹âF`¦ÄdÑ0±©#»Uhž8؊C»¬|ØUô†!ôà/–«4Öø	›„(Æp7.K«@¬{XS}TEÚà²-z^w‚ƒûÖ´©gsU0.õzg:mqdµŠúá>~-Ñ÷6—ÿ½¿0ÐboÏÀò†)Gq#gàžA¨vÝ«Àaζ+Ø>d(ÐÞØ2p$cüøv$6j§úe=ºž?|ûûáña> øïÓüòºý÷åévÑ=¾¼»kŸÞ|¾ŠmOc~BøÓV¸Eñ~YBD–ÞŽ|i]
+úÃ;^bé>c6%ï¤-k¸C»ðwJÁ/PLŒÈç]¬¬†)ç^q÷Dàä›à
9`˸‰€¬ãJÄp¿»dœy‘a^´‘Xb«žÜœ·/Š£Ùùpzq×Åö…íùòþ꒮yû†=çéoI×qwöxvzñË;Úd6Φçx‡Ã»ÙxÂ拃?þ
€ëòyendstream
+endobj
+515 0 obj<</Type/Page/Parent 458 0 R/Contents 516 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+516 0 obj<</Filter/FlateDecode/Length 1885      >>stream
+x
}WMsÛ8½çW`|i:»¶óáä²3éGvö4¸ÓK.´DYl(R©8Þ_¿ d»JºÓvšP$
<<<€¿Žf4ş-ætzAYu4LéâôbrAg—ü<Ç¿FS!Χ—o˜Ÿ½ñáãòèÃÍÍf´,`äârA˜``:¥evüݙ*U çIÿjͳ²ÚEüwZz2Umuŋ±4TµRÔH›XꆬϞ¨0++tNÞa+¼•%ã|®I¹üýòçєƳÓÉ×VeØk)
+ºVŠ:]•›FgÑ7[ò
,Uƒ•®xiçê„¡ØKKe¶­Âö
»™w¡­àkÝøL‡`ܚw‰·À8ø¶Áò‰Dð¦Ùȳ
+Ñnq“.4ûÈ÷`9¶!¯¶”ëBµ6RÐàjж!ê
+‡J)´uí›H&Nø쇛+š!_œ¸ñéÙ䌁[6ªÎ=ÎÿçsH»öéÏàv]ÓÃíG‹‘ŽL9jZGd‹ÏºQ–Z“‡>WÞÁäQGäœÓ\ªºÖ.ЦԜ!ä»!@çøê)n|ʌ¸pW1‘›‚
gø SÀ[¸”ùZ''„K̒–	ˆMð‰œÖp	·ܒ•ÉC¾,á½ìe—¶	}uxƒ¯ÒuHîãqhq
xýðéëã{œFLø^Sí
ÊÊê.ÒJ+Ä)ðq9)ìna›™5΂±1YDjá¢Z‘,Nš\RDæ)aw̖û·¾•T(<­5W”¦Q슳#P8µFõ ÃßØU
¤Ð½ÅOȓæë4Ý\“]¹ŽÊØðgÆÜ3¥\[­tógÂ,aJs˜ŠóüŒ˜™8âv‚@¸’88­TšuI£ÖՍy6>Ã{aog
+Iøk™
ü\{€Ý9I¾\oý†Fº¯Ë\Ôètê!&úåƍGz™q¨åÞEÝD_„ÙÖÀ´5(>Ç€Xój&¤pÄ!SzëC¤ûOÞq¥õí‰÷£ø‘”å‡qwK€{v©ð–£By–Ù¨í–ÃÔT)3äwÖZ@#Täô;WƃÒ\]€°‹¢ÍëÉìt1¡;|¤_­†r6w0Ðp¯X\EîÒ
_œY¢V8	-Py¨š*I‚PÙW+ƒ’„ORõì.¯€e

ß(kÙ©¨³Ò'Xàĺßð㰝¨KÏÐ*îa¨óòºfa\ìáOiO
«W¡˜„ÓðÇ
+­	N)¶3Y¬¦~Ö3dÁñö !ô'.NY§q»qQÅ6H.«á?È[T†Óå„À•«s)aÍé¿X;p
BT{>ç÷¾6±£4’ÊݽR1"æ
÷ÎÔaê7( Nc;š$ †7¾yB“×q£QW•Ê Ì"“¸MšV€õ'éåZµÜÏ k,³&¾û]„EÁÐ_¸H“APùku•!¢ƒ°óPDØaH(8pàë|i]W¹Í.¡ëI}#@V‡T\ðd(¸xfɞv^®½²	ÆMiÐU½½Ã‰rII€92ë€3*
0`8èò8£5˜/Uß@7#” ÞApÀS¦yÖb/9âaæYãóoN
÷>ó–>‰Ð¼˜¸M{ߘ–Ò
+½J
`rwւÜ6Œzª°îõß6‡³›d4ÈAÑ@iœÞPѺŒû‰²°KÌ6•çÒG
+º5Yãƒ/D¼12™ÒŒ$3²šN"ójo@h̅ÙøÍëŽ&<
Lîö
ݑ~AîØÍ G‚5ߔ©Z­\çÂíN÷͝Ųã6§fwV!C9:yD‹@ºQ[ô»Lç%ÁŠ§eîW²LÞû‹_ûœæ%0³b%‹ò"ÚaU³ÆxƒŒÈ¤Ñ—wwqŠÇ3ƒvB².<É<Q¡R×è:Ä^ÖêŸmˆÀÒ@D+´VHÝDÈ
¸I `À
…íz{?I5t°vY1·˜¥#¡3.i){-}2aGy°([qÎtƒñÇ¡ÒV,JŠJ­r/MP·¹AZ6M–Ý„Íɪ¶0‰çJ!³2[ëæ@P³zƈ¥xh|•–{®µòPº‹st¾&)•Ñ>¡;}=,LHÍ­Yƒ$àf½ôŒÀÏ4{ýø~BÜ°}1p	@ôÐBm‹öR¢‘à	"¬
+íj¼/ˆÇc܅êËï<H5‘çù'ɋÏ>܃©ñÛu.®ÌÞéåWÅÌyìÞµµŒ!ü©(2™ú†¯™Ê¦üÉJå0Ú2ö¨þb€ž2¡[9œûùÝñ*Ü~j§‘áéÝw'˜¡HiNÝ_I½Íðë»ÓA¡4:½Ï€«<e;ÄÁÍjÞÿpsÙ=›g<¬¯®ðxî¯×·¯éóžYcvΌû½ãÅôêÍçÚÙâl²¸¸Ä“Ï´ù9Ãûeyôíè?—YPendstream
+endobj
+517 0 obj<</Type/Page/Parent 458 0 R/Contents 518 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F8 9 0 R>>/XObject<<>>>>>>endobj
+518 0 obj<</Filter/FlateDecode/Length 707       >>stream
+x
eT]oÚ@|çW¬xi"‚á1_TH!UWíC^Îö:¾r¾sïÎ þ}猝TTdöövggfýgÓŸ˜’Ý,(¯GÓhJ·q-i¾Lð<Ã×2•£ûtt½žSSZâÊb™PZÒ§SJó_1½iHñžÕ˜ÊVç^í"ÚxrmÓë­Ž´¤·g¨öí’LIáîëöÞ[¡R³É?—Ÿö¬é%¥Â°Ó_>*]¦¿GSšÄ7Ñ0B÷š„RQŸ-¢yˆ¿Š:”·Ö²öèü£mț®ñş·$ž©±Æ›Ü¨+:T2¯Hº.ÇhÆ—Œ:eGú)õꖄ.Îp þ’ÞD·=·ùN¢£¯Pc({"‡*áHÐ8È¤’^²a’UÑ·u
ç
7üo¶“"üž5Ô|˜”B¿+à2MGx‡Ø±Ý³
óÚ#JŒŠUƒÕbÇ]š¬Å5¸áêI‹ÿñÖm^õeá$ÛsºÓŠá
+úŠ0w†út¾êúAeê†Ë»†"áýºþÖ@êpzEYë»ü>˜³Yp•ÖÔg`dÁ’AdHՍ˜›0-ô‘0$HÚ£„kÙ]A±—úÂ`ƒd-Þ¥î`E´•¹5ΔÞÏOցƒDÍç‚÷ÖýTøa³~…½L]ƒÐöl5{ZKçžH+±‡©ÚLIWA<yb¦”܀NÇ$Âú‰sá¡,[iìßÀ<=[…ÉÛ ©hDPÄy©µz8G×;òq,|ky°JïÀðvƸÀnc͏”qàñ`ì.P‡ÝÔqP„÷€
Hàr¤aTO•
	ݝH.}ç¢ëõ²·ÄÉ2Z¬V/§ýßmïïèñ³Þ׊D“!w’LWaßS+šÂ€•›Çó<™GÉb‰Ng‹pé)}ý™œùendstream
+endobj
+519 0 obj<</Type/Page/Parent 458 0 R/Contents 520 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 5 0 R/F5 6 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+520 0 obj<</Filter/FlateDecode/Length 1575      >>stream
+x
WÛnÛF}÷WLý+€ÄH²l)
 iÀ@§µš¢€_–ä’Ú˜Üew—–õ÷=³\êBÇ}h.–LíΜ™9sfôÏٌ¦ø;£åœ.¯)«Ï¦ÉjE‡¶Ä/Sš¿&KZ¬–x?»Ä[+©8û°Æñ)ìàø›Ooi>¥u
»×Ë­óð9žd£µ™Ò%9Q§‚ÜÎyYS&ªÊ½^?{óiA³Yws2_%sÜ­7ÊQ¡*I¹t™U©t´1[ò†rC'FÈü$£é.ØǑ­±dZOۍð¤¼Ã%°µF—	ã°¯§ÂX1¥	®ýA
+¥=™‚6RX?¦¶TA;Ӓ@¬9ÛóŒçõþ“ÆšT¤ÕŽa7Ò
+/“h~~,8²_2ß"ô]€Å„£Täüžù¿HÍ£¤Z< håəVçcúÞ:8ô…'ùÔÈ̇³ˆ²
8Jz”vG•ÞïèÝäþõÀõíö:œnÒÒ¹„n5’Wc©*IäB{QÂ7ž¶Z=Ŋ
CDBqG™A…2SKÚ*¿Ùf˜ÒP¡Ö«J
Y°{fëBހ½6Zycƒµc~ijˆÉ”VԌiAêE”OÞÊZ
+GTþ  ¹LÛ²äτFž+gPÖªq`*çí.”ò„5;$½–(/.Á§ViLWé.ÿ	ý
>dxÖ:9ˆ8ÁÔdœæ£Ð°ŒÚ)²Ö¨Jx暆_ܐ+káȒ¤>…ÀÄý#sÊUQH+ÁրEÓGϺˡÈôYéö¨–hŠh…ê}÷mð§Îò]«oïhȏw§)~þí9¿C£F_t?R:«ÚÐ ÎTÂ*wÿúÔ@˼ëÔHÉ wî>îqïF¿'0ûvâÊ¢5ºjq‹:äºBj׎{Ÿq?ijÀkfóΒFòÑh1Ãì¦Ó›Ð
ˆ;¹rÀr‰R	Þ\àŠp®ÿv	厎
–6Æz(ÄÞmˆÊrÖªx Ê +»7œ¤ÐŠÿ~×HN.ó:\gn—ÐfoßÔZeé)¤ð­•Ï8ö
4æ.ˆý!#â`Ä©º
´8@ä(Û'“O‚ŸŽΛOWQ¾G}¸C]Q'²?8*³MèÆÊt¶úQ0êéØ×­ÆɆ`"d3è:ëBÞ"<ÏçÛ5GÜé!
+ÁFþ13¸ÿ˜\
aKÔJ#Óäò¤úQÝiîÕ§SdN6ÛB.ÛÊ'ôEÂ摦h©¡”ˆúkûæ?a*ŨJé©2tÀ>ð#ºU¨àüYð°ÀΡý˜•<G)Ú¢ØÇÏx+Ó
-œsL± S‹öDú¤Ï²R;²0âîG­®0,ÉÊÃ(ýéو9fǁóFMW3àãÙWï¥
y´hô"7b‘QàwÝÕ)½åýa–,.ç4™_%+¼bÖn­òò~4Ó9¿2÷÷ú|L×è˜g~¦ëÎVÏÀIom¬ÂZЇ®ð\a ;[fXÛ0¥lÛéF,ýÄ<€5¶þ‚W)Qc"
+ÛÍÎ(ô6<OêÃJÃDу‹ØŸ­ÖìÛÕ)ÔNHLQž‹ÃnŎnÈKP4‰¶Y’LTÎÊ`:BmLMõŽþÇx4ý•O°Ÿn¯rÒ¢a <5Ù
+Ü:Q‰–t> îv£²
w
ÔÑÍǎ
Y¥xZÁ?8 ²Mˆ*Z…bZŒ7ÐîH1ièëÍÇÓRhg­ƒŒþˆnÁê
*p¼D(Û¯QÎcÚٞX!ùQ÷‚ƒneaÆÔÆlÄ~×:QJ"¯‰7uS1pž¹
+¦%2Ò·P,¡½ÜÅ*O
+BÀ—+ìéï_ÅÒ'¸Óøî
\¿ˆýOGŽhþþÕìEo_Œï6ÖóIq—˜ÃfÆÝa¢í'JØÿÝ8ncÇk`˜…a-½ÅÜËZËÛÍ ±ºÝbÎÃ1Û¨*ÇAnTè
ƒjÍË9þ•ÐœðõÓa+i,¶{n˜XÖ¼b€Ð9¥¼œJ–Q^ÿcíϾSÉW»¯]fV‡ï/WWÉååUøóŸ_zËE²¼ÆW.>:_²ßÖg¿Ÿý\eœendstream
+endobj
+521 0 obj<</Type/Page/Parent 458 0 R/Contents 522 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 5 0 R/F8 9 0 R>>/XObject<<>>>>>>endobj
+522 0 obj<</Filter/FlateDecode/Length 841       >>stream
+x
U]oã6|÷¯XäÉ
bÙRü¡(Šä.9h›61p(š¢`¤ŭ"U’ŠëßYÊJR¿ô`@_\îÎÌÎҏršá—Óª ó%UÍh–•%½_ü3^f´ÈYNór…çbž-È3m;Ãî·Ë!v¾\fC,âSèÕz4½™SžÓzƒ‚ËrEë:íÑºßيiï:RˆV1ªjËuú·l©R–jG»­Šüʞt$ÈYÂ*UF³xTék¥º í3µÞ=n)ÛgÚicN׍f4ÉϳõǕjc'I©Â>DnPΘÐ'ÍSMzáöËl.{mÝN`	nm#ûÖ³à`P‰áú–=²íé–+_m±î]÷,w&×Ŷ‹´qžBô@}¨zK/¹1©¶ÅÆ#à;QE2XÒVÂlÈè¹øÕ´†ÏHoPW5X}I¢ë 	ÒÆ-µì‚v6	©h£±tK;יzÀ
+`G…“ÊȪ†Á;Áz…øˆâƹt²_í<8ÛZ0m¡%]ZøžÀºz‘fF™#ôéÚå¨nÍ¡òº`g»æ‰}ßד3ÆíN’5$ã HϪ³Q›ƒi*ã×Çͼâ½è¸igRª±äêBò&lguÔ*êWÎhíè½i-éš¹Mc0²h œ¥¿ µ€úˆX«Y„Ûˆ
>H˜t0ØÁ²kzƒIM4žÖü:µ]oè÷ÁK(‹.ztqçud…–Ÿ
—†¶2è\«ÅÞ´QFq„ëA5O껡셌mžÍÏš‹¬Ä#ð{«k*ÊbYþ‘Ô~Ÿ¼
;9£»?ï?½<%¢ï1st}ùéÓõ=ŽyóÕl5׏§Cuœ<ߔùëýÝÏ?þ†Üߔù]¡É@b•È€ÄºŸ¢ŠCH>ôûAíCì]4Èðê{Võ$©.¾·8ðî¬Ùgt¿'±aqYÃʆÿæýp0½ÉØGçJ[9﹊‡89zzS’¯ÊlyqAÅyžËE:°.ºº¤Ï8@
Fô¥ƒk¥Àdˆž¬fè44E… & §¢„ÏWólµÄ¿„„¥|º^~ý‚ôendstream
+endobj
+523 0 obj<</Type/Page/Parent 458 0 R/Contents 524 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 5 0 R/F6 7 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>/Annots 264 0 R>>endobj
+524 0 obj<</Filter/FlateDecode/Length 1642      >>stream
+x
WmOãFþίõˁDì8„BÇÁ5*Ç¥$ÕõªHÕÚÞ$[ì]ßî:/ýí}fíä \_@¼Ø;;/ÏÌ<3ùzPß	
{ÔPVt£.Þì~Ý8HNO¢.
º=ü.!•Dƒö© )ËSÿ4‰z|6EýöiwÖ;‰Îp–Ïp¯žø,ö¢!õFgÑ	N{ÝntÚ>ñéógœžœBª‘Ýêíá>ûÓžðÍð´;ƒü Ødïøö€øìÝì ¾Á͈z0<£Y‚Å›ìðnFïM)”¦ûÉÕw4û3ˆ'ÃF¼Ó?A”³üp¬½5yyet#tBIÒ
+õ†0¡ÙJ9ÊMV—R{ʌöPìH酱¥à«ä
UÖ¬U.Ih‚õGcœo•_Qa–ðÆI»V™tÇÄ/Míɯ$i)s‚2Üe'ºÔIúÐÄW¤hì	n°¸[–ácËfA+ï«·qŒp‹•q>ÊÒ$ÊLÿU<dEœ©…Ó>hDþɇ¬)
+M7t[?Ȩ5Û 9‹'ï
+HªŒs*-$éd!3Optƒ—"g/DˆyiM]Ñü±²«/‘xãhv5‰Çèñ^饛!æ|/h±ð҆ë&-ÔRxc7dejœ÷›Jz˜«Œ¥<¦J8ÀóãWþA9¹:ânQņӀÛ@Þ"¾}ËUee¦„ç4nh¼¤"{ à¼1µ%ùTI«¤†¾@8‰œ ólà˜C	÷>—
+ÞdÆB!—ˆkNó\…§=À6¨ÚVÙ~BfÀ²‚'Ò£¥Ë¬J‘½•´’2²$…Sˆ/‡k®&kJ¤!x!¸˜Šç)€¸µ† óÆ䀉˜í9t'}it$ŸdD_Lh‹¢©S¸
+äCzžÕ`#·Âz"[
¡™Û BÊcN2Äy5[TŠÍžÑ\f
+çzvûéç»c*œ°UÐsvíÖͬÐN +UIÑËþä^}JpÚtM8—ÉžQ†H
֐*WçíÕBÑ6 Ò^¼¼	Ø­
oš‘·"“¡qµH”åãJe«€ážñB=Ȑ*
ÒÄíd™ÖŒ”ÿkQ\΄œ°	ÀÚT¸*«B¦Bä-	Þòia@Y¶D²­¶mIqà~f7•7K+*ø½çq%¬çvo»[ÔøG{•ªûN.Ä´„Ò“MI¢5ªÕèMf
+¹2=oXZFfµU~ié÷çj)¨é
+ÅÍœ(SpQ8Aû¡b—18²äаhËýNºD¢«
#ðÒ³·­¹-¶¤ª}Z/‘ѯ‘Í"4D&âéÕýx2›ÆŸ/£ëß®¼ì](†Ý³óۋøù§‹ËóÉEoÔ?ý¾âbk†>Zù²Ø»¿;¡;vù
ˆƒüš¹Óp¹Òµ£;4Z*í²ISCP
ïÿuÀ52vgKÕI•ŽË…‹»IÜ@'£Ñ0
E½Œ»ýQò=ÿc(…01ö£ä’½ ½¾MÔ\"˜žÌÜßFn[ÃW+‰¦~W+«ç|ôb7Ô,5êÕp£´†·ƒö¹
ºkɧ-g®•l¥$ó*f;»B,0FÍ#뼿þðÇôwŒ©¥BoèAn8†îS²_¡¾â,h»õ¢¶?ý|ûq>Ÿ~™Î®ñ÷ªÆÄÐþ
+[fôTzµKÃ|*Â3z>Ÿ‹Ñ*ow›Ák½cÝN4!’<{àjÛ½;Wy‚d‚I=0vÉÁê0îè]A‚æ–Xz0`ÁÞW[Ý{0¾,ÎWŠ%ýp«Dª
+´ùÛH¤fÝìñÍóݫ睖gG‰â˜.îm©WmÝÞyD„ÍŒZ	p'󹱊7.^4]NÆð»h‚±U„µiƒ?-
{³æjCȵåMj¬€6ô]3Îs¹R¼•Á1VÞR+JFN>²©}*z5·P\ÚP)1ÞÀRÌãXDx-É"^'}TXȐGe³Y E#¢%»‰„˜JÅSɛPzøHÐÙrÛGQUPŒt?~ÿCӅmʵ[¯©n(1?
+ŽwP¸Ø­óÃ$"†	»5õsˆŸ~ÅFFã÷f®Çæ퇰†×/õEñÍY[¼Þ)uúü

f¾M¯Ý
+‚ÃÁYãFoÄ^\Ï~9ø9ý-ñendstream
+endobj
+525 0 obj<</Type/Page/Parent 458 0 R/Contents 526 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 5 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+526 0 obj<</Filter/FlateDecode/Length 1735      >>stream
+x
WMsÛ8½ûWtå²N•ÉèûcæäŒ'S©²ïJS{Xï
"[Æ$È@;š_¿¯AB¢äì¶R‘,@w¿~ýºùŸ«!
ðoHóg”•Wƒt@Ó埓…|Žðß2mÃYšþèÁx6I——>¯¯>}™ÐpHë­Ü>[Ìi,´Î®×{&þ®2O%+£ÍîSÎ[m´×•¡jK¯ÊêªqTªÎ(«ŒóÊxG•%6MÉVÉN—~\ÿq•À
+.ͯÇ)ÉoüL†ãt$KbÇr]ˆ­Åá¬Ê™”É©q,vü^ùþ£·=RôVÙXÞl8«JvX-¹Ü°•cŠòªTÚ󃓹çk_ц)g—Y½áœ
+åÙ>Lé‹ÒE4±Á²o¬míÎlë¢@À/دû. ‚ÊúÖYíI;±Û3«
+Ë*?œ¹(w´NAÍ҉€29á4^¦3Y’Ý™=Ô¾ÚYUÓ@* ÄôÈޮؾ²}RÎÁ³|ÅX–% ¼¡7ìßÃá¦ÈIEõvÀ%LÀ Û+³cÒÈiÝݙÒZ‰?¦d)Ävl$å-2Eev	P-ɱsB˜>¤ô¯¯‚ÕÖ6…}’å?„°}.¼0×ÁepP5…?Ã>ºóïw0N[?}YÒ¸n)M)™ÎӅ ºª›qÈÔ©†éd<¾EøÆ®ì@®­ÂNÚÚª¨Ë
+u®>_æ:czRÙ
+U|U›ê•Ÿ?ÆÐfé`6sMA·nï
†ìºoÀ¢{Ö;YùÊùµôáqMw·@¬
Hht¼åËJ ¾LGþ„2½u³Ô÷ïLþÍàÏ(îïaӅ>¥@±œ#ýrí_ô„„t‘ýDE¥r³
	¢7í÷‚=´€ýLÉيRäP”QD¬o¼ÎÚrvç¹üE¸eË&ãW§º¬>
+`ݹ¦Å¤[Þ>EԄ•Õ;mPÚ(ø8ß5&S†VpÕm5¹Äö–üʨŠƒ“‹¶ô°úÇÓ/ô¤knµî,[÷Ú@"QŽ¥ÝOTÛ*o2	=K‚ÐF	‚ @[ÝäjþQâÿ©M^½9jYk!`ð¤ªò¬Ê6K :dDÉœÆd>V^$Ô[yÛdзHýXð|<hÅ&l>Ï;ZD2’qýU„‘iõðYêÂ8éµÄC:LN>Üô„çRuÍʊd@…'ÉæÍP…ÞèHàî¾H¸XÚC>Ùâ¸ÈkK ‘õ)ý*-
+yl3Ý7M†qe¸ZG¶LG-gÚ1N¼˜ê
Ì^‹<‰¬@¯Šª<|¯Ê¿ß=ÑãúþÛoßé
mÄ•ÿ?àÁqáX§<
+?z\°ö9-}7öÙÑÉùO«4´úzŠBz-f‰Ê–y•X~Õ¢Ý	šJø–2&ò9JÓT¾Sât,õzÝ*&Ód8'“é,™/–ñï4˜¢-IBújus4t”ïèroZˆ.+s
éùÝ4[¨zŠ6h8GçåjÇÿd[‘nÃrÞ
+ºíhÑA]œð³‹Ç¤pÙ²Ñÿ úr)¢<²мª¢	}î@nC
½(•Òà;f(LnƒÁ
Ë`%¯Bôp¢í|I4T·èŸÜÛR<ºÊßµópAÑãï÷÷qµ‹—â1˜ˆç."
"(Øìü> Ü3üµÅçGი»Ÿ
fYpH“—~ß³ÕJ‰l9!*§¿­©npÎáçë¶Ìú
{ŒQ(?l©¶ÏÅNP”\y°ÂcZ*»i—qYkà* _áƒ(獰U’#!øJ÷«[ZÝ>\ÔÎ}µC7€âÕIŒtu‹ I‘!€L9¡´µ!óœ5
kØ
+"æ…M‰è,š“T!Ã{ÑAãZÉC£QÖªƒõ¹.Z
+ÔB‘”Ûí!äæüÉi×`æ"i^(ƒªy¬«åèÝt9L[Åï»ø»Ì©X2$wê½W¯RÁ(ft 0øÄ*L#¤í3`%üù¹púHct¦ÂUa_
+diÛXà‡.'tÀG*!ß}æü˜7]ÍGóF£4tä–<]ú· ’²Ä`Ñ1¶•ŒÎqp靑+:vP’›ƒí9¤fƒ€^ª;áA˜"ƒ'Ô[ì.íRÞm0ÅX”žF‡U[ÈR½Pî8öuãÑÙ]ÇÜO1ÕIó>ŽÄ‹îÕo8§³å’f£q:¶ƒñíÃç[ºkÕß¼jHPÉp¾»“ù`)×õfèÉ|’Îg‹îEo Û]_ýýê¿ßÆ´¿endstream
+endobj
+527 0 obj<</Type/Page/Parent 458 0 R/Contents 528 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F6 7 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+528 0 obj<</Filter/FlateDecode/Length 515       >>stream
+x
”Ýn1…ïyŠ¹L#íÖ6[¯é$¡Ô¤)l{[m¼Ü°?±½UÚ§ïx
UH©‰ÒŸ9ÌãˆÁ…œÁ˜ƒ¬G$%ÀÅ$Í 9þfø5
+VC!ïRq¬ÀOù±eôø	îá/®˜£·ó	ÐŠvŹÀ³EØ!Pȳ«¦¯•)nû¦øÔ4¨–£öìf¹¸»€ª¬”
÷«SA—
ý«ãø8Tʶ®Ë¦dÞ£V7à6
+jk:	])”ƒÍ€	þ/a¸ëûB=öʺ÷‡¡›	§ÌßDž9„$ÏË{ŒíðY*Îa'93ÝTqÆìUŒ©|ˆc.ç58;<‰‰àm˜Â]pQ7«6hL¡ðž«²ÑÍڕÅ´m˵m¡oªVâ̧ªÃ®	$l7ȹ6ÖÍM¹Ž÷K
#øT¾†3ÿ¶uåé²H%ÊgàÄøD„qÛÞô[§»­zŠšAcyħÌ[s]©º‹BØ	Ȫ53‰ÆF!Yòµ×q;Äîü~mcÓÃ¥3½t½QÿÛß>__Ây0ôH8­þ­0”^uîã8fp¯MÁ}ò}w¹—›Òœ¢y‡‰ç,±ûÑ\¤|2
ŽOvÇrz3›Â¥ú©¶m§Œ…èȰԒ½6ÉÉį™—Û1˳4ç7)ÇCü¯ŠÑ—Ñ=}Cendstream
+endobj
+529 0 obj<</Type/Page/Parent 458 0 R/Contents 530 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F6 7 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+530 0 obj<</Filter/FlateDecode/Length 676       >>stream
+x
­UQS›@~ϯØGíåâ›Nl›ãØ`_¢ã8Ì9áHï«ÿ¾{Lˆ€S§“I†Ì.ß~ûÝ·{¿Gü\ð($ùȱ µ)øa€Ï.~%ƒ¬
+œ†Ä»^oÀ5 P®Cm·+@HO
ß{_û"}ý6B Ê°¥€=8DÉÑm4½º<Žž0ÉK²\jû˜VG+ð\Xr­N€‹”'±æâ4ÏþŒB¤
+	‡<łŒdž´Hʜ	ÍR“–ðLQ[¿h¸;ÂW4/xö)lâGvRýXÄö±¸çÜÛ5µË
kj³hy6Ô©_Qÿw:0L`r}õ0ŸN°›´ÈclÐüQZ–‰.%»;®™ÓQ§³Èsۚ£³ÞúeEª\Zq©W…äš3e$Üjƒ[û¯ß"|؏nXJö̕ÑK-™ü<Øÿ º ÷ýl),_56Ÿr¯{°`š¢±xƙ„ó­H¯[³4’¿S…Ð…x@Yªj èNæÃCèPª•Y¡ÙèÛç‰öÛ¶VìϊIÖïêyôӌ‡–8`…:沝f\C²ŠåâÎðQ”ëµ¥™Ì¹ˆÍôÕxÆT±J8¯RãT?“ÛÙôÇĐ)OŠ”5 +§L6Ü­ql!Œÿí?Ò5zeÈ´‘;´m6ÁGyüŸ„D}VŠÝ
ˆUù«YGµ\nŸ^°Y—
+–e–¡a7Ç¥8¨a%~¿†må >“

]O'_†àvM¬_jöïa˵Ûl>´Æb`ôúÛ16oy7ÜnXâ»6žúõ
1?¿º8‡	{fëbƒ^‡ï%O™iÈ"AXåZ36WͼYÛʄýÀ·âmin¡jS_F£›Ñ_”¥1Cendstream
+endobj
+531 0 obj<</Type/Page/Parent 458 0 R/Contents 532 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F6 7 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+532 0 obj<</Filter/FlateDecode/Length 660       >>stream
+x
­UQoÚ0~çWÜ#–,	™At+S­ÉöÒNU°
¸
+1uœ¶üû“Ð-iK'„„9û»ûî¾»»m¹ààDžÀƒ
ºl9¶Äulü0Àß~‡Yið;Ä&/¼C—„Ï_ôã֗o]p]ˆg蝄
Äгã@LÛãÞè®Ú)Ïæza‰Œ	šhΠÈ•ŒC®•ÈæW''ñ
âGË#¶HíßÃqÜñ*³_›‘åvÚ+d³=È]@kû‰tÉåßàY‘¦–æj)²2Ú*Êm't‘¨„â•Ü®`6)(=yaüxÅ& IÅ<{/ï°)ÆU¦´„9×{ìÁ·¦kÍaãö^èè…Éw¢´!bѨž0®j›ü?KWS–ÉY…&X,$Å$-–<CɼRÐ&¨#£kÖȶ&J)?I¢A“þë^_ $äô†S
‰Æ˜šçèçÁ
1_5Ñ«¶ÈÀÔ!Ad4-*¥`Éë3ÁSÖTô?“áàÓá1ÅQRj`B!	©ÖHh%JíÓØÓpë¼dɒ¿ôµa¢}J3‚nëê£áæœJè50žS%VZHõã~„¿-°™Ñ
önÎ՝ ¼Af?'ç×gã
Æqõ`%SA×°H2–ò}¾˜œÍ¬5
+¾ôœ†Á¸ƒÔà0]GÁ™|L.”#žÌ°/¨.ÿlŽž¥Â™ˆÖz4ÄöZ¿b½^Չ9j˜½gꌇgƒ‹†Õ´Å|wÝÕC·ÊßËa–‹ãpÿ„®ž„õ¢t}Ï&Ý.€Ø¡Ù–QoÔïÁ€ßñT®pyÁ÷B°2_–àvÇ»VàtË«›båÓ|; !nxDétÌ_§qëWë@ýD¨endstream
+endobj
+533 0 obj<</Type/Page/Parent 458 0 R/Contents 534 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F6 7 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+534 0 obj<</Filter/FlateDecode/Length 748       >>stream
+x
ÕVÁnÚ@½ós¨RÅ׆öD’¦B" ‚›Ú¬Çx[³K¼kHþ¾³¶!‘(UQ…†±ß¼yïí.÷6´èՆЃN|Ùh¹-:€ß
éÚ£wŽ”¿ÛsýcÏï¹Ýc…0p½ç¿_DóëÚmˆjtCˆb Æ­D¼9R¿‚I‘Ú
+
¸’I&¸;4DikPHÁUŒ M.äRd1æÀd|¬*ŒÆ,
¦Á(ؤ‚§ö¢ÐH§ÑïFœv‡ˆFqSÈXpfvÀʅI]B%.‘e ©‰"6$ŒVÙc·ñ’‡@v#ÀtpæqE“Ô¸ú•>°å*Ã3b,L£A7˜eΩ6¹*V€†×©y¬x±Di¨»VKÜXÊÆç×½˜Ž×­(\oæj>kÆjɄû…Ä*¸)rœZÆû.8[î¿£¨ãUe¿Æ¥hìúÎ>QÐ¥ü8VͼwÖԈ0MÕ¦9ÔÏ;9ûXoéUȧÁIÿԓ
+
¥œä'>€*(
+֝ZÛ4$d‰äXߣ«N[sJº[{†ãóÁèzLþnkÌ)	œ«Bš3à™ ›ßdV´L-”„
+$[Úð²ÜؼJúFÁÉlv<e9ãsZT´N(RÅjE¦q¦« ÑxÛTÀ5¥
+“î·¯jVs,›%¹Z–¥á´¼/P¸LYf×E¼dÁàI‹€ÔœD4ªV£½å÷2£Ûñàês¥è±XîÇ¬€•´\ò×
¦Ñ䕴H{¸ç¼ö@Ø·ÃÒÒl/k ‘ÏÉdI)¥Ë"æњ.%få&ôƶ/O…|¾	WðGã~9Eóéäv/î{	Ò›õÿ)Yɵvì5ó»õÑö=7èõ ðÊCuÚ¿¹èî1S´ãhøQˆm^œvØ-ïtÂVϝÓíUîž~è»aÐ¥	Têøö‰ïQãgã/©q€øendstream
+endobj
+535 0 obj<</Type/Page/Parent 458 0 R/Contents 536 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F6 7 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+536 0 obj<</Filter/FlateDecode/Length 741       >>stream
+x
ÝVQoÚ0~çWÜc»
MBÂ^¦¶´R­¤ÝC;!×1à5‰SÛ)âßª&¨/Ó4P$ˆÏßÝw÷ÝÙO-,üÚÐw ç
[V×϶º¸~;øH‹|Á­[p¼Ú½Úq´N.`Û,Љç÷!
Xôèüúb8ƒû#*YÈÍI¤à#h3PšÄéýñq𼄎ãu]Ä8¢+"ïü_ź[®cü»‡ƒ
+s¤³kuŒÆõ U(…Í–JŽáøE(çW“`>š\N¤¢˜|f²
4âÈiȌêL²—7;q5ЛÍ>Ãzņp W\UX@Ҕ©€'@°4OSº
‘Aœ)
š<2\ "݀XàfV†Ó¡$¢YD4a'Ãͪ2'eü™…mx`”dŠ„
¬yáüÇ*{PÆ3’¬ €®}TÝÜg*™ÊâÜZ›êŠ…žh|€$¯\“]¡)ÍC,™ N*‡$<ê–{¶JÈÓ?»¾-*ô¦ŠZ$„¢<˜©bÃV[û²Mÿ®A]_ð)	Cž,Û°ÜÎÃFcÚ#¾Lb“•5×+˜Ï`ÅHÈdv%å=w·ÓÑðC}ü©À|ˆ­¬ªŒ«&ܼ¿êqÖˆ±Ô°i‚¤Yþ;ê'”Š,AMþ·mÿ\\M¿æS¨¾Þ‘Xb–µÁ^ˆÂöÍø+Ú
óç6j‡›±²՘kƒáŒÀn–‡ÚGË9ç|n70¾™Œ¾
¯ëÓ
+3¸òÙ
Y©YÙÛM 8IzN=hJ$‰qT'ZŠèŽçÖãµ
› ðCEË÷²;¹òq)E–¾7?Ým¯aI]¸Ãôç%|'J¡§°û> _Þì¾ßõðún×7—†Ùéøì†Fq"exÂ~Íx˜¿ÎÖ¶Ó·¹éödÏÏúžwDé}2‘\­­?•Ôµ‹endstream
+endobj
+537 0 obj<</Type/Page/Parent 458 0 R/Contents 538 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 5 0 R/F6 7 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+538 0 obj<</Filter/FlateDecode/Length 786       >>stream
+x
­U[OÛ0~ï¯8o+Órk.ìa
+¬Òh7ÛRå&N뭉;;UÓþûŽ¤AS±ÑªŽŸóù;ŸÏågÏ¿6¸>$yÏ2-D
®^¨V‚B†a‹˜ã\Ç1ÝÆtà›Qkk!¬Ù.­­íšÁSX<Î6 ›óNâÞṶ
q¦¸ùaqªQ-ˆ“>‰ã&ßÎá3‘òž‹ô þŽN~ãd —g:è׿®ã+§¶Ø‚ݤ<'¬€‚䪂%<¥ KÁŠùÿ V’Š×ÆÄHȒ”ŒwЍ¶EpBÓS"\_NGãó	Üö%ÉaÉç¼8Tk–
KW1WIY	z{ð8pǯqƼ¤G°TV9™-×ï \P¼zt+ 4¥EÉÈR“ «ÕŠKš.אq¡
Q“;”¥ä€–­ñ%)õ΃/$u"‹7¥"‚Ç·w9£áùJðœ!´Ùì·ôN?cgÇu'K†$1jE5c‰–óT¾¨ÿjA‹ð(§¾NF÷õþsµâ¬(ë8ŸJ£9ïÈÕÓ«³ánاX`›uïB½cÛߍ«³
–ôŽ.;bއ"ïY™,àŽ,+ZÃX©6\Ïø!&ÑÀ]]“Ð|LJí<ÕÎuú©[Ǧ£’·µNˆ¤`)ðgvïx¯¼GCS[C±tª~j¿ßáò§æ¿©$Ûô·áDú‰Œ.FC¬¤¹àÕª-ŸŽ¢QʹÙâÔ§>ßÄö@ènCJìZ³ª¤Éñë_§0[«néš6"ÅçÀn¹nTý²mÃÉåôêì!šÆ(hF-ª«¢õmin5‡=UQ)Oª«L‘ª2D…¦Röeo—zE•cj(¦P“–:Ä|	ÏíáðzœU6AN~
’Ÿ¡<”E0*;hïK#1_.ŽÇÃ° $¥¢¦6cÇöӏ"ðƒÐýA3|NŽa¨ú_Q!á¢Âî«Ü­”µXØ+pNµ3Háž`çÀ±Ÿö]ÝÁÎâޗÞ_ˆÍUÔendstream
+endobj
+539 0 obj<</Type/Page/Parent 458 0 R/Contents 540 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F6 7 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+540 0 obj<</Filter/FlateDecode/Length 674       >>stream
+x
ÅVMoÚ@½ó+æVÕ®m\Ûô%"i9@Ô`z	Úx×°ÅÞ¥»ë üûŽ?’bˆU²„äÙ÷Þμ™ñώþ\=èäÇv pÛ?
+ñ¿‡bV/zQώv_Üĝw
¸.Ä)bQ1Äqˆ“ît<ü2xðE‘ÏKçTæÚr¿_Ä?ð˜ßCnËí!iL»Ä	£€±„(O$e âb
KF(SºFx%¶¶!s?¦hpÉÙøÐÁýh>Zù£kàáFt¿¹v%ڋl¿¼w‰?ßÝìÛèã"•ï!cÏ,ÓÐ"(|‚Õ0KLŠŸ]Ì.ڊ°¼ Æ›ÇqôxDáÕÕ¬	¥eN„3à[O/†
ÉøBäLØp³Ä¼e@¦0Ý4Ùo³¶“¼npZò›ŠfL,ç¼ÿ€ûí~8¸<,·T&E™Œß†¬ŒÓh*Rô+¬%ÇuDÿ_ð c^M2Míý&‘ûúkÛü³n»·víÔ*lӇSÕ £ê:f¯Í§“Û‡WŸ3—É…Pz}—}ËÌciØ'àhHYdžàLÀF°r›%1UW¸
T®5Ӛ#öŠ½×Je—¶aãx8º=|£Z›á9«cöN›ñ	 i
+g¢¬x²’çì‰Ö©(dDÐØógêzLˆ€dIÄËr^ÂÞ ó5ž†Y¯™Ã•,
±gޟ0Ϊýuøš«È2ø'µu¢øÚìl«óÕ¯•LyÆpàümςóÁ—÷+åŠ%Fª—cðQ³]ß³ƒ~‚ÐÃ
\Š“ëÑÍ5Ê(׸ôásÁiՌ–FU¬:ý*Ô¨"1…bՒõC߃?H¥–õ»;_;¿82t'endstream
+endobj
+541 0 obj<</Type/Page/Parent 458 0 R/Contents 542 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F6 7 0 R/F8 9 0 R>>/XObject<<>>>>>>endobj
+542 0 obj<</Filter/FlateDecode/Length 546       >>stream
+x
­–ßoÚ0Çßù+îmÝ$²Pž¦VÙX¤–j%쥚PˆðìÌ?Øøïw&©ÖVÅ
xB9üõÝ×çûÝÀÇ_ц!›ÞMÖûø%„ €¬Ä/aAFÀ÷|߇¬¸šOÓ¯ÉÃûì'FÚ(\؆ޯÖbC0I-äˆd[
+†³B
+JKÆW°¦9¡²a<íÔ™§Ó,oR‰•àPÃõ”eN Î•ú#$9
+6–4WTBštÈq&R˜ú<7XYŒrèø~Ÿ&Äp"
+³¡\SKS–x®Z0ü+A‹ï9ø¶x®s›©²ÊW.‘Å:—AøáÓbUŠ¡~ѝKQ‡g;!o‹È“½zœˆMÎøÉðSj՜¢Ýˆ¡µ›¢9ò²OòÈw$yä£äg~¨sBì
^î4U”FIþ­snëðɱY—-|èúw!ôšÊ…bD¹h‰™Îoo‘÷Rûï÷€6U³4QN?OÓYöà¸úÖÐ<Ƕ÷Ò:®\ƒ|§0¿UF·f/$«õ×R”¬¢ØPõú‚ØWÏÉå2ü
+üÖ;å*`G;ªOÒäÑ:¾é؎[¸ÆKá’Ôå)G—;ûfs`“û»^¼&"nçˆ Š½p<ƙc?JÌ®ïn®!¡[Z‰šJõKúO‘ýÈÛ©c¦¥)l/Ú¿)£häEaŒÓ~ÆvÅç¬÷­÷(If$endstream
+endobj
+543 0 obj<</Type/Page/Parent 458 0 R/Contents 544 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 5 0 R/F6 7 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+544 0 obj<</Filter/FlateDecode/Length 679       >>stream
+x
­UßS›@~Ï_±Ú)W>´£FÛ<5b_´“¡p˜«rGá°Ú¿¾{@И¤Ž“aÈpû}»ûíÞîï
<lâl`\' >8¾‡ÿ-|
+i}à˜
¡«lêïùÁa8øt⥦šÝõ=@¦	a¼“È,â.GÃÝ𚺭©¶µ‰…Ö;óÓ)Z\‹*›–<)4¶څ©T3VÀ’µüÒØ]^Ë'Žæ½ü6OΦtzNàf'—\(V” $ܳv¢”³Sç"•Pª‚‹Ûòf·ª	†å6„c©Ø>”ŒAÌÓ²ˆr‹¨G…bÅ¥Øûytˀš¤Ÿ%Žm!‹G||c`&¤²@לNÕS®Ý'<Ž+!‚!/ïj<ú¥.1Ý= k綂‹ŠUì%ÐZ²¯ÀدcŒÎ çù
+˜ùèëªãc¢ØJæð“kqæ·Löf·—îŒ'	ÓÇX†V¶E¼ÐíûÙhø¡¯m·jAS"ÊЖ[W?‚þÚ¯l¯	¯Fãж6×Õ2 ~É´/—
•Hd\e,yžG7ÆmR(Xwýb™iò–zC»_Öíþ¦¿½I‡¥È•à±LX{yEÙF뭜,dxéc+5&ÇóûNú•í\êfÄR(œT8\þp5Ò¢Øgå~¿e:¸M
£»â¸!™°(éóüWëi¦Ã*MY¡Ijè|"­þó{„ÿ>¡)Œ¿¬½^Y›Ý.¢Þпî`Öl•FE†ÅzšOrM½–.ðª¼ÁE»h~»¹¨c7ÀõöH`5ûëàôðpJ³{™ë½õµâI=Ãêùµµá™A½êTQŪ*X·ãáªv}l\v ‡ƒ‹Á?41“endstream
+endobj
+545 0 obj<</Type/Page/Parent 458 0 R/Contents 546 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F6 7 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+546 0 obj<</Filter/FlateDecode/Length 879       >>stream
+x
¥V]›8}ϯ¸]©Éƒfß !«hdÀ3™jU!ÎÄ[‚Scš™ßk>æCênÜ6QPBÌ=>÷ûëÈß&Ì,¸šB~¦¦1±Àvføݏ °ydôçr
+¦	dLp¸aÉ?Ü­Bâüóùò/³ûaXrl^a-R|8eEÁªG©„¦b9/(ÔR¨»öx÷,)d%{¬h
g&øW&$ð=È…$ðà@³‚ŠI‡1LeüDÍâÊúïIøÂÑ:ÆB¿Qŀ1ôtº*×=ßv.–3±áďïý8]…Ë(5
ó=–°¦Ý¸KúԔBÎöõt"Ÿ$þÊ%ã¨!ã–ÿžÑ²¨¡ u.Ø[„M”Uت²„U}ÊêšaÓªœb«Àž OÙñTҏmù|¢j"?èRâ#XnGK~V·ÃêìˆZÔ°O¨øFÁ§>ÂùÀòƒñ:„ÇNÌV’7”’û”|Úøé6Šoâ’Uvôdã	-¤^&¸HåÌÅ$¡è×ï{öNé
¢ë²Fu«­^·„´
+ß®µkÛàVÏ(šjˆ¦ª”¥['·ëþ¾—E¸«0“x­Aȁ`ÇL<CÁJ‘st7/K*ô±<÷FÎ4ÀËò/Íé—ÐÈ*ðÓ$º‹çþef–
ï^Z©@²#­y#ÐܪÑ,oüI?t‡»Ü\Ƴ
pO¸D`Éð²\òœ—½l:V	£{­!™c@È¿Q4¹¾
{O~àùñE.&†ñ¢sC@;-'lbÍÛTÓì"ôêԇ¬Íî^%|mh£#Ébå®Ñäšpö+Ü°®
+†»D5˜àÿvƒ!#üpõ ‹è â­ØS/’ÆZ
+É%aPԞè—Ü.·—j¢/R½Ù²ªàgn®“
éåécOj#
+·¦Å\ŸÍ&"~HPøԋ£-Â^à¦ÚõÂM2	yV©4hw§@Š´ú1à¹ó›»&¸êëKؽÅÒZM›Üõõx¢»*ÈpðÓPC4´ˆ:ª|†Ð{ÓG-nëhŽ®W	I£pý©ƒtú³9s&Óëk<v§7ð\XPŒ;~¢¢†¿V´ù0FŽgÆu{P’¢Ée#h›µö̞̦1ñe
+Ä'£ÛÑwÞ]ãàendstream
+endobj
+547 0 obj<</Type/Page/Parent 458 0 R/Contents 548 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 5 0 R/F6 7 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+548 0 obj<</Filter/FlateDecode/Length 1256      >>stream
+x
­VaOÛHýίõœ×NÒ$|„B¯‘JšB¨®ºœÐÆ^öήë]¸_ovr!Tº½Ì¼y3ïÍþ<H(ÆwBƒuû”.â(¦îñ1>{Ã
>;ø©$åáE—m½8¼ýУ$¡iÎAúÃ
M3B 8¦iz?ôðѹ®²N’ÑÅ#Ií*%--DõCfô¦0©(ÞM¿#`¿	ØFÄvҍ:ˆyxõõfúmr~söùâd4¾9__„Óéׇã‡aH»™÷Ì,„Ò6¢é¤Òþ}%«¥¬HèŒÿ
+o©•XH'+@«­£¹¤ñõ§OÑd~Ôcd×£ñ´ÛyÌ;Tߦ².7ÕâFe;b­ªüúytöÛË¡J£4°‘3¤
sO WA
ÒB|7«Œþ±zKéÿ%–{,%ÍÖݎ¢ˆæÊQ®d‘ÍŽö€üuæR³X`üöĺ®¦—{Zj—IœÜpPz­Uj2I­oÉädÃd½Ö¢×³Üpšï¾L͑]Sºš,ˆáŸ…ªwi¦YÆø1[·ÒmWÕkÏ¡]Q¨[
½Þ+w‡‚Eå¸^A]]œÒ™¬ǔÀrò*îö‚V.®.'ïɰÐV¤ŽÆ 1£‰*›y^ƒj:ƒ¨Ïû€Ùʤª°°u¾!Z _RªrۏÜCÓd@Rs¸]»›lá¤ö9%>+çd—p•¥Ôè¬NpzìBûz×ù9NàDxa2)!,֛ãál6MÎg³çÙ#úfê`5¹ª`8fŽ25	Jú<ù|V]ÌU!é–UÈÍQ¬öMŒÇ”Rÿ`pGJågô(¶ZÚeºˆ`R$Ä¢,d—¢ZÄó±
¥”ûü󉋖wSoœ©¨ªG2µk¤…±ìý¾yeàQ*é$Þ5J+{'3?C܊Æc=Ót)ÖÒº'kFù®)øހW—ăžôm‹´i~¦na+ÚhI?´¹Ás`›Ä^[Tg‰Íu`ë<W©âŒÂ÷‰‰S†?ÄO8BØ6¡µ
Ys½h¶Ò®¶Ž„ ’ø!Ž;}ΨÐé”÷'‡ˆZ„>ñÛ8yöö
+Ú}R}ô³ÂRuhçh­äaÞÊÚ@[ƒZ/?®o³[<üŒ‡ü°B`s)ÿÕ4œ;c‘ÒaÅøÑú“ɈÞÄyóB(M‰³C¶Ž;;B±>˳¶tÈ©ùØGï4­­*rSæp ŒÕI
+ÿE(àûçeÃÚÃÂô±?6—ÃYŠ¢f¶e¨x0ÿëƒ\Ž^w›¸0>—Ò–F[\’X~ԅŅ,<%ž.ðd•_=àRTٓ×ç oÖÌGˆ»›»ðÎsÄ}	²ãnƒ9Ænk[¢«àÚÝ	(џ5Ë"kQ–|ä`lRÀá:ÏWÉì°¬Ì\Ìq)KfvÄýBå­yƒiLq(³¬°8|ƒÇÎÞ,QX¯	+ÌXªÍv2s¿“³&EØc|`œXeŒsm
V`c¥p¥Ó¢»ÿ¶¹9"ju÷Üõ'ÆÃ?zo|zÈýóܾý0l–D2Fýãcê¿4—Þ“‹Ó:“KYÀÜq'ý½F»\{u¶=ˆy]ˆû6koЋý!¶ Ž÷Žr>=ørð€Ã”¤endstream
+endobj
+549 0 obj<</Type/Page/Parent 458 0 R/Contents 550 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 5 0 R/F5 6 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+550 0 obj<</Filter/FlateDecode/Length 970       >>stream
+x
ÅV]oÚH}çWÜ­ö!•jÇ_|¥OIZ¤”²‹[­´ìÃ`Ã4fìÎþ}ό1E4´+­ª5’1öý8÷Üs¯ùÒ	)À'¤~Dq²U'ðúvRøP7‰ý!%ƒ>®ã®“âTÀ6€÷áÔÚ:ƒÆ6‚½3½I;—£„Ò	{ƒ>¥¹ó
(Í.FBi󊘤Ùû“Uò/ÂIò̈J’дb9'S‘YrOo'½dŠû”â÷‘åj­
-xc¾ÖB>—™ÚՆç/Óϝ€¼0ö#侨™ÖÛJåúÉÊPVr¦<ߌ*[0UÍ
¦E0A-ê&·5£74a+žÓ÷é“yÉif˜á'9[xšK[ma¸¢íRdËCT›Iq–ïl±,Ëxmèz:F«âjŸî™6åÎÂË-YYYin½lLŸ/êù‰­1­,ŠëªÜðüêäiù˜•—A(«Í°o
 Q¬®AƒÍ
?³„<¶¬¤ÅÎp½mIë²aj%$*Íi>ŸŽ§wó9IpAE…0°úszÛÐuBÅ'V®Ns.IWT +J¥Ð6ւ—ÕÖá½4´¢	ý$ŽÈ‹ºþß(Žö‡@| £i–â_Ú\µÃ‰<E=ª™b+ÝrBòÇA_Ìq4õÌç¥fªÎ^â.‚§^Ñzñkœ1B8ö2IìÝîë¶æ×j£7ÏïÇ6bÏE¼Ãeà‚wom†Ø¿
)D«èºá'ŽÜ7øyqe!OžÙÉ»ø[ïg«iµâ[%ŒáÐsQ•àÞNŽâÐ_Uå 7k™Ù!5LêBð2ÿçDSc	E€|돱âW$
+ÚUk4ڀòìÍ͙a^ÚenÄ
õ…vŸà°Ê‘ÄʒÏÊΉ=j.í̶¼îGw¸²1f­$r0U­eþÛ	º‚Ô†)Wg˜;ÔfU:Iïg×.Ëä.½ÿðöÃÄ©8wÒՐバš¶Â,÷¢ìV™×[U(rÿ¼]u¨§iÁ3Ÿ˜l]av5ÿÎñãx’~îkÙüηKžSýŠ}Æn¸Ò˜á³±Î!Ïzü:äØÐ
r!ÿòè@ŽåäCÖu%±”ÜÍY$çXÏzü:Öc`Ÿ7oá‘b´ÆÛ
+ԀXÕ»·Ž}2yݹz’³?¯'þ|v‚'ì’ý2ñ~°xlƒý4‡ýßñ÷›«‹rvýþæšÞð
ÞH5æˆÞ®EîÞë^kíõ¼¡ŽnÒOü~ÿ£ìíÄÕp—vþè|_£>endstream
+endobj
+551 0 obj<</Type/Page/Parent 458 0 R/Contents 552 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F5 6 0 R/F8 9 0 R>>/XObject<<>>>>>>endobj
+552 0 obj<</Filter/FlateDecode/Length 501       >>stream
+x
µUˎœ0¼ó-å À›ÓìæyH”Éi¤ÈÍàl›U6_Ÿ6CÒb13«$ì.QEu—oºBH#Ø$PvNàät‹³”îý„Ú¹*œ§¯žABQ"ÉR(* ê €¢te]+ԗÅw*‹ç2‚ì°òèE‰ÔýÊÎnZ}ßãà—·ï‹0YWL³àz`û…†Å^7à)Å"ìܛ{jw
\”Ð «p&*Ќ·¾õ…6}[+â?êHuCyÉ4—bVj%c£mE¬ÓßDëàE{JÖ¶À+þæ8øÐ1]6¨ ŒÈ,ãü&YƒdÇÅ>}¸ž<ٞ0X§hm¿³õ‘<9ÛÒpêÂåö#e£zt†ñ#ž=`¦
û
Yxh¿R
+?ô?®ZiYZñ.V«ŽH™ÅN4:J&Jl¡”£Ð'“N­ˆõù9—4”È}ËQ]R{ô p¸Ãê9
=܎¨4mÉ^Œm+DxRaͪÓè’‹®øÓoýë,Ú¢4´I€)¶wî^R8PÈՒ¢úÏp}›†kNóÛ²ùà	ÓÌOò’(÷#sØ|Þ¾»Ú¼ÃVö8(x=R÷»ÖKƒÜ”¾™Ž³§±Ÿ&}dZŽ7féeá|t~
¢ïendstream
+endobj
+553 0 obj<</Type/Page/Parent 458 0 R/Contents 554 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 5 0 R/F6 7 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+554 0 obj<</Filter/FlateDecode/Length 977       >>stream
+x
VےÚF}ç+ºüâujQfta—MöaSή\~ˆS©A¼ºY3à%_ŸîKÀ1 ¤ž¾œ>}f¾Œ80|sH|bÈêó„ðbE‚×>~z>_ýÿ0¢ÐKœièEΖ¡[Ï}9Û0ö¸³=¸Å?8qféèç»	pi)Æ"4·N¤ÙÕãû›¿ÞËìY(ÚÃ~Y+m®ñBwm£Õ5,Ê&‰Ÿá"{nÚ¯•Ê—ªVy—~F÷ñÞý؏½\}¸ÿ-°Q½.Û¦–ŸÃpgˆyàùdÙ«®Ú‚–µ©]ð銽°èÓ»ãã׏C”Í…`ßÂl;uÚyÛ(h0+OgŠæ šu­/&_Tr¹³úŸÐ0Û®öæ©Àþ}ºw±¤ÀGœ;l1vPlÐéêÎt‡Ñ‹_ÇPôrY©fiV§#€ƒƒ3—F‚Veèî==ÌÀô²ÑÐYÖ^€c˵Yb³ñˆ?ˆD&«ªÌOçEϡ̪²(Uï!5•·ôuÆÃI4	Ïâýh³^À‡§9¤›aÒNÇ"zUKl«ê]ÉC¡«N5yÙ,
Ñ Ã7ÄË7ƒ37àv@|1Ìà}cT_ÈLíÓÏþ£ÛˆˆZòZºE$
+Òx¡z•{4œ[T‰{XɍjÞìŒj nÑȬ$6ç`¿ÖZå.Q;Û]‰SÑДë~£7ِ7ƒ	é÷BìÄ؏<¿(
+r¡±Ë™±:Î?¼»–éü6àqÂè:L¢i"¸O×BÌy<ŸÝYËL}¡Ž£Þ’WKœ‘%uS!¢[Ò
+Îo&üf>Û­s1±žb
+Î|wŸüú®Û{È]ò[†!¸·¸?~Ê<)‹­QðøÏӔ@“‘&6Í8vù$"€;Ù=íô¨ÑGn÷U‘Ò:"QA¨-¤6àJrzõ/úœb¯,‹–¶+%‰Üe±#0|EfY×åÀk·õÀ`yíìôª]W¸
Y-~5Ç´vš=Ãò*-šsD±–/F—ŸQr´(ëu=èK]jÚº¬tÑN´Ö‡ÇÁw‰ºÃÝïB@÷L•< Dþ@ì¶ÔºÍ–ç$ÌZ”ÒàH.ûvÝ¡ØJ.—î‘tª²›ý™Š5°“xêì¸ÜÀ¸!ø†±Øœ¬EÙy1çŠx½_9û½°ífúrA‚ÒÔ[Ü÷^Ô®±;”ðk“	ĉï‰8"Áxš>̦p«6ªj;<ËÀ/kÜ	ˆicg=NJX~õ«¥5=
+<ËÅxÈ£ÛaH·æéè÷Ñ?–tÍendstream
+endobj
+555 0 obj<</Type/Page/Parent 458 0 R/Contents 556 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F6 7 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+556 0 obj<</Filter/FlateDecode/Length 804       >>stream
+x
ÍVÁrÚ@½ó:’L 6qlsètB›¶9$Ó2=”Ng±epk{Ý%|}%Ö&ÐÄæ’ét|ðjõ$=éÉwú¹àԇ(ï8}Ά
=½Ÿú+„Ä8ƒ¾ÿҁ8ÏF“ˏ¸.Löî‡
Lb ǁIÔ5„b™ÏPL@¯#V¨aÚ]
"{k
3ÄÜwÓ£i×Y¹Ó££É/rêWN{äµçžöä·{{y=	¿ÿ°;°[¯7[$Ïé¼È±0PŠ8N‹ù	ˆ¹Hmàæj1ªœc3m”ˆLJ>no.`üåýÏËDD،My‚(b¸G¥ûœ.ÝEÅw ÊR&Õ°ÔM+2Á:Aõ:ÈF$q+Q\RڂwË;û——“<c…ZÃøÛ~”ô¾5c\2,æfÑ\{΅à. rRæT“([2#ÔYT <-„‘íl”RY¬—fÌ$1“÷HxÀϸ1NöQ1æÂä*2F=J‰×º"ußíT„a©j¥,¨ÖTò2cÖEBém’·
ÇÁXË2[SgF¿Ñ*r.VF§-m§ENPšðÿrølzˆ7r©^Óåé€àµŒæiÜLÌ#*¹Ÿë^hÇ 1’ELÓª¶óVµb³S.&ßà~µAs®!F©tFì¢PÔòm½õ¯eƒÃRHÁ.3SMaÝJ»ÇI=IfeNŠé¬œÿC«ñ·‘5“cÏmà¼EXšƒòN
ªPhY´yæó'υ¬®€.1J“ãV˜c¨5Ö.¤mÃxf¦¾Yí2H”Ì«¡Þ¿FuãÝ5)Îa-Éi[юªÕӊÅsEa]GZ8k™ož/JÁŽ\1ƒ<µY&£í™æRsʬuÚ,g#XËXQ«FnÜÖDgI@³mpÕÄF´"…I‰ÙÊҘ^1ŸÊ’ÝÊjՖ²¤áiNH–¨,H5c›Ž³ÚsX­E×£¯ áüÀ뇼oίFçðj±
Ÿ–ãôÜ ÜØögȦŸ·_Ýü¾¾èµwÆÖ“Î×Χé²endstream
+endobj
+557 0 obj<</Type/Page/Parent 458 0 R/Contents 558 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F6 7 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+558 0 obj<</Filter/FlateDecode/Length 1005      >>stream
+x
µVÛrÛ6}÷Wì8/r§R¨K))}èØ­›x&Q\›™ö3ˆ-ÔI dçës ]ÑVTû¡º‹XìåìÙÞ
)ÀsHӍCJÖGÁ  0ãs2›âs„·–”¹…Él>˜ì[‡?=ßq½ý=¤á¢AÂٔ¢” (Jz?±õ’¾\ŸS´¹É­´'Ñ?Ø2i¶ ¡þp<aWOPå,(••,RYX*²+I•ª$b-)îUº\ŠeþàTa¥ÎD"ãEꮕõz)u|âc͛X}6š¡:»ºüõï+i¥^Ó՟Þðß:ú£Ð›}¹XDã‰</“¢}?û7dÔWIeæ’pe§Â
+R-¬4Ý.—¶p2©ÒÒ$%*º?†Í€°
+è4ö¤.•)©
‘a¤„AOïjil‹C[Þ³Ø3JD‘È<)ëÃz3…Ý/Ü/pÎùêLaP͖*Ð MUqs±Wñêëˆ–k¡À*ݶHË*ð1À"#‡Ìxè[	•wSF’#æw/'ÁPö$E²j=.¢×§Ž‡‹óèãç÷ŸŽ´©ã¯á†¶Ê®Þu+c·
Ýîэº;"MP&V×dzžŽGß÷¢¥­5s'•Þhoý˜:bô֝&·]—p´–†dÄ
¬.i#Œ)¶7€†Ø֍sܓƒŠãˋËó8΍ÐU‚)f|Hбբ0ºeÀõûc¦µté"l;8<Ä<þ]'¨
+B0 nOUëª4µRSZrp»R†ðª‹Û¢Üƒ.€;MX”V¾sNØ?D¡pýéŒ"NJ$¶,vdz賶ےjhFÙá
+<֘D(”ñ9eJË{07Á(ü™3Ø©†3²
ÿËT.ia×ošL1"n
ù”É¿v“2UYé*ûÏz֒5ÒÐZÜ[V®ù—vÆJêÚv£ð£i©ˆ煉v‘Xd\Ö(óI1­ûf‡GòŽ‘ôXìBëm©m¹ïx‹Á¸MÈvxö÷í1×&ŠG
+£xB|
îx
_·+ázÄ2[¯·-iéXý¤B5ê-%ô (Gn_âZTïQ›S2%eB£4'
;=R…²JäôØÕF»©Øw\î"ØùDY:ªpãá§-ŽÞ˜MrÌ%í?Œ;օ…±i¬÷#s´L¿Ô5߼ܳ—‰ÿÇ÷öÖ¼X¿’ö@hRŸ5·$ÃélÎç¸orw@קŸÎNé7¹‘9fÃù¾y¸IýÖ²?
æ|}g/M¦“Á4œáî—'!_:Žþ8ú–Wä:endstream
+endobj
+559 0 obj<</Type/Page/Parent 458 0 R/Contents 560 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 5 0 R/F6 7 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+560 0 obj<</Filter/FlateDecode/Length 767       >>stream
+x
UQo¢@~÷WLš{°I¥€´oZm¯Ikmá’{hrÙ œ¸KÙåZÿýÍ®pjm59
ٝo¾ùæÛáµå€M_º>Ä˖mÙàõ»–^/ {—~%Bjzž||>ŒZç×8D©Æð{
D	ŽmC·Ožé3½Žõu2Žîn&'§Ño
+óë°Åu\ßò(²=
+/!š#<M¯~MY¼@iÉf9ò™šÃ—/XBÆáEÐ_E‡Oà	_+”
+ݛƒxÁÅ[ŽÉl‰\Á²¢ÅXpÅ2®ÓÛÐqº–«SjŒ]¤‘2*›@Â;£tq^%Ÿ™å-fsd	–Öº FÂnÊ©i]ê
Žåu]Z
+¬])ñG/w4%ß²ý‹f‚u)fq?e!¸Äÿ…–
ôùuÒ>¥ôk†]·a8‰îÂ
D%ã’Å
+&l‰	L³÷Ö}oë¾IÝ	#˜”IPl'ù2	
+¿ >–Š½ä™œÓ
ãh0@	£ýíôêÈ9EÃs;¼*ÚòóùԂJ"PÚrU(âX0)ßD™HӚe
+¢Â¸é®.Þ²ÚHœÊƒÇ撕E|bA¨eÔNI³aN6Ëqû‡l<²µíŒ$!W2ÉÊ	á»

*W´ûÝëÚö>hh¢9èVòS‘gñŠ¦±ü6¹zelv]µá·³³f¨<VX®à–§vÓÈ3@ï³;I:kÔ«\ÈOä2?´uÍzÏî#L3ŽRQnLD3Ñg5]5²“"D¿ñÖfÆlÉ2šó³3Ãþ
ûݍ×FßUÍÜøT®ƒpvpnÌ«%–ÚQI‹Œ<KšXò0¬›bÍ@Ýfi\b\¢:”¦GøÝ	±¨
+oG‡¥õ€øR·HŸ†#HÇj3:X•m¯«êÕïÇs-¿ßŸ$ºpÌ$÷Ã
Œðæ¢ÀRÂMEÎÒa'è™ÝÀîëwp$z
½#ý½Ti§gº=ŽZ­¿à]
endstream
+endobj
+561 0 obj<</Type/Page/Parent 458 0 R/Contents 562 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 5 0 R/F6 7 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+562 0 obj<</Filter/FlateDecode/Length 691       >>stream
+x
­U[oÚ0~çWœ·ÒiñâÜӗ‰Šucj¡—tOH•I%]Hhì´BÕþûŽ“Ð
-¬«FDäØÇßùü‹ï;Lz8øØÄóŽÉLðYà>-ú—ÓzÁ	Cú|mÁt˜÷ڂ½Êr9^î0ÙêUÞÒѱ™ÛZ!³Ÿésf¶¯ÖÔuX¸
zu>„Àˆ¦tV/ ARo5!Š»§W=-0‡ó"KãåatGæpޘ–OæÝa¡ð¢¢6ƒ™È“!9LD¾T³4¿…eQA–þDÖàÛgœ€iÇÝK¼¯Pª—~¼fýÇhÐÿЬ:ínŠŒÁm
+	mŸTÓ)–Ä"Í–›(ƺáõpp]Z»‘$–„”‹9‚
UžÆE‚ U©Ï!•(•<¦j걀ƒñø@îñ7:þ~Ӌ¢ËÝ‹ÉÆ
+„"“Já>´ëÁ0²÷çD9A™–˜€ˆc”-ØJðZ
+ëYr¹(r‰›ìM0¬VóóÑéÍ·a7u$ß„Ú¾DU•ùn,òiž¤± 	@V›ìë,­ñlÞ$„ö}Qa¹„A>-ޚ¦©¶3!%9£’i€y%•NXE™,u䅤±PÚHϕMv¾?}ÿ«”:¸·[ʵCŽ»"“ˆÍ0}6»ß—©Å*OŠ¸š#Ubo/Ì9Ô*Fk'­ÃY÷ña'BÝ­Ûa®P^»,°ëv!©~㌻I(9uZÝRb!ì#-Ôö¬»=û´e՝Ý†'#HŠ¹ fÚÍGÈð
3	6õÅ\ò.è
+Y¥\ËzÍÕ¯Ôât‰¡¦‚€~{j%h›#÷}fy>]Z³l[ï¿ê÷ ¯I,%|­Ò¤®~ƒû
óÂß$ɒ׺¿ã;Ì'évHºN ¹}‰:ß»!ãendstream
+endobj
+563 0 obj<</Type/Page/Parent 458 0 R/Contents 564 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F6 7 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+564 0 obj<</Filter/FlateDecode/Length 457       >>stream
+x
åTMoÛ0½ûW=e{’-øã˜6]; k×Æ;šÌ )•ä!û÷£-§HQ/+ÐKÂ0`€ä#ýÞ##ŒE
+Yj±„AΫ¤QôÒkVC@i’O2ʝ¬àÿ
+”-Nëèó—
+¸€zESå%}4@1µš]-çp®»
ZéjÛ9
,ÌF¶Ú}ª…bŠã´ âÙ>vè|ˆ
+àOÑ<éÁgÚÐH/_b”!ëÝÖh‡!!	óãëu¥Ï»Ÿ1ϒ´oà Goe´§¾ÏñâÊ×!zÛ¢#}dóF(ß³	­^»‘žF<‚gÑwvLØSz8:ە½bŒqI¿}Bè¤U´:
×)…ÎÍHê^ö„ŒÞ{Åo¶¨a‰Šº†™(óIÅ÷¦q§£È¡¤î[ùpPƒò鸗ÁcÀvìl°R&F+‘sÀ
v8f#Z¸C­Í~{Ûgb·¿ß\Ý_^/‚ù¦ü¾5ëVý©›5‚7ðAõ
G”£a¹ ëYU³ñ¬,çßNç°À߸6[´.º6ìC̋rȍVõä¿·O")ò’Î&e‹ªŸö¼Žn£¿7T‚+endstream
+endobj
+565 0 obj<</Type/Page/Parent 458 0 R/Contents 566 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F6 7 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+566 0 obj<</Filter/FlateDecode/Length 602       >>stream
+x
µUÁnÚ@½ós$Uíx
ئ7R’‰@N/I„Œ=(nm¯³ëD¿¾³Ø8à$(©,$‹Ͼ÷æÍì}‹E׆ŽaÚ²Lf™6t=—Þmú	„Õ&Ðë1Ó;è4˜Ý3»‡¾ptñgGœù­Ó‹>0þŠP9ž~„ȲÀÛ3”9Ï$žø¿)ÏÙå¶CgøQûÇt¼ø>–ñn'ZëJ°$&\b9Oâp
wA%7í Ià/
+.oNt
C·-,°P"#HÄY‡A¤
+C”²<PÚè°Íx>€1çTóÑp¾Z³kOx_ Sé³BÄT7ÎHð’)¤J°DAŠÈý¼{…²0w*åÛ+1Ìp“°ö[Ó$jJÕKmTÚª{5šø»L8¤þ’/Tù5
?5QYÄC•’XÔȧ
ÉEòÂR­V(kLñ±õ3­þq\?!{M +´
+®»œ[ˆ•Ê«†q8½\ßzýGšJm§¥Ö°ð.×̹mV;äiž`ÉºÎ9°\Ó<s^94;ï½2®šÊìü¢ùôŠ–@ê,f!îæâ…öaBú$–ÚGÁ’?`9÷‹¥&Õ1®|³SþÖÊ"vÍ#¯ªL¦’¤ÈJðªµñêúTÝ>è¥÷r)­S­¥÷îÛ	
lµ˜·`i1Û½p½êŠa®g:ý>8´ú7÷Ì|py6€!>`Âs¾©8ÚÜ[Æ6×p­¾ÞÿzÁ~Õ7’nP×횮ãÑ-B‘ž¥ÿ:÷[?[ÿȱendstream
+endobj
+567 0 obj<</Type/Page/Parent 458 0 R/Contents 568 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 5 0 R/F6 7 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+568 0 obj<</Filter/FlateDecode/Length 842       >>stream
+x
µV]oÓ@|ϯX!Z„í¸vÊJ“ù¢1EÕÅ^7çν³ù÷ì]œ6.4mA$ŠåÖs³s³c_¶\pèíBèA;€xÕrlü°c{àwBúíÑG"¤fÁ;ríÎ텓¨õâõ1¸.D)a¢Çq ŠNñ²BUFߨ,¸.³¼Àö©ð`6¿ô7ë~½N\,·M$¨`4ïB!ò,^Òñ$Ç&”µ[ûa8‰ÚÞÝX¼Z#/e†ê¿£|œûÏî¦RñDÄՊØ`‰X±ŒÃ|؇E•¦(©ãŒV䖁ÏÙ
+¾Á¤;|ÙQìëÝÍh`¥€B.Äwj©*ì=äã%“_ö6ÔY¬KB· e¹Â|
¥d\åL§S¥¬â²’øj³á֋Æ^gc³ST…àê–y¸öa:>?¼¾»ÇúŒ$Òñ ‘ÆâOëG8;È3¥{bq…g‡{Ô{ÌÑ?ØO˜Çp5ºû4ÒÍ (Ú$•bu€<‡¦<ûÜõ¯­lœS”Dò§d³ ãI“ï¨*ŽQÕ!B†£ÌÓágµýÝ&ƒh4}3€,bˆ´_Y\„Æ$YVÔ6ÜƝ¶ah:í¢%‚Ò‘©&R Ë2ò-”ì;rÊe¦  `_j“¸¶ßöB‡¾	£dÒj	bÁ9=œ%ag½§ húôOJ*ù|vhC¥hS¹.´¦Ô!ed&~n`;Á‘F'ŒÃé¬gY¹4È&\žœÑk6œ
ô÷V„'6ÌKA;ji–cä¿cgüâvÑs’ƒÓPÀw„·æ^@ÃO硛s~úmÇ1V“¯.èå%-ô–,ϑ_ 1Ò¨úÞRû«±fØÎQ^Qß\£Ån@çq¥cˆ°”¢S‚w¸®I!Ý­Ho¢Bÿ¿û·Fn²ÎãQféúšºD:Úsy³OZzì¦|Ëڔÿñ}°Ý1ŒÄ5sìcéÖ¸iznC`A¦lº¶ûNý à†¡í!o‡Æžóîø¤}¼Â\(¼©²Ä̛åÒsMp|VèoŸ,Ft·ª
+3™fšý€‚Í2YýÈÕ¢ÖûÖ/œ=°endstream
+endobj
+569 0 obj<</Type/Page/Parent 458 0 R/Contents 570 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F6 7 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+570 0 obj<</Filter/FlateDecode/Length 876       >>stream
+x
¥UMoÛ8½ûWÐCÂR%ّÞܦ]H²ÛÆí¥^,jd±+“.IEë¿CŠrb×q
+†
K¾ùzóæÇ …„>)L3çÀ׃$Nà<™Ä9LfSúŸÑW#”þ`|>ŽgDz$?~#M³8;¼ñv1xýai
+‹’¼ç³),
+ ÏI>¼ÄRH4P*
¶6bƒ#J+Ê­+zð£A½¦ñlñðò^”åñ„‡W·søŒdg,¼«X]£\á›Î¼wOYGé˜b$ûä¿d²=>vp·¨ïQÃ_̘V邞íiÀü9Àù5\©•’§a²_„)ËÓ8ãgp捭 ;Q>ƒáӁwJZ­êÓP¡wRÃJðå§'º·ï:(sÜÞ(‹o vuÓµH²5‚±L[­ ¬l«àårùxÅ4ãµ
& ‚5›
5•3ƒ±sà`…óZ½£ßšñŠh:©¬ѐããם¹Â
+VÓ×L²ùÛô$ª˜©FÀVLHbj[	NÑÒ
+´ã¬ó)Œi° 1Øs.ÍsOca
Ö%,‡µjCZ˳Ø!Ò ·¢®á9!÷˜dùµ—g!‹Â¡ù!aFP3*`LÒP6†&ò òe(~ï„~Tk`«°
+Xݲ­©][(Qãzµ+Çr(bçáêú¨Òÿ
åöùR1©×”ہW×@ÊÔ½}ý8ô%Êf£‚tçGôâëŸ/_u§Ç䡑…â͚8€Ü5eéz¨=ú@$hO5¾Ü|¼]|ó{vµ\Ž¸:Tõ÷`gÖÍÆ·ÙßO!_lŸùC¹ÍFIó´>?ë,Œòž³ÎEO¶Ñ’vHDœ('R0
çhÌ.2/-dòXXœÎ¹uânÀ¸¨
+‘ím‹(‰íÝ2q²¡±ËnähÎ7ž¨}4ú}ÅjgÏ+äÿ:‹õnÒéÁIþúÑí.G;Dºö€CsÚ­C­\~@‚ÓiÁFã½P©·GqOüü9Œ0.»=q“¸ú§¬ÙŠä@úúÌz©ñÓɜ+Fê×ÛøJ„Y›…YK§³8¿¸ î÷ïíüúí.ñkEkà†–¸K9ê-£irñäªv–“é$žæ3j1Éü¹ïÔûÅàÓàRV…rendstream
+endobj
+571 0 obj<</Type/Page/Parent 458 0 R/Contents 572 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F6 7 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+572 0 obj<</Filter/FlateDecode/Length 853       >>stream
+x
ÝVÛnÚ@}ç+æ1QcÇ6Ęö)wEJ“¶Ð§¦Š6ë1¸˜]g/Pþ¾³k !éE}ªÖ;—3sæ"zÅÐO ›Ÿu¢0‚4íÒg/ëÓgBo…PøGñQ˜ízÐí¶Hâþn‹8醽]®’ÁsO'£ÎáE
+q£‚ÒM³>Œr T£F|ïF|Kiafµ
æ¸¬— 0^•(LÀYÅmÅæÀætT²J>Žåœ'¨ð3«Ñ.aQVäPŠýÑ·NAÜ
JaOۍ–
³tŸrfJ) f|ŠF‡Îàðbð”{d„›L?9;mšçklA’6ϯo/ï¯n.n›½Ö
5é)x
+J£X.E!·[F¦¾d_åõ…R½âøóÕÍ(ûòŠãšåy)Æ`$ô‚‡¥¡UåXP…Í´aʸn
ߟPXŽª-ݪ4[(\°nò2ãû¢bc

ÐwI}vMoŽîö¬¶¬‚9«,B©!úND¢9ˆ‹ân¿qºj˜ºn™®¥Ð¸]¢ÃªgüWÅÕ¨æ¨6É÷¯Pj6£‚j‡¶E^
+"¶ç˜Ñ iÉ¥ÐX%h”ât´åµ¡`eeiè›Y1r!ÖL&úº)ºqËÔá1`˜Ö©rú½ƒÙnjÛauC)pAcÒP´Õ5r×'¢ƒ³ó! àjYû™²Úó‡Le•¯Méö*á‡}ŠKŸìFc… Š< Y >U˜È©JM[àI6Dc³Yþ>Ÿ Ÿº3`cV
+'9O
+Š¸R†×çnÏLq­¤«¸íCÖ
+祴ºZ®E©ó
ÁºÛߍÏõ9ÀQ+9ñÖ(ë«[(9Ûø¨{¨ÎcߔD°7;òoàÔH®óÝùügŠ|z}3úI>üi5üŽB¿¢£[c€¹ävF«›6¬·ÍŸ‰×é§ó³á˒úœXáŠlž¤à³X]#SDf?Á$ï’ö¬gÇoëÏ;ÒãS¯ÇQÊ6ä©U¥&ì݇q?ÓÁ€þ²š<<~rg8ÇJÖH™\ZZÎ(XÝ
úÑÀ)Ñ5éÖñzk#ø…Òë÷Â~š‘Àѕ£®³<u>v~'»&endstream
+endobj
+573 0 obj<</Type/Page/Parent 458 0 R/Contents 574 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 5 0 R/F6 7 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+574 0 obj<</Filter/FlateDecode/Length 812       >>stream
+x
íUMo›@½ûWÌÑ©Â0^p{¨œ¯6Rê¨1î)’µ%¦²YºNÒªÿ½3Ä$qÔC{,–e‡y3of߸øó ôaÄ!Ù\æ8ó!ˆB¼÷ñ¯%dvcFû6¢\֝ô-.ð½Ðc^çÍð¾ó‚€ÌmO1÷Ù¸3îz—Mönøþˍ£xðöl^q†YñoR‹æBœ/æS˜O?źUÅAü
9x^cìø!gª’ï`+Öyº¬Ôˆu-!Ï2¨Vèa!6D‘B)Œ¹S:…•0+˜¡}2¥­±–ßki*™Bª6"/XƒŠ!>¢FŒ‚^5–/£âÍ>ƽ<Ÿ]6AëKæx#,	z0b³ÌS0•®“ªÖò)”C¦þ#˜)UaZ“>-Ú×Ëó“7¯CÕEª’z#Êì¦Î2ä©T9.õÓ,jàñÕéÉüu§Èëý$Z¦è8kà}VåÈ·©Ä¦Q–Rh•‚,Êm¡Ð¾¥Õ…	ÕÒlÌ#LwÌ¢‘å&Ïàz¸+êõ
…á"wضÄÝÏgkhÅù,öx³æ.¯’™:¢HóDTyq‹ùé•-ώ~S‚œXZ­·BΩúl‰£Œö¸ÙØÎÊ6蚺ƒÁžÛ`4Mg#°ï1N¹åLàá!â´®VJçZo%ŽeÓïqb˜a`´ÿ¡î{Ñûª /dÙ¦/
˜:I¤1ÏBýõl-×MÃõ8ù3íÔ'AK>²Õ…²S	%¦‚]Ù´C†"ÞQïÞ»x€=õ³@/;f§¨+cŸ‡Îæýq¨ñrOãÅ|9»\Îǟ–VG×±–ݝØ9°ÀÎÈ·W,{_첌jñªÚ5¼‰›õáU­NkvÍL*hÇGàÄZé8QI­5Îêú
úŠp}RkTÀD¥Ô^Ô42íº¡U+œHRS’bVtŸ åÿ
+¹OáÿZ!£Ö«øŒO&Àù„q>&™À¢MáDnåZ•öc§öáxøÕ'k'tQ`Ÿ¶VAu
€…¨¸ø•M‡ã€Æƒ/ƒßÐJîendstream
+endobj
+575 0 obj<</Type/Page/Parent 458 0 R/Contents 576 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F6 7 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+576 0 obj<</Filter/FlateDecode/Length 689       >>stream
+x
ՕooÚ0Æßó)îe+5YÒ$LÓ$º²
+	Â
+î«1Mir@¶`ÓØ¡ë·ßÙáOiiaZ÷b áìós9ß5\pèíBèA3€tÞpl‚0°=ð£Æ}J„Ip\ú¹'pî{v°/àE-;ÚhêäO2]°Æ»Ï>¸.°	©
+¢X¤Èq€¥'%ªªä° çYž&
+%È*MQJ*ž‰´š#W˜Á$ɋŠd¯æå‚Û§ìeoKIuv«éÛ>å?Ó«ßîöF½
ãŽþb½ÁÕ ®—A–R•´$
+ßÜ6‘…Pîó¢€Tp•äòK.—¸™qJÀý,Og f¸Ë™¨Šn$é¶MP%åĨ.ºƒ‘–@ZÝ&m̓9%aع¾éŒØ÷¸Ýï|ðœg”©ÞÇÿëyz7³FLÌxž¤³œ#eö4ÿ–xW¡T[‹È—Ú"·¶èºÂò
&¢„/—Ÿö¸²õ$fK,%ù}½~̔ø‰fè9fH²­>!ÁZ ÔE%Z¬ Ϧù¹žW;õDÙ
+
ˋjeÃZúsMA¿éÆÌ
êðš,}c¨ó‹à
+‰¨WJ´/±áËÙÖöjËw%Ÿã<¯$ÒÕE_¿½,h‘dYΧ?Ϻ}Päs‘O9
«f 	5DÆäkàw4ßÄÝ·(]+nz/Þðs ê×ÎtÞ_åX[ç ¶aÈ3–lÙ«óÝmèiõþ¾6Á7Ô
ƒØ§czsa|BSµX`™&ǧ»rwùÿã閙 ¸¹éê>ŠJ2sÝ­JL‘ZUV·4Ó¦z{µÿtu>ªŽhE½«o÷V‚À­¯¡Q»цK\b!ˆ+	WUž™Žg¹adæZ¡Ó:|»ú¡o‡AD×1]nççúˆ:¬qÝø
¦7STendstream
+endobj
+577 0 obj<</Type/Page/Parent 458 0 R/Contents 578 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F6 7 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+578 0 obj<</Filter/FlateDecode/Length 593       >>stream
+x
ÍU]oÚ@|çWì[R)vÏئ/(QÚ
+)A*¸OIT]ì®1wÄw†¶¿¾{¶qpìH‘ª‚Ýzvvvgý8p€àׁÐ/€d= 6áȳ}ð£Ï.þr‹òÂõ†ø÷ÙÅE<øøeŽñ±‚) !'§óók¸’K)>Ä?10Ç©-7ÄÀÓ©Ôì¬i²â‚ k\`Jµ‘BáYÁ&g	KY
+÷¿Aï$œÜޞ@²¢9M4˕m€	Xn€¤Ài¼Å;.Å\]Oc-XytIylå X ^1P&9Ux–˜yÉ·L˜8s•³Ç‚)ýz®B±¼a^E·Ø«bMï3$ßÊAõk॔BQUÒ¬ÊþRÁºäï“iìÕµ_Œí´Ïv$ä!Ži†uÜVK
‰,„nSjãL'óxvœÔaËß
ӈ߁ÑÉ£µ5å™ÊdgM(´ç¯‰f™Ü1l6ÎQÒ+PX*‘‘€ùäÿÃ:ê3f¸Q<ýaâîŽÓ{B<¹@Ôê	4–f•žÚî%Rn:Çø
MS.– %øcpÇ`` _
+Øq½¥i®Mê½Ö¥¡:’v‰ÝX¼C™¾anvû0ê¥Raà*,ý[
+è6®6B;ÍÁÖê#ZZØCÏö›U~“ÿ±
‘âNæØiÛt^(ý3ôЬG×¼Ú¾˜Óÿmd¢zœ0²ƒÑ‚°ÞÚؽ‹s¸d[–É
¾¬àkÁÓ²:kk…ddx«Ñ~èÛaá»o†åÚÿ¾
þ=2oendstream
+endobj
+579 0 obj<</Type/Page/Parent 458 0 R/Contents 580 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F6 7 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+580 0 obj<</Filter/FlateDecode/Length 742       >>stream
+x
ÕUMs›0½ûWìÑé
+˜Î¥“ïz¦qZ›äRw2
+,¶Z#I¤q}°èø£=Ö{°wõ´zïíê©ç‚CoB
$yϱÂÀöÀBzö裲:pìGÛ~0°ým+<×±ƒmAþÇgqïݕ®qV•D!Ä)PIŽqÒÿxã9F~Gq£Ì!¸ÏÀ¢TkàS
qڟNî§÷ç+&4KŒYŽ)|â6‹6ðX^H¥Ñ’̸@
™T`\CAÙo§(ÏV\Ìéo„§Õ
+˜Â“)XZ!Íæc40]P
+\Š2ïnXéˆ>ÚÑyq².H}†M¸†AõŒ
+®	q$2¹Ë=n¢ÄQ°áÃÝ]R»òŠáþX<
]W¾Äg\)èÜ$xfˁ‹š…ºBcÅô«ÌÙãrUÇ4Q
LÓ³¤„߈7mìªÄ6SõŽ	Ï´b…g›³¾ÆÄp)àxv9[Á#‚Ì`ÉsnHC¦5׆‰a
+kÄÚµ]*ì¨9òë-»·ö¾¿]¼ÙMh!¹0Dý¬o$èFAG{?;êBv4»¦ñÄÛ
ÛBÚ3Çї¯»a
+–¦µ#%ÌÉ¥à‰L´QÕ¿¾õ¸2$’ÏQF.iS¦"³2òôæŒd)ª5‡?tD•öçÕ-γ¥å±=0)	6ýp:¹|¯n܇óx²t{êf@´ûµéN}ØPêÅQïA¿;À5O†J‘J9{áy™ÃŜôšÑxÈèÕ×ÆsÔÛµÍk‰^Þ4c·Š–ÓÕÐêø.Æ¿9áÓp֗‚fu±Ï³õà«å-Œº
„ÖOT²¡¿!}=ãšR	º4-q)O˜¡«C—I‚zm‡h­•Fv0B¸Í؟žÞœÂE5`eJÃuI—LżµÉµBgxøóC߃ˆŠ á}V—qïsï–C*endstream
+endobj
+581 0 obj<</Type/Page/Parent 458 0 R/Contents 582 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F6 7 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+582 0 obj<</Filter/FlateDecode/Length 895       >>stream
+x
•VQo›H~÷¯˜‡>àPÀp¥>Û©¬äÜ;›öJm—uà»”G¾_³,¶.­CtBHxgvæÛo¾™õ‰>.„Ì ÕıüÀöÀBüöðmì{ÃՕkG—¾ãÛÁECôëúu2y3ׇdÉƒ?2ÀĎ	56¬…k¬Oø¹æ{1MþÆ-
¸®Þby!n16¢e dVB!¡ÍHR18²c@$¼_l؏ŽÉÖÖa0ó9Ld«ÜÆV;üš&Ðö/›õ.ÙzÚîû‘/˝!Q@j¼³¿bý×ëËz“ÌÆ¢<-Íõ^bíÃxg´²\þ”É
Ë;ÁýßyNÔ¾€ûõózùÛëg®EÁ[,R+`·Ú~]m֛›Ï®ãŽPpÑs„Ñ«©!xy’e,ƒbÛ½­nU{.¸õkD:UÉ5]
k»†£Ð,ÔCVPÒ2	²£”Iyfõ¤´hÍ|]ñEs¬[ñؐ:/(È"c ö°I`)*‚²Š;ToU´Bðs˜AÒÖÌAÙ£.–l_ðB¹©ND«jõŽ³,5b׌=
ýýÍ%6ÖÈt	ߏ-Âh2Ö ÈFXᢢi˜EVðGðµã3zö-@š†%Ä.žA<ð„äEÉW©qk.ǐ,W;X-®qª(“)‘N™‘–À:©`„zí‰ávDe%ž÷©1–óŽp¨ð͉ÌG"ñöÍHXÀ7‚üñ—Îp©
+Uæ§FEh^pöP)Åé>~„ÞTJ’uU
ï›PªÍõ³2œ7¿ÃÕÔè•AÊòØû¨´¨ŠÓDÑ
57/¨ÈØy{:UÏñvHoÍ»'siÞ!Ä×Ϥ\*æPE,kÉøc›Ã]8™rèK©Ê}ZÁpøVÙ6O
³L§÷¯ç—Ýw‰Sƒ`߈ª„Jn‚è%¦H‚Z÷Dµ:v1úPÊ$l—7u­”ÿ-´íÐïÍþ‡cÛÁ½j,UÝ©¹A€b4Õùd,eRTX®1އ&¥v.o¡Å
cG æb˜ —„9´-Kuù0"iŽÔaù–š[ùáÔ©\ÏçEÃ=çúžÌçø¯`®‡Ú.þý:†¥ºvEÍ	Ÿ:œ
+½å†xߣ¯:óþ†¾|—û¡o‡A„gäU¤¶®’ÉŸ“
ÞbYendstream
+endobj
+583 0 obj<</Type/Page/Parent 458 0 R/Contents 584 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+584 0 obj<</Filter/FlateDecode/Length 1348      >>stream
+x
•V]sÛ6|÷¯¸§FI(V²eÉòL3£(I›IüQ‰ž<Dy€AÈdL4FÕ¿ïHÊ4ãvÚÑx¬ÃÝÞíނGcá5¦Ù1LIæG£pD'§§áMÎfxŒ?£hë˜ÏÃIÿû·Ñѯæ4žP´EªéÞĄ4£Erpm´ÓRg/£ïˆ›Ðx\Ç
gˆ,‡oÖ´RËDdÁRÒzøfIKËÑ#OQ£èZ“ÔyY9EVY›ê‚î՞>YúÞo×_¾ÎÃp|ú-¨?ŒÂpú-XÄñf°”ÁÒn^ò«ŸöœVç—F!î“€ÍKò•KTáR)œ
+´F(—zEʀ„µÊ¸Í€ÓtDdòÍàØò¼)<>	¹ŸÃ1¤ìó0{ ¯
+ú®Ó"-î(Ö¹HÿVf) Ò.Í2Ò¥ÃHD–íI8§òґÓ$QÜ)J¥5wÚÄ$Š¸›HêeÊP.ö=œFm+«8SUƘ2Q¬JUÄu—ZgöàÄ9|gCŠ’Ô֘Df5i)+C;¥îÚÖ)³&¶a¯Ëå9ĂùFi®6íJ¾èÎ{%_GvÖÊüPæºii­(zD2èáFN˜Ø¯Ã,CY®wÛÍÀ`
+PS“€2ñ}9øš¯ÇÌäy‡jàêÖä^ñˆõÒöSèiGÕÙYô+‹X+•l¯R{ äõˆS½IÞ@‘çt
+\òÈú5>ÛDYæ2Ów¬ ݕÁf2¡'‘¨d+™
+A4÷Ö	–—×N-À^¯:O¡ºø¹
û´^*÷Yßéb-rÿ¿eõ¦?ڟyOƒÂyj¯ÁÄxê—ó'öÕ úOÌöšm··•Åæ8Ë%˂Ѯ5EO$Ðã©vºƒó´ošCØ=“[½€2ŒßJ“–.¸ùø.X|gåüFtiöÐ>:–/ÑÉÿ/‚ç]WžŒ'Öy‘xƒ~ÆÎaVÛÔX÷O–Õµn©«,¦[Õú:ÞÃ!Š½.epå=ãDçì|…r¬EÖ$>öºÌ…LRl9¡a¾o¼/ô® "«TH70õÌçkÀ®ŒºÕúeóvê]¬Øé^QUH³‡Ó^F~3>_ª¢ØÓ¶*$oŒ%½=`Â.%)/îÓNõP¥€Æ3
iQì‰IG _S5õjÞª­ÆyHÛ·z«»qÓ¶WÁØaô°Óº£Düð§Ró\mR•oÒÕ|TÆö\3°;=4€!5‡qó>ûª`“èûü%O3átF¹Ê˜ºo™…~0'z§ÒèmšñÐ`i|±úé•(K%Ì+v2¨ANI&ñ¶

+pñ…²µE­¨hy+RÉ{[å} ‚	\3u;°À¼„¤|ͦdzW€‹ø¹£ÍÝlqU²W¾ÕÎC…6l<…Öì0Ž‡Jauj‘|$)Šë„~ˆ@|HèbP|§óœ{òÀôŠ~I|„Gþ8l,—­{{úÙ«/°‰_ÓË«ˆ‡Œ~i?äh7Ò0"›Þâ†oV‚•„	â¹ >Þ­,hèA^¬–þ’òÿÙÃù2ö××#ÐÆ$˜Dÿ¥€®Û%CÇí÷8]/:oN=ÞŅoÒ»9ùux2©ÝÌ눵‚ VÏÒÂ)?­=‰òÛëm%Ö²b/Ä´UfÕÒRM©³æ1w<;§ó9M§#<PsªÅÅ۽ü2]bfô{…K—+ÛØál4çÐîƒód6	gÓ3@ǧsŽýyô7ú*¦hendstream
+endobj
+585 0 obj<</Type/Page/Parent 458 0 R/Contents 586 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 5 0 R/F6 7 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+586 0 obj<</Filter/FlateDecode/Length 646       >>stream
+x
•mOÛ0Çß÷SÜË"Í&NÒ$Ý»²„ÑLlR¥ÉK͚áÚàĔ~û“ÁƜ6ª’ÖçßýïÁ—ǃ/iQåfВ ¦ˆ³ŸCü
wíB2šþ½pRŒŽOc`Š;d%Y
+Å
+P”ã,ÎçPÕÀä,DiMÕìÿ\Žk!`~uùÙԍ±ecXQ(Öbë;hÖè_›ÍÇ£â÷ˆÑ8
+„)Íð^¬ÆF<Uu¥És²°?g¶Y³þ!ì"J©ÛM ,¡A2y³5xÎ_}úMÌ?*0(#T#wZ¹.ž^˜‹µ
ê#N ÆTS‚
Þ+½UÀk¸’7ՓÀÌԘš¼a&œêãÓ)°¸K/‰Ð·+¤$ÝfôV¿ØíˀrV_MÍ%lß³O^ÊF¤ãæVJW²Ø×›ƒ°ˆ¶_Ft=¼¶¸ÕF®üDxºäÒ½€OFðF¸Ú*a0£~VtëÌhûp‹y{«k!Vçdx²“w02ò —ã”UÕ£mÛqyäÏ_Ü-c—¶Ý×öB˜íû©8¼õ
+èOÇÎïpâ?¯¸´û‰¯H¹h¶ÚÜ!|E9áM¹øJp®axéÂfŸýwO¢k‡ªD$w3¥Õn£m}¡iµó{Ê
	é~C-j7~‡ZdBRk£Ÿ‡JN2 kûW
+WzÃ+¥VÑRâ)ãe©­j†…úü,Ç­7£‡Aò|ïDgû£Áâ&Ó)¾%CÊ"7¡³Ë“Ìœú
G5œÙjÕŒ°4kILÿ3òã4¦i’á{QI;R?£/£?Ëpendstream
+endobj
+587 0 obj<</Type/Page/Parent 458 0 R/Contents 588 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F5 6 0 R/F6 7 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+588 0 obj<</Filter/FlateDecode/Length 538       >>stream
+x
½UQo¢@~÷WÌ#M\ŽEXð^.Ԑ¨½̽˜Nז;d-Ëözÿþf{mÔ¶—šBH€™ùæ›ù&³w
+Þ<zVێeZÀzÌdàø¾ÛøT6Áe.~ž0ô<ß´O(µ
ƒ¤óiĀRH6˜ù$kÀ̖ÉÊX³JQUæwŠCÊåÕUòƒœ6¹ÚCädmĄ—XÔ%¦iîýàä©ãÒ¨¼¨I^ÂZl³¼|	U¶¨¶µGìu4ݱGMüXßyQ_¥ø]Â<
+ãç- ¶.Ì´r	Hõƒdª¾U^ÿû¬P¼™„]VÕ 6Àóú–WèGaDÈÿÀ*“\ÛǕP;
'»1Ú^OÓqj˜öÐYWjU«
+s´8‹x8O£Ùè:¥plÄ
ÄÁ&âF”¨ºÜ‰Rò¶¥Ø€V/bû§Ê%y%÷=pŸ8³½sC½Ì¶üóó6š|Í҆––á4šÅù‚ׄõ€³Ó*u"7¢‡Ð‘s6ÉÛɎÃ89‹sA²î>Éë2Üèy‡ãùõâkú(D;Õ'ºz±âì¤{U‰tõ}[zVïÿ`Û·еß:9Y‘ãžyÇè“(ˆ/2:~»@(,¬ßƼvÛÓA!¿ç…Øᾁ±Ê×\WH¾Ä³úg¶³ã9¦Ç|<tp/³FÇaÒùÖùe
+þendstream
+endobj
+589 0 obj<</Type/Page/Parent 458 0 R/Contents 590 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F5 6 0 R/F8 9 0 R>>/XObject<<>>>>>>endobj
+590 0 obj<</Filter/FlateDecode/Length 320       >>stream
+x
½•_kƒ0Åßý÷±{ÐÅ4&v/#µ®ÈÚê’HٓŒ6…m­vÝöñwû=Á„€è9÷þ¸ã‡Á‚ Ðç°Øx$ ÀhÀÅ)ž…•74ÞíCaf…0K@5!`=•înÌjØYÓB)9½ûóù”½ñ®Ùo뗍½²ò©Ìf•œdRWX·*uªtk¡{\W5Èrµ7o¡
[›üƒv\¦Út‚K]àù<Uݍ¸ï‚Y&I^ÎL•Ì™¹`ÖÏÚ¤Ó®#ȅʺ2wA<”ÉcYt5dáY¥Å$K¤ÉUk5‡	ŸšÄçŒEðÁxaâc*k9JÙ/»n¶v÷	ãýëÒLþEë28Hçv½ößë滌ÓãEd‚‚Çø{ÀïüO©ñž¼_ˆL†³endstream
+endobj
+591 0 obj<</Type/Page/Parent 458 0 R/Contents 592 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 5 0 R/F8 9 0 R/F9 10 0 R/Fc 11 0 R>>/XObject<<>>>>>>endobj
+592 0 obj<</Filter/FlateDecode/Length 1473      >>stream
+x
­WMoÛ8½çWz©[4Ší¸±³{júÍaÛtëîöÀ (Êb+‰
+IÅ1öÏï’r'èmS$µ$jæ͛™7㫃	ñoBó)ŸlÆ٘^žN³)Ís|žâ×**ÃããG,4Ά?v¼Ç/F/Ù"Ú8[²xÜýÁé£w§4Ó²“ù‚–ExŽ;rôI4¹ «[¯Û5·^ÙVÔîÙòë
¿7™Ç÷g@¼,F¯r筐>˜Ñd’LçÙ	XVŠºÞvÆ)2%ùJ;*ŒìÕzÂgo¨³æZŠœiéÖéu…G-ž8ON$@eßJ¯
 i¿%ÑpFØÿ˜'ÇV¡œ´:W𻪈G: •õB·T*á{«Â½t[˜#YkF5xË‹zÆAÝ'¨Žý-¬6½£3!¿‘j‹ÄÚ#¤Dš{÷‚¼ÈëÀÍuá*ÈqêZ
mŠÛeĄ—L7~Û±!TM¡Jݪäqà>ªmÈÉÀN°¼Ÿ³!“½dR`GÖ°Ý·2ڑSí½ØBMNO²@’UÞj 9µ>Ð-"ÃtÕ«>”	äá<[p‹€ãËéɜîûw9îƦŸ5‡Z@Q"Ánñk0ªVž~59•Ö4
ï/	<ڌ™þ5`™Úï3Àȓ—ŸÄíú¼ÑlŸM¢_¸70u‡ÓE69½­µ×½µ(¯zËFQÀÜ¦åË
ëKR<5&馫+`1 žyP‚֪UVKhˆgõÏQi,mŒýÆ2¹Ñ¾B÷@Ž„-èóûó/·>´Û:¯š¤?RébpÿúóÅ'r’º¦[0—£ «Ó´jYRн¬·ŠÂ[µÎ-ô	B±a‚j#…ÇáIš¦ÓuhÄ;
+êu£.Ÿ%	¼z‘;:L†!/³¤þL=}äF§å›³§ÿ'‰i@ñÁº)¤²bŽÃì@R{ßõþ¶•žÔÝG…/ž„¤àMä×e«„C~Y4Á
›z,LCЧR¯{´åîîxóC~Í¢+´µke«Á1Má²VŽÅ
"G®ÉÔD]UW½f)}0£Ô’hiº-G‡@2úÃl ˜öE0)¤ žîõ
+ãzZh×Õb¤
†'ç…nt«]¥
+Ò;Ù\uҋۃd/Q-µv¡Ôá;µ”éÐ÷1愶bizb|P7‚ý![w0ä‹|ZpUä·3ÆÑåh”SIppU)ÆÏм™$”#½Š2Ï8m	Zï§+:TÀ®7ö\ÜZûm­üÖ*߶õ>bLÂÐZã.l	¾B§„Ä=ÔpZ¨1h&<l÷ýùêËêâ¯ó÷Ë՛³O«oß³ˆ‚/U¢:=Ë_gy´³bÖ®)tÊ¢b«›
+3.lbÕ$®…®C–û5n<7E{¿í›¶P\
kï”:u#•*°a ØG°Ö(ÿ"\ÂwèÛ;õ”1€r±JFõÅDæ•lm,$±	ýØ`Û⍋3„PSu@A©Á$à¬Ý±uÌܦҲÂûÃîÀ#$•<CѸX âX%Øá"eT[EÉàPDˆ}/k»)-ho'ŒþC_aCŘ‹³1È
*Ð钧PÀÂÜîüGA¡FùÊë>¡@U‰´+ÅØv§å7DÖw”oÑ]Jö¡Øð=áK2=¦SÞ¾'ÙìxŠ¦~™-ð?V©£ç$뾀­°„ìÚ ¢çGøJÁ‡ãcøwï9¥ŸN+ìʺø`?òù–¬ƒµÀ¾
+ÕّôÀË`…Çæ#3Y—‡º»|v…TÇß5RFÜç¼ýs/ìj?ÜÇ<u
½[[çÀØ<›`é	ßû4›Ï²ù	¾‚ñÁ“c¦çíòàãÁj¦EXendstream
+endobj
+593 0 obj<</Type/Page/Parent 458 0 R/Contents 594 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 4 0 R/F4 5 0 R/F8 9 0 R>>/XObject<<>>>>>>endobj
+594 0 obj<</Filter/FlateDecode/Length 1704      >>stream
+x
WkSÛFýί¸“/!~c’N;!-„4qš|`Ƴ–ÖX´ëh%ÚÉï¹wwmcBÌX¶çž{îS_v:ÔƇ»ÔRZшÖÕ5~´i0$êñ½Óëâ{¥i¶ÓòïQ7éQ¿=HŽ6¯ÕúêX¯ÛtDãu’~¯KC†#gr[›Æé.…¿:/õ¤&W«ªæï/è`–sm¨žkúÇNý%‘[X[äæšöžÿÙiS«ºÂʍՍ.~’
.w‚÷àã.ÿW¨à°~?üӁŒ¥™ª~La¡®õ$µ©#Œ!ӔS]1_uäÁ9¾¼<÷ëLPæÊQ^ÓTC§áhmE!QÈ·ºþíaZ®œBOAsº¦œ5ñ^AEï/Ž¬ÏÌÕë?ËmTCÄÔ8Ä	Ą” ó¥‡iEDкÈaçtßp&X ÓôVÓ"g÷ŒbÄ—*êÏÄ*d˜qž1Éàù£0_ݬ½ÌMžêÍpB’à3[
ô±{3žœœþ}öêôâòä”öL=ÉôMi3ýb+¥¿É‰ƒ×}êt¸Z¾’ZÝC©($ý¤MU±¥2ùLs®çÖÄt]03_@U“Ö
J9µ¦V¹áhÏr]dµ¦oÎ>Iðó%{
4šU¶¡ž‹/‘_/érÉ¥¶„Ñì	áhs“Ù¥¯¯³ºÚíu[SNWTA(Äîí»3xñòÓäË㳓«g	}ä2W$D½u·²¾e/Ÿ™À‹`»ž«š2‹r2–E¨Ó9øþš»š•Ï}#‘0>u4>9އÉ@o]5µ7š=Ý2úËލ2ˆ6›0OkúlìY£K[e„`—¹sli®+½÷+Ÿ¹ÖFWˆN‚³Ê2þÆò²Û“÷ã—ïƱtólË^¥V²OÂÑ$\î“>k~†ÐVr
õœŽlè"ÊNv†ƒB„jSålŸ\9͸*
+†5*ui«[–è[´¼-)t[•Þ¾Š% ‹Ê"‚ªF@
XdU°è+Õm»!Qo™)†_x-󢠅®€çpf‹Â.YIWë…C~!Of„¹ò¸ñeÂC!d¨dU’>—ãDà'bU_í^=óÅêÚ¥«gÏù†c+Êýj®ÓϬµÓš›¥B’!Î^:D:_qsB¤ÚÉ°Y¹Çª‰m©=Ôªô±”¡áΖÐ|óñsµ­P4Ë]ïvÏ/_ý)Ãïàu7x¼+þéjÂýrË«„Îf˜4ûœÚY,eâ5ºF´%8-ˆeë$bgVBœ[Ö
ÜʦÖ_	N SB]qÂpÊd$À¹–g	ý¸\¤1º&MµF7Ø']8d‹Ê‹•yìÙnwm;ÒyÏRˆqϝKÌ©r±ê^F/)U•
+_ù¬;%¨½û¨ï4&™ö5ž¤›\ѝ.s«ï±ÖûMWÚq«;HFXtàCÜk»”îõ †ûÎêòßç#Üö°Ž
{ŸRØAí¡ ¡‚Äf{–DŒxÜÀâ­bݽ§Šç7šbŽqÎ<Bê1ÒÑ๵Ÿ›…D±Ò)·ÎÐÎÅÔct#J ]x0ÎN¥Ÿ 
â±fÅx™磒?Kƒs÷]¢¡xÜ(9ž8q'5Åí#@߸.ç7—Ÿ†žß†ƒ¤ï’ápÀÉy¢͹bn9ÊX(ýp”®ÏuªPk<JÃùpà™û½ÂnØMw]®Ò–Bm‡×ÖØ­U}އÙÌ×õFÑ«kl0wFE¸îYo,ü”ýqF³æöÅۏtàø6°ò7¬¶4ü8MÓDz0ˆÂ&¥Š¨ÇjGŠ
+:Üé ÒäPóq°Œ
sw
ù¸ÀzúƒDW;¶tFŒOëPùƚV¦gª)ê-F'š×¬šH{gSØ-óz.nùp!)bzT&ñ”“´Lƒ©¼z3kxnÒ¢á
O‘·°eV†À_.´yë×åÓ¯<„Ñ´
)㣙:9ijŒS×L˼fzJÚ'¯ì·Vǯs<[hsˆÍ–éÀ0Ã@õ9-LWDéÇÔ*¦ãji0´ÞÓÃތ8¼ùp~.Üï[æ"çΊ+ž¸®°zbÓçWÞöWå[Ü!‘“|9x=
+¾s8J†GGx‹î&G]¼Vg»ï_^¿dÁua±'9ú½É3ñ¿ïn¶ý­ªœ*ÙY¾3~Y1ªp,Vÿ°Ÿâ½\Æä°Ï§NÇ;íüKÄÕendstream
+endobj
+595 0 obj<</Type/Page/Parent 458 0 R/Contents 596 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 5 0 R/F8 9 0 R/F9 10 0 R/Fc 11 0 R>>/XObject<<>>>>>>endobj
+596 0 obj<</Filter/FlateDecode/Length 1545      >>stream
+x
¥WïoÛ6ýž¿â>-î–(þUÛ)Ö
­ÙP;sÃ<´DÛliÑ%¥¸Ù_¿w$å8^< KÓ(‰hݽ»{÷îôõ¤EM|µ¨ß¦N²õI3iR¯×Áµ;èãÚÆ·•´ÍÖSƒ
5“úb—øÏñƒ/ÛݤEíæ #oS¶—»>~1êR«EéHzƒ>¥¹?oRš5&…¾§Âç¹\ˆJ—ôNÞ©LÒ“KæJceN[U®hcUQÒg3w¤
+*W2ÞùZÉJRúîmBܵ[åä™?Ö^¤ŸOštÞê$m8oxÛʑ™—B0¾°fý`NZœ|–YIەn2­$<+ç*éHÐ{Yþj泆–wRÓë×Ԟ½@€Ã•	{»]R‘rÈçnÒe¿Ã•(–òúý@Ã`p(²•*–dtñÁõu±0v-JeŠ`è!wçí~ÒcC¦†æ¨™Òè‘
+-ðè_GTEn¶ŽÆéEû·§‡Æ¦T‹û£¾>r¶Æ~aœ¾
+Ö~¢wFŠ³C㜚k@3i
+õrÒÞ!°ÒPå$Mo†ü«“ENÂÝÙʚÂTŽ
ìÕ(ó¹3Ne>„d¥ã§£[ï&“–ËœÁ€áQH”¥Uóª”.¡tˆ™(8w€²¨ô®Â‡ÞCy
+)sïïKa¶ ˆ(T!·LAZ	CHŽÈsT
¨˜Š!ü¥à.dÄ[àOåG6déÀµ‡Ž³ù‰<áBÉÚÁÿÜ’e%ºÈØre–¦Ú§ÔB˜›ÔPá€Ñ,ã?p¹ãå^Հ 4§3
+Ó
+k*C	K&.
+zê8Ÿ>j½ÑrÍÍòTÑÐìJ´³7•kÄ5CGʺ2¶A€¨yõf
šŽF7Ã1Í^°‹Q弟Xãгv¯Oá´î¸ëûWcùí¿<Ÿë‰Ãjãäá –Ñð¹¦r£ï'YDÏI
+,íc}†)ƒ>›Ê…•nõDྊ`Ë÷ñ¼=HZ—Œ™€ôè9Å	®³  ĝPZ°ö ÈÉ¢sFh}>- 6t~ïµV1·1FãŒÀàyÅá?âg
+IŠ!ÍßÇÁCøÜ@fSTëÐþZsA‚6¢•xêaúÉ]SE¦«\^ØMöɃu.Y1ʽ¦¬ƒ§4×·%’1W«k	…€,¼ü² oüDý·Êî‰,ë&Z“I‡™¹ˆ®ëajåR9L¶Äñ©Æ‡šç(
×É!n­1Ž‚áÓá)ßfé‰S–ù ÓÛÝI¨fBo´>p/­å'Møࠛw(Öe©ÕZ¿<Žä&]òDn%ÝNtz™ð“çò+òÿ&~€4òÙa%ôӋ1Å;5lEl <N‘tt§„À•°$lN{zõùƒ)¤u­¬­hå6˜J”9ðÃVНÐ*ßd¹&@+lu·~¬Öb7’`)ÀÇv…aËÓ".?GB‰Ið$v/daÖ@U¡Å2V-Lê0œXC.צPXåÎ8™³Æ–ÝL¯ÇéÕôÓx’^þø4¹I¯'ã[¬|¶ÊÊ*Ì
+Þ	ҌjóÄgÆqPÞ3Ú
+{“7ºKȳw #èj	à‘kxõôÁ–Éâ§/.ô±š¥ÀñóØ=ŒOÕ›¢ß—ŒÍüí.^yuH‡7È!Ž1Œ“ˆ¼Ÿ5ÊUåü©¸Ž sbÛÖ[Ì`£^:/{¾Ë¶RkÎ2˜ÄËÖnÁ:H¦ ÃYâ	ZSçÄÃèkÖqô1h?“×Õì­[¨n*Þ¡V0Nî‘0ý‚JûHžÖȝXb;x®îƲ€Ln°Ç9rUæµ+Æ7‰ýu¥ô “ØN¤
Õ‰Âå‹­Ä&Žxg8€TËÂ^.²ÌV¡èkڛß) É\ØH[™1µ·Îò'.Fƒ¸µúý„÷ŸÞ¯v«Òí›oßðû”Ô  uô¾R¹ß¿Î[ýAÒ»ÄLí7!‰ÿïͤÛï&ýÞÙ@ï%ùJO~?ùðjÇendstream
+endobj
+597 0 obj<</Type/Page/Parent 458 0 R/Contents 598 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 5 0 R/F8 9 0 R/Fc 11 0 R>>/XObject<<>>>>>>endobj
+598 0 obj<</Filter/FlateDecode/Length 1739      >>stream
+x
¥X]O9}çWøi7H͐òAß ,[¤.°iUmV‘3ã$ngì©ífýžk{2I +Z	‘Œç~œ{ï9×|?ê²þwÙ°ÇN,-Ž:ÉhĚf‰Öô“>ë÷Β.ëžöð»lqt9Áù,l~àüÉu‡³É‚u“³ÓŒ†I0b“Ìë°IÚzüÈü¿ÉJ0+̓0°WæRXö,݊qŸ1|Íïïî>Ïnï&7×_f7·×w³«‹ÉÅñäëQ‡µ»f[Ác֙*u••i+ÕÊq©DÆ$Œ½4Ԝž'Ñ`¯›Èà8†w³`¦+®–‚)íäB¦ÜI­¾ÊrÁ¤e"DŸnál¾¦W˜"Cåؓäˆèz|?¾EÚß+aÝï(Ba…Ê,N<’õ8×VÜ©œ0ÓÖôø€éh‡Íyú9âîÒX—0öI?ûXyí”iÊOÚ&',ÙÂèbÛRÖ'ª´Y
ˆ[q珕F<I]´º"â
Ïܸ¬àÆ®xžÆT#R—¯# ±KDª
Ð*¥H¥”qǽÍg£Õ²®mÝ,¯´^J[¼‡Yñüj~ †iëþîóÍøËìÓíÕôàd,Ó°J‰QAñ͚-*ƒî0¯Y?`Ö#„Øv+Š„=Þeè†Ï_õܧzr}ƺ]¿v˜¿voèç}Mã–V@ çÒ:Bk§«£7[•¥6.´ó#/朥¨öÍ +¤‚&?x!•TË]ØŸçHZª:Ó¤GeÍÓ̖ZçÖΔKRz¾i÷É=‰Ì|4ë™7ó÷?têä:­ó&#¢+ŸöCžÖÙú‡ínô4Þa«Ý%Ýó&º¿V¡ÝC»êR» áS]åÀC°B+é´Ùf‹yæKN3\k9È”Ί|Áø\WaR¯$ŒÊ˱[S}¸p†+[HGuáLGµaœàµ4:…Cï½®ÍV4šT{ÔRƒµrÍ3jÉÕåžßÊÇL=ŒvE5Á=4µ)PZÚ±¬Bÿ-½ë_Qt"Ä\ëìkÄmŽ¤}aqè$T6IýdÕE¥R¢Ò
QÔ­‚aiz…ØbݛvIäç_ö&ëêÒhÍb\ÖÙ¢óØ\„o&Ri‰¸‘ïóJ CSCÓIÁDŠGbˆXûôð+TD‡ˆ‘<™"KžÊDÍKńÊÀ¦LW{(rˆèl›ülO[œ@Ũý	ùþ“(WL„N:ã¥HyeQ+ÇJm­ÄR*0"ä“@#RƒQ±QåN–8²¶˜jÓ|GÑIÚ˜¤N9ä_Y·—*AývÔ+@;±Ô†ä<èah@®x!¨á=Šßˆ)vã]ϲ‰%–eg¨4{Þ½Â[d‡œînj§ÐŒ²E0{Ì©Vm=«APb¯³w¥P÷ÌÖ²QÔVB=ë^ÙAù”ÂÇ­RQ(Þï¢Ùh<…s/¡Ò‚ØÃï(~¶Ù𕐍X¢€6$:Z“癕Z…>ÜniÏVx {—Rꡳ\?³'žW±ß½ÊúQ‚—ÜxA¡Èrqy¸¾ÝÎ~ox_</öÂK à7HŠ"TT¿µýŒÏ}
¸ˆzƒeÙ«këEÁz­G­:"û‘ì—ôëéˆ8v‘ó%†P
+H	;h:¿»Òc»ò"CT…1•xo9!ã.z$ÎXª*æÔB†ùò£‹©¢/òô+xØÏßè¶Ãû‡!ÝlûÍVÓÚħç¼dØ­Kâ|WŠ}¾Gʱ7÷ayl©øªŸIowÿ BA#¼Tc($°…žÕôàƒx»ªŽg¡õÌ５"«I%TU„•~3¦¸Cuç•ów”·‚Péld²må¿?›ËXP—¸ÚSæÔӕª—}|óv¦-Ž¥€\ËÌËMHÇ{ljJ
dš¯Âíxþò}2‡â“IF,Kµ
+”îqSiìÑq\9_·îIW”x3bä¢n9Ü¡Äh˜=N.°%ö"ñ2±ç5JZdWô¶Š‚S7n¼EÆ*¥°-U	‹}¸`;ë@

‚öýmÅJÆèÆeÆ_
+Œàߘ7åúRA!Hl¢\¬!:Ãå9BqM#¶£"Ÿí-hcðt3l”/Þovïý^ø#À֕`)ºÛï$ýÎ9ôΓÁ O‡Ç‹?./Ø
+šk¶e¿WJï½;%ƒslýC¼‚£cÄ°7Wì6é1uGÆMÝìŠËÙð,âoþ’2Ýß&GýÜq~endstream
+endobj
+599 0 obj<</Type/Page/Parent 458 0 R/Contents 600 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 5 0 R/F8 9 0 R/Fc 11 0 R>>/XObject<<>>>>>>endobj
+600 0 obj<</Filter/FlateDecode/Length 301       >>stream
+x
5KoÂ0„ïùsª@"Á©Ž âЗšÞr	‰C\‡Ú‰þúnxÈòʲg?ÏìoÀÁhqÈ3ê°ˆAˆÕ$•TcÚV¡	–y0Ý$ày3hE*‘× =cÈ«QÞ*8ý§ ”ö­²(Fe1á¼ÕfN™½o¡
¾ß¶Ùûj¦·÷G7!ýî¡¿‚v¯úæQÕÉjç?
CÈgQLFµr•ÕGßÛ	ˆVŒ*‚°+¹.}‰sٝ”‹†®é¦ºe”r<E,$n‚ô.àÏ,zfsÄ×?¾¯ËVꬺþ¨¬ÃËI×jè¹L#1Ÿ#”¤&;Y[š½Ú®ð„¬ÓÊxdeÕé)ƍÁÓd¶†‚J¯{3@™DR¤äšBWë<øþ
{ƒu'endstream
+endobj
+601 0 obj<</Type/Page/Parent 458 0 R/Contents 602 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 5 0 R/F8 9 0 R/F9 10 0 R>>/XObject<<>>>>>>endobj
+602 0 obj<</Filter/FlateDecode/Length 1265      >>stream
+x
VßoÛ6~Ï_qÈËÚ-Q,Û±ypÑf°µ[â®ÍÐ-s“H…¤ìØ¿ïHÉ¿¯ÅâÀ–È#ïîûî;òé$¥>)û4QVô’É„¶_¶ÀK.{WIJÃÉÏãIrIVÒ¶=/73ýáîÌ ½äù°f;óvÆËàtó7WÔïÑlXFã	Íò0‘ìÕ½¨æ‚>ß~¸§[í¥Õ¢t¯gðštל†I«^³¡J³’6Z
)M[«þ8±Õl))k¬•ÚSÜ>3¹œ'©6ÎIþ'ÏF¢sU*ÿLÞPƒùš¦vd1"'-±±ðä–°ÊLUÍÞ{tžbdZTÒÕ"nÆÒéßÞ~¼'–…rÞ
+¯Œ&¡s8S6üšNJ•(©怀ܳöâ+©ˆ]q†i2ôé¼™Lð‹<©ýcTïßßýñþîñ·éÝô×vüšâ }ÁOÌ>ÞµC¿ÜÞÏèÏ.	Ä÷mxºVÚQ„åôÈêÖiÝæ÷š¦ïÞÝ}y3›þ|Ì1lìw®IՏ"Ï-ýC‹§|þAÜØygÑöñš€¿ÒÅр;p¶Køé:P-àóáÁýttqÀ=๻üûÀ¿¸éê÷¼£wh½SrªªKIò«¿¨JA+QªœvhÞ#¹o–Ë—¢4sQÃ~wËkJ¯úI:š$)Ê{û<`þ+æ[„%W¬½ mˆiQŽr¹PZæ¤tЈèªï,Æ"9#WÍsΩu&xhJ¶@ú§?ž&4巎V~ØòÍYÆAÂm‰%‹¨Ü|O•Q«Þ¾mBŸjˆÓya}SŸ‘æ(Öª,Ix/«¹˜VDZïì(Ÿc×ÒϕqQï`¨‘Xí—d´l#ᬥȖäEQ ÐeÒfÑ%CÖß6-׍cJaŒæÓåºß¦%µ¡3²niք4dBŒ—xŽ‹[`SÜXܜB›Âû
|l|a3£Ëgš?£ö5³Ø5-ÌhãA‰—ÙR«
ËʧFYYÁ*drqs¬SýßÒ{vp|mjq°?ÐOú<~«*?E0—È
Y-TÑÄnÜmšE÷’éP—ðÜ^ùléÝ!å%®ñH5½•™`>ëSÎë´-Õ¥ÇkӕìYë‘æ]ñ¬C„‘™À*ªs)qšð¸wÔ<¼ÂI´=k^¤ÅÌQ,”ÅK̏ë3è5ÊÇ«
+EjšH,ª½+у“­;È è²4k–,š–*…Åq@-ble±Ÿ9ü܊]죻R‡™1Ì]w.ñÛöp¯­)prº‚}j¤}émtŸ)®ä)RƒR/à”Ð0ܾ6(¯V|–;4
+°ÈB™{ÒhH ‡½Øq¸>КŠÐ̞K&>n˜ËüÀµ–.+	-BÿÌV¸KĔXxà1¡[>˜+0E&Ã¥(0²Á.ëj™©…ÊvóçãMŒ/Þ3vZZ%ìß áåfº0TÛØҍ
´>Á7ÈÑɯÛýbCxÇrŠÂó"ó2Oè#Ã}dÍ¥ÈÏZfC]g«MȂ÷ÙK€¯\/®ZÛÒp(\úØlJ«jhqà=íQ¥tã¥kÛÙd{·L/'ɤ®—Çn¬Ãñ0p»æV>šðæïg'¿ŸüP¡xendstream
+endobj
+603 0 obj<</Count 14/First 604 0 R/Last 715 0 R>>endobj
+604 0 obj<</Parent 603 0 R/Title(Table of Contents)/Dest[461 0 R/XYZ 0 756 0]/Next 605 0 R>>endobj
+605 0 obj<</Parent 603 0 R/Count -1/First 606 0 R/Last 606 0 R/Title(SAMBA Developers Guide)/Dest[467 0 R/XYZ 0 786 0]/Prev 604 0 R/Next 607 0 R>>endobj
+606 0 obj<</Parent 605 0 R/Title(SAMBA Team)/Dest[467 0 R/XYZ 0 762 0]>>endobj
+607 0 obj<</Parent 603 0 R/Title(Abstract)/Dest[469 0 R/XYZ 0 786 0]/Prev 605 0 R/Next 608 0 R>>endobj
+608 0 obj<</Parent 603 0 R/Count -3/First 609 0 R/Last 611 0 R/Title(Definition of NetBIOS Protocol and Name Resolution Modes)/Dest[475 0 R/XYZ 0 786 0]/Prev 607 0 R/Next 612 0 R>>endobj
+609 0 obj<</Parent 608 0 R/Title(NETBIOS)/Dest[475 0 R/XYZ 0 738 0]/Next 610 0 R>>endobj
+610 0 obj<</Parent 608 0 R/Title(BROADCAST NetBIOS)/Dest[475 0 R/XYZ 0 254 0]/Prev 609 0 R/Next 611 0 R>>endobj
+611 0 obj<</Parent 608 0 R/Title(NBNS NetBIOS)/Dest[477 0 R/XYZ 0 758 0]/Prev 610 0 R>>endobj
+612 0 obj<</Parent 603 0 R/Count -5/First 613 0 R/Last 617 0 R/Title(Samba Architecture)/Dest[479 0 R/XYZ 0 786 0]/Prev 608 0 R/Next 618 0 R>>endobj
+613 0 obj<</Parent 612 0 R/Title(Introduction)/Dest[479 0 R/XYZ 0 762 0]/Next 614 0 R>>endobj
+614 0 obj<</Parent 612 0 R/Title(Multithreading and Samba)/Dest[479 0 R/XYZ 0 581 0]/Prev 613 0 R/Next 615 0 R>>endobj
+615 0 obj<</Parent 612 0 R/Title(Threading smbd)/Dest[479 0 R/XYZ 0 387 0]/Prev 614 0 R/Next 616 0 R>>endobj
+616 0 obj<</Parent 612 0 R/Title(Threading nmbd)/Dest[481 0 R/XYZ 0 786 0]/Prev 615 0 R/Next 617 0 R>>endobj
+617 0 obj<</Parent 612 0 R/Title(nbmd Design)/Dest[481 0 R/XYZ 0 487 0]/Prev 616 0 R>>endobj
+618 0 obj<</Parent 603 0 R/Count -5/First 619 0 R/Last 623 0 R/Title(The samba DEBUG system)/Dest[483 0 R/XYZ 0 786 0]/Prev 612 0 R/Next 627 0 R>>endobj
+619 0 obj<</Parent 618 0 R/Title(New Output Syntax)/Dest[483 0 R/XYZ 0 762 0]/Next 620 0 R>>endobj
+620 0 obj<</Parent 618 0 R/Title(The DEBUG\(\) Macro)/Dest[485 0 R/XYZ 0 771 0]/Prev 619 0 R/Next 621 0 R>>endobj
+621 0 obj<</Parent 618 0 R/Title(The DEBUGADD\(\) Macro)/Dest[487 0 R/XYZ 0 771 0]/Prev 620 0 R/Next 622 0 R>>endobj
+622 0 obj<</Parent 618 0 R/Title(The DEBUGLVL\(\) Macro)/Dest[487 0 R/XYZ 0 546 0]/Prev 621 0 R/Next 623 0 R>>endobj
+623 0 obj<</Parent 618 0 R/Count -3/First 624 0 R/Last 626 0 R/Title(New Functions)/Dest[489 0 R/XYZ 0 786 0]/Prev 622 0 R>>endobj
+624 0 obj<</Parent 623 0 R/Title(dbgtext\(\))/Dest[489 0 R/XYZ 0 766 0]/Next 625 0 R>>endobj
+625 0 obj<</Parent 623 0 R/Title(dbghdr\(\))/Dest[489 0 R/XYZ 0 655 0]/Prev 624 0 R/Next 626 0 R>>endobj
+626 0 obj<</Parent 623 0 R/Title(format_debug_text\(\))/Dest[489 0 R/XYZ 0 543 0]/Prev 625 0 R>>endobj
+627 0 obj<</Parent 603 0 R/Title(Coding Suggestions)/Dest[491 0 R/XYZ 0 786 0]/Prev 618 0 R/Next 628 0 R>>endobj
+628 0 obj<</Parent 603 0 R/Count -5/First 629 0 R/Last 650 0 R/Title(Samba Internals)/Dest[495 0 R/XYZ 0 786 0]/Prev 627 0 R/Next 651 0 R>>endobj
+629 0 obj<</Parent 628 0 R/Title(Character Handling)/Dest[495 0 R/XYZ 0 762 0]/Next 630 0 R>>endobj
+630 0 obj<</Parent 628 0 R/Title(The new functions)/Dest[495 0 R/XYZ 0 621 0]/Prev 629 0 R/Next 631 0 R>>endobj
+631 0 obj<</Parent 628 0 R/Count -15/First 632 0 R/Last 646 0 R/Title(Macros in byteorder.h)/Dest[497 0 R/XYZ 0 758 0]/Prev 630 0 R/Next 647 0 R>>endobj
+632 0 obj<</Parent 631 0 R/Title(CVAL\(buf,pos\))/Dest[497 0 R/XYZ 0 683 0]/Next 633 0 R>>endobj
+633 0 obj<</Parent 631 0 R/Title(PVAL\(buf,pos\))/Dest[497 0 R/XYZ 0 624 0]/Prev 632 0 R/Next 634 0 R>>endobj
+634 0 obj<</Parent 631 0 R/Title(SCVAL\(buf,pos,val\))/Dest[497 0 R/XYZ 0 566 0]/Prev 633 0 R/Next 635 0 R>>endobj
+635 0 obj<</Parent 631 0 R/Title(SVAL\(buf,pos\))/Dest[497 0 R/XYZ 0 507 0]/Prev 634 0 R/Next 636 0 R>>endobj
+636 0 obj<</Parent 631 0 R/Title(IVAL\(buf,pos\))/Dest[497 0 R/XYZ 0 436 0]/Prev 635 0 R/Next 637 0 R>>endobj
+637 0 obj<</Parent 631 0 R/Title(SVALS\(buf,pos\))/Dest[497 0 R/XYZ 0 377 0]/Prev 636 0 R/Next 638 0 R>>endobj
+638 0 obj<</Parent 631 0 R/Title(IVALS\(buf,pos\))/Dest[497 0 R/XYZ 0 319 0]/Prev 637 0 R/Next 639 0 R>>endobj
+639 0 obj<</Parent 631 0 R/Title(SSVAL\(buf,pos,val\))/Dest[497 0 R/XYZ 0 261 0]/Prev 638 0 R/Next 640 0 R>>endobj
+640 0 obj<</Parent 631 0 R/Title(SIVAL\(buf,pos,val\))/Dest[497 0 R/XYZ 0 202 0]/Prev 639 0 R/Next 641 0 R>>endobj
+641 0 obj<</Parent 631 0 R/Title(SSVALS\(buf,pos,val\))/Dest[499 0 R/XYZ 0 786 0]/Prev 640 0 R/Next 642 0 R>>endobj
+642 0 obj<</Parent 631 0 R/Title(SIVALS\(buf,pos,val\))/Dest[499 0 R/XYZ 0 728 0]/Prev 641 0 R/Next 643 0 R>>endobj
+643 0 obj<</Parent 631 0 R/Title(RSVAL\(buf,pos\))/Dest[499 0 R/XYZ 0 669 0]/Prev 642 0 R/Next 644 0 R>>endobj
+644 0 obj<</Parent 631 0 R/Title(RIVAL\(buf,pos\))/Dest[499 0 R/XYZ 0 611 0]/Prev 643 0 R/Next 645 0 R>>endobj
+645 0 obj<</Parent 631 0 R/Title(RSSVAL\(buf,pos,val\))/Dest[499 0 R/XYZ 0 553 0]/Prev 644 0 R/Next 646 0 R>>endobj
+646 0 obj<</Parent 631 0 R/Title(RSIVAL\(buf,pos,val\))/Dest[499 0 R/XYZ 0 481 0]/Prev 645 0 R>>endobj
+647 0 obj<</Parent 628 0 R/Count -2/First 648 0 R/Last 649 0 R/Title(LAN Manager Samba API)/Dest[499 0 R/XYZ 0 423 0]/Prev 631 0 R/Next 650 0 R>>endobj
+648 0 obj<</Parent 647 0 R/Title(Parameters)/Dest[499 0 R/XYZ 0 270 0]/Next 649 0 R>>endobj
+649 0 obj<</Parent 647 0 R/Title(Return value)/Dest[501 0 R/XYZ 0 481 0]/Prev 648 0 R>>endobj
+650 0 obj<</Parent 628 0 R/Title(Code character table)/Dest[503 0 R/XYZ 0 786 0]/Prev 647 0 R>>endobj
+651 0 obj<</Parent 603 0 R/Count -2/First 652 0 R/Last 656 0 R/Title(The smb.conf file)/Dest[505 0 R/XYZ 0 786 0]/Prev 628 0 R/Next 658 0 R>>endobj
+652 0 obj<</Parent 651 0 R/Count -3/First 653 0 R/Last 655 0 R/Title(Lexical Analysis)/Dest[505 0 R/XYZ 0 762 0]/Next 656 0 R>>endobj
+653 0 obj<</Parent 652 0 R/Title(Handling of Whitespace)/Dest[505 0 R/XYZ 0 476 0]/Next 654 0 R>>endobj
+654 0 obj<</Parent 652 0 R/Title(Handling of Line Continuation)/Dest[505 0 R/XYZ 0 312 0]/Prev 653 0 R/Next 655 0 R>>endobj
+655 0 obj<</Parent 652 0 R/Title(Line Continuation Quirks)/Dest[507 0 R/XYZ 0 705 0]/Prev 654 0 R>>endobj
+656 0 obj<</Parent 651 0 R/Count -1/First 657 0 R/Last 657 0 R/Title(Syntax)/Dest[507 0 R/XYZ 0 276 0]/Prev 652 0 R>>endobj
+657 0 obj<</Parent 656 0 R/Title(About params.c)/Dest[509 0 R/XYZ 0 705 0]>>endobj
+658 0 obj<</Parent 603 0 R/Count -9/First 659 0 R/Last 667 0 R/Title(NetBIOS in a Unix World)/Dest[511 0 R/XYZ 0 786 0]/Prev 651 0 R/Next 668 0 R>>endobj
+659 0 obj<</Parent 658 0 R/Title(Introduction)/Dest[511 0 R/XYZ 0 762 0]/Next 660 0 R>>endobj
+660 0 obj<</Parent 658 0 R/Title(Usernames)/Dest[511 0 R/XYZ 0 647 0]/Prev 659 0 R/Next 661 0 R>>endobj
+661 0 obj<</Parent 658 0 R/Title(File Ownership)/Dest[511 0 R/XYZ 0 269 0]/Prev 660 0 R/Next 662 0 R>>endobj
+662 0 obj<</Parent 658 0 R/Title(Passwords)/Dest[513 0 R/XYZ 0 745 0]/Prev 661 0 R/Next 663 0 R>>endobj
+663 0 obj<</Parent 658 0 R/Title(Locking)/Dest[513 0 R/XYZ 0 511 0]/Prev 662 0 R/Next 664 0 R>>endobj
+664 0 obj<</Parent 658 0 R/Title(Deny Modes)/Dest[513 0 R/XYZ 0 198 0]/Prev 663 0 R/Next 665 0 R>>endobj
+665 0 obj<</Parent 658 0 R/Title(Trapdoor UIDs)/Dest[515 0 R/XYZ 0 718 0]/Prev 664 0 R/Next 666 0 R>>endobj
+666 0 obj<</Parent 658 0 R/Title(Port numbers)/Dest[515 0 R/XYZ 0 590 0]/Prev 665 0 R/Next 667 0 R>>endobj
+667 0 obj<</Parent 658 0 R/Title(Protocol Complexity)/Dest[515 0 R/XYZ 0 330 0]/Prev 666 0 R>>endobj
+668 0 obj<</Parent 603 0 R/Title(Tracing samba system calls)/Dest[519 0 R/XYZ 0 786 0]/Prev 658 0 R/Next 669 0 R>>endobj
+669 0 obj<</Parent 603 0 R/Count -8/First 670 0 R/Last 706 0 R/Title(NT Domain RPC's)/Dest[523 0 R/XYZ 0 786 0]/Prev 668 0 R/Next 709 0 R>>endobj
+670 0 obj<</Parent 669 0 R/Count -2/First 671 0 R/Last 672 0 R/Title(Introduction)/Dest[523 0 R/XYZ 0 762 0]/Next 673 0 R>>endobj
+671 0 obj<</Parent 670 0 R/Title(Sources)/Dest[525 0 R/XYZ 0 679 0]/Next 672 0 R>>endobj
+672 0 obj<</Parent 670 0 R/Title(Credits)/Dest[525 0 R/XYZ 0 569 0]/Prev 671 0 R>>endobj
+673 0 obj<</Parent 669 0 R/Count -3/First 674 0 R/Last 676 0 R/Title(Notes and Structures)/Dest[525 0 R/XYZ 0 447 0]/Prev 670 0 R/Next 677 0 R>>endobj
+674 0 obj<</Parent 673 0 R/Title(Notes)/Dest[525 0 R/XYZ 0 426 0]/Next 675 0 R>>endobj
+675 0 obj<</Parent 673 0 R/Title(Enumerations)/Dest[527 0 R/XYZ 0 771 0]/Prev 674 0 R/Next 676 0 R>>endobj
+676 0 obj<</Parent 673 0 R/Title(Structures)/Dest[527 0 R/XYZ 0 288 0]/Prev 675 0 R>>endobj
+677 0 obj<</Parent 669 0 R/Count -12/First 678 0 R/Last 689 0 R/Title(MSRPC over Transact Named Pipe)/Dest[547 0 R/XYZ 0 481 0]/Prev 673 0 R/Next 690 0 R>>endobj
+678 0 obj<</Parent 677 0 R/Title(MSRPC Pipes)/Dest[547 0 R/XYZ 0 419 0]/Next 679 0 R>>endobj
+679 0 obj<</Parent 677 0 R/Title(Header)/Dest[549 0 R/XYZ 0 617 0]/Prev 678 0 R/Next 680 0 R>>endobj
+680 0 obj<</Parent 677 0 R/Title(Tail)/Dest[557 0 R/XYZ 0 571 0]/Prev 679 0 R/Next 681 0 R>>endobj
+681 0 obj<</Parent 677 0 R/Title(RPC Bind / Bind Ack)/Dest[557 0 R/XYZ 0 447 0]/Prev 680 0 R/Next 682 0 R>>endobj
+682 0 obj<</Parent 677 0 R/Title(NTLSA Transact Named Pipe)/Dest[559 0 R/XYZ 0 575 0]/Prev 681 0 R/Next 683 0 R>>endobj
+683 0 obj<</Parent 677 0 R/Title(LSA Open Policy)/Dest[561 0 R/XYZ 0 786 0]/Prev 682 0 R/Next 684 0 R>>endobj
+684 0 obj<</Parent 677 0 R/Title(LSA Query Info Policy)/Dest[561 0 R/XYZ 0 486 0]/Prev 683 0 R/Next 685 0 R>>endobj
+685 0 obj<</Parent 677 0 R/Title(LSA Enumerate Trusted Domains)/Dest[563 0 R/XYZ 0 786 0]/Prev 684 0 R/Next 686 0 R>>endobj
+686 0 obj<</Parent 677 0 R/Title(LSA Open Secret)/Dest[563 0 R/XYZ 0 554 0]/Prev 685 0 R/Next 687 0 R>>endobj
+687 0 obj<</Parent 677 0 R/Title(LSA Close)/Dest[563 0 R/XYZ 0 269 0]/Prev 686 0 R/Next 688 0 R>>endobj
+688 0 obj<</Parent 677 0 R/Title(LSA Lookup SIDS)/Dest[565 0 R/XYZ 0 692 0]/Prev 687 0 R/Next 689 0 R>>endobj
+689 0 obj<</Parent 677 0 R/Title(LSA Lookup Names)/Dest[565 0 R/XYZ 0 207 0]/Prev 688 0 R>>endobj
+690 0 obj<</Parent 669 0 R/Count -5/First 691 0 R/Last 695 0 R/Title(NETLOGON rpc Transact Named Pipe)/Dest[567 0 R/XYZ 0 333 0]/Prev 677 0 R/Next 696 0 R>>endobj
+691 0 obj<</Parent 690 0 R/Title(LSA Request Challenge)/Dest[569 0 R/XYZ 0 586 0]/Next 692 0 R>>endobj
+692 0 obj<</Parent 690 0 R/Title(LSA Authenticate 2)/Dest[569 0 R/XYZ 0 194 0]/Prev 691 0 R/Next 693 0 R>>endobj
+693 0 obj<</Parent 690 0 R/Title(LSA Server Password Set)/Dest[571 0 R/XYZ 0 477 0]/Prev 692 0 R/Next 694 0 R>>endobj
+694 0 obj<</Parent 690 0 R/Title(LSA SAM Logon)/Dest[573 0 R/XYZ 0 786 0]/Prev 693 0 R/Next 695 0 R>>endobj
+695 0 obj<</Parent 690 0 R/Title(LSA SAM Logoff)/Dest[573 0 R/XYZ 0 344 0]/Prev 694 0 R>>endobj
+696 0 obj<</Parent 669 0 R/Count -2/First 697 0 R/Last 698 0 R/Title(\\\\MAILSLOT\\NET\\NTLOGON)/Dest[575 0 R/XYZ 0 758 0]/Prev 690 0 R/Next 699 0 R>>endobj
+697 0 obj<</Parent 696 0 R/Title(Query for PDC)/Dest[575 0 R/XYZ 0 683 0]/Next 698 0 R>>endobj
+698 0 obj<</Parent 696 0 R/Title(SAM Logon)/Dest[577 0 R/XYZ 0 786 0]/Prev 697 0 R>>endobj
+699 0 obj<</Parent 669 0 R/Count -2/First 700 0 R/Last 701 0 R/Title(SRVSVC Transact Named Pipe)/Dest[579 0 R/XYZ 0 758 0]/Prev 696 0 R/Next 702 0 R>>endobj
+700 0 obj<</Parent 699 0 R/Title(Net Share Enum)/Dest[579 0 R/XYZ 0 630 0]/Next 701 0 R>>endobj
+701 0 obj<</Parent 699 0 R/Title(Net Server Get Info)/Dest[581 0 R/XYZ 0 786 0]/Prev 700 0 R>>endobj
+702 0 obj<</Parent 669 0 R/Count -3/First 703 0 R/Last 705 0 R/Title(Cryptographic side of NT Domain Authentication)/Dest[581 0 R/XYZ 0 486 0]/Prev 699 0 R/Next 706 0 R>>endobj
+703 0 obj<</Parent 702 0 R/Title(Definitions)/Dest[581 0 R/XYZ 0 466 0]/Next 704 0 R>>endobj
+704 0 obj<</Parent 702 0 R/Title(Protocol)/Dest[583 0 R/XYZ 0 786 0]/Prev 703 0 R/Next 705 0 R>>endobj
+705 0 obj<</Parent 702 0 R/Title(Comments)/Dest[583 0 R/XYZ 0 437 0]/Prev 704 0 R>>endobj
+706 0 obj<</Parent 669 0 R/Count -2/First 707 0 R/Last 708 0 R/Title(SIDs and RIDs)/Dest[583 0 R/XYZ 0 181 0]/Prev 702 0 R>>endobj
+707 0 obj<</Parent 706 0 R/Title(Well-known SIDs)/Dest[585 0 R/XYZ 0 686 0]/Next 708 0 R>>endobj
+708 0 obj<</Parent 706 0 R/Title(Well-known RIDS)/Dest[587 0 R/XYZ 0 718 0]/Prev 707 0 R>>endobj
+709 0 obj<</Parent 603 0 R/Count -5/First 710 0 R/Last 714 0 R/Title(Samba Printing Internals)/Dest[591 0 R/XYZ 0 786 0]/Prev 669 0 R/Next 715 0 R>>endobj
+710 0 obj<</Parent 709 0 R/Title(Abstract)/Dest[591 0 R/XYZ 0 762 0]/Next 711 0 R>>endobj
+711 0 obj<</Parent 709 0 R/Title(Printing Interface to Various Back ends)/Dest[591 0 R/XYZ 0 674 0]/Prev 710 0 R/Next 712 0 R>>endobj
+712 0 obj<</Parent 709 0 R/Title(Print Queue TDB's)/Dest[591 0 R/XYZ 0 414 0]/Prev 711 0 R/Next 713 0 R>>endobj
+713 0 obj<</Parent 709 0 R/Title(ChangeID & Client Caching of Printer Information)/Dest[595 0 R/XYZ 0 745 0]/Prev 712 0 R/Next 714 0 R>>endobj
+714 0 obj<</Parent 709 0 R/Title(Windows NT/2K Printer Change Notify)/Dest[595 0 R/XYZ 0 683 0]/Prev 713 0 R>>endobj
+715 0 obj<</Parent 603 0 R/Count -1/First 716 0 R/Last 716 0 R/Title(Samba WINS Internals)/Dest[601 0 R/XYZ 0 786 0]/Prev 709 0 R>>endobj
+716 0 obj<</Parent 715 0 R/Title(WINS Failover)/Dest[601 0 R/XYZ 0 762 0]>>endobj
+717 0 obj<</Type/Catalog/Pages 458 0 R/PageLayout/SinglePage/Outlines 603 0 R/OpenAction[467 0 R/XYZ null null 0]/PageMode/UseOutlines/PageLabels<</Nums[0<</P(title)>>1<</S/r>>4<</S/D/St 1/P()>>5<</S/D/St 2/P()>>8<</S/D/St 5/P()>>10<</S/D/St 7/P()>>12<</S/D/St 9/P()>>16<</S/D/St 13/P()>>18<</S/D/St 15/P()>>23<</S/D/St 20/P()>>26<</S/D/St 23/P()>>30<</S/D/St 27/P()>>32<</S/D/St 29/P()>>66<</S/D/St 63/P()>>71<</S/D/St 68/P()>>]>>>>endobj
 xref
-0 806 
+0 718 
 0000000000 65535 f 
 0000000015 00000 n 
-0000000243 00000 n 
-0000001809 00000 n 
-0000001883 00000 n 
-0000001962 00000 n 
-0000002044 00000 n 
+0000000245 00000 n 
+0000001811 00000 n 
+0000001885 00000 n 
+0000001967 00000 n 
+0000002045 00000 n 
 0000002122 00000 n 
-0000002199 00000 n 
-0000002278 00000 n 
-0000002361 00000 n 
-0000002438 00000 n 
-0000002520 00000 n 
-0000002579 00000 n 
-0000002680 00000 n 
-0000002782 00000 n 
-0000002883 00000 n 
-0000002984 00000 n 
-0000003086 00000 n 
-0000003188 00000 n 
-0000003290 00000 n 
-0000003391 00000 n 
-0000003493 00000 n 
-0000003595 00000 n 
-0000003697 00000 n 
-0000003799 00000 n 
-0000003901 00000 n 
-0000004002 00000 n 
-0000004104 00000 n 
-0000004206 00000 n 
-0000004308 00000 n 
-0000004410 00000 n 
-0000004512 00000 n 
-0000004614 00000 n 
-0000004716 00000 n 
-0000004818 00000 n 
-0000004919 00000 n 
-0000005020 00000 n 
-0000005122 00000 n 
-0000005224 00000 n 
-0000005326 00000 n 
-0000005428 00000 n 
-0000005530 00000 n 
-0000005632 00000 n 
-0000005734 00000 n 
-0000005836 00000 n 
-0000005938 00000 n 
-0000006040 00000 n 
-0000006142 00000 n 
-0000006244 00000 n 
-0000006346 00000 n 
-0000006448 00000 n 
-0000006550 00000 n 
-0000006651 00000 n 
-0000006751 00000 n 
-0000006851 00000 n 
-0000007161 00000 n 
-0000007262 00000 n 
-0000007364 00000 n 
-0000007466 00000 n 
-0000007568 00000 n 
-0000007670 00000 n 
-0000007771 00000 n 
-0000007873 00000 n 
-0000007975 00000 n 
-0000008077 00000 n 
-0000008179 00000 n 
-0000008281 00000 n 
-0000008383 00000 n 
-0000008484 00000 n 
-0000008586 00000 n 
-0000008688 00000 n 
-0000008790 00000 n 
-0000008892 00000 n 
-0000008994 00000 n 
-0000009096 00000 n 
-0000009198 00000 n 
-0000009300 00000 n 
-0000009402 00000 n 
-0000009503 00000 n 
-0000009604 00000 n 
-0000009706 00000 n 
-0000009808 00000 n 
-0000009910 00000 n 
-0000010012 00000 n 
-0000010114 00000 n 
-0000010216 00000 n 
-0000010318 00000 n 
-0000010420 00000 n 
-0000010522 00000 n 
-0000010624 00000 n 
-0000010726 00000 n 
-0000010828 00000 n 
-0000010930 00000 n 
-0000011032 00000 n 
-0000011134 00000 n 
-0000011236 00000 n 
-0000011338 00000 n 
-0000011439 00000 n 
-0000011539 00000 n 
-0000011639 00000 n 
-0000011964 00000 n 
-0000012066 00000 n 
-0000012169 00000 n 
-0000012272 00000 n 
-0000012375 00000 n 
-0000012478 00000 n 
-0000012581 00000 n 
-0000012684 00000 n 
-0000012787 00000 n 
-0000012890 00000 n 
-0000012993 00000 n 
-0000013096 00000 n 
-0000013199 00000 n 
-0000013302 00000 n 
-0000013405 00000 n 
-0000013508 00000 n 
-0000013611 00000 n 
-0000013714 00000 n 
-0000013817 00000 n 
-0000013920 00000 n 
-0000014023 00000 n 
-0000014125 00000 n 
-0000014228 00000 n 
-0000014331 00000 n 
-0000014434 00000 n 
-0000014537 00000 n 
-0000014640 00000 n 
-0000014742 00000 n 
-0000014845 00000 n 
-0000014947 00000 n 
-0000015050 00000 n 
-0000015153 00000 n 
-0000015256 00000 n 
-0000015359 00000 n 
-0000015462 00000 n 
-0000015565 00000 n 
-0000015668 00000 n 
-0000015771 00000 n 
-0000015874 00000 n 
-0000015977 00000 n 
-0000016080 00000 n 
-0000016183 00000 n 
-0000016284 00000 n 
-0000016385 00000 n 
-0000016486 00000 n 
-0000016855 00000 n 
-0000016957 00000 n 
-0000017060 00000 n 
-0000017093 00000 n 
-0000017148 00000 n 
-0000017235 00000 n 
-0000017290 00000 n 
-0000017377 00000 n 
-0000017444 00000 n 
-0000017530 00000 n 
-0000017632 00000 n 
-0000017735 00000 n 
-0000017838 00000 n 
-0000017941 00000 n 
-0000018043 00000 n 
-0000018146 00000 n 
-0000018249 00000 n 
-0000018352 00000 n 
-0000018455 00000 n 
-0000018558 00000 n 
-0000018660 00000 n 
-0000018763 00000 n 
-0000018866 00000 n 
-0000018969 00000 n 
-0000019072 00000 n 
-0000019175 00000 n 
-0000019278 00000 n 
-0000019381 00000 n 
-0000019484 00000 n 
-0000019586 00000 n 
-0000019688 00000 n 
-0000019791 00000 n 
-0000019894 00000 n 
-0000019997 00000 n 
-0000020100 00000 n 
-0000020203 00000 n 
-0000020306 00000 n 
-0000020409 00000 n 
-0000020512 00000 n 
-0000020615 00000 n 
-0000020718 00000 n 
-0000020821 00000 n 
-0000020924 00000 n 
-0000021026 00000 n 
-0000021127 00000 n 
-0000021228 00000 n 
-0000021557 00000 n 
-0000021660 00000 n 
-0000021763 00000 n 
-0000021866 00000 n 
-0000021969 00000 n 
-0000022072 00000 n 
-0000022175 00000 n 
-0000022278 00000 n 
-0000022380 00000 n 
-0000022483 00000 n 
-0000022586 00000 n 
-0000022689 00000 n 
-0000022792 00000 n 
-0000022895 00000 n 
-0000022998 00000 n 
-0000023100 00000 n 
-0000023203 00000 n 
-0000023306 00000 n 
-0000023409 00000 n 
-0000023512 00000 n 
-0000023615 00000 n 
-0000023718 00000 n 
-0000023821 00000 n 
-0000023924 00000 n 
-0000024027 00000 n 
-0000024129 00000 n 
-0000024231 00000 n 
-0000024334 00000 n 
-0000024437 00000 n 
-0000024540 00000 n 
-0000024643 00000 n 
-0000024746 00000 n 
-0000024849 00000 n 
-0000024952 00000 n 
-0000025055 00000 n 
-0000025158 00000 n 
-0000025261 00000 n 
-0000025364 00000 n 
-0000025467 00000 n 
-0000025570 00000 n 
-0000025673 00000 n 
-0000025776 00000 n 
-0000025879 00000 n 
-0000025982 00000 n 
-0000026085 00000 n 
-0000026188 00000 n 
-0000026291 00000 n 
-0000026394 00000 n 
-0000026497 00000 n 
-0000026599 00000 n 
-0000026700 00000 n 
-0000026801 00000 n 
-0000027226 00000 n 
-0000027329 00000 n 
-0000027432 00000 n 
-0000027535 00000 n 
-0000027638 00000 n 
-0000027741 00000 n 
-0000027844 00000 n 
-0000027947 00000 n 
-0000028050 00000 n 
-0000028153 00000 n 
-0000028256 00000 n 
-0000028359 00000 n 
-0000028462 00000 n 
-0000028565 00000 n 
-0000028668 00000 n 
-0000028770 00000 n 
-0000028873 00000 n 
-0000028976 00000 n 
-0000029079 00000 n 
-0000029182 00000 n 
-0000029285 00000 n 
-0000029387 00000 n 
-0000029490 00000 n 
-0000029592 00000 n 
-0000029695 00000 n 
-0000029798 00000 n 
-0000029901 00000 n 
-0000030004 00000 n 
-0000030107 00000 n 
-0000030210 00000 n 
-0000030313 00000 n 
-0000030416 00000 n 
-0000030519 00000 n 
-0000030622 00000 n 
-0000030725 00000 n 
-0000030828 00000 n 
-0000030930 00000 n 
-0000031033 00000 n 
-0000031136 00000 n 
-0000031239 00000 n 
-0000031568 00000 n 
-0000031652 00000 n 
-0000031738 00000 n 
-0000031812 00000 n 
-0000031898 00000 n 
-0000031931 00000 n 
-0000032009 00000 n 
-0000032096 00000 n 
-0000032202 00000 n 
-0000032288 00000 n 
-0000032360 00000 n 
-0000032446 00000 n 
-0000032505 00000 n 
-0000032592 00000 n 
-0000032683 00000 n 
-0000032769 00000 n 
-0000032840 00000 n 
-0000032926 00000 n 
-0000032991 00000 n 
-0000033025 00000 n 
-0000033059 00000 n 
-0000036406 00000 n 
-0000036449 00000 n 
-0000036492 00000 n 
-0000036535 00000 n 
-0000036578 00000 n 
-0000036621 00000 n 
-0000036664 00000 n 
-0000036707 00000 n 
-0000036750 00000 n 
-0000036793 00000 n 
-0000036836 00000 n 
-0000036879 00000 n 
-0000036922 00000 n 
-0000036965 00000 n 
-0000037008 00000 n 
-0000037051 00000 n 
-0000037094 00000 n 
-0000037137 00000 n 
-0000037180 00000 n 
-0000037223 00000 n 
-0000037266 00000 n 
-0000037309 00000 n 
-0000037352 00000 n 
-0000037395 00000 n 
-0000037438 00000 n 
-0000037481 00000 n 
-0000037524 00000 n 
-0000037567 00000 n 
-0000037610 00000 n 
-0000037653 00000 n 
-0000037696 00000 n 
-0000037739 00000 n 
-0000037782 00000 n 
-0000037825 00000 n 
-0000037868 00000 n 
-0000037911 00000 n 
-0000037954 00000 n 
-0000037997 00000 n 
-0000038040 00000 n 
-0000038083 00000 n 
-0000038126 00000 n 
-0000038169 00000 n 
-0000038212 00000 n 
-0000038255 00000 n 
-0000038298 00000 n 
-0000038341 00000 n 
-0000038384 00000 n 
-0000038427 00000 n 
-0000038470 00000 n 
-0000038513 00000 n 
-0000038556 00000 n 
-0000038599 00000 n 
-0000038642 00000 n 
-0000038685 00000 n 
-0000038728 00000 n 
-0000038771 00000 n 
-0000038814 00000 n 
-0000038857 00000 n 
-0000038900 00000 n 
-0000038943 00000 n 
-0000038986 00000 n 
-0000039029 00000 n 
-0000039072 00000 n 
-0000039115 00000 n 
-0000039158 00000 n 
-0000039201 00000 n 
-0000039244 00000 n 
-0000039287 00000 n 
-0000039330 00000 n 
-0000039373 00000 n 
-0000039416 00000 n 
-0000039459 00000 n 
-0000039502 00000 n 
-0000039545 00000 n 
-0000039588 00000 n 
-0000039631 00000 n 
-0000039674 00000 n 
-0000039717 00000 n 
-0000039760 00000 n 
-0000039803 00000 n 
-0000039846 00000 n 
-0000039889 00000 n 
-0000039932 00000 n 
-0000039975 00000 n 
-0000040018 00000 n 
-0000040061 00000 n 
-0000040104 00000 n 
-0000040147 00000 n 
-0000040190 00000 n 
-0000040233 00000 n 
-0000040276 00000 n 
-0000040319 00000 n 
-0000040362 00000 n 
-0000040405 00000 n 
-0000040448 00000 n 
-0000040491 00000 n 
-0000040534 00000 n 
-0000040577 00000 n 
-0000040620 00000 n 
-0000040663 00000 n 
-0000040706 00000 n 
-0000040749 00000 n 
-0000040792 00000 n 
-0000040835 00000 n 
-0000040878 00000 n 
-0000040921 00000 n 
-0000040964 00000 n 
-0000041007 00000 n 
-0000041050 00000 n 
-0000041093 00000 n 
-0000041136 00000 n 
-0000041179 00000 n 
-0000041222 00000 n 
-0000041265 00000 n 
-0000041308 00000 n 
-0000041351 00000 n 
-0000041394 00000 n 
-0000041437 00000 n 
-0000041480 00000 n 
-0000041523 00000 n 
-0000041566 00000 n 
-0000041609 00000 n 
-0000041652 00000 n 
-0000041695 00000 n 
-0000041738 00000 n 
-0000041781 00000 n 
-0000041824 00000 n 
-0000041867 00000 n 
-0000041910 00000 n 
-0000041953 00000 n 
-0000041996 00000 n 
-0000042039 00000 n 
-0000042082 00000 n 
-0000042125 00000 n 
-0000042168 00000 n 
-0000042211 00000 n 
-0000042254 00000 n 
-0000042297 00000 n 
-0000042340 00000 n 
-0000042383 00000 n 
-0000042426 00000 n 
-0000042469 00000 n 
-0000042512 00000 n 
-0000042555 00000 n 
-0000042598 00000 n 
-0000042641 00000 n 
-0000042684 00000 n 
-0000042727 00000 n 
-0000042770 00000 n 
-0000042813 00000 n 
-0000042856 00000 n 
-0000042899 00000 n 
-0000042942 00000 n 
-0000042985 00000 n 
-0000043028 00000 n 
-0000043071 00000 n 
-0000043114 00000 n 
-0000043157 00000 n 
-0000043200 00000 n 
-0000043243 00000 n 
-0000043286 00000 n 
-0000043329 00000 n 
-0000043372 00000 n 
-0000043415 00000 n 
-0000043458 00000 n 
-0000043501 00000 n 
-0000043544 00000 n 
-0000043587 00000 n 
-0000043630 00000 n 
-0000043673 00000 n 
-0000043716 00000 n 
-0000043759 00000 n 
-0000043802 00000 n 
-0000043845 00000 n 
-0000043888 00000 n 
-0000043931 00000 n 
-0000043974 00000 n 
-0000044017 00000 n 
-0000044060 00000 n 
-0000044103 00000 n 
-0000044146 00000 n 
-0000044189 00000 n 
-0000044232 00000 n 
-0000044275 00000 n 
-0000044318 00000 n 
-0000044361 00000 n 
-0000044404 00000 n 
-0000044447 00000 n 
-0000044490 00000 n 
-0000044533 00000 n 
-0000044576 00000 n 
-0000044619 00000 n 
-0000044662 00000 n 
-0000044705 00000 n 
-0000044748 00000 n 
-0000044791 00000 n 
-0000044834 00000 n 
-0000044877 00000 n 
-0000044920 00000 n 
-0000044963 00000 n 
-0000045006 00000 n 
-0000045049 00000 n 
-0000045092 00000 n 
-0000045135 00000 n 
-0000045178 00000 n 
-0000045221 00000 n 
-0000045264 00000 n 
-0000045307 00000 n 
-0000045350 00000 n 
-0000046037 00000 n 
-0000046195 00000 n 
-0000046362 00000 n 
-0000046552 00000 n 
-0000049154 00000 n 
-0000049345 00000 n 
-0000052450 00000 n 
-0000052641 00000 n 
-0000056177 00000 n 
-0000056368 00000 n 
-0000056827 00000 n 
-0000056985 00000 n 
-0000057214 00000 n 
-0000057414 00000 n 
-0000059223 00000 n 
-0000059395 00000 n 
-0000061478 00000 n 
-0000061650 00000 n 
-0000063568 00000 n 
-0000063735 00000 n 
-0000065380 00000 n 
-0000065547 00000 n 
-0000067089 00000 n 
-0000067256 00000 n 
-0000068990 00000 n 
-0000069157 00000 n 
-0000070893 00000 n 
-0000071069 00000 n 
-0000072334 00000 n 
-0000072510 00000 n 
-0000073721 00000 n 
-0000073897 00000 n 
-0000075145 00000 n 
-0000075312 00000 n 
-0000076222 00000 n 
-0000076413 00000 n 
-0000078374 00000 n 
-0000078531 00000 n 
-0000080308 00000 n 
-0000080475 00000 n 
-0000082457 00000 n 
-0000082624 00000 n 
-0000083360 00000 n 
-0000083536 00000 n 
-0000084578 00000 n 
-0000084745 00000 n 
-0000086380 00000 n 
-0000086547 00000 n 
-0000087171 00000 n 
-0000087347 00000 n 
-0000088677 00000 n 
-0000088853 00000 n 
-0000089927 00000 n 
-0000090094 00000 n 
-0000090695 00000 n 
-0000090862 00000 n 
-0000092648 00000 n 
-0000092815 00000 n 
-0000094532 00000 n 
-0000094699 00000 n 
-0000096548 00000 n 
-0000096705 00000 n 
-0000097820 00000 n 
-0000098005 00000 n 
-0000099612 00000 n 
-0000099778 00000 n 
-0000100667 00000 n 
-0000100867 00000 n 
-0000102592 00000 n 
-0000102768 00000 n 
-0000104593 00000 n 
-0000104769 00000 n 
-0000105380 00000 n 
-0000105556 00000 n 
-0000106331 00000 n 
-0000106507 00000 n 
-0000107264 00000 n 
-0000107440 00000 n 
-0000108279 00000 n 
-0000108455 00000 n 
-0000109291 00000 n 
-0000109476 00000 n 
-0000110316 00000 n 
-0000110492 00000 n 
-0000111252 00000 n 
-0000111418 00000 n 
-0000112043 00000 n 
-0000112228 00000 n 
-0000112996 00000 n 
-0000113172 00000 n 
-0000114134 00000 n 
-0000114319 00000 n 
-0000115654 00000 n 
-0000115839 00000 n 
-0000116857 00000 n 
-0000117023 00000 n 
-0000117603 00000 n 
-0000117788 00000 n 
-0000118847 00000 n 
-0000119023 00000 n 
-0000119901 00000 n 
-0000120077 00000 n 
-0000121171 00000 n 
-0000121356 00000 n 
-0000122242 00000 n 
-0000122427 00000 n 
-0000123204 00000 n 
-0000123380 00000 n 
-0000123981 00000 n 
-0000124157 00000 n 
-0000124819 00000 n 
-0000125004 00000 n 
-0000125981 00000 n 
-0000126157 00000 n 
-0000127164 00000 n 
-0000127340 00000 n 
-0000128334 00000 n 
-0000128519 00000 n 
-0000129351 00000 n 
-0000129527 00000 n 
-0000130260 00000 n 
-0000130436 00000 n 
-0000131118 00000 n 
-0000131294 00000 n 
-0000132123 00000 n 
-0000132299 00000 n 
-0000133287 00000 n 
-0000133454 00000 n 
-0000134890 00000 n 
-0000135075 00000 n 
-0000135808 00000 n 
-0000135993 00000 n 
-0000136620 00000 n 
-0000136786 00000 n 
-0000137184 00000 n 
-0000137370 00000 n 
-0000138898 00000 n 
-0000139073 00000 n 
-0000140787 00000 n 
-0000140973 00000 n 
-0000142555 00000 n 
-0000142731 00000 n 
-0000144498 00000 n 
-0000144665 00000 n 
-0000145043 00000 n 
-0000145219 00000 n 
-0000146516 00000 n 
-0000146692 00000 n 
-0000148399 00000 n 
-0000148576 00000 n 
-0000150328 00000 n 
-0000150495 00000 n 
-0000152389 00000 n 
-0000152574 00000 n 
-0000153844 00000 n 
-0000154020 00000 n 
-0000155748 00000 n 
-0000155960 00000 n 
-0000157583 00000 n 
-0000157767 00000 n 
-0000158657 00000 n 
-0000158713 00000 n 
-0000158812 00000 n 
-0000158965 00000 n 
-0000159044 00000 n 
-0000159147 00000 n 
-0000159345 00000 n 
-0000159439 00000 n 
-0000159556 00000 n 
-0000159655 00000 n 
-0000159815 00000 n 
-0000159914 00000 n 
-0000160038 00000 n 
-0000160152 00000 n 
-0000160266 00000 n 
-0000160364 00000 n 
-0000160528 00000 n 
-0000160632 00000 n 
-0000160751 00000 n 
-0000160873 00000 n 
-0000160995 00000 n 
-0000161131 00000 n 
-0000161231 00000 n 
-0000161343 00000 n 
-0000161453 00000 n 
-0000161577 00000 n 
-0000161734 00000 n 
-0000161839 00000 n 
-0000161956 00000 n 
-0000162114 00000 n 
-0000162218 00000 n 
-0000162335 00000 n 
-0000162457 00000 n 
-0000162574 00000 n 
-0000162691 00000 n 
-0000162809 00000 n 
-0000162927 00000 n 
-0000163049 00000 n 
-0000163171 00000 n 
-0000163295 00000 n 
-0000163419 00000 n 
-0000163538 00000 n 
-0000163657 00000 n 
-0000163781 00000 n 
-0000163892 00000 n 
-0000164049 00000 n 
-0000164148 00000 n 
-0000164249 00000 n 
-0000164356 00000 n 
-0000164515 00000 n 
-0000164654 00000 n 
-0000164765 00000 n 
-0000164896 00000 n 
-0000165009 00000 n 
-0000165138 00000 n 
-0000165228 00000 n 
-0000165393 00000 n 
-0000165492 00000 n 
-0000165601 00000 n 
-0000165715 00000 n 
-0000165824 00000 n 
-0000165931 00000 n 
-0000166041 00000 n 
-0000166154 00000 n 
-0000166266 00000 n 
-0000166372 00000 n 
-0000166504 00000 n 
-0000166661 00000 n 
-0000166796 00000 n 
-0000166892 00000 n 
-0000166988 00000 n 
-0000167144 00000 n 
-0000167238 00000 n 
-0000167352 00000 n 
-0000167451 00000 n 
-0000167618 00000 n 
-0000167718 00000 n 
-0000167826 00000 n 
-0000167932 00000 n 
-0000168053 00000 n 
-0000168180 00000 n 
-0000168297 00000 n 
-0000168420 00000 n 
-0000168551 00000 n 
-0000168668 00000 n 
-0000168780 00000 n 
-0000168898 00000 n 
-0000169004 00000 n 
-0000169172 00000 n 
-0000169282 00000 n 
-0000169402 00000 n 
-0000169527 00000 n 
-0000169642 00000 n 
-0000169745 00000 n 
-0000169907 00000 n 
-0000170009 00000 n 
-0000170107 00000 n 
-0000170269 00000 n 
-0000170372 00000 n 
-0000170480 00000 n 
-0000170662 00000 n 
-0000170762 00000 n 
-0000170872 00000 n 
-0000170969 00000 n 
-0000171105 00000 n 
-0000171209 00000 n 
-0000171313 00000 n 
-0000171480 00000 n 
-0000171576 00000 n 
-0000171716 00000 n 
-0000171834 00000 n 
-0000171983 00000 n 
-0000172106 00000 n 
-0000172269 00000 n 
-0000172357 00000 n 
-0000172523 00000 n 
-0000172636 00000 n 
-0000172757 00000 n 
-0000172890 00000 n 
-0000173033 00000 n 
-0000173134 00000 n 
-0000173250 00000 n 
-0000173351 00000 n 
-0000173499 00000 n 
-0000173615 00000 n 
-0000173712 00000 n 
-0000173830 00000 n 
-0000173925 00000 n 
-0000174088 00000 n 
-0000174188 00000 n 
-0000174306 00000 n 
-0000174412 00000 n 
+0000002201 00000 n 
+0000002284 00000 n 
+0000002360 00000 n 
+0000002442 00000 n 
+0000002501 00000 n 
+0000002602 00000 n 
+0000002704 00000 n 
+0000002805 00000 n 
+0000002906 00000 n 
+0000003008 00000 n 
+0000003110 00000 n 
+0000003212 00000 n 
+0000003313 00000 n 
+0000003415 00000 n 
+0000003517 00000 n 
+0000003619 00000 n 
+0000003721 00000 n 
+0000003823 00000 n 
+0000003924 00000 n 
+0000004026 00000 n 
+0000004128 00000 n 
+0000004230 00000 n 
+0000004332 00000 n 
+0000004434 00000 n 
+0000004536 00000 n 
+0000004638 00000 n 
+0000004740 00000 n 
+0000004841 00000 n 
+0000004942 00000 n 
+0000005044 00000 n 
+0000005146 00000 n 
+0000005248 00000 n 
+0000005350 00000 n 
+0000005452 00000 n 
+0000005554 00000 n 
+0000005656 00000 n 
+0000005758 00000 n 
+0000005860 00000 n 
+0000005962 00000 n 
+0000006064 00000 n 
+0000006166 00000 n 
+0000006268 00000 n 
+0000006370 00000 n 
+0000006472 00000 n 
+0000006573 00000 n 
+0000006673 00000 n 
+0000006773 00000 n 
+0000007083 00000 n 
+0000007184 00000 n 
+0000007286 00000 n 
+0000007388 00000 n 
+0000007490 00000 n 
+0000007592 00000 n 
+0000007693 00000 n 
+0000007795 00000 n 
+0000007897 00000 n 
+0000007999 00000 n 
+0000008101 00000 n 
+0000008203 00000 n 
+0000008305 00000 n 
+0000008406 00000 n 
+0000008508 00000 n 
+0000008610 00000 n 
+0000008712 00000 n 
+0000008814 00000 n 
+0000008916 00000 n 
+0000009018 00000 n 
+0000009120 00000 n 
+0000009222 00000 n 
+0000009324 00000 n 
+0000009425 00000 n 
+0000009526 00000 n 
+0000009628 00000 n 
+0000009730 00000 n 
+0000009832 00000 n 
+0000009934 00000 n 
+0000010036 00000 n 
+0000010138 00000 n 
+0000010240 00000 n 
+0000010342 00000 n 
+0000010444 00000 n 
+0000010546 00000 n 
+0000010648 00000 n 
+0000010750 00000 n 
+0000010852 00000 n 
+0000010954 00000 n 
+0000011056 00000 n 
+0000011158 00000 n 
+0000011260 00000 n 
+0000011361 00000 n 
+0000011461 00000 n 
+0000011561 00000 n 
+0000011885 00000 n 
+0000011987 00000 n 
+0000012090 00000 n 
+0000012193 00000 n 
+0000012296 00000 n 
+0000012399 00000 n 
+0000012502 00000 n 
+0000012605 00000 n 
+0000012708 00000 n 
+0000012811 00000 n 
+0000012914 00000 n 
+0000013017 00000 n 
+0000013120 00000 n 
+0000013223 00000 n 
+0000013326 00000 n 
+0000013429 00000 n 
+0000013532 00000 n 
+0000013635 00000 n 
+0000013738 00000 n 
+0000013841 00000 n 
+0000013944 00000 n 
+0000014046 00000 n 
+0000014149 00000 n 
+0000014252 00000 n 
+0000014355 00000 n 
+0000014458 00000 n 
+0000014561 00000 n 
+0000014663 00000 n 
+0000014766 00000 n 
+0000015007 00000 n 
+0000015062 00000 n 
+0000015149 00000 n 
+0000015204 00000 n 
+0000015291 00000 n 
+0000015358 00000 n 
+0000015444 00000 n 
+0000015546 00000 n 
+0000015649 00000 n 
+0000015752 00000 n 
+0000015855 00000 n 
+0000015957 00000 n 
+0000016060 00000 n 
+0000016163 00000 n 
+0000016266 00000 n 
+0000016369 00000 n 
+0000016472 00000 n 
+0000016574 00000 n 
+0000016677 00000 n 
+0000016780 00000 n 
+0000016883 00000 n 
+0000016986 00000 n 
+0000017089 00000 n 
+0000017192 00000 n 
+0000017295 00000 n 
+0000017398 00000 n 
+0000017500 00000 n 
+0000017602 00000 n 
+0000017705 00000 n 
+0000017808 00000 n 
+0000017911 00000 n 
+0000018014 00000 n 
+0000018117 00000 n 
+0000018220 00000 n 
+0000018323 00000 n 
+0000018426 00000 n 
+0000018529 00000 n 
+0000018632 00000 n 
+0000018735 00000 n 
+0000018838 00000 n 
+0000018940 00000 n 
+0000019041 00000 n 
+0000019142 00000 n 
+0000019471 00000 n 
+0000019574 00000 n 
+0000019677 00000 n 
+0000019780 00000 n 
+0000019883 00000 n 
+0000019986 00000 n 
+0000020089 00000 n 
+0000020192 00000 n 
+0000020294 00000 n 
+0000020397 00000 n 
+0000020500 00000 n 
+0000020603 00000 n 
+0000020706 00000 n 
+0000020809 00000 n 
+0000020912 00000 n 
+0000021014 00000 n 
+0000021117 00000 n 
+0000021220 00000 n 
+0000021323 00000 n 
+0000021426 00000 n 
+0000021529 00000 n 
+0000021632 00000 n 
+0000021735 00000 n 
+0000021838 00000 n 
+0000021941 00000 n 
+0000022043 00000 n 
+0000022145 00000 n 
+0000022248 00000 n 
+0000022351 00000 n 
+0000022454 00000 n 
+0000022557 00000 n 
+0000022660 00000 n 
+0000022763 00000 n 
+0000022866 00000 n 
+0000022969 00000 n 
+0000023072 00000 n 
+0000023175 00000 n 
+0000023278 00000 n 
+0000023381 00000 n 
+0000023484 00000 n 
+0000023587 00000 n 
+0000023690 00000 n 
+0000023793 00000 n 
+0000023896 00000 n 
+0000023999 00000 n 
+0000024102 00000 n 
+0000024205 00000 n 
+0000024308 00000 n 
+0000024411 00000 n 
+0000024513 00000 n 
+0000024614 00000 n 
+0000024715 00000 n 
+0000025140 00000 n 
+0000025243 00000 n 
+0000025346 00000 n 
+0000025449 00000 n 
+0000025552 00000 n 
+0000025655 00000 n 
+0000025758 00000 n 
+0000025861 00000 n 
+0000025964 00000 n 
+0000026067 00000 n 
+0000026170 00000 n 
+0000026273 00000 n 
+0000026376 00000 n 
+0000026479 00000 n 
+0000026582 00000 n 
+0000026684 00000 n 
+0000026787 00000 n 
+0000026890 00000 n 
+0000026993 00000 n 
+0000027096 00000 n 
+0000027199 00000 n 
+0000027301 00000 n 
+0000027404 00000 n 
+0000027597 00000 n 
+0000027681 00000 n 
+0000027767 00000 n 
+0000027841 00000 n 
+0000027927 00000 n 
+0000027960 00000 n 
+0000028038 00000 n 
+0000028125 00000 n 
+0000028231 00000 n 
+0000028317 00000 n 
+0000028389 00000 n 
+0000028475 00000 n 
+0000028534 00000 n 
+0000028621 00000 n 
+0000028712 00000 n 
+0000028798 00000 n 
+0000028869 00000 n 
+0000028955 00000 n 
+0000029020 00000 n 
+0000029054 00000 n 
+0000029088 00000 n 
+0000032144 00000 n 
+0000032187 00000 n 
+0000032230 00000 n 
+0000032273 00000 n 
+0000032316 00000 n 
+0000032359 00000 n 
+0000032402 00000 n 
+0000032445 00000 n 
+0000032488 00000 n 
+0000032531 00000 n 
+0000032574 00000 n 
+0000032617 00000 n 
+0000032660 00000 n 
+0000032703 00000 n 
+0000032746 00000 n 
+0000032789 00000 n 
+0000032832 00000 n 
+0000032875 00000 n 
+0000032918 00000 n 
+0000032961 00000 n 
+0000033004 00000 n 
+0000033047 00000 n 
+0000033090 00000 n 
+0000033133 00000 n 
+0000033176 00000 n 
+0000033219 00000 n 
+0000033262 00000 n 
+0000033305 00000 n 
+0000033348 00000 n 
+0000033391 00000 n 
+0000033434 00000 n 
+0000033477 00000 n 
+0000033520 00000 n 
+0000033563 00000 n 
+0000033606 00000 n 
+0000033649 00000 n 
+0000033692 00000 n 
+0000033735 00000 n 
+0000033778 00000 n 
+0000033821 00000 n 
+0000033864 00000 n 
+0000033907 00000 n 
+0000033950 00000 n 
+0000033993 00000 n 
+0000034036 00000 n 
+0000034079 00000 n 
+0000034122 00000 n 
+0000034165 00000 n 
+0000034208 00000 n 
+0000034251 00000 n 
+0000034294 00000 n 
+0000034337 00000 n 
+0000034380 00000 n 
+0000034423 00000 n 
+0000034466 00000 n 
+0000034509 00000 n 
+0000034552 00000 n 
+0000034595 00000 n 
+0000034638 00000 n 
+0000034681 00000 n 
+0000034724 00000 n 
+0000034767 00000 n 
+0000034810 00000 n 
+0000034853 00000 n 
+0000034896 00000 n 
+0000034939 00000 n 
+0000034982 00000 n 
+0000035025 00000 n 
+0000035068 00000 n 
+0000035111 00000 n 
+0000035154 00000 n 
+0000035197 00000 n 
+0000035240 00000 n 
+0000035283 00000 n 
+0000035326 00000 n 
+0000035369 00000 n 
+0000035412 00000 n 
+0000035455 00000 n 
+0000035498 00000 n 
+0000035541 00000 n 
+0000035584 00000 n 
+0000035627 00000 n 
+0000035670 00000 n 
+0000035713 00000 n 
+0000035756 00000 n 
+0000035799 00000 n 
+0000035842 00000 n 
+0000035885 00000 n 
+0000035928 00000 n 
+0000035971 00000 n 
+0000036014 00000 n 
+0000036057 00000 n 
+0000036100 00000 n 
+0000036143 00000 n 
+0000036186 00000 n 
+0000036229 00000 n 
+0000036272 00000 n 
+0000036315 00000 n 
+0000036358 00000 n 
+0000036401 00000 n 
+0000036444 00000 n 
+0000036487 00000 n 
+0000036530 00000 n 
+0000036573 00000 n 
+0000036616 00000 n 
+0000036659 00000 n 
+0000036702 00000 n 
+0000036745 00000 n 
+0000036788 00000 n 
+0000036831 00000 n 
+0000036874 00000 n 
+0000036917 00000 n 
+0000036960 00000 n 
+0000037003 00000 n 
+0000037046 00000 n 
+0000037089 00000 n 
+0000037132 00000 n 
+0000037175 00000 n 
+0000037218 00000 n 
+0000037261 00000 n 
+0000037304 00000 n 
+0000037347 00000 n 
+0000037390 00000 n 
+0000037433 00000 n 
+0000037476 00000 n 
+0000037519 00000 n 
+0000037562 00000 n 
+0000037605 00000 n 
+0000037648 00000 n 
+0000037691 00000 n 
+0000037734 00000 n 
+0000037777 00000 n 
+0000037820 00000 n 
+0000037863 00000 n 
+0000037906 00000 n 
+0000037949 00000 n 
+0000037992 00000 n 
+0000038035 00000 n 
+0000038078 00000 n 
+0000038121 00000 n 
+0000038164 00000 n 
+0000038207 00000 n 
+0000038250 00000 n 
+0000038293 00000 n 
+0000038336 00000 n 
+0000038379 00000 n 
+0000038422 00000 n 
+0000038465 00000 n 
+0000038508 00000 n 
+0000038551 00000 n 
+0000038594 00000 n 
+0000038637 00000 n 
+0000038680 00000 n 
+0000038723 00000 n 
+0000038766 00000 n 
+0000038809 00000 n 
+0000038852 00000 n 
+0000038895 00000 n 
+0000038938 00000 n 
+0000038981 00000 n 
+0000039024 00000 n 
+0000039067 00000 n 
+0000039110 00000 n 
+0000039153 00000 n 
+0000039196 00000 n 
+0000039239 00000 n 
+0000039282 00000 n 
+0000039325 00000 n 
+0000039368 00000 n 
+0000039411 00000 n 
+0000039454 00000 n 
+0000039497 00000 n 
+0000039540 00000 n 
+0000039583 00000 n 
+0000039626 00000 n 
+0000039669 00000 n 
+0000039712 00000 n 
+0000039755 00000 n 
+0000039798 00000 n 
+0000039841 00000 n 
+0000039884 00000 n 
+0000039927 00000 n 
+0000039970 00000 n 
+0000040013 00000 n 
+0000040056 00000 n 
+0000040099 00000 n 
+0000040142 00000 n 
+0000040185 00000 n 
+0000040228 00000 n 
+0000040271 00000 n 
+0000040314 00000 n 
+0000040937 00000 n 
+0000041094 00000 n 
+0000041261 00000 n 
+0000041450 00000 n 
+0000043586 00000 n 
+0000043775 00000 n 
+0000046396 00000 n 
+0000046586 00000 n 
+0000048680 00000 n 
+0000048837 00000 n 
+0000049066 00000 n 
+0000049265 00000 n 
+0000050972 00000 n 
+0000051143 00000 n 
+0000053074 00000 n 
+0000053245 00000 n 
+0000054413 00000 n 
+0000054579 00000 n 
+0000056209 00000 n 
+0000056375 00000 n 
+0000057912 00000 n 
+0000058078 00000 n 
+0000059795 00000 n 
+0000059961 00000 n 
+0000061691 00000 n 
+0000061866 00000 n 
+0000063161 00000 n 
+0000063336 00000 n 
+0000064628 00000 n 
+0000064803 00000 n 
+0000066141 00000 n 
+0000066307 00000 n 
+0000067204 00000 n 
+0000067394 00000 n 
+0000069350 00000 n 
+0000069506 00000 n 
+0000071282 00000 n 
+0000071448 00000 n 
+0000073411 00000 n 
+0000073577 00000 n 
+0000074290 00000 n 
+0000074465 00000 n 
+0000075494 00000 n 
+0000075660 00000 n 
+0000077302 00000 n 
+0000077468 00000 n 
+0000078088 00000 n 
+0000078263 00000 n 
+0000079623 00000 n 
+0000079798 00000 n 
+0000080946 00000 n 
+0000081112 00000 n 
+0000081748 00000 n 
+0000081914 00000 n 
+0000083679 00000 n 
+0000083845 00000 n 
+0000085713 00000 n 
+0000085879 00000 n 
+0000087838 00000 n 
+0000087994 00000 n 
+0000088775 00000 n 
+0000088959 00000 n 
+0000090608 00000 n 
+0000090773 00000 n 
+0000091688 00000 n 
+0000091887 00000 n 
+0000093603 00000 n 
+0000093778 00000 n 
+0000095587 00000 n 
+0000095762 00000 n 
+0000096351 00000 n 
+0000096526 00000 n 
+0000097276 00000 n 
+0000097451 00000 n 
+0000098185 00000 n 
+0000098360 00000 n 
+0000099182 00000 n 
+0000099357 00000 n 
+0000100172 00000 n 
+0000100356 00000 n 
+0000101216 00000 n 
+0000101391 00000 n 
+0000102139 00000 n 
+0000102304 00000 n 
+0000102924 00000 n 
+0000103108 00000 n 
+0000103861 00000 n 
+0000104036 00000 n 
+0000104989 00000 n 
+0000105173 00000 n 
+0000106503 00000 n 
+0000106687 00000 n 
+0000107731 00000 n 
+0000107896 00000 n 
+0000108471 00000 n 
+0000108655 00000 n 
+0000109706 00000 n 
+0000109881 00000 n 
+0000110759 00000 n 
+0000110934 00000 n 
+0000112013 00000 n 
+0000112197 00000 n 
+0000113038 00000 n 
+0000113222 00000 n 
+0000113987 00000 n 
+0000114162 00000 n 
+0000114693 00000 n 
+0000114868 00000 n 
+0000115544 00000 n 
+0000115728 00000 n 
+0000116644 00000 n 
+0000116819 00000 n 
+0000117769 00000 n 
+0000117944 00000 n 
+0000118871 00000 n 
+0000119055 00000 n 
+0000119941 00000 n 
+0000120116 00000 n 
+0000120879 00000 n 
+0000121054 00000 n 
+0000121721 00000 n 
+0000121896 00000 n 
+0000122712 00000 n 
+0000122887 00000 n 
+0000123856 00000 n 
+0000124022 00000 n 
+0000125444 00000 n 
+0000125628 00000 n 
+0000126348 00000 n 
+0000126532 00000 n 
+0000127144 00000 n 
+0000127309 00000 n 
+0000127703 00000 n 
+0000127888 00000 n 
+0000129435 00000 n 
+0000129609 00000 n 
+0000131387 00000 n 
+0000131572 00000 n 
+0000133191 00000 n 
+0000133366 00000 n 
+0000135179 00000 n 
+0000135345 00000 n 
+0000135720 00000 n 
+0000135895 00000 n 
+0000137234 00000 n 
+0000137290 00000 n 
+0000137389 00000 n 
+0000137542 00000 n 
+0000137621 00000 n 
+0000137724 00000 n 
+0000137911 00000 n 
+0000138000 00000 n 
+0000138112 00000 n 
+0000138206 00000 n 
+0000138355 00000 n 
+0000138449 00000 n 
+0000138568 00000 n 
+0000138677 00000 n 
+0000138786 00000 n 
+0000138879 00000 n 
+0000139032 00000 n 
+0000139131 00000 n 
+0000139245 00000 n 
+0000139362 00000 n 
+0000139479 00000 n 
+0000139610 00000 n 
+0000139703 00000 n 
+0000139808 00000 n 
+0000139911 00000 n 
+0000140024 00000 n 
+0000140170 00000 n 
+0000140270 00000 n 
+0000140382 00000 n 
+0000140535 00000 n 
+0000140632 00000 n 
+0000140742 00000 n 
+0000140857 00000 n 
+0000140967 00000 n 
+0000141077 00000 n 
+0000141188 00000 n 
+0000141299 00000 n 
+0000141414 00000 n 
+0000141529 00000 n 
+0000141645 00000 n 
+0000141761 00000 n 
+0000141872 00000 n 
+0000141983 00000 n 
+0000142099 00000 n 
+0000142202 00000 n 
+0000142354 00000 n 
+0000142446 00000 n 
+0000142540 00000 n 
+0000142642 00000 n 
+0000142790 00000 n 
+0000142924 00000 n 
+0000143028 00000 n 
+0000143152 00000 n 
+0000143258 00000 n 
+0000143382 00000 n 
+0000143465 00000 n 
+0000143619 00000 n 
+0000143713 00000 n 
+0000143817 00000 n 
+0000143926 00000 n 
+0000144030 00000 n 
+0000144132 00000 n 
+0000144237 00000 n 
+0000144345 00000 n 
+0000144452 00000 n 
+0000144553 00000 n 
+0000144674 00000 n 
+0000144820 00000 n 
+0000144950 00000 n 
+0000145039 00000 n 
+0000145128 00000 n 
+0000145279 00000 n 
+0000145366 00000 n 
+0000145473 00000 n 
+0000145565 00000 n 
+0000145727 00000 n 
+0000145820 00000 n 
+0000145921 00000 n 
+0000146020 00000 n 
+0000146134 00000 n 
+0000146254 00000 n 
+0000146364 00000 n 
+0000146480 00000 n 
+0000146604 00000 n 
+0000146714 00000 n 
+0000146818 00000 n 
+0000146928 00000 n 
+0000147026 00000 n 
+0000147189 00000 n 
+0000147292 00000 n 
+0000147405 00000 n 
+0000147523 00000 n 
+0000147631 00000 n 
+0000147727 00000 n 
+0000147884 00000 n 
+0000147979 00000 n 
+0000148070 00000 n 
+0000148227 00000 n 
+0000148323 00000 n 
+0000148424 00000 n 
+0000148601 00000 n 
+0000148694 00000 n 
+0000148797 00000 n 
+0000148887 00000 n 
+0000149018 00000 n 
+0000149115 00000 n 
+0000149212 00000 n 
+0000149367 00000 n 
+0000149457 00000 n 
+0000149591 00000 n 
+0000149703 00000 n 
+0000149846 00000 n 
+0000149963 00000 n 
+0000150101 00000 n 
+0000150183 00000 n 
 trailer
-<</Size 806/Root 805 0 R/Info 1 0 R/ID[<8ded901626010d73542ea94815423a1a><8ded901626010d73542ea94815423a1a>]>>
+<</Size 718/Root 717 0 R/Info 1 0 R/ID[<ee2e3d1648e40c359fbf8e3964570ce3><ee2e3d1648e40c359fbf8e3964570ce3>]>>
 startxref
-174892
+150623
 %%EOF
diff --git a/docs/Samba-HOWTO-Collection.pdf b/docs/Samba-HOWTO-Collection.pdf
index 670e20457a6..57b70834925 100644
--- a/docs/Samba-HOWTO-Collection.pdf
+++ b/docs/Samba-HOWTO-Collection.pdf
@@ -1,6 +1,6 @@
 %PDF-1.3
 %âãÏÓ
-1 0 obj<</Producer(htmldoc 1.8.22 Copyright 1997-2002 Easy Software Products, All Rights Reserved.)/CreationDate(D:20021105230804-0100)/Title(SAMBA Project Documentation)/Creator(Modular DocBook HTML Stylesheet Version 1.77)>>endobj
+1 0 obj<</Producer(htmldoc 1.8.20 Copyright 1997-2002 Easy Software Products, All Rights Reserved.)/CreationDate(D:20021004182614-0200)/Title(SAMBA Project Documentation)/Creator(Modular DocBook HTML Stylesheet Version 1.77)>>endobj
 2 0 obj<</Type/Encoding/Differences[ 32/space/exclam/quotedbl/numbersign/dollar/percent/ampersand/quotesingle/parenleft/parenright/asterisk/plus/comma/minus/period/slash/zero/one/two/three/four/five/six/seven/eight/nine/colon/semicolon/less/equal/greater/question/at/A/B/C/D/E/F/G/H/I/J/K/L/M/N/O/P/Q/R/S/T/U/V/W/X/Y/Z/bracketleft/backslash/bracketright/asciicircum/underscore/grave/a/b/c/d/e/f/g/h/i/j/k/l/m/n/o/p/q/r/s/t/u/v/w/x/y/z/braceleft/bar/braceright/asciitilde 128/Euro 130/quotesinglbase/florin/quotedblbase/ellipsis/dagger/daggerdbl/circumflex/perthousand/Scaron/guilsinglleft/OE 145/quoteleft/quoteright/quotedblleft/quotedblright/bullet/endash/emdash/tilde/trademark/scaron/guilsinglright/oe 159/Ydieresis/space/exclamdown/cent/sterling/currency/yen/brokenbar/section/dieresis/copyright/ordfeminine/guillemotleft/logicalnot/hyphen/registered/macron/degree/plusminus/twosuperior/threesuperior/acute/mu/paragraph/periodcentered/cedilla/onesuperior/ordmasculine/guillemotright/onequarter/onehalf/threequarters/questiondown/Agrave/Aacute/Acircumflex/Atilde/Adieresis/Aring/AE/Ccedilla/Egrave/Eacute/Ecircumflex/Edieresis/Igrave/Iacute/Icircumflex/Idieresis/Eth/Ntilde/Ograve/Oacute/Ocircumflex/Otilde/Odieresis/multiply/Oslash/Ugrave/Uacute/Ucircumflex/Udieresis/Yacute/Thorn/germandbls/agrave/aacute/acircumflex/atilde/adieresis/aring/ae/ccedilla/egrave/eacute/ecircumflex/edieresis/igrave/iacute/icircumflex/idieresis/eth/ntilde/ograve/oacute/ocircumflex/otilde/odieresis/divide/oslash/ugrave/uacute/ucircumflex/udieresis/yacute/thorn/ydieresis]>>endobj
 3 0 obj<</Type/Font/Subtype/Type1/BaseFont/Courier/Encoding 2 0 R>>endobj
 4 0 obj<</Type/Font/Subtype/Type1/BaseFont/Courier-Bold/Encoding 2 0 R>>endobj
@@ -13,46 +13,51 @@
 11 0 obj<</Type/Font/Subtype/Type1/BaseFont/Helvetica/Encoding 2 0 R>>endobj
 12 0 obj<</Type/Font/Subtype/Type1/BaseFont/Helvetica-Bold/Encoding 2 0 R>>endobj
 13 0 obj<</Type/Font/Subtype/Type1/BaseFont/Symbol>>endobj
-14 0 obj<</Subtype/Link/Rect[72.0 684.0 223.5 697.0]/Border[0 0 0]/Dest[1386 0 R/XYZ 0 734 0]>>endobj
-15 0 obj<</Subtype/Link/Rect[108.0 670.8 174.9 683.8]/Border[0 0 0]/Dest[1386 0 R/XYZ 0 696 0]>>endobj
-16 0 obj<</Subtype/Link/Rect[72.0 644.4 112.9 657.4]/Border[0 0 0]/Dest[1388 0 R/XYZ 0 734 0]>>endobj
-17 0 obj<</Subtype/Link/Rect[72.0 618.0 175.0 631.0]/Border[0 0 0]/Dest[1396 0 R/XYZ 0 734 0]>>endobj
-18 0 obj<</Subtype/Link/Rect[72.0 591.6 131.9 604.6]/Border[0 0 0]/Dest[1398 0 R/XYZ 0 734 0]>>endobj
-19 0 obj<</Subtype/Link/Rect[72.0 565.2 277.3 578.2]/Border[0 0 0]/Dest[1402 0 R/XYZ 0 734 0]>>endobj
-20 0 obj<</Subtype/Link/Rect[108.0 552.0 215.5 565.0]/Border[0 0 0]/Dest[1402 0 R/XYZ 0 696 0]>>endobj
-21 0 obj<</Subtype/Link/Rect[108.0 538.8 221.4 551.8]/Border[0 0 0]/Dest[1402 0 R/XYZ 0 568 0]>>endobj
-22 0 obj<</Subtype/Link/Rect[108.0 525.6 224.1 538.6]/Border[0 0 0]/Dest[1402 0 R/XYZ 0 163 0]>>endobj
-23 0 obj<</Subtype/Link/Rect[108.0 512.4 275.4 525.4]/Border[0 0 0]/Dest[1404 0 R/XYZ 0 734 0]>>endobj
-24 0 obj<</Subtype/Link/Rect[108.0 499.2 280.3 512.2]/Border[0 0 0]/Dest[1404 0 R/XYZ 0 385 0]>>endobj
-25 0 obj<</Subtype/Link/Rect[108.0 486.0 251.3 499.0]/Border[0 0 0]/Dest[1404 0 R/XYZ 0 257 0]>>endobj
-26 0 obj<</Subtype/Link/Rect[126.0 472.8 259.5 485.8]/Border[0 0 0]/Dest[1406 0 R/XYZ 0 734 0]>>endobj
-27 0 obj<</Subtype/Link/Rect[126.0 459.6 307.8 472.6]/Border[0 0 0]/Dest[1406 0 R/XYZ 0 247 0]>>endobj
-28 0 obj<</Subtype/Link/Rect[108.0 446.4 328.6 459.4]/Border[0 0 0]/Dest[1408 0 R/XYZ 0 665 0]>>endobj
-29 0 obj<</Subtype/Link/Rect[108.0 433.2 282.2 446.2]/Border[0 0 0]/Dest[1408 0 R/XYZ 0 498 0]>>endobj
-30 0 obj<</Subtype/Link/Rect[108.0 420.0 478.0 433.0]/Border[0 0 0]/Dest[1408 0 R/XYZ 0 330 0]>>endobj
-31 0 obj<</Subtype/Link/Rect[108.0 406.8 259.4 419.8]/Border[0 0 0]/Dest[1410 0 R/XYZ 0 734 0]>>endobj
-32 0 obj<</Subtype/Link/Rect[126.0 393.6 254.0 406.6]/Border[0 0 0]/Dest[1410 0 R/XYZ 0 553 0]>>endobj
-33 0 obj<</Subtype/Link/Rect[126.0 380.4 204.5 393.4]/Border[0 0 0]/Dest[1410 0 R/XYZ 0 494 0]>>endobj
-34 0 obj<</Subtype/Link/Rect[126.0 367.2 285.2 380.2]/Border[0 0 0]/Dest[1410 0 R/XYZ 0 409 0]>>endobj
-35 0 obj<</Subtype/Link/Rect[126.0 354.0 313.6 367.0]/Border[0 0 0]/Dest[1412 0 R/XYZ 0 734 0]>>endobj
-36 0 obj<</Subtype/Link/Rect[126.0 340.8 195.7 353.8]/Border[0 0 0]/Dest[1412 0 R/XYZ 0 583 0]>>endobj
-37 0 obj<</Subtype/Link/Rect[126.0 327.6 250.3 340.6]/Border[0 0 0]/Dest[1412 0 R/XYZ 0 128 0]>>endobj
-38 0 obj<</Subtype/Link/Rect[72.0 301.2 262.7 314.2]/Border[0 0 0]/Dest[1416 0 R/XYZ 0 734 0]>>endobj
-39 0 obj<</Subtype/Link/Rect[108.0 288.0 226.2 301.0]/Border[0 0 0]/Dest[1416 0 R/XYZ 0 696 0]>>endobj
-40 0 obj<</Subtype/Link/Rect[108.0 274.8 247.9 287.8]/Border[0 0 0]/Dest[1416 0 R/XYZ 0 515 0]>>endobj
-41 0 obj<</Subtype/Link/Rect[108.0 261.6 211.3 274.6]/Border[0 0 0]/Dest[1416 0 R/XYZ 0 137 0]>>endobj
-42 0 obj<</Subtype/Link/Rect[108.0 248.4 236.0 261.4]/Border[0 0 0]/Dest[1418 0 R/XYZ 0 533 0]>>endobj
-43 0 obj<</Subtype/Link/Rect[126.0 235.2 331.3 248.2]/Border[0 0 0]/Dest[1418 0 R/XYZ 0 273 0]>>endobj
-44 0 obj<</Subtype/Link/Rect[108.0 222.0 240.3 235.0]/Border[0 0 0]/Dest[1424 0 R/XYZ 0 560 0]>>endobj
-45 0 obj<</Subtype/Link/Rect[108.0 208.8 310.3 221.8]/Border[0 0 0]/Dest[1426 0 R/XYZ 0 613 0]>>endobj
-46 0 obj<</Subtype/Link/Rect[108.0 195.6 284.6 208.6]/Border[0 0 0]/Dest[1428 0 R/XYZ 0 622 0]>>endobj
-47 0 obj<</Subtype/Link/Rect[108.0 182.4 265.0 195.4]/Border[0 0 0]/Dest[1428 0 R/XYZ 0 266 0]>>endobj
-48 0 obj<</Subtype/Link/Rect[108.0 169.2 276.3 182.2]/Border[0 0 0]/Dest[1430 0 R/XYZ 0 520 0]>>endobj
-49 0 obj<</Subtype/Link/Rect[108.0 156.0 271.1 169.0]/Border[0 0 0]/Dest[1432 0 R/XYZ 0 734 0]>>endobj
-50 0 obj<</Subtype/Link/Rect[108.0 142.8 216.2 155.8]/Border[0 0 0]/Dest[1432 0 R/XYZ 0 645 0]>>endobj
-51 0 obj<</Subtype/Link/Rect[72.0 116.4 163.4 129.4]/Border[0 0 0]/Dest[1434 0 R/XYZ 0 734 0]>>endobj
-52 0 obj<</Subtype/Link/Rect[108.0 103.2 209.1 116.2]/Border[0 0 0]/Dest[1434 0 R/XYZ 0 696 0]>>endobj
-53 0 obj[14 0 R
+14 0 obj<</Subtype/Link/Rect[72.0 684.0 223.5 697.0]/Border[0 0 0]/Dest[1100 0 R/XYZ 0 734 0]>>endobj
+15 0 obj<</Subtype/Link/Rect[108.0 670.8 174.9 683.8]/Border[0 0 0]/Dest[1100 0 R/XYZ 0 696 0]>>endobj
+16 0 obj<</Subtype/Link/Rect[72.0 644.4 112.9 657.4]/Border[0 0 0]/Dest[1114 0 R/XYZ 0 734 0]>>endobj
+17 0 obj<</Subtype/Link/Rect[72.0 618.0 277.3 631.0]/Border[0 0 0]/Dest[1124 0 R/XYZ 0 734 0]>>endobj
+18 0 obj<</Subtype/Link/Rect[108.0 604.8 249.2 617.8]/Border[0 0 0]/Dest[1124 0 R/XYZ 0 696 0]>>endobj
+19 0 obj<</Subtype/Link/Rect[108.0 591.6 255.0 604.6]/Border[0 0 0]/Dest[1124 0 R/XYZ 0 568 0]>>endobj
+20 0 obj<</Subtype/Link/Rect[108.0 578.4 257.7 591.4]/Border[0 0 0]/Dest[1124 0 R/XYZ 0 163 0]>>endobj
+21 0 obj<</Subtype/Link/Rect[108.0 565.2 309.0 578.2]/Border[0 0 0]/Dest[1126 0 R/XYZ 0 734 0]>>endobj
+22 0 obj<</Subtype/Link/Rect[108.0 552.0 313.9 565.0]/Border[0 0 0]/Dest[1126 0 R/XYZ 0 385 0]>>endobj
+23 0 obj<</Subtype/Link/Rect[108.0 538.8 284.9 551.8]/Border[0 0 0]/Dest[1126 0 R/XYZ 0 283 0]>>endobj
+24 0 obj<</Subtype/Link/Rect[144.0 525.6 316.0 538.6]/Border[0 0 0]/Dest[1126 0 R/XYZ 0 129 0]>>endobj
+25 0 obj<</Subtype/Link/Rect[144.0 512.4 364.6 525.4]/Border[0 0 0]/Dest[1128 0 R/XYZ 0 303 0]>>endobj
+26 0 obj<</Subtype/Link/Rect[108.0 499.2 362.2 512.2]/Border[0 0 0]/Dest[1130 0 R/XYZ 0 718 0]>>endobj
+27 0 obj<</Subtype/Link/Rect[108.0 486.0 315.8 499.0]/Border[0 0 0]/Dest[1130 0 R/XYZ 0 551 0]>>endobj
+28 0 obj<</Subtype/Link/Rect[108.0 472.8 511.6 485.8]/Border[0 0 0]/Dest[1130 0 R/XYZ 0 383 0]>>endobj
+29 0 obj<</Subtype/Link/Rect[108.0 459.6 259.4 472.6]/Border[0 0 0]/Dest[1130 0 R/XYZ 0 169 0]>>endobj
+30 0 obj<</Subtype/Link/Rect[144.0 446.4 272.0 459.4]/Border[0 0 0]/Dest[1132 0 R/XYZ 0 652 0]>>endobj
+31 0 obj<</Subtype/Link/Rect[144.0 433.2 222.5 446.2]/Border[0 0 0]/Dest[1132 0 R/XYZ 0 594 0]>>endobj
+32 0 obj<</Subtype/Link/Rect[144.0 420.0 303.2 433.0]/Border[0 0 0]/Dest[1132 0 R/XYZ 0 509 0]>>endobj
+33 0 obj<</Subtype/Link/Rect[144.0 406.8 331.6 419.8]/Border[0 0 0]/Dest[1132 0 R/XYZ 0 200 0]>>endobj
+34 0 obj<</Subtype/Link/Rect[144.0 393.6 213.7 406.6]/Border[0 0 0]/Dest[1134 0 R/XYZ 0 718 0]>>endobj
+35 0 obj<</Subtype/Link/Rect[144.0 380.4 268.3 393.4]/Border[0 0 0]/Dest[1134 0 R/XYZ 0 264 0]>>endobj
+36 0 obj<</Subtype/Link/Rect[72.0 354.0 267.5 367.0]/Border[0 0 0]/Dest[1136 0 R/XYZ 0 734 0]>>endobj
+37 0 obj<</Subtype/Link/Rect[108.0 340.8 181.6 353.8]/Border[0 0 0]/Dest[1136 0 R/XYZ 0 696 0]>>endobj
+38 0 obj<</Subtype/Link/Rect[108.0 327.6 184.7 340.6]/Border[0 0 0]/Dest[1136 0 R/XYZ 0 529 0]>>endobj
+39 0 obj<</Subtype/Link/Rect[108.0 314.4 150.5 327.4]/Border[0 0 0]/Dest[1136 0 R/XYZ 0 173 0]>>endobj
+40 0 obj<</Subtype/Link/Rect[144.0 301.2 198.7 314.2]/Border[0 0 0]/Dest[1136 0 R/XYZ 0 139 0]>>endobj
+41 0 obj<</Subtype/Link/Rect[144.0 288.0 198.7 301.0]/Border[0 0 0]/Dest[1138 0 R/XYZ 0 705 0]>>endobj
+42 0 obj<</Subtype/Link/Rect[144.0 274.8 198.7 287.8]/Border[0 0 0]/Dest[1138 0 R/XYZ 0 501 0]>>endobj
+43 0 obj<</Subtype/Link/Rect[144.0 261.6 198.7 274.6]/Border[0 0 0]/Dest[1140 0 R/XYZ 0 586 0]>>endobj
+44 0 obj<</Subtype/Link/Rect[144.0 248.4 198.7 261.4]/Border[0 0 0]/Dest[1140 0 R/XYZ 0 435 0]>>endobj
+45 0 obj<</Subtype/Link/Rect[144.0 235.2 198.7 248.2]/Border[0 0 0]/Dest[1140 0 R/XYZ 0 311 0]>>endobj
+46 0 obj<</Subtype/Link/Rect[144.0 222.0 198.7 235.0]/Border[0 0 0]/Dest[1142 0 R/XYZ 0 718 0]>>endobj
+47 0 obj<</Subtype/Link/Rect[144.0 208.8 198.7 221.8]/Border[0 0 0]/Dest[1142 0 R/XYZ 0 356 0]>>endobj
+48 0 obj<</Subtype/Link/Rect[144.0 195.6 198.7 208.6]/Border[0 0 0]/Dest[1144 0 R/XYZ 0 679 0]>>endobj
+49 0 obj<</Subtype/Link/Rect[144.0 182.4 209.7 195.4]/Border[0 0 0]/Dest[1144 0 R/XYZ 0 488 0]>>endobj
+50 0 obj<</Subtype/Link/Rect[144.0 169.2 209.7 182.2]/Border[0 0 0]/Dest[1144 0 R/XYZ 0 351 0]>>endobj
+51 0 obj<</Subtype/Link/Rect[108.0 156.0 221.4 169.0]/Border[0 0 0]/Dest[1144 0 R/XYZ 0 213 0]>>endobj
+52 0 obj<</Subtype/Link/Rect[72.0 129.6 348.8 142.6]/Border[0 0 0]/Dest[1146 0 R/XYZ 0 734 0]>>endobj
+53 0 obj<</Subtype/Link/Rect[108.0 116.4 161.5 129.4]/Border[0 0 0]/Dest[1146 0 R/XYZ 0 672 0]>>endobj
+54 0 obj<</Subtype/Link/Rect[108.0 103.2 327.7 116.2]/Border[0 0 0]/Dest[1146 0 R/XYZ 0 439 0]>>endobj
+55 0 obj<</Subtype/Link/Rect[144.0 90.0 213.1 103.0]/Border[0 0 0]/Dest[1146 0 R/XYZ 0 311 0]>>endobj
+56 0 obj<</Subtype/Link/Rect[144.0 76.8 239.6 89.8]/Border[0 0 0]/Dest[1148 0 R/XYZ 0 441 0]>>endobj
+57 0 obj<</Subtype/Link/Rect[144.0 63.6 231.1 76.6]/Border[0 0 0]/Dest[1148 0 R/XYZ 0 303 0]>>endobj
+58 0 obj[14 0 R
 15 0 R
 16 0 R
 17 0 R
@@ -90,55 +95,57 @@
 49 0 R
 50 0 R
 51 0 R
-52 0 R]endobj
-54 0 obj<</Subtype/Link/Rect[72.0 684.0 435.9 697.0]/Border[0 0 0]/Dest[1436 0 R/XYZ 0 734 0]>>endobj
-55 0 obj<</Subtype/Link/Rect[108.0 670.8 175.5 683.8]/Border[0 0 0]/Dest[1436 0 R/XYZ 0 604 0]>>endobj
-56 0 obj<</Subtype/Link/Rect[108.0 657.6 313.1 670.6]/Border[0 0 0]/Dest[1436 0 R/XYZ 0 159 0]>>endobj
-57 0 obj<</Subtype/Link/Rect[108.0 644.4 326.2 657.4]/Border[0 0 0]/Dest[1438 0 R/XYZ 0 483 0]>>endobj
-58 0 obj<</Subtype/Link/Rect[108.0 631.2 187.1 644.2]/Border[0 0 0]/Dest[1438 0 R/XYZ 0 305 0]>>endobj
-59 0 obj<</Subtype/Link/Rect[108.0 618.0 425.7 631.0]/Border[0 0 0]/Dest[1440 0 R/XYZ 0 467 0]>>endobj
-60 0 obj<</Subtype/Link/Rect[108.0 604.8 232.3 617.8]/Border[0 0 0]/Dest[1440 0 R/XYZ 0 187 0]>>endobj
-61 0 obj<</Subtype/Link/Rect[72.0 578.4 355.3 591.4]/Border[0 0 0]/Dest[1444 0 R/XYZ 0 734 0]>>endobj
-62 0 obj<</Subtype/Link/Rect[108.0 565.2 181.6 578.2]/Border[0 0 0]/Dest[1444 0 R/XYZ 0 672 0]>>endobj
-63 0 obj<</Subtype/Link/Rect[108.0 552.0 268.7 565.0]/Border[0 0 0]/Dest[1444 0 R/XYZ 0 531 0]>>endobj
-64 0 obj<</Subtype/Link/Rect[126.0 538.8 295.0 551.8]/Border[0 0 0]/Dest[1446 0 R/XYZ 0 734 0]>>endobj
-65 0 obj<</Subtype/Link/Rect[126.0 525.6 334.7 538.6]/Border[0 0 0]/Dest[1446 0 R/XYZ 0 609 0]>>endobj
-66 0 obj<</Subtype/Link/Rect[108.0 512.4 246.4 525.4]/Border[0 0 0]/Dest[1446 0 R/XYZ 0 511 0]>>endobj
-67 0 obj<</Subtype/Link/Rect[72.0 486.0 177.1 499.0]/Border[0 0 0]/Dest[1450 0 R/XYZ 0 734 0]>>endobj
-68 0 obj<</Subtype/Link/Rect[72.0 459.6 131.9 472.6]/Border[0 0 0]/Dest[1452 0 R/XYZ 0 734 0]>>endobj
-69 0 obj<</Subtype/Link/Rect[72.0 433.2 423.4 446.2]/Border[0 0 0]/Dest[1454 0 R/XYZ 0 734 0]>>endobj
-70 0 obj<</Subtype/Link/Rect[108.0 420.0 219.2 433.0]/Border[0 0 0]/Dest[1454 0 R/XYZ 0 672 0]>>endobj
-71 0 obj<</Subtype/Link/Rect[108.0 406.8 181.0 419.8]/Border[0 0 0]/Dest[1454 0 R/XYZ 0 584 0]>>endobj
-72 0 obj<</Subtype/Link/Rect[108.0 393.6 316.1 406.6]/Border[0 0 0]/Dest[1456 0 R/XYZ 0 718 0]>>endobj
-73 0 obj<</Subtype/Link/Rect[108.0 380.4 430.0 393.4]/Border[0 0 0]/Dest[1458 0 R/XYZ 0 613 0]>>endobj
-74 0 obj<</Subtype/Link/Rect[126.0 367.2 351.2 380.2]/Border[0 0 0]/Dest[1458 0 R/XYZ 0 227 0]>>endobj
-75 0 obj<</Subtype/Link/Rect[126.0 354.0 380.5 367.0]/Border[0 0 0]/Dest[1460 0 R/XYZ 0 319 0]>>endobj
-76 0 obj<</Subtype/Link/Rect[126.0 340.8 297.4 353.8]/Border[0 0 0]/Dest[1462 0 R/XYZ 0 734 0]>>endobj
-77 0 obj<</Subtype/Link/Rect[108.0 327.6 261.4 340.6]/Border[0 0 0]/Dest[1462 0 R/XYZ 0 385 0]>>endobj
-78 0 obj<</Subtype/Link/Rect[108.0 314.4 252.8 327.4]/Border[0 0 0]/Dest[1464 0 R/XYZ 0 129 0]>>endobj
-79 0 obj<</Subtype/Link/Rect[108.0 301.2 243.6 314.2]/Border[0 0 0]/Dest[1466 0 R/XYZ 0 124 0]>>endobj
-80 0 obj<</Subtype/Link/Rect[108.0 288.0 292.9 301.0]/Border[0 0 0]/Dest[1472 0 R/XYZ 0 507 0]>>endobj
-81 0 obj<</Subtype/Link/Rect[126.0 274.8 350.0 287.8]/Border[0 0 0]/Dest[1474 0 R/XYZ 0 520 0]>>endobj
-82 0 obj<</Subtype/Link/Rect[126.0 261.6 424.2 274.6]/Border[0 0 0]/Dest[1476 0 R/XYZ 0 734 0]>>endobj
-83 0 obj<</Subtype/Link/Rect[108.0 248.4 431.0 261.4]/Border[0 0 0]/Dest[1484 0 R/XYZ 0 734 0]>>endobj
-84 0 obj<</Subtype/Link/Rect[72.0 222.0 512.6 235.0]/Border[0 0 0]/Dest[1488 0 R/XYZ 0 734 0]>>endobj
-85 0 obj<</Subtype/Link/Rect[108.0 208.8 219.2 221.8]/Border[0 0 0]/Dest[1488 0 R/XYZ 0 672 0]>>endobj
-86 0 obj<</Subtype/Link/Rect[108.0 195.6 181.0 208.6]/Border[0 0 0]/Dest[1488 0 R/XYZ 0 597 0]>>endobj
-87 0 obj<</Subtype/Link/Rect[108.0 182.4 359.1 195.4]/Border[0 0 0]/Dest[1488 0 R/XYZ 0 225 0]>>endobj
-88 0 obj<</Subtype/Link/Rect[126.0 169.2 382.3 182.2]/Border[0 0 0]/Dest[1490 0 R/XYZ 0 734 0]>>endobj
-89 0 obj<</Subtype/Link/Rect[126.0 156.0 269.0 169.0]/Border[0 0 0]/Dest[1490 0 R/XYZ 0 609 0]>>endobj
-90 0 obj<</Subtype/Link/Rect[108.0 142.8 325.8 155.8]/Border[0 0 0]/Dest[1490 0 R/XYZ 0 524 0]>>endobj
-91 0 obj<</Subtype/Link/Rect[108.0 129.6 268.1 142.6]/Border[0 0 0]/Dest[1490 0 R/XYZ 0 383 0]>>endobj
-92 0 obj<</Subtype/Link/Rect[126.0 116.4 327.6 129.4]/Border[0 0 0]/Dest[1492 0 R/XYZ 0 620 0]>>endobj
-93 0 obj<</Subtype/Link/Rect[72.0 90.0 282.8 103.0]/Border[0 0 0]/Dest[1494 0 R/XYZ 0 734 0]>>endobj
-94 0 obj<</Subtype/Link/Rect[108.0 76.8 317.6 89.8]/Border[0 0 0]/Dest[1494 0 R/XYZ 0 524 0]>>endobj
-95 0 obj<</Subtype/Link/Rect[108.0 63.6 319.4 76.6]/Border[0 0 0]/Dest[1494 0 R/XYZ 0 417 0]>>endobj
-96 0 obj[54 0 R
+52 0 R
+53 0 R
+54 0 R
 55 0 R
 56 0 R
-57 0 R
-58 0 R
-59 0 R
+57 0 R]endobj
+59 0 obj<</Subtype/Link/Rect[72.0 684.0 348.8 697.0]/Border[0 0 0]/Dest[1146 0 R/XYZ 0 734 0]>>endobj
+60 0 obj<</Subtype/Link/Rect[144.0 670.8 251.2 683.8]/Border[0 0 0]/Dest[1148 0 R/XYZ 0 157 0]>>endobj
+61 0 obj<</Subtype/Link/Rect[108.0 657.6 382.4 670.6]/Border[0 0 0]/Dest[1150 0 R/XYZ 0 339 0]>>endobj
+62 0 obj<</Subtype/Link/Rect[144.0 644.4 291.6 657.4]/Border[0 0 0]/Dest[1152 0 R/XYZ 0 266 0]>>endobj
+63 0 obj<</Subtype/Link/Rect[144.0 631.2 260.1 644.2]/Border[0 0 0]/Dest[1154 0 R/XYZ 0 734 0]>>endobj
+64 0 obj<</Subtype/Link/Rect[144.0 618.0 223.8 631.0]/Border[0 0 0]/Dest[1156 0 R/XYZ 0 459 0]>>endobj
+65 0 obj<</Subtype/Link/Rect[144.0 604.8 230.5 617.8]/Border[0 0 0]/Dest[1156 0 R/XYZ 0 361 0]>>endobj
+66 0 obj<</Subtype/Link/Rect[144.0 591.6 236.6 604.6]/Border[0 0 0]/Dest[1156 0 R/XYZ 0 224 0]>>endobj
+67 0 obj<</Subtype/Link/Rect[108.0 578.4 523.2 591.4]/Border[0 0 0]/Dest[1158 0 R/XYZ 0 670 0]>>endobj
+68 0 obj<</Subtype/Link/Rect[108.0 565.2 497.9 578.2]/Border[0 0 0]/Dest[1158 0 R/XYZ 0 126 0]>>endobj
+69 0 obj<</Subtype/Link/Rect[144.0 552.0 389.3 565.0]/Border[0 0 0]/Dest[1162 0 R/XYZ 0 734 0]>>endobj
+70 0 obj<</Subtype/Link/Rect[144.0 538.8 455.0 551.8]/Border[0 0 0]/Dest[1162 0 R/XYZ 0 484 0]>>endobj
+71 0 obj<</Subtype/Link/Rect[144.0 525.6 368.5 538.6]/Border[0 0 0]/Dest[1162 0 R/XYZ 0 132 0]>>endobj
+72 0 obj<</Subtype/Link/Rect[108.0 512.4 181.6 525.4]/Border[0 0 0]/Dest[1164 0 R/XYZ 0 263 0]>>endobj
+73 0 obj<</Subtype/Link/Rect[72.0 486.0 460.7 499.0]/Border[0 0 0]/Dest[1166 0 R/XYZ 0 734 0]>>endobj
+74 0 obj<</Subtype/Link/Rect[108.0 472.8 202.4 485.8]/Border[0 0 0]/Dest[1166 0 R/XYZ 0 672 0]>>endobj
+75 0 obj<</Subtype/Link/Rect[108.0 459.6 244.9 472.6]/Border[0 0 0]/Dest[1168 0 R/XYZ 0 148 0]>>endobj
+76 0 obj<</Subtype/Link/Rect[108.0 446.4 270.2 459.4]/Border[0 0 0]/Dest[1170 0 R/XYZ 0 705 0]>>endobj
+77 0 obj<</Subtype/Link/Rect[72.0 420.0 402.3 433.0]/Border[0 0 0]/Dest[1172 0 R/XYZ 0 734 0]>>endobj
+78 0 obj<</Subtype/Link/Rect[108.0 406.8 179.2 419.8]/Border[0 0 0]/Dest[1172 0 R/XYZ 0 672 0]>>endobj
+79 0 obj<</Subtype/Link/Rect[144.0 393.6 197.2 406.6]/Border[0 0 0]/Dest[1174 0 R/XYZ 0 652 0]>>endobj
+80 0 obj<</Subtype/Link/Rect[72.0 367.2 412.7 380.2]/Border[0 0 0]/Dest[1176 0 R/XYZ 0 734 0]>>endobj
+81 0 obj<</Subtype/Link/Rect[108.0 354.0 444.7 367.0]/Border[0 0 0]/Dest[1176 0 R/XYZ 0 672 0]>>endobj
+82 0 obj<</Subtype/Link/Rect[108.0 340.8 319.1 353.8]/Border[0 0 0]/Dest[1176 0 R/XYZ 0 497 0]>>endobj
+83 0 obj<</Subtype/Link/Rect[108.0 327.6 231.1 340.6]/Border[0 0 0]/Dest[1176 0 R/XYZ 0 330 0]>>endobj
+84 0 obj<</Subtype/Link/Rect[108.0 314.4 292.2 327.4]/Border[0 0 0]/Dest[1178 0 R/XYZ 0 665 0]>>endobj
+85 0 obj<</Subtype/Link/Rect[144.0 301.2 244.5 314.2]/Border[0 0 0]/Dest[1178 0 R/XYZ 0 432 0]>>endobj
+86 0 obj<</Subtype/Link/Rect[144.0 288.0 269.6 301.0]/Border[0 0 0]/Dest[1178 0 R/XYZ 0 189 0]>>endobj
+87 0 obj<</Subtype/Link/Rect[108.0 274.8 301.4 287.8]/Border[0 0 0]/Dest[1180 0 R/XYZ 0 692 0]>>endobj
+88 0 obj<</Subtype/Link/Rect[108.0 261.6 392.1 274.6]/Border[0 0 0]/Dest[1180 0 R/XYZ 0 260 0]>>endobj
+89 0 obj<</Subtype/Link/Rect[108.0 248.4 384.2 261.4]/Border[0 0 0]/Dest[1184 0 R/XYZ 0 599 0]>>endobj
+90 0 obj<</Subtype/Link/Rect[72.0 222.0 277.1 235.0]/Border[0 0 0]/Dest[1186 0 R/XYZ 0 734 0]>>endobj
+91 0 obj<</Subtype/Link/Rect[108.0 208.8 181.6 221.8]/Border[0 0 0]/Dest[1186 0 R/XYZ 0 696 0]>>endobj
+92 0 obj<</Subtype/Link/Rect[108.0 195.6 189.0 208.6]/Border[0 0 0]/Dest[1186 0 R/XYZ 0 278 0]>>endobj
+93 0 obj<</Subtype/Link/Rect[144.0 182.4 245.7 195.4]/Border[0 0 0]/Dest[1188 0 R/XYZ 0 702 0]>>endobj
+94 0 obj<</Subtype/Link/Rect[144.0 169.2 330.4 182.2]/Border[0 0 0]/Dest[1190 0 R/XYZ 0 471 0]>>endobj
+95 0 obj<</Subtype/Link/Rect[144.0 156.0 323.3 169.0]/Border[0 0 0]/Dest[1192 0 R/XYZ 0 718 0]>>endobj
+96 0 obj<</Subtype/Link/Rect[144.0 142.8 386.9 155.8]/Border[0 0 0]/Dest[1192 0 R/XYZ 0 348 0]>>endobj
+97 0 obj<</Subtype/Link/Rect[144.0 129.6 278.1 142.6]/Border[0 0 0]/Dest[1194 0 R/XYZ 0 171 0]>>endobj
+98 0 obj<</Subtype/Link/Rect[108.0 116.4 220.1 129.4]/Border[0 0 0]/Dest[1196 0 R/XYZ 0 652 0]>>endobj
+99 0 obj<</Subtype/Link/Rect[144.0 103.2 250.3 116.2]/Border[0 0 0]/Dest[1196 0 R/XYZ 0 551 0]>>endobj
+100 0 obj<</Subtype/Link/Rect[144.0 90.0 317.2 103.0]/Border[0 0 0]/Dest[1196 0 R/XYZ 0 426 0]>>endobj
+101 0 obj<</Subtype/Link/Rect[144.0 76.8 258.3 89.8]/Border[0 0 0]/Dest[1196 0 R/XYZ 0 341 0]>>endobj
+102 0 obj<</Subtype/Link/Rect[144.0 63.6 270.5 76.6]/Border[0 0 0]/Dest[1196 0 R/XYZ 0 243 0]>>endobj
+103 0 obj[59 0 R
 60 0 R
 61 0 R
 62 0 R
@@ -174,58 +181,58 @@
 92 0 R
 93 0 R
 94 0 R
-95 0 R]endobj
-97 0 obj<</Subtype/Link/Rect[72.0 684.0 282.8 697.0]/Border[0 0 0]/Dest[1494 0 R/XYZ 0 734 0]>>endobj
-98 0 obj<</Subtype/Link/Rect[108.0 670.8 197.8 683.8]/Border[0 0 0]/Dest[1494 0 R/XYZ 0 241 0]>>endobj
-99 0 obj<</Subtype/Link/Rect[108.0 657.6 239.4 670.6]/Border[0 0 0]/Dest[1496 0 R/XYZ 0 556 0]>>endobj
-100 0 obj<</Subtype/Link/Rect[108.0 644.4 253.4 657.4]/Border[0 0 0]/Dest[1496 0 R/XYZ 0 240 0]>>endobj
-101 0 obj<</Subtype/Link/Rect[126.0 631.2 218.6 644.2]/Border[0 0 0]/Dest[1496 0 R/XYZ 0 151 0]>>endobj
-102 0 obj<</Subtype/Link/Rect[108.0 618.0 224.7 631.0]/Border[0 0 0]/Dest[1498 0 R/XYZ 0 692 0]>>endobj
-103 0 obj<</Subtype/Link/Rect[108.0 604.8 228.1 617.8]/Border[0 0 0]/Dest[1498 0 R/XYZ 0 603 0]>>endobj
-104 0 obj<</Subtype/Link/Rect[108.0 591.6 152.9 604.6]/Border[0 0 0]/Dest[1498 0 R/XYZ 0 528 0]>>endobj
-105 0 obj<</Subtype/Link/Rect[72.0 565.2 281.6 578.2]/Border[0 0 0]/Dest[1500 0 R/XYZ 0 734 0]>>endobj
-106 0 obj<</Subtype/Link/Rect[108.0 552.0 299.9 565.0]/Border[0 0 0]/Dest[1500 0 R/XYZ 0 696 0]>>endobj
-107 0 obj<</Subtype/Link/Rect[108.0 538.8 288.0 551.8]/Border[0 0 0]/Dest[1502 0 R/XYZ 0 362 0]>>endobj
-108 0 obj<</Subtype/Link/Rect[108.0 525.6 307.9 538.6]/Border[0 0 0]/Dest[1502 0 R/XYZ 0 155 0]>>endobj
-109 0 obj<</Subtype/Link/Rect[72.0 499.2 198.2 512.2]/Border[0 0 0]/Dest[1506 0 R/XYZ 0 734 0]>>endobj
-110 0 obj<</Subtype/Link/Rect[72.0 472.8 131.9 485.8]/Border[0 0 0]/Dest[1508 0 R/XYZ 0 734 0]>>endobj
-111 0 obj<</Subtype/Link/Rect[72.0 446.4 354.3 459.4]/Border[0 0 0]/Dest[1514 0 R/XYZ 0 734 0]>>endobj
-112 0 obj<</Subtype/Link/Rect[108.0 433.2 167.0 446.2]/Border[0 0 0]/Dest[1514 0 R/XYZ 0 672 0]>>endobj
-113 0 obj<</Subtype/Link/Rect[108.0 420.0 333.2 433.0]/Border[0 0 0]/Dest[1514 0 R/XYZ 0 439 0]>>endobj
-114 0 obj<</Subtype/Link/Rect[126.0 406.8 200.6 419.8]/Border[0 0 0]/Dest[1514 0 R/XYZ 0 311 0]>>endobj
-115 0 obj<</Subtype/Link/Rect[126.0 393.6 227.1 406.6]/Border[0 0 0]/Dest[1516 0 R/XYZ 0 441 0]>>endobj
-116 0 obj<</Subtype/Link/Rect[126.0 380.4 218.6 393.4]/Border[0 0 0]/Dest[1516 0 R/XYZ 0 303 0]>>endobj
-117 0 obj<</Subtype/Link/Rect[126.0 367.2 238.7 380.2]/Border[0 0 0]/Dest[1516 0 R/XYZ 0 157 0]>>endobj
-118 0 obj<</Subtype/Link/Rect[108.0 354.0 387.9 367.0]/Border[0 0 0]/Dest[1518 0 R/XYZ 0 339 0]>>endobj
-119 0 obj<</Subtype/Link/Rect[126.0 340.8 279.1 353.8]/Border[0 0 0]/Dest[1520 0 R/XYZ 0 266 0]>>endobj
-120 0 obj<</Subtype/Link/Rect[126.0 327.6 247.6 340.6]/Border[0 0 0]/Dest[1522 0 R/XYZ 0 734 0]>>endobj
-121 0 obj<</Subtype/Link/Rect[126.0 314.4 211.2 327.4]/Border[0 0 0]/Dest[1524 0 R/XYZ 0 459 0]>>endobj
-122 0 obj<</Subtype/Link/Rect[126.0 301.2 218.0 314.2]/Border[0 0 0]/Dest[1524 0 R/XYZ 0 361 0]>>endobj
-123 0 obj<</Subtype/Link/Rect[126.0 288.0 224.1 301.0]/Border[0 0 0]/Dest[1524 0 R/XYZ 0 224 0]>>endobj
-124 0 obj<</Subtype/Link/Rect[108.0 274.8 528.7 287.8]/Border[0 0 0]/Dest[1526 0 R/XYZ 0 670 0]>>endobj
-125 0 obj<</Subtype/Link/Rect[108.0 261.6 503.4 274.6]/Border[0 0 0]/Dest[1526 0 R/XYZ 0 126 0]>>endobj
-126 0 obj<</Subtype/Link/Rect[126.0 248.4 376.8 261.4]/Border[0 0 0]/Dest[1530 0 R/XYZ 0 734 0]>>endobj
-127 0 obj<</Subtype/Link/Rect[126.0 235.2 442.5 248.2]/Border[0 0 0]/Dest[1530 0 R/XYZ 0 484 0]>>endobj
-128 0 obj<</Subtype/Link/Rect[126.0 222.0 356.0 235.0]/Border[0 0 0]/Dest[1530 0 R/XYZ 0 132 0]>>endobj
-129 0 obj<</Subtype/Link/Rect[108.0 208.8 187.1 221.8]/Border[0 0 0]/Dest[1532 0 R/XYZ 0 263 0]>>endobj
-130 0 obj<</Subtype/Link/Rect[72.0 182.4 418.2 195.4]/Border[0 0 0]/Dest[1534 0 R/XYZ 0 734 0]>>endobj
-131 0 obj<</Subtype/Link/Rect[108.0 169.2 450.2 182.2]/Border[0 0 0]/Dest[1534 0 R/XYZ 0 672 0]>>endobj
-132 0 obj<</Subtype/Link/Rect[108.0 156.0 324.6 169.0]/Border[0 0 0]/Dest[1534 0 R/XYZ 0 497 0]>>endobj
-133 0 obj<</Subtype/Link/Rect[108.0 142.8 236.6 155.8]/Border[0 0 0]/Dest[1534 0 R/XYZ 0 330 0]>>endobj
-134 0 obj<</Subtype/Link/Rect[108.0 129.6 297.7 142.6]/Border[0 0 0]/Dest[1536 0 R/XYZ 0 665 0]>>endobj
-135 0 obj<</Subtype/Link/Rect[126.0 116.4 232.0 129.4]/Border[0 0 0]/Dest[1536 0 R/XYZ 0 432 0]>>endobj
-136 0 obj<</Subtype/Link/Rect[126.0 103.2 257.1 116.2]/Border[0 0 0]/Dest[1536 0 R/XYZ 0 189 0]>>endobj
-137 0 obj<</Subtype/Link/Rect[108.0 90.0 306.9 103.0]/Border[0 0 0]/Dest[1538 0 R/XYZ 0 692 0]>>endobj
-138 0 obj<</Subtype/Link/Rect[108.0 76.8 397.6 89.8]/Border[0 0 0]/Dest[1538 0 R/XYZ 0 260 0]>>endobj
-139 0 obj<</Subtype/Link/Rect[108.0 63.6 389.7 76.6]/Border[0 0 0]/Dest[1542 0 R/XYZ 0 599 0]>>endobj
-140 0 obj[97 0 R
+95 0 R
+96 0 R
+97 0 R
 98 0 R
 99 0 R
 100 0 R
 101 0 R
-102 0 R
-103 0 R
-104 0 R
+102 0 R]endobj
+104 0 obj<</Subtype/Link/Rect[72.0 684.0 277.1 697.0]/Border[0 0 0]/Dest[1186 0 R/XYZ 0 734 0]>>endobj
+105 0 obj<</Subtype/Link/Rect[108.0 670.8 300.2 683.8]/Border[0 0 0]/Dest[1198 0 R/XYZ 0 359 0]>>endobj
+106 0 obj<</Subtype/Link/Rect[72.0 644.4 264.8 657.4]/Border[0 0 0]/Dest[1202 0 R/XYZ 0 734 0]>>endobj
+107 0 obj<</Subtype/Link/Rect[108.0 631.2 181.6 644.2]/Border[0 0 0]/Dest[1202 0 R/XYZ 0 696 0]>>endobj
+108 0 obj<</Subtype/Link/Rect[108.0 618.0 251.9 631.0]/Border[0 0 0]/Dest[1204 0 R/XYZ 0 734 0]>>endobj
+109 0 obj<</Subtype/Link/Rect[108.0 604.8 236.0 617.8]/Border[0 0 0]/Dest[1204 0 R/XYZ 0 278 0]>>endobj
+110 0 obj<</Subtype/Link/Rect[108.0 591.6 287.0 604.6]/Border[0 0 0]/Dest[1206 0 R/XYZ 0 734 0]>>endobj
+111 0 obj<</Subtype/Link/Rect[108.0 578.4 210.4 591.4]/Border[0 0 0]/Dest[1206 0 R/XYZ 0 304 0]>>endobj
+112 0 obj<</Subtype/Link/Rect[108.0 565.2 231.1 578.2]/Border[0 0 0]/Dest[1208 0 R/XYZ 0 646 0]>>endobj
+113 0 obj<</Subtype/Link/Rect[108.0 552.0 229.3 565.0]/Border[0 0 0]/Dest[1208 0 R/XYZ 0 299 0]>>endobj
+114 0 obj<</Subtype/Link/Rect[108.0 538.8 210.0 551.8]/Border[0 0 0]/Dest[1208 0 R/XYZ 0 210 0]>>endobj
+115 0 obj<</Subtype/Link/Rect[108.0 525.6 196.6 538.6]/Border[0 0 0]/Dest[1210 0 R/XYZ 0 734 0]>>endobj
+116 0 obj<</Subtype/Link/Rect[72.0 499.2 192.4 512.2]/Border[0 0 0]/Dest[1212 0 R/XYZ 0 734 0]>>endobj
+117 0 obj<</Subtype/Link/Rect[108.0 486.0 181.6 499.0]/Border[0 0 0]/Dest[1212 0 R/XYZ 0 696 0]>>endobj
+118 0 obj<</Subtype/Link/Rect[108.0 472.8 323.7 485.8]/Border[0 0 0]/Dest[1212 0 R/XYZ 0 467 0]>>endobj
+119 0 obj<</Subtype/Link/Rect[72.0 446.4 278.4 459.4]/Border[0 0 0]/Dest[1216 0 R/XYZ 0 734 0]>>endobj
+120 0 obj<</Subtype/Link/Rect[108.0 433.2 305.4 446.2]/Border[0 0 0]/Dest[1216 0 R/XYZ 0 696 0]>>endobj
+121 0 obj<</Subtype/Link/Rect[108.0 420.0 293.5 433.0]/Border[0 0 0]/Dest[1218 0 R/XYZ 0 362 0]>>endobj
+122 0 obj<</Subtype/Link/Rect[108.0 406.8 313.4 419.8]/Border[0 0 0]/Dest[1218 0 R/XYZ 0 155 0]>>endobj
+123 0 obj<</Subtype/Link/Rect[72.0 380.4 431.7 393.4]/Border[0 0 0]/Dest[1222 0 R/XYZ 0 734 0]>>endobj
+124 0 obj<</Subtype/Link/Rect[108.0 367.2 170.0 380.2]/Border[0 0 0]/Dest[1222 0 R/XYZ 0 672 0]>>endobj
+125 0 obj<</Subtype/Link/Rect[108.0 354.0 187.1 367.0]/Border[0 0 0]/Dest[1222 0 R/XYZ 0 544 0]>>endobj
+126 0 obj<</Subtype/Link/Rect[108.0 340.8 239.1 353.8]/Border[0 0 0]/Dest[1222 0 R/XYZ 0 231 0]>>endobj
+127 0 obj<</Subtype/Link/Rect[144.0 327.6 229.8 340.6]/Border[0 0 0]/Dest[1224 0 R/XYZ 0 560 0]>>endobj
+128 0 obj<</Subtype/Link/Rect[108.0 314.4 227.5 327.4]/Border[0 0 0]/Dest[1224 0 R/XYZ 0 409 0]>>endobj
+129 0 obj<</Subtype/Link/Rect[144.0 301.2 330.1 314.2]/Border[0 0 0]/Dest[1224 0 R/XYZ 0 294 0]>>endobj
+130 0 obj<</Subtype/Link/Rect[144.0 288.0 272.3 301.0]/Border[0 0 0]/Dest[1226 0 R/XYZ 0 734 0]>>endobj
+131 0 obj<</Subtype/Link/Rect[144.0 274.8 330.4 287.8]/Border[0 0 0]/Dest[1226 0 R/XYZ 0 292 0]>>endobj
+132 0 obj<</Subtype/Link/Rect[144.0 261.6 310.8 274.6]/Border[0 0 0]/Dest[1228 0 R/XYZ 0 665 0]>>endobj
+133 0 obj<</Subtype/Link/Rect[144.0 248.4 244.5 261.4]/Border[0 0 0]/Dest[1228 0 R/XYZ 0 488 0]>>endobj
+134 0 obj<</Subtype/Link/Rect[108.0 235.2 265.4 248.2]/Border[0 0 0]/Dest[1228 0 R/XYZ 0 351 0]>>endobj
+135 0 obj<</Subtype/Link/Rect[144.0 222.0 231.4 235.0]/Border[0 0 0]/Dest[1228 0 R/XYZ 0 209 0]>>endobj
+136 0 obj<</Subtype/Link/Rect[144.0 208.8 238.1 221.8]/Border[0 0 0]/Dest[1230 0 R/XYZ 0 599 0]>>endobj
+137 0 obj<</Subtype/Link/Rect[144.0 195.6 262.6 208.6]/Border[0 0 0]/Dest[1230 0 R/XYZ 0 330 0]>>endobj
+138 0 obj<</Subtype/Link/Rect[108.0 182.4 183.5 195.4]/Border[0 0 0]/Dest[1244 0 R/XYZ 0 296 0]>>endobj
+139 0 obj<</Subtype/Link/Rect[108.0 169.2 182.9 182.2]/Border[0 0 0]/Dest[1246 0 R/XYZ 0 734 0]>>endobj
+140 0 obj<</Subtype/Link/Rect[72.0 142.8 421.8 155.8]/Border[0 0 0]/Dest[1248 0 R/XYZ 0 734 0]>>endobj
+141 0 obj<</Subtype/Link/Rect[108.0 129.6 224.7 142.6]/Border[0 0 0]/Dest[1248 0 R/XYZ 0 672 0]>>endobj
+142 0 obj<</Subtype/Link/Rect[108.0 116.4 186.5 129.4]/Border[0 0 0]/Dest[1248 0 R/XYZ 0 584 0]>>endobj
+143 0 obj<</Subtype/Link/Rect[108.0 103.2 321.6 116.2]/Border[0 0 0]/Dest[1250 0 R/XYZ 0 718 0]>>endobj
+144 0 obj<</Subtype/Link/Rect[108.0 90.0 435.5 103.0]/Border[0 0 0]/Dest[1252 0 R/XYZ 0 613 0]>>endobj
+145 0 obj<</Subtype/Link/Rect[144.0 76.8 374.7 89.8]/Border[0 0 0]/Dest[1252 0 R/XYZ 0 227 0]>>endobj
+146 0 obj<</Subtype/Link/Rect[144.0 63.6 404.0 76.6]/Border[0 0 0]/Dest[1254 0 R/XYZ 0 359 0]>>endobj
+147 0 obj[104 0 R
 105 0 R
 106 0 R
 107 0 R
@@ -260,59 +267,59 @@
 136 0 R
 137 0 R
 138 0 R
-139 0 R]endobj
-141 0 obj<</Subtype/Link/Rect[72.0 684.0 466.2 697.0]/Border[0 0 0]/Dest[1544 0 R/XYZ 0 734 0]>>endobj
-142 0 obj<</Subtype/Link/Rect[108.0 670.8 207.9 683.8]/Border[0 0 0]/Dest[1544 0 R/XYZ 0 672 0]>>endobj
-143 0 obj<</Subtype/Link/Rect[108.0 657.6 250.4 670.6]/Border[0 0 0]/Dest[1546 0 R/XYZ 0 148 0]>>endobj
-144 0 obj<</Subtype/Link/Rect[108.0 644.4 275.8 657.4]/Border[0 0 0]/Dest[1548 0 R/XYZ 0 705 0]>>endobj
-145 0 obj<</Subtype/Link/Rect[72.0 618.0 407.8 631.0]/Border[0 0 0]/Dest[1550 0 R/XYZ 0 734 0]>>endobj
-146 0 obj<</Subtype/Link/Rect[108.0 604.8 184.7 617.8]/Border[0 0 0]/Dest[1550 0 R/XYZ 0 672 0]>>endobj
-147 0 obj<</Subtype/Link/Rect[126.0 591.6 184.7 604.6]/Border[0 0 0]/Dest[1552 0 R/XYZ 0 652 0]>>endobj
-148 0 obj<</Subtype/Link/Rect[72.0 565.2 210.7 578.2]/Border[0 0 0]/Dest[1554 0 R/XYZ 0 734 0]>>endobj
-149 0 obj<</Subtype/Link/Rect[108.0 552.0 187.1 565.0]/Border[0 0 0]/Dest[1554 0 R/XYZ 0 696 0]>>endobj
-150 0 obj<</Subtype/Link/Rect[108.0 538.8 194.5 551.8]/Border[0 0 0]/Dest[1554 0 R/XYZ 0 317 0]>>endobj
-151 0 obj<</Subtype/Link/Rect[126.0 525.6 233.2 538.6]/Border[0 0 0]/Dest[1554 0 R/XYZ 0 131 0]>>endobj
-152 0 obj<</Subtype/Link/Rect[126.0 512.4 317.9 525.4]/Border[0 0 0]/Dest[1558 0 R/XYZ 0 570 0]>>endobj
-153 0 obj<</Subtype/Link/Rect[126.0 499.2 310.8 512.2]/Border[0 0 0]/Dest[1558 0 R/XYZ 0 155 0]>>endobj
-154 0 obj<</Subtype/Link/Rect[126.0 486.0 374.4 499.0]/Border[0 0 0]/Dest[1560 0 R/XYZ 0 459 0]>>endobj
-155 0 obj<</Subtype/Link/Rect[126.0 472.8 265.6 485.8]/Border[0 0 0]/Dest[1562 0 R/XYZ 0 286 0]>>endobj
-156 0 obj<</Subtype/Link/Rect[108.0 459.6 225.6 472.6]/Border[0 0 0]/Dest[1564 0 R/XYZ 0 734 0]>>endobj
-157 0 obj<</Subtype/Link/Rect[126.0 446.4 237.8 459.4]/Border[0 0 0]/Dest[1564 0 R/XYZ 0 632 0]>>endobj
-158 0 obj<</Subtype/Link/Rect[126.0 433.2 304.7 446.2]/Border[0 0 0]/Dest[1564 0 R/XYZ 0 507 0]>>endobj
-159 0 obj<</Subtype/Link/Rect[126.0 420.0 245.8 433.0]/Border[0 0 0]/Dest[1564 0 R/XYZ 0 423 0]>>endobj
-160 0 obj<</Subtype/Link/Rect[126.0 406.8 258.0 419.8]/Border[0 0 0]/Dest[1564 0 R/XYZ 0 325 0]>>endobj
-161 0 obj<</Subtype/Link/Rect[108.0 393.6 176.8 406.6]/Border[0 0 0]/Dest[1566 0 R/XYZ 0 440 0]>>endobj
-162 0 obj<</Subtype/Link/Rect[126.0 380.4 213.4 393.4]/Border[0 0 0]/Dest[1566 0 R/XYZ 0 406 0]>>endobj
-163 0 obj<</Subtype/Link/Rect[126.0 367.2 283.7 380.2]/Border[0 0 0]/Dest[1568 0 R/XYZ 0 479 0]>>endobj
-164 0 obj<</Subtype/Link/Rect[126.0 354.0 267.7 367.0]/Border[0 0 0]/Dest[1570 0 R/XYZ 0 692 0]>>endobj
-165 0 obj<</Subtype/Link/Rect[126.0 340.8 318.8 353.8]/Border[0 0 0]/Dest[1570 0 R/XYZ 0 511 0]>>endobj
-166 0 obj<</Subtype/Link/Rect[126.0 327.6 242.1 340.6]/Border[0 0 0]/Dest[1572 0 R/XYZ 0 734 0]>>endobj
-167 0 obj<</Subtype/Link/Rect[126.0 314.4 262.9 327.4]/Border[0 0 0]/Dest[1572 0 R/XYZ 0 394 0]>>endobj
-168 0 obj<</Subtype/Link/Rect[126.0 301.2 261.1 314.2]/Border[0 0 0]/Dest[1574 0 R/XYZ 0 718 0]>>endobj
-169 0 obj<</Subtype/Link/Rect[126.0 288.0 241.8 301.0]/Border[0 0 0]/Dest[1574 0 R/XYZ 0 633 0]>>endobj
-170 0 obj<</Subtype/Link/Rect[126.0 274.8 228.4 287.8]/Border[0 0 0]/Dest[1574 0 R/XYZ 0 535 0]>>endobj
-171 0 obj<</Subtype/Link/Rect[72.0 248.4 197.9 261.4]/Border[0 0 0]/Dest[1576 0 R/XYZ 0 734 0]>>endobj
-172 0 obj<</Subtype/Link/Rect[108.0 235.2 187.1 248.2]/Border[0 0 0]/Dest[1576 0 R/XYZ 0 696 0]>>endobj
-173 0 obj<</Subtype/Link/Rect[108.0 222.0 329.2 235.0]/Border[0 0 0]/Dest[1576 0 R/XYZ 0 467 0]>>endobj
-174 0 obj<</Subtype/Link/Rect[72.0 195.6 431.7 208.6]/Border[0 0 0]/Dest[1580 0 R/XYZ 0 734 0]>>endobj
-175 0 obj<</Subtype/Link/Rect[108.0 182.4 170.0 195.4]/Border[0 0 0]/Dest[1580 0 R/XYZ 0 672 0]>>endobj
-176 0 obj<</Subtype/Link/Rect[108.0 169.2 187.1 182.2]/Border[0 0 0]/Dest[1580 0 R/XYZ 0 544 0]>>endobj
-177 0 obj<</Subtype/Link/Rect[108.0 156.0 239.1 169.0]/Border[0 0 0]/Dest[1580 0 R/XYZ 0 231 0]>>endobj
-178 0 obj<</Subtype/Link/Rect[126.0 142.8 211.8 155.8]/Border[0 0 0]/Dest[1582 0 R/XYZ 0 560 0]>>endobj
-179 0 obj<</Subtype/Link/Rect[108.0 129.6 227.5 142.6]/Border[0 0 0]/Dest[1582 0 R/XYZ 0 409 0]>>endobj
-180 0 obj<</Subtype/Link/Rect[126.0 116.4 312.1 129.4]/Border[0 0 0]/Dest[1582 0 R/XYZ 0 294 0]>>endobj
-181 0 obj<</Subtype/Link/Rect[126.0 103.2 254.3 116.2]/Border[0 0 0]/Dest[1584 0 R/XYZ 0 734 0]>>endobj
-182 0 obj<</Subtype/Link/Rect[126.0 90.0 312.4 103.0]/Border[0 0 0]/Dest[1584 0 R/XYZ 0 292 0]>>endobj
-183 0 obj<</Subtype/Link/Rect[126.0 76.8 292.8 89.8]/Border[0 0 0]/Dest[1586 0 R/XYZ 0 665 0]>>endobj
-184 0 obj<</Subtype/Link/Rect[126.0 63.6 226.5 76.6]/Border[0 0 0]/Dest[1586 0 R/XYZ 0 488 0]>>endobj
-185 0 obj[141 0 R
+139 0 R
+140 0 R
+141 0 R
 142 0 R
 143 0 R
 144 0 R
 145 0 R
-146 0 R
-147 0 R
-148 0 R
+146 0 R]endobj
+148 0 obj<</Subtype/Link/Rect[72.0 684.0 421.8 697.0]/Border[0 0 0]/Dest[1248 0 R/XYZ 0 734 0]>>endobj
+149 0 obj<</Subtype/Link/Rect[144.0 670.8 320.9 683.8]/Border[0 0 0]/Dest[1254 0 R/XYZ 0 149 0]>>endobj
+150 0 obj<</Subtype/Link/Rect[108.0 657.6 266.9 670.6]/Border[0 0 0]/Dest[1256 0 R/XYZ 0 467 0]>>endobj
+151 0 obj<</Subtype/Link/Rect[108.0 644.4 258.3 657.4]/Border[0 0 0]/Dest[1258 0 R/XYZ 0 208 0]>>endobj
+152 0 obj<</Subtype/Link/Rect[108.0 631.2 249.1 644.2]/Border[0 0 0]/Dest[1260 0 R/XYZ 0 203 0]>>endobj
+153 0 obj<</Subtype/Link/Rect[108.0 618.0 298.4 631.0]/Border[0 0 0]/Dest[1266 0 R/XYZ 0 547 0]>>endobj
+154 0 obj<</Subtype/Link/Rect[144.0 604.8 373.5 617.8]/Border[0 0 0]/Dest[1268 0 R/XYZ 0 560 0]>>endobj
+155 0 obj<</Subtype/Link/Rect[144.0 591.6 447.7 604.6]/Border[0 0 0]/Dest[1268 0 R/XYZ 0 126 0]>>endobj
+156 0 obj<</Subtype/Link/Rect[108.0 578.4 436.5 591.4]/Border[0 0 0]/Dest[1276 0 R/XYZ 0 135 0]>>endobj
+157 0 obj<</Subtype/Link/Rect[72.0 552.0 518.1 565.0]/Border[0 0 0]/Dest[1282 0 R/XYZ 0 734 0]>>endobj
+158 0 obj<</Subtype/Link/Rect[108.0 538.8 224.7 551.8]/Border[0 0 0]/Dest[1282 0 R/XYZ 0 672 0]>>endobj
+159 0 obj<</Subtype/Link/Rect[108.0 525.6 186.5 538.6]/Border[0 0 0]/Dest[1282 0 R/XYZ 0 597 0]>>endobj
+160 0 obj<</Subtype/Link/Rect[108.0 512.4 364.6 525.4]/Border[0 0 0]/Dest[1282 0 R/XYZ 0 225 0]>>endobj
+161 0 obj<</Subtype/Link/Rect[144.0 499.2 405.8 512.2]/Border[0 0 0]/Dest[1284 0 R/XYZ 0 734 0]>>endobj
+162 0 obj<</Subtype/Link/Rect[144.0 486.0 292.5 499.0]/Border[0 0 0]/Dest[1284 0 R/XYZ 0 609 0]>>endobj
+163 0 obj<</Subtype/Link/Rect[108.0 472.8 331.3 485.8]/Border[0 0 0]/Dest[1284 0 R/XYZ 0 524 0]>>endobj
+164 0 obj<</Subtype/Link/Rect[108.0 459.6 273.6 472.6]/Border[0 0 0]/Dest[1284 0 R/XYZ 0 383 0]>>endobj
+165 0 obj<</Subtype/Link/Rect[144.0 446.4 351.1 459.4]/Border[0 0 0]/Dest[1286 0 R/XYZ 0 620 0]>>endobj
+166 0 obj<</Subtype/Link/Rect[72.0 420.0 484.2 433.0]/Border[0 0 0]/Dest[1288 0 R/XYZ 0 734 0]>>endobj
+167 0 obj<</Subtype/Link/Rect[108.0 406.8 168.2 419.8]/Border[0 0 0]/Dest[1288 0 R/XYZ 0 672 0]>>endobj
+168 0 obj<</Subtype/Link/Rect[108.0 393.6 187.1 406.6]/Border[0 0 0]/Dest[1288 0 R/XYZ 0 412 0]>>endobj
+169 0 obj<</Subtype/Link/Rect[108.0 380.4 245.2 393.4]/Border[0 0 0]/Dest[1290 0 R/XYZ 0 573 0]>>endobj
+170 0 obj<</Subtype/Link/Rect[108.0 367.2 384.2 380.2]/Border[0 0 0]/Dest[1290 0 R/XYZ 0 471 0]>>endobj
+171 0 obj<</Subtype/Link/Rect[108.0 354.0 273.0 367.0]/Border[0 0 0]/Dest[1292 0 R/XYZ 0 734 0]>>endobj
+172 0 obj<</Subtype/Link/Rect[144.0 340.8 291.6 353.8]/Border[0 0 0]/Dest[1292 0 R/XYZ 0 700 0]>>endobj
+173 0 obj<</Subtype/Link/Rect[144.0 327.6 263.5 340.6]/Border[0 0 0]/Dest[1292 0 R/XYZ 0 143 0]>>endobj
+174 0 obj<</Subtype/Link/Rect[108.0 314.4 287.0 327.4]/Border[0 0 0]/Dest[1294 0 R/XYZ 0 243 0]>>endobj
+175 0 obj<</Subtype/Link/Rect[108.0 301.2 256.2 314.2]/Border[0 0 0]/Dest[1296 0 R/XYZ 0 718 0]>>endobj
+176 0 obj<</Subtype/Link/Rect[108.0 288.0 330.7 301.0]/Border[0 0 0]/Dest[1296 0 R/XYZ 0 336 0]>>endobj
+177 0 obj<</Subtype/Link/Rect[108.0 274.8 324.3 287.8]/Border[0 0 0]/Dest[1298 0 R/XYZ 0 322 0]>>endobj
+178 0 obj<</Subtype/Link/Rect[108.0 261.6 185.9 274.6]/Border[0 0 0]/Dest[1300 0 R/XYZ 0 492 0]>>endobj
+179 0 obj<</Subtype/Link/Rect[72.0 235.2 347.9 248.2]/Border[0 0 0]/Dest[1302 0 R/XYZ 0 734 0]>>endobj
+180 0 obj<</Subtype/Link/Rect[108.0 222.0 323.1 235.0]/Border[0 0 0]/Dest[1302 0 R/XYZ 0 500 0]>>endobj
+181 0 obj<</Subtype/Link/Rect[108.0 208.8 324.9 221.8]/Border[0 0 0]/Dest[1302 0 R/XYZ 0 393 0]>>endobj
+182 0 obj<</Subtype/Link/Rect[108.0 195.6 203.3 208.6]/Border[0 0 0]/Dest[1302 0 R/XYZ 0 217 0]>>endobj
+183 0 obj<</Subtype/Link/Rect[108.0 182.4 244.9 195.4]/Border[0 0 0]/Dest[1304 0 R/XYZ 0 530 0]>>endobj
+184 0 obj<</Subtype/Link/Rect[108.0 169.2 258.9 182.2]/Border[0 0 0]/Dest[1304 0 R/XYZ 0 213 0]>>endobj
+185 0 obj<</Subtype/Link/Rect[144.0 156.0 242.1 169.0]/Border[0 0 0]/Dest[1304 0 R/XYZ 0 125 0]>>endobj
+186 0 obj<</Subtype/Link/Rect[108.0 142.8 230.2 155.8]/Border[0 0 0]/Dest[1306 0 R/XYZ 0 665 0]>>endobj
+187 0 obj<</Subtype/Link/Rect[108.0 129.6 233.6 142.6]/Border[0 0 0]/Dest[1306 0 R/XYZ 0 577 0]>>endobj
+188 0 obj<</Subtype/Link/Rect[108.0 116.4 158.4 129.4]/Border[0 0 0]/Dest[1306 0 R/XYZ 0 502 0]>>endobj
+189 0 obj<</Subtype/Link/Rect[72.0 90.0 268.2 103.0]/Border[0 0 0]/Dest[1308 0 R/XYZ 0 734 0]>>endobj
+190 0 obj<</Subtype/Link/Rect[108.0 76.8 231.7 89.8]/Border[0 0 0]/Dest[1308 0 R/XYZ 0 696 0]>>endobj
+191 0 obj<</Subtype/Link/Rect[108.0 63.6 253.4 76.6]/Border[0 0 0]/Dest[1308 0 R/XYZ 0 515 0]>>endobj
+192 0 obj[148 0 R
 149 0 R
 150 0 R
 151 0 R
@@ -348,57 +355,61 @@
 181 0 R
 182 0 R
 183 0 R
-184 0 R]endobj
-186 0 obj<</Subtype/Link/Rect[72.0 684.0 431.7 697.0]/Border[0 0 0]/Dest[1580 0 R/XYZ 0 734 0]>>endobj
-187 0 obj<</Subtype/Link/Rect[108.0 670.8 265.4 683.8]/Border[0 0 0]/Dest[1586 0 R/XYZ 0 351 0]>>endobj
-188 0 obj<</Subtype/Link/Rect[126.0 657.6 213.4 670.6]/Border[0 0 0]/Dest[1586 0 R/XYZ 0 209 0]>>endobj
-189 0 obj<</Subtype/Link/Rect[126.0 644.4 220.1 657.4]/Border[0 0 0]/Dest[1588 0 R/XYZ 0 599 0]>>endobj
-190 0 obj<</Subtype/Link/Rect[126.0 631.2 244.6 644.2]/Border[0 0 0]/Dest[1588 0 R/XYZ 0 330 0]>>endobj
-191 0 obj<</Subtype/Link/Rect[108.0 618.0 183.5 631.0]/Border[0 0 0]/Dest[1602 0 R/XYZ 0 296 0]>>endobj
-192 0 obj<</Subtype/Link/Rect[108.0 604.8 182.9 617.8]/Border[0 0 0]/Dest[1604 0 R/XYZ 0 734 0]>>endobj
-193 0 obj<</Subtype/Link/Rect[72.0 578.4 236.7 591.4]/Border[0 0 0]/Dest[1606 0 R/XYZ 0 734 0]>>endobj
-194 0 obj<</Subtype/Link/Rect[108.0 565.2 171.3 578.2]/Border[0 0 0]/Dest[1606 0 R/XYZ 0 696 0]>>endobj
-195 0 obj<</Subtype/Link/Rect[108.0 552.0 186.5 565.0]/Border[0 0 0]/Dest[1606 0 R/XYZ 0 595 0]>>endobj
-196 0 obj<</Subtype/Link/Rect[108.0 538.8 351.2 551.8]/Border[0 0 0]/Dest[1608 0 R/XYZ 0 568 0]>>endobj
-197 0 obj<</Subtype/Link/Rect[108.0 525.6 309.7 538.6]/Border[0 0 0]/Dest[1608 0 R/XYZ 0 414 0]>>endobj
-198 0 obj<</Subtype/Link/Rect[72.0 499.2 224.5 512.2]/Border[0 0 0]/Dest[1610 0 R/XYZ 0 734 0]>>endobj
-199 0 obj<</Subtype/Link/Rect[108.0 486.0 171.3 499.0]/Border[0 0 0]/Dest[1610 0 R/XYZ 0 696 0]>>endobj
-200 0 obj<</Subtype/Link/Rect[108.0 472.8 160.2 485.8]/Border[0 0 0]/Dest[1610 0 R/XYZ 0 608 0]>>endobj
-201 0 obj<</Subtype/Link/Rect[72.0 446.4 484.2 459.4]/Border[0 0 0]/Dest[1612 0 R/XYZ 0 734 0]>>endobj
-202 0 obj<</Subtype/Link/Rect[108.0 433.2 168.2 446.2]/Border[0 0 0]/Dest[1612 0 R/XYZ 0 672 0]>>endobj
-203 0 obj<</Subtype/Link/Rect[108.0 420.0 187.1 433.0]/Border[0 0 0]/Dest[1612 0 R/XYZ 0 412 0]>>endobj
-204 0 obj<</Subtype/Link/Rect[108.0 406.8 245.2 419.8]/Border[0 0 0]/Dest[1614 0 R/XYZ 0 573 0]>>endobj
-205 0 obj<</Subtype/Link/Rect[108.0 393.6 384.2 406.6]/Border[0 0 0]/Dest[1614 0 R/XYZ 0 471 0]>>endobj
-206 0 obj<</Subtype/Link/Rect[108.0 380.4 273.0 393.4]/Border[0 0 0]/Dest[1616 0 R/XYZ 0 734 0]>>endobj
-207 0 obj<</Subtype/Link/Rect[126.0 367.2 273.6 380.2]/Border[0 0 0]/Dest[1616 0 R/XYZ 0 700 0]>>endobj
-208 0 obj<</Subtype/Link/Rect[126.0 354.0 245.5 367.0]/Border[0 0 0]/Dest[1616 0 R/XYZ 0 143 0]>>endobj
-209 0 obj<</Subtype/Link/Rect[108.0 340.8 287.0 353.8]/Border[0 0 0]/Dest[1618 0 R/XYZ 0 243 0]>>endobj
-210 0 obj<</Subtype/Link/Rect[108.0 327.6 256.2 340.6]/Border[0 0 0]/Dest[1620 0 R/XYZ 0 718 0]>>endobj
-211 0 obj<</Subtype/Link/Rect[108.0 314.4 330.7 327.4]/Border[0 0 0]/Dest[1620 0 R/XYZ 0 336 0]>>endobj
-212 0 obj<</Subtype/Link/Rect[108.0 301.2 324.3 314.2]/Border[0 0 0]/Dest[1622 0 R/XYZ 0 322 0]>>endobj
-213 0 obj<</Subtype/Link/Rect[108.0 288.0 185.9 301.0]/Border[0 0 0]/Dest[1624 0 R/XYZ 0 492 0]>>endobj
-214 0 obj<</Subtype/Link/Rect[72.0 261.6 342.4 274.6]/Border[0 0 0]/Dest[1626 0 R/XYZ 0 734 0]>>endobj
-215 0 obj<</Subtype/Link/Rect[108.0 248.4 187.1 261.4]/Border[0 0 0]/Dest[1626 0 R/XYZ 0 672 0]>>endobj
-216 0 obj<</Subtype/Link/Rect[108.0 235.2 247.6 248.2]/Border[0 0 0]/Dest[1626 0 R/XYZ 0 557 0]>>endobj
-217 0 obj<</Subtype/Link/Rect[126.0 222.0 248.8 235.0]/Border[0 0 0]/Dest[1626 0 R/XYZ 0 469 0]>>endobj
-218 0 obj<</Subtype/Link/Rect[126.0 208.8 223.8 221.8]/Border[0 0 0]/Dest[1626 0 R/XYZ 0 358 0]>>endobj
-219 0 obj<</Subtype/Link/Rect[72.0 182.4 252.6 195.4]/Border[0 0 0]/Dest[1630 0 R/XYZ 0 734 0]>>endobj
-220 0 obj<</Subtype/Link/Rect[72.0 156.0 255.6 169.0]/Border[0 0 0]/Dest[1632 0 R/XYZ 0 734 0]>>endobj
-221 0 obj<</Subtype/Link/Rect[108.0 142.8 190.8 155.8]/Border[0 0 0]/Dest[1632 0 R/XYZ 0 696 0]>>endobj
-222 0 obj<</Subtype/Link/Rect[108.0 129.6 169.4 142.6]/Border[0 0 0]/Dest[1632 0 R/XYZ 0 449 0]>>endobj
-223 0 obj<</Subtype/Link/Rect[126.0 116.4 202.4 129.4]/Border[0 0 0]/Dest[1632 0 R/XYZ 0 416 0]>>endobj
-224 0 obj<</Subtype/Link/Rect[126.0 103.2 229.0 116.2]/Border[0 0 0]/Dest[1632 0 R/XYZ 0 146 0]>>endobj
-225 0 obj<</Subtype/Link/Rect[126.0 90.0 328.3 103.0]/Border[0 0 0]/Dest[1634 0 R/XYZ 0 652 0]>>endobj
-226 0 obj<</Subtype/Link/Rect[108.0 76.8 197.8 89.8]/Border[0 0 0]/Dest[1634 0 R/XYZ 0 515 0]>>endobj
-227 0 obj<</Subtype/Link/Rect[108.0 63.6 175.2 76.6]/Border[0 0 0]/Dest[1634 0 R/XYZ 0 255 0]>>endobj
-228 0 obj[186 0 R
+184 0 R
+185 0 R
+186 0 R
 187 0 R
 188 0 R
 189 0 R
 190 0 R
-191 0 R
-192 0 R
-193 0 R
+191 0 R]endobj
+193 0 obj<</Subtype/Link/Rect[72.0 684.0 268.2 697.0]/Border[0 0 0]/Dest[1308 0 R/XYZ 0 734 0]>>endobj
+194 0 obj<</Subtype/Link/Rect[108.0 670.8 216.8 683.8]/Border[0 0 0]/Dest[1308 0 R/XYZ 0 137 0]>>endobj
+195 0 obj<</Subtype/Link/Rect[108.0 657.6 241.5 670.6]/Border[0 0 0]/Dest[1310 0 R/XYZ 0 533 0]>>endobj
+196 0 obj<</Subtype/Link/Rect[144.0 644.4 354.8 657.4]/Border[0 0 0]/Dest[1310 0 R/XYZ 0 273 0]>>endobj
+197 0 obj<</Subtype/Link/Rect[108.0 631.2 245.8 644.2]/Border[0 0 0]/Dest[1316 0 R/XYZ 0 560 0]>>endobj
+198 0 obj<</Subtype/Link/Rect[108.0 618.0 315.8 631.0]/Border[0 0 0]/Dest[1318 0 R/XYZ 0 613 0]>>endobj
+199 0 obj<</Subtype/Link/Rect[108.0 604.8 290.1 617.8]/Border[0 0 0]/Dest[1320 0 R/XYZ 0 622 0]>>endobj
+200 0 obj<</Subtype/Link/Rect[108.0 591.6 270.5 604.6]/Border[0 0 0]/Dest[1320 0 R/XYZ 0 266 0]>>endobj
+201 0 obj<</Subtype/Link/Rect[108.0 578.4 281.8 591.4]/Border[0 0 0]/Dest[1322 0 R/XYZ 0 520 0]>>endobj
+202 0 obj<</Subtype/Link/Rect[108.0 565.2 276.6 578.2]/Border[0 0 0]/Dest[1324 0 R/XYZ 0 734 0]>>endobj
+203 0 obj<</Subtype/Link/Rect[108.0 552.0 221.7 565.0]/Border[0 0 0]/Dest[1324 0 R/XYZ 0 645 0]>>endobj
+204 0 obj<</Subtype/Link/Rect[72.0 525.6 255.6 538.6]/Border[0 0 0]/Dest[1326 0 R/XYZ 0 734 0]>>endobj
+205 0 obj<</Subtype/Link/Rect[108.0 512.4 190.8 525.4]/Border[0 0 0]/Dest[1326 0 R/XYZ 0 696 0]>>endobj
+206 0 obj<</Subtype/Link/Rect[108.0 499.2 169.4 512.2]/Border[0 0 0]/Dest[1326 0 R/XYZ 0 449 0]>>endobj
+207 0 obj<</Subtype/Link/Rect[144.0 486.0 220.4 499.0]/Border[0 0 0]/Dest[1326 0 R/XYZ 0 416 0]>>endobj
+208 0 obj<</Subtype/Link/Rect[144.0 472.8 247.0 485.8]/Border[0 0 0]/Dest[1326 0 R/XYZ 0 146 0]>>endobj
+209 0 obj<</Subtype/Link/Rect[144.0 459.6 346.3 472.6]/Border[0 0 0]/Dest[1328 0 R/XYZ 0 652 0]>>endobj
+210 0 obj<</Subtype/Link/Rect[108.0 446.4 197.8 459.4]/Border[0 0 0]/Dest[1328 0 R/XYZ 0 515 0]>>endobj
+211 0 obj<</Subtype/Link/Rect[108.0 433.2 175.2 446.2]/Border[0 0 0]/Dest[1328 0 R/XYZ 0 255 0]>>endobj
+212 0 obj<</Subtype/Link/Rect[108.0 420.0 175.8 433.0]/Border[0 0 0]/Dest[1330 0 R/XYZ 0 718 0]>>endobj
+213 0 obj<</Subtype/Link/Rect[108.0 406.8 169.4 419.8]/Border[0 0 0]/Dest[1330 0 R/XYZ 0 537 0]>>endobj
+214 0 obj<</Subtype/Link/Rect[108.0 393.6 189.3 406.6]/Border[0 0 0]/Dest[1330 0 R/XYZ 0 409 0]>>endobj
+215 0 obj<</Subtype/Link/Rect[108.0 380.4 174.6 393.4]/Border[0 0 0]/Dest[1330 0 R/XYZ 0 189 0]>>endobj
+216 0 obj<</Subtype/Link/Rect[108.0 367.2 180.1 380.2]/Border[0 0 0]/Dest[1332 0 R/XYZ 0 734 0]>>endobj
+217 0 obj<</Subtype/Link/Rect[108.0 354.0 180.1 367.0]/Border[0 0 0]/Dest[1332 0 R/XYZ 0 645 0]>>endobj
+218 0 obj<</Subtype/Link/Rect[108.0 340.8 182.5 353.8]/Border[0 0 0]/Dest[1332 0 R/XYZ 0 477 0]>>endobj
+219 0 obj<</Subtype/Link/Rect[108.0 327.6 208.2 340.6]/Border[0 0 0]/Dest[1332 0 R/XYZ 0 349 0]>>endobj
+220 0 obj<</Subtype/Link/Rect[108.0 314.4 217.4 327.4]/Border[0 0 0]/Dest[1332 0 R/XYZ 0 129 0]>>endobj
+221 0 obj<</Subtype/Link/Rect[108.0 301.2 194.8 314.2]/Border[0 0 0]/Dest[1334 0 R/XYZ 0 639 0]>>endobj
+222 0 obj<</Subtype/Link/Rect[108.0 288.0 194.2 301.0]/Border[0 0 0]/Dest[1334 0 R/XYZ 0 511 0]>>endobj
+223 0 obj<</Subtype/Link/Rect[108.0 274.8 196.0 287.8]/Border[0 0 0]/Dest[1334 0 R/XYZ 0 436 0]>>endobj
+224 0 obj<</Subtype/Link/Rect[108.0 261.6 188.7 274.6]/Border[0 0 0]/Dest[1336 0 R/XYZ 0 388 0]>>endobj
+225 0 obj<</Subtype/Link/Rect[72.0 235.2 271.5 248.2]/Border[0 0 0]/Dest[1338 0 R/XYZ 0 734 0]>>endobj
+226 0 obj<</Subtype/Link/Rect[108.0 222.0 215.5 235.0]/Border[0 0 0]/Dest[1338 0 R/XYZ 0 668 0]>>endobj
+227 0 obj<</Subtype/Link/Rect[108.0 208.8 182.0 221.8]/Border[0 0 0]/Dest[1338 0 R/XYZ 0 461 0]>>endobj
+228 0 obj<</Subtype/Link/Rect[144.0 195.6 532.3 208.6]/Border[0 0 0]/Dest[1338 0 R/XYZ 0 427 0]>>endobj
+229 0 obj<</Subtype/Link/Rect[144.0 182.4 499.9 195.4]/Border[0 0 0]/Dest[1340 0 R/XYZ 0 734 0]>>endobj
+230 0 obj<</Subtype/Link/Rect[144.0 169.2 181.6 182.2]/Border[0 0 0]/Dest[1340 0 R/XYZ 0 734 0]>>endobj
+231 0 obj<</Subtype/Link/Rect[144.0 156.0 488.9 169.0]/Border[0 0 0]/Dest[1340 0 R/XYZ 0 523 0]>>endobj
+232 0 obj<</Subtype/Link/Rect[144.0 142.8 458.7 155.8]/Border[0 0 0]/Dest[1340 0 R/XYZ 0 408 0]>>endobj
+233 0 obj<</Subtype/Link/Rect[108.0 129.6 248.2 142.6]/Border[0 0 0]/Dest[1340 0 R/XYZ 0 151 0]>>endobj
+234 0 obj<</Subtype/Link/Rect[144.0 116.4 351.5 129.4]/Border[0 0 0]/Dest[1340 0 R/XYZ 0 118 0]>>endobj
+235 0 obj<</Subtype/Link/Rect[144.0 103.2 350.5 116.2]/Border[0 0 0]/Dest[1342 0 R/XYZ 0 626 0]>>endobj
+236 0 obj<</Subtype/Link/Rect[144.0 90.0 334.3 103.0]/Border[0 0 0]/Dest[1342 0 R/XYZ 0 475 0]>>endobj
+237 0 obj<</Subtype/Link/Rect[144.0 76.8 300.1 89.8]/Border[0 0 0]/Dest[1342 0 R/XYZ 0 377 0]>>endobj
+238 0 obj<</Subtype/Link/Rect[108.0 63.6 206.7 76.6]/Border[0 0 0]/Dest[1342 0 R/XYZ 0 292 0]>>endobj
+239 0 obj[193 0 R
 194 0 R
 195 0 R
 196 0 R
@@ -432,49 +443,9 @@
 224 0 R
 225 0 R
 226 0 R
-227 0 R]endobj
-229 0 obj<</Subtype/Link/Rect[72.0 684.0 255.6 697.0]/Border[0 0 0]/Dest[1632 0 R/XYZ 0 734 0]>>endobj
-230 0 obj<</Subtype/Link/Rect[108.0 670.8 175.8 683.8]/Border[0 0 0]/Dest[1636 0 R/XYZ 0 718 0]>>endobj
-231 0 obj<</Subtype/Link/Rect[108.0 657.6 169.4 670.6]/Border[0 0 0]/Dest[1636 0 R/XYZ 0 537 0]>>endobj
-232 0 obj<</Subtype/Link/Rect[108.0 644.4 189.3 657.4]/Border[0 0 0]/Dest[1636 0 R/XYZ 0 409 0]>>endobj
-233 0 obj<</Subtype/Link/Rect[108.0 631.2 174.6 644.2]/Border[0 0 0]/Dest[1636 0 R/XYZ 0 189 0]>>endobj
-234 0 obj<</Subtype/Link/Rect[108.0 618.0 180.1 631.0]/Border[0 0 0]/Dest[1638 0 R/XYZ 0 734 0]>>endobj
-235 0 obj<</Subtype/Link/Rect[108.0 604.8 180.1 617.8]/Border[0 0 0]/Dest[1638 0 R/XYZ 0 645 0]>>endobj
-236 0 obj<</Subtype/Link/Rect[108.0 591.6 182.5 604.6]/Border[0 0 0]/Dest[1638 0 R/XYZ 0 477 0]>>endobj
-237 0 obj<</Subtype/Link/Rect[108.0 578.4 208.2 591.4]/Border[0 0 0]/Dest[1638 0 R/XYZ 0 349 0]>>endobj
-238 0 obj<</Subtype/Link/Rect[108.0 565.2 217.4 578.2]/Border[0 0 0]/Dest[1638 0 R/XYZ 0 129 0]>>endobj
-239 0 obj<</Subtype/Link/Rect[108.0 552.0 194.8 565.0]/Border[0 0 0]/Dest[1640 0 R/XYZ 0 639 0]>>endobj
-240 0 obj<</Subtype/Link/Rect[108.0 538.8 194.2 551.8]/Border[0 0 0]/Dest[1640 0 R/XYZ 0 511 0]>>endobj
-241 0 obj<</Subtype/Link/Rect[108.0 525.6 196.0 538.6]/Border[0 0 0]/Dest[1640 0 R/XYZ 0 436 0]>>endobj
-242 0 obj<</Subtype/Link/Rect[108.0 512.4 188.7 525.4]/Border[0 0 0]/Dest[1642 0 R/XYZ 0 388 0]>>endobj
-243 0 obj<</Subtype/Link/Rect[72.0 486.0 144.7 499.0]/Border[0 0 0]/Dest[1644 0 R/XYZ 0 734 0]>>endobj
-244 0 obj<</Subtype/Link/Rect[72.0 459.6 181.1 472.6]/Border[0 0 0]/Dest[1646 0 R/XYZ 0 734 0]>>endobj
-245 0 obj<</Subtype/Link/Rect[108.0 446.4 162.7 459.4]/Border[0 0 0]/Dest[1646 0 R/XYZ 0 655 0]>>endobj
-246 0 obj<</Subtype/Link/Rect[108.0 433.2 178.9 446.2]/Border[0 0 0]/Dest[1646 0 R/XYZ 0 408 0]>>endobj
-247 0 obj<</Subtype/Link/Rect[108.0 420.0 160.2 433.0]/Border[0 0 0]/Dest[1646 0 R/XYZ 0 293 0]>>endobj
-248 0 obj<</Subtype/Link/Rect[108.0 406.8 260.5 419.8]/Border[0 0 0]/Dest[1648 0 R/XYZ 0 228 0]>>endobj
-249 0 obj<</Subtype/Link/Rect[72.0 380.4 271.5 393.4]/Border[0 0 0]/Dest[1650 0 R/XYZ 0 734 0]>>endobj
-250 0 obj<</Subtype/Link/Rect[108.0 367.2 215.5 380.2]/Border[0 0 0]/Dest[1650 0 R/XYZ 0 668 0]>>endobj
-251 0 obj<</Subtype/Link/Rect[108.0 354.0 182.0 367.0]/Border[0 0 0]/Dest[1650 0 R/XYZ 0 461 0]>>endobj
-252 0 obj<</Subtype/Link/Rect[126.0 340.8 514.3 353.8]/Border[0 0 0]/Dest[1650 0 R/XYZ 0 427 0]>>endobj
-253 0 obj<</Subtype/Link/Rect[126.0 327.6 519.5 340.6]/Border[0 0 0]/Dest[1652 0 R/XYZ 0 734 0]>>endobj
-254 0 obj<</Subtype/Link/Rect[126.0 314.4 470.9 327.4]/Border[0 0 0]/Dest[1652 0 R/XYZ 0 523 0]>>endobj
-255 0 obj<</Subtype/Link/Rect[126.0 301.2 440.7 314.2]/Border[0 0 0]/Dest[1652 0 R/XYZ 0 408 0]>>endobj
-256 0 obj<</Subtype/Link/Rect[108.0 288.0 248.2 301.0]/Border[0 0 0]/Dest[1652 0 R/XYZ 0 151 0]>>endobj
-257 0 obj<</Subtype/Link/Rect[126.0 274.8 333.5 287.8]/Border[0 0 0]/Dest[1652 0 R/XYZ 0 118 0]>>endobj
-258 0 obj<</Subtype/Link/Rect[126.0 261.6 332.5 274.6]/Border[0 0 0]/Dest[1654 0 R/XYZ 0 626 0]>>endobj
-259 0 obj<</Subtype/Link/Rect[126.0 248.4 316.3 261.4]/Border[0 0 0]/Dest[1654 0 R/XYZ 0 475 0]>>endobj
-260 0 obj<</Subtype/Link/Rect[126.0 235.2 282.1 248.2]/Border[0 0 0]/Dest[1654 0 R/XYZ 0 377 0]>>endobj
-261 0 obj<</Subtype/Link/Rect[108.0 222.0 206.7 235.0]/Border[0 0 0]/Dest[1654 0 R/XYZ 0 292 0]>>endobj
-262 0 obj<</Subtype/Link/Rect[108.0 208.8 267.8 221.8]/Border[0 0 0]/Dest[1656 0 R/XYZ 0 718 0]>>endobj
-263 0 obj<</Subtype/Link/Rect[72.0 182.4 204.0 195.4]/Border[0 0 0]/Dest[1658 0 R/XYZ 0 734 0]>>endobj
-264 0 obj<</Subtype/Link/Rect[108.0 169.2 187.1 182.2]/Border[0 0 0]/Dest[1658 0 R/XYZ 0 696 0]>>endobj
-265 0 obj<</Subtype/Link/Rect[108.0 156.0 188.0 169.0]/Border[0 0 0]/Dest[1658 0 R/XYZ 0 423 0]>>endobj
-266 0 obj<</Subtype/Link/Rect[108.0 142.8 190.5 155.8]/Border[0 0 0]/Dest[1658 0 R/XYZ 0 282 0]>>endobj
-267 0 obj<</Subtype/Link/Rect[108.0 129.6 195.4 142.6]/Border[0 0 0]/Dest[1660 0 R/XYZ 0 613 0]>>endobj
-268 0 obj<</Subtype/Link/Rect[108.0 116.4 267.8 129.4]/Border[0 0 0]/Dest[1660 0 R/XYZ 0 260 0]>>endobj
-269 0 obj<</Subtype/Link/Rect[108.0 103.2 166.4 116.2]/Border[0 0 0]/Dest[1660 0 R/XYZ 0 159 0]>>endobj
-270 0 obj[229 0 R
+227 0 R
+228 0 R
+229 0 R
 230 0 R
 231 0 R
 232 0 R
@@ -483,9 +454,27 @@
 235 0 R
 236 0 R
 237 0 R
-238 0 R
-239 0 R
-240 0 R
+238 0 R]endobj
+240 0 obj<</Subtype/Link/Rect[72.0 684.0 271.5 697.0]/Border[0 0 0]/Dest[1338 0 R/XYZ 0 734 0]>>endobj
+241 0 obj<</Subtype/Link/Rect[108.0 670.8 267.8 683.8]/Border[0 0 0]/Dest[1344 0 R/XYZ 0 718 0]>>endobj
+242 0 obj<</Subtype/Link/Rect[72.0 644.4 342.4 657.4]/Border[0 0 0]/Dest[1346 0 R/XYZ 0 734 0]>>endobj
+243 0 obj<</Subtype/Link/Rect[108.0 631.2 187.1 644.2]/Border[0 0 0]/Dest[1346 0 R/XYZ 0 672 0]>>endobj
+244 0 obj<</Subtype/Link/Rect[108.0 618.0 247.6 631.0]/Border[0 0 0]/Dest[1346 0 R/XYZ 0 557 0]>>endobj
+245 0 obj<</Subtype/Link/Rect[144.0 604.8 266.8 617.8]/Border[0 0 0]/Dest[1346 0 R/XYZ 0 469 0]>>endobj
+246 0 obj<</Subtype/Link/Rect[144.0 591.6 241.8 604.6]/Border[0 0 0]/Dest[1346 0 R/XYZ 0 358 0]>>endobj
+247 0 obj<</Subtype/Link/Rect[72.0 565.2 204.0 578.2]/Border[0 0 0]/Dest[1350 0 R/XYZ 0 734 0]>>endobj
+248 0 obj<</Subtype/Link/Rect[108.0 552.0 187.1 565.0]/Border[0 0 0]/Dest[1350 0 R/XYZ 0 696 0]>>endobj
+249 0 obj<</Subtype/Link/Rect[108.0 538.8 188.0 551.8]/Border[0 0 0]/Dest[1350 0 R/XYZ 0 436 0]>>endobj
+250 0 obj<</Subtype/Link/Rect[108.0 525.6 190.5 538.6]/Border[0 0 0]/Dest[1350 0 R/XYZ 0 295 0]>>endobj
+251 0 obj<</Subtype/Link/Rect[108.0 512.4 195.4 525.4]/Border[0 0 0]/Dest[1352 0 R/XYZ 0 639 0]>>endobj
+252 0 obj<</Subtype/Link/Rect[108.0 499.2 267.8 512.2]/Border[0 0 0]/Dest[1352 0 R/XYZ 0 287 0]>>endobj
+253 0 obj<</Subtype/Link/Rect[108.0 486.0 166.4 499.0]/Border[0 0 0]/Dest[1352 0 R/XYZ 0 185 0]>>endobj
+254 0 obj<</Subtype/Link/Rect[72.0 459.6 252.6 472.6]/Border[0 0 0]/Dest[1354 0 R/XYZ 0 734 0]>>endobj
+255 0 obj<</Subtype/Link/Rect[72.0 433.2 181.1 446.2]/Border[0 0 0]/Dest[1356 0 R/XYZ 0 734 0]>>endobj
+256 0 obj<</Subtype/Link/Rect[108.0 420.0 162.7 433.0]/Border[0 0 0]/Dest[1356 0 R/XYZ 0 655 0]>>endobj
+257 0 obj<</Subtype/Link/Rect[108.0 406.8 178.9 419.8]/Border[0 0 0]/Dest[1356 0 R/XYZ 0 447 0]>>endobj
+258 0 obj<</Subtype/Link/Rect[108.0 393.6 160.2 406.6]/Border[0 0 0]/Dest[1356 0 R/XYZ 0 333 0]>>endobj
+259 0 obj[240 0 R
 241 0 R
 242 0 R
 243 0 R
@@ -503,35 +492,56 @@
 255 0 R
 256 0 R
 257 0 R
-258 0 R
-259 0 R
-260 0 R
-261 0 R
-262 0 R
+258 0 R]endobj
+260 0 obj<</S/URI/URI(http://www.samba.org/)>>endobj
+261 0 obj<</Subtype/Link/Rect[185.6 631.0 289.8 644.0]/Border[0 0 0]/A 260 0 R>>endobj
+262 0 obj<</S/URI/URI(mailto:jerry@samba.org)>>endobj
+263 0 obj<</Subtype/Link/Rect[72.0 617.8 148.4 630.8]/Border[0 0 0]/A 262 0 R>>endobj
+264 0 obj<</S/URI/URI(http://www.fsf.org/licenses/gpl.txt)>>endobj
+265 0 obj<</Subtype/Link/Rect[72.0 565.0 223.3 578.0]/Border[0 0 0]/A 264 0 R>>endobj
+266 0 obj<</Subtype/Link/Rect[80.2 499.0 223.9 512.0]/Border[0 0 0]/Dest[1124 0 R/XYZ 0 734 0]>>endobj
+267 0 obj<</Subtype/Link/Rect[124.5 485.8 249.8 498.8]/Border[0 0 0]/Dest[1124 0 R/XYZ 0 696 0]>>endobj
+268 0 obj<</Subtype/Link/Rect[124.5 472.6 255.0 485.6]/Border[0 0 0]/Dest[1124 0 R/XYZ 0 568 0]>>endobj
+269 0 obj<</Subtype/Link/Rect[124.5 459.4 258.3 472.4]/Border[0 0 0]/Dest[1124 0 R/XYZ 0 163 0]>>endobj
+270 0 obj<</Subtype/Link/Rect[124.5 446.2 309.7 459.2]/Border[0 0 0]/Dest[1126 0 R/XYZ 0 734 0]>>endobj
+271 0 obj<</Subtype/Link/Rect[124.5 433.0 312.7 446.0]/Border[0 0 0]/Dest[1126 0 R/XYZ 0 385 0]>>endobj
+272 0 obj<</Subtype/Link/Rect[124.5 419.8 284.9 432.8]/Border[0 0 0]/Dest[1126 0 R/XYZ 0 283 0]>>endobj
+273 0 obj<</Subtype/Link/Rect[168.8 406.6 316.0 419.6]/Border[0 0 0]/Dest[1126 0 R/XYZ 0 129 0]>>endobj
+274 0 obj<</Subtype/Link/Rect[168.8 393.4 366.4 406.4]/Border[0 0 0]/Dest[1128 0 R/XYZ 0 303 0]>>endobj
+275 0 obj<</Subtype/Link/Rect[124.5 380.2 364.7 393.2]/Border[0 0 0]/Dest[1130 0 R/XYZ 0 718 0]>>endobj
+276 0 obj<</Subtype/Link/Rect[124.5 367.0 313.9 380.0]/Border[0 0 0]/Dest[1130 0 R/XYZ 0 551 0]>>endobj
+277 0 obj<</Subtype/Link/Rect[124.5 353.8 500.6 366.8]/Border[0 0 0]/Dest[1130 0 R/XYZ 0 383 0]>>endobj
+278 0 obj<</Subtype/Link/Rect[130.0 340.6 257.3 353.6]/Border[0 0 0]/Dest[1130 0 R/XYZ 0 169 0]>>endobj
+279 0 obj<</Subtype/Link/Rect[174.2 327.4 273.2 340.4]/Border[0 0 0]/Dest[1132 0 R/XYZ 0 652 0]>>endobj
+280 0 obj<</Subtype/Link/Rect[174.2 314.2 221.9 327.2]/Border[0 0 0]/Dest[1132 0 R/XYZ 0 594 0]>>endobj
+281 0 obj<</Subtype/Link/Rect[174.2 301.0 303.2 314.0]/Border[0 0 0]/Dest[1132 0 R/XYZ 0 509 0]>>endobj
+282 0 obj<</Subtype/Link/Rect[174.2 287.8 331.6 300.8]/Border[0 0 0]/Dest[1132 0 R/XYZ 0 200 0]>>endobj
+283 0 obj<</Subtype/Link/Rect[174.2 274.6 212.4 287.6]/Border[0 0 0]/Dest[1134 0 R/XYZ 0 718 0]>>endobj
+284 0 obj<</Subtype/Link/Rect[174.2 261.4 269.0 274.4]/Border[0 0 0]/Dest[1134 0 R/XYZ 0 264 0]>>endobj
+285 0 obj<</Subtype/Link/Rect[80.2 248.2 219.0 261.2]/Border[0 0 0]/Dest[1136 0 R/XYZ 0 734 0]>>endobj
+286 0 obj<</Subtype/Link/Rect[124.5 235.0 182.2 248.0]/Border[0 0 0]/Dest[1136 0 R/XYZ 0 696 0]>>endobj
+287 0 obj<</Subtype/Link/Rect[124.5 221.8 182.9 234.8]/Border[0 0 0]/Dest[1136 0 R/XYZ 0 529 0]>>endobj
+288 0 obj<</Subtype/Link/Rect[124.5 208.6 149.9 221.6]/Border[0 0 0]/Dest[1136 0 R/XYZ 0 173 0]>>endobj
+289 0 obj<</Subtype/Link/Rect[168.8 195.4 198.1 208.4]/Border[0 0 0]/Dest[1136 0 R/XYZ 0 139 0]>>endobj
+290 0 obj<</Subtype/Link/Rect[168.8 182.2 198.1 195.2]/Border[0 0 0]/Dest[1138 0 R/XYZ 0 705 0]>>endobj
+291 0 obj<</Subtype/Link/Rect[168.8 169.0 198.1 182.0]/Border[0 0 0]/Dest[1138 0 R/XYZ 0 501 0]>>endobj
+292 0 obj<</Subtype/Link/Rect[168.8 155.8 198.1 168.8]/Border[0 0 0]/Dest[1140 0 R/XYZ 0 586 0]>>endobj
+293 0 obj<</Subtype/Link/Rect[168.8 142.6 198.1 155.6]/Border[0 0 0]/Dest[1140 0 R/XYZ 0 435 0]>>endobj
+294 0 obj<</Subtype/Link/Rect[168.8 129.4 198.1 142.4]/Border[0 0 0]/Dest[1140 0 R/XYZ 0 311 0]>>endobj
+295 0 obj<</Subtype/Link/Rect[168.8 116.2 198.1 129.2]/Border[0 0 0]/Dest[1142 0 R/XYZ 0 718 0]>>endobj
+296 0 obj<</Subtype/Link/Rect[168.8 103.0 198.1 116.0]/Border[0 0 0]/Dest[1142 0 R/XYZ 0 356 0]>>endobj
+297 0 obj<</Subtype/Link/Rect[168.8 89.8 198.1 102.8]/Border[0 0 0]/Dest[1144 0 R/XYZ 0 679 0]>>endobj
+298 0 obj<</Subtype/Link/Rect[174.2 76.6 209.1 89.6]/Border[0 0 0]/Dest[1144 0 R/XYZ 0 488 0]>>endobj
+299 0 obj<</Subtype/Link/Rect[174.2 63.4 209.1 76.4]/Border[0 0 0]/Dest[1144 0 R/XYZ 0 351 0]>>endobj
+300 0 obj[261 0 R
 263 0 R
-264 0 R
 265 0 R
 266 0 R
 267 0 R
 268 0 R
-269 0 R]endobj
-271 0 obj<</Subtype/Link/Rect[72.0 684.0 273.0 697.0]/Border[0 0 0]/Dest[1662 0 R/XYZ 0 734 0]>>endobj
-272 0 obj<</Subtype/Link/Rect[108.0 670.8 187.1 683.8]/Border[0 0 0]/Dest[1662 0 R/XYZ 0 696 0]>>endobj
-273 0 obj<</Subtype/Link/Rect[108.0 657.6 190.2 670.6]/Border[0 0 0]/Dest[1662 0 R/XYZ 0 529 0]>>endobj
-274 0 obj<</Subtype/Link/Rect[108.0 644.4 156.0 657.4]/Border[0 0 0]/Dest[1662 0 R/XYZ 0 199 0]>>endobj
-275 0 obj<</Subtype/Link/Rect[126.0 631.2 186.2 644.2]/Border[0 0 0]/Dest[1662 0 R/XYZ 0 165 0]>>endobj
-276 0 obj<</Subtype/Link/Rect[126.0 618.0 186.2 631.0]/Border[0 0 0]/Dest[1664 0 R/XYZ 0 734 0]>>endobj
-277 0 obj<</Subtype/Link/Rect[126.0 604.8 186.2 617.8]/Border[0 0 0]/Dest[1664 0 R/XYZ 0 530 0]>>endobj
-278 0 obj<</Subtype/Link/Rect[126.0 591.6 186.2 604.6]/Border[0 0 0]/Dest[1666 0 R/XYZ 0 626 0]>>endobj
-279 0 obj<</Subtype/Link/Rect[126.0 578.4 186.2 591.4]/Border[0 0 0]/Dest[1666 0 R/XYZ 0 475 0]>>endobj
-280 0 obj<</Subtype/Link/Rect[126.0 565.2 186.2 578.2]/Border[0 0 0]/Dest[1666 0 R/XYZ 0 351 0]>>endobj
-281 0 obj<</Subtype/Link/Rect[126.0 552.0 186.2 565.0]/Border[0 0 0]/Dest[1668 0 R/XYZ 0 734 0]>>endobj
-282 0 obj<</Subtype/Link/Rect[126.0 538.8 186.2 551.8]/Border[0 0 0]/Dest[1668 0 R/XYZ 0 371 0]>>endobj
-283 0 obj<</Subtype/Link/Rect[126.0 525.6 186.2 538.6]/Border[0 0 0]/Dest[1670 0 R/XYZ 0 705 0]>>endobj
-284 0 obj<</Subtype/Link/Rect[126.0 512.4 197.2 525.4]/Border[0 0 0]/Dest[1670 0 R/XYZ 0 515 0]>>endobj
-285 0 obj<</Subtype/Link/Rect[126.0 499.2 197.2 512.2]/Border[0 0 0]/Dest[1670 0 R/XYZ 0 377 0]>>endobj
-286 0 obj<</Subtype/Link/Rect[108.0 486.0 226.9 499.0]/Border[0 0 0]/Dest[1670 0 R/XYZ 0 239 0]>>endobj
-287 0 obj[271 0 R
+269 0 R
+270 0 R
+271 0 R
 272 0 R
 273 0 R
 274 0 R
@@ -546,58 +556,72 @@
 283 0 R
 284 0 R
 285 0 R
-286 0 R]endobj
-288 0 obj<</S/URI/URI(http://www.samba.org/)>>endobj
-289 0 obj<</Subtype/Link/Rect[185.6 631.0 289.8 644.0]/Border[0 0 0]/A 288 0 R>>endobj
-290 0 obj<</S/URI/URI(mailto:jerry@samba.org)>>endobj
-291 0 obj<</Subtype/Link/Rect[72.0 617.8 148.4 630.8]/Border[0 0 0]/A 290 0 R>>endobj
-292 0 obj<</S/URI/URI(http://www.fsf.org/licenses/gpl.txt)>>endobj
-293 0 obj<</Subtype/Link/Rect[72.0 565.0 223.3 578.0]/Border[0 0 0]/A 292 0 R>>endobj
-294 0 obj<</Subtype/Link/Rect[78.4 499.0 170.1 512.0]/Border[0 0 0]/Dest[1394 0 R/XYZ 0 258 0]>>endobj
-295 0 obj<</Subtype/Link/Rect[116.2 485.8 259.9 498.8]/Border[0 0 0]/Dest[1402 0 R/XYZ 0 734 0]>>endobj
-296 0 obj<</Subtype/Link/Rect[160.5 472.6 252.2 485.6]/Border[0 0 0]/Dest[1402 0 R/XYZ 0 696 0]>>endobj
-297 0 obj<</Subtype/Link/Rect[160.5 459.4 257.4 472.4]/Border[0 0 0]/Dest[1402 0 R/XYZ 0 568 0]>>endobj
-298 0 obj<</Subtype/Link/Rect[160.5 446.2 260.7 459.2]/Border[0 0 0]/Dest[1402 0 R/XYZ 0 163 0]>>endobj
-299 0 obj<</Subtype/Link/Rect[160.5 433.0 312.1 446.0]/Border[0 0 0]/Dest[1404 0 R/XYZ 0 734 0]>>endobj
-300 0 obj<</Subtype/Link/Rect[160.5 419.8 315.1 432.8]/Border[0 0 0]/Dest[1404 0 R/XYZ 0 385 0]>>endobj
-301 0 obj<</Subtype/Link/Rect[160.5 406.6 287.3 419.6]/Border[0 0 0]/Dest[1404 0 R/XYZ 0 257 0]>>endobj
-302 0 obj<</Subtype/Link/Rect[160.5 393.4 367.0 406.4]/Border[0 0 0]/Dest[1408 0 R/XYZ 0 665 0]>>endobj
-303 0 obj<</Subtype/Link/Rect[160.5 380.2 316.3 393.2]/Border[0 0 0]/Dest[1408 0 R/XYZ 0 498 0]>>endobj
-304 0 obj<</Subtype/Link/Rect[160.5 367.0 503.0 380.0]/Border[0 0 0]/Dest[1408 0 R/XYZ 0 330 0]>>endobj
-305 0 obj<</Subtype/Link/Rect[166.0 353.8 293.3 366.8]/Border[0 0 0]/Dest[1410 0 R/XYZ 0 734 0]>>endobj
-306 0 obj<</Subtype/Link/Rect[116.2 340.6 247.6 353.6]/Border[0 0 0]/Dest[1416 0 R/XYZ 0 734 0]>>endobj
-307 0 obj<</Subtype/Link/Rect[160.5 327.4 260.4 340.4]/Border[0 0 0]/Dest[1416 0 R/XYZ 0 696 0]>>endobj
-308 0 obj<</Subtype/Link/Rect[160.5 314.2 284.6 327.2]/Border[0 0 0]/Dest[1416 0 R/XYZ 0 515 0]>>endobj
-309 0 obj<</Subtype/Link/Rect[160.5 301.0 248.5 314.0]/Border[0 0 0]/Dest[1416 0 R/XYZ 0 137 0]>>endobj
-310 0 obj<</Subtype/Link/Rect[160.5 287.8 272.6 300.8]/Border[0 0 0]/Dest[1418 0 R/XYZ 0 533 0]>>endobj
-311 0 obj<</Subtype/Link/Rect[160.5 274.6 274.5 287.6]/Border[0 0 0]/Dest[1424 0 R/XYZ 0 560 0]>>endobj
-312 0 obj<</Subtype/Link/Rect[160.5 261.4 343.2 274.4]/Border[0 0 0]/Dest[1426 0 R/XYZ 0 613 0]>>endobj
-313 0 obj<</Subtype/Link/Rect[160.5 248.2 317.6 261.2]/Border[0 0 0]/Dest[1428 0 R/XYZ 0 622 0]>>endobj
-314 0 obj<</Subtype/Link/Rect[160.5 235.0 303.5 248.0]/Border[0 0 0]/Dest[1428 0 R/XYZ 0 266 0]>>endobj
-315 0 obj<</Subtype/Link/Rect[160.5 221.8 313.0 234.8]/Border[0 0 0]/Dest[1430 0 R/XYZ 0 520 0]>>endobj
-316 0 obj<</Subtype/Link/Rect[166.0 208.6 310.2 221.6]/Border[0 0 0]/Dest[1432 0 R/XYZ 0 734 0]>>endobj
-317 0 obj<</Subtype/Link/Rect[166.0 195.4 252.2 208.4]/Border[0 0 0]/Dest[1432 0 R/XYZ 0 645 0]>>endobj
-318 0 obj<</Subtype/Link/Rect[116.2 182.2 155.0 195.2]/Border[0 0 0]/Dest[1434 0 R/XYZ 0 734 0]>>endobj
-319 0 obj<</Subtype/Link/Rect[160.5 169.0 245.7 182.0]/Border[0 0 0]/Dest[1434 0 R/XYZ 0 696 0]>>endobj
-320 0 obj<</Subtype/Link/Rect[116.2 155.8 410.5 168.8]/Border[0 0 0]/Dest[1436 0 R/XYZ 0 734 0]>>endobj
-321 0 obj<</Subtype/Link/Rect[160.5 142.6 211.5 155.6]/Border[0 0 0]/Dest[1436 0 R/XYZ 0 604 0]>>endobj
-322 0 obj<</Subtype/Link/Rect[160.5 129.4 348.1 142.4]/Border[0 0 0]/Dest[1436 0 R/XYZ 0 159 0]>>endobj
-323 0 obj<</Subtype/Link/Rect[160.5 116.2 360.7 129.2]/Border[0 0 0]/Dest[1438 0 R/XYZ 0 483 0]>>endobj
-324 0 obj<</Subtype/Link/Rect[160.5 103.0 220.1 116.0]/Border[0 0 0]/Dest[1438 0 R/XYZ 0 305 0]>>endobj
-325 0 obj<</Subtype/Link/Rect[160.5 89.8 458.7 102.8]/Border[0 0 0]/Dest[1440 0 R/XYZ 0 467 0]>>endobj
-326 0 obj<</Subtype/Link/Rect[160.5 76.6 268.4 89.6]/Border[0 0 0]/Dest[1440 0 R/XYZ 0 187 0]>>endobj
-327 0 obj<</Subtype/Link/Rect[116.2 63.4 333.5 76.4]/Border[0 0 0]/Dest[1444 0 R/XYZ 0 734 0]>>endobj
-328 0 obj[289 0 R
+286 0 R
+287 0 R
+288 0 R
+289 0 R
+290 0 R
 291 0 R
+292 0 R
 293 0 R
 294 0 R
 295 0 R
 296 0 R
 297 0 R
 298 0 R
-299 0 R
-300 0 R
-301 0 R
+299 0 R]endobj
+301 0 obj<</Subtype/Link/Rect[124.5 721.0 222.0 734.0]/Border[0 0 0]/Dest[1144 0 R/XYZ 0 213 0]>>endobj
+302 0 obj<</Subtype/Link/Rect[80.2 707.8 289.9 720.8]/Border[0 0 0]/Dest[1146 0 R/XYZ 0 734 0]>>endobj
+303 0 obj<</Subtype/Link/Rect[124.5 694.6 160.9 707.6]/Border[0 0 0]/Dest[1146 0 R/XYZ 0 672 0]>>endobj
+304 0 obj<</Subtype/Link/Rect[124.5 681.4 325.9 694.4]/Border[0 0 0]/Dest[1146 0 R/XYZ 0 439 0]>>endobj
+305 0 obj<</Subtype/Link/Rect[171.5 668.2 237.5 681.2]/Border[0 0 0]/Dest[1146 0 R/XYZ 0 311 0]>>endobj
+306 0 obj<</Subtype/Link/Rect[171.5 655.0 277.1 668.0]/Border[0 0 0]/Dest[1148 0 R/XYZ 0 441 0]>>endobj
+307 0 obj<</Subtype/Link/Rect[171.5 641.8 263.9 654.8]/Border[0 0 0]/Dest[1148 0 R/XYZ 0 303 0]>>endobj
+308 0 obj<</Subtype/Link/Rect[171.5 628.6 290.3 641.6]/Border[0 0 0]/Dest[1148 0 R/XYZ 0 157 0]>>endobj
+309 0 obj<</Subtype/Link/Rect[124.5 615.4 378.7 628.4]/Border[0 0 0]/Dest[1150 0 R/XYZ 0 339 0]>>endobj
+310 0 obj<</Subtype/Link/Rect[168.8 602.2 289.1 615.2]/Border[0 0 0]/Dest[1152 0 R/XYZ 0 266 0]>>endobj
+311 0 obj<</Subtype/Link/Rect[168.8 589.0 255.8 602.0]/Border[0 0 0]/Dest[1154 0 R/XYZ 0 734 0]>>endobj
+312 0 obj<</Subtype/Link/Rect[168.8 575.8 221.3 588.8]/Border[0 0 0]/Dest[1156 0 R/XYZ 0 459 0]>>endobj
+313 0 obj<</Subtype/Link/Rect[168.8 562.6 228.0 575.6]/Border[0 0 0]/Dest[1156 0 R/XYZ 0 361 0]>>endobj
+314 0 obj<</Subtype/Link/Rect[168.8 549.4 232.9 562.4]/Border[0 0 0]/Dest[1156 0 R/XYZ 0 224 0]>>endobj
+315 0 obj<</Subtype/Link/Rect[124.5 536.2 523.3 549.2]/Border[0 0 0]/Dest[1158 0 R/XYZ 0 670 0]>>endobj
+316 0 obj<</Subtype/Link/Rect[124.5 523.0 495.4 536.0]/Border[0 0 0]/Dest[1158 0 R/XYZ 0 126 0]>>endobj
+317 0 obj<</Subtype/Link/Rect[168.8 509.8 388.1 522.8]/Border[0 0 0]/Dest[1162 0 R/XYZ 0 734 0]>>endobj
+318 0 obj<</Subtype/Link/Rect[168.8 496.6 450.1 509.6]/Border[0 0 0]/Dest[1162 0 R/XYZ 0 484 0]>>endobj
+319 0 obj<</Subtype/Link/Rect[168.8 483.4 371.6 496.4]/Border[0 0 0]/Dest[1162 0 R/XYZ 0 132 0]>>endobj
+320 0 obj<</Subtype/Link/Rect[124.5 470.2 181.6 483.2]/Border[0 0 0]/Dest[1164 0 R/XYZ 0 263 0]>>endobj
+321 0 obj<</Subtype/Link/Rect[80.2 457.0 396.2 470.0]/Border[0 0 0]/Dest[1166 0 R/XYZ 0 734 0]>>endobj
+322 0 obj<</Subtype/Link/Rect[124.5 443.8 201.8 456.8]/Border[0 0 0]/Dest[1166 0 R/XYZ 0 672 0]>>endobj
+323 0 obj<</Subtype/Link/Rect[124.5 430.6 244.9 443.6]/Border[0 0 0]/Dest[1168 0 R/XYZ 0 148 0]>>endobj
+324 0 obj<</Subtype/Link/Rect[124.5 417.4 268.4 430.4]/Border[0 0 0]/Dest[1170 0 R/XYZ 0 705 0]>>endobj
+325 0 obj<</Subtype/Link/Rect[80.2 404.2 344.5 417.2]/Border[0 0 0]/Dest[1172 0 R/XYZ 0 734 0]>>endobj
+326 0 obj<</Subtype/Link/Rect[124.5 391.0 179.8 404.0]/Border[0 0 0]/Dest[1172 0 R/XYZ 0 672 0]>>endobj
+327 0 obj<</Subtype/Link/Rect[168.8 377.8 196.6 390.8]/Border[0 0 0]/Dest[1174 0 R/XYZ 0 652 0]>>endobj
+328 0 obj<</Subtype/Link/Rect[80.2 364.6 352.5 377.6]/Border[0 0 0]/Dest[1176 0 R/XYZ 0 734 0]>>endobj
+329 0 obj<</Subtype/Link/Rect[124.5 351.4 441.7 364.4]/Border[0 0 0]/Dest[1176 0 R/XYZ 0 672 0]>>endobj
+330 0 obj<</Subtype/Link/Rect[124.5 338.2 318.5 351.2]/Border[0 0 0]/Dest[1176 0 R/XYZ 0 497 0]>>endobj
+331 0 obj<</Subtype/Link/Rect[124.5 325.0 228.7 338.0]/Border[0 0 0]/Dest[1176 0 R/XYZ 0 330 0]>>endobj
+332 0 obj<</Subtype/Link/Rect[124.5 311.8 291.0 324.8]/Border[0 0 0]/Dest[1178 0 R/XYZ 0 665 0]>>endobj
+333 0 obj<</Subtype/Link/Rect[168.8 298.6 245.8 311.6]/Border[0 0 0]/Dest[1178 0 R/XYZ 0 432 0]>>endobj
+334 0 obj<</Subtype/Link/Rect[168.8 285.4 270.8 298.4]/Border[0 0 0]/Dest[1178 0 R/XYZ 0 189 0]>>endobj
+335 0 obj<</Subtype/Link/Rect[124.5 272.2 300.2 285.2]/Border[0 0 0]/Dest[1180 0 R/XYZ 0 692 0]>>endobj
+336 0 obj<</Subtype/Link/Rect[124.5 259.0 397.0 272.0]/Border[0 0 0]/Dest[1180 0 R/XYZ 0 260 0]>>endobj
+337 0 obj<</Subtype/Link/Rect[124.5 245.8 387.3 258.8]/Border[0 0 0]/Dest[1184 0 R/XYZ 0 599 0]>>endobj
+338 0 obj<</Subtype/Link/Rect[80.2 232.6 225.4 245.6]/Border[0 0 0]/Dest[1186 0 R/XYZ 0 734 0]>>endobj
+339 0 obj<</Subtype/Link/Rect[124.5 219.4 182.2 232.4]/Border[0 0 0]/Dest[1186 0 R/XYZ 0 696 0]>>endobj
+340 0 obj<</Subtype/Link/Rect[124.5 206.2 189.6 219.2]/Border[0 0 0]/Dest[1186 0 R/XYZ 0 278 0]>>endobj
+341 0 obj<</Subtype/Link/Rect[168.8 193.0 248.8 206.0]/Border[0 0 0]/Dest[1188 0 R/XYZ 0 702 0]>>endobj
+342 0 obj<</Subtype/Link/Rect[168.8 179.8 331.6 192.8]/Border[0 0 0]/Dest[1190 0 R/XYZ 0 471 0]>>endobj
+343 0 obj<</Subtype/Link/Rect[168.8 166.6 325.8 179.6]/Border[0 0 0]/Dest[1192 0 R/XYZ 0 718 0]>>endobj
+344 0 obj<</Subtype/Link/Rect[168.8 153.4 381.4 166.4]/Border[0 0 0]/Dest[1192 0 R/XYZ 0 348 0]>>endobj
+345 0 obj<</Subtype/Link/Rect[168.8 140.2 281.8 153.2]/Border[0 0 0]/Dest[1194 0 R/XYZ 0 171 0]>>endobj
+346 0 obj<</Subtype/Link/Rect[124.5 127.0 218.9 140.0]/Border[0 0 0]/Dest[1196 0 R/XYZ 0 652 0]>>endobj
+347 0 obj<</Subtype/Link/Rect[168.8 113.8 250.3 126.8]/Border[0 0 0]/Dest[1196 0 R/XYZ 0 551 0]>>endobj
+348 0 obj<</Subtype/Link/Rect[168.8 100.6 322.1 113.6]/Border[0 0 0]/Dest[1196 0 R/XYZ 0 426 0]>>endobj
+349 0 obj<</Subtype/Link/Rect[168.8 87.4 258.3 100.4]/Border[0 0 0]/Dest[1196 0 R/XYZ 0 341 0]>>endobj
+350 0 obj<</Subtype/Link/Rect[168.8 74.2 271.1 87.2]/Border[0 0 0]/Dest[1196 0 R/XYZ 0 243 0]>>endobj
+351 0 obj<</Subtype/Link/Rect[124.5 61.0 299.0 63.0]/Border[0 0 0]/Dest[1198 0 R/XYZ 0 359 0]>>endobj
+352 0 obj[301 0 R
 302 0 R
 303 0 R
 304 0 R
@@ -623,59 +647,9 @@
 324 0 R
 325 0 R
 326 0 R
-327 0 R]endobj
-329 0 obj<</Subtype/Link/Rect[160.5 721.0 218.2 734.0]/Border[0 0 0]/Dest[1444 0 R/XYZ 0 672 0]>>endobj
-330 0 obj<</Subtype/Link/Rect[160.5 707.8 302.9 720.8]/Border[0 0 0]/Dest[1444 0 R/XYZ 0 531 0]>>endobj
-331 0 obj<</Subtype/Link/Rect[160.5 694.6 280.6 707.6]/Border[0 0 0]/Dest[1446 0 R/XYZ 0 511 0]>>endobj
-332 0 obj<</Subtype/Link/Rect[82.1 681.4 170.4 694.4]/Border[0 0 0]/Dest[1448 0 R/XYZ 0 681 0]>>endobj
-333 0 obj<</Subtype/Link/Rect[116.2 668.2 400.4 681.2]/Border[0 0 0]/Dest[1454 0 R/XYZ 0 734 0]>>endobj
-334 0 obj<</Subtype/Link/Rect[160.5 655.0 257.0 668.0]/Border[0 0 0]/Dest[1454 0 R/XYZ 0 672 0]>>endobj
-335 0 obj<</Subtype/Link/Rect[160.5 641.8 217.0 654.8]/Border[0 0 0]/Dest[1454 0 R/XYZ 0 584 0]>>endobj
-336 0 obj<</Subtype/Link/Rect[160.5 628.6 353.3 641.6]/Border[0 0 0]/Dest[1456 0 R/XYZ 0 718 0]>>endobj
-337 0 obj<</Subtype/Link/Rect[160.5 615.4 467.3 628.4]/Border[0 0 0]/Dest[1458 0 R/XYZ 0 613 0]>>endobj
-338 0 obj<</Subtype/Link/Rect[160.5 602.2 299.2 615.2]/Border[0 0 0]/Dest[1462 0 R/XYZ 0 385 0]>>endobj
-339 0 obj<</Subtype/Link/Rect[160.5 589.0 288.8 602.0]/Border[0 0 0]/Dest[1464 0 R/XYZ 0 129 0]>>endobj
-340 0 obj<</Subtype/Link/Rect[160.5 575.8 280.9 588.8]/Border[0 0 0]/Dest[1466 0 R/XYZ 0 124 0]>>endobj
-341 0 obj<</Subtype/Link/Rect[160.5 562.6 326.4 575.6]/Border[0 0 0]/Dest[1472 0 R/XYZ 0 507 0]>>endobj
-342 0 obj<</Subtype/Link/Rect[160.5 549.4 459.7 562.4]/Border[0 0 0]/Dest[1484 0 R/XYZ 0 734 0]>>endobj
-343 0 obj<</Subtype/Link/Rect[116.2 536.2 485.4 549.2]/Border[0 0 0]/Dest[1488 0 R/XYZ 0 734 0]>>endobj
-344 0 obj<</Subtype/Link/Rect[160.5 523.0 257.0 536.0]/Border[0 0 0]/Dest[1488 0 R/XYZ 0 672 0]>>endobj
-345 0 obj<</Subtype/Link/Rect[160.5 509.8 217.0 522.8]/Border[0 0 0]/Dest[1488 0 R/XYZ 0 597 0]>>endobj
-346 0 obj<</Subtype/Link/Rect[160.5 496.6 396.4 509.6]/Border[0 0 0]/Dest[1488 0 R/XYZ 0 225 0]>>endobj
-347 0 obj<</Subtype/Link/Rect[160.5 483.4 364.3 496.4]/Border[0 0 0]/Dest[1490 0 R/XYZ 0 524 0]>>endobj
-348 0 obj<</Subtype/Link/Rect[160.5 470.2 304.1 483.2]/Border[0 0 0]/Dest[1490 0 R/XYZ 0 383 0]>>endobj
-349 0 obj<</Subtype/Link/Rect[116.2 457.0 266.6 470.0]/Border[0 0 0]/Dest[1494 0 R/XYZ 0 734 0]>>endobj
-350 0 obj<</Subtype/Link/Rect[160.5 443.8 356.7 456.8]/Border[0 0 0]/Dest[1494 0 R/XYZ 0 524 0]>>endobj
-351 0 obj<</Subtype/Link/Rect[160.5 430.6 357.9 443.6]/Border[0 0 0]/Dest[1494 0 R/XYZ 0 417 0]>>endobj
-352 0 obj<</Subtype/Link/Rect[160.5 417.4 233.2 430.4]/Border[0 0 0]/Dest[1494 0 R/XYZ 0 241 0]>>endobj
-353 0 obj<</Subtype/Link/Rect[160.5 404.2 274.2 417.2]/Border[0 0 0]/Dest[1496 0 R/XYZ 0 556 0]>>endobj
-354 0 obj<</Subtype/Link/Rect[160.5 391.0 291.3 404.0]/Border[0 0 0]/Dest[1496 0 R/XYZ 0 240 0]>>endobj
-355 0 obj<</Subtype/Link/Rect[160.5 377.8 260.7 390.8]/Border[0 0 0]/Dest[1498 0 R/XYZ 0 692 0]>>endobj
-356 0 obj<</Subtype/Link/Rect[160.5 364.6 262.3 377.6]/Border[0 0 0]/Dest[1498 0 R/XYZ 0 603 0]>>endobj
-357 0 obj<</Subtype/Link/Rect[160.5 351.4 188.3 364.4]/Border[0 0 0]/Dest[1498 0 R/XYZ 0 528 0]>>endobj
-358 0 obj<</Subtype/Link/Rect[116.2 338.2 265.4 351.2]/Border[0 0 0]/Dest[1500 0 R/XYZ 0 734 0]>>endobj
-359 0 obj<</Subtype/Link/Rect[160.5 325.0 335.3 338.0]/Border[0 0 0]/Dest[1500 0 R/XYZ 0 696 0]>>endobj
-360 0 obj<</Subtype/Link/Rect[160.5 311.8 322.8 324.8]/Border[0 0 0]/Dest[1502 0 R/XYZ 0 362 0]>>endobj
-361 0 obj<</Subtype/Link/Rect[160.5 298.6 345.7 311.6]/Border[0 0 0]/Dest[1502 0 R/XYZ 0 155 0]>>endobj
-362 0 obj<</Subtype/Link/Rect[85.7 285.4 190.2 298.4]/Border[0 0 0]/Dest[1504 0 R/XYZ 0 337 0]>>endobj
-363 0 obj<</Subtype/Link/Rect[121.8 272.2 331.4 285.2]/Border[0 0 0]/Dest[1514 0 R/XYZ 0 734 0]>>endobj
-364 0 obj<</Subtype/Link/Rect[166.0 259.0 202.4 272.0]/Border[0 0 0]/Dest[1514 0 R/XYZ 0 672 0]>>endobj
-365 0 obj<</Subtype/Link/Rect[166.0 245.8 367.4 258.8]/Border[0 0 0]/Dest[1514 0 R/XYZ 0 439 0]>>endobj
-366 0 obj<</Subtype/Link/Rect[166.0 232.6 420.2 245.6]/Border[0 0 0]/Dest[1518 0 R/XYZ 0 339 0]>>endobj
-367 0 obj<</Subtype/Link/Rect[166.0 219.4 532.1 232.4]/Border[0 0 0]/Dest[1526 0 R/XYZ 0 670 0]>>endobj
-368 0 obj<</Subtype/Link/Rect[144.0 206.2 173.9 219.2]/Border[0 0 0]/Dest[1526 0 R/XYZ 0 670 0]>>endobj
-369 0 obj<</Subtype/Link/Rect[166.0 193.0 536.9 206.0]/Border[0 0 0]/Dest[1526 0 R/XYZ 0 126 0]>>endobj
-370 0 obj<</Subtype/Link/Rect[166.0 179.8 223.1 192.8]/Border[0 0 0]/Dest[1532 0 R/XYZ 0 263 0]>>endobj
-371 0 obj<</Subtype/Link/Rect[121.8 166.6 394.0 179.6]/Border[0 0 0]/Dest[1534 0 R/XYZ 0 734 0]>>endobj
-372 0 obj<</Subtype/Link/Rect[166.0 153.4 483.2 166.4]/Border[0 0 0]/Dest[1534 0 R/XYZ 0 672 0]>>endobj
-373 0 obj<</Subtype/Link/Rect[166.0 140.2 360.0 153.2]/Border[0 0 0]/Dest[1534 0 R/XYZ 0 497 0]>>endobj
-374 0 obj<</Subtype/Link/Rect[166.0 127.0 270.2 140.0]/Border[0 0 0]/Dest[1534 0 R/XYZ 0 330 0]>>endobj
-375 0 obj<</Subtype/Link/Rect[166.0 113.8 332.5 126.8]/Border[0 0 0]/Dest[1536 0 R/XYZ 0 665 0]>>endobj
-376 0 obj<</Subtype/Link/Rect[166.0 100.6 341.7 113.6]/Border[0 0 0]/Dest[1538 0 R/XYZ 0 692 0]>>endobj
-377 0 obj<</Subtype/Link/Rect[166.0 87.4 438.5 100.4]/Border[0 0 0]/Dest[1538 0 R/XYZ 0 260 0]>>endobj
-378 0 obj<</Subtype/Link/Rect[166.0 74.2 428.8 87.2]/Border[0 0 0]/Dest[1542 0 R/XYZ 0 599 0]>>endobj
-379 0 obj<</Subtype/Link/Rect[121.8 61.0 437.7 74.0]/Border[0 0 0]/Dest[1544 0 R/XYZ 0 734 0]>>endobj
-380 0 obj[329 0 R
+327 0 R
+328 0 R
+329 0 R
 330 0 R
 331 0 R
 332 0 R
@@ -697,9 +671,59 @@
 348 0 R
 349 0 R
 350 0 R
-351 0 R
-352 0 R
-353 0 R
+351 0 R]endobj
+353 0 obj<</Subtype/Link/Rect[80.2 721.0 216.2 734.0]/Border[0 0 0]/Dest[1202 0 R/XYZ 0 734 0]>>endobj
+354 0 obj<</Subtype/Link/Rect[124.5 707.8 182.2 720.8]/Border[0 0 0]/Dest[1202 0 R/XYZ 0 696 0]>>endobj
+355 0 obj<</Subtype/Link/Rect[124.5 694.6 253.1 707.6]/Border[0 0 0]/Dest[1204 0 R/XYZ 0 734 0]>>endobj
+356 0 obj<</Subtype/Link/Rect[124.5 681.4 237.2 694.4]/Border[0 0 0]/Dest[1204 0 R/XYZ 0 278 0]>>endobj
+357 0 obj<</Subtype/Link/Rect[124.5 668.2 289.5 681.2]/Border[0 0 0]/Dest[1206 0 R/XYZ 0 734 0]>>endobj
+358 0 obj<</Subtype/Link/Rect[124.5 655.0 211.0 668.0]/Border[0 0 0]/Dest[1206 0 R/XYZ 0 304 0]>>endobj
+359 0 obj<</Subtype/Link/Rect[124.5 641.8 233.0 654.8]/Border[0 0 0]/Dest[1208 0 R/XYZ 0 646 0]>>endobj
+360 0 obj<</Subtype/Link/Rect[124.5 628.6 229.9 641.6]/Border[0 0 0]/Dest[1208 0 R/XYZ 0 299 0]>>endobj
+361 0 obj<</Subtype/Link/Rect[124.5 615.4 210.0 628.4]/Border[0 0 0]/Dest[1208 0 R/XYZ 0 210 0]>>endobj
+362 0 obj<</Subtype/Link/Rect[124.5 602.2 196.6 615.2]/Border[0 0 0]/Dest[1210 0 R/XYZ 0 734 0]>>endobj
+363 0 obj<</Subtype/Link/Rect[80.2 589.0 146.8 602.0]/Border[0 0 0]/Dest[1212 0 R/XYZ 0 734 0]>>endobj
+364 0 obj<</Subtype/Link/Rect[124.5 575.8 182.2 588.8]/Border[0 0 0]/Dest[1212 0 R/XYZ 0 696 0]>>endobj
+365 0 obj<</Subtype/Link/Rect[124.5 562.6 322.5 575.6]/Border[0 0 0]/Dest[1212 0 R/XYZ 0 467 0]>>endobj
+366 0 obj<</Subtype/Link/Rect[85.8 549.4 229.1 562.4]/Border[0 0 0]/Dest[1216 0 R/XYZ 0 734 0]>>endobj
+367 0 obj<</Subtype/Link/Rect[130.0 536.2 304.8 549.2]/Border[0 0 0]/Dest[1216 0 R/XYZ 0 696 0]>>endobj
+368 0 obj<</Subtype/Link/Rect[130.0 523.0 292.2 536.0]/Border[0 0 0]/Dest[1218 0 R/XYZ 0 362 0]>>endobj
+369 0 obj<</Subtype/Link/Rect[130.0 509.8 315.2 522.8]/Border[0 0 0]/Dest[1218 0 R/XYZ 0 155 0]>>endobj
+370 0 obj<</Subtype/Link/Rect[85.8 496.6 369.0 509.6]/Border[0 0 0]/Dest[1222 0 R/XYZ 0 734 0]>>endobj
+371 0 obj<</Subtype/Link/Rect[130.0 483.4 170.0 496.4]/Border[0 0 0]/Dest[1222 0 R/XYZ 0 672 0]>>endobj
+372 0 obj<</Subtype/Link/Rect[130.0 470.2 187.8 483.2]/Border[0 0 0]/Dest[1222 0 R/XYZ 0 544 0]>>endobj
+373 0 obj<</Subtype/Link/Rect[130.0 457.0 237.9 470.0]/Border[0 0 0]/Dest[1222 0 R/XYZ 0 231 0]>>endobj
+374 0 obj<</Subtype/Link/Rect[174.2 443.8 230.5 456.8]/Border[0 0 0]/Dest[1224 0 R/XYZ 0 560 0]>>endobj
+375 0 obj<</Subtype/Link/Rect[130.0 430.6 224.4 443.6]/Border[0 0 0]/Dest[1224 0 R/XYZ 0 409 0]>>endobj
+376 0 obj<</Subtype/Link/Rect[174.2 417.4 330.7 430.4]/Border[0 0 0]/Dest[1224 0 R/XYZ 0 294 0]>>endobj
+377 0 obj<</Subtype/Link/Rect[174.2 404.2 269.9 417.2]/Border[0 0 0]/Dest[1226 0 R/XYZ 0 734 0]>>endobj
+378 0 obj<</Subtype/Link/Rect[174.2 391.0 330.4 404.0]/Border[0 0 0]/Dest[1226 0 R/XYZ 0 292 0]>>endobj
+379 0 obj<</Subtype/Link/Rect[174.2 377.8 312.0 390.8]/Border[0 0 0]/Dest[1228 0 R/XYZ 0 665 0]>>endobj
+380 0 obj<</Subtype/Link/Rect[174.2 364.6 244.5 377.6]/Border[0 0 0]/Dest[1228 0 R/XYZ 0 488 0]>>endobj
+381 0 obj<</Subtype/Link/Rect[130.0 351.4 267.8 364.4]/Border[0 0 0]/Dest[1228 0 R/XYZ 0 351 0]>>endobj
+382 0 obj<</Subtype/Link/Rect[174.2 338.2 232.0 351.2]/Border[0 0 0]/Dest[1228 0 R/XYZ 0 209 0]>>endobj
+383 0 obj<</Subtype/Link/Rect[174.2 325.0 237.5 338.0]/Border[0 0 0]/Dest[1230 0 R/XYZ 0 599 0]>>endobj
+384 0 obj<</Subtype/Link/Rect[174.2 311.8 261.3 324.8]/Border[0 0 0]/Dest[1230 0 R/XYZ 0 330 0]>>endobj
+385 0 obj<</Subtype/Link/Rect[130.0 298.6 182.9 311.6]/Border[0 0 0]/Dest[1244 0 R/XYZ 0 296 0]>>endobj
+386 0 obj<</Subtype/Link/Rect[130.0 285.4 182.9 298.4]/Border[0 0 0]/Dest[1246 0 R/XYZ 0 734 0]>>endobj
+387 0 obj<</Subtype/Link/Rect[85.8 272.2 364.7 285.2]/Border[0 0 0]/Dest[1248 0 R/XYZ 0 734 0]>>endobj
+388 0 obj<</Subtype/Link/Rect[130.0 259.0 226.5 272.0]/Border[0 0 0]/Dest[1248 0 R/XYZ 0 672 0]>>endobj
+389 0 obj<</Subtype/Link/Rect[130.0 245.8 186.5 258.8]/Border[0 0 0]/Dest[1248 0 R/XYZ 0 584 0]>>endobj
+390 0 obj<</Subtype/Link/Rect[130.0 232.6 322.8 245.6]/Border[0 0 0]/Dest[1250 0 R/XYZ 0 718 0]>>endobj
+391 0 obj<</Subtype/Link/Rect[130.0 219.4 436.8 232.4]/Border[0 0 0]/Dest[1252 0 R/XYZ 0 613 0]>>endobj
+392 0 obj<</Subtype/Link/Rect[174.2 206.2 374.7 219.2]/Border[0 0 0]/Dest[1252 0 R/XYZ 0 227 0]>>endobj
+393 0 obj<</Subtype/Link/Rect[174.2 193.0 406.1 206.0]/Border[0 0 0]/Dest[1254 0 R/XYZ 0 359 0]>>endobj
+394 0 obj<</Subtype/Link/Rect[174.2 179.8 321.5 192.8]/Border[0 0 0]/Dest[1254 0 R/XYZ 0 149 0]>>endobj
+395 0 obj<</Subtype/Link/Rect[130.0 166.6 268.7 179.6]/Border[0 0 0]/Dest[1256 0 R/XYZ 0 467 0]>>endobj
+396 0 obj<</Subtype/Link/Rect[130.0 153.4 258.3 166.4]/Border[0 0 0]/Dest[1258 0 R/XYZ 0 208 0]>>endobj
+397 0 obj<</Subtype/Link/Rect[130.0 140.2 250.4 153.2]/Border[0 0 0]/Dest[1260 0 R/XYZ 0 203 0]>>endobj
+398 0 obj<</Subtype/Link/Rect[130.0 127.0 295.9 140.0]/Border[0 0 0]/Dest[1266 0 R/XYZ 0 547 0]>>endobj
+399 0 obj<</Subtype/Link/Rect[174.2 113.8 373.5 126.8]/Border[0 0 0]/Dest[1268 0 R/XYZ 0 560 0]>>endobj
+400 0 obj<</Subtype/Link/Rect[174.2 100.6 449.6 113.6]/Border[0 0 0]/Dest[1268 0 R/XYZ 0 126 0]>>endobj
+401 0 obj<</Subtype/Link/Rect[130.0 87.4 429.2 100.4]/Border[0 0 0]/Dest[1276 0 R/XYZ 0 135 0]>>endobj
+402 0 obj<</Subtype/Link/Rect[85.8 74.2 454.9 87.2]/Border[0 0 0]/Dest[1282 0 R/XYZ 0 734 0]>>endobj
+403 0 obj<</Subtype/Link/Rect[130.0 61.0 226.5 74.0]/Border[0 0 0]/Dest[1282 0 R/XYZ 0 672 0]>>endobj
+404 0 obj[353 0 R
 354 0 R
 355 0 R
 356 0 R
@@ -725,59 +749,9 @@
 376 0 R
 377 0 R
 378 0 R
-379 0 R]endobj
-381 0 obj<</Subtype/Link/Rect[166.0 721.0 243.3 734.0]/Border[0 0 0]/Dest[1544 0 R/XYZ 0 672 0]>>endobj
-382 0 obj<</Subtype/Link/Rect[166.0 707.8 286.4 720.8]/Border[0 0 0]/Dest[1546 0 R/XYZ 0 148 0]>>endobj
-383 0 obj<</Subtype/Link/Rect[166.0 694.6 309.9 707.6]/Border[0 0 0]/Dest[1548 0 R/XYZ 0 705 0]>>endobj
-384 0 obj<</Subtype/Link/Rect[121.8 681.4 386.0 694.4]/Border[0 0 0]/Dest[1550 0 R/XYZ 0 734 0]>>endobj
-385 0 obj<</Subtype/Link/Rect[166.0 668.2 221.3 681.2]/Border[0 0 0]/Dest[1550 0 R/XYZ 0 672 0]>>endobj
-386 0 obj<</Subtype/Link/Rect[121.8 655.0 198.8 668.0]/Border[0 0 0]/Dest[1554 0 R/XYZ 0 734 0]>>endobj
-387 0 obj<</Subtype/Link/Rect[166.0 641.8 223.8 654.8]/Border[0 0 0]/Dest[1554 0 R/XYZ 0 696 0]>>endobj
-388 0 obj<</Subtype/Link/Rect[166.0 628.6 231.1 641.6]/Border[0 0 0]/Dest[1554 0 R/XYZ 0 317 0]>>endobj
-389 0 obj<</Subtype/Link/Rect[166.0 615.4 260.4 628.4]/Border[0 0 0]/Dest[1564 0 R/XYZ 0 734 0]>>endobj
-390 0 obj<</Subtype/Link/Rect[166.0 602.2 213.4 615.2]/Border[0 0 0]/Dest[1566 0 R/XYZ 0 440 0]>>endobj
-391 0 obj<</Subtype/Link/Rect[121.8 589.0 188.3 602.0]/Border[0 0 0]/Dest[1576 0 R/XYZ 0 734 0]>>endobj
-392 0 obj<</Subtype/Link/Rect[166.0 575.8 223.8 588.8]/Border[0 0 0]/Dest[1576 0 R/XYZ 0 696 0]>>endobj
-393 0 obj<</Subtype/Link/Rect[166.0 562.6 364.0 575.6]/Border[0 0 0]/Dest[1576 0 R/XYZ 0 467 0]>>endobj
-394 0 obj<</Subtype/Link/Rect[121.8 549.4 405.0 562.4]/Border[0 0 0]/Dest[1580 0 R/XYZ 0 734 0]>>endobj
-395 0 obj<</Subtype/Link/Rect[166.0 536.2 206.0 549.2]/Border[0 0 0]/Dest[1580 0 R/XYZ 0 672 0]>>endobj
-396 0 obj<</Subtype/Link/Rect[166.0 523.0 223.8 536.0]/Border[0 0 0]/Dest[1580 0 R/XYZ 0 544 0]>>endobj
-397 0 obj<</Subtype/Link/Rect[166.0 509.8 273.9 522.8]/Border[0 0 0]/Dest[1580 0 R/XYZ 0 231 0]>>endobj
-398 0 obj<</Subtype/Link/Rect[166.0 496.6 260.4 509.6]/Border[0 0 0]/Dest[1582 0 R/XYZ 0 409 0]>>endobj
-399 0 obj<</Subtype/Link/Rect[166.0 483.4 303.8 496.4]/Border[0 0 0]/Dest[1586 0 R/XYZ 0 351 0]>>endobj
-400 0 obj<</Subtype/Link/Rect[166.0 470.2 218.9 483.2]/Border[0 0 0]/Dest[1602 0 R/XYZ 0 296 0]>>endobj
-401 0 obj<</Subtype/Link/Rect[166.0 457.0 218.9 470.0]/Border[0 0 0]/Dest[1604 0 R/XYZ 0 734 0]>>endobj
-402 0 obj<</Subtype/Link/Rect[121.8 443.8 223.5 456.8]/Border[0 0 0]/Dest[1606 0 R/XYZ 0 734 0]>>endobj
-403 0 obj<</Subtype/Link/Rect[166.0 430.6 206.6 443.6]/Border[0 0 0]/Dest[1606 0 R/XYZ 0 696 0]>>endobj
-404 0 obj<</Subtype/Link/Rect[166.0 417.4 222.5 430.4]/Border[0 0 0]/Dest[1606 0 R/XYZ 0 595 0]>>endobj
-405 0 obj<</Subtype/Link/Rect[166.0 404.2 389.1 417.2]/Border[0 0 0]/Dest[1608 0 R/XYZ 0 568 0]>>endobj
-406 0 obj<</Subtype/Link/Rect[166.0 391.0 347.6 404.0]/Border[0 0 0]/Dest[1608 0 R/XYZ 0 414 0]>>endobj
-407 0 obj<</Subtype/Link/Rect[121.8 377.8 211.9 390.8]/Border[0 0 0]/Dest[1610 0 R/XYZ 0 734 0]>>endobj
-408 0 obj<</Subtype/Link/Rect[166.0 364.6 206.6 377.6]/Border[0 0 0]/Dest[1610 0 R/XYZ 0 696 0]>>endobj
-409 0 obj<</Subtype/Link/Rect[166.0 351.4 196.9 364.4]/Border[0 0 0]/Dest[1610 0 R/XYZ 0 608 0]>>endobj
-410 0 obj<</Subtype/Link/Rect[121.8 338.2 456.2 351.2]/Border[0 0 0]/Dest[1612 0 R/XYZ 0 734 0]>>endobj
-411 0 obj<</Subtype/Link/Rect[166.0 325.0 205.4 338.0]/Border[0 0 0]/Dest[1612 0 R/XYZ 0 672 0]>>endobj
-412 0 obj<</Subtype/Link/Rect[166.0 311.8 223.8 324.8]/Border[0 0 0]/Dest[1612 0 R/XYZ 0 412 0]>>endobj
-413 0 obj<</Subtype/Link/Rect[166.0 298.6 280.0 311.6]/Border[0 0 0]/Dest[1614 0 R/XYZ 0 573 0]>>endobj
-414 0 obj<</Subtype/Link/Rect[166.0 285.4 418.4 298.4]/Border[0 0 0]/Dest[1614 0 R/XYZ 0 471 0]>>endobj
-415 0 obj<</Subtype/Link/Rect[166.0 272.2 307.2 285.2]/Border[0 0 0]/Dest[1616 0 R/XYZ 0 734 0]>>endobj
-416 0 obj<</Subtype/Link/Rect[166.0 259.0 323.0 272.0]/Border[0 0 0]/Dest[1618 0 R/XYZ 0 243 0]>>endobj
-417 0 obj<</Subtype/Link/Rect[166.0 245.8 291.6 258.8]/Border[0 0 0]/Dest[1620 0 R/XYZ 0 718 0]>>endobj
-418 0 obj<</Subtype/Link/Rect[166.0 232.6 366.8 245.6]/Border[0 0 0]/Dest[1620 0 R/XYZ 0 336 0]>>endobj
-419 0 obj<</Subtype/Link/Rect[166.0 219.4 360.3 232.4]/Border[0 0 0]/Dest[1622 0 R/XYZ 0 322 0]>>endobj
-420 0 obj<</Subtype/Link/Rect[171.5 206.2 220.7 219.2]/Border[0 0 0]/Dest[1624 0 R/XYZ 0 492 0]>>endobj
-421 0 obj<</Subtype/Link/Rect[121.8 193.0 323.1 206.0]/Border[0 0 0]/Dest[1626 0 R/XYZ 0 734 0]>>endobj
-422 0 obj<</Subtype/Link/Rect[166.0 179.8 223.8 192.8]/Border[0 0 0]/Dest[1626 0 R/XYZ 0 672 0]>>endobj
-423 0 obj<</Subtype/Link/Rect[166.0 166.6 281.8 179.6]/Border[0 0 0]/Dest[1626 0 R/XYZ 0 557 0]>>endobj
-424 0 obj<</Subtype/Link/Rect[121.8 153.4 236.3 166.4]/Border[0 0 0]/Dest[1630 0 R/XYZ 0 734 0]>>endobj
-425 0 obj<</Subtype/Link/Rect[121.8 140.2 242.4 153.2]/Border[0 0 0]/Dest[1632 0 R/XYZ 0 734 0]>>endobj
-426 0 obj<</Subtype/Link/Rect[166.0 127.0 227.4 140.0]/Border[0 0 0]/Dest[1632 0 R/XYZ 0 696 0]>>endobj
-427 0 obj<</Subtype/Link/Rect[166.0 113.8 204.8 126.8]/Border[0 0 0]/Dest[1632 0 R/XYZ 0 449 0]>>endobj
-428 0 obj<</Subtype/Link/Rect[166.0 100.6 232.6 113.6]/Border[0 0 0]/Dest[1634 0 R/XYZ 0 515 0]>>endobj
-429 0 obj<</Subtype/Link/Rect[166.0 87.4 210.6 100.4]/Border[0 0 0]/Dest[1634 0 R/XYZ 0 255 0]>>endobj
-430 0 obj<</Subtype/Link/Rect[166.0 74.2 210.0 87.2]/Border[0 0 0]/Dest[1636 0 R/XYZ 0 718 0]>>endobj
-431 0 obj<</Subtype/Link/Rect[166.0 61.0 204.2 74.0]/Border[0 0 0]/Dest[1636 0 R/XYZ 0 537 0]>>endobj
-432 0 obj[381 0 R
+379 0 R
+380 0 R
+381 0 R
 382 0 R
 383 0 R
 384 0 R
@@ -799,9 +773,59 @@
 400 0 R
 401 0 R
 402 0 R
-403 0 R
-404 0 R
-405 0 R
+403 0 R]endobj
+405 0 obj<</Subtype/Link/Rect[130.0 721.0 186.5 734.0]/Border[0 0 0]/Dest[1282 0 R/XYZ 0 597 0]>>endobj
+406 0 obj<</Subtype/Link/Rect[130.0 707.8 365.9 720.8]/Border[0 0 0]/Dest[1282 0 R/XYZ 0 225 0]>>endobj
+407 0 obj<</Subtype/Link/Rect[174.2 694.6 406.5 707.6]/Border[0 0 0]/Dest[1284 0 R/XYZ 0 734 0]>>endobj
+408 0 obj<</Subtype/Link/Rect[174.2 681.4 292.5 694.4]/Border[0 0 0]/Dest[1284 0 R/XYZ 0 609 0]>>endobj
+409 0 obj<</Subtype/Link/Rect[130.0 668.2 333.8 681.2]/Border[0 0 0]/Dest[1284 0 R/XYZ 0 524 0]>>endobj
+410 0 obj<</Subtype/Link/Rect[130.0 655.0 273.6 668.0]/Border[0 0 0]/Dest[1284 0 R/XYZ 0 383 0]>>endobj
+411 0 obj<</Subtype/Link/Rect[174.2 641.8 351.2 654.8]/Border[0 0 0]/Dest[1286 0 R/XYZ 0 620 0]>>endobj
+412 0 obj<</Subtype/Link/Rect[85.8 628.6 420.2 641.6]/Border[0 0 0]/Dest[1288 0 R/XYZ 0 734 0]>>endobj
+413 0 obj<</Subtype/Link/Rect[130.0 615.4 169.4 628.4]/Border[0 0 0]/Dest[1288 0 R/XYZ 0 672 0]>>endobj
+414 0 obj<</Subtype/Link/Rect[130.0 602.2 187.8 615.2]/Border[0 0 0]/Dest[1288 0 R/XYZ 0 412 0]>>endobj
+415 0 obj<</Subtype/Link/Rect[130.0 589.0 244.0 602.0]/Border[0 0 0]/Dest[1290 0 R/XYZ 0 573 0]>>endobj
+416 0 obj<</Subtype/Link/Rect[130.0 575.8 382.4 588.8]/Border[0 0 0]/Dest[1290 0 R/XYZ 0 471 0]>>endobj
+417 0 obj<</Subtype/Link/Rect[130.0 562.6 271.2 575.6]/Border[0 0 0]/Dest[1292 0 R/XYZ 0 734 0]>>endobj
+418 0 obj<</Subtype/Link/Rect[174.2 549.4 291.0 562.4]/Border[0 0 0]/Dest[1292 0 R/XYZ 0 700 0]>>endobj
+419 0 obj<</Subtype/Link/Rect[174.2 536.2 263.5 549.2]/Border[0 0 0]/Dest[1292 0 R/XYZ 0 143 0]>>endobj
+420 0 obj<</Subtype/Link/Rect[130.0 523.0 287.0 536.0]/Border[0 0 0]/Dest[1294 0 R/XYZ 0 243 0]>>endobj
+421 0 obj<</Subtype/Link/Rect[130.0 509.8 255.6 522.8]/Border[0 0 0]/Dest[1296 0 R/XYZ 0 718 0]>>endobj
+422 0 obj<</Subtype/Link/Rect[130.0 496.6 330.8 509.6]/Border[0 0 0]/Dest[1296 0 R/XYZ 0 336 0]>>endobj
+423 0 obj<</Subtype/Link/Rect[130.0 483.4 324.3 496.4]/Border[0 0 0]/Dest[1298 0 R/XYZ 0 322 0]>>endobj
+424 0 obj<</Subtype/Link/Rect[135.5 470.2 184.7 483.2]/Border[0 0 0]/Dest[1300 0 R/XYZ 0 492 0]>>endobj
+425 0 obj<</Subtype/Link/Rect[85.8 457.0 293.8 470.0]/Border[0 0 0]/Dest[1302 0 R/XYZ 0 734 0]>>endobj
+426 0 obj<</Subtype/Link/Rect[130.0 443.8 326.2 456.8]/Border[0 0 0]/Dest[1302 0 R/XYZ 0 500 0]>>endobj
+427 0 obj<</Subtype/Link/Rect[130.0 430.6 327.4 443.6]/Border[0 0 0]/Dest[1302 0 R/XYZ 0 393 0]>>endobj
+428 0 obj<</Subtype/Link/Rect[130.0 417.4 202.7 430.4]/Border[0 0 0]/Dest[1302 0 R/XYZ 0 217 0]>>endobj
+429 0 obj<</Subtype/Link/Rect[130.0 404.2 243.7 417.2]/Border[0 0 0]/Dest[1304 0 R/XYZ 0 530 0]>>endobj
+430 0 obj<</Subtype/Link/Rect[130.0 391.0 260.8 404.0]/Border[0 0 0]/Dest[1304 0 R/XYZ 0 213 0]>>endobj
+431 0 obj<</Subtype/Link/Rect[174.2 377.8 244.5 390.8]/Border[0 0 0]/Dest[1304 0 R/XYZ 0 125 0]>>endobj
+432 0 obj<</Subtype/Link/Rect[130.0 364.6 230.2 377.6]/Border[0 0 0]/Dest[1306 0 R/XYZ 0 665 0]>>endobj
+433 0 obj<</Subtype/Link/Rect[130.0 351.4 231.8 364.4]/Border[0 0 0]/Dest[1306 0 R/XYZ 0 577 0]>>endobj
+434 0 obj<</Subtype/Link/Rect[130.0 338.2 157.8 351.2]/Border[0 0 0]/Dest[1306 0 R/XYZ 0 502 0]>>endobj
+435 0 obj<</Subtype/Link/Rect[85.8 325.0 217.1 338.0]/Border[0 0 0]/Dest[1308 0 R/XYZ 0 734 0]>>endobj
+436 0 obj<</Subtype/Link/Rect[130.0 311.8 229.9 324.8]/Border[0 0 0]/Dest[1308 0 R/XYZ 0 696 0]>>endobj
+437 0 obj<</Subtype/Link/Rect[130.0 298.6 254.1 311.6]/Border[0 0 0]/Dest[1308 0 R/XYZ 0 515 0]>>endobj
+438 0 obj<</Subtype/Link/Rect[130.0 285.4 218.0 298.4]/Border[0 0 0]/Dest[1308 0 R/XYZ 0 137 0]>>endobj
+439 0 obj<</Subtype/Link/Rect[130.0 272.2 242.1 285.2]/Border[0 0 0]/Dest[1310 0 R/XYZ 0 533 0]>>endobj
+440 0 obj<</Subtype/Link/Rect[174.2 259.0 354.8 272.0]/Border[0 0 0]/Dest[1310 0 R/XYZ 0 273 0]>>endobj
+441 0 obj<</Subtype/Link/Rect[130.0 245.8 244.0 258.8]/Border[0 0 0]/Dest[1316 0 R/XYZ 0 560 0]>>endobj
+442 0 obj<</Subtype/Link/Rect[130.0 232.6 312.7 245.6]/Border[0 0 0]/Dest[1318 0 R/XYZ 0 613 0]>>endobj
+443 0 obj<</Subtype/Link/Rect[130.0 219.4 287.1 232.4]/Border[0 0 0]/Dest[1320 0 R/XYZ 0 622 0]>>endobj
+444 0 obj<</Subtype/Link/Rect[130.0 206.2 273.0 219.2]/Border[0 0 0]/Dest[1320 0 R/XYZ 0 266 0]>>endobj
+445 0 obj<</Subtype/Link/Rect[130.0 193.0 282.5 206.0]/Border[0 0 0]/Dest[1322 0 R/XYZ 0 520 0]>>endobj
+446 0 obj<</Subtype/Link/Rect[135.5 179.8 279.7 192.8]/Border[0 0 0]/Dest[1324 0 R/XYZ 0 734 0]>>endobj
+447 0 obj<</Subtype/Link/Rect[135.5 166.6 221.7 179.6]/Border[0 0 0]/Dest[1324 0 R/XYZ 0 645 0]>>endobj
+448 0 obj<</Subtype/Link/Rect[85.8 153.4 206.4 166.4]/Border[0 0 0]/Dest[1326 0 R/XYZ 0 734 0]>>endobj
+449 0 obj<</Subtype/Link/Rect[130.0 140.2 191.4 153.2]/Border[0 0 0]/Dest[1326 0 R/XYZ 0 696 0]>>endobj
+450 0 obj<</Subtype/Link/Rect[130.0 127.0 168.8 140.0]/Border[0 0 0]/Dest[1326 0 R/XYZ 0 449 0]>>endobj
+451 0 obj<</Subtype/Link/Rect[174.2 113.8 219.2 126.8]/Border[0 0 0]/Dest[1326 0 R/XYZ 0 416 0]>>endobj
+452 0 obj<</Subtype/Link/Rect[174.2 100.6 245.1 113.6]/Border[0 0 0]/Dest[1326 0 R/XYZ 0 146 0]>>endobj
+453 0 obj<</Subtype/Link/Rect[174.2 87.4 348.3 100.4]/Border[0 0 0]/Dest[1328 0 R/XYZ 0 652 0]>>endobj
+454 0 obj<</Subtype/Link/Rect[130.0 74.2 196.6 87.2]/Border[0 0 0]/Dest[1328 0 R/XYZ 0 515 0]>>endobj
+455 0 obj<</Subtype/Link/Rect[130.0 61.0 174.6 74.0]/Border[0 0 0]/Dest[1328 0 R/XYZ 0 255 0]>>endobj
+456 0 obj[405 0 R
 406 0 R
 407 0 R
 408 0 R
@@ -827,43 +851,9 @@
 428 0 R
 429 0 R
 430 0 R
-431 0 R]endobj
-433 0 obj<</Subtype/Link/Rect[166.0 721.0 225.3 734.0]/Border[0 0 0]/Dest[1636 0 R/XYZ 0 409 0]>>endobj
-434 0 obj<</Subtype/Link/Rect[166.0 707.8 209.4 720.8]/Border[0 0 0]/Dest[1636 0 R/XYZ 0 189 0]>>endobj
-435 0 obj<</Subtype/Link/Rect[166.0 694.6 214.9 707.6]/Border[0 0 0]/Dest[1638 0 R/XYZ 0 734 0]>>endobj
-436 0 obj<</Subtype/Link/Rect[171.5 681.4 216.7 694.4]/Border[0 0 0]/Dest[1638 0 R/XYZ 0 645 0]>>endobj
-437 0 obj<</Subtype/Link/Rect[171.5 668.2 218.6 681.2]/Border[0 0 0]/Dest[1638 0 R/XYZ 0 477 0]>>endobj
-438 0 obj<</Subtype/Link/Rect[171.5 655.0 244.8 668.0]/Border[0 0 0]/Dest[1638 0 R/XYZ 0 349 0]>>endobj
-439 0 obj<</Subtype/Link/Rect[171.5 641.8 252.2 654.8]/Border[0 0 0]/Dest[1638 0 R/XYZ 0 129 0]>>endobj
-440 0 obj<</Subtype/Link/Rect[171.5 628.6 229.6 641.6]/Border[0 0 0]/Dest[1640 0 R/XYZ 0 639 0]>>endobj
-441 0 obj<</Subtype/Link/Rect[171.5 615.4 228.3 628.4]/Border[0 0 0]/Dest[1640 0 R/XYZ 0 511 0]>>endobj
-442 0 obj<</Subtype/Link/Rect[171.5 602.2 232.0 615.2]/Border[0 0 0]/Dest[1640 0 R/XYZ 0 436 0]>>endobj
-443 0 obj<</Subtype/Link/Rect[171.5 589.0 222.8 602.0]/Border[0 0 0]/Dest[1642 0 R/XYZ 0 388 0]>>endobj
-444 0 obj<</Subtype/Link/Rect[85.1 575.8 138.6 588.8]/Border[0 0 0]/Dest[1642 0 R/XYZ 0 170 0]>>endobj
-445 0 obj<</Subtype/Link/Rect[121.8 562.6 172.2 575.6]/Border[0 0 0]/Dest[1646 0 R/XYZ 0 734 0]>>endobj
-446 0 obj<</Subtype/Link/Rect[166.0 549.4 198.1 562.4]/Border[0 0 0]/Dest[1646 0 R/XYZ 0 655 0]>>endobj
-447 0 obj<</Subtype/Link/Rect[166.0 536.2 213.7 549.2]/Border[0 0 0]/Dest[1646 0 R/XYZ 0 408 0]>>endobj
-448 0 obj<</Subtype/Link/Rect[166.0 523.0 194.4 536.0]/Border[0 0 0]/Dest[1646 0 R/XYZ 0 293 0]>>endobj
-449 0 obj<</Subtype/Link/Rect[166.0 509.8 296.5 522.8]/Border[0 0 0]/Dest[1648 0 R/XYZ 0 228 0]>>endobj
-450 0 obj<</Subtype/Link/Rect[121.8 496.6 257.1 509.6]/Border[0 0 0]/Dest[1650 0 R/XYZ 0 734 0]>>endobj
-451 0 obj<</Subtype/Link/Rect[166.0 483.4 252.2 496.4]/Border[0 0 0]/Dest[1650 0 R/XYZ 0 668 0]>>endobj
-452 0 obj<</Subtype/Link/Rect[166.0 470.2 217.3 483.2]/Border[0 0 0]/Dest[1650 0 R/XYZ 0 461 0]>>endobj
-453 0 obj<</Subtype/Link/Rect[166.0 457.0 281.8 470.0]/Border[0 0 0]/Dest[1652 0 R/XYZ 0 151 0]>>endobj
-454 0 obj<</Subtype/Link/Rect[166.0 443.8 241.6 456.8]/Border[0 0 0]/Dest[1654 0 R/XYZ 0 292 0]>>endobj
-455 0 obj<</Subtype/Link/Rect[166.0 430.6 301.9 443.6]/Border[0 0 0]/Dest[1656 0 R/XYZ 0 718 0]>>endobj
-456 0 obj<</Subtype/Link/Rect[121.8 417.4 193.2 430.4]/Border[0 0 0]/Dest[1658 0 R/XYZ 0 734 0]>>endobj
-457 0 obj<</Subtype/Link/Rect[166.0 404.2 223.8 417.2]/Border[0 0 0]/Dest[1658 0 R/XYZ 0 696 0]>>endobj
-458 0 obj<</Subtype/Link/Rect[166.0 391.0 224.7 404.0]/Border[0 0 0]/Dest[1658 0 R/XYZ 0 423 0]>>endobj
-459 0 obj<</Subtype/Link/Rect[166.0 377.8 225.9 390.8]/Border[0 0 0]/Dest[1658 0 R/XYZ 0 282 0]>>endobj
-460 0 obj<</Subtype/Link/Rect[166.0 364.6 234.4 377.6]/Border[0 0 0]/Dest[1660 0 R/XYZ 0 613 0]>>endobj
-461 0 obj<</Subtype/Link/Rect[166.0 351.4 305.0 364.4]/Border[0 0 0]/Dest[1660 0 R/XYZ 0 260 0]>>endobj
-462 0 obj<</Subtype/Link/Rect[166.0 338.2 203.6 351.2]/Border[0 0 0]/Dest[1660 0 R/XYZ 0 159 0]>>endobj
-463 0 obj<</Subtype/Link/Rect[121.8 325.0 260.5 338.0]/Border[0 0 0]/Dest[1662 0 R/XYZ 0 734 0]>>endobj
-464 0 obj<</Subtype/Link/Rect[166.0 311.8 223.8 324.8]/Border[0 0 0]/Dest[1662 0 R/XYZ 0 696 0]>>endobj
-465 0 obj<</Subtype/Link/Rect[166.0 298.6 224.4 311.6]/Border[0 0 0]/Dest[1662 0 R/XYZ 0 529 0]>>endobj
-466 0 obj<</Subtype/Link/Rect[166.0 285.4 191.4 298.4]/Border[0 0 0]/Dest[1662 0 R/XYZ 0 199 0]>>endobj
-467 0 obj<</Subtype/Link/Rect[166.0 272.2 263.5 285.2]/Border[0 0 0]/Dest[1670 0 R/XYZ 0 239 0]>>endobj
-468 0 obj[433 0 R
+431 0 R
+432 0 R
+433 0 R
 434 0 R
 435 0 R
 436 0 R
@@ -885,9 +875,52 @@
 452 0 R
 453 0 R
 454 0 R
-455 0 R
-456 0 R
-457 0 R
+455 0 R]endobj
+457 0 obj<</Subtype/Link/Rect[130.0 721.0 174.0 734.0]/Border[0 0 0]/Dest[1330 0 R/XYZ 0 718 0]>>endobj
+458 0 obj<</Subtype/Link/Rect[130.0 707.8 168.2 720.8]/Border[0 0 0]/Dest[1330 0 R/XYZ 0 537 0]>>endobj
+459 0 obj<</Subtype/Link/Rect[130.0 694.6 189.3 707.6]/Border[0 0 0]/Dest[1330 0 R/XYZ 0 409 0]>>endobj
+460 0 obj<</Subtype/Link/Rect[130.0 681.4 173.4 694.4]/Border[0 0 0]/Dest[1330 0 R/XYZ 0 189 0]>>endobj
+461 0 obj<</Subtype/Link/Rect[130.0 668.2 178.9 681.2]/Border[0 0 0]/Dest[1332 0 R/XYZ 0 734 0]>>endobj
+462 0 obj<</Subtype/Link/Rect[135.5 655.0 180.7 668.0]/Border[0 0 0]/Dest[1332 0 R/XYZ 0 645 0]>>endobj
+463 0 obj<</Subtype/Link/Rect[135.5 641.8 182.6 654.8]/Border[0 0 0]/Dest[1332 0 R/XYZ 0 477 0]>>endobj
+464 0 obj<</Subtype/Link/Rect[135.5 628.6 208.8 641.6]/Border[0 0 0]/Dest[1332 0 R/XYZ 0 349 0]>>endobj
+465 0 obj<</Subtype/Link/Rect[135.5 615.4 216.2 628.4]/Border[0 0 0]/Dest[1332 0 R/XYZ 0 129 0]>>endobj
+466 0 obj<</Subtype/Link/Rect[135.5 602.2 193.6 615.2]/Border[0 0 0]/Dest[1334 0 R/XYZ 0 639 0]>>endobj
+467 0 obj<</Subtype/Link/Rect[135.5 589.0 192.3 602.0]/Border[0 0 0]/Dest[1334 0 R/XYZ 0 511 0]>>endobj
+468 0 obj<</Subtype/Link/Rect[135.5 575.8 196.0 588.8]/Border[0 0 0]/Dest[1334 0 R/XYZ 0 436 0]>>endobj
+469 0 obj<</Subtype/Link/Rect[135.5 562.6 186.8 575.6]/Border[0 0 0]/Dest[1336 0 R/XYZ 0 388 0]>>endobj
+470 0 obj<</Subtype/Link/Rect[85.8 549.4 221.1 562.4]/Border[0 0 0]/Dest[1338 0 R/XYZ 0 734 0]>>endobj
+471 0 obj<</Subtype/Link/Rect[130.0 536.2 216.2 549.2]/Border[0 0 0]/Dest[1338 0 R/XYZ 0 668 0]>>endobj
+472 0 obj<</Subtype/Link/Rect[130.0 523.0 181.3 536.0]/Border[0 0 0]/Dest[1338 0 R/XYZ 0 461 0]>>endobj
+473 0 obj<</Subtype/Link/Rect[174.2 509.8 533.6 522.8]/Border[0 0 0]/Dest[1338 0 R/XYZ 0 427 0]>>endobj
+474 0 obj<</Subtype/Link/Rect[174.2 496.6 536.9 509.6]/Border[0 0 0]/Dest[1340 0 R/XYZ 0 734 0]>>endobj
+475 0 obj<</Subtype/Link/Rect[174.2 483.4 490.2 496.4]/Border[0 0 0]/Dest[1340 0 R/XYZ 0 523 0]>>endobj
+476 0 obj<</Subtype/Link/Rect[174.2 470.2 459.3 483.2]/Border[0 0 0]/Dest[1340 0 R/XYZ 0 408 0]>>endobj
+477 0 obj<</Subtype/Link/Rect[130.0 457.0 245.8 470.0]/Border[0 0 0]/Dest[1340 0 R/XYZ 0 151 0]>>endobj
+478 0 obj<</Subtype/Link/Rect[174.2 443.8 351.5 456.8]/Border[0 0 0]/Dest[1340 0 R/XYZ 0 118 0]>>endobj
+479 0 obj<</Subtype/Link/Rect[174.2 430.6 351.2 443.6]/Border[0 0 0]/Dest[1342 0 R/XYZ 0 626 0]>>endobj
+480 0 obj<</Subtype/Link/Rect[174.2 417.4 332.5 430.4]/Border[0 0 0]/Dest[1342 0 R/XYZ 0 475 0]>>endobj
+481 0 obj<</Subtype/Link/Rect[174.2 404.2 301.4 417.2]/Border[0 0 0]/Dest[1342 0 R/XYZ 0 377 0]>>endobj
+482 0 obj<</Subtype/Link/Rect[130.0 391.0 205.6 404.0]/Border[0 0 0]/Dest[1342 0 R/XYZ 0 292 0]>>endobj
+483 0 obj<</Subtype/Link/Rect[130.0 377.8 265.9 390.8]/Border[0 0 0]/Dest[1344 0 R/XYZ 0 718 0]>>endobj
+484 0 obj<</Subtype/Link/Rect[85.8 364.6 287.1 377.6]/Border[0 0 0]/Dest[1346 0 R/XYZ 0 734 0]>>endobj
+485 0 obj<</Subtype/Link/Rect[130.0 351.4 187.8 364.4]/Border[0 0 0]/Dest[1346 0 R/XYZ 0 672 0]>>endobj
+486 0 obj<</Subtype/Link/Rect[130.0 338.2 245.8 351.2]/Border[0 0 0]/Dest[1346 0 R/XYZ 0 557 0]>>endobj
+487 0 obj<</Subtype/Link/Rect[174.2 325.0 263.2 338.0]/Border[0 0 0]/Dest[1346 0 R/XYZ 0 469 0]>>endobj
+488 0 obj<</Subtype/Link/Rect[174.2 311.8 239.9 324.8]/Border[0 0 0]/Dest[1346 0 R/XYZ 0 358 0]>>endobj
+489 0 obj<</Subtype/Link/Rect[85.8 298.6 157.2 311.6]/Border[0 0 0]/Dest[1350 0 R/XYZ 0 734 0]>>endobj
+490 0 obj<</Subtype/Link/Rect[130.0 285.4 187.8 298.4]/Border[0 0 0]/Dest[1350 0 R/XYZ 0 696 0]>>endobj
+491 0 obj<</Subtype/Link/Rect[130.0 272.2 188.7 285.2]/Border[0 0 0]/Dest[1350 0 R/XYZ 0 436 0]>>endobj
+492 0 obj<</Subtype/Link/Rect[130.0 259.0 189.9 272.0]/Border[0 0 0]/Dest[1350 0 R/XYZ 0 295 0]>>endobj
+493 0 obj<</Subtype/Link/Rect[130.0 245.8 198.4 258.8]/Border[0 0 0]/Dest[1352 0 R/XYZ 0 639 0]>>endobj
+494 0 obj<</Subtype/Link/Rect[130.0 232.6 269.0 245.6]/Border[0 0 0]/Dest[1352 0 R/XYZ 0 287 0]>>endobj
+495 0 obj<</Subtype/Link/Rect[130.0 219.4 167.6 232.4]/Border[0 0 0]/Dest[1352 0 R/XYZ 0 185 0]>>endobj
+496 0 obj<</Subtype/Link/Rect[85.8 206.2 200.3 219.2]/Border[0 0 0]/Dest[1354 0 R/XYZ 0 734 0]>>endobj
+497 0 obj<</Subtype/Link/Rect[85.8 193.0 136.2 206.0]/Border[0 0 0]/Dest[1356 0 R/XYZ 0 734 0]>>endobj
+498 0 obj<</Subtype/Link/Rect[130.0 179.8 162.1 192.8]/Border[0 0 0]/Dest[1356 0 R/XYZ 0 655 0]>>endobj
+499 0 obj<</Subtype/Link/Rect[130.0 166.6 177.7 179.6]/Border[0 0 0]/Dest[1356 0 R/XYZ 0 447 0]>>endobj
+500 0 obj<</Subtype/Link/Rect[130.0 153.4 158.4 166.4]/Border[0 0 0]/Dest[1356 0 R/XYZ 0 333 0]>>endobj
+501 0 obj[457 0 R
 458 0 R
 459 0 R
 460 0 R
@@ -897,52 +930,9 @@
 464 0 R
 465 0 R
 466 0 R
-467 0 R]endobj
-469 0 obj<</Subtype/Link/Rect[80.2 631.0 223.9 644.0]/Border[0 0 0]/Dest[1402 0 R/XYZ 0 734 0]>>endobj
-470 0 obj<</Subtype/Link/Rect[124.5 617.8 216.2 630.8]/Border[0 0 0]/Dest[1402 0 R/XYZ 0 696 0]>>endobj
-471 0 obj<</Subtype/Link/Rect[124.5 604.6 221.4 617.6]/Border[0 0 0]/Dest[1402 0 R/XYZ 0 568 0]>>endobj
-472 0 obj<</Subtype/Link/Rect[124.5 591.4 224.7 604.4]/Border[0 0 0]/Dest[1402 0 R/XYZ 0 163 0]>>endobj
-473 0 obj<</Subtype/Link/Rect[124.5 578.2 276.1 591.2]/Border[0 0 0]/Dest[1404 0 R/XYZ 0 734 0]>>endobj
-474 0 obj<</Subtype/Link/Rect[124.5 565.0 279.1 578.0]/Border[0 0 0]/Dest[1404 0 R/XYZ 0 385 0]>>endobj
-475 0 obj<</Subtype/Link/Rect[124.5 551.8 251.3 564.8]/Border[0 0 0]/Dest[1404 0 R/XYZ 0 257 0]>>endobj
-476 0 obj<</Subtype/Link/Rect[168.8 538.6 276.9 551.6]/Border[0 0 0]/Dest[1406 0 R/XYZ 0 734 0]>>endobj
-477 0 obj<</Subtype/Link/Rect[168.8 525.4 328.3 538.4]/Border[0 0 0]/Dest[1406 0 R/XYZ 0 247 0]>>endobj
-478 0 obj<</Subtype/Link/Rect[124.5 512.2 331.0 525.2]/Border[0 0 0]/Dest[1408 0 R/XYZ 0 665 0]>>endobj
-479 0 obj<</Subtype/Link/Rect[124.5 499.0 280.3 512.0]/Border[0 0 0]/Dest[1408 0 R/XYZ 0 498 0]>>endobj
-480 0 obj<</Subtype/Link/Rect[124.5 485.8 467.0 498.8]/Border[0 0 0]/Dest[1408 0 R/XYZ 0 330 0]>>endobj
-481 0 obj<</Subtype/Link/Rect[130.0 472.6 257.3 485.6]/Border[0 0 0]/Dest[1410 0 R/XYZ 0 734 0]>>endobj
-482 0 obj<</Subtype/Link/Rect[174.2 459.4 273.2 472.4]/Border[0 0 0]/Dest[1410 0 R/XYZ 0 553 0]>>endobj
-483 0 obj<</Subtype/Link/Rect[174.2 446.2 221.9 459.2]/Border[0 0 0]/Dest[1410 0 R/XYZ 0 494 0]>>endobj
-484 0 obj<</Subtype/Link/Rect[174.2 433.0 303.2 446.0]/Border[0 0 0]/Dest[1410 0 R/XYZ 0 409 0]>>endobj
-485 0 obj<</Subtype/Link/Rect[174.2 419.8 331.6 432.8]/Border[0 0 0]/Dest[1412 0 R/XYZ 0 734 0]>>endobj
-486 0 obj<</Subtype/Link/Rect[174.2 406.6 212.4 419.6]/Border[0 0 0]/Dest[1412 0 R/XYZ 0 583 0]>>endobj
-487 0 obj<</Subtype/Link/Rect[174.2 393.4 269.0 406.4]/Border[0 0 0]/Dest[1412 0 R/XYZ 0 128 0]>>endobj
-488 0 obj<</Subtype/Link/Rect[80.2 380.2 211.6 393.2]/Border[0 0 0]/Dest[1416 0 R/XYZ 0 734 0]>>endobj
-489 0 obj<</Subtype/Link/Rect[124.5 367.0 224.4 380.0]/Border[0 0 0]/Dest[1416 0 R/XYZ 0 696 0]>>endobj
-490 0 obj<</Subtype/Link/Rect[124.5 353.8 248.6 366.8]/Border[0 0 0]/Dest[1416 0 R/XYZ 0 515 0]>>endobj
-491 0 obj<</Subtype/Link/Rect[124.5 340.6 212.5 353.6]/Border[0 0 0]/Dest[1416 0 R/XYZ 0 137 0]>>endobj
-492 0 obj<</Subtype/Link/Rect[124.5 327.4 236.6 340.4]/Border[0 0 0]/Dest[1418 0 R/XYZ 0 533 0]>>endobj
-493 0 obj<</Subtype/Link/Rect[168.8 314.2 349.3 327.2]/Border[0 0 0]/Dest[1418 0 R/XYZ 0 273 0]>>endobj
-494 0 obj<</Subtype/Link/Rect[124.5 301.0 238.5 314.0]/Border[0 0 0]/Dest[1424 0 R/XYZ 0 560 0]>>endobj
-495 0 obj<</Subtype/Link/Rect[124.5 287.8 307.2 300.8]/Border[0 0 0]/Dest[1426 0 R/XYZ 0 613 0]>>endobj
-496 0 obj<</Subtype/Link/Rect[124.5 274.6 281.6 287.6]/Border[0 0 0]/Dest[1428 0 R/XYZ 0 622 0]>>endobj
-497 0 obj<</Subtype/Link/Rect[124.5 261.4 267.5 274.4]/Border[0 0 0]/Dest[1428 0 R/XYZ 0 266 0]>>endobj
-498 0 obj<</Subtype/Link/Rect[124.5 248.2 277.0 261.2]/Border[0 0 0]/Dest[1430 0 R/XYZ 0 520 0]>>endobj
-499 0 obj<</Subtype/Link/Rect[130.0 235.0 274.2 248.0]/Border[0 0 0]/Dest[1432 0 R/XYZ 0 734 0]>>endobj
-500 0 obj<</Subtype/Link/Rect[130.0 221.8 216.2 234.8]/Border[0 0 0]/Dest[1432 0 R/XYZ 0 645 0]>>endobj
-501 0 obj<</Subtype/Link/Rect[80.2 208.6 119.0 221.6]/Border[0 0 0]/Dest[1434 0 R/XYZ 0 734 0]>>endobj
-502 0 obj<</Subtype/Link/Rect[124.5 195.4 209.7 208.4]/Border[0 0 0]/Dest[1434 0 R/XYZ 0 696 0]>>endobj
-503 0 obj<</Subtype/Link/Rect[80.2 182.2 374.5 195.2]/Border[0 0 0]/Dest[1436 0 R/XYZ 0 734 0]>>endobj
-504 0 obj<</Subtype/Link/Rect[124.5 169.0 175.5 182.0]/Border[0 0 0]/Dest[1436 0 R/XYZ 0 604 0]>>endobj
-505 0 obj<</Subtype/Link/Rect[124.5 155.8 312.1 168.8]/Border[0 0 0]/Dest[1436 0 R/XYZ 0 159 0]>>endobj
-506 0 obj<</Subtype/Link/Rect[124.5 142.6 324.7 155.6]/Border[0 0 0]/Dest[1438 0 R/XYZ 0 483 0]>>endobj
-507 0 obj<</Subtype/Link/Rect[124.5 129.4 184.1 142.4]/Border[0 0 0]/Dest[1438 0 R/XYZ 0 305 0]>>endobj
-508 0 obj<</Subtype/Link/Rect[124.5 116.2 422.7 129.2]/Border[0 0 0]/Dest[1440 0 R/XYZ 0 467 0]>>endobj
-509 0 obj<</Subtype/Link/Rect[124.5 103.0 232.4 116.0]/Border[0 0 0]/Dest[1440 0 R/XYZ 0 187 0]>>endobj
-510 0 obj<</Subtype/Link/Rect[80.2 89.8 297.5 102.8]/Border[0 0 0]/Dest[1444 0 R/XYZ 0 734 0]>>endobj
-511 0 obj<</Subtype/Link/Rect[124.5 76.6 182.2 89.6]/Border[0 0 0]/Dest[1444 0 R/XYZ 0 672 0]>>endobj
-512 0 obj<</Subtype/Link/Rect[124.5 63.4 266.9 76.4]/Border[0 0 0]/Dest[1444 0 R/XYZ 0 531 0]>>endobj
-513 0 obj[469 0 R
+467 0 R
+468 0 R
+469 0 R
 470 0 R
 471 0 R
 472 0 R
@@ -973,3156 +963,2461 @@
 497 0 R
 498 0 R
 499 0 R
-500 0 R
-501 0 R
-502 0 R
-503 0 R
-504 0 R
-505 0 R
-506 0 R
-507 0 R
-508 0 R
-509 0 R
-510 0 R
-511 0 R
-512 0 R]endobj
-514 0 obj<</Subtype/Link/Rect[168.8 721.0 309.9 734.0]/Border[0 0 0]/Dest[1446 0 R/XYZ 0 734 0]>>endobj
-515 0 obj<</Subtype/Link/Rect[168.8 707.8 353.4 720.8]/Border[0 0 0]/Dest[1446 0 R/XYZ 0 609 0]>>endobj
-516 0 obj<</Subtype/Link/Rect[124.5 694.6 244.6 707.6]/Border[0 0 0]/Dest[1446 0 R/XYZ 0 511 0]>>endobj
-517 0 obj[514 0 R
-515 0 R
-516 0 R]endobj
-518 0 obj<</S/URI/URI(http://www.samba.org/)>>endobj
-519 0 obj<</Subtype/Link/Rect[367.1 584.2 468.3 597.2]/Border[0 0 0]/A 518 0 R>>endobj
-520 0 obj[519 0 R]endobj
-521 0 obj<</S/Launch/F(Diagnosis.html)>>endobj
-522 0 obj<</Subtype/Link/Rect[280.4 510.2 327.1 523.2]/Border[0 0 0]/A 521 0 R>>endobj
-523 0 obj[522 0 R]endobj
-524 0 obj<</Subtype/Link/Rect[80.2 631.0 364.4 644.0]/Border[0 0 0]/Dest[1454 0 R/XYZ 0 734 0]>>endobj
-525 0 obj<</Subtype/Link/Rect[124.5 617.8 221.0 630.8]/Border[0 0 0]/Dest[1454 0 R/XYZ 0 672 0]>>endobj
-526 0 obj<</Subtype/Link/Rect[124.5 604.6 181.0 617.6]/Border[0 0 0]/Dest[1454 0 R/XYZ 0 584 0]>>endobj
-527 0 obj<</Subtype/Link/Rect[124.5 591.4 317.3 604.4]/Border[0 0 0]/Dest[1456 0 R/XYZ 0 718 0]>>endobj
-528 0 obj<</Subtype/Link/Rect[124.5 578.2 431.3 591.2]/Border[0 0 0]/Dest[1458 0 R/XYZ 0 613 0]>>endobj
-529 0 obj<</Subtype/Link/Rect[168.8 565.0 369.2 578.0]/Border[0 0 0]/Dest[1458 0 R/XYZ 0 227 0]>>endobj
-530 0 obj<</Subtype/Link/Rect[168.8 551.8 400.6 564.8]/Border[0 0 0]/Dest[1460 0 R/XYZ 0 319 0]>>endobj
-531 0 obj<</Subtype/Link/Rect[168.8 538.6 316.0 551.6]/Border[0 0 0]/Dest[1462 0 R/XYZ 0 734 0]>>endobj
-532 0 obj<</Subtype/Link/Rect[124.5 525.4 263.2 538.4]/Border[0 0 0]/Dest[1462 0 R/XYZ 0 385 0]>>endobj
-533 0 obj<</Subtype/Link/Rect[124.5 512.2 252.8 525.2]/Border[0 0 0]/Dest[1464 0 R/XYZ 0 129 0]>>endobj
-534 0 obj<</Subtype/Link/Rect[124.5 499.0 244.9 512.0]/Border[0 0 0]/Dest[1466 0 R/XYZ 0 124 0]>>endobj
-535 0 obj<</Subtype/Link/Rect[124.5 485.8 290.4 498.8]/Border[0 0 0]/Dest[1472 0 R/XYZ 0 507 0]>>endobj
-536 0 obj<</Subtype/Link/Rect[168.8 472.6 368.0 485.6]/Border[0 0 0]/Dest[1474 0 R/XYZ 0 520 0]>>endobj
-537 0 obj<</Subtype/Link/Rect[168.8 459.4 444.1 472.4]/Border[0 0 0]/Dest[1476 0 R/XYZ 0 734 0]>>endobj
-538 0 obj<</Subtype/Link/Rect[124.5 446.2 423.7 459.2]/Border[0 0 0]/Dest[1484 0 R/XYZ 0 734 0]>>endobj
-539 0 obj<</Subtype/Link/Rect[80.2 433.0 449.4 446.0]/Border[0 0 0]/Dest[1488 0 R/XYZ 0 734 0]>>endobj
-540 0 obj<</Subtype/Link/Rect[124.5 419.8 221.0 432.8]/Border[0 0 0]/Dest[1488 0 R/XYZ 0 672 0]>>endobj
-541 0 obj<</Subtype/Link/Rect[124.5 406.6 181.0 419.6]/Border[0 0 0]/Dest[1488 0 R/XYZ 0 597 0]>>endobj
-542 0 obj<</Subtype/Link/Rect[124.5 393.4 360.4 406.4]/Border[0 0 0]/Dest[1488 0 R/XYZ 0 225 0]>>endobj
-543 0 obj<</Subtype/Link/Rect[168.8 380.2 401.0 393.2]/Border[0 0 0]/Dest[1490 0 R/XYZ 0 734 0]>>endobj
-544 0 obj<</Subtype/Link/Rect[168.8 367.0 287.0 380.0]/Border[0 0 0]/Dest[1490 0 R/XYZ 0 609 0]>>endobj
-545 0 obj<</Subtype/Link/Rect[124.5 353.8 328.3 366.8]/Border[0 0 0]/Dest[1490 0 R/XYZ 0 524 0]>>endobj
-546 0 obj<</Subtype/Link/Rect[124.5 340.6 268.1 353.6]/Border[0 0 0]/Dest[1490 0 R/XYZ 0 383 0]>>endobj
-547 0 obj<</Subtype/Link/Rect[168.8 327.4 345.7 340.4]/Border[0 0 0]/Dest[1492 0 R/XYZ 0 620 0]>>endobj
-548 0 obj<</Subtype/Link/Rect[80.2 314.2 230.6 327.2]/Border[0 0 0]/Dest[1494 0 R/XYZ 0 734 0]>>endobj
-549 0 obj<</Subtype/Link/Rect[124.5 301.0 320.7 314.0]/Border[0 0 0]/Dest[1494 0 R/XYZ 0 524 0]>>endobj
-550 0 obj<</Subtype/Link/Rect[124.5 287.8 321.9 300.8]/Border[0 0 0]/Dest[1494 0 R/XYZ 0 417 0]>>endobj
-551 0 obj<</Subtype/Link/Rect[124.5 274.6 197.2 287.6]/Border[0 0 0]/Dest[1494 0 R/XYZ 0 241 0]>>endobj
-552 0 obj<</Subtype/Link/Rect[124.5 261.4 238.2 274.4]/Border[0 0 0]/Dest[1496 0 R/XYZ 0 556 0]>>endobj
-553 0 obj<</Subtype/Link/Rect[124.5 248.2 255.3 261.2]/Border[0 0 0]/Dest[1496 0 R/XYZ 0 240 0]>>endobj
-554 0 obj<</Subtype/Link/Rect[168.8 235.0 239.0 248.0]/Border[0 0 0]/Dest[1496 0 R/XYZ 0 151 0]>>endobj
-555 0 obj<</Subtype/Link/Rect[124.5 221.8 224.7 234.8]/Border[0 0 0]/Dest[1498 0 R/XYZ 0 692 0]>>endobj
-556 0 obj<</Subtype/Link/Rect[124.5 208.6 226.3 221.6]/Border[0 0 0]/Dest[1498 0 R/XYZ 0 603 0]>>endobj
-557 0 obj<</Subtype/Link/Rect[124.5 195.4 152.3 208.4]/Border[0 0 0]/Dest[1498 0 R/XYZ 0 528 0]>>endobj
-558 0 obj<</Subtype/Link/Rect[80.2 182.2 229.4 195.2]/Border[0 0 0]/Dest[1500 0 R/XYZ 0 734 0]>>endobj
-559 0 obj<</Subtype/Link/Rect[124.5 169.0 299.3 182.0]/Border[0 0 0]/Dest[1500 0 R/XYZ 0 696 0]>>endobj
-560 0 obj<</Subtype/Link/Rect[124.5 155.8 286.8 168.8]/Border[0 0 0]/Dest[1502 0 R/XYZ 0 362 0]>>endobj
-561 0 obj<</Subtype/Link/Rect[124.5 142.6 309.7 155.6]/Border[0 0 0]/Dest[1502 0 R/XYZ 0 155 0]>>endobj
-562 0 obj[524 0 R
-525 0 R
-526 0 R
-527 0 R
-528 0 R
-529 0 R
-530 0 R
-531 0 R
-532 0 R
+500 0 R]endobj
+502 0 obj<</S/URI/URI(http://www.samba.org/)>>endobj
+503 0 obj<</Subtype/Link/Rect[367.1 584.2 468.3 597.2]/Border[0 0 0]/A 502 0 R>>endobj
+504 0 obj[503 0 R]endobj
+505 0 obj<</S/URI/URI(mailto:samba@samba.org)>>endobj
+506 0 obj<</Subtype/Link/Rect[164.2 153.8 250.8 166.8]/Border[0 0 0]/A 505 0 R>>endobj
+507 0 obj<</S/URI/URI(http://samba.org/samba)>>endobj
+508 0 obj<</Subtype/Link/Rect[233.0 140.6 338.7 153.6]/Border[0 0 0]/A 507 0 R>>endobj
+509 0 obj[506 0 R
+508 0 R]endobj
+510 0 obj<</S/Launch/F(ENCRYPTION.html)>>endobj
+511 0 obj<</Subtype/Link/Rect[174.0 562.6 270.6 575.6]/Border[0 0 0]/A 510 0 R>>endobj
+512 0 obj<</S/Launch/F(#PASSWORDLEVEL)>>endobj
+513 0 obj<</Subtype/Link/Rect[72.0 300.6 153.0 311.6]/Border[0 0 0]/A 512 0 R>>endobj
+514 0 obj<</S/Launch/F(#USERNAMELEVEL)>>endobj
+515 0 obj<</Subtype/Link/Rect[72.0 289.8 147.6 300.8]/Border[0 0 0]/A 514 0 R>>endobj
+516 0 obj[511 0 R
+513 0 R
+515 0 R]endobj
+517 0 obj<</S/Launch/F(winbind.html)>>endobj
+518 0 obj<</Subtype/Link/Rect[503.4 161.0 544.6 174.0]/Border[0 0 0]/A 517 0 R>>endobj
+519 0 obj<</S/Launch/F(winbind.html)>>endobj
+520 0 obj<</Subtype/Link/Rect[72.0 147.8 115.4 160.8]/Border[0 0 0]/A 519 0 R>>endobj
+521 0 obj[518 0 R
+520 0 R]endobj
+522 0 obj<</S/URI/URI(http://rsync.samba.org/)>>endobj
+523 0 obj<</Subtype/Link/Rect[118.1 89.0 222.3 102.0]/Border[0 0 0]/A 522 0 R>>endobj
+524 0 obj[523 0 R]endobj
+525 0 obj<</S/Launch/F(#OBEYPAMRESTRICTIONS)>>endobj
+526 0 obj<</Subtype/Link/Rect[235.4 659.0 332.9 672.0]/Border[0 0 0]/A 525 0 R>>endobj
+527 0 obj<</S/Launch/F(#ENCRYPTPASSWORDS)>>endobj
+528 0 obj<</Subtype/Link/Rect[338.7 579.8 449.4 592.8]/Border[0 0 0]/A 527 0 R>>endobj
+529 0 obj[526 0 R
+528 0 R]endobj
+530 0 obj<</S/URI/URI(http://www.microsoft.com/NTServer/nts/downloads/winfeatures/NTSDistrFile/AdminGuide.asp)>>endobj
+531 0 obj<</Subtype/Link/Rect[72.0 586.6 183.5 599.6]/Border[0 0 0]/A 530 0 R>>endobj
+532 0 obj<</S/Launch/F(#HOSTMSDFS)>>endobj
+533 0 obj<</Subtype/Link/Rect[345.1 507.4 417.7 520.4]/Border[0 0 0]/A 532 0 R>>endobj
+534 0 obj<</S/Launch/F(#MSDFSROOT)>>endobj
+535 0 obj<</Subtype/Link/Rect[380.8 494.2 453.4 507.2]/Border[0 0 0]/A 534 0 R>>endobj
+536 0 obj[531 0 R
 533 0 R
-534 0 R
-535 0 R
-536 0 R
-537 0 R
-538 0 R
-539 0 R
-540 0 R
-541 0 R
-542 0 R
+535 0 R]endobj
+537 0 obj<</S/Launch/F(#NTACLSUPPORT)>>endobj
+538 0 obj<</Subtype/Link/Rect[339.9 526.6 438.9 539.6]/Border[0 0 0]/A 537 0 R>>endobj
+539 0 obj[538 0 R]endobj
+540 0 obj<</S/Launch/F(#SECURITYMASK)>>endobj
+541 0 obj<</Subtype/Link/Rect[493.0 707.8 545.8 720.8]/Border[0 0 0]/A 540 0 R>>endobj
+542 0 obj<</S/Launch/F(#SECURITYMASK)>>endobj
+543 0 obj<</Subtype/Link/Rect[72.0 694.6 98.4 707.6]/Border[0 0 0]/A 542 0 R>>endobj
+544 0 obj<</S/Launch/F(#CREATEMASK)>>endobj
+545 0 obj<</Subtype/Link/Rect[356.1 615.4 428.7 628.4]/Border[0 0 0]/A 544 0 R>>endobj
+546 0 obj<</S/Launch/F(#FORCESECURITYMODE)>>endobj
+547 0 obj<</Subtype/Link/Rect[424.3 562.6 549.7 575.6]/Border[0 0 0]/A 546 0 R>>endobj
+548 0 obj<</S/Launch/F(#FORCECREATEMODE)>>endobj
+549 0 obj<</Subtype/Link/Rect[356.1 483.4 468.3 496.4]/Border[0 0 0]/A 548 0 R>>endobj
+550 0 obj<</S/Launch/F(smb.conf.5.html)>>endobj
+551 0 obj<</Subtype/Link/Rect[72.0 206.2 144.6 219.2]/Border[0 0 0]/A 550 0 R>>endobj
+552 0 obj[541 0 R
 543 0 R
-544 0 R
 545 0 R
-546 0 R
 547 0 R
-548 0 R
 549 0 R
-550 0 R
-551 0 R
-552 0 R
-553 0 R
-554 0 R
-555 0 R
+551 0 R]endobj
+553 0 obj<</S/URI/URI(http://imprints.sourceforge.net)>>endobj
+554 0 obj<</Subtype/Link/Rect[143.7 544.6 280.3 557.6]/Border[0 0 0]/A 553 0 R>>endobj
+555 0 obj<</S/URI/URI(http://msdn.microsoft.com/)>>endobj
+556 0 obj<</Subtype/Link/Rect[218.6 518.2 341.1 531.2]/Border[0 0 0]/A 555 0 R>>endobj
+557 0 obj<</S/URI/URI(http://support.microsoft.com/support/kb/articles/Q189/1/05.ASP)>>endobj
+558 0 obj<</Subtype/Link/Rect[72.0 293.8 355.9 306.8]/Border[0 0 0]/A 557 0 R>>endobj
+559 0 obj<</Subtype/Link/Rect[488.0 69.1 534.8 82.1]/Border[0 0 0]/Dest[1198 0 R/XYZ 0 359 0]>>endobj
+560 0 obj[554 0 R
 556 0 R
-557 0 R
 558 0 R
-559 0 R
-560 0 R
-561 0 R]endobj
-563 0 obj<</S/Launch/F(smb.conf.5.html)>>endobj
-564 0 obj<</Subtype/Link/Rect[153.2 599.8 225.8 612.8]/Border[0 0 0]/A 563 0 R>>endobj
-565 0 obj<</S/Launch/F(ENCRYPTION.html)>>endobj
-566 0 obj<</Subtype/Link/Rect[303.1 599.8 389.9 612.8]/Border[0 0 0]/A 565 0 R>>endobj
-567 0 obj<</S/Launch/F(UNIX_INSTALL.html)>>endobj
-568 0 obj<</Subtype/Link/Rect[333.5 442.5 438.0 455.5]/Border[0 0 0]/A 567 0 R>>endobj
-569 0 obj<</S/Launch/F(smb.conf.5.html)>>endobj
-570 0 obj<</Subtype/Link/Rect[440.4 429.3 541.8 442.3]/Border[0 0 0]/A 569 0 R>>endobj
-571 0 obj[564 0 R
-566 0 R
-568 0 R
-570 0 R]endobj
-572 0 obj<</S/Launch/F(smb.conf.5.html)>>endobj
-573 0 obj<</Subtype/Link/Rect[465.5 659.0 546.8 672.0]/Border[0 0 0]/A 572 0 R>>endobj
-574 0 obj<</S/Launch/F(smb.conf.5.html)>>endobj
-575 0 obj<</Subtype/Link/Rect[72.0 645.8 92.8 658.8]/Border[0 0 0]/A 574 0 R>>endobj
-576 0 obj<</S/Launch/F(#NETBIOSNAME)>>endobj
-577 0 obj<</Subtype/Link/Rect[93.6 573.4 158.4 584.4]/Border[0 0 0]/A 576 0 R>>endobj
-578 0 obj<</S/Launch/F(#WORKGROUP)>>endobj
-579 0 obj<</Subtype/Link/Rect[93.6 562.6 142.2 573.6]/Border[0 0 0]/A 578 0 R>>endobj
-580 0 obj<</S/Launch/F(#OSLEVEL)>>endobj
-581 0 obj<</Subtype/Link/Rect[93.6 530.2 136.8 541.2]/Border[0 0 0]/A 580 0 R>>endobj
-582 0 obj<</S/Launch/F(#PERFERREDMASTER)>>endobj
-583 0 obj<</Subtype/Link/Rect[93.6 519.4 180.0 530.4]/Border[0 0 0]/A 582 0 R>>endobj
-584 0 obj<</S/Launch/F(#DOMAINMASTER)>>endobj
-585 0 obj<</Subtype/Link/Rect[93.6 508.6 163.8 519.6]/Border[0 0 0]/A 584 0 R>>endobj
-586 0 obj<</S/Launch/F(#LOCALMASTER)>>endobj
-587 0 obj<</Subtype/Link/Rect[93.6 497.8 158.4 508.8]/Border[0 0 0]/A 586 0 R>>endobj
-588 0 obj<</S/Launch/F(#SECURITYEQUALSUSER)>>endobj
-589 0 obj<</Subtype/Link/Rect[93.6 465.4 136.8 476.4]/Border[0 0 0]/A 588 0 R>>endobj
-590 0 obj<</S/Launch/F(#ENCRYPTPASSWORDS)>>endobj
-591 0 obj<</Subtype/Link/Rect[93.6 433.0 185.4 444.0]/Border[0 0 0]/A 590 0 R>>endobj
-592 0 obj<</S/Launch/F(#DOMAINLOGONS)>>endobj
-593 0 obj<</Subtype/Link/Rect[93.6 400.6 163.8 411.6]/Border[0 0 0]/A 592 0 R>>endobj
-594 0 obj<</S/Launch/F(#LOGONPATH)>>endobj
-595 0 obj<</Subtype/Link/Rect[93.6 368.2 147.6 379.2]/Border[0 0 0]/A 594 0 R>>endobj
-596 0 obj<</S/Launch/F(#LOGONDRIVE)>>endobj
-597 0 obj<</Subtype/Link/Rect[93.6 325.0 153.0 336.0]/Border[0 0 0]/A 596 0 R>>endobj
-598 0 obj<</S/Launch/F(#LOGONHOME)>>endobj
-599 0 obj<</Subtype/Link/Rect[93.6 314.2 147.6 325.2]/Border[0 0 0]/A 598 0 R>>endobj
-600 0 obj<</S/Launch/F(#LOGONSCRIPT)>>endobj
-601 0 obj<</Subtype/Link/Rect[93.6 271.0 158.4 282.0]/Border[0 0 0]/A 600 0 R>>endobj
-602 0 obj<</S/Launch/F(#PATH)>>endobj
-603 0 obj<</Subtype/Link/Rect[93.6 227.8 115.2 238.8]/Border[0 0 0]/A 602 0 R>>endobj
-604 0 obj<</S/Launch/F(#READONLY)>>endobj
-605 0 obj<</Subtype/Link/Rect[93.6 217.0 142.2 228.0]/Border[0 0 0]/A 604 0 R>>endobj
-606 0 obj<</S/Launch/F(#WRITELIST)>>endobj
-607 0 obj<</Subtype/Link/Rect[93.6 206.2 147.6 217.2]/Border[0 0 0]/A 606 0 R>>endobj
-608 0 obj<</S/Launch/F(#PATH)>>endobj
-609 0 obj<</Subtype/Link/Rect[93.6 163.0 115.2 174.0]/Border[0 0 0]/A 608 0 R>>endobj
-610 0 obj<</S/Launch/F(#READONLY)>>endobj
-611 0 obj<</Subtype/Link/Rect[93.6 152.2 142.2 163.2]/Border[0 0 0]/A 610 0 R>>endobj
-612 0 obj<</S/Launch/F(#CREATEMASK)>>endobj
-613 0 obj<</Subtype/Link/Rect[93.6 141.4 153.0 152.4]/Border[0 0 0]/A 612 0 R>>endobj
-614 0 obj<</S/Launch/F(#DIRECTORYMASK)>>endobj
-615 0 obj<</Subtype/Link/Rect[93.6 130.6 169.2 141.6]/Border[0 0 0]/A 614 0 R>>endobj
-616 0 obj<</S/Launch/F(ENCRYPTION.html)>>endobj
-617 0 obj<</Subtype/Link/Rect[108.0 65.0 200.6 78.0]/Border[0 0 0]/A 616 0 R>>endobj
-618 0 obj[573 0 R
-575 0 R
-577 0 R
+559 0 R]endobj
+561 0 obj<</Subtype/Link/Rect[94.2 719.6 125.4 732.6]/Border[0 0 0]/Dest[1198 0 R/XYZ 0 359 0]>>endobj
+562 0 obj<</S/Launch/F(#WRITELIST)>>endobj
+563 0 obj<</Subtype/Link/Rect[91.9 357.3 157.9 370.3]/Border[0 0 0]/A 562 0 R>>endobj
+564 0 obj<</S/Launch/F(smb.conf.5.html)>>endobj
+565 0 obj<</Subtype/Link/Rect[184.4 344.1 285.8 357.1]/Border[0 0 0]/A 564 0 R>>endobj
+566 0 obj<</S/Launch/F(#GUESTOK)>>endobj
+567 0 obj<</Subtype/Link/Rect[160.6 317.7 228.6 330.7]/Border[0 0 0]/A 566 0 R>>endobj
+568 0 obj<</S/Launch/F(#MAPTOGUEST)>>endobj
+569 0 obj<</Subtype/Link/Rect[501.3 207.8 536.7 220.8]/Border[0 0 0]/A 568 0 R>>endobj
+570 0 obj<</S/Launch/F(#MAPTOGUEST)>>endobj
+571 0 obj<</Subtype/Link/Rect[94.2 194.6 174.1 207.6]/Border[0 0 0]/A 570 0 R>>endobj
+572 0 obj[561 0 R
+563 0 R
+565 0 R
+567 0 R
+569 0 R
+571 0 R]endobj
+573 0 obj<</S/Launch/F(#PRINTERADMIN)>>endobj
+574 0 obj<</Subtype/Link/Rect[451.3 607.5 537.1 620.5]/Border[0 0 0]/A 573 0 R>>endobj
+575 0 obj[574 0 R]endobj
+576 0 obj<</S/Launch/F(rpcclient.1.html)>>endobj
+577 0 obj<</Subtype/Link/Rect[233.6 649.4 379.3 662.4]/Border[0 0 0]/A 576 0 R>>endobj
+578 0 obj<</S/Launch/F(#SHOWADDPRINTERWIZARD)>>endobj
+579 0 obj<</Subtype/Link/Rect[108.0 239.4 299.4 252.4]/Border[0 0 0]/A 578 0 R>>endobj
+580 0 obj<</S/Launch/F(#ADDPRINTERCOMMAND)>>endobj
+581 0 obj<</Subtype/Link/Rect[453.9 213.0 526.5 226.0]/Border[0 0 0]/A 580 0 R>>endobj
+582 0 obj<</S/Launch/F(#ADDPRINTERCOMMAND)>>endobj
+583 0 obj<</Subtype/Link/Rect[72.0 199.8 118.2 212.8]/Border[0 0 0]/A 582 0 R>>endobj
+584 0 obj<</S/Launch/F(#DELETEPRINTERCOMMAND)>>endobj
+585 0 obj<</Subtype/Link/Rect[189.3 94.2 334.5 107.2]/Border[0 0 0]/A 584 0 R>>endobj
+586 0 obj<</S/Launch/F(#ADDPRINTERCOMMAN)>>endobj
+587 0 obj<</Subtype/Link/Rect[200.6 67.8 326.0 80.8]/Border[0 0 0]/A 586 0 R>>endobj
+588 0 obj[577 0 R
 579 0 R
 581 0 R
 583 0 R
 585 0 R
-587 0 R
-589 0 R
-591 0 R
-593 0 R
-595 0 R
-597 0 R
-599 0 R
-601 0 R
-603 0 R
-605 0 R
-607 0 R
+587 0 R]endobj
+589 0 obj<</S/Launch/F(#ENUMPORTSCOMMAND)>>endobj
+590 0 obj<</Subtype/Link/Rect[451.4 681.4 510.8 694.4]/Border[0 0 0]/A 589 0 R>>endobj
+591 0 obj<</S/Launch/F(#ENUMPORTSCOMMAND)>>endobj
+592 0 obj<</Subtype/Link/Rect[72.0 668.2 118.2 681.2]/Border[0 0 0]/A 591 0 R>>endobj
+593 0 obj<</S/URI/URI(http://imprints.sourceforge.net/)>>endobj
+594 0 obj<</Subtype/Link/Rect[297.8 593.0 437.4 606.0]/Border[0 0 0]/A 593 0 R>>endobj
+595 0 obj[590 0 R
+592 0 R
+594 0 R]endobj
+596 0 obj<</S/URI/URI(http://imprints.sourceforge.net/)>>endobj
+597 0 obj<</Subtype/Link/Rect[409.9 115.4 549.5 128.4]/Border[0 0 0]/A 596 0 R>>endobj
+598 0 obj[597 0 R]endobj
+599 0 obj<</S/Launch/F(#SECURITY)>>endobj
+600 0 obj<</Subtype/Link/Rect[72.0 615.0 115.2 626.0]/Border[0 0 0]/A 599 0 R>>endobj
+601 0 obj<</S/Launch/F(DOMAIN_MEMBER.html)>>endobj
+602 0 obj<</Subtype/Link/Rect[430.0 589.0 554.1 602.0]/Border[0 0 0]/A 601 0 R>>endobj
+603 0 obj<</S/Launch/F(ADS-HOWTO.html)>>endobj
+604 0 obj<</Subtype/Link/Rect[223.0 562.6 317.8 575.6]/Border[0 0 0]/A 603 0 R>>endobj
+605 0 obj[600 0 R
+602 0 R
+604 0 R]endobj
+606 0 obj<</S/Launch/F(smbpasswd.8.html)>>endobj
+607 0 obj<</Subtype/Link/Rect[218.7 452.2 284.9 465.2]/Border[0 0 0]/A 606 0 R>>endobj
+608 0 obj<</S/Launch/F(smb.conf.5.html)>>endobj
+609 0 obj<</Subtype/Link/Rect[350.3 135.4 422.9 148.4]/Border[0 0 0]/A 608 0 R>>endobj
+610 0 obj<</S/Launch/F(#SECURITY)>>endobj
+611 0 obj<</Subtype/Link/Rect[169.1 95.8 235.1 108.8]/Border[0 0 0]/A 610 0 R>>endobj
+612 0 obj[607 0 R
 609 0 R
-611 0 R
-613 0 R
-615 0 R
-617 0 R]endobj
-619 0 obj<</S/Launch/F(#DOMAINADMINGROUP)>>endobj
-620 0 obj<</Subtype/Link/Rect[494.2 641.8 530.0 654.8]/Border[0 0 0]/A 619 0 R>>endobj
-621 0 obj<</S/Launch/F(#DOMAINADMINGROUP)>>endobj
-622 0 obj<</Subtype/Link/Rect[72.0 628.6 127.9 641.6]/Border[0 0 0]/A 621 0 R>>endobj
-623 0 obj[620 0 R
-622 0 R]endobj
-624 0 obj<</S/Launch/F(smbpasswd.8.html)>>endobj
-625 0 obj<</Subtype/Link/Rect[72.0 512.2 138.6 525.2]/Border[0 0 0]/A 624 0 R>>endobj
-626 0 obj<</S/Launch/F(#ADDUSERSCRIPT)>>endobj
-627 0 obj<</Subtype/Link/Rect[420.0 223.7 486.9 236.7]/Border[0 0 0]/A 626 0 R>>endobj
-628 0 obj[625 0 R
+611 0 R]endobj
+613 0 obj<</S/Launch/F(#WORKGROUP)>>endobj
+614 0 obj<</Subtype/Link/Rect[146.2 721.0 225.4 734.0]/Border[0 0 0]/A 613 0 R>>endobj
+615 0 obj<</S/Launch/F(#ENCRYPTPASSWORDS)>>endobj
+616 0 obj<</Subtype/Link/Rect[224.7 641.8 336.9 654.8]/Border[0 0 0]/A 615 0 R>>endobj
+617 0 obj<</S/Launch/F(#PASSWORDSERVER)>>endobj
+618 0 obj<</Subtype/Link/Rect[188.7 602.2 300.9 615.2]/Border[0 0 0]/A 617 0 R>>endobj
+619 0 obj<</S/Launch/F(#SECURITYEQUALSSERVER)>>endobj
+620 0 obj<</Subtype/Link/Rect[275.2 69.0 351.3 82.0]/Border[0 0 0]/A 619 0 R>>endobj
+621 0 obj[614 0 R
+616 0 R
+618 0 R
+620 0 R]endobj
+622 0 obj<</S/Launch/F(winbind.html)>>endobj
+623 0 obj<</Subtype/Link/Rect[151.1 681.4 219.5 694.4]/Border[0 0 0]/A 622 0 R>>endobj
+624 0 obj<</S/URI/URI(http://www.linuxworld.com)>>endobj
+625 0 obj<</Subtype/Link/Rect[438.0 364.6 495.1 377.6]/Border[0 0 0]/A 624 0 R>>endobj
+626 0 obj<</S/URI/URI(http://www.linuxworld.com/linuxworld/lw-1998-10/lw-10-samba.html)>>endobj
+627 0 obj<</Subtype/Link/Rect[72.0 351.4 186.6 364.4]/Border[0 0 0]/A 626 0 R>>endobj
+628 0 obj[623 0 R
+625 0 R
 627 0 R]endobj
-629 0 obj<</S/URI/URI(http://www.microsoft.com/ntserver/management/deployment/planguide/prof_policies.asp)>>endobj
-630 0 obj<</Subtype/Link/Rect[139.8 721.0 387.6 734.0]/Border[0 0 0]/A 629 0 R>>endobj
-631 0 obj<</S/URI/URI(ftp://ftp.microsoft.com/Softlib/MSLFILES/NEXUS.EXE)>>endobj
-632 0 obj<</Subtype/Link/Rect[285.2 179.8 540.0 192.8]/Border[0 0 0]/A 631 0 R>>endobj
-633 0 obj<</S/URI/URI(ftp://ftp.microsoft.com/Softlib/MSLFILES/SRVTOOLS.EXE)>>endobj
-634 0 obj<</Subtype/Link/Rect[230.8 140.2 505.8 153.2]/Border[0 0 0]/A 633 0 R>>endobj
-635 0 obj[630 0 R
-632 0 R
-634 0 R]endobj
-636 0 obj<</S/URI/URI(http://www.tcpdump.org/)>>endobj
-637 0 obj<</Subtype/Link/Rect[349.4 417.4 455.4 430.4]/Border[0 0 0]/A 636 0 R>>endobj
-638 0 obj<</S/URI/URI(http://www.ethereal.com/)>>endobj
-639 0 obj<</Subtype/Link/Rect[424.5 404.2 536.6 417.2]/Border[0 0 0]/A 638 0 R>>endobj
-640 0 obj[637 0 R
-639 0 R]endobj
-641 0 obj<</S/URI/URI(http://samba.org)>>endobj
-642 0 obj<</Subtype/Link/Rect[233.5 549.4 308.1 562.4]/Border[0 0 0]/A 641 0 R>>endobj
-643 0 obj<</S/URI/URI(http://www.skippy.net/linux/smb-howto.html)>>endobj
-644 0 obj<</Subtype/Link/Rect[144.0 496.6 346.1 509.6]/Border[0 0 0]/A 643 0 R>>endobj
-645 0 obj<</S/URI/URI(http://bioserve.latrobe.edu.au/samba)>>endobj
-646 0 obj<</Subtype/Link/Rect[179.7 470.2 342.3 483.2]/Border[0 0 0]/A 645 0 R>>endobj
-647 0 obj<</S/URI/URI(http://samba.org/cifs/)>>endobj
-648 0 obj<</Subtype/Link/Rect[282.1 457.0 378.7 470.0]/Border[0 0 0]/A 647 0 R>>endobj
-649 0 obj<</S/URI/URI(http://mailhost.cb1.com/~lkcl/ntdom/)>>endobj
-650 0 obj<</Subtype/Link/Rect[241.5 443.8 408.5 456.8]/Border[0 0 0]/A 649 0 R>>endobj
-651 0 obj<</S/URI/URI(ftp://ftp.microsoft.com/developr/drg/CIFS/)>>endobj
-652 0 obj<</Subtype/Link/Rect[277.5 430.6 469.1 443.6]/Border[0 0 0]/A 651 0 R>>endobj
-653 0 obj<</S/URI/URI(http://samba.org)>>endobj
-654 0 obj<</Subtype/Link/Rect[358.2 377.8 432.8 390.8]/Border[0 0 0]/A 653 0 R>>endobj
-655 0 obj<</S/URI/URI(http://www.samba-tng.org/)>>endobj
-656 0 obj<</Subtype/Link/Rect[298.4 338.2 422.8 351.2]/Border[0 0 0]/A 655 0 R>>endobj
-657 0 obj[642 0 R
+629 0 obj<</S/URI/URI(mailto:jtrostel@snapserver.com)>>endobj
+630 0 obj<</Subtype/Link/Rect[197.9 304.6 310.1 317.6]/Border[0 0 0]/A 629 0 R>>endobj
+631 0 obj[630 0 R]endobj
+632 0 obj<</S/URI/URI(http://samba.org/)>>endobj
+633 0 obj<</Subtype/Link/Rect[151.1 438.2 262.3 451.2]/Border[0 0 0]/A 632 0 R>>endobj
+634 0 obj[633 0 R]endobj
+635 0 obj<</S/Launch/F(winbindd.8.html)>>endobj
+636 0 obj<</Subtype/Link/Rect[306.3 235.8 363.4 248.8]/Border[0 0 0]/A 635 0 R>>endobj
+637 0 obj<</S/Launch/F(#WINBINDSEPARATOR)>>endobj
+638 0 obj<</Subtype/Link/Rect[99.0 165.8 190.8 176.8]/Border[0 0 0]/A 637 0 R>>endobj
+639 0 obj<</S/Launch/F(#WINBINDUID)>>endobj
+640 0 obj<</Subtype/Link/Rect[99.0 144.2 158.4 155.2]/Border[0 0 0]/A 639 0 R>>endobj
+641 0 obj<</S/Launch/F(#WINBINDGID)>>endobj
+642 0 obj<</Subtype/Link/Rect[99.0 122.6 158.4 133.6]/Border[0 0 0]/A 641 0 R>>endobj
+643 0 obj<</S/Launch/F(#WINBINDENUMUSERS)>>endobj
+644 0 obj<</Subtype/Link/Rect[99.0 101.0 196.2 112.0]/Border[0 0 0]/A 643 0 R>>endobj
+645 0 obj<</S/Launch/F(#WINBINDENUMGROUP)>>endobj
+646 0 obj<</Subtype/Link/Rect[99.0 90.2 201.6 101.2]/Border[0 0 0]/A 645 0 R>>endobj
+647 0 obj<</S/Launch/F(#TEMPLATEHOMEDIR)>>endobj
+648 0 obj<</Subtype/Link/Rect[99.0 68.6 185.4 79.6]/Border[0 0 0]/A 647 0 R>>endobj
+649 0 obj<</S/Launch/F(#TEMPLATESHELL)>>endobj
+650 0 obj<</Subtype/Link/Rect[99.0 57.8 174.6 68.8]/Border[0 0 0]/A 649 0 R>>endobj
+651 0 obj[636 0 R
+638 0 R
+640 0 R
+642 0 R
 644 0 R
 646 0 R
 648 0 R
-650 0 R
-652 0 R
-654 0 R
-656 0 R]endobj
-658 0 obj<</S/URI/URI(http://lists.samba.org/)>>endobj
-659 0 obj<</Subtype/Link/Rect[132.8 575.8 227.8 588.8]/Border[0 0 0]/A 658 0 R>>endobj
-660 0 obj<</S/URI/URI(http://lists.samba.org/mailman/roster/samba-ntdom)>>endobj
-661 0 obj<</Subtype/Link/Rect[306.3 562.6 328.0 575.6]/Border[0 0 0]/A 660 0 R>>endobj
-662 0 obj[659 0 R
-661 0 R]endobj
-663 0 obj<</S/Launch/F(Samba-PDC-HOWTO.html)>>endobj
-664 0 obj<</Subtype/Link/Rect[210.4 613.0 317.8 626.0]/Border[0 0 0]/A 663 0 R>>endobj
-665 0 obj[664 0 R]endobj
-666 0 obj<</S/Launch/F(smbpasswd.8.html)>>endobj
-667 0 obj<</Subtype/Link/Rect[218.7 452.2 284.9 465.2]/Border[0 0 0]/A 666 0 R>>endobj
-668 0 obj<</S/Launch/F(smb.conf.5.html)>>endobj
-669 0 obj<</Subtype/Link/Rect[350.3 135.4 422.9 148.4]/Border[0 0 0]/A 668 0 R>>endobj
-670 0 obj<</S/Launch/F(#SECURITY)>>endobj
-671 0 obj<</Subtype/Link/Rect[169.1 95.8 235.1 108.8]/Border[0 0 0]/A 670 0 R>>endobj
-672 0 obj[667 0 R
-669 0 R
-671 0 R]endobj
-673 0 obj<</S/Launch/F(#WORKGROUP)>>endobj
-674 0 obj<</Subtype/Link/Rect[146.2 721.0 225.4 734.0]/Border[0 0 0]/A 673 0 R>>endobj
-675 0 obj<</S/Launch/F(#ENCRYPTPASSWORDS)>>endobj
-676 0 obj<</Subtype/Link/Rect[224.7 641.8 336.9 654.8]/Border[0 0 0]/A 675 0 R>>endobj
-677 0 obj<</S/Launch/F(#PASSWORDSERVER)>>endobj
-678 0 obj<</Subtype/Link/Rect[188.7 602.2 300.9 615.2]/Border[0 0 0]/A 677 0 R>>endobj
-679 0 obj<</S/Launch/F(#SECURITYEQUALSSERVER)>>endobj
-680 0 obj<</Subtype/Link/Rect[275.2 69.0 351.3 82.0]/Border[0 0 0]/A 679 0 R>>endobj
-681 0 obj[674 0 R
+650 0 R]endobj
+652 0 obj<</S/Launch/F(smb.conf.5.html)>>endobj
+653 0 obj<</Subtype/Link/Rect[153.2 599.8 225.8 612.8]/Border[0 0 0]/A 652 0 R>>endobj
+654 0 obj<</S/Launch/F(ENCRYPTION.html)>>endobj
+655 0 obj<</Subtype/Link/Rect[303.1 599.8 389.9 612.8]/Border[0 0 0]/A 654 0 R>>endobj
+656 0 obj<</S/Launch/F(UNIX_INSTALL.html)>>endobj
+657 0 obj<</Subtype/Link/Rect[333.5 442.5 438.0 455.5]/Border[0 0 0]/A 656 0 R>>endobj
+658 0 obj<</S/Launch/F(smb.conf.5.html)>>endobj
+659 0 obj<</Subtype/Link/Rect[440.4 429.3 541.8 442.3]/Border[0 0 0]/A 658 0 R>>endobj
+660 0 obj[653 0 R
+655 0 R
+657 0 R
+659 0 R]endobj
+661 0 obj<</S/Launch/F(smb.conf.5.html)>>endobj
+662 0 obj<</Subtype/Link/Rect[465.5 659.0 546.8 672.0]/Border[0 0 0]/A 661 0 R>>endobj
+663 0 obj<</S/Launch/F(smb.conf.5.html)>>endobj
+664 0 obj<</Subtype/Link/Rect[72.0 645.8 92.8 658.8]/Border[0 0 0]/A 663 0 R>>endobj
+665 0 obj<</S/Launch/F(#NETBIOSNAME)>>endobj
+666 0 obj<</Subtype/Link/Rect[93.6 573.4 158.4 584.4]/Border[0 0 0]/A 665 0 R>>endobj
+667 0 obj<</S/Launch/F(#WORKGROUP)>>endobj
+668 0 obj<</Subtype/Link/Rect[93.6 562.6 142.2 573.6]/Border[0 0 0]/A 667 0 R>>endobj
+669 0 obj<</S/Launch/F(#OSLEVEL)>>endobj
+670 0 obj<</Subtype/Link/Rect[93.6 530.2 136.8 541.2]/Border[0 0 0]/A 669 0 R>>endobj
+671 0 obj<</S/Launch/F(#PERFERREDMASTER)>>endobj
+672 0 obj<</Subtype/Link/Rect[93.6 519.4 180.0 530.4]/Border[0 0 0]/A 671 0 R>>endobj
+673 0 obj<</S/Launch/F(#DOMAINMASTER)>>endobj
+674 0 obj<</Subtype/Link/Rect[93.6 508.6 163.8 519.6]/Border[0 0 0]/A 673 0 R>>endobj
+675 0 obj<</S/Launch/F(#LOCALMASTER)>>endobj
+676 0 obj<</Subtype/Link/Rect[93.6 497.8 158.4 508.8]/Border[0 0 0]/A 675 0 R>>endobj
+677 0 obj<</S/Launch/F(#SECURITYEQUALSUSER)>>endobj
+678 0 obj<</Subtype/Link/Rect[93.6 465.4 136.8 476.4]/Border[0 0 0]/A 677 0 R>>endobj
+679 0 obj<</S/Launch/F(#ENCRYPTPASSWORDS)>>endobj
+680 0 obj<</Subtype/Link/Rect[93.6 433.0 185.4 444.0]/Border[0 0 0]/A 679 0 R>>endobj
+681 0 obj<</S/Launch/F(#DOMAINLOGONS)>>endobj
+682 0 obj<</Subtype/Link/Rect[93.6 400.6 163.8 411.6]/Border[0 0 0]/A 681 0 R>>endobj
+683 0 obj<</S/Launch/F(#LOGONPATH)>>endobj
+684 0 obj<</Subtype/Link/Rect[93.6 368.2 147.6 379.2]/Border[0 0 0]/A 683 0 R>>endobj
+685 0 obj<</S/Launch/F(#LOGONDRIVE)>>endobj
+686 0 obj<</Subtype/Link/Rect[93.6 325.0 153.0 336.0]/Border[0 0 0]/A 685 0 R>>endobj
+687 0 obj<</S/Launch/F(#LOGONHOME)>>endobj
+688 0 obj<</Subtype/Link/Rect[93.6 314.2 147.6 325.2]/Border[0 0 0]/A 687 0 R>>endobj
+689 0 obj<</S/Launch/F(#LOGONSCRIPT)>>endobj
+690 0 obj<</Subtype/Link/Rect[93.6 271.0 158.4 282.0]/Border[0 0 0]/A 689 0 R>>endobj
+691 0 obj<</S/Launch/F(#PATH)>>endobj
+692 0 obj<</Subtype/Link/Rect[93.6 227.8 115.2 238.8]/Border[0 0 0]/A 691 0 R>>endobj
+693 0 obj<</S/Launch/F(#READONLY)>>endobj
+694 0 obj<</Subtype/Link/Rect[93.6 217.0 142.2 228.0]/Border[0 0 0]/A 693 0 R>>endobj
+695 0 obj<</S/Launch/F(#WRITELIST)>>endobj
+696 0 obj<</Subtype/Link/Rect[93.6 206.2 147.6 217.2]/Border[0 0 0]/A 695 0 R>>endobj
+697 0 obj<</S/Launch/F(#PATH)>>endobj
+698 0 obj<</Subtype/Link/Rect[93.6 163.0 115.2 174.0]/Border[0 0 0]/A 697 0 R>>endobj
+699 0 obj<</S/Launch/F(#READONLY)>>endobj
+700 0 obj<</Subtype/Link/Rect[93.6 152.2 142.2 163.2]/Border[0 0 0]/A 699 0 R>>endobj
+701 0 obj<</S/Launch/F(#CREATEMASK)>>endobj
+702 0 obj<</Subtype/Link/Rect[93.6 141.4 153.0 152.4]/Border[0 0 0]/A 701 0 R>>endobj
+703 0 obj<</S/Launch/F(#DIRECTORYMASK)>>endobj
+704 0 obj<</Subtype/Link/Rect[93.6 130.6 169.2 141.6]/Border[0 0 0]/A 703 0 R>>endobj
+705 0 obj<</S/Launch/F(ENCRYPTION.html)>>endobj
+706 0 obj<</Subtype/Link/Rect[108.0 65.0 200.6 78.0]/Border[0 0 0]/A 705 0 R>>endobj
+707 0 obj[662 0 R
+664 0 R
+666 0 R
+668 0 R
+670 0 R
+672 0 R
+674 0 R
 676 0 R
 678 0 R
-680 0 R]endobj
-682 0 obj<</S/Launch/F(winbind.html)>>endobj
-683 0 obj<</Subtype/Link/Rect[151.1 681.4 219.5 694.4]/Border[0 0 0]/A 682 0 R>>endobj
-684 0 obj<</S/URI/URI(http://www.linuxworld.com)>>endobj
-685 0 obj<</Subtype/Link/Rect[438.0 364.6 495.1 377.6]/Border[0 0 0]/A 684 0 R>>endobj
-686 0 obj<</S/URI/URI(http://www.linuxworld.com/linuxworld/lw-1998-10/lw-10-samba.html)>>endobj
-687 0 obj<</Subtype/Link/Rect[72.0 351.4 186.6 364.4]/Border[0 0 0]/A 686 0 R>>endobj
-688 0 obj[683 0 R
-685 0 R
-687 0 R]endobj
-689 0 obj<</Subtype/Link/Rect[85.8 631.0 295.4 644.0]/Border[0 0 0]/Dest[1514 0 R/XYZ 0 734 0]>>endobj
-690 0 obj<</Subtype/Link/Rect[130.0 617.8 166.4 630.8]/Border[0 0 0]/Dest[1514 0 R/XYZ 0 672 0]>>endobj
-691 0 obj<</Subtype/Link/Rect[130.0 604.6 331.4 617.6]/Border[0 0 0]/Dest[1514 0 R/XYZ 0 439 0]>>endobj
-692 0 obj<</Subtype/Link/Rect[177.0 591.4 243.0 604.4]/Border[0 0 0]/Dest[1514 0 R/XYZ 0 311 0]>>endobj
-693 0 obj<</Subtype/Link/Rect[177.0 578.2 282.6 591.2]/Border[0 0 0]/Dest[1516 0 R/XYZ 0 441 0]>>endobj
-694 0 obj<</Subtype/Link/Rect[177.0 565.0 269.4 578.0]/Border[0 0 0]/Dest[1516 0 R/XYZ 0 303 0]>>endobj
-695 0 obj<</Subtype/Link/Rect[177.0 551.8 295.8 564.8]/Border[0 0 0]/Dest[1516 0 R/XYZ 0 157 0]>>endobj
-696 0 obj<</Subtype/Link/Rect[130.0 538.6 384.2 551.6]/Border[0 0 0]/Dest[1518 0 R/XYZ 0 339 0]>>endobj
-697 0 obj<</Subtype/Link/Rect[174.2 525.4 294.6 538.4]/Border[0 0 0]/Dest[1520 0 R/XYZ 0 266 0]>>endobj
-698 0 obj<</Subtype/Link/Rect[174.2 512.2 261.3 525.2]/Border[0 0 0]/Dest[1522 0 R/XYZ 0 734 0]>>endobj
-699 0 obj<</Subtype/Link/Rect[174.2 499.0 226.8 512.0]/Border[0 0 0]/Dest[1524 0 R/XYZ 0 459 0]>>endobj
-700 0 obj<</Subtype/Link/Rect[174.2 485.8 233.5 498.8]/Border[0 0 0]/Dest[1524 0 R/XYZ 0 361 0]>>endobj
-701 0 obj<</Subtype/Link/Rect[174.2 472.6 238.4 485.6]/Border[0 0 0]/Dest[1524 0 R/XYZ 0 224 0]>>endobj
-702 0 obj<</Subtype/Link/Rect[130.0 459.4 528.8 472.4]/Border[0 0 0]/Dest[1526 0 R/XYZ 0 670 0]>>endobj
-703 0 obj<</Subtype/Link/Rect[130.0 446.2 500.9 459.2]/Border[0 0 0]/Dest[1526 0 R/XYZ 0 126 0]>>endobj
-704 0 obj<</Subtype/Link/Rect[174.2 433.0 393.6 446.0]/Border[0 0 0]/Dest[1530 0 R/XYZ 0 734 0]>>endobj
-705 0 obj<</Subtype/Link/Rect[174.2 419.8 455.6 432.8]/Border[0 0 0]/Dest[1530 0 R/XYZ 0 484 0]>>endobj
-706 0 obj<</Subtype/Link/Rect[174.2 406.6 377.1 419.6]/Border[0 0 0]/Dest[1530 0 R/XYZ 0 132 0]>>endobj
-707 0 obj<</Subtype/Link/Rect[130.0 393.4 187.1 406.4]/Border[0 0 0]/Dest[1532 0 R/XYZ 0 263 0]>>endobj
-708 0 obj<</Subtype/Link/Rect[85.8 380.2 358.0 393.2]/Border[0 0 0]/Dest[1534 0 R/XYZ 0 734 0]>>endobj
-709 0 obj<</Subtype/Link/Rect[130.0 367.0 447.2 380.0]/Border[0 0 0]/Dest[1534 0 R/XYZ 0 672 0]>>endobj
-710 0 obj<</Subtype/Link/Rect[130.0 353.8 324.0 366.8]/Border[0 0 0]/Dest[1534 0 R/XYZ 0 497 0]>>endobj
-711 0 obj<</Subtype/Link/Rect[130.0 340.6 234.2 353.6]/Border[0 0 0]/Dest[1534 0 R/XYZ 0 330 0]>>endobj
-712 0 obj<</Subtype/Link/Rect[130.0 327.4 296.5 340.4]/Border[0 0 0]/Dest[1536 0 R/XYZ 0 665 0]>>endobj
-713 0 obj<</Subtype/Link/Rect[174.2 314.2 251.2 327.2]/Border[0 0 0]/Dest[1536 0 R/XYZ 0 432 0]>>endobj
-714 0 obj<</Subtype/Link/Rect[174.2 301.0 276.3 314.0]/Border[0 0 0]/Dest[1536 0 R/XYZ 0 189 0]>>endobj
-715 0 obj<</Subtype/Link/Rect[130.0 287.8 305.7 300.8]/Border[0 0 0]/Dest[1538 0 R/XYZ 0 692 0]>>endobj
-716 0 obj<</Subtype/Link/Rect[130.0 274.6 402.5 287.6]/Border[0 0 0]/Dest[1538 0 R/XYZ 0 260 0]>>endobj
-717 0 obj<</Subtype/Link/Rect[130.0 261.4 392.8 274.4]/Border[0 0 0]/Dest[1542 0 R/XYZ 0 599 0]>>endobj
-718 0 obj<</Subtype/Link/Rect[85.8 248.2 401.7 261.2]/Border[0 0 0]/Dest[1544 0 R/XYZ 0 734 0]>>endobj
-719 0 obj<</Subtype/Link/Rect[130.0 235.0 207.3 248.0]/Border[0 0 0]/Dest[1544 0 R/XYZ 0 672 0]>>endobj
-720 0 obj<</Subtype/Link/Rect[130.0 221.8 250.4 234.8]/Border[0 0 0]/Dest[1546 0 R/XYZ 0 148 0]>>endobj
-721 0 obj<</Subtype/Link/Rect[130.0 208.6 273.9 221.6]/Border[0 0 0]/Dest[1548 0 R/XYZ 0 705 0]>>endobj
-722 0 obj<</Subtype/Link/Rect[85.8 195.4 350.0 208.4]/Border[0 0 0]/Dest[1550 0 R/XYZ 0 734 0]>>endobj
-723 0 obj<</Subtype/Link/Rect[130.0 182.2 185.3 195.2]/Border[0 0 0]/Dest[1550 0 R/XYZ 0 672 0]>>endobj
-724 0 obj<</Subtype/Link/Rect[174.2 169.0 202.1 182.0]/Border[0 0 0]/Dest[1552 0 R/XYZ 0 652 0]>>endobj
-725 0 obj<</Subtype/Link/Rect[85.8 155.8 162.8 168.8]/Border[0 0 0]/Dest[1554 0 R/XYZ 0 734 0]>>endobj
-726 0 obj<</Subtype/Link/Rect[130.0 142.6 187.8 155.6]/Border[0 0 0]/Dest[1554 0 R/XYZ 0 696 0]>>endobj
-727 0 obj<</Subtype/Link/Rect[130.0 129.4 195.1 142.4]/Border[0 0 0]/Dest[1554 0 R/XYZ 0 317 0]>>endobj
-728 0 obj<</Subtype/Link/Rect[174.2 116.2 254.3 129.2]/Border[0 0 0]/Dest[1554 0 R/XYZ 0 131 0]>>endobj
-729 0 obj<</Subtype/Link/Rect[174.2 103.0 337.1 116.0]/Border[0 0 0]/Dest[1558 0 R/XYZ 0 570 0]>>endobj
-730 0 obj<</Subtype/Link/Rect[174.2 89.8 331.3 102.8]/Border[0 0 0]/Dest[1558 0 R/XYZ 0 155 0]>>endobj
-731 0 obj<</Subtype/Link/Rect[174.2 76.6 386.9 89.6]/Border[0 0 0]/Dest[1560 0 R/XYZ 0 459 0]>>endobj
-732 0 obj<</Subtype/Link/Rect[174.2 63.4 287.3 76.4]/Border[0 0 0]/Dest[1562 0 R/XYZ 0 286 0]>>endobj
-733 0 obj[689 0 R
+680 0 R
+682 0 R
+684 0 R
+686 0 R
+688 0 R
 690 0 R
-691 0 R
 692 0 R
-693 0 R
 694 0 R
-695 0 R
 696 0 R
-697 0 R
 698 0 R
-699 0 R
 700 0 R
-701 0 R
 702 0 R
-703 0 R
 704 0 R
-705 0 R
-706 0 R
-707 0 R
-708 0 R
-709 0 R
-710 0 R
-711 0 R
-712 0 R
-713 0 R
-714 0 R
-715 0 R
-716 0 R
-717 0 R
-718 0 R
-719 0 R
-720 0 R
-721 0 R
-722 0 R
-723 0 R
-724 0 R
-725 0 R
-726 0 R
-727 0 R
-728 0 R
-729 0 R
-730 0 R
-731 0 R
-732 0 R]endobj
-734 0 obj<</Subtype/Link/Rect[130.0 721.0 224.4 734.0]/Border[0 0 0]/Dest[1564 0 R/XYZ 0 734 0]>>endobj
-735 0 obj<</Subtype/Link/Rect[174.2 707.8 255.8 720.8]/Border[0 0 0]/Dest[1564 0 R/XYZ 0 632 0]>>endobj
-736 0 obj<</Subtype/Link/Rect[174.2 694.6 327.6 707.6]/Border[0 0 0]/Dest[1564 0 R/XYZ 0 507 0]>>endobj
-737 0 obj<</Subtype/Link/Rect[174.2 681.4 263.8 694.4]/Border[0 0 0]/Dest[1564 0 R/XYZ 0 423 0]>>endobj
-738 0 obj<</Subtype/Link/Rect[174.2 668.2 276.6 681.2]/Border[0 0 0]/Dest[1564 0 R/XYZ 0 325 0]>>endobj
-739 0 obj<</Subtype/Link/Rect[130.0 655.0 177.4 668.0]/Border[0 0 0]/Dest[1566 0 R/XYZ 0 440 0]>>endobj
-740 0 obj<</Subtype/Link/Rect[174.2 641.8 232.0 654.8]/Border[0 0 0]/Dest[1566 0 R/XYZ 0 406 0]>>endobj
-741 0 obj<</Subtype/Link/Rect[174.2 628.6 302.9 641.6]/Border[0 0 0]/Dest[1568 0 R/XYZ 0 479 0]>>endobj
-742 0 obj<</Subtype/Link/Rect[174.2 615.4 287.0 628.4]/Border[0 0 0]/Dest[1570 0 R/XYZ 0 692 0]>>endobj
-743 0 obj<</Subtype/Link/Rect[174.2 602.2 339.2 615.2]/Border[0 0 0]/Dest[1570 0 R/XYZ 0 511 0]>>endobj
-744 0 obj<</Subtype/Link/Rect[174.2 589.0 260.7 602.0]/Border[0 0 0]/Dest[1572 0 R/XYZ 0 734 0]>>endobj
-745 0 obj<</Subtype/Link/Rect[174.2 575.8 282.7 588.8]/Border[0 0 0]/Dest[1572 0 R/XYZ 0 394 0]>>endobj
-746 0 obj<</Subtype/Link/Rect[174.2 562.6 279.7 575.6]/Border[0 0 0]/Dest[1574 0 R/XYZ 0 718 0]>>endobj
-747 0 obj<</Subtype/Link/Rect[174.2 549.4 259.8 562.4]/Border[0 0 0]/Dest[1574 0 R/XYZ 0 633 0]>>endobj
-748 0 obj<</Subtype/Link/Rect[174.2 536.2 246.4 549.2]/Border[0 0 0]/Dest[1574 0 R/XYZ 0 535 0]>>endobj
-749 0 obj<</Subtype/Link/Rect[85.8 523.0 152.3 536.0]/Border[0 0 0]/Dest[1576 0 R/XYZ 0 734 0]>>endobj
-750 0 obj<</Subtype/Link/Rect[130.0 509.8 187.8 522.8]/Border[0 0 0]/Dest[1576 0 R/XYZ 0 696 0]>>endobj
-751 0 obj<</Subtype/Link/Rect[130.0 496.6 328.0 509.6]/Border[0 0 0]/Dest[1576 0 R/XYZ 0 467 0]>>endobj
-752 0 obj<</Subtype/Link/Rect[85.8 483.4 369.0 496.4]/Border[0 0 0]/Dest[1580 0 R/XYZ 0 734 0]>>endobj
-753 0 obj<</Subtype/Link/Rect[130.0 470.2 170.0 483.2]/Border[0 0 0]/Dest[1580 0 R/XYZ 0 672 0]>>endobj
-754 0 obj<</Subtype/Link/Rect[130.0 457.0 187.8 470.0]/Border[0 0 0]/Dest[1580 0 R/XYZ 0 544 0]>>endobj
-755 0 obj<</Subtype/Link/Rect[130.0 443.8 237.9 456.8]/Border[0 0 0]/Dest[1580 0 R/XYZ 0 231 0]>>endobj
-756 0 obj<</Subtype/Link/Rect[174.2 430.6 230.5 443.6]/Border[0 0 0]/Dest[1582 0 R/XYZ 0 560 0]>>endobj
-757 0 obj<</Subtype/Link/Rect[130.0 417.4 224.4 430.4]/Border[0 0 0]/Dest[1582 0 R/XYZ 0 409 0]>>endobj
-758 0 obj<</Subtype/Link/Rect[174.2 404.2 330.7 417.2]/Border[0 0 0]/Dest[1582 0 R/XYZ 0 294 0]>>endobj
-759 0 obj<</Subtype/Link/Rect[174.2 391.0 269.9 404.0]/Border[0 0 0]/Dest[1584 0 R/XYZ 0 734 0]>>endobj
-760 0 obj<</Subtype/Link/Rect[174.2 377.8 330.4 390.8]/Border[0 0 0]/Dest[1584 0 R/XYZ 0 292 0]>>endobj
-761 0 obj<</Subtype/Link/Rect[174.2 364.6 312.0 377.6]/Border[0 0 0]/Dest[1586 0 R/XYZ 0 665 0]>>endobj
-762 0 obj<</Subtype/Link/Rect[174.2 351.4 244.5 364.4]/Border[0 0 0]/Dest[1586 0 R/XYZ 0 488 0]>>endobj
-763 0 obj<</Subtype/Link/Rect[130.0 338.2 267.8 351.2]/Border[0 0 0]/Dest[1586 0 R/XYZ 0 351 0]>>endobj
-764 0 obj<</Subtype/Link/Rect[174.2 325.0 232.0 338.0]/Border[0 0 0]/Dest[1586 0 R/XYZ 0 209 0]>>endobj
-765 0 obj<</Subtype/Link/Rect[174.2 311.8 237.5 324.8]/Border[0 0 0]/Dest[1588 0 R/XYZ 0 599 0]>>endobj
-766 0 obj<</Subtype/Link/Rect[174.2 298.6 261.3 311.6]/Border[0 0 0]/Dest[1588 0 R/XYZ 0 330 0]>>endobj
-767 0 obj<</Subtype/Link/Rect[130.0 285.4 182.9 298.4]/Border[0 0 0]/Dest[1602 0 R/XYZ 0 296 0]>>endobj
-768 0 obj<</Subtype/Link/Rect[130.0 272.2 182.9 285.2]/Border[0 0 0]/Dest[1604 0 R/XYZ 0 734 0]>>endobj
-769 0 obj<</Subtype/Link/Rect[85.8 259.0 187.5 272.0]/Border[0 0 0]/Dest[1606 0 R/XYZ 0 734 0]>>endobj
-770 0 obj<</Subtype/Link/Rect[130.0 245.8 170.6 258.8]/Border[0 0 0]/Dest[1606 0 R/XYZ 0 696 0]>>endobj
-771 0 obj<</Subtype/Link/Rect[130.0 232.6 186.5 245.6]/Border[0 0 0]/Dest[1606 0 R/XYZ 0 595 0]>>endobj
-772 0 obj<</Subtype/Link/Rect[130.0 219.4 353.1 232.4]/Border[0 0 0]/Dest[1608 0 R/XYZ 0 568 0]>>endobj
-773 0 obj<</Subtype/Link/Rect[130.0 206.2 311.6 219.2]/Border[0 0 0]/Dest[1608 0 R/XYZ 0 414 0]>>endobj
-774 0 obj<</Subtype/Link/Rect[85.8 193.0 175.9 206.0]/Border[0 0 0]/Dest[1610 0 R/XYZ 0 734 0]>>endobj
-775 0 obj<</Subtype/Link/Rect[130.0 179.8 170.6 192.8]/Border[0 0 0]/Dest[1610 0 R/XYZ 0 696 0]>>endobj
-776 0 obj<</Subtype/Link/Rect[130.0 166.6 160.9 179.6]/Border[0 0 0]/Dest[1610 0 R/XYZ 0 608 0]>>endobj
-777 0 obj<</Subtype/Link/Rect[85.8 153.4 420.2 166.4]/Border[0 0 0]/Dest[1612 0 R/XYZ 0 734 0]>>endobj
-778 0 obj<</Subtype/Link/Rect[130.0 140.2 169.4 153.2]/Border[0 0 0]/Dest[1612 0 R/XYZ 0 672 0]>>endobj
-779 0 obj<</Subtype/Link/Rect[130.0 127.0 187.8 140.0]/Border[0 0 0]/Dest[1612 0 R/XYZ 0 412 0]>>endobj
-780 0 obj<</Subtype/Link/Rect[130.0 113.8 244.0 126.8]/Border[0 0 0]/Dest[1614 0 R/XYZ 0 573 0]>>endobj
-781 0 obj<</Subtype/Link/Rect[130.0 100.6 382.4 113.6]/Border[0 0 0]/Dest[1614 0 R/XYZ 0 471 0]>>endobj
-782 0 obj<</Subtype/Link/Rect[130.0 87.4 271.2 100.4]/Border[0 0 0]/Dest[1616 0 R/XYZ 0 734 0]>>endobj
-783 0 obj<</Subtype/Link/Rect[174.2 74.2 291.0 87.2]/Border[0 0 0]/Dest[1616 0 R/XYZ 0 700 0]>>endobj
-784 0 obj<</Subtype/Link/Rect[174.2 61.0 263.5 74.0]/Border[0 0 0]/Dest[1616 0 R/XYZ 0 143 0]>>endobj
-785 0 obj[734 0 R
-735 0 R
+706 0 R]endobj
+708 0 obj<</S/Launch/F(#DOMAINADMINGROUP)>>endobj
+709 0 obj<</Subtype/Link/Rect[494.2 641.8 530.0 654.8]/Border[0 0 0]/A 708 0 R>>endobj
+710 0 obj<</S/Launch/F(#DOMAINADMINGROUP)>>endobj
+711 0 obj<</Subtype/Link/Rect[72.0 628.6 127.9 641.6]/Border[0 0 0]/A 710 0 R>>endobj
+712 0 obj[709 0 R
+711 0 R]endobj
+713 0 obj<</S/Launch/F(smbpasswd.8.html)>>endobj
+714 0 obj<</Subtype/Link/Rect[72.0 551.8 138.6 564.8]/Border[0 0 0]/A 713 0 R>>endobj
+715 0 obj<</S/Launch/F(#ADDUSERSCRIPT)>>endobj
+716 0 obj<</Subtype/Link/Rect[420.0 263.3 486.9 276.3]/Border[0 0 0]/A 715 0 R>>endobj
+717 0 obj[714 0 R
+716 0 R]endobj
+718 0 obj<</S/URI/URI(http://www.microsoft.com/ntserver/management/deployment/planguide/prof_policies.asp)>>endobj
+719 0 obj<</Subtype/Link/Rect[139.8 135.8 387.6 148.8]/Border[0 0 0]/A 718 0 R>>endobj
+720 0 obj[719 0 R]endobj
+721 0 obj<</S/URI/URI(ftp://ftp.microsoft.com/Softlib/MSLFILES/NEXUS.EXE)>>endobj
+722 0 obj<</Subtype/Link/Rect[285.2 259.0 540.0 272.0]/Border[0 0 0]/A 721 0 R>>endobj
+723 0 obj<</S/URI/URI(ftp://ftp.microsoft.com/Softlib/MSLFILES/SRVTOOLS.EXE)>>endobj
+724 0 obj<</Subtype/Link/Rect[230.8 219.4 505.8 232.4]/Border[0 0 0]/A 723 0 R>>endobj
+725 0 obj[722 0 R
+724 0 R]endobj
+726 0 obj<</S/URI/URI(http://www.tcpdump.org/)>>endobj
+727 0 obj<</Subtype/Link/Rect[349.4 483.4 455.4 496.4]/Border[0 0 0]/A 726 0 R>>endobj
+728 0 obj<</S/URI/URI(http://www.ethereal.com/)>>endobj
+729 0 obj<</Subtype/Link/Rect[424.5 470.2 536.6 483.2]/Border[0 0 0]/A 728 0 R>>endobj
+730 0 obj[727 0 R
+729 0 R]endobj
+731 0 obj<</S/URI/URI(http://samba.org)>>endobj
+732 0 obj<</Subtype/Link/Rect[233.5 602.2 308.1 615.2]/Border[0 0 0]/A 731 0 R>>endobj
+733 0 obj<</S/URI/URI(http://www.skippy.net/linux/smb-howto.html)>>endobj
+734 0 obj<</Subtype/Link/Rect[144.0 549.4 346.1 562.4]/Border[0 0 0]/A 733 0 R>>endobj
+735 0 obj<</S/URI/URI(http://bioserve.latrobe.edu.au/samba)>>endobj
+736 0 obj<</Subtype/Link/Rect[179.7 523.0 342.3 536.0]/Border[0 0 0]/A 735 0 R>>endobj
+737 0 obj<</S/URI/URI(http://samba.org/cifs/)>>endobj
+738 0 obj<</Subtype/Link/Rect[282.1 509.8 378.7 522.8]/Border[0 0 0]/A 737 0 R>>endobj
+739 0 obj<</S/URI/URI(http://mailhost.cb1.com/~lkcl/ntdom/)>>endobj
+740 0 obj<</Subtype/Link/Rect[241.5 496.6 408.5 509.6]/Border[0 0 0]/A 739 0 R>>endobj
+741 0 obj<</S/URI/URI(ftp://ftp.microsoft.com/developr/drg/CIFS/)>>endobj
+742 0 obj<</Subtype/Link/Rect[277.5 483.4 469.1 496.4]/Border[0 0 0]/A 741 0 R>>endobj
+743 0 obj<</S/URI/URI(http://samba.org)>>endobj
+744 0 obj<</Subtype/Link/Rect[358.2 430.6 432.8 443.6]/Border[0 0 0]/A 743 0 R>>endobj
+745 0 obj<</S/URI/URI(http://www.samba-tng.org/)>>endobj
+746 0 obj<</Subtype/Link/Rect[298.4 391.0 422.8 404.0]/Border[0 0 0]/A 745 0 R>>endobj
+747 0 obj[732 0 R
+734 0 R
 736 0 R
-737 0 R
 738 0 R
-739 0 R
 740 0 R
-741 0 R
 742 0 R
-743 0 R
 744 0 R
-745 0 R
-746 0 R
-747 0 R
-748 0 R
-749 0 R
-750 0 R
-751 0 R
-752 0 R
-753 0 R
-754 0 R
-755 0 R
-756 0 R
-757 0 R
-758 0 R
+746 0 R]endobj
+748 0 obj<</S/URI/URI(http://lists.samba.org/)>>endobj
+749 0 obj<</Subtype/Link/Rect[132.8 615.4 227.8 628.4]/Border[0 0 0]/A 748 0 R>>endobj
+750 0 obj<</S/URI/URI(http://lists.samba.org/mailman/roster/samba-ntdom)>>endobj
+751 0 obj<</Subtype/Link/Rect[306.3 602.2 328.0 615.2]/Border[0 0 0]/A 750 0 R>>endobj
+752 0 obj[749 0 R
+751 0 R]endobj
+753 0 obj<</S/Launch/F(Samba-PDC-HOWTO.html)>>endobj
+754 0 obj<</Subtype/Link/Rect[210.4 613.0 317.8 626.0]/Border[0 0 0]/A 753 0 R>>endobj
+755 0 obj[754 0 R]endobj
+756 0 obj<</S/URI/URI(http://www.openldap.org/)>>endobj
+757 0 obj<</Subtype/Link/Rect[169.5 560.2 285.9 573.2]/Border[0 0 0]/A 756 0 R>>endobj
+758 0 obj<</S/URI/URI(http://iplanet.netscape.com/directory)>>endobj
+759 0 obj<</Subtype/Link/Rect[223.9 547.0 387.9 560.0]/Border[0 0 0]/A 758 0 R>>endobj
+760 0 obj<</S/URI/URI(http://www.ora.com/)>>endobj
+761 0 obj<</Subtype/Link/Rect[112.6 520.6 202.0 533.6]/Border[0 0 0]/A 760 0 R>>endobj
+762 0 obj<</S/URI/URI(http://www.unav.es/cti/ldap-smb/ldap-smb-2_2-howto.html)>>endobj
+763 0 obj<</Subtype/Link/Rect[125.1 454.6 267.5 467.6]/Border[0 0 0]/A 762 0 R>>endobj
+764 0 obj<</S/URI/URI(http://samba.idealx.org/)>>endobj
+765 0 obj<</Subtype/Link/Rect[243.7 441.4 287.3 454.4]/Border[0 0 0]/A 764 0 R>>endobj
+766 0 obj<</S/Launch/F(#ENCRYPTPASSWORDS)>>endobj
+767 0 obj<</Subtype/Link/Rect[212.8 366.2 332.5 379.2]/Border[0 0 0]/A 766 0 R>>endobj
+768 0 obj[757 0 R
 759 0 R
-760 0 R
 761 0 R
-762 0 R
 763 0 R
-764 0 R
 765 0 R
-766 0 R
-767 0 R
-768 0 R
-769 0 R
-770 0 R
-771 0 R
+767 0 R]endobj
+769 0 obj<</S/URI/URI(http://www.padl.com/)>>endobj
+770 0 obj<</Subtype/Link/Rect[284.3 602.2 380.9 615.2]/Border[0 0 0]/A 769 0 R>>endobj
+771 0 obj<</S/Launch/F(samba-patches@samba.org)>>endobj
+772 0 obj<</Subtype/Link/Rect[332.3 487.4 458.0 500.4]/Border[0 0 0]/A 771 0 R>>endobj
+773 0 obj<</S/Launch/F(jerry@samba.org)>>endobj
+774 0 obj<</Subtype/Link/Rect[476.6 487.4 555.8 500.4]/Border[0 0 0]/A 773 0 R>>endobj
+775 0 obj<</S/Launch/F(jerry@samba.org)>>endobj
+776 0 obj<</Subtype/Link/Rect[271.2 237.0 350.4 250.0]/Border[0 0 0]/A 775 0 R>>endobj
+777 0 obj[770 0 R
 772 0 R
-773 0 R
 774 0 R
-775 0 R
-776 0 R
-777 0 R
-778 0 R
-779 0 R
-780 0 R
-781 0 R
-782 0 R
-783 0 R
-784 0 R]endobj
-786 0 obj<</Subtype/Link/Rect[130.0 721.0 287.0 734.0]/Border[0 0 0]/Dest[1618 0 R/XYZ 0 243 0]>>endobj
-787 0 obj<</Subtype/Link/Rect[130.0 707.8 255.6 720.8]/Border[0 0 0]/Dest[1620 0 R/XYZ 0 718 0]>>endobj
-788 0 obj<</Subtype/Link/Rect[130.0 694.6 330.8 707.6]/Border[0 0 0]/Dest[1620 0 R/XYZ 0 336 0]>>endobj
-789 0 obj<</Subtype/Link/Rect[130.0 681.4 324.3 694.4]/Border[0 0 0]/Dest[1622 0 R/XYZ 0 322 0]>>endobj
-790 0 obj<</Subtype/Link/Rect[135.5 668.2 184.7 681.2]/Border[0 0 0]/Dest[1624 0 R/XYZ 0 492 0]>>endobj
-791 0 obj<</Subtype/Link/Rect[85.8 655.0 287.1 668.0]/Border[0 0 0]/Dest[1626 0 R/XYZ 0 734 0]>>endobj
-792 0 obj<</Subtype/Link/Rect[130.0 641.8 187.8 654.8]/Border[0 0 0]/Dest[1626 0 R/XYZ 0 672 0]>>endobj
-793 0 obj<</Subtype/Link/Rect[130.0 628.6 245.8 641.6]/Border[0 0 0]/Dest[1626 0 R/XYZ 0 557 0]>>endobj
-794 0 obj<</Subtype/Link/Rect[174.2 615.4 263.2 628.4]/Border[0 0 0]/Dest[1626 0 R/XYZ 0 469 0]>>endobj
-795 0 obj<</Subtype/Link/Rect[174.2 602.2 239.9 615.2]/Border[0 0 0]/Dest[1626 0 R/XYZ 0 358 0]>>endobj
-796 0 obj<</Subtype/Link/Rect[85.8 589.0 200.3 602.0]/Border[0 0 0]/Dest[1630 0 R/XYZ 0 734 0]>>endobj
-797 0 obj<</Subtype/Link/Rect[85.8 575.8 206.4 588.8]/Border[0 0 0]/Dest[1632 0 R/XYZ 0 734 0]>>endobj
-798 0 obj<</Subtype/Link/Rect[130.0 562.6 191.4 575.6]/Border[0 0 0]/Dest[1632 0 R/XYZ 0 696 0]>>endobj
-799 0 obj<</Subtype/Link/Rect[130.0 549.4 168.8 562.4]/Border[0 0 0]/Dest[1632 0 R/XYZ 0 449 0]>>endobj
-800 0 obj<</Subtype/Link/Rect[174.2 536.2 219.2 549.2]/Border[0 0 0]/Dest[1632 0 R/XYZ 0 416 0]>>endobj
-801 0 obj<</Subtype/Link/Rect[174.2 523.0 245.1 536.0]/Border[0 0 0]/Dest[1632 0 R/XYZ 0 146 0]>>endobj
-802 0 obj<</Subtype/Link/Rect[174.2 509.8 348.3 522.8]/Border[0 0 0]/Dest[1634 0 R/XYZ 0 652 0]>>endobj
-803 0 obj<</Subtype/Link/Rect[130.0 496.6 196.6 509.6]/Border[0 0 0]/Dest[1634 0 R/XYZ 0 515 0]>>endobj
-804 0 obj<</Subtype/Link/Rect[130.0 483.4 174.6 496.4]/Border[0 0 0]/Dest[1634 0 R/XYZ 0 255 0]>>endobj
-805 0 obj<</Subtype/Link/Rect[130.0 470.2 174.0 483.2]/Border[0 0 0]/Dest[1636 0 R/XYZ 0 718 0]>>endobj
-806 0 obj<</Subtype/Link/Rect[130.0 457.0 168.2 470.0]/Border[0 0 0]/Dest[1636 0 R/XYZ 0 537 0]>>endobj
-807 0 obj<</Subtype/Link/Rect[130.0 443.8 189.3 456.8]/Border[0 0 0]/Dest[1636 0 R/XYZ 0 409 0]>>endobj
-808 0 obj<</Subtype/Link/Rect[130.0 430.6 173.4 443.6]/Border[0 0 0]/Dest[1636 0 R/XYZ 0 189 0]>>endobj
-809 0 obj<</Subtype/Link/Rect[130.0 417.4 178.9 430.4]/Border[0 0 0]/Dest[1638 0 R/XYZ 0 734 0]>>endobj
-810 0 obj<</Subtype/Link/Rect[135.5 404.2 180.7 417.2]/Border[0 0 0]/Dest[1638 0 R/XYZ 0 645 0]>>endobj
-811 0 obj<</Subtype/Link/Rect[135.5 391.0 182.6 404.0]/Border[0 0 0]/Dest[1638 0 R/XYZ 0 477 0]>>endobj
-812 0 obj<</Subtype/Link/Rect[135.5 377.8 208.8 390.8]/Border[0 0 0]/Dest[1638 0 R/XYZ 0 349 0]>>endobj
-813 0 obj<</Subtype/Link/Rect[135.5 364.6 216.2 377.6]/Border[0 0 0]/Dest[1638 0 R/XYZ 0 129 0]>>endobj
-814 0 obj<</Subtype/Link/Rect[135.5 351.4 193.6 364.4]/Border[0 0 0]/Dest[1640 0 R/XYZ 0 639 0]>>endobj
-815 0 obj<</Subtype/Link/Rect[135.5 338.2 192.3 351.2]/Border[0 0 0]/Dest[1640 0 R/XYZ 0 511 0]>>endobj
-816 0 obj<</Subtype/Link/Rect[135.5 325.0 196.0 338.0]/Border[0 0 0]/Dest[1640 0 R/XYZ 0 436 0]>>endobj
-817 0 obj<</Subtype/Link/Rect[135.5 311.8 186.8 324.8]/Border[0 0 0]/Dest[1642 0 R/XYZ 0 388 0]>>endobj
-818 0 obj[786 0 R
-787 0 R
+776 0 R]endobj
+778 0 obj<</S/Launch/F(#LDAPSSL)>>endobj
+779 0 obj<</Subtype/Link/Rect[108.0 61.4 141.3 74.4]/Border[0 0 0]/A 778 0 R>>endobj
+780 0 obj[779 0 R]endobj
+781 0 obj<</S/Launch/F(#LDAPSERVER)>>endobj
+782 0 obj<</Subtype/Link/Rect[108.0 721.0 156.6 734.0]/Border[0 0 0]/A 781 0 R>>endobj
+783 0 obj<</S/Launch/F(#LDAPADMINDN)>>endobj
+784 0 obj<</Subtype/Link/Rect[108.0 707.8 170.9 720.8]/Border[0 0 0]/A 783 0 R>>endobj
+785 0 obj<</S/Launch/F(#LDAPSUFFIX)>>endobj
+786 0 obj<</Subtype/Link/Rect[108.0 694.6 155.4 707.6]/Border[0 0 0]/A 785 0 R>>endobj
+787 0 obj<</S/Launch/F(#LDAPFILTER)>>endobj
+788 0 obj<</Subtype/Link/Rect[108.0 681.4 151.1 694.4]/Border[0 0 0]/A 787 0 R>>endobj
+789 0 obj<</S/Launch/F(#LDAPPORT)>>endobj
+790 0 obj<</Subtype/Link/Rect[108.0 668.2 147.4 681.2]/Border[0 0 0]/A 789 0 R>>endobj
+791 0 obj<</S/Launch/F(smb.conf.5.html)>>endobj
+792 0 obj<</Subtype/Link/Rect[186.9 641.8 243.1 654.8]/Border[0 0 0]/A 791 0 R>>endobj
+793 0 obj[782 0 R
+784 0 R
+786 0 R
 788 0 R
-789 0 R
 790 0 R
-791 0 R
-792 0 R
-793 0 R
-794 0 R
-795 0 R
-796 0 R
-797 0 R
-798 0 R
-799 0 R
-800 0 R
-801 0 R
-802 0 R
-803 0 R
-804 0 R
-805 0 R
+792 0 R]endobj
+794 0 obj<</S/Launch/F(ENCRYPTION.html)>>endobj
+795 0 obj<</Subtype/Link/Rect[72.0 566.6 176.8 579.6]/Border[0 0 0]/A 794 0 R>>endobj
+796 0 obj[795 0 R]endobj
+797 0 obj<</S/Launch/F(Samba-PDC-HOWTO.html)>>endobj
+798 0 obj<</Subtype/Link/Rect[72.0 523.0 176.7 536.0]/Border[0 0 0]/A 797 0 R>>endobj
+799 0 obj[798 0 R]endobj
+800 0 obj<</S/URI/URI(mailto:jerry@samba.org)>>endobj
+801 0 obj<</Subtype/Link/Rect[302.7 445.4 381.8 458.4]/Border[0 0 0]/A 800 0 R>>endobj
+802 0 obj[801 0 R]endobj
+803 0 obj<</S/URI/URI(http://www.thursby.com/)>>endobj
+804 0 obj<</Subtype/Link/Rect[91.9 621.8 131.3 634.8]/Border[0 0 0]/A 803 0 R>>endobj
+805 0 obj<</S/URI/URI(http://www.umich.edu/~rsug/netatalk/)>>endobj
+806 0 obj<</Subtype/Link/Rect[72.0 503.0 109.3 516.0]/Border[0 0 0]/A 805 0 R>>endobj
+807 0 obj<</S/URI/URI(http://www.cs.mu.oz.au/appletalk/atalk.html)>>endobj
+808 0 obj<</Subtype/Link/Rect[130.7 503.0 154.8 516.0]/Border[0 0 0]/A 807 0 R>>endobj
+809 0 obj<</S/URI/URI(http://www.eats.com/linux_mac_win.html)>>endobj
+810 0 obj<</Subtype/Link/Rect[72.0 476.6 258.1 489.6]/Border[0 0 0]/A 809 0 R>>endobj
+811 0 obj<</S/URI/URI(http://carol.wins.uva.nl/~leeuw/samba/warp.html)>>endobj
+812 0 obj<</Subtype/Link/Rect[325.6 367.8 544.5 380.8]/Border[0 0 0]/A 811 0 R>>endobj
+813 0 obj[804 0 R
 806 0 R
-807 0 R
 808 0 R
-809 0 R
 810 0 R
-811 0 R
-812 0 R
-813 0 R
-814 0 R
-815 0 R
-816 0 R
-817 0 R]endobj
-819 0 obj<</S/Launch/F(ENCRYPTION.html)>>endobj
-820 0 obj<</Subtype/Link/Rect[174.0 562.6 270.6 575.6]/Border[0 0 0]/A 819 0 R>>endobj
-821 0 obj<</S/Launch/F(#PASSWORDLEVEL)>>endobj
-822 0 obj<</Subtype/Link/Rect[72.0 300.6 153.0 311.6]/Border[0 0 0]/A 821 0 R>>endobj
-823 0 obj<</S/Launch/F(#USERNAMELEVEL)>>endobj
-824 0 obj<</Subtype/Link/Rect[72.0 289.8 147.6 300.8]/Border[0 0 0]/A 823 0 R>>endobj
-825 0 obj[820 0 R
-822 0 R
-824 0 R]endobj
-826 0 obj<</S/Launch/F(winbind.html)>>endobj
-827 0 obj<</Subtype/Link/Rect[503.4 161.0 544.6 174.0]/Border[0 0 0]/A 826 0 R>>endobj
-828 0 obj<</S/Launch/F(winbind.html)>>endobj
-829 0 obj<</Subtype/Link/Rect[72.0 147.8 115.4 160.8]/Border[0 0 0]/A 828 0 R>>endobj
-830 0 obj[827 0 R
-829 0 R]endobj
-831 0 obj<</S/Launch/F(#NTACLSUPPORT)>>endobj
-832 0 obj<</Subtype/Link/Rect[339.9 526.6 438.9 539.6]/Border[0 0 0]/A 831 0 R>>endobj
-833 0 obj[832 0 R]endobj
-834 0 obj<</S/Launch/F(#SECURITYMASK)>>endobj
-835 0 obj<</Subtype/Link/Rect[493.0 707.8 545.8 720.8]/Border[0 0 0]/A 834 0 R>>endobj
-836 0 obj<</S/Launch/F(#SECURITYMASK)>>endobj
-837 0 obj<</Subtype/Link/Rect[72.0 694.6 98.4 707.6]/Border[0 0 0]/A 836 0 R>>endobj
-838 0 obj<</S/Launch/F(#CREATEMASK)>>endobj
-839 0 obj<</Subtype/Link/Rect[356.1 615.4 428.7 628.4]/Border[0 0 0]/A 838 0 R>>endobj
-840 0 obj<</S/Launch/F(#FORCESECURITYMODE)>>endobj
-841 0 obj<</Subtype/Link/Rect[424.3 562.6 549.7 575.6]/Border[0 0 0]/A 840 0 R>>endobj
-842 0 obj<</S/Launch/F(#FORCECREATEMODE)>>endobj
-843 0 obj<</Subtype/Link/Rect[356.1 483.4 468.3 496.4]/Border[0 0 0]/A 842 0 R>>endobj
-844 0 obj<</S/Launch/F(smb.conf.5.html)>>endobj
-845 0 obj<</Subtype/Link/Rect[72.0 206.2 144.6 219.2]/Border[0 0 0]/A 844 0 R>>endobj
-846 0 obj[835 0 R
-837 0 R
-839 0 R
-841 0 R
-843 0 R
-845 0 R]endobj
-847 0 obj<</S/URI/URI(http://rsync.samba.org/)>>endobj
-848 0 obj<</Subtype/Link/Rect[118.1 89.0 222.3 102.0]/Border[0 0 0]/A 847 0 R>>endobj
-849 0 obj[848 0 R]endobj
-850 0 obj<</S/Launch/F(#OBEYPAMRESTRICTIONS)>>endobj
-851 0 obj<</Subtype/Link/Rect[235.4 659.0 332.9 672.0]/Border[0 0 0]/A 850 0 R>>endobj
-852 0 obj<</S/Launch/F(#ENCRYPTPASSWORDS)>>endobj
-853 0 obj<</Subtype/Link/Rect[338.7 579.8 449.4 592.8]/Border[0 0 0]/A 852 0 R>>endobj
-854 0 obj[851 0 R
-853 0 R]endobj
-855 0 obj<</S/URI/URI(http://www.microsoft.com/NTServer/nts/downloads/winfeatures/NTSDistrFile/AdminGuide.asp)>>endobj
-856 0 obj<</Subtype/Link/Rect[72.0 586.6 183.5 599.6]/Border[0 0 0]/A 855 0 R>>endobj
-857 0 obj<</S/Launch/F(#HOSTMSDFS)>>endobj
-858 0 obj<</Subtype/Link/Rect[345.1 507.4 417.7 520.4]/Border[0 0 0]/A 857 0 R>>endobj
-859 0 obj<</S/Launch/F(#MSDFSROOT)>>endobj
-860 0 obj<</Subtype/Link/Rect[380.8 494.2 453.4 507.2]/Border[0 0 0]/A 859 0 R>>endobj
-861 0 obj[856 0 R
-858 0 R
-860 0 R]endobj
-862 0 obj<</S/URI/URI(http://imprints.sourceforge.net)>>endobj
-863 0 obj<</Subtype/Link/Rect[143.7 544.6 280.3 557.6]/Border[0 0 0]/A 862 0 R>>endobj
-864 0 obj<</S/URI/URI(http://msdn.microsoft.com/)>>endobj
-865 0 obj<</Subtype/Link/Rect[218.6 518.2 341.1 531.2]/Border[0 0 0]/A 864 0 R>>endobj
-866 0 obj<</S/URI/URI(http://support.microsoft.com/support/kb/articles/Q189/1/05.ASP)>>endobj
-867 0 obj<</Subtype/Link/Rect[72.0 333.4 355.9 346.4]/Border[0 0 0]/A 866 0 R>>endobj
-868 0 obj[863 0 R
-865 0 R
-867 0 R]endobj
-869 0 obj<</S/Launch/F(#WRITELIST)>>endobj
-870 0 obj<</Subtype/Link/Rect[91.9 471.4 157.9 484.4]/Border[0 0 0]/A 869 0 R>>endobj
-871 0 obj<</S/Launch/F(smb.conf.5.html)>>endobj
-872 0 obj<</Subtype/Link/Rect[184.4 458.2 285.8 471.2]/Border[0 0 0]/A 871 0 R>>endobj
-873 0 obj<</S/Launch/F(#GUESTOK)>>endobj
-874 0 obj<</Subtype/Link/Rect[160.6 431.8 228.6 444.8]/Border[0 0 0]/A 873 0 R>>endobj
-875 0 obj<</S/Launch/F(#MAPTOGUEST)>>endobj
-876 0 obj<</Subtype/Link/Rect[501.3 321.9 536.7 334.9]/Border[0 0 0]/A 875 0 R>>endobj
-877 0 obj<</S/Launch/F(#MAPTOGUEST)>>endobj
-878 0 obj<</Subtype/Link/Rect[94.2 308.7 174.1 321.7]/Border[0 0 0]/A 877 0 R>>endobj
-879 0 obj[870 0 R
-872 0 R
-874 0 R
-876 0 R
-878 0 R]endobj
-880 0 obj<</S/Launch/F(#PRINTERADMIN)>>endobj
-881 0 obj<</Subtype/Link/Rect[451.3 719.6 497.5 732.6]/Border[0 0 0]/A 880 0 R>>endobj
-882 0 obj<</S/Launch/F(#PRINTERADMIN)>>endobj
-883 0 obj<</Subtype/Link/Rect[130.2 706.4 163.2 719.4]/Border[0 0 0]/A 882 0 R>>endobj
-884 0 obj<</S/Launch/F(rpcclient.1.html)>>endobj
-885 0 obj<</Subtype/Link/Rect[233.6 86.5 379.3 99.5]/Border[0 0 0]/A 884 0 R>>endobj
-886 0 obj[881 0 R
-883 0 R
-885 0 R]endobj
-887 0 obj<</S/Launch/F(#SHOWADDPRINTERWIZARD)>>endobj
-888 0 obj<</Subtype/Link/Rect[108.0 350.6 299.4 363.6]/Border[0 0 0]/A 887 0 R>>endobj
-889 0 obj<</S/Launch/F(#ADDPRINTERCOMMAND)>>endobj
-890 0 obj<</Subtype/Link/Rect[453.9 324.2 526.5 337.2]/Border[0 0 0]/A 889 0 R>>endobj
-891 0 obj<</S/Launch/F(#ADDPRINTERCOMMAND)>>endobj
-892 0 obj<</Subtype/Link/Rect[72.0 311.0 118.2 324.0]/Border[0 0 0]/A 891 0 R>>endobj
-893 0 obj<</S/Launch/F(#DELETEPRINTERCOMMAND)>>endobj
-894 0 obj<</Subtype/Link/Rect[189.3 205.4 334.5 218.4]/Border[0 0 0]/A 893 0 R>>endobj
-895 0 obj<</S/Launch/F(#ADDPRINTERCOMMAN)>>endobj
-896 0 obj<</Subtype/Link/Rect[200.6 179.0 326.0 192.0]/Border[0 0 0]/A 895 0 R>>endobj
-897 0 obj[888 0 R
-890 0 R
-892 0 R
-894 0 R
-896 0 R]endobj
-898 0 obj<</S/Launch/F(#ENUMPORTSCOMMAND)>>endobj
-899 0 obj<</Subtype/Link/Rect[451.4 138.2 510.8 151.2]/Border[0 0 0]/A 898 0 R>>endobj
-900 0 obj<</S/Launch/F(#ENUMPORTSCOMMAND)>>endobj
-901 0 obj<</Subtype/Link/Rect[72.0 125.0 118.2 138.0]/Border[0 0 0]/A 900 0 R>>endobj
-902 0 obj[899 0 R
-901 0 R]endobj
-903 0 obj<</S/URI/URI(http://imprints.sourceforge.net/)>>endobj
-904 0 obj<</Subtype/Link/Rect[297.8 674.2 437.4 687.2]/Border[0 0 0]/A 903 0 R>>endobj
-905 0 obj[904 0 R]endobj
-906 0 obj<</S/Launch/F(#SECURITY)>>endobj
-907 0 obj<</Subtype/Link/Rect[72.0 615.0 115.2 626.0]/Border[0 0 0]/A 906 0 R>>endobj
-908 0 obj<</S/Launch/F(DOMAIN_MEMBER.html)>>endobj
-909 0 obj<</Subtype/Link/Rect[430.0 589.0 554.1 602.0]/Border[0 0 0]/A 908 0 R>>endobj
-910 0 obj<</S/Launch/F(ADS-HOWTO.html)>>endobj
-911 0 obj<</Subtype/Link/Rect[223.0 562.6 317.8 575.6]/Border[0 0 0]/A 910 0 R>>endobj
-912 0 obj[907 0 R
-909 0 R
-911 0 R]endobj
-913 0 obj<</S/URI/URI(mailto:jtrostel@snapserver.com)>>endobj
-914 0 obj<</Subtype/Link/Rect[197.9 304.6 310.1 317.6]/Border[0 0 0]/A 913 0 R>>endobj
-915 0 obj[914 0 R]endobj
-916 0 obj<</S/URI/URI(http://samba.org/)>>endobj
-917 0 obj<</Subtype/Link/Rect[151.1 438.2 262.3 451.2]/Border[0 0 0]/A 916 0 R>>endobj
-918 0 obj[917 0 R]endobj
-919 0 obj<</S/Launch/F(winbindd.8.html)>>endobj
-920 0 obj<</Subtype/Link/Rect[306.3 235.8 363.4 248.8]/Border[0 0 0]/A 919 0 R>>endobj
-921 0 obj<</S/Launch/F(#WINBINDSEPARATOR)>>endobj
-922 0 obj<</Subtype/Link/Rect[99.0 165.8 190.8 176.8]/Border[0 0 0]/A 921 0 R>>endobj
-923 0 obj<</S/Launch/F(#WINBINDUID)>>endobj
-924 0 obj<</Subtype/Link/Rect[99.0 144.2 158.4 155.2]/Border[0 0 0]/A 923 0 R>>endobj
-925 0 obj<</S/Launch/F(#WINBINDGID)>>endobj
-926 0 obj<</Subtype/Link/Rect[99.0 122.6 158.4 133.6]/Border[0 0 0]/A 925 0 R>>endobj
-927 0 obj<</S/Launch/F(#WINBINDENUMUSERS)>>endobj
-928 0 obj<</Subtype/Link/Rect[99.0 101.0 196.2 112.0]/Border[0 0 0]/A 927 0 R>>endobj
-929 0 obj<</S/Launch/F(#WINBINDENUMGROUP)>>endobj
-930 0 obj<</Subtype/Link/Rect[99.0 90.2 201.6 101.2]/Border[0 0 0]/A 929 0 R>>endobj
-931 0 obj<</S/Launch/F(#TEMPLATEHOMEDIR)>>endobj
-932 0 obj<</Subtype/Link/Rect[99.0 68.6 185.4 79.6]/Border[0 0 0]/A 931 0 R>>endobj
-933 0 obj<</S/Launch/F(#TEMPLATESHELL)>>endobj
-934 0 obj<</Subtype/Link/Rect[99.0 57.8 174.6 68.8]/Border[0 0 0]/A 933 0 R>>endobj
-935 0 obj[920 0 R
-922 0 R
-924 0 R
-926 0 R
-928 0 R
-930 0 R
-932 0 R
-934 0 R]endobj
-936 0 obj<</S/URI/URI(http://www.openldap.org/)>>endobj
-937 0 obj<</Subtype/Link/Rect[169.5 560.2 285.9 573.2]/Border[0 0 0]/A 936 0 R>>endobj
-938 0 obj<</S/URI/URI(http://iplanet.netscape.com/directory)>>endobj
-939 0 obj<</Subtype/Link/Rect[223.9 547.0 387.9 560.0]/Border[0 0 0]/A 938 0 R>>endobj
-940 0 obj<</S/URI/URI(http://www.ora.com/)>>endobj
-941 0 obj<</Subtype/Link/Rect[112.6 520.6 202.0 533.6]/Border[0 0 0]/A 940 0 R>>endobj
-942 0 obj<</S/URI/URI(http://www.unav.es/cti/ldap-smb/ldap-smb-2_2-howto.html)>>endobj
-943 0 obj<</Subtype/Link/Rect[125.1 454.6 267.5 467.6]/Border[0 0 0]/A 942 0 R>>endobj
-944 0 obj<</S/URI/URI(http://samba.idealx.org/)>>endobj
-945 0 obj<</Subtype/Link/Rect[243.7 441.4 287.3 454.4]/Border[0 0 0]/A 944 0 R>>endobj
-946 0 obj<</S/Launch/F(#ENCRYPTPASSWORDS)>>endobj
-947 0 obj<</Subtype/Link/Rect[212.8 366.2 332.5 379.2]/Border[0 0 0]/A 946 0 R>>endobj
-948 0 obj[937 0 R
-939 0 R
-941 0 R
-943 0 R
-945 0 R
-947 0 R]endobj
-949 0 obj<</S/URI/URI(http://www.padl.com/)>>endobj
-950 0 obj<</Subtype/Link/Rect[284.3 602.2 380.9 615.2]/Border[0 0 0]/A 949 0 R>>endobj
-951 0 obj<</S/Launch/F(samba-patches@samba.org)>>endobj
-952 0 obj<</Subtype/Link/Rect[332.3 487.4 458.0 500.4]/Border[0 0 0]/A 951 0 R>>endobj
-953 0 obj<</S/Launch/F(jerry@samba.org)>>endobj
-954 0 obj<</Subtype/Link/Rect[476.6 487.4 555.8 500.4]/Border[0 0 0]/A 953 0 R>>endobj
-955 0 obj<</S/Launch/F(jerry@samba.org)>>endobj
-956 0 obj<</Subtype/Link/Rect[271.2 237.0 350.4 250.0]/Border[0 0 0]/A 955 0 R>>endobj
-957 0 obj[950 0 R
-952 0 R
-954 0 R
-956 0 R]endobj
-958 0 obj<</S/Launch/F(#LDAPSSL)>>endobj
-959 0 obj<</Subtype/Link/Rect[108.0 61.4 141.3 74.4]/Border[0 0 0]/A 958 0 R>>endobj
-960 0 obj[959 0 R]endobj
-961 0 obj<</S/Launch/F(#LDAPSERVER)>>endobj
-962 0 obj<</Subtype/Link/Rect[108.0 721.0 156.6 734.0]/Border[0 0 0]/A 961 0 R>>endobj
-963 0 obj<</S/Launch/F(#LDAPADMINDN)>>endobj
-964 0 obj<</Subtype/Link/Rect[108.0 707.8 170.9 720.8]/Border[0 0 0]/A 963 0 R>>endobj
-965 0 obj<</S/Launch/F(#LDAPSUFFIX)>>endobj
-966 0 obj<</Subtype/Link/Rect[108.0 694.6 155.4 707.6]/Border[0 0 0]/A 965 0 R>>endobj
-967 0 obj<</S/Launch/F(#LDAPFILTER)>>endobj
-968 0 obj<</Subtype/Link/Rect[108.0 681.4 151.1 694.4]/Border[0 0 0]/A 967 0 R>>endobj
-969 0 obj<</S/Launch/F(#LDAPPORT)>>endobj
-970 0 obj<</Subtype/Link/Rect[108.0 668.2 147.4 681.2]/Border[0 0 0]/A 969 0 R>>endobj
-971 0 obj<</S/Launch/F(smb.conf.5.html)>>endobj
-972 0 obj<</Subtype/Link/Rect[186.9 641.8 243.1 654.8]/Border[0 0 0]/A 971 0 R>>endobj
-973 0 obj[962 0 R
-964 0 R
-966 0 R
-968 0 R
-970 0 R
-972 0 R]endobj
-974 0 obj<</S/Launch/F(ENCRYPTION.html)>>endobj
-975 0 obj<</Subtype/Link/Rect[72.0 566.6 176.8 579.6]/Border[0 0 0]/A 974 0 R>>endobj
-976 0 obj[975 0 R]endobj
-977 0 obj<</S/Launch/F(Samba-PDC-HOWTO.html)>>endobj
-978 0 obj<</Subtype/Link/Rect[72.0 523.0 176.7 536.0]/Border[0 0 0]/A 977 0 R>>endobj
-979 0 obj[978 0 R]endobj
-980 0 obj<</S/URI/URI(mailto:jerry@samba.org)>>endobj
-981 0 obj<</Subtype/Link/Rect[302.7 445.4 381.8 458.4]/Border[0 0 0]/A 980 0 R>>endobj
-982 0 obj[981 0 R]endobj
-983 0 obj<</S/URI/URI(http://samba.org/samba/cvs.html)>>endobj
-984 0 obj<</Subtype/Link/Rect[354.3 573.4 500.7 586.4]/Border[0 0 0]/A 983 0 R>>endobj
-985 0 obj<</S/URI/URI(http://samba.org/cgi-bin/cvsweb)>>endobj
-986 0 obj<</Subtype/Link/Rect[135.9 373.8 283.2 386.8]/Border[0 0 0]/A 985 0 R>>endobj
-987 0 obj<</S/URI/URI(http://www.cyclic.com/)>>endobj
-988 0 obj<</Subtype/Link/Rect[391.6 262.6 498.2 275.6]/Border[0 0 0]/A 987 0 R>>endobj
-989 0 obj[984 0 R
-986 0 R
-988 0 R]endobj
-990 0 obj<</Subtype/Link/Rect[85.8 670.6 136.2 683.6]/Border[0 0 0]/Dest[1646 0 R/XYZ 0 734 0]>>endobj
-991 0 obj<</Subtype/Link/Rect[130.0 657.4 162.1 670.4]/Border[0 0 0]/Dest[1646 0 R/XYZ 0 655 0]>>endobj
-992 0 obj<</Subtype/Link/Rect[130.0 644.2 177.7 657.2]/Border[0 0 0]/Dest[1646 0 R/XYZ 0 408 0]>>endobj
-993 0 obj<</Subtype/Link/Rect[130.0 631.0 158.4 644.0]/Border[0 0 0]/Dest[1646 0 R/XYZ 0 293 0]>>endobj
-994 0 obj<</Subtype/Link/Rect[130.0 617.8 260.5 630.8]/Border[0 0 0]/Dest[1648 0 R/XYZ 0 228 0]>>endobj
-995 0 obj<</Subtype/Link/Rect[85.8 604.6 221.1 617.6]/Border[0 0 0]/Dest[1650 0 R/XYZ 0 734 0]>>endobj
-996 0 obj<</Subtype/Link/Rect[130.0 591.4 216.2 604.4]/Border[0 0 0]/Dest[1650 0 R/XYZ 0 668 0]>>endobj
-997 0 obj<</Subtype/Link/Rect[130.0 578.2 181.3 591.2]/Border[0 0 0]/Dest[1650 0 R/XYZ 0 461 0]>>endobj
-998 0 obj<</Subtype/Link/Rect[174.2 565.0 533.6 578.0]/Border[0 0 0]/Dest[1650 0 R/XYZ 0 427 0]>>endobj
-999 0 obj<</Subtype/Link/Rect[174.2 551.8 536.9 564.8]/Border[0 0 0]/Dest[1652 0 R/XYZ 0 734 0]>>endobj
-1000 0 obj<</Subtype/Link/Rect[174.2 538.6 490.2 551.6]/Border[0 0 0]/Dest[1652 0 R/XYZ 0 523 0]>>endobj
-1001 0 obj<</Subtype/Link/Rect[174.2 525.4 459.3 538.4]/Border[0 0 0]/Dest[1652 0 R/XYZ 0 408 0]>>endobj
-1002 0 obj<</Subtype/Link/Rect[130.0 512.2 245.8 525.2]/Border[0 0 0]/Dest[1652 0 R/XYZ 0 151 0]>>endobj
-1003 0 obj<</Subtype/Link/Rect[174.2 499.0 351.5 512.0]/Border[0 0 0]/Dest[1652 0 R/XYZ 0 118 0]>>endobj
-1004 0 obj<</Subtype/Link/Rect[174.2 485.8 351.2 498.8]/Border[0 0 0]/Dest[1654 0 R/XYZ 0 626 0]>>endobj
-1005 0 obj<</Subtype/Link/Rect[174.2 472.6 332.5 485.6]/Border[0 0 0]/Dest[1654 0 R/XYZ 0 475 0]>>endobj
-1006 0 obj<</Subtype/Link/Rect[174.2 459.4 301.4 472.4]/Border[0 0 0]/Dest[1654 0 R/XYZ 0 377 0]>>endobj
-1007 0 obj<</Subtype/Link/Rect[130.0 446.2 205.6 459.2]/Border[0 0 0]/Dest[1654 0 R/XYZ 0 292 0]>>endobj
-1008 0 obj<</Subtype/Link/Rect[130.0 433.0 265.9 446.0]/Border[0 0 0]/Dest[1656 0 R/XYZ 0 718 0]>>endobj
-1009 0 obj<</Subtype/Link/Rect[85.8 419.8 157.2 432.8]/Border[0 0 0]/Dest[1658 0 R/XYZ 0 734 0]>>endobj
-1010 0 obj<</Subtype/Link/Rect[130.0 406.6 187.8 419.6]/Border[0 0 0]/Dest[1658 0 R/XYZ 0 696 0]>>endobj
-1011 0 obj<</Subtype/Link/Rect[130.0 393.4 188.7 406.4]/Border[0 0 0]/Dest[1658 0 R/XYZ 0 423 0]>>endobj
-1012 0 obj<</Subtype/Link/Rect[130.0 380.2 189.9 393.2]/Border[0 0 0]/Dest[1658 0 R/XYZ 0 282 0]>>endobj
-1013 0 obj<</Subtype/Link/Rect[130.0 367.0 198.4 380.0]/Border[0 0 0]/Dest[1660 0 R/XYZ 0 613 0]>>endobj
-1014 0 obj<</Subtype/Link/Rect[130.0 353.8 269.0 366.8]/Border[0 0 0]/Dest[1660 0 R/XYZ 0 260 0]>>endobj
-1015 0 obj<</Subtype/Link/Rect[130.0 340.6 167.6 353.6]/Border[0 0 0]/Dest[1660 0 R/XYZ 0 159 0]>>endobj
-1016 0 obj<</Subtype/Link/Rect[85.8 327.4 224.5 340.4]/Border[0 0 0]/Dest[1662 0 R/XYZ 0 734 0]>>endobj
-1017 0 obj<</Subtype/Link/Rect[130.0 314.2 187.8 327.2]/Border[0 0 0]/Dest[1662 0 R/XYZ 0 696 0]>>endobj
-1018 0 obj<</Subtype/Link/Rect[130.0 301.0 188.4 314.0]/Border[0 0 0]/Dest[1662 0 R/XYZ 0 529 0]>>endobj
-1019 0 obj<</Subtype/Link/Rect[130.0 287.8 155.4 300.8]/Border[0 0 0]/Dest[1662 0 R/XYZ 0 199 0]>>endobj
-1020 0 obj<</Subtype/Link/Rect[174.2 274.6 203.6 287.6]/Border[0 0 0]/Dest[1662 0 R/XYZ 0 165 0]>>endobj
-1021 0 obj<</Subtype/Link/Rect[174.2 261.4 203.6 274.4]/Border[0 0 0]/Dest[1664 0 R/XYZ 0 734 0]>>endobj
-1022 0 obj<</Subtype/Link/Rect[174.2 248.2 203.6 261.2]/Border[0 0 0]/Dest[1664 0 R/XYZ 0 530 0]>>endobj
-1023 0 obj<</Subtype/Link/Rect[174.2 235.0 203.6 248.0]/Border[0 0 0]/Dest[1666 0 R/XYZ 0 626 0]>>endobj
-1024 0 obj<</Subtype/Link/Rect[174.2 221.8 203.6 234.8]/Border[0 0 0]/Dest[1666 0 R/XYZ 0 475 0]>>endobj
-1025 0 obj<</Subtype/Link/Rect[174.2 208.6 203.6 221.6]/Border[0 0 0]/Dest[1666 0 R/XYZ 0 351 0]>>endobj
-1026 0 obj<</Subtype/Link/Rect[174.2 195.4 203.6 208.4]/Border[0 0 0]/Dest[1668 0 R/XYZ 0 734 0]>>endobj
-1027 0 obj<</Subtype/Link/Rect[174.2 182.2 203.6 195.2]/Border[0 0 0]/Dest[1668 0 R/XYZ 0 371 0]>>endobj
-1028 0 obj<</Subtype/Link/Rect[174.2 169.0 203.6 182.0]/Border[0 0 0]/Dest[1670 0 R/XYZ 0 705 0]>>endobj
-1029 0 obj<</Subtype/Link/Rect[179.8 155.8 214.6 168.8]/Border[0 0 0]/Dest[1670 0 R/XYZ 0 515 0]>>endobj
-1030 0 obj<</Subtype/Link/Rect[179.8 142.6 214.6 155.6]/Border[0 0 0]/Dest[1670 0 R/XYZ 0 377 0]>>endobj
-1031 0 obj<</Subtype/Link/Rect[130.0 129.4 227.5 142.4]/Border[0 0 0]/Dest[1670 0 R/XYZ 0 239 0]>>endobj
-1032 0 obj[990 0 R
-991 0 R
-992 0 R
-993 0 R
-994 0 R
-995 0 R
-996 0 R
-997 0 R
-998 0 R
-999 0 R
-1000 0 R
-1001 0 R
-1002 0 R
-1003 0 R
-1004 0 R
-1005 0 R
-1006 0 R
-1007 0 R
-1008 0 R
-1009 0 R
-1010 0 R
-1011 0 R
-1012 0 R
-1013 0 R
-1014 0 R
-1015 0 R
-1016 0 R
-1017 0 R
-1018 0 R
-1019 0 R
-1020 0 R
-1021 0 R
-1022 0 R
-1023 0 R
-1024 0 R
-1025 0 R
-1026 0 R
-1027 0 R
-1028 0 R
-1029 0 R
-1030 0 R
-1031 0 R]endobj
-1033 0 obj<</S/URI/URI(http://www.thursby.com/)>>endobj
-1034 0 obj<</Subtype/Link/Rect[91.9 621.8 131.3 634.8]/Border[0 0 0]/A 1033 0 R>>endobj
-1035 0 obj<</S/URI/URI(http://www.umich.edu/~rsug/netatalk/)>>endobj
-1036 0 obj<</Subtype/Link/Rect[72.0 503.0 109.3 516.0]/Border[0 0 0]/A 1035 0 R>>endobj
-1037 0 obj<</S/URI/URI(http://www.cs.mu.oz.au/appletalk/atalk.html)>>endobj
-1038 0 obj<</Subtype/Link/Rect[130.7 503.0 154.8 516.0]/Border[0 0 0]/A 1037 0 R>>endobj
-1039 0 obj<</S/URI/URI(http://www.eats.com/linux_mac_win.html)>>endobj
-1040 0 obj<</Subtype/Link/Rect[72.0 476.6 258.1 489.6]/Border[0 0 0]/A 1039 0 R>>endobj
-1041 0 obj<</S/URI/URI(http://carol.wins.uva.nl/~leeuw/samba/warp.html)>>endobj
-1042 0 obj<</Subtype/Link/Rect[325.6 367.8 544.5 380.8]/Border[0 0 0]/A 1041 0 R>>endobj
-1043 0 obj[1034 0 R
-1036 0 R
-1038 0 R
-1040 0 R
-1042 0 R]endobj
-1044 0 obj<</S/URI/URI(ftp://ftp.microsoft.com/BusSys/Clients/LANMAN.OS2/)>>endobj
-1045 0 obj<</Subtype/Link/Rect[72.0 661.0 319.2 674.0]/Border[0 0 0]/A 1044 0 R>>endobj
-1046 0 obj<</S/URI/URI(http://carol.wins.uva.nl/~leeuw/lanman.html)>>endobj
-1047 0 obj<</Subtype/Link/Rect[340.6 661.0 538.7 674.0]/Border[0 0 0]/A 1046 0 R>>endobj
-1048 0 obj<</S/URI/URI(ftp://ftp.cdrom.com/pub/os2/network/ndis/)>>endobj
-1049 0 obj<</Subtype/Link/Rect[173.1 538.6 363.5 551.6]/Border[0 0 0]/A 1048 0 R>>endobj
-1050 0 obj<</S/URI/URI(http://carol.wins.uva.nl/~leeuw/samba/fix.html)>>endobj
-1051 0 obj<</Subtype/Link/Rect[220.2 450.2 429.3 463.2]/Border[0 0 0]/A 1050 0 R>>endobj
-1052 0 obj[1045 0 R
-1047 0 R
-1049 0 R
-1051 0 R]endobj
-1053 0 obj<</S/Launch/F(smb.conf.5.html)>>endobj
-1054 0 obj<</Subtype/Link/Rect[218.7 321.4 274.9 334.4]/Border[0 0 0]/A 1053 0 R>>endobj
-1055 0 obj[1054 0 R]endobj
-1056 0 obj<</S/Launch/F(smb.conf.5.html)>>endobj
-1057 0 obj<</Subtype/Link/Rect[493.6 579.8 549.8 592.8]/Border[0 0 0]/A 1056 0 R>>endobj
-1058 0 obj[1057 0 R]endobj
-1059 0 obj<</S/Launch/F(samba@samba.org)>>endobj
-1060 0 obj<</Subtype/Link/Rect[311.8 650.2 398.3 663.2]/Border[0 0 0]/A 1059 0 R>>endobj
-1061 0 obj<</S/URI/URI(mailto:samba-technical@samba.org)>>endobj
-1062 0 obj<</Subtype/Link/Rect[126.4 637.0 258.8 650.0]/Border[0 0 0]/A 1061 0 R>>endobj
-1063 0 obj<</S/URI/URI(http://samba.org/samba/)>>endobj
-1064 0 obj<</Subtype/Link/Rect[161.5 439.0 270.3 452.0]/Border[0 0 0]/A 1063 0 R>>endobj
-1065 0 obj<</S/Launch/F(Diagnosis.html)>>endobj
-1066 0 obj<</Subtype/Link/Rect[185.0 337.4 229.3 350.4]/Border[0 0 0]/A 1065 0 R>>endobj
-1067 0 obj[1060 0 R
-1062 0 R
-1064 0 R
-1066 0 R]endobj
-1068 0 obj<</S/URI/URI(mailto:samba@samba.org)>>endobj
-1069 0 obj<</Subtype/Link/Rect[164.2 180.2 250.8 193.2]/Border[0 0 0]/A 1068 0 R>>endobj
-1070 0 obj<</S/URI/URI(http://samba.org/samba)>>endobj
-1071 0 obj<</Subtype/Link/Rect[233.0 167.0 338.7 180.0]/Border[0 0 0]/A 1070 0 R>>endobj
-1072 0 obj[1069 0 R
-1071 0 R]endobj
-1073 0 obj<</Dests 1074 0 R>>endobj
-1074 0 obj<</Kids[1075 0 R]>>endobj
-1075 0 obj<</Limits[(10)(winbind)]/Names[(10)1076 0 R(11)1077 0 R(16)1078 0 R(17)1079 0 R(3)1080 0 R(31)1081 0 R(4)1082 0 R(ads)1083 0 R(aen1005)1084 0 R(aen1013)1085 0 R(aen1020)1086 0 R(aen1056)1087 0 R(aen1069)1088 0 R(aen1072)1089 0 R(aen1082)1090 0 R(aen1118)1091 0 R(aen1122)1092 0 R(aen1130)1093 0 R(aen1133)1094 0 R(aen1136)1095 0 R(aen1139)1096 0 R(aen1143)1097 0 R(aen1160)1098 0 R(aen1178)1099 0 R(aen1184)1100 0 R(aen1193)1101 0 R(aen1205)1102 0 R(aen1215)1103 0 R(aen1219)1104 0 R(aen1231)1105 0 R(aen1236)1106 0 R(aen1239)1107 0 R(aen1261)1108 0 R(aen128)1109 0 R(aen1325)1110 0 R(aen1330)1111 0 R(aen1346)1112 0 R(aen1348)1113 0 R(aen1362)1114 0 R(aen1384)1115 0 R(aen1400)1116 0 R(aen1416)1117 0 R(aen1427)1118 0 R(aen1435)1119 0 R(aen144)1120 0 R(aen1447)1121 0 R(aen1459)1122 0 R(aen1464)1123 0 R(aen1472)1124 0 R(aen1477)1125 0 R(aen1480)1126 0 R(aen1492)1127 0 R(aen1502)1128 0 R(aen153)1129 0 R(aen1530)1130 0 R(aen1538)1131 0 R(aen1555)1132 0 R(aen1562)1133 0 R(aen1567)1134 0 R(aen1572)1135 0 R(aen1593)1136 0 R(aen1602)1137 0 R(aen1613)1138 0 R(aen1633)1139 0 R(aen1648)1140 0 R(aen1662)1141 0 R(aen1669)1142 0 R(aen169)1143 0 R(aen1691)1144 0 R(aen1755)1145 0 R(aen1776)1146 0 R(aen18)1147 0 R(aen1820)1148 0 R(aen1827)1149 0 R(aen183)1150 0 R(aen1847)1151 0 R(aen188)1152 0 R(aen1882)1153 0 R(aen1908)1154 0 R(aen192)1155 0 R(aen1930)1156 0 R(aen1938)1157 0 R(aen195)1158 0 R(aen1973)1159 0 R(aen1989)1160 0 R(aen20)1161 0 R(aen2000)1162 0 R(aen2030)1163 0 R(aen2038)1164 0 R(aen204)1165 0 R(aen2042)1166 0 R(aen2052)1167 0 R(aen2055)1168 0 R(aen2059)1169 0 R(aen2081)1170 0 R(aen2083)1171 0 R(aen209)1172 0 R(aen2099)1173 0 R(aen2108)1174 0 R(aen2116)1175 0 R(aen2144)1176 0 R(aen2155)1177 0 R(aen2167)1178 0 R(aen2170)1179 0 R(aen2173)1180 0 R(aen218)1181 0 R(aen2186)1182 0 R(aen2197)1183 0 R(aen2249)1184 0 R(aen2253)1185 0 R(aen2266)1186 0 R(aen2273)1187 0 R(aen2277)1188 0 R(aen228)1189 0 R(aen2282)1190 0 R(aen2286)1191 0 R(aen2302)1192 0 R(aen2310)1193 0 R(aen2314)1194 0 R(aen2317)1195 0 R(aen232)1196 0 R(aen2324)1197 0 R(aen2337)1198 0 R(aen2351)1199 0 R(aen2362)1200 0 R(aen2381)1201 0 R(aen241)1202 0 R(aen2414)1203 0 R(aen2430)1204 0 R(aen2441)1205 0 R(aen2477)1206 0 R(aen2479)1207 0 R(aen248)1208 0 R(aen2496)1209 0 R(aen25)1210 0 R(aen2503)1211 0 R(aen2509)1212 0 R(aen2526)1213 0 R(aen253)1214 0 R(aen2559)1215 0 R(aen2566)1216 0 R(aen2576)1217 0 R(aen2590)1218 0 R(aen2596)1219 0 R(aen2611)1220 0 R(aen2616)1221 0 R(aen2635)1222 0 R(aen2641)1223 0 R(aen2664)1224 0 R(aen2684)1225 0 R(aen2713)1226 0 R(aen2718)1227 0 R(aen2730)1228 0 R(aen2732)1229 0 R(aen2749)1230 0 R(aen2777)1231 0 R(aen2782)1232 0 R(aen2802)1233 0 R(aen2872)1234 0 R(aen288)1235 0 R(aen2880)1236 0 R(aen2891)1237 0 R(aen2896)1238 0 R(aen2899)1239 0 R(aen2904)1240 0 R(aen2982)1241 0 R(aen2988)1242 0 R(aen2990)1243 0 R(aen2998)1244 0 R(aen3004)1245 0 R(aen3008)1246 0 R(aen3015)1247 0 R(aen3020)1248 0 R(aen3025)1249 0 R(aen3029)1250 0 R(aen3034)1251 0 R(aen3037)1252 0 R(aen3040)1253 0 R(aen3045)1254 0 R(aen3049)1255 0 R(aen3056)1256 0 R(aen3061)1257 0 R(aen3065)1258 0 R(aen3068)1259 0 R(aen307)1260 0 R(aen3100)1261 0 R(aen3106)1262 0 R(aen3115)1263 0 R(aen3121)1264 0 R(aen3125)1265 0 R(aen3154)1266 0 R(aen3175)1267 0 R(aen3184)1268 0 R(aen3186)1269 0 R(aen3201)1270 0 R(aen3210)1271 0 R(aen3214)1272 0 R(aen3224)1273 0 R(aen3226)1274 0 R(aen3231)1275 0 R(aen3236)1276 0 R(aen3240)1277 0 R(aen3245)1278 0 R(aen325)1279 0 R(aen3261)1280 0 R(aen3285)1281 0 R(aen3295)1282 0 R(aen3301)1283 0 R(aen3318)1284 0 R(aen3328)1285 0 R(aen3331)1286 0 R(aen335)1287 0 R(aen3354)1288 0 R(aen3359)1289 0 R(aen3369)1290 0 R(aen3371)1291 0 R(aen3377)1292 0 R(aen3383)1293 0 R(aen3398)1294 0 R(aen3403)1295 0 R(aen3409)1296 0 R(aen3417)1297 0 R(aen344)1298 0 R(aen3443)1299 0 R(aen3460)1300 0 R(aen3468)1301 0 R(aen3474)1302 0 R(aen3479)1303 0 R(aen35)1304 0 R(aen362)1305 0 R(aen365)1306 0 R(aen377)1307 0 R(aen392)1308 0 R(aen4)1309 0 R(aen400)1310 0 R(aen414)1311 0 R(aen419)1312 0 R(aen430)1313 0 R(aen436)1314 0 R(aen472)1315 0 R(aen477)1316 0 R(aen496)1317 0 R(aen503)1318 0 R(aen512)1319 0 R(aen544)1320 0 R(aen546)1321 0 R(aen566)1322 0 R(aen572)1323 0 R(aen611)1324 0 R(aen63)1325 0 R(aen654)1326 0 R(aen67)1327 0 R(aen673)1328 0 R(aen714)1329 0 R(aen723)1330 0 R(aen738)1331 0 R(aen786)1332 0 R(aen8)1333 0 R(aen81)1334 0 R(aen830)1335 0 R(aen89)1336 0 R(aen944)1337 0 R(aen970)1338 0 R(aen989)1339 0 R(aen99)1340 0 R(aen997)1341 0 R(browsing-quick)1342 0 R(bugreport)1343 0 R(cvs-access)1344 0 R(diagnosis)1345 0 R(domain-security)1346 0 R(groupmapping)1347 0 R(improved-browsing)1348 0 R(install)1349 0 R(integrate-ms-networks)1350 0 R(msdfs)1351 0 R(oplocks)1352 0 R(other-clients)1353 0 R(pam)1354 0 R(pdb-mysql)1355 0 R(pdb-xml)1356 0 R(portability)1357 0 R(printing)1358 0 R(pwencrypt)1359 0 R(samba-bdc)1360 0 R(samba-howto-collection)1361 0 R(samba-howto-collection.html)1362 0 R(samba-ldap-howto)1363 0 R(samba-pdc)1364 0 R(securitylevels)1365 0 R(speed)1366 0 R(unix-permissions)1367 0 R(winbind)1368 0 R]>>endobj
-1076 0 obj<</D[1450 0 R/XYZ 0 734 0]>>endobj
-1077 0 obj<</D[1452 0 R/XYZ 0 734 0]>>endobj
-1078 0 obj<</D[1506 0 R/XYZ 0 734 0]>>endobj
-1079 0 obj<</D[1508 0 R/XYZ 0 734 0]>>endobj
-1080 0 obj<</D[1396 0 R/XYZ 0 734 0]>>endobj
-1081 0 obj<</D[1644 0 R/XYZ 0 734 0]>>endobj
-1082 0 obj<</D[1398 0 R/XYZ 0 734 0]>>endobj
-1083 0 obj<</D[1494 0 R/XYZ 0 734 0]>>endobj
-1084 0 obj<</D[1476 0 R/XYZ 0 366 0]>>endobj
-1085 0 obj<</D[1476 0 R/XYZ 0 142 0]>>endobj
-1086 0 obj<</D[1478 0 R/XYZ 0 678 0]>>endobj
-1087 0 obj<</D[1480 0 R/XYZ 0 362 0]>>endobj
-1088 0 obj<</D[1482 0 R/XYZ 0 465 0]>>endobj
-1089 0 obj<</D[1482 0 R/XYZ 0 383 0]>>endobj
-1090 0 obj<</D[1484 0 R/XYZ 0 734 0]>>endobj
-1091 0 obj<</D[1488 0 R/XYZ 0 672 0]>>endobj
-1092 0 obj<</D[1488 0 R/XYZ 0 597 0]>>endobj
-1093 0 obj<</D[1488 0 R/XYZ 0 225 0]>>endobj
-1094 0 obj<</D[1490 0 R/XYZ 0 734 0]>>endobj
-1095 0 obj<</D[1490 0 R/XYZ 0 609 0]>>endobj
-1096 0 obj<</D[1490 0 R/XYZ 0 524 0]>>endobj
-1097 0 obj<</D[1490 0 R/XYZ 0 383 0]>>endobj
-1098 0 obj<</D[1492 0 R/XYZ 0 620 0]>>endobj
-1099 0 obj<</D[1494 0 R/XYZ 0 524 0]>>endobj
-1100 0 obj<</D[1494 0 R/XYZ 0 417 0]>>endobj
-1101 0 obj<</D[1494 0 R/XYZ 0 241 0]>>endobj
-1102 0 obj<</D[1496 0 R/XYZ 0 556 0]>>endobj
-1103 0 obj<</D[1496 0 R/XYZ 0 240 0]>>endobj
-1104 0 obj<</D[1496 0 R/XYZ 0 151 0]>>endobj
-1105 0 obj<</D[1498 0 R/XYZ 0 692 0]>>endobj
-1106 0 obj<</D[1498 0 R/XYZ 0 603 0]>>endobj
-1107 0 obj<</D[1498 0 R/XYZ 0 528 0]>>endobj
-1108 0 obj<</D[1500 0 R/XYZ 0 696 0]>>endobj
-1109 0 obj<</D[1406 0 R/XYZ 0 247 0]>>endobj
-1110 0 obj<</D[1502 0 R/XYZ 0 362 0]>>endobj
-1111 0 obj<</D[1502 0 R/XYZ 0 155 0]>>endobj
-1112 0 obj<</D[1504 0 R/XYZ 0 337 0]>>endobj
-1113 0 obj<</D[1506 0 R/XYZ 0 696 0]>>endobj
-1114 0 obj<</D[1514 0 R/XYZ 0 672 0]>>endobj
-1115 0 obj<</D[1514 0 R/XYZ 0 439 0]>>endobj
-1116 0 obj<</D[1514 0 R/XYZ 0 311 0]>>endobj
-1117 0 obj<</D[1516 0 R/XYZ 0 441 0]>>endobj
-1118 0 obj<</D[1516 0 R/XYZ 0 303 0]>>endobj
-1119 0 obj<</D[1516 0 R/XYZ 0 157 0]>>endobj
-1120 0 obj<</D[1408 0 R/XYZ 0 665 0]>>endobj
-1121 0 obj<</D[1518 0 R/XYZ 0 339 0]>>endobj
-1122 0 obj<</D[1520 0 R/XYZ 0 266 0]>>endobj
-1123 0 obj<</D[1522 0 R/XYZ 0 734 0]>>endobj
-1124 0 obj<</D[1524 0 R/XYZ 0 459 0]>>endobj
-1125 0 obj<</D[1524 0 R/XYZ 0 361 0]>>endobj
-1126 0 obj<</D[1524 0 R/XYZ 0 224 0]>>endobj
-1127 0 obj<</D[1526 0 R/XYZ 0 670 0]>>endobj
-1128 0 obj<</D[1526 0 R/XYZ 0 126 0]>>endobj
-1129 0 obj<</D[1408 0 R/XYZ 0 498 0]>>endobj
-1130 0 obj<</D[1530 0 R/XYZ 0 734 0]>>endobj
-1131 0 obj<</D[1530 0 R/XYZ 0 484 0]>>endobj
-1132 0 obj<</D[1530 0 R/XYZ 0 132 0]>>endobj
-1133 0 obj<</D[1532 0 R/XYZ 0 523 0]>>endobj
-1134 0 obj<</D[1532 0 R/XYZ 0 377 0]>>endobj
-1135 0 obj<</D[1532 0 R/XYZ 0 263 0]>>endobj
-1136 0 obj<</D[1534 0 R/XYZ 0 672 0]>>endobj
-1137 0 obj<</D[1534 0 R/XYZ 0 497 0]>>endobj
-1138 0 obj<</D[1534 0 R/XYZ 0 330 0]>>endobj
-1139 0 obj<</D[1536 0 R/XYZ 0 665 0]>>endobj
-1140 0 obj<</D[1536 0 R/XYZ 0 432 0]>>endobj
-1141 0 obj<</D[1536 0 R/XYZ 0 189 0]>>endobj
-1142 0 obj<</D[1538 0 R/XYZ 0 692 0]>>endobj
-1143 0 obj<</D[1408 0 R/XYZ 0 330 0]>>endobj
-1144 0 obj<</D[1538 0 R/XYZ 0 260 0]>>endobj
-1145 0 obj<</D[1542 0 R/XYZ 0 599 0]>>endobj
-1146 0 obj<</D[1544 0 R/XYZ 0 672 0]>>endobj
-1147 0 obj<</D[1394 0 R/XYZ 0 258 0]>>endobj
-1148 0 obj<</D[1546 0 R/XYZ 0 148 0]>>endobj
-1149 0 obj<</D[1548 0 R/XYZ 0 705 0]>>endobj
-1150 0 obj<</D[1410 0 R/XYZ 0 734 0]>>endobj
-1151 0 obj<</D[1550 0 R/XYZ 0 672 0]>>endobj
-1152 0 obj<</D[1410 0 R/XYZ 0 553 0]>>endobj
-1153 0 obj<</D[1552 0 R/XYZ 0 652 0]>>endobj
-1154 0 obj<</D[1554 0 R/XYZ 0 696 0]>>endobj
-1155 0 obj<</D[1410 0 R/XYZ 0 494 0]>>endobj
-1156 0 obj<</D[1554 0 R/XYZ 0 317 0]>>endobj
-1157 0 obj<</D[1554 0 R/XYZ 0 131 0]>>endobj
-1158 0 obj<</D[1410 0 R/XYZ 0 409 0]>>endobj
-1159 0 obj<</D[1558 0 R/XYZ 0 570 0]>>endobj
-1160 0 obj<</D[1558 0 R/XYZ 0 155 0]>>endobj
-1161 0 obj<</D[1396 0 R/XYZ 0 696 0]>>endobj
-1162 0 obj<</D[1560 0 R/XYZ 0 459 0]>>endobj
-1163 0 obj<</D[1562 0 R/XYZ 0 286 0]>>endobj
-1164 0 obj<</D[1564 0 R/XYZ 0 734 0]>>endobj
-1165 0 obj<</D[1412 0 R/XYZ 0 734 0]>>endobj
-1166 0 obj<</D[1564 0 R/XYZ 0 632 0]>>endobj
-1167 0 obj<</D[1564 0 R/XYZ 0 507 0]>>endobj
-1168 0 obj<</D[1564 0 R/XYZ 0 423 0]>>endobj
-1169 0 obj<</D[1564 0 R/XYZ 0 325 0]>>endobj
-1170 0 obj<</D[1566 0 R/XYZ 0 440 0]>>endobj
-1171 0 obj<</D[1566 0 R/XYZ 0 406 0]>>endobj
-1172 0 obj<</D[1412 0 R/XYZ 0 583 0]>>endobj
-1173 0 obj<</D[1568 0 R/XYZ 0 479 0]>>endobj
-1174 0 obj<</D[1570 0 R/XYZ 0 692 0]>>endobj
-1175 0 obj<</D[1570 0 R/XYZ 0 511 0]>>endobj
-1176 0 obj<</D[1572 0 R/XYZ 0 734 0]>>endobj
-1177 0 obj<</D[1572 0 R/XYZ 0 394 0]>>endobj
-1178 0 obj<</D[1574 0 R/XYZ 0 718 0]>>endobj
-1179 0 obj<</D[1574 0 R/XYZ 0 633 0]>>endobj
-1180 0 obj<</D[1574 0 R/XYZ 0 535 0]>>endobj
-1181 0 obj<</D[1412 0 R/XYZ 0 128 0]>>endobj
-1182 0 obj<</D[1576 0 R/XYZ 0 696 0]>>endobj
-1183 0 obj<</D[1576 0 R/XYZ 0 467 0]>>endobj
-1184 0 obj<</D[1580 0 R/XYZ 0 672 0]>>endobj
-1185 0 obj<</D[1580 0 R/XYZ 0 544 0]>>endobj
-1186 0 obj<</D[1580 0 R/XYZ 0 231 0]>>endobj
-1187 0 obj<</D[1582 0 R/XYZ 0 560 0]>>endobj
-1188 0 obj<</D[1582 0 R/XYZ 0 409 0]>>endobj
-1189 0 obj<</D[1416 0 R/XYZ 0 696 0]>>endobj
-1190 0 obj<</D[1582 0 R/XYZ 0 294 0]>>endobj
-1191 0 obj<</D[1584 0 R/XYZ 0 734 0]>>endobj
-1192 0 obj<</D[1584 0 R/XYZ 0 292 0]>>endobj
-1193 0 obj<</D[1586 0 R/XYZ 0 665 0]>>endobj
-1194 0 obj<</D[1586 0 R/XYZ 0 488 0]>>endobj
-1195 0 obj<</D[1586 0 R/XYZ 0 351 0]>>endobj
-1196 0 obj<</D[1416 0 R/XYZ 0 515 0]>>endobj
-1197 0 obj<</D[1586 0 R/XYZ 0 209 0]>>endobj
-1198 0 obj<</D[1588 0 R/XYZ 0 599 0]>>endobj
-1199 0 obj<</D[1588 0 R/XYZ 0 330 0]>>endobj
-1200 0 obj<</D[1588 0 R/XYZ 0 192 0]>>endobj
-1201 0 obj<</D[1590 0 R/XYZ 0 692 0]>>endobj
-1202 0 obj<</D[1416 0 R/XYZ 0 137 0]>>endobj
-1203 0 obj<</D[1590 0 R/XYZ 0 288 0]>>endobj
-1204 0 obj<</D[1592 0 R/XYZ 0 718 0]>>endobj
-1205 0 obj<</D[1592 0 R/XYZ 0 571 0]>>endobj
-1206 0 obj<</D[1594 0 R/XYZ 0 527 0]>>endobj
-1207 0 obj<</D[1594 0 R/XYZ 0 501 0]>>endobj
-1208 0 obj<</D[1418 0 R/XYZ 0 533 0]>>endobj
-1209 0 obj<</D[1596 0 R/XYZ 0 600 0]>>endobj
-1210 0 obj<</D[1402 0 R/XYZ 0 696 0]>>endobj
-1211 0 obj<</D[1598 0 R/XYZ 0 686 0]>>endobj
-1212 0 obj<</D[1598 0 R/XYZ 0 620 0]>>endobj
-1213 0 obj<</D[1598 0 R/XYZ 0 381 0]>>endobj
-1214 0 obj<</D[1418 0 R/XYZ 0 273 0]>>endobj
-1215 0 obj<</D[1600 0 R/XYZ 0 429 0]>>endobj
-1216 0 obj<</D[1602 0 R/XYZ 0 296 0]>>endobj
-1217 0 obj<</D[1604 0 R/XYZ 0 734 0]>>endobj
-1218 0 obj<</D[1606 0 R/XYZ 0 696 0]>>endobj
-1219 0 obj<</D[1606 0 R/XYZ 0 595 0]>>endobj
-1220 0 obj<</D[1608 0 R/XYZ 0 568 0]>>endobj
-1221 0 obj<</D[1608 0 R/XYZ 0 414 0]>>endobj
-1222 0 obj<</D[1610 0 R/XYZ 0 696 0]>>endobj
-1223 0 obj<</D[1610 0 R/XYZ 0 608 0]>>endobj
-1224 0 obj<</D[1612 0 R/XYZ 0 672 0]>>endobj
-1225 0 obj<</D[1612 0 R/XYZ 0 412 0]>>endobj
-1226 0 obj<</D[1614 0 R/XYZ 0 573 0]>>endobj
-1227 0 obj<</D[1614 0 R/XYZ 0 471 0]>>endobj
-1228 0 obj<</D[1616 0 R/XYZ 0 734 0]>>endobj
-1229 0 obj<</D[1616 0 R/XYZ 0 700 0]>>endobj
-1230 0 obj<</D[1616 0 R/XYZ 0 143 0]>>endobj
-1231 0 obj<</D[1618 0 R/XYZ 0 243 0]>>endobj
-1232 0 obj<</D[1620 0 R/XYZ 0 718 0]>>endobj
-1233 0 obj<</D[1620 0 R/XYZ 0 336 0]>>endobj
-1234 0 obj<</D[1622 0 R/XYZ 0 322 0]>>endobj
-1235 0 obj<</D[1424 0 R/XYZ 0 560 0]>>endobj
-1236 0 obj<</D[1624 0 R/XYZ 0 492 0]>>endobj
-1237 0 obj<</D[1626 0 R/XYZ 0 672 0]>>endobj
-1238 0 obj<</D[1626 0 R/XYZ 0 557 0]>>endobj
-1239 0 obj<</D[1626 0 R/XYZ 0 469 0]>>endobj
-1240 0 obj<</D[1626 0 R/XYZ 0 358 0]>>endobj
-1241 0 obj<</D[1632 0 R/XYZ 0 696 0]>>endobj
-1242 0 obj<</D[1632 0 R/XYZ 0 449 0]>>endobj
-1243 0 obj<</D[1632 0 R/XYZ 0 416 0]>>endobj
-1244 0 obj<</D[1632 0 R/XYZ 0 146 0]>>endobj
-1245 0 obj<</D[1634 0 R/XYZ 0 652 0]>>endobj
-1246 0 obj<</D[1634 0 R/XYZ 0 515 0]>>endobj
-1247 0 obj<</D[1634 0 R/XYZ 0 255 0]>>endobj
-1248 0 obj<</D[1636 0 R/XYZ 0 718 0]>>endobj
-1249 0 obj<</D[1636 0 R/XYZ 0 537 0]>>endobj
-1250 0 obj<</D[1636 0 R/XYZ 0 409 0]>>endobj
-1251 0 obj<</D[1636 0 R/XYZ 0 189 0]>>endobj
-1252 0 obj<</D[1638 0 R/XYZ 0 734 0]>>endobj
-1253 0 obj<</D[1638 0 R/XYZ 0 645 0]>>endobj
-1254 0 obj<</D[1638 0 R/XYZ 0 477 0]>>endobj
-1255 0 obj<</D[1638 0 R/XYZ 0 349 0]>>endobj
-1256 0 obj<</D[1638 0 R/XYZ 0 129 0]>>endobj
-1257 0 obj<</D[1640 0 R/XYZ 0 639 0]>>endobj
-1258 0 obj<</D[1640 0 R/XYZ 0 511 0]>>endobj
-1259 0 obj<</D[1640 0 R/XYZ 0 436 0]>>endobj
-1260 0 obj<</D[1426 0 R/XYZ 0 613 0]>>endobj
-1261 0 obj<</D[1642 0 R/XYZ 0 388 0]>>endobj
-1262 0 obj<</D[1642 0 R/XYZ 0 170 0]>>endobj
-1263 0 obj<</D[1646 0 R/XYZ 0 655 0]>>endobj
-1264 0 obj<</D[1646 0 R/XYZ 0 408 0]>>endobj
-1265 0 obj<</D[1646 0 R/XYZ 0 293 0]>>endobj
-1266 0 obj<</D[1648 0 R/XYZ 0 228 0]>>endobj
-1267 0 obj<</D[1650 0 R/XYZ 0 668 0]>>endobj
-1268 0 obj<</D[1650 0 R/XYZ 0 461 0]>>endobj
-1269 0 obj<</D[1650 0 R/XYZ 0 427 0]>>endobj
-1270 0 obj<</D[1652 0 R/XYZ 0 734 0]>>endobj
-1271 0 obj<</D[1652 0 R/XYZ 0 523 0]>>endobj
-1272 0 obj<</D[1652 0 R/XYZ 0 408 0]>>endobj
-1273 0 obj<</D[1652 0 R/XYZ 0 151 0]>>endobj
-1274 0 obj<</D[1652 0 R/XYZ 0 118 0]>>endobj
-1275 0 obj<</D[1654 0 R/XYZ 0 626 0]>>endobj
-1276 0 obj<</D[1654 0 R/XYZ 0 475 0]>>endobj
-1277 0 obj<</D[1654 0 R/XYZ 0 377 0]>>endobj
-1278 0 obj<</D[1654 0 R/XYZ 0 292 0]>>endobj
-1279 0 obj<</D[1428 0 R/XYZ 0 622 0]>>endobj
-1280 0 obj<</D[1656 0 R/XYZ 0 718 0]>>endobj
-1281 0 obj<</D[1658 0 R/XYZ 0 696 0]>>endobj
-1282 0 obj<</D[1658 0 R/XYZ 0 423 0]>>endobj
-1283 0 obj<</D[1658 0 R/XYZ 0 282 0]>>endobj
-1284 0 obj<</D[1660 0 R/XYZ 0 613 0]>>endobj
-1285 0 obj<</D[1660 0 R/XYZ 0 260 0]>>endobj
-1286 0 obj<</D[1660 0 R/XYZ 0 159 0]>>endobj
-1287 0 obj<</D[1428 0 R/XYZ 0 266 0]>>endobj
-1288 0 obj<</D[1662 0 R/XYZ 0 696 0]>>endobj
-1289 0 obj<</D[1662 0 R/XYZ 0 529 0]>>endobj
-1290 0 obj<</D[1662 0 R/XYZ 0 199 0]>>endobj
-1291 0 obj<</D[1662 0 R/XYZ 0 165 0]>>endobj
-1292 0 obj<</D[1664 0 R/XYZ 0 734 0]>>endobj
-1293 0 obj<</D[1664 0 R/XYZ 0 530 0]>>endobj
-1294 0 obj<</D[1666 0 R/XYZ 0 626 0]>>endobj
-1295 0 obj<</D[1666 0 R/XYZ 0 475 0]>>endobj
-1296 0 obj<</D[1666 0 R/XYZ 0 351 0]>>endobj
-1297 0 obj<</D[1668 0 R/XYZ 0 734 0]>>endobj
-1298 0 obj<</D[1430 0 R/XYZ 0 520 0]>>endobj
-1299 0 obj<</D[1668 0 R/XYZ 0 371 0]>>endobj
-1300 0 obj<</D[1670 0 R/XYZ 0 705 0]>>endobj
-1301 0 obj<</D[1670 0 R/XYZ 0 515 0]>>endobj
-1302 0 obj<</D[1670 0 R/XYZ 0 377 0]>>endobj
-1303 0 obj<</D[1670 0 R/XYZ 0 239 0]>>endobj
-1304 0 obj<</D[1402 0 R/XYZ 0 568 0]>>endobj
-1305 0 obj<</D[1432 0 R/XYZ 0 734 0]>>endobj
-1306 0 obj<</D[1432 0 R/XYZ 0 645 0]>>endobj
-1307 0 obj<</D[1434 0 R/XYZ 0 696 0]>>endobj
-1308 0 obj<</D[1436 0 R/XYZ 0 604 0]>>endobj
-1309 0 obj<</D[1386 0 R/XYZ 0 696 0]>>endobj
-1310 0 obj<</D[1436 0 R/XYZ 0 159 0]>>endobj
-1311 0 obj<</D[1438 0 R/XYZ 0 483 0]>>endobj
-1312 0 obj<</D[1438 0 R/XYZ 0 305 0]>>endobj
-1313 0 obj<</D[1440 0 R/XYZ 0 467 0]>>endobj
-1314 0 obj<</D[1440 0 R/XYZ 0 187 0]>>endobj
-1315 0 obj<</D[1444 0 R/XYZ 0 672 0]>>endobj
-1316 0 obj<</D[1444 0 R/XYZ 0 531 0]>>endobj
-1317 0 obj<</D[1446 0 R/XYZ 0 734 0]>>endobj
-1318 0 obj<</D[1446 0 R/XYZ 0 609 0]>>endobj
-1319 0 obj<</D[1446 0 R/XYZ 0 511 0]>>endobj
-1320 0 obj<</D[1448 0 R/XYZ 0 681 0]>>endobj
-1321 0 obj<</D[1450 0 R/XYZ 0 696 0]>>endobj
-1322 0 obj<</D[1454 0 R/XYZ 0 672 0]>>endobj
-1323 0 obj<</D[1454 0 R/XYZ 0 584 0]>>endobj
-1324 0 obj<</D[1456 0 R/XYZ 0 718 0]>>endobj
-1325 0 obj<</D[1402 0 R/XYZ 0 163 0]>>endobj
-1326 0 obj<</D[1458 0 R/XYZ 0 613 0]>>endobj
-1327 0 obj<</D[1404 0 R/XYZ 0 734 0]>>endobj
-1328 0 obj<</D[1458 0 R/XYZ 0 227 0]>>endobj
-1329 0 obj<</D[1460 0 R/XYZ 0 319 0]>>endobj
-1330 0 obj<</D[1462 0 R/XYZ 0 734 0]>>endobj
-1331 0 obj<</D[1462 0 R/XYZ 0 385 0]>>endobj
-1332 0 obj<</D[1464 0 R/XYZ 0 129 0]>>endobj
-1333 0 obj<</D[1388 0 R/XYZ 0 734 0]>>endobj
-1334 0 obj<</D[1404 0 R/XYZ 0 385 0]>>endobj
-1335 0 obj<</D[1466 0 R/XYZ 0 124 0]>>endobj
-1336 0 obj<</D[1404 0 R/XYZ 0 257 0]>>endobj
-1337 0 obj<</D[1472 0 R/XYZ 0 507 0]>>endobj
-1338 0 obj<</D[1474 0 R/XYZ 0 520 0]>>endobj
-1339 0 obj<</D[1476 0 R/XYZ 0 734 0]>>endobj
-1340 0 obj<</D[1406 0 R/XYZ 0 734 0]>>endobj
-1341 0 obj<</D[1476 0 R/XYZ 0 540 0]>>endobj
-1342 0 obj<</D[1436 0 R/XYZ 0 734 0]>>endobj
-1343 0 obj<</D[1658 0 R/XYZ 0 734 0]>>endobj
-1344 0 obj<</D[1626 0 R/XYZ 0 734 0]>>endobj
-1345 0 obj<</D[1662 0 R/XYZ 0 734 0]>>endobj
-1346 0 obj<</D[1500 0 R/XYZ 0 734 0]>>endobj
-1347 0 obj<</D[1630 0 R/XYZ 0 734 0]>>endobj
-1348 0 obj<</D[1416 0 R/XYZ 0 734 0]>>endobj
-1349 0 obj<</D[1402 0 R/XYZ 0 734 0]>>endobj
-1350 0 obj<</D[1514 0 R/XYZ 0 734 0]>>endobj
-1351 0 obj<</D[1550 0 R/XYZ 0 734 0]>>endobj
-1352 0 obj<</D[1434 0 R/XYZ 0 734 0]>>endobj
-1353 0 obj<</D[1650 0 R/XYZ 0 734 0]>>endobj
-1354 0 obj<</D[1544 0 R/XYZ 0 734 0]>>endobj
-1355 0 obj<</D[1606 0 R/XYZ 0 734 0]>>endobj
-1356 0 obj<</D[1610 0 R/XYZ 0 734 0]>>endobj
-1357 0 obj<</D[1646 0 R/XYZ 0 734 0]>>endobj
-1358 0 obj<</D[1554 0 R/XYZ 0 734 0]>>endobj
-1359 0 obj<</D[1444 0 R/XYZ 0 734 0]>>endobj
-1360 0 obj<</D[1488 0 R/XYZ 0 734 0]>>endobj
-1361 0 obj<</D[1386 0 R/XYZ 0 734 0]>>endobj
-1362 0 obj<</D[1386 0 R/XYZ 0 734 0]>>endobj
-1363 0 obj<</D[1612 0 R/XYZ 0 734 0]>>endobj
-1364 0 obj<</D[1454 0 R/XYZ 0 734 0]>>endobj
-1365 0 obj<</D[1576 0 R/XYZ 0 734 0]>>endobj
-1366 0 obj<</D[1632 0 R/XYZ 0 734 0]>>endobj
-1367 0 obj<</D[1534 0 R/XYZ 0 734 0]>>endobj
-1368 0 obj<</D[1580 0 R/XYZ 0 734 0]>>endobj
-1369 0 obj<</Type/Pages/Count 151/Kids[1370 0 R
-1372 0 R
-1374 0 R
-1376 0 R
-1378 0 R
-1380 0 R
-1382 0 R
-1384 0 R
-1386 0 R
-1388 0 R
-1390 0 R
-1392 0 R
-1394 0 R
-1396 0 R
-1398 0 R
-1400 0 R
-1402 0 R
-1404 0 R
-1406 0 R
-1408 0 R
-1410 0 R
-1412 0 R
-1414 0 R
-1416 0 R
-1418 0 R
-1420 0 R
-1422 0 R
-1424 0 R
-1426 0 R
-1428 0 R
-1430 0 R
-1432 0 R
-1434 0 R
-1436 0 R
-1438 0 R
-1440 0 R
-1442 0 R
-1444 0 R
-1446 0 R
-1448 0 R
-1450 0 R
-1452 0 R
-1454 0 R
-1456 0 R
-1458 0 R
-1460 0 R
-1462 0 R
-1464 0 R
-1466 0 R
-1468 0 R
-1470 0 R
-1472 0 R
-1474 0 R
-1476 0 R
-1478 0 R
-1480 0 R
-1482 0 R
-1484 0 R
-1486 0 R
-1488 0 R
-1490 0 R
-1492 0 R
-1494 0 R
-1496 0 R
-1498 0 R
-1500 0 R
-1502 0 R
-1504 0 R
-1506 0 R
-1508 0 R
-1510 0 R
-1512 0 R
-1514 0 R
-1516 0 R
-1518 0 R
-1520 0 R
-1522 0 R
-1524 0 R
-1526 0 R
-1528 0 R
-1530 0 R
-1532 0 R
-1534 0 R
-1536 0 R
-1538 0 R
-1540 0 R
-1542 0 R
-1544 0 R
-1546 0 R
-1548 0 R
-1550 0 R
-1552 0 R
-1554 0 R
-1556 0 R
-1558 0 R
-1560 0 R
-1562 0 R
-1564 0 R
-1566 0 R
-1568 0 R
-1570 0 R
-1572 0 R
-1574 0 R
-1576 0 R
-1578 0 R
-1580 0 R
-1582 0 R
-1584 0 R
-1586 0 R
-1588 0 R
-1590 0 R
-1592 0 R
-1594 0 R
-1596 0 R
-1598 0 R
-1600 0 R
-1602 0 R
-1604 0 R
-1606 0 R
-1608 0 R
-1610 0 R
-1612 0 R
-1614 0 R
-1616 0 R
-1618 0 R
-1620 0 R
-1622 0 R
-1624 0 R
-1626 0 R
-1628 0 R
-1630 0 R
-1632 0 R
-1634 0 R
-1636 0 R
-1638 0 R
-1640 0 R
-1642 0 R
-1644 0 R
-1646 0 R
-1648 0 R
-1650 0 R
-1652 0 R
-1654 0 R
-1656 0 R
-1658 0 R
-1660 0 R
-1662 0 R
-1664 0 R
-1666 0 R
-1668 0 R
-1670 0 R
+812 0 R]endobj
+814 0 obj<</S/URI/URI(ftp://ftp.microsoft.com/BusSys/Clients/LANMAN.OS2/)>>endobj
+815 0 obj<</Subtype/Link/Rect[72.0 661.0 319.2 674.0]/Border[0 0 0]/A 814 0 R>>endobj
+816 0 obj<</S/URI/URI(http://carol.wins.uva.nl/~leeuw/lanman.html)>>endobj
+817 0 obj<</Subtype/Link/Rect[340.6 661.0 538.7 674.0]/Border[0 0 0]/A 816 0 R>>endobj
+818 0 obj<</S/URI/URI(ftp://ftp.cdrom.com/pub/os2/network/ndis/)>>endobj
+819 0 obj<</Subtype/Link/Rect[173.1 538.6 363.5 551.6]/Border[0 0 0]/A 818 0 R>>endobj
+820 0 obj<</S/URI/URI(http://carol.wins.uva.nl/~leeuw/samba/fix.html)>>endobj
+821 0 obj<</Subtype/Link/Rect[220.2 450.2 429.3 463.2]/Border[0 0 0]/A 820 0 R>>endobj
+822 0 obj[815 0 R
+817 0 R
+819 0 R
+821 0 R]endobj
+823 0 obj<</S/Launch/F(smb.conf.5.html)>>endobj
+824 0 obj<</Subtype/Link/Rect[218.7 321.4 275.0 334.4]/Border[0 0 0]/A 823 0 R>>endobj
+825 0 obj[824 0 R]endobj
+826 0 obj<</S/Launch/F(smb.conf.5.html)>>endobj
+827 0 obj<</Subtype/Link/Rect[493.6 579.8 549.8 592.8]/Border[0 0 0]/A 826 0 R>>endobj
+828 0 obj[827 0 R]endobj
+829 0 obj<</S/URI/URI(http://samba.org/samba/cvs.html)>>endobj
+830 0 obj<</Subtype/Link/Rect[354.3 573.4 500.7 586.4]/Border[0 0 0]/A 829 0 R>>endobj
+831 0 obj<</S/URI/URI(http://samba.org/cgi-bin/cvsweb)>>endobj
+832 0 obj<</Subtype/Link/Rect[135.9 373.8 283.2 386.8]/Border[0 0 0]/A 831 0 R>>endobj
+833 0 obj<</S/URI/URI(http://www.cyclic.com/)>>endobj
+834 0 obj<</Subtype/Link/Rect[391.6 262.6 498.2 275.6]/Border[0 0 0]/A 833 0 R>>endobj
+835 0 obj[830 0 R
+832 0 R
+834 0 R]endobj
+836 0 obj<</S/Launch/F(Diagnosis.html)>>endobj
+837 0 obj<</Subtype/Link/Rect[185.0 350.6 229.3 363.6]/Border[0 0 0]/A 836 0 R>>endobj
+838 0 obj[837 0 R]endobj
+839 0 obj<</Dests 840 0 R>>endobj
+840 0 obj<</Kids[841 0 R]>>endobj
+841 0 obj<</Limits[(ads)(winbind)]/Names[(ads)842 0 R(aen1001)843 0 R(aen1031)844 0 R(aen1039)845 0 R(aen1043)846 0 R(aen1053)847 0 R(aen1056)848 0 R(aen1060)849 0 R(aen1082)850 0 R(aen1128)851 0 R(aen1144)852 0 R(aen1153)853 0 R(aen1161)854 0 R(aen1189)855 0 R(aen119)856 0 R(aen1200)857 0 R(aen1212)858 0 R(aen1215)859 0 R(aen1218)860 0 R(aen1231)861 0 R(aen1242)862 0 R(aen1275)863 0 R(aen1339)864 0 R(aen1344)865 0 R(aen135)866 0 R(aen1397)867 0 R(aen1401)868 0 R(aen1414)869 0 R(aen1421)870 0 R(aen1425)871 0 R(aen1430)872 0 R(aen1434)873 0 R(aen144)874 0 R(aen1450)875 0 R(aen1458)876 0 R(aen1462)877 0 R(aen1465)878 0 R(aen1472)879 0 R(aen1485)880 0 R(aen1499)881 0 R(aen1510)882 0 R(aen1529)883 0 R(aen1562)884 0 R(aen1578)885 0 R(aen1589)886 0 R(aen160)887 0 R(aen1625)888 0 R(aen1627)889 0 R(aen1644)890 0 R(aen1651)891 0 R(aen1657)892 0 R(aen1674)893 0 R(aen1707)894 0 R(aen1714)895 0 R(aen1724)896 0 R(aen174)897 0 R(aen1744)898 0 R(aen1750)899 0 R(aen1789)900 0 R(aen179)901 0 R(aen183)902 0 R(aen1832)903 0 R(aen1851)904 0 R(aen186)905 0 R(aen1886)906 0 R(aen1895)907 0 R(aen1910)908 0 R(aen195)909 0 R(aen1958)910 0 R(aen20)911 0 R(aen200)912 0 R(aen2002)913 0 R(aen209)914 0 R(aen2116)915 0 R(aen2142)916 0 R(aen2161)917 0 R(aen2169)918 0 R(aen2177)919 0 R(aen2185)920 0 R(aen2192)921 0 R(aen2228)922 0 R(aen223)923 0 R(aen2241)924 0 R(aen2244)925 0 R(aen2254)926 0 R(aen228)927 0 R(aen2290)928 0 R(aen2294)929 0 R(aen2302)930 0 R(aen2305)931 0 R(aen2308)932 0 R(aen2311)933 0 R(aen2315)934 0 R(aen2332)935 0 R(aen2353)936 0 R(aen2373)937 0 R(aen238)938 0 R(aen240)939 0 R(aen2402)940 0 R(aen2407)941 0 R(aen2419)942 0 R(aen2421)943 0 R(aen2438)944 0 R(aen246)945 0 R(aen2466)946 0 R(aen2471)947 0 R(aen2491)948 0 R(aen252)949 0 R(aen2561)950 0 R(aen2569)951 0 R(aen2587)952 0 R(aen2593)953 0 R(aen2602)954 0 R(aen2614)955 0 R(aen2624)956 0 R(aen2628)957 0 R(aen2640)958 0 R(aen2645)959 0 R(aen2648)960 0 R(aen2659)961 0 R(aen2663)962 0 R(aen267)963 0 R(aen2672)964 0 R(aen2679)965 0 R(aen2684)966 0 R(aen2719)967 0 R(aen272)968 0 R(aen2738)969 0 R(aen2756)970 0 R(aen2766)971 0 R(aen2775)972 0 R(aen278)973 0 R(aen2793)974 0 R(aen2796)975 0 R(aen28)976 0 R(aen2814)977 0 R(aen2820)978 0 R(aen2822)979 0 R(aen2830)980 0 R(aen2836)981 0 R(aen2840)982 0 R(aen2847)983 0 R(aen2852)984 0 R(aen2857)985 0 R(aen286)986 0 R(aen2861)987 0 R(aen2866)988 0 R(aen2869)989 0 R(aen2872)990 0 R(aen2877)991 0 R(aen2881)992 0 R(aen2888)993 0 R(aen2893)994 0 R(aen2897)995 0 R(aen2900)996 0 R(aen2932)997 0 R(aen2953)998 0 R(aen2962)999 0 R(aen2964)1000 0 R(aen2979)1001 0 R(aen2988)1002 0 R(aen2992)1003 0 R(aen3002)1004 0 R(aen3004)1005 0 R(aen3009)1006 0 R(aen3014)1007 0 R(aen3018)1008 0 R(aen3023)1009 0 R(aen3039)1010 0 R(aen3063)1011 0 R(aen3068)1012 0 R(aen3071)1013 0 R(aen3076)1014 0 R(aen3111)1015 0 R(aen3118)1016 0 R(aen312)1017 0 R(aen3124)1018 0 R(aen3141)1019 0 R(aen3151)1020 0 R(aen3154)1021 0 R(aen3201)1022 0 R(aen3206)1023 0 R(aen3210)1024 0 R(aen329)1025 0 R(aen337)1026 0 R(aen343)1027 0 R(aen348)1028 0 R(aen365)1029 0 R(aen387)1030 0 R(aen4)1031 0 R(aen403)1032 0 R(aen419)1033 0 R(aen430)1034 0 R(aen438)1035 0 R(aen450)1036 0 R(aen462)1037 0 R(aen467)1038 0 R(aen475)1039 0 R(aen480)1040 0 R(aen483)1041 0 R(aen495)1042 0 R(aen505)1043 0 R(aen533)1044 0 R(aen541)1045 0 R(aen558)1046 0 R(aen56)1047 0 R(aen565)1048 0 R(aen570)1049 0 R(aen575)1050 0 R(aen596)1051 0 R(aen60)1052 0 R(aen640)1053 0 R(aen647)1054 0 R(aen667)1055 0 R(aen702)1056 0 R(aen722)1057 0 R(aen731)1058 0 R(aen74)1059 0 R(aen742)1060 0 R(aen762)1061 0 R(aen777)1062 0 R(aen791)1063 0 R(aen798)1064 0 R(aen8)1065 0 R(aen80)1066 0 R(aen820)1067 0 R(aen884)1068 0 R(aen90)1069 0 R(aen905)1070 0 R(aen927)1071 0 R(aen938)1072 0 R(aen973)1073 0 R(aen990)1074 0 R(bugreport)1075 0 R(cvs-access)1076 0 R(diagnosis)1077 0 R(domain-security)1078 0 R(groupmapping)1079 0 R(improved-browsing)1080 0 R(install)1081 0 R(integrate-ms-networks)1082 0 R(migration)1083 0 R(msdfs)1084 0 R(other-clients)1085 0 R(pam)1086 0 R(portability)1087 0 R(printing)1088 0 R(printingdebug)1089 0 R(samba-bdc)1090 0 R(samba-howto-collection.html)1091 0 R(samba-ldap-howto)1092 0 R(samba-pdc)1093 0 R(samba-project-documentation)1094 0 R(securitylevels)1095 0 R(speed)1096 0 R(unix-permissions)1097 0 R(winbind)1098 0 R]>>endobj
+842 0 obj<</D[1302 0 R/XYZ 0 734 0]>>endobj
+843 0 obj<</D[1192 0 R/XYZ 0 348 0]>>endobj
+844 0 obj<</D[1194 0 R/XYZ 0 171 0]>>endobj
+845 0 obj<</D[1196 0 R/XYZ 0 652 0]>>endobj
+846 0 obj<</D[1196 0 R/XYZ 0 551 0]>>endobj
+847 0 obj<</D[1196 0 R/XYZ 0 426 0]>>endobj
+848 0 obj<</D[1196 0 R/XYZ 0 341 0]>>endobj
+849 0 obj<</D[1196 0 R/XYZ 0 243 0]>>endobj
+850 0 obj<</D[1198 0 R/XYZ 0 359 0]>>endobj
+851 0 obj<</D[1202 0 R/XYZ 0 696 0]>>endobj
+852 0 obj<</D[1204 0 R/XYZ 0 734 0]>>endobj
+853 0 obj<</D[1204 0 R/XYZ 0 278 0]>>endobj
+854 0 obj<</D[1206 0 R/XYZ 0 734 0]>>endobj
+855 0 obj<</D[1206 0 R/XYZ 0 304 0]>>endobj
+856 0 obj<</D[1128 0 R/XYZ 0 303 0]>>endobj
+857 0 obj<</D[1208 0 R/XYZ 0 646 0]>>endobj
+858 0 obj<</D[1208 0 R/XYZ 0 299 0]>>endobj
+859 0 obj<</D[1208 0 R/XYZ 0 210 0]>>endobj
+860 0 obj<</D[1210 0 R/XYZ 0 734 0]>>endobj
+861 0 obj<</D[1212 0 R/XYZ 0 696 0]>>endobj
+862 0 obj<</D[1212 0 R/XYZ 0 467 0]>>endobj
+863 0 obj<</D[1216 0 R/XYZ 0 696 0]>>endobj
+864 0 obj<</D[1218 0 R/XYZ 0 362 0]>>endobj
+865 0 obj<</D[1218 0 R/XYZ 0 155 0]>>endobj
+866 0 obj<</D[1130 0 R/XYZ 0 718 0]>>endobj
+867 0 obj<</D[1222 0 R/XYZ 0 672 0]>>endobj
+868 0 obj<</D[1222 0 R/XYZ 0 544 0]>>endobj
+869 0 obj<</D[1222 0 R/XYZ 0 231 0]>>endobj
+870 0 obj<</D[1224 0 R/XYZ 0 560 0]>>endobj
+871 0 obj<</D[1224 0 R/XYZ 0 409 0]>>endobj
+872 0 obj<</D[1224 0 R/XYZ 0 294 0]>>endobj
+873 0 obj<</D[1226 0 R/XYZ 0 734 0]>>endobj
+874 0 obj<</D[1130 0 R/XYZ 0 551 0]>>endobj
+875 0 obj<</D[1226 0 R/XYZ 0 292 0]>>endobj
+876 0 obj<</D[1228 0 R/XYZ 0 665 0]>>endobj
+877 0 obj<</D[1228 0 R/XYZ 0 488 0]>>endobj
+878 0 obj<</D[1228 0 R/XYZ 0 351 0]>>endobj
+879 0 obj<</D[1228 0 R/XYZ 0 209 0]>>endobj
+880 0 obj<</D[1230 0 R/XYZ 0 599 0]>>endobj
+881 0 obj<</D[1230 0 R/XYZ 0 330 0]>>endobj
+882 0 obj<</D[1230 0 R/XYZ 0 192 0]>>endobj
+883 0 obj<</D[1232 0 R/XYZ 0 692 0]>>endobj
+884 0 obj<</D[1232 0 R/XYZ 0 288 0]>>endobj
+885 0 obj<</D[1234 0 R/XYZ 0 718 0]>>endobj
+886 0 obj<</D[1234 0 R/XYZ 0 571 0]>>endobj
+887 0 obj<</D[1130 0 R/XYZ 0 383 0]>>endobj
+888 0 obj<</D[1236 0 R/XYZ 0 527 0]>>endobj
+889 0 obj<</D[1236 0 R/XYZ 0 501 0]>>endobj
+890 0 obj<</D[1238 0 R/XYZ 0 600 0]>>endobj
+891 0 obj<</D[1240 0 R/XYZ 0 686 0]>>endobj
+892 0 obj<</D[1240 0 R/XYZ 0 620 0]>>endobj
+893 0 obj<</D[1240 0 R/XYZ 0 381 0]>>endobj
+894 0 obj<</D[1242 0 R/XYZ 0 429 0]>>endobj
+895 0 obj<</D[1244 0 R/XYZ 0 296 0]>>endobj
+896 0 obj<</D[1246 0 R/XYZ 0 734 0]>>endobj
+897 0 obj<</D[1130 0 R/XYZ 0 169 0]>>endobj
+898 0 obj<</D[1248 0 R/XYZ 0 672 0]>>endobj
+899 0 obj<</D[1248 0 R/XYZ 0 584 0]>>endobj
+900 0 obj<</D[1250 0 R/XYZ 0 718 0]>>endobj
+901 0 obj<</D[1132 0 R/XYZ 0 652 0]>>endobj
+902 0 obj<</D[1132 0 R/XYZ 0 594 0]>>endobj
+903 0 obj<</D[1252 0 R/XYZ 0 613 0]>>endobj
+904 0 obj<</D[1252 0 R/XYZ 0 227 0]>>endobj
+905 0 obj<</D[1132 0 R/XYZ 0 509 0]>>endobj
+906 0 obj<</D[1254 0 R/XYZ 0 359 0]>>endobj
+907 0 obj<</D[1254 0 R/XYZ 0 149 0]>>endobj
+908 0 obj<</D[1256 0 R/XYZ 0 467 0]>>endobj
+909 0 obj<</D[1132 0 R/XYZ 0 200 0]>>endobj
+910 0 obj<</D[1258 0 R/XYZ 0 208 0]>>endobj
+911 0 obj<</D[1124 0 R/XYZ 0 696 0]>>endobj
+912 0 obj<</D[1134 0 R/XYZ 0 718 0]>>endobj
+913 0 obj<</D[1260 0 R/XYZ 0 203 0]>>endobj
+914 0 obj<</D[1134 0 R/XYZ 0 264 0]>>endobj
+915 0 obj<</D[1266 0 R/XYZ 0 547 0]>>endobj
+916 0 obj<</D[1268 0 R/XYZ 0 560 0]>>endobj
+917 0 obj<</D[1268 0 R/XYZ 0 126 0]>>endobj
+918 0 obj<</D[1270 0 R/XYZ 0 599 0]>>endobj
+919 0 obj<</D[1270 0 R/XYZ 0 425 0]>>endobj
+920 0 obj<</D[1270 0 R/XYZ 0 201 0]>>endobj
+921 0 obj<</D[1272 0 R/XYZ 0 734 0]>>endobj
+922 0 obj<</D[1274 0 R/XYZ 0 428 0]>>endobj
+923 0 obj<</D[1136 0 R/XYZ 0 696 0]>>endobj
+924 0 obj<</D[1276 0 R/XYZ 0 531 0]>>endobj
+925 0 obj<</D[1276 0 R/XYZ 0 449 0]>>endobj
+926 0 obj<</D[1276 0 R/XYZ 0 135 0]>>endobj
+927 0 obj<</D[1136 0 R/XYZ 0 529 0]>>endobj
+928 0 obj<</D[1282 0 R/XYZ 0 672 0]>>endobj
+929 0 obj<</D[1282 0 R/XYZ 0 597 0]>>endobj
+930 0 obj<</D[1282 0 R/XYZ 0 225 0]>>endobj
+931 0 obj<</D[1284 0 R/XYZ 0 734 0]>>endobj
+932 0 obj<</D[1284 0 R/XYZ 0 609 0]>>endobj
+933 0 obj<</D[1284 0 R/XYZ 0 524 0]>>endobj
+934 0 obj<</D[1284 0 R/XYZ 0 383 0]>>endobj
+935 0 obj<</D[1286 0 R/XYZ 0 620 0]>>endobj
+936 0 obj<</D[1288 0 R/XYZ 0 672 0]>>endobj
+937 0 obj<</D[1288 0 R/XYZ 0 412 0]>>endobj
+938 0 obj<</D[1136 0 R/XYZ 0 173 0]>>endobj
+939 0 obj<</D[1136 0 R/XYZ 0 139 0]>>endobj
+940 0 obj<</D[1290 0 R/XYZ 0 573 0]>>endobj
+941 0 obj<</D[1290 0 R/XYZ 0 471 0]>>endobj
+942 0 obj<</D[1292 0 R/XYZ 0 734 0]>>endobj
+943 0 obj<</D[1292 0 R/XYZ 0 700 0]>>endobj
+944 0 obj<</D[1292 0 R/XYZ 0 143 0]>>endobj
+945 0 obj<</D[1138 0 R/XYZ 0 705 0]>>endobj
+946 0 obj<</D[1294 0 R/XYZ 0 243 0]>>endobj
+947 0 obj<</D[1296 0 R/XYZ 0 718 0]>>endobj
+948 0 obj<</D[1296 0 R/XYZ 0 336 0]>>endobj
+949 0 obj<</D[1138 0 R/XYZ 0 501 0]>>endobj
+950 0 obj<</D[1298 0 R/XYZ 0 322 0]>>endobj
+951 0 obj<</D[1300 0 R/XYZ 0 492 0]>>endobj
+952 0 obj<</D[1302 0 R/XYZ 0 500 0]>>endobj
+953 0 obj<</D[1302 0 R/XYZ 0 393 0]>>endobj
+954 0 obj<</D[1302 0 R/XYZ 0 217 0]>>endobj
+955 0 obj<</D[1304 0 R/XYZ 0 530 0]>>endobj
+956 0 obj<</D[1304 0 R/XYZ 0 213 0]>>endobj
+957 0 obj<</D[1304 0 R/XYZ 0 125 0]>>endobj
+958 0 obj<</D[1306 0 R/XYZ 0 665 0]>>endobj
+959 0 obj<</D[1306 0 R/XYZ 0 577 0]>>endobj
+960 0 obj<</D[1306 0 R/XYZ 0 502 0]>>endobj
+961 0 obj<</D[1308 0 R/XYZ 0 696 0]>>endobj
+962 0 obj<</D[1308 0 R/XYZ 0 515 0]>>endobj
+963 0 obj<</D[1140 0 R/XYZ 0 586 0]>>endobj
+964 0 obj<</D[1308 0 R/XYZ 0 137 0]>>endobj
+965 0 obj<</D[1310 0 R/XYZ 0 533 0]>>endobj
+966 0 obj<</D[1310 0 R/XYZ 0 273 0]>>endobj
+967 0 obj<</D[1316 0 R/XYZ 0 560 0]>>endobj
+968 0 obj<</D[1140 0 R/XYZ 0 435 0]>>endobj
+969 0 obj<</D[1318 0 R/XYZ 0 613 0]>>endobj
+970 0 obj<</D[1320 0 R/XYZ 0 622 0]>>endobj
+971 0 obj<</D[1320 0 R/XYZ 0 266 0]>>endobj
+972 0 obj<</D[1322 0 R/XYZ 0 520 0]>>endobj
+973 0 obj<</D[1140 0 R/XYZ 0 311 0]>>endobj
+974 0 obj<</D[1324 0 R/XYZ 0 734 0]>>endobj
+975 0 obj<</D[1324 0 R/XYZ 0 645 0]>>endobj
+976 0 obj<</D[1124 0 R/XYZ 0 568 0]>>endobj
+977 0 obj<</D[1326 0 R/XYZ 0 696 0]>>endobj
+978 0 obj<</D[1326 0 R/XYZ 0 449 0]>>endobj
+979 0 obj<</D[1326 0 R/XYZ 0 416 0]>>endobj
+980 0 obj<</D[1326 0 R/XYZ 0 146 0]>>endobj
+981 0 obj<</D[1328 0 R/XYZ 0 652 0]>>endobj
+982 0 obj<</D[1328 0 R/XYZ 0 515 0]>>endobj
+983 0 obj<</D[1328 0 R/XYZ 0 255 0]>>endobj
+984 0 obj<</D[1330 0 R/XYZ 0 718 0]>>endobj
+985 0 obj<</D[1330 0 R/XYZ 0 537 0]>>endobj
+986 0 obj<</D[1142 0 R/XYZ 0 718 0]>>endobj
+987 0 obj<</D[1330 0 R/XYZ 0 409 0]>>endobj
+988 0 obj<</D[1330 0 R/XYZ 0 189 0]>>endobj
+989 0 obj<</D[1332 0 R/XYZ 0 734 0]>>endobj
+990 0 obj<</D[1332 0 R/XYZ 0 645 0]>>endobj
+991 0 obj<</D[1332 0 R/XYZ 0 477 0]>>endobj
+992 0 obj<</D[1332 0 R/XYZ 0 349 0]>>endobj
+993 0 obj<</D[1332 0 R/XYZ 0 129 0]>>endobj
+994 0 obj<</D[1334 0 R/XYZ 0 639 0]>>endobj
+995 0 obj<</D[1334 0 R/XYZ 0 511 0]>>endobj
+996 0 obj<</D[1334 0 R/XYZ 0 436 0]>>endobj
+997 0 obj<</D[1336 0 R/XYZ 0 388 0]>>endobj
+998 0 obj<</D[1338 0 R/XYZ 0 668 0]>>endobj
+999 0 obj<</D[1338 0 R/XYZ 0 461 0]>>endobj
+1000 0 obj<</D[1338 0 R/XYZ 0 427 0]>>endobj
+1001 0 obj<</D[1340 0 R/XYZ 0 734 0]>>endobj
+1002 0 obj<</D[1340 0 R/XYZ 0 523 0]>>endobj
+1003 0 obj<</D[1340 0 R/XYZ 0 408 0]>>endobj
+1004 0 obj<</D[1340 0 R/XYZ 0 151 0]>>endobj
+1005 0 obj<</D[1340 0 R/XYZ 0 118 0]>>endobj
+1006 0 obj<</D[1342 0 R/XYZ 0 626 0]>>endobj
+1007 0 obj<</D[1342 0 R/XYZ 0 475 0]>>endobj
+1008 0 obj<</D[1342 0 R/XYZ 0 377 0]>>endobj
+1009 0 obj<</D[1342 0 R/XYZ 0 292 0]>>endobj
+1010 0 obj<</D[1344 0 R/XYZ 0 718 0]>>endobj
+1011 0 obj<</D[1346 0 R/XYZ 0 672 0]>>endobj
+1012 0 obj<</D[1346 0 R/XYZ 0 557 0]>>endobj
+1013 0 obj<</D[1346 0 R/XYZ 0 469 0]>>endobj
+1014 0 obj<</D[1346 0 R/XYZ 0 358 0]>>endobj
+1015 0 obj<</D[1350 0 R/XYZ 0 696 0]>>endobj
+1016 0 obj<</D[1350 0 R/XYZ 0 436 0]>>endobj
+1017 0 obj<</D[1142 0 R/XYZ 0 356 0]>>endobj
+1018 0 obj<</D[1350 0 R/XYZ 0 295 0]>>endobj
+1019 0 obj<</D[1352 0 R/XYZ 0 639 0]>>endobj
+1020 0 obj<</D[1352 0 R/XYZ 0 287 0]>>endobj
+1021 0 obj<</D[1352 0 R/XYZ 0 185 0]>>endobj
+1022 0 obj<</D[1356 0 R/XYZ 0 655 0]>>endobj
+1023 0 obj<</D[1356 0 R/XYZ 0 447 0]>>endobj
+1024 0 obj<</D[1356 0 R/XYZ 0 333 0]>>endobj
+1025 0 obj<</D[1144 0 R/XYZ 0 679 0]>>endobj
+1026 0 obj<</D[1144 0 R/XYZ 0 488 0]>>endobj
+1027 0 obj<</D[1144 0 R/XYZ 0 351 0]>>endobj
+1028 0 obj<</D[1144 0 R/XYZ 0 213 0]>>endobj
+1029 0 obj<</D[1146 0 R/XYZ 0 672 0]>>endobj
+1030 0 obj<</D[1146 0 R/XYZ 0 439 0]>>endobj
+1031 0 obj<</D[1100 0 R/XYZ 0 696 0]>>endobj
+1032 0 obj<</D[1146 0 R/XYZ 0 311 0]>>endobj
+1033 0 obj<</D[1148 0 R/XYZ 0 441 0]>>endobj
+1034 0 obj<</D[1148 0 R/XYZ 0 303 0]>>endobj
+1035 0 obj<</D[1148 0 R/XYZ 0 157 0]>>endobj
+1036 0 obj<</D[1150 0 R/XYZ 0 339 0]>>endobj
+1037 0 obj<</D[1152 0 R/XYZ 0 266 0]>>endobj
+1038 0 obj<</D[1154 0 R/XYZ 0 734 0]>>endobj
+1039 0 obj<</D[1156 0 R/XYZ 0 459 0]>>endobj
+1040 0 obj<</D[1156 0 R/XYZ 0 361 0]>>endobj
+1041 0 obj<</D[1156 0 R/XYZ 0 224 0]>>endobj
+1042 0 obj<</D[1158 0 R/XYZ 0 670 0]>>endobj
+1043 0 obj<</D[1158 0 R/XYZ 0 126 0]>>endobj
+1044 0 obj<</D[1162 0 R/XYZ 0 734 0]>>endobj
+1045 0 obj<</D[1162 0 R/XYZ 0 484 0]>>endobj
+1046 0 obj<</D[1162 0 R/XYZ 0 132 0]>>endobj
+1047 0 obj<</D[1124 0 R/XYZ 0 163 0]>>endobj
+1048 0 obj<</D[1164 0 R/XYZ 0 523 0]>>endobj
+1049 0 obj<</D[1164 0 R/XYZ 0 377 0]>>endobj
+1050 0 obj<</D[1164 0 R/XYZ 0 263 0]>>endobj
+1051 0 obj<</D[1166 0 R/XYZ 0 672 0]>>endobj
+1052 0 obj<</D[1126 0 R/XYZ 0 734 0]>>endobj
+1053 0 obj<</D[1168 0 R/XYZ 0 148 0]>>endobj
+1054 0 obj<</D[1170 0 R/XYZ 0 705 0]>>endobj
+1055 0 obj<</D[1172 0 R/XYZ 0 672 0]>>endobj
+1056 0 obj<</D[1174 0 R/XYZ 0 652 0]>>endobj
+1057 0 obj<</D[1176 0 R/XYZ 0 672 0]>>endobj
+1058 0 obj<</D[1176 0 R/XYZ 0 497 0]>>endobj
+1059 0 obj<</D[1126 0 R/XYZ 0 385 0]>>endobj
+1060 0 obj<</D[1176 0 R/XYZ 0 330 0]>>endobj
+1061 0 obj<</D[1178 0 R/XYZ 0 665 0]>>endobj
+1062 0 obj<</D[1178 0 R/XYZ 0 432 0]>>endobj
+1063 0 obj<</D[1178 0 R/XYZ 0 189 0]>>endobj
+1064 0 obj<</D[1180 0 R/XYZ 0 692 0]>>endobj
+1065 0 obj<</D[1114 0 R/XYZ 0 734 0]>>endobj
+1066 0 obj<</D[1126 0 R/XYZ 0 283 0]>>endobj
+1067 0 obj<</D[1180 0 R/XYZ 0 260 0]>>endobj
+1068 0 obj<</D[1184 0 R/XYZ 0 599 0]>>endobj
+1069 0 obj<</D[1126 0 R/XYZ 0 129 0]>>endobj
+1070 0 obj<</D[1186 0 R/XYZ 0 696 0]>>endobj
+1071 0 obj<</D[1186 0 R/XYZ 0 278 0]>>endobj
+1072 0 obj<</D[1188 0 R/XYZ 0 702 0]>>endobj
+1073 0 obj<</D[1190 0 R/XYZ 0 471 0]>>endobj
+1074 0 obj<</D[1192 0 R/XYZ 0 718 0]>>endobj
+1075 0 obj<</D[1350 0 R/XYZ 0 734 0]>>endobj
+1076 0 obj<</D[1346 0 R/XYZ 0 734 0]>>endobj
+1077 0 obj<</D[1136 0 R/XYZ 0 734 0]>>endobj
+1078 0 obj<</D[1216 0 R/XYZ 0 734 0]>>endobj
+1079 0 obj<</D[1354 0 R/XYZ 0 734 0]>>endobj
+1080 0 obj<</D[1308 0 R/XYZ 0 734 0]>>endobj
+1081 0 obj<</D[1124 0 R/XYZ 0 734 0]>>endobj
+1082 0 obj<</D[1146 0 R/XYZ 0 734 0]>>endobj
+1083 0 obj<</D[1198 0 R/XYZ 0 359 0]>>endobj
+1084 0 obj<</D[1172 0 R/XYZ 0 734 0]>>endobj
+1085 0 obj<</D[1338 0 R/XYZ 0 734 0]>>endobj
+1086 0 obj<</D[1166 0 R/XYZ 0 734 0]>>endobj
+1087 0 obj<</D[1356 0 R/XYZ 0 734 0]>>endobj
+1088 0 obj<</D[1186 0 R/XYZ 0 734 0]>>endobj
+1089 0 obj<</D[1202 0 R/XYZ 0 734 0]>>endobj
+1090 0 obj<</D[1282 0 R/XYZ 0 734 0]>>endobj
+1091 0 obj<</D[1100 0 R/XYZ 0 734 0]>>endobj
+1092 0 obj<</D[1288 0 R/XYZ 0 734 0]>>endobj
+1093 0 obj<</D[1248 0 R/XYZ 0 734 0]>>endobj
+1094 0 obj<</D[1100 0 R/XYZ 0 734 0]>>endobj
+1095 0 obj<</D[1212 0 R/XYZ 0 734 0]>>endobj
+1096 0 obj<</D[1326 0 R/XYZ 0 734 0]>>endobj
+1097 0 obj<</D[1176 0 R/XYZ 0 734 0]>>endobj
+1098 0 obj<</D[1222 0 R/XYZ 0 734 0]>>endobj
+1099 0 obj<</Type/Pages/Count 131/Kids[1100 0 R
+1102 0 R
+1104 0 R
+1106 0 R
+1108 0 R
+1110 0 R
+1112 0 R
+1114 0 R
+1116 0 R
+1118 0 R
+1120 0 R
+1122 0 R
+1124 0 R
+1126 0 R
+1128 0 R
+1130 0 R
+1132 0 R
+1134 0 R
+1136 0 R
+1138 0 R
+1140 0 R
+1142 0 R
+1144 0 R
+1146 0 R
+1148 0 R
+1150 0 R
+1152 0 R
+1154 0 R
+1156 0 R
+1158 0 R
+1160 0 R
+1162 0 R
+1164 0 R
+1166 0 R
+1168 0 R
+1170 0 R
+1172 0 R
+1174 0 R
+1176 0 R
+1178 0 R
+1180 0 R
+1182 0 R
+1184 0 R
+1186 0 R
+1188 0 R
+1190 0 R
+1192 0 R
+1194 0 R
+1196 0 R
+1198 0 R
+1200 0 R
+1202 0 R
+1204 0 R
+1206 0 R
+1208 0 R
+1210 0 R
+1212 0 R
+1214 0 R
+1216 0 R
+1218 0 R
+1220 0 R
+1222 0 R
+1224 0 R
+1226 0 R
+1228 0 R
+1230 0 R
+1232 0 R
+1234 0 R
+1236 0 R
+1238 0 R
+1240 0 R
+1242 0 R
+1244 0 R
+1246 0 R
+1248 0 R
+1250 0 R
+1252 0 R
+1254 0 R
+1256 0 R
+1258 0 R
+1260 0 R
+1262 0 R
+1264 0 R
+1266 0 R
+1268 0 R
+1270 0 R
+1272 0 R
+1274 0 R
+1276 0 R
+1278 0 R
+1280 0 R
+1282 0 R
+1284 0 R
+1286 0 R
+1288 0 R
+1290 0 R
+1292 0 R
+1294 0 R
+1296 0 R
+1298 0 R
+1300 0 R
+1302 0 R
+1304 0 R
+1306 0 R
+1308 0 R
+1310 0 R
+1312 0 R
+1314 0 R
+1316 0 R
+1318 0 R
+1320 0 R
+1322 0 R
+1324 0 R
+1326 0 R
+1328 0 R
+1330 0 R
+1332 0 R
+1334 0 R
+1336 0 R
+1338 0 R
+1340 0 R
+1342 0 R
+1344 0 R
+1346 0 R
+1348 0 R
+1350 0 R
+1352 0 R
+1354 0 R
+1356 0 R
+1358 0 R
+1360 0 R
 ]>>endobj
-1370 0 obj<</Type/Page/Parent 1369 0 R/Contents 1371 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1371 0 obj<</Filter/FlateDecode/Length 94        >>stream
+1100 0 obj<</Type/Page/Parent 1099 0 R/Contents 1101 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1101 0 obj<</Filter/FlateDecode/Length 94        >>stream
 x
+ä2T0BCs#c3…ä\.§.}7K#…4K=3cS’¢` g`NÖvôurT(ÊÏJM.QpÉO.ÍMÍ+I,ÉÌÏÓÉâr
á
 ä«endstream
 endobj
-1372 0 obj<</Type/Page/Parent 1369 0 R/Contents 1373 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 53 0 R>>endobj
-1373 0 obj<</Filter/FlateDecode/Length 3678      >>stream
-x
Í[ÛrÇ}×Wì[œªÂށ¼¤t‰V,QéR^— (°Jößçœî™ž^€TіHÉ®²uö`fú6==½«ÿ=ɳ1þͳ¶ÈÊ&›­žŒGc<±ÿ¼ý‰O²¦šâ¿«¬œŽÚ–ÙéWYÛ8WY^ç£Úl8iY&˜´­GyœÔA£©#E˜ñtTa\5&%€ãHՓRälíÏ2£!j!¥þŒ”ƒ\Œ£)3ÖͨÁbõ‹Õl±r<*Ô(yV £Dˆacä„Þ§´q®²IÓ$ÎAˆ™OaÌDzf6­Ç`ÚÓ±¯²b\JǖtSÓšP¥àªD•¡JËYsp•M+›„ã¤*5Ýa=¦*å`INbÔ¨8’8›ò'µqrI±‘sIÆV*KVÓ±ÆUV`KF®-0.qŠ3sÇÁ™bÁ2ÇÜi Ç`¡eü-—Tq`^Æ¿X Ä	܄FOœƒ˜t̸M¤Ç`‹|È:¬ôcfü”´‚‰¤â6•lW@7pˆ}HdœƒˆŸ–&0ÎA
-;¡žFz¶ª)NbÛ08Öaª2¡¢6VUA³­P	Hª±qsKŽNj¤Ç`KîMÇ:£}i¬Ã`Ûé`æZü_¶š`'ø_%€â¶	b`."é1X$,šX‡ÁNÚ
«‹•l]E@Z4py)âé1¦m¦”7±ƒÅÄp[b+[Õ±“0ÎÒX‡ár9«.Ïs·Ù$—®ÍérãĒcŽO¤Ç`‘ù°ûm¨Ç`q:Á‰u˜ÊŒéòÄ:Ìøë1Ø¢a¨%Öa°rÌ%VQŠ­BÖQ`†ˆœhž8!nQÀö‰ô˜ªV%Ç:¶ÃçŽu¬úŽuÊ ßûuU™I6r) )8•Þ8M#ƒ2ad^qO¥i=Æغ„íë0•a¼8Öa*C¿%Öcú­¬ë1ØépfQÙ!&nfÁÖ´WZ×c°²×ë0Ë4VŽsÊ)Îü]
-$ˆc“‰$qJQ€°q(*"¤sÒ,œÔcš?ýVX‡i~ž­ibIie=‘”	I8ÒADŽ„FzÌiêi¬N+Ǒè‰i¤i—ç,FzÌEY‘¤¡:-²,Uñ¤i—Sªb¤Ç˜V–s¬Ãԅ§ªcf„–ƒ™U$T¬<7U$
I¤ÀqA#=¦H,Ãë0X\6¼i¬Ãx‚üìX‡ÁNyq¬ÃP§emfÁV,ÞÒXUE4C[•”
\^”Œ#e`1-R˜)°‘˱M[leþ’¤Ç´‹–IJÒ-šFÂA®%
-8ÐAätÖ,‰s;…EâÄz‰ôlͽäX‡iwæôÄJ^.­ÀR@a¥tŒΡ©Ž?$ç &E²¯é1âNCuIXÂî…€´dà°iœƒ˜´äe#‘ƒ……`Zê1XÜu§ŽUàb¹qr?ð VO«
ÿ{ÎA
-$³:)¶¥Ý¸G+1žN8UË81)r*ÂÀHÁ¢L†ŒÕp–kî†,7
4¬ƒ(×ûDzÌE¹“ë0XÀð¦Mì1Xd\„Ibæ¶æ	XÁbf„¦õ˜¬Ø×X±/Ï
\E‘ý¯‚\ü!9iV)‰ô˜,AÏ&¶dEìX‡Á6ô\bUÜÖ]¢s
IÜÀ©|Æ9hâÄ
#ä(±c,ÒZN‰u˜âòÔw¬Ã°=Tƒ26V•A5h†¥¢Û0
-‘ŒÅöÆ9hÊ”	³e«ÊDV…O¬Ã¦LbU™0¶È¢I`U5¾mT^ÜFUeØÿIœƒX²à­ ‘ƒ•nƒc‹¢af‹zLexùu¬Ã`Ñdñ¬*ƒ{KI3¼ä)ë(ŒÊ§Ê„qAx#=¦2
íX‡Á¢C$Öa®GžUqÑêMÌtÏ>ˆnTTmB\6dç –D/“Ú@ÁÊéãX‡Áâ`õ«@²ïa?‘@€lÓq>ó8ÔAÎAL
-‡"«Ø@ÖrŸNn®æ(
…b@~%k±4cäaŒHˆäb–?ËžNA_Í]þŠLBœ½Fc‚ب¥Ý çgOžþˆcrœ]Š(%1{[egÒ¨ÆãÙgÝùržõ—Ù‹~½›¯wÛ¿žýŠQœ£ŽÂ°£‚Ã~8}öêù3þz·{àx˜½Ùô¿Îg;yŽkV5
Ï_ö³›æìv‹~Mí©I©äèÛü“«z8N‚zè£ÖВµ÷ž~hè=Îæ݊ãpöM&Õ7•ÿÐjA£ä°q‘ARñ׳óínÓ×à°«¿3áՑ'­}ÄÓ¾‰º$„Fã"Æ×Oóõ|Ó-ùíµ¦®Éëí®[.-ì/ʲýÎToDGÔmNÃõnÓ_ÜÌâv©'ߙÌûîjEˆiNzqÕ]ïæ>gjDÂÑ‘‹ó°éþ«ÿğ ŸC2Ûõ|‚ÆÚ4)";V?ÊdŨÇçÝúBFGÕ¤3žÍ·’€pNXºBx<êΝR¾§?¦4ùË3è{ªAx«IÞÎ;Õ
-Ù½ŽwWs±
-^|L£¦«Nr)Ëƞ]wï璹4–£•÷½õxXÔ?âñY”.ö•~~³X^,Öï©$ZEä6ş/ÖÝf¡z27L¿ñ–Z¢º¶Ü×ò,x÷eó,ò“xíŒèìÅêºß캵Ä1ŠåÚÝv7¿–_c†&œJçÍÁJQéÁ±‰þè¾Î/6ón'Á‹J¹Š'émnݮΩ‹¿Iðh6ëח‹÷7KáxÛ:ÎC:Ì.˹®‡]U=^A‘)èQÞ‚ºÞWÝR‘ß¡¿÷7’ùIÕä¤xëœbƒú‰»q‰±døi±»;¡:GKìõ®»T'Ø“<—=ˆ¦hÙ6²ò	
-ïãt×mva‡£:­ÍÅw„‚æ@¤EûaÈö9Êu;á׫sý!ߣIþ|%ï˜3ê>ÌmHÑ¢»?ÓîTþrÓkEYpÑ
-'Àb=ß]Œô3ú´mûXîšæRL(‡÷ܪ©Û+÷l‰ƒ~úqþw
-Œ7ELÉ
-°äv45,ÇIrC¤Æ4–urn
ÎýŽÓáýžY梛¯ô7l”hƒ)ªšx-@Wk?®Ï6¿SÊAT.[ut¥>{˜m¯ºM8ÊðÓ2–´ÝÇn±ä•LBŸFÄÌ©êC 3å­e;ß|Ôò/*Æu8Nïä?û8×ú¼ÀÅҙhr!º×¸*†„Àwò–ÕoOp·@7ëÅo4Riʄ³å7MyŒ¶ý#í›`¶Õ†ûeú…¶¸5?l‹—'§-fï.ß½—gØ(U«©w‹õô7{\ÅJ_Ÿéc_«ãqñáð×'§OyŠŽvºÏw3„‘HÎhÃÕ¹;6úø΀†,ÑÕ伕PO‡ù>®Û¸Ö±äK~dÎ®a’XÊR¼ì׉ãÛx›x×o>üƒ«à¥^æ¼SЯLä%¾%áB=Nø9ZLž/Ýûu¿›ï"Úèa´`4V¢2zWvGþÊò~fº¨
-n ÃrªèááU9õג㐦Rž?~©‡
zÕñ|ø̊N•ðâe¸»¡‘Öø^£W½¹˜¢a¦»Û
-¸k×Ïú%½»©¹+ûyþq.OÑõhâíùžã=>xPR‹z¯ä›Íb“7êM|¶”¼5aýòúø¿²±ü	g÷ü´-ۋ”ÌUŒÿ7/8[ŽðŽÅáƒX&¯tSâõü~2ÒZß[äç~öÁÊ[5ƃõ&
ò£åp¶Zž{ù_u××Aþ
-å†%”_PI¬»•–(ø¶Ó.£@/þ©jâ»Ñø>JŞà]í¦ÐhˆÙñxu½é?ÎåÊ]R/å|ÓŠù7^Y…x^¬%ÔЍ²}¼íVç©8',e}±Š÷› —n¡o(ÕUÚ¬x³²_oœ 
-ü¸˜K—Šq£özXú6ÛÀø4¼ù–-nÕôˆß3»Í‡sö5|î]7h–Ü\³"‰Çß<¢GSÞ1¢¢±‹öýò•~µåÍØûó …Îw*58/p‡è—7±aŒ¦QßÊ|%	ÿÄ4Q)|Àé+
d—{û°›mú­ÖoþìØޜ㎬Ïñ‚®…쟐ñˆäÚøÎñ©óÀm¸Í‹ŠþšœZÝé¦чn­oV›ÊøX#u€Ue	fôÑ,=ölé:ÁŸPÍò׃I¤¼ÅÇò>!£ÀulèîƒÆØé|gžγÌz£ÍMw·=¨Þ¿>#ø>Ùà²û­Þð¡)ˆ`´ê	Ä~¨ß_÷;›I)ƒÚéäí¿z{òË/îí
̗ü]£mñ‹Ÿ¡ïú%¤ÿ˓Wώ_Sy|Œa»è.ñ¿ÒóBû!ø˜Ò‡ÀA?äÇ~3‹¥"^“Û^¶cuYjßR'ŸkW¸t=ÃÛ.«ïô2ð#µBԔÑø~
‘W•Í÷°Å-] ‹~ÕéŽ`O0ÖmÝííàWòóg¦)JÆ^
o¿Ü€z"ĞËë^ߊàˆHçAwÞßh_ßoØK=äøîbgJ8ãJ‰wÅz¥ì..pðoCqÎëþ#ž„E¸ᕌ¿_@ÕpøE)_Ý,w‹ëÐÊÄûyW\#>/»™ÉÿX7Ý;¨:ù‹þÝ}.¡P‹“ë%îƒR ð•ó4„åë>>QԌ&w“ÀI;·YöÏ­[;nh]sü
-ü­‹“½ª®4|ôˆïåî²bÔŸæÉ×>¸¸ñýQƒ/&öµOüz);øZ©Äß1ª˜ÆÚñ”?_Pçž=ùϓÿÿ5¤endstream
-endobj
-1374 0 obj<</Type/Page/Parent 1369 0 R/Contents 1375 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 96 0 R>>endobj
-1375 0 obj<</Filter/FlateDecode/Length 4615      >>stream
-x
Õ\MsǽëWlù’ ö䒢H9aÊ¢d‘)]\•AP‚M`iŒ­Ÿ×=3Ýo
Ð&)QN’*[ogvº§§¿få_žYŽÿY[fÕ0›.žå9~±¼û»ü’
ë1þ¹ÈªñAÁuvöŒà"kòGp‘Šƒ!#¸ÈŠ¢8(‰d¶níýòJÆ`ÇõAÅc	/²2Ï{33[ŽF4–1ØѨ?–0ôP5
evXŒ™Š2‚
-›RF*yBœ¼ê‘•,K(/
Tà#זu64Ž t¯*2Ž ¼0—ÉXt_ˆÎºç—Ê^$ýáY˜Š
¢äc<’DQà¢D.¬Ý8‚Iã‚(q\\º‘ŒMgƒ(il;3r–°˜Q+J2–1ئC1VmÆCü
ÀMœJæÁ(¨s*hW
4ëdxá¨ÒªæÔ(ðFn8:h3ç.2ì]NAè´!’1X¼Ä,a°Í¨?–0ضQl¹ŒÁŽËނCïUÙËX̯éú̌ÁëÞªãøê^úXÆ`›ª·ª þ¡ø’´ß
-\ý‘ƒÓƒ#(J”“æ$c°Ãæé¬x䦮ô(©@ÞH«ìAlx%»¦“È8‚x_!.ÃIƲֲÏ;ÒµÚČeÓä\ø̌eÓF½33áUÅWââ“â¸â#W`?‡YcdXH\IøÀȍG2Î8‚³”ñN2Û´²VÊ,¼N¢±ð ˜
-¾_L®£@D+Ùt'ƒ…Íã¥6”1ض賄¡ÜRü‡Õ%Õã\#®![RâÂœdœ–D¬.1-ageæ,c,i(ÇßYݶÃ"H¶m‰SOêA,¨”(ì$cё„0gå ÕM‚õ o$ŸÐâô:Gp

ä…:‰Œ#ˆ9sqåNêûÊ:„û±Ì©@Æ	UÁÅØõ ÁxæÓ3ŸÆAºqœDÆDÄ/îãb™ù¡¾]2¥‰? –0XÄ.~)c°ð;%(†P…ÏÌl#É(±„ÁŽ·XÂâÄl´UÛªFî´ÆÐDZ‚X0r
èIŸTU‹dŠ26L‹ƒf±¡RàÓFN\ö×È0±Ò¿JŒ\h$c¬֎õ8K,œ¶ÆYÂ`ᤠ^g	C½uÝcÂqºípV
-|Á‘lA¼²’ãçƒÕ(H,a,(—cã,c°po°Q{-c°’ßË,ҐÞX°$¸Û–ff¶Óïïe,V8’]·U©Ó­N含Ó
@”HªÐÐIÆ`›F–¤óÈPƢƶÏ5ŽÄ&l,c°Ø Kl;k³±Ah@ÜgX¿'rŒ	ú7’1ŒãCt–0رÄab	˂Åc:Ë,ÒÀKXvVRWāǶ(])pq"WRþ9ÉFql(c°pbØ;g	ƒ…ƒ€°Î;Rïã,a‹³%«'VlÛ\L"Žº¼Äi)ãA¼²–úÑIÆA˜‚YõÐiÞb$Å 
‚
™ƒª3_Pä ÖP-pñJõp>±,Wv†XÂ`‘ºŽˆ
R%W*ðE나ÆĤðKÒHƲ\q²Ä–劓%–0XÄvèÁg&¦Álµ‹%½¥&rÈùZxDyP8‚²\©×œd,Ëc"–0XìLÅ&f,֙ËΫ‡­Dfc‡-Y’º’Äɖ–8çò¤Œ1m.ÆYÆ`±@Ë,ÞÃcÒ°Ar`Âø’"—`$c[’±qIqlð°¥³êa–KF@,a°ãB¶ÎÇ–P$¹€³Œ%©*ll082?Œ
-DØà"²¿ÒHÆb…RÑ1ëÖ¢ÃYÆ"l.'Çff3CÎÂbïŒa1+f	‹*$bùXɼÅXåàhª€h‚`̼ÓÌ;ÓTÛ9‚1óvN3ï4®È¥è$ch·E,a°jÄ,a°Ãú£±„¡]„	fƒÕDÑÇ2«-b	‡}c‰Â)O˾•=yƒEz]К£ÐB/“×Ì,¬‰Y5ð¢
5·Ztfà‰¿“Œ¡FÍø
Ó"3µ¨*iëЃX€¨¿“a f³'SSôžG‚s1)’¤–HÆ`á½+f	ƒ…
À˜ì¥Œ±m8JÌ2K3‰ƒÕfÏÌ,Ž¤nV2K‚yÕë&®ÈK„'‹°’¨K¬6Rˆ%VûÄUHLq–±¨BVN,a°ð-¼fÆbýÒ;ó±Aeè?Ù¸*"mÒHƍ&¼ÔY¢
-é>K,Jˆãc	‹¢Ä-:ŒXKâØY+ñC9œ;ŒS Â8Ĥð=0b#ƒ…Ã¾:K,|\Í,a°è(õÆÆÞh®à33–WᬊŠ6¹sý³	™V²c¡ÿ*ÁÍG`Äm;cHd—N‚QEr9¾Î9ë.‰s(:‘sâã‚Ó’ß85G´­ÅC©5êŸÍ#Ž¡Q1¡6tœsN“
çÊ"¥ÈvÎ!8xÀ1q±i´rŽ l¨„8›S¢<~± ¯Ù4ÆGFcº1ŽÄ%¹2ƶSFÆ8ÂÊ5¸EªDFP´!	Šs©àBhœZ)®º¬ÿ¤6+ŒZœ1Žð*¸}´@eD¢&š¥Æ97ktΡ,QšqÁ¡2tN—_RLÿlˏŒ.ØGiùF…åÇQaùÎéò§ëuÎaZ¾qaùq\©ÑÓ¸—çÏ^|‡ª&Ïί´²ÏqØÖÙù¥Þ°ãçéóóÉÅõ,뮲£n¹™-7ëoÏÂ(ÄÚBF
¤!€aƒR†=?ú8¹ÙÌVòŒØ%Lrù<«ä'	ð‡Ûùôg}§uTÆ_VÝZ§ÇÅ÷°ªã¯g·ËÙF†ß¦)^®º_×óå! U5Æç_È/ðùèw§}ß­~þ°ênoôq\¯ÚwÎüáv~9“Ç‘M´eœþàžÿ+‡2òÅwðþAqf)¡8Xp):B)”4„e5Ï×ÓÛõzÞ-e,:ó‘¸ç+Ÿú± Ҋ#!Êm!þµV!ó5I°îJÂ9U”uó1<†~Ã8Ä7ïf‹n£¿ã8ÖÍ8>{¸\v·Ëéì™EÎEöúf²š,fÑqVY˜'ÑET@‰ko#«¯ µRU
œPeš=û´œªZp†ÐLŒ
-ÛVK›˜/­–²•-”Èàú¶€Ûö=ÍâýÉé™L	ŸÕVÑ.¾ô¢1_”³mÙô›ím?îÔÌÙ¤Oߜ«8¸	µ=»'唇E·ÒÍEšän>NÔ ÛÚ!é–áà 
-™Ïüñyñã·ún„¹6yƛU·é¦ÝµðÎþ²à_àˆÚt@_«Ò‘ºëôÓûùò.W£Íçw1™~œ/g@þZ<b—Ê‘L;¨oõÍf¸­ÒSoyæɼßÍÖÝõí&úI¤=¸–Œ–ÿfu¼­…„Gløg	n…Mh{ ùÿïÎhS)ê}?Y¾6€šµÍ“óœ,/U)Ü¢é©¶0/“ß|;Y¯íVú,bæ¸MÓ¾ZNWŸnLø4Å8W‹Wm?MynR†ÙYå2/EI¹Ç=¥(	—¾m'Ëͪ»¼úòŸÐåß½ôýLh€fwOˆ(y²¸éV›ÉRÃÎò)" .¸@?²‡ÝmHŠð}I:¢g³éíj¾ù¤{ƒº8ÙÇþ¥}á_£¤òMޖ¨aÇÐg0÷rxùˆ:ùCÝ6%Sܓœ½~©Ö
³4ëî[,ÚÌfž_X¬ÞtU!r§±%dØÑǹ얃Y8†3= øümT¶ÀÃÉ
^én:Ó½å}.ˆâÉM\Oº|æ<&kœÓ­7â_tñhFÔæ]ŽºÅ"z(x)04½ýÜÕ>h|0Z<2ùߓ“àVðçŸnB¬AÖ2J;±Ç>çËõfr}=1„ðX?"
->H =\UÁnq×ÇAgÇs>°¦yÐ>ÿáªV)š‘oÛ]õfÌ’SùG÷«zrA››q	‚
-÷jþá6$^’EX6æñÇ2¢‰žFÜ4é4fáy“G>=×5£Wäϼ]Í“•:iÜïÕ);;î“lqà1[ÊîUw}²¬ªBÒùðóS5¢
-¬"*rDœí¸úv5[Í~¹¯ç¡CC§§cðn6¹ŒÕ·|ÂðU#Í®%éE‘{¦½-ÑËÉTkþ-¥ü{wº?á—(A?O@a·-B²Ñ¨û®ÉŒo_	햋\Íj·5lž×Û}[“,$ÙúSh¤ÒŽÈ D—‘ƒ)ä;B¯fp®±×ƒÛ*ˍ^‡ÚCLi®Ñc¸<_Ý®5;B$ó,÷p:EÛ t°Vº1Çà$åŽMýÏn¾L·þèzžº`hÞZ֑™?ñø±o?HóHÀóxøï¯Þ*ØúWïø¦ög (n'¡ÜãÁ‘ª36•X{bÛgh_N~á6CWX|̱“j0,ù7o–¨ðÝõ'í†Èå±YÿW’×VM@÷ßßÝ'«Pë_ãØÚñàXvŸ)KÖ¸ˆ~k:é0diË>}æPe©ÜÄóæïô\$ٌ¦ÍòÛU‡>ö"äÏøÛ–äí;û¯V«n¥¢æ²&öîÖ<Í/IP|Ü÷‹;͐³OëÍl!jÁ_×2_½í®çÓy¨­ðe´ç®ûd…b®æ×ña̒àÓȶwÖZ‹þ
>Câm·£Àû“àÓó¬§ÕÁ²õº¡×(û8»Ö¾~¯Q6
éˆXçèD”‡ˆc™Þ‡Ùæoz$ðäøÁÞy¯xü±Ž5&®¹¹ñkÖm…P,ÙÅÕ,àöí^ãªSEáK#Wß]M½ño/^¿Òðw¾FrW‡Ü~»²©wÛ)	²ŠßÅz¹y‚rlÚA뿊øÈ:§³
:`?ËϽŒáûîC·Ô#¨žá
-µÖä{PÂû'™óNèúáÎf›”&õr“pÉÅýÝwÝd‘*ÈkÕ-ºòá4¡8°CÒsˆ¶±¸y]×!ÙÛ©:Æ;FýæõáÉ鿏ޜž¿{óýÁæ7=óú¡P
-2YØUïçfw™qìrcý‡æ/b)è~zÀðŒšî.﯋&v8íµ
-æiˆ»JÚèVÒNƒúä2(%Ç÷([¥P
-Fƒú`T¤‘®»ß+Qñ¡¦½kO÷x»D~‹‚û:´,‘O›#v5sh³
-e·Ëä‹ÃÝÆÞ&SSÊfR
\£Âzm›ãÿQÄëÁ¸†Û–踎ô‹`4;·E؛	ü‚Rg~Óù˜2e2¡)ƒÆ£ý@¦²'pÆVKï‚d÷†l_Fï$¸hÖÎ(ÿéò,Q7ò·ˆû&‹2KõÃe€÷»,ŸË.»x€¯í”éadÕÈgèfZ+GÂÔv…@9AøÞ£í<ÔÓ.ž€^Z+y©…Þ©u²‚‚ðÍEò,IÈÇü»©dMƒíúHÌf7¸¾ÿ8[ª|}8׸“<îÛÝ·ÇG:•¶KËÙìrv©ò Ó¶ ñ9<&
-.àP]ˆX·}\Žâ­1o›»Wî]„«d©ÜÓꎅPlà¦Âž)U>Ö(ñŸòxxÿòÚI†°õí

- m…ì?²¹œ#íÔëðþR°÷”vS«…íWõËã#Ո|ëÔ|ÍB#™MÿžN´t_?ò‡ŠZÍnPNâ—;pÅeº¨Þw®î¾8’ÂT•„‡ÆÅcÚÞ÷1­<èfH¾¤›®†îJÈb=–2ßfNXî‘lŸE¿b®’(5׳ÅlqòsÄ·2¥Ã÷ñ³i¶¯äopJ%¾ÞH÷RƒáJ,•ÜpÙgzÏ°
-÷žòeJ]DvƒD4]㋇|˜^°¯˜=ž]̃«“ê§y"{.ƒFй{Ã"•r¶ÞÍ.ÿú$_E	/¾ÃGçáƒFü—äñ³~zvøúåa†âñ§Ùt“wÓÛ:ç–Zè_yÂçyƒjÄ0󹜂WçÏ~xö_ô°¶Xendstream
-endobj
-1376 0 obj<</Type/Page/Parent 1369 0 R/Contents 1377 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 140 0 R>>endobj
-1377 0 obj<</Filter/FlateDecode/Length 4309      >>stream
-x
Í\Érǽó+ú(ö¾.¦EIÉ"dù:‰1Óð,¤ô÷~™U•ùz0I“eGXxóºª+³²r«–ÿû Èrü·Èº2«Úl¾zŸæøÅþç§È/Y[øßUV
§EWÙëWY“O8‚«¬oNKGp•
ÝiOÁUVä­½]^Èl•O†2ÛʚÃÊu,áUVÓ±•¾¨j0!D)O›¬U #	b¹•ˆiA¼²”ñN†IËò´µIø¤‘ëóÓ*k#(:¨DyF2)»ÓšØðÊ|ÀIþÊÈõµhÇ8‚òÊ\^i$c°u-¯t–0ؾ˜°¼§ZL¸Êºú	@D‹Ï8ÉX^ÚB‹ÎªœM_aò(g&gâºZfÕõ•Õô
-â`z	â…e{ÚÉ,l‚Ù°X˜™O£À—¹¾ÇN;ˆÕE®€MBFÈX^ÙÊòŒ
¯Äf\eä`MC朜ç'GöCp2Œ`<ÏÎéyNãô;G0žgçô<§qáü:ÉXT>ˆüº6Yc°°t³„qžaŽ<6h§èÈ>¸v"×w2Î8‚x%Î
^i$c°Á`%Ú¯y,a°0}؏%,ÎIΐ³ŒÁ–l¨
¢ÂK¸í)pQ#¶É8‚"ªŒoŒd¶Öå:KX„©à/i,aF\«³ºÜzS'7[nâ:1mç" ÈátŽ ˆÒ@{N2[‰;%–0X¸«YÂ`‡r:3a1AÙ5Ÿ™1X„žYŽa݊7’·Š¤
-ÔîBCƒ3Ž ÆÁGA#uÎJŽI§@æTJÍ*žúZPzêÄ0}·qñ:üÜd>1XÆÄÛuÓ±„Ť+ÙO{-c°u'b:Kl_Â¥:«öU
âX!N5 ö厪™pa…F}P‹\æ4Ž (A±“ŒÁâØôÌ«‚ÆÊ$–°XW9™™1ض€6|¬Æäª+ÔPùÁ)Q	☩¨Î9ĂÊVëäP¸œë0‹Ÿ4q:‹sE
‚\ed˜´–&Uà“&NgqÎ!&ÕÜ¡22L
-‰…„•*ðI§³8瓶â‚*#ƒù!OÆúa"
-dR‚I§ÆÇqâœ` F29y¥³„eAºÎ;84–0¡j·±ŒÅ|$Í"–0¼	¼×@lÐ.|°x¡ ]®ÝÈy-/5’±+~ŒXÂ`
&,a,8—LÎÇê’J8k3ÍlI‰Kp’1^Š},3b	˒Äu:^څL\õP*ð—F®(å :ÉÓÂ=WĆia|f¼¥Ÿ6r2¢{'O
-ÉÓâL0¦mB>V«À§\í.²ÒHÆ¢¢rÂê©(!‚†$9
È´z*'ŽYõA}¥CLªe•“ŒÁ"#nh(c°šaÓXÂb(²2gƒÅÆ`¿mQŒÁB“±„ÁjT¢±„qfX43c°˜©c–°Do	1>3ãUV—Ro9Ë,BÊdf5dš‹éö(ð퉜&_¥qe{
-1|#ƒEƂu–0Ø¡ëv–0”X”¢&cƒ­êÉ{ƒ…sœŒ%ù'6Ïg&#IË,‚%bVË-KPIŽèl8vEåñ­TàÇ.rÑÉX¶@¿e•vÝÇ‹Lâ8KX6H‚±„eƒ¤éã,c°ðˆ8?63c(
-îŸ×T¡‡7J®ŠÈ°
-,ÉHÆX0ºÖYÂ`០g	‹°zà%qPþ@Xc‹*ÄÑK,lÖèc	‹¢Ô
9K,T>™™°X£ªÑÆ2ÛåbÉƪ’Í9¢’0%'®€¡¶°
Ù}!CQ(9*f	ƒ…{(™%¶—€F3†°XaM,c°ˆLhWÚª4¼Hùiá%Y±†—Ä…(夔C’aHZ©Ç9G0–CÎi9”Æ¡èlâ$ª>‡²KòŒE}’{KX$½%b	Ch’ðkƒ…L–°¨O¼ÏÌz(Å':Ë,^sP=ŒÏʬB«>r¨Ä`HÆ„¨hbÀŒd,j’¶(±„ÁjX¢qÿÎ2ÛI‡—X¢&)µˆ%E ']ËXÔ$±ÛÇ2‹¢
J4yƒ?­æ”àN\°ßÈÁðNãjG›j:Ò	CûFŠ‚‹ž΁³„ÁB)éYÙUÆ`aþØK,V
õ;K
-ÖÈê,c°ðÉüÞ $¤ô~ȸ¥E.˜–q± íBF2ÿ…W«¯D*bi‘þm/ŒŒ¾ÀGémF…—ÅQR7ç™s1îº&Ρ(Mª?§ž\Ïstäú·,Q³÷Ȅ4Á(‚"´xAãtBԌVWèß6ad¤'‹«
yL(‚˜P3ãT‰ð˜fÛú·)12AéFĄíq™"¼Ì 8tZÐ7Î!8ÄO4us5âðI;<Ω‹„³6ÛÒ¿m‘‘)òûbAYHŽ}qÎ!88MtïdzÀ!8æb‘¨ÄÑLã‚Cӈ9‡àpÛÁœCø(“8\[8±K¦›à‘	’E0	îœ
-žÆ©¤Î9L‚;§‚ÇqARãÊÎi**ÒË2	ŠàÒm÷q!8|2Â4îñك‡Ï$ËÎÞhu’㮯«³³½÷ÄÏóïÎfçW‹l|“=×»Åz·ýËÙ¯…QȨ)j0줔aß=¹œ]ïyF’˜ä⻬?•Ÿ0$À׳ÕùLBÂ]§‡f:7RÚ¦âƒúNXzäÑÓ×2•]—~ºW³åZ'ÃyG®«ó°‡ÏâbÑ£ú«–Î7†+¨°2ÉXÂڞŒ«ëåÕB&¬Ñ™·Õùš‘4ñéÓoûŸ¦‘ežô=KTJôz±Û_«Ú8ò>Êùû¸×}B½4Ik»ùÃw›óæt>®ßÈäcyڎû¶iU<õ¬01ß´æPÄ'›Ål§{&UeEÜ]êOˆw¸®ˆ¿Í±½ûh¢¨‡PQDb6ŸûõNÞ¿Ø4ÑVïQf÷@ÖB¥e›ÿqÜn—8—ºX´Õpø‚ñ.6›q£Ç7c}q2ð«’<EÎ{×îÝÙb«ZG†ÔÚ6µÎíbó>œi¹-“Ñn;áðù†ª‚ro7]0X4'{Ø“y¹~«û‡\&ùžËÝ¥ü†3YÙAÝ®ÎçWK¸^aS›’îM,z‘I¨N™ŽdôðîG_»E²Ä?‡·$1ôÏ Ų†Š|ü#Ù¶ò‹#Ù«³Zwíµä^³†2¤Aucã¡4_7½¬ƒ'šĶçˆï‡fýÏq¹v³¦È¾–¹à¿QïEOõêLBßÁ‚ÏSŽä
-Æ¨Ìk — ³¢%ÓÞ¹ï
-:‘&0©¥<TËñÅÎÖºXdc¦•_–ë‹ñƒ'Ëh[åò0 ®ð,Z,í½¬feœèìDèyÔ/—¿Çû¦/uµè”æ}
-»»Ëø#Ô`¹ÖùbC4ÂXg!zw9SCšDŠíb¾ß,wú2¤ÅM—¢ÿ_åõýéÐ$“áãoò3òÀ¶¸[¯4EÞ喻—çϟ+A¤0]üp½[Žëٕ¬ۏkÆxX$[¾Ýof‹"=¢\_ûàæ|m!:)ƒ˜ó|¾ÞmƋý<-·‰IçgN}_·ê5N°J“à¶B¶+â"¥L1².ÞÊ΄pŽrڏíË×ú0úéi>฀J‡6[/vÆÍ»pš‘¯šG0ïǁÂ
-~ýºÊmµ¤ ·_Ê­
u¹çP”)¥~ôv±¾Hå\Êeîkï>þž ÑIO2#øiãÕl¥	5r˼HUÒO‹íxµ7;FOÊríPtâSOÕT	h+Úî]ï7aND&sc?¯—¿=|±\ïëf“yØÀ•Ft(¤P½ƒT6ª£ÄÓ
}„­bb­Åàå¸
5?êù?ÇÞF
В½±þ°£“õodß{9‹¤»õûhm¬håêÐC,^”oKoî)ñ»E€¸täZ–êÀàQÁdÙëínk~iK—^ÿ7ÒzÒ¸4k§úþãã¯ÖcÇ­»t²Ø¬*ÈÛ﷋pv¹£"þ;¶§Ð7JYi#'=8÷‹¡!Å´X«/vm(TK4ïrô°¡j¡ê²³ØGÁÕlj|e¯»ÇÏÐøÆ5ivԋ>™ÍÃR·÷÷e	­V0èPÊ
-ê˜O’ñÅËïx}¦2N¼ô›ØD™o¾ÿ–Ss7?·1GoüP²èEh÷LɎ-Ґ–¯ÜÍb?eÖN«›ü»	7Ì1úèé+Ý®…^Œã»Ðã”Åû2°[$KÂñ8¡q‰ë´Æì—çAü懋ÄÁÕâð-å‰ÂÈWSSûbîóûñƒd3ØÏ]Ï7¨e£ßš8‰7ûµÖ!Ý¥–Vv¬(¾ŒSsp7jfÍÉ×Åâúje ÷¶;¹Áеáæʚ
Ç^„$“ÃmôuªoeŸDãÈO—%èpxC?mEt¡`ª‘c²S
-¦aúüŒqk<j=©JÆu6·cnv>QÉ©U…J‹"OU€‰,µµudތzÉ Öc…ùv±X]-¶aóq±g1e™J©Päâ:¯*n	uQ‰•|W5µKzùÿ¼ÕõÂ]úË>CÁGzUGÂèMLš\³=® Ö»åÜwܶ’"¬Ÿ
×üunºJL×qøpãP17£ÞËÙ»p4¸Ír|'oÔ6~ÃVá]V݌zm„²ÈÂ
-µVnÿ}™öoµxê â«‹ƒƒw‹»N?GÍUōÂaþ†Iá:T[2á àÛ³â[Ô§æþ1µ|ºÁ HýšM3ùhŠÝR¸®1·±çWðyãZåIB'~ÃvÚO§~[
_ÿñ~NpÔÏùùÕóÿˆ¹Nò‹Íj‰;·à˜º‡{¼õ±|àcÙUŒ.øŒ¬NU|Æù=·~¢wÁ§0vðh>þÿ„»X(}5m¢÷Xöbkt|¬[àþþÿét‡}Él݊æϿ—‹)´ãšÜ:Çâê}Û·éa|Wotï´c³óÚtM̓ììx´=vÏ{Ägßî5–³«ñ­¾
ú®êO來ÈÖÕAgéXnt$y•jžÂ9”åé|Sr«$Á>ƒ¼N•¹%uÜ=m/g±S…/Hï¬ÓÕUÂŲ—A§þÕ¼ÌmÆuTã‡õb³½\ê'(Ñë&ö¯îÝEñäßEœŠw+žx!âxz±Ü,æ»q£ÉnLºò8<:(|¿f8®Ð.ö´Úar`Ä7‚æ³T8#³VˆûÖtÞ͛á]þš„Á¿Š5IŸpñz¤iðt²œ
ߪªï~+¦šI² œšãa©1^,ßüžü3¶&eÙñóö‰/Úói54]ò—£.~‚1L£×A#—6›™ßO!N[!c7.üƱƒÊÕâFk)|*æ—Ç]ìܾQ’†<]€®fÛwêõÑñïÒg׳
n#°Æp$påòEZ‹Jѯ¹§¦¾L1Çû-ôrÔÈf»ÝfyŽµ4ãdg5»¾N¶
-¥··ˆŸlIöÒ>Ã÷þñ#Aü?¼ÔE‡/!ñOùHðõ£—e?nÆ_áu³§ã|¿BQg%jÔÓf@Ðåƒ<¾\.eÑ?{ð¯ÿW àFendstream
-endobj
-1378 0 obj<</Type/Page/Parent 1369 0 R/Contents 1379 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 185 0 R>>endobj
-1379 0 obj<</Filter/FlateDecode/Length 3777      >>stream
-x
Í[M“Ç
½ëWÌ!§*KÏ÷Ç)µ–,[©HµÑ®K©JåÀåŽV´IΆä®ìŸ Àp(Ë*‰+ÛUß¼énF£Ñ£ÿ=ɒÿgI“'E,ÖOÒYŠ'úÇëèIR—þ\'E7ËX%—O\'U5«çà:ɲjÖ:Òc°e1jê1Ø:•¾­Ãë$GÏ^$ÁÅh\Á6­êFêx]ó±T“%ÊYî¤*jêª 5a
-î—
õëà:éÒY^$ÎA¨šv³Â‘ƒE‡ceÈ<‡íâlÈÀeYJÝ*I²GV€}••n!I©Ý2°nז4kÊ9HSʞ¢¤Ç:¥Æʔ†~ó”'MYrÀª-Ì
<쀑c3ÎAX½ÒNØêÉêÌc
=[e˜SÇ:JÉxÆz6oGm=[W˜×Öa°m=’Êc¸_šÂøÖÖc°ìzŽ%ç¬êΜS€Niä²,‡w:²¤†UÍ.†	†¸¨¡ƒ°’4T’ç¬ 7£¥‚Z1°9œL’rbΚYåÚ9ˆñŠ–Նì´UÖ°“ðz`Ž"¤aÄÒ°iØãÂ"ªXÃÀeX ÇH2M‰åK«m!€:QóËÖHÁÖŒdlÅÝ6
¯>釁u¸,k©¡’£Ûª Au˜í ‹cŸömɧ#[R²¶"pM¾íÀÀ\–ÓB*•ô˜¬Ä"9Ö0©Cý»¶ƒåYp¬Ã¤Mœ±ƒ…#y©D¬qÚîÄþLÀe9ùx©¤Ç	[5Öa°m:f&ujø¶kë0ÆJƒýµgÁV
©c¬Ã`Š8Žu˜bJ¯3VLQP‡Ñ́˲šDRÒc¨ƒ`T{Öa°u‹0çÚ:L¦ =ØX^æ%”nyH$^õ‘ƒãC"~‘8Ñ)¿'=‹•‚!µ©X!Ë܂d`Víª0½’£[¸5Öa°ý¾-Zt´Âƒé蠑“`b¤Ç¤K]ë0ؖ’:Ç:Lƒ¶cE¤–6Î()pYZ"ÂJzŒAËÖa°
mýÖVm(pÄAØ ƒ(é1Ù¡ÆôÆ:Lv =ÀXv²î¤N&€e'‹
iùM&)vˆ”9qì`Ò.+ɝŒ5ap›nÖ0p’JzE°v €±SàÈhB••A3IìEZ6hàđ%=Æ e±ë0‰DnïX‡‰m°ø=k,’6¬ãŠÀ©¤Ø"08p²JzŒn‹ŒD2Öa°
åçŽu,–&ÎÚ:L¦Ðl¬Ç`˚¼EÛ²:y'é;«#@Չ\†¸\$Fz‘ò
-{‰c&e;̎ce3NJH¤þ")pA%=V‘Œ‘b[¸@Š­ˆF¡ŽÉE"F[ìݝcE¤º¶¥‘30‘—¥ä‡FzŒn‘YBSmê1XL£gePlër6hàȗjlºô&ëâ0ºåŒÛXé3 Ñ,g`Ý.È®¤Ç¤E3kÊæË
-<¹v΀zEÐ+pœ\ç`ȵã\;¶#ÔX§.s@(Zq@@:A9×6’kÖº$]€6Œ\¯Æ¤Ð‹Á6¢Ó¼Á5Òc°p«Â³ƒí(ÙvmÆåӚ±ƒÅÞéےÕÉui“`3P«GŽÍlœƒ°zA]r'ÔÎAÈÊg#=&=iq¬Ãˆ(s0Öc°˜‡ë0éIÙ§kë0XLJåY‡aL¸—Êc°U7êYÜ
ۅh/‘ À~$f¢mÍ8iWȉC^d`n8ñ¿LIiˆc-kiÈÀNüO9ay¬†R/ÔÐc°ØÑ2Çò’§å«K^µä9’fç7¹[‡É(h˚ ¥
-ÿV=ÓæEC¤…¥­Œc
Z—þòo•?0äe¢”ƒbÏÁD
’§–P[Û9®L!¿r,2͑ø·
-˜a
-µ.zM̨‚pÓ8ƒà`׎ƒ!tàß:X`(üS}$º‚AtØqÙC9ƒ¢ªF‘ãÁªðo,02ûJ9ˆÁrÚŒ3',êž-bÂ;Ê„8¡Ð™$´c!!ÉåØsù·
-˜òé5LviE‡xd*‘ûîêɷϱ¯¤ÉÕ[‰<´Jê¦L®n¸þŒÇ‹o®æ׫>Þ&O‡Í¾ßìw½ú­2jušåÔ웧ïæwû~KïPDFèäæXgFÏpJOÐÝÛåíýv¹¹%EÇðöÅùKzFÛLׄgoî=س›ån¿]^ßïûzÊ5ÚžòˆÐµŒc. ÿv¾ZýFN=¹ö¾žoæ·ÒUޅQç÷ûwh´\Ì÷ËaC͐PtЕ՚ýÞmJ¯ûÑX,U`Ú+ŒvØ&ÉØ(y»œ¯¯çÔ„º‹OçVûI]„q“h ë1]—å÷äü|N4=뺑r2ãªÜ³ƒ¹ÂI+NËùÔÈõã+Õfdú³!’ùi*ÆӍ_n£wFo67)geCW;äýKöþŠ´
vëëÙK€ÆDaªhmÛ\üRW0ûhÌë÷Ö°ØÁ­á‡Ý>¬_¬vl‚rìĈÿq‚_.Ûa7¼åY¶³ªŽÌ¡WÀ¦ºöž/W=‰Š h¦¼üm·ï×ôpQÅ~öÛ^ÞÅn Ë‚ÅöVÔÁŸ[b8Œ„öé -Ąº´sl-dB]ÛÅáÚ~±A¨º_PáZ™ÿúø_¾…ht†Dsäû¤†)J…£±_
ûž•È¿Â2ýîmyàÖT#!e>êÖ%/oçÖؔ¢_ÓækÞsw7lŋÑyv‰‰túçmuàˆYŠ
-“wD”úÆÑë¶ÀáF<‘Ç%tza?:‚hsÖ4n!a“Ë?´ØOƒg~t„¿@v=ZE¤Ãt=ÝöØ-$ûÁžc›ûîÈÿþò_šœÔýN,ü‘îƒ>Hã
-ы§Å‡…Ë~õÁ¿&Iɳíò¡ßrÀÀ½CSÄÜ*ftÈ·šŸ¿ÿi±-…×dìՏ¸ó‘úsµ
Yþ•Š?”ýo¤²\½X:À 
-ÿš°­æÛ[Ù £ª6÷ëë,ûÍlà¬éB—ÅŒ˜]"ªÂÇ"'Ìú¢p ;&¸žšÌûùÍMœ1öÉy^õïɌ8åVYLz&±ÓéaÉCÎ4ïEâMŒž½Ynn†÷ìJHßÍ<¯®øUœjÕbçox|, 4äaŸémKâ SøE51‰¥Íäi­ðï^`Ÿ‘=‰d{ÒÙ>4KÛ±žTã<˜ýƒDø*Ì
-#qI^¬ÙUeŠP ÓlîjV»ž÷ND‡:ûš©CÇG³3.±ZΆ<ñH˜~ónÎB#°0µdý`hRÅÿNƃsE8š÷Ô8(—!~ìBØ('žúÁ](¬UÒft•hΏQ‘Šqûb¾øh™vlى3QIÜ*O”œ†éOrÔ]¿ÅvE
-â{=9œzÖFýGípï6ÎåP2œÌàQåpÚ@CO£î´‘<]-QÑ`ýÚYk#£ñO	¢ntÅQÑÌÕ淛a'+
÷vE'Üñ>UãNŠn*µ˜fz“”›OY_W› îÝåŸÆˆgýõýímØãñ]‹¥5!-	A"Õ4în; j¸–p€8ôH¥ŽK(Iâ›Cµ¦Qáhd±ä£
-ÃÍ@Zâ€1yAPôՔãÝü¡çð+vÏGô×® YP»Ê&Ó9
ÊÓïï5dc,æüœ¾öÓr鱚$¿L=PÊg<‘h*æÄ)è„Û~´ÁAڎ‚÷$dþc¸fUq©åÝìÿÄÏóX¹ÛLf}¸ßßIi³}áSÃÇg¾ß•$èY†]Ö§/¸ŒúUQŸšo䐂S§%íNa”¾7EMñeüXÓf¢éë¹8ð
ˆ®È(/Ûåïw¸ÚTùYè\ZG~£7Ÿ93¸yǕèÄՋ±níD·ó›‡ùfî'p—TÆJë…+U!\•écFS6j3qÈn¢Êë~¾âeæçéÆï0˜&M«mˆÇû%ʌ®¸pâÆ~òÑJ¢DWI¼ì¸áÚË}*‰zLZõýŠ£"+Nœ,ÿAÓu5͋»°j[·èP/ç¹Ôm’Õüy4Ñd\HDJ0–ÿ尕ŠŒ?Ø-†õݪß3kËhnúǑp8ʂŽÔkvnâ©2¤™‘›x]àU§HãLÚ²‘»¯ìÎ}Ú,ß.%êŒÊ[ÿnÃ5bŽ…Ôë~ÿ¾ï7äEHDðu”(—øª
ù:n®¡jãwáXЕOÜi’Ÿ^½ø7õ‰Â›- û]ÈGqIÜfn¤k”ˆX|L€TàÍÛqÇ­_™ŒR|”¨Æ~t~M;ç‚w$I§™Ñ?¸„¼&á~ÝgÄ8Œµø3¯f©»®P.Ë4™‡ã©;p5„½!¹ØK,hv*woyÄz'}¦fR©!妧È+*!‹—¹ÂËO»p—ÏÒ¯¾t¡rxx	…Äd<[?’«ávJK䘬7Ãö™),ÿxwÒiù@çªÜÁ÷
¤Üt¶ÆWÞªçë~ûSö=O-Ã)‘àÝ˞„Èr¼§¨äHªðåjÙÇuŒ*⌃E¼…ów¯ækÙ?ñِVø/Q<[.D;×sù~¹_¼c¥q§P†kãR|ù§Y*_þPõP³iaàb…r}öÄûˆ•ž’#ªà¤¯3û÷ª«PÅ?÷<¡³ªBGfjzàGŒz¦¿‹9v„ÿa;H`´Õ¾xFv Ï(4}=_­û$
-¥¼ºw<_~òb¸Ú&9Î2ú‚üp§gü×ýî~%áÒŽäé|ñ.ÞVáµ8wqÇû;¨óís|TÊ߇á{°¶À÷üU>>ù<ùÝ9íU?÷‹}òlXܯQ·Õ’nA÷ƒ”™4iG-È:ß_=ùדÿ;	âendstream
-endobj
-1380 0 obj<</Type/Page/Parent 1369 0 R/Contents 1381 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 228 0 R>>endobj
-1381 0 obj<</Filter/FlateDecode/Length 3497      >>stream
-x
Í[[—ÓF~çWè-ìõîz侜Â›¼”Ø–ã—ýõûUuwUÉ6™YxHÎ
—>uwUuݺZü}Ï%)þwI%y•Ì÷ÒIŠ'òǛçô$©Š.’¼¸@̓‹{†\$e9©fÈEÒæ“Ì`†\$.OG ¥ÖnR˜¡–^$™kFc-
4¯Æ¨¡–Õ¤63[hSOJ‹zpåˆ+K-ÛÑÌX*ÌËI–¤BCBX—Nòð&DCoa¤ËšIkQCc,”
-Eñ»<qAëd6e‘4ÍÃa†ÄÀ‚5,`ÉӳŁLèÀ€¹¢!k–-é<ô„Œ˜ËȦ´4ø)s(Á †Z“DŠ²nË&DŽA·ž`ª#æœÃ†*èV­nJɄmB›(ȼ¤ìà%4ŽýÁ“ÁcˆXK*W̐0ψm™ÔÒ@«¶¥¨ƒ](ÊτŠ°¶%­
-æǹÚè	0ç
-қ€~`š½1¡‡‚RÀtÁ€–¦=®HãŠhÓ`mƒš|¾µ4к…uêX¦hSvvEOˆ0ƒs5‰b†Ce†I´4	CælPCmkX‚A

v]ε4‰ZÃ%Ã,`ä~l‰ž YS16Ì8Ž-Q1C‚WG΢ ¥½JƒzՖN
¬`BU06LÅü8ˆ&Á²`BÇÛ­ÆÒÃÇÅ-&Tú€yq3dHS:ŽÓ”'!"+´--½HÚGA-
´¨È54ö*-IA-
ž7B

4§¨fÆ([ƒA
½À(¶[]—ÒTޒZC(ñ„h>bâã˛RwÚ:.`YÓ%
-úHð²Õ9:0`.eÖ´4íùµ4PøŠë…¯S^d—Ï™ÐEÖR=£˜!1)‚"&•–¦%)GÔÐ@‘¬Z‹š)%É̖šQ@0¨¡ÉÌR„Ž54m·¢^2QL¨"æ3@. ¥!NAöiPCE--jh–ƒŽå
-"Gþ“
-ÂÄ×,sh˜–ß$ÐÒ~ZhIP?-¢Õ~&tڀ¹"…-æZš¶5§Eõ
-„óªù2¡
-˜K3¸?¹u“0·†Æ´¨†`Š(ªT؃¢††¤ð((PPf)k}Ñ;HOKã4£˜!±¤#oSÐÒ@YŠú%‘WŌ(É,¨ç `
m™b†$P±  ¥Ö)B¯A
MQp5¨¡¡!ð`Çzv+_¤zþ˜P
i©M2Á)ì
-Ø
#]EV­C-MÂT¤kh†‹A
M!)ê…A}L†]‘ufL0†Ä´($ €”,³¬âȵ'hœ!C© 'Ë8Ž¬º³Ð@KcEðVy
F
MJ DmPC“ÿR«¨¥¢vl,jh S£±†
-˱ëzB9j¼LÇÞ8æSÕ_Þ²ý@Äjɕ¨3cõ
k2¸¯b†¤]aG“–
-Ÿ¯Šš4HéIQŽqŽ‹ìã<A’°
EÌñ‘YAKcZ”Ï9¬ÜÑo›Ò´hÕ+êEX¤èWaB
XXD@KË¢Šz&âXԉXTP²]J:Rèy‚Ödۍ«b†¯‹3$qCò(hi 
en2_åúå™Pnæ—̐(;)ë8Á‰õ¼Ž´4qCõ€e³t©)ž=Aì°=GŒ6kò›Ì+Yb[p@àù·§	E¨QÐøŠ›7ŸÓ¥Här±8•¯1ù5þ-ƒâPä¢ûB¯dHÒ§`<!Ô)¹˄
q8LâK¯ñ„JbB8…‚)	qÚLI`PN¸2NI
-a%®`††ŽÃoÇ{†ŒTü›¸äŒ‚Nx‹¥ˆ}ª+ò‘É”·ò
Í#°Ėˆ(…é d =º¼÷àRGš\^Cõ¨¡°/u‘\^q—g÷/§ïæ]2\'‡å¶[n7ÿºü£àaŽF…ag
»ÿøÃtµíÖô9æÃ$W÷¡ê	=Ã_ñÉÛeÝwWü&졩Û/‡÷ҁ°m“…Çïºí§®[ÒëÐF–·áùïýòjøÄïãÜUWÔó¤½äõP%eñÕé’WCVÈ´o}ñ³/-#k»M¿|OOa,‹Ã±Ò;,FÏ<+¢øTš %=f±2‰È²f‘õËÍv:ŸO·ýÀüSG!.x‚ÃVyX‡¢¯û÷»µ@¶oªÊ£“üçRGRB$”WåžhŽ…£VS”áÅr»®v3‘õWÀNÀì±%¢(÷ÙÏØÓý½ë×Ý"Ú6
-<ÍVtlîþ¥k¿Íö4Ÿ°~Ùm¶ÁT©7äòzB{*m‚]ï¶41¢oQÛüᘢ\T…ìY•â0/ûE¿eëg!Œ¿˜éîè§K[ޝ¥üضjÞ^<›#’øü1n–Eӛd°Aœî" *úã^HÆ_O7›«w4Y „ßW_.~{IOq變h˜«ùî}¿ä—)‡Èj8;ÅOÜxé%†;ˆm÷²žø '{ùh×ϯ‚£Qö¹Ëðp ¢ ϲÄÈ"Q÷X$ç• HLwžúA ®MÀ«'>Üɼ•¤Œ2Erúj>íQ–|æÈf¶&YÁ.?
ë+_4“²	4¸:Ac´uyˆŒÝr¶þ‚º…“;Ê—E$N朣 ùž6뜏ô±ÖÏã}{ÞmEùå°<›
ó݂
-õ_QÆ
-âjºÇt°¹¯×„à ùöCGÏàÐùƗN[ªøøM\„7„QùM¢K]Ê
7Æ¡†UtsúãG!T¼…춉BHõY¨„€7̉Æ
©ÙT“Ô‰°‘w°c[øÉ#Ës‰pÒKñv3}ï-ŒN‚wWjßÙ9ãàŠã6FÙîåÅvXÇú̞q.¦‹wÓ_|hBŸMO#›nýàÕt†úÕƒsp-'‡³Ù°[Æ@§§•~y=¬rX@ hëx
-òɖbŽgÞ»§Kvxt~â‘"yùäákzˆžz%Qà	jâøÿBõÙê
-}¸6Ø3åçH
j8ŽMàõn½6,¥)]oÈéŸqÎЍ•ª¸`‹qpöùYÌ9J0Jª8ªŽÙ¿Ø­VÃ:&¾ÚXŽØZ@bNÝúc·f»EMN§ÜDH24XÖÞ)×{²Í>tNƒ¸BÔôìÄý¦ó§ó͇~E³Ã‡Ô;¶=‚‰¼É±¬ùæÙczwv’†³<­ù³êÝFß6®\Áçb6þf=F¥d{ƺ׈ˆ…X¢ê•BŠC1;
-Ÿúí–WrŽ<fßÌúm¢}NŒœ¡9;
-+¸tæm·
‰óU·ŒL¢—µ±·4;è¬ÀºËPëݖ“o~ïë"6%nµUn±¢o~3Wß0P9ôÁ½“|0tŸépb–8æ…Ï×Ãnåƒv5:E²˜.Q-P{†®Y5'²èJ{{«÷z`øúo/Ît³ÝºßržDÏSëÌc2n(ó[÷GbMOe€a«q=\‰{F6Iû²ZÎ\щð݉&Íª›õӹߨQdÝn×ý»Ý¶óۍË)&P¡Ð’TÝÊyĪ‚Gà끳µQàn+­¯×DÚ§Ÿ§‹•?ùPÃ=žQ½xFÜ£¬‡¤§hzö^R¤B=J“”“P­q>±¢Ó̸xÈŒà3.ÞëŒ?ô³Â£ã„
-ބÿBš ø$øNv«ØƒO(ˆQsJD~óm~fŽˆÿ>ÿýòœž.
-àŒÝÆ3ö1‡`͇ˆEÒÀÚ»õÌ­è¶H4›
Wþ8cÖ{Þw0ÐHê|üŸV:.×ÚЖ½•nñî	½š¤­•Á0mAìá?oõê…9³Õ+Øß+¾U›ºC_ÙÎ#E;ádXóM5}â.ßBÙß땰igôµ¥9÷³¨‡uÍWdSCÓðÕ|ê¸-‹PÖ¦'¼<òªÁðå¹íJ²d‡åÎÿ!Ùì#;+n1ðõԝõÄÛ¤Gàð%Ã-šhÉí…%.{èå9¦/¦«Uì8ã¬.·Ä—ÊS_ã 1Jœž94nlÒaë÷D=TWݚ;KY©Å;«~³Ùù,‹ì[㲜´Yä²ý®‚Ä8¦â ŸGcâ@]M×ý&\bWéO’Hƒ,gøHÉF¸ç˜ÿóÕ|˜ýå"Úæ§Uø
q5ÊPÊp-ÏѪøØwŸÈ±k?Á¥Md_wíoÁaH|Ù}ìæ|?€¸ ¥†ÝôÊO}vÐ
ŠÂ8ú†m_œÃ«êó9_® ÏōH~¹žþåË&äæpðö÷GDô2ËØËVñœõå{ˆäŒ^¤÷bƒóª[¡s9
M­ßpUß¹Ôb%àËZùlt¨@ÈÛï°Á™:>¹Ž+^ïewÔIÓ­¿¢DM£§$´×V{ÓMýg4%¾{‰G‡Mÿ_ÞIúŽåʨQäAéÁ3|Çß+Uø2«Á?Ããï–ñ¹ÎÅÃW&¯×ßèv'O†ÙŽÎ@ÒMÏqn*ZN5nþðúGÚó§—÷~»÷?
ðô0endstream
-endobj
-1382 0 obj<</Type/Page/Parent 1369 0 R/Contents 1383 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 270 0 R>>endobj
-1383 0 obj<</Filter/FlateDecode/Length 3564      >>stream
-x
Õ[MsÇ
½ëWÌÍRU¸šïSJ¢b›U–͈t˜ƒ.£Ý¡8öîÌfv)9ÿ>@7³\ÆrÅ»Ê֛·iÝ=ú׳$ŠñoUi”•Ñró,^Äx¢ÿy÷=‰Ê¼Á7QÖ,ÖÑÅ37QQ,Jø‰šxQÎÀM”¹¾„Z¶Îfb³’~œ‡WÖ
-h¤›¨Žû!qBhœÑ|X
-ëÁBÓoòB¡ŽkªE•ÊÉdâý8aœãjšo©œ˜LR-2C²Ð¢)©*@…z®ªE8ICR&"¶$/²
-A¨ãêœÆ)g 	­áþ@ŠÐ²a_”͆
	5¾¨á‹À¨Bu -Jö…Ha„:®I`¶B9ɦ1ÍFIšgì(Ê uœLM9!RÒ¨PR„f1;J„2B—Ä9ÙMI‹!6/0­ÀŠX,
-r•ˆeÄ:N&§œŠ5ZG…’"”—½Ê uœHQÎ@
-(ÉBslfÚ6<S
*ÔsMýg 	¥íHZÑFóB¡Ž«¸8WÎ@MÊEeHŠay‘°I“B
É4pƒ0HÃø‡Äñ0̏ôãX—3 Ê@l(
-}3SÁ®‡òa Ś<IBÌ@ByczvÅ\ø‡üB—5utœçê4™;1lìáH€ ÔqXÈÂdª„w>Ï:cÆ9®É¡gà$ÏÓ~¤Å`ñÊ°䋌·Šó…ž
YØslüÀèÒPà8
ùq	,
ù
$ÔbÌþöïgÖ`°e	K˜±ƒmÒD%‹Ñ³Ôx’A0žã’¸¢))i1Ä"A¬²"6‘D->aÄ:©0‹2å„PNè©$çæ,–t‹d€é0 ¡b rœ©¤Å`ÓrÎ:À|a¬Á`±Å+˼‰RD#8_ÇZ1ºÖ`°H:V²Å`QJ;Ö`,Aø†RɃÍ(âÖ`°y:³†Å`as;g‹Á–	íàð^ƒÁÖ¼kð&ʑ‡¬¾ƒÅ¬ì{Ùõi#EûZ€ºÞsâê@Zì]oXv½ŽeWÖ`ïzòëýXqu`-ö®7,»^Çf],0Æ´‹k0Œ3ֆµ,§ù0Öb°(¤s;Ö`°e
皱ƒ…ö³÷±5³c
&×73É“ë«™5Äõ•ÔµâzÁõŽ£BfTÒbr=e
Ã6§\dXƒÉõ
k0S°¬Å`S6”ÎÊbrn6k0ت˜id1Œœ°‘U²Å`‘äáÜÀF†ƒk0X,1«‘Å`9¡˜±ƒEU`-)îÃOè!îcÜç8·S•´˜ÜG•DXƒÅ¹p½ayyÉ9…ÃLÎ¥|iXƒÉ¹”nk1¹/¥½©ïµ,Ž
pA`
†¡8hÖb°ˆ=pŽµ˜\PÏ4âtKkIK'
dd£¼Ã¿$Òb˜"a³Ö`1V…²âYÔtúÏ2žuœ1R%-†XÄ(x6°ƒEԁýk0XXS
-¬Á°?ÊiØPY‹Á"YaÍ(+ê !P-ê0ê8.X,'%-&u¨B0¬Á`±³°$ÂXƒÁ¢>Ƅk0&ÌÏk1©C§ÌÀŠ:‰œ2EAÇ%•©’ӄk²`
ÆK¹à	¬Å`±Ï ŽŽ•)ÅrF•)1SrœÛúJZŒ)!Ma5¬¸5°cJ()±Ø”卓Ôr¾å"€¦d ÄòÆ	¤Å`QRUpÉ¡¡"¶¢ÆŽëp$‚XÇ91JZ±ÈXƒISr®a
‹É–5lCÛ*Œ¥B;A s.vDâë ;\ÊY:kúqtžóRˆ´oD@³¬˜vÓÎ1eó‰åGÛóQR¦r~–_2¶uTÄä”3³Á™³QR„""‡1B‡c&£œ$”Âg Y(*mäñŸU¤c0¯8R& Èã3©R,u¿ö÷øÏ*Î1\•2&HݝÀ(/K‡w;±%6\€à0ã:p<Id'õ*ÿY'éè„Ö%ýŠ˜×—Ï^~‹¬G—×!ã"*«<º\qó—Ï/Ûë.¯£ÓqØwÃ~÷âòŒ‚¹uBÃNRöüô¦Ý~C«„¬ž#<.èœïŸ\´›-ÿ«,÷O·Ýt=N›vXvÄac¥iídô»Ýmç^íç^æVS՘ÕsxÞTð»Òԍ{ÛþF²@4Iæžý¶é÷ü«¹®äáâ)üƒ32Íë¤,g*•s•~—¿öÃGú%aØÈOaú˜ƒj@iѺ¥šëpqÓNìdŠ­óA´WâãG•Â¹ë±5ó*¡j¯æ:Õs~Ù'i¼È+ºT¡¥¿î>uk^k8%¥ÍÓ_kÍ\§«~%nÂÞ­J¯T?87aWaë?•ˆÄÍۍǹ£P~°(7‹_Þu튡V-üéýLϐOJ“{ññ–ºO«äP««©ßßÝUA­'³§(P8­P}8K²ƒ÷ËQgm§nÕ/÷ý8ÏÐ8Ð<òh>ó:5Í,ô!9¬¾·ÝfœþÍóÆÍIævP´i·[ؑ?·ßG¯wœ<”*t±yë¤ØNH^²ÇN×½/èX]?‰@†Ùý÷‡ëÎUaÝÕ
-Q¾¸ù¿PÊÕA)ñ
-/Hè|œ‹ö·ƒ_z¸¨÷!ñq–ž{«ºj^à¡æ;ÜN¼•¶cŸa£wÝîv-å*aR—U¼<Iš»­ ©­í….×Ðgÿ`íÐdl´ˆxµÝvêÿM’.n´«ê)Uƨè*ñîB¶JÝ{0Èhçã´o?ôë~Ï>Å5lݸ4`^óXD“Fܧ'ƒR§7YœþøñýùÏÿ¤!t#ðtôpös꜠:‹…8L͵¸8ý‰”@/[“lôóÐû“UéOzåû^¯ι³r=[¸4ì]óæÇ3vM(4¬˜Gþ³×M6›{Ñzš{æ]·ú¾åÃ,Z¡’ý¡nÅ;8Ÿ› ¸ù0µÃjrvFþÄ
»öÙúëè‹v”l ÐA@ƒŒŸ÷†
-Q܄Šã=¨ÇK‡°Ú{zÜßHWbvØ<=ûö‚ŠöSìÛKS³ çã[o$ËÄ2Z’ò`[b÷͝ÿ¶]öÃ~ÜÝÐH¬”¤ñ;5þJõ†
-§ßÃëqì
N·“;¥$2ó\£Ÿ.x} [“©KLÁR½ç+?ójájÆîQRJe‚~ô½+áD­÷—í@¢Â%ñP6fXyÑr®û·Ò-Ak¿‰½“ºx)Ö²E÷U;mI(–zRû.ºwC·”0›¿ª£‘{uøê%ôƾ\hN¯A3џÒZ.Šg¸ÅW™Ž¬K??]®èú±!pïªMÞÞ²€ñ8¿³€½õ³—œ‡ö—eõdìÏ[ۘêýóa”¤í9/½ñ2¾ªS”:ê\Âñ/ñ¥Ž:
D²%C«õˆÓçK×
µ_´~aӋN2ÜýÍò,-É´Öü¯dýÒT3W»F•¥[k}Ú¾šãÀm»&´„Ñ.YîóMÇÛ
-%¬¦£|ÿܽñ&Õ&ä§nÚ¡«ðþé‡khOö²Âѕ÷]ãèv×I¾±ýå/ß	¼¾1ûü÷(jp|£sg½Kr´?oV#¯Œ&Gô;ÑæcÇëK#$“í„,ãÚú¸MÒºšz؊D’ý5‚­ÆÏÃz”öµeüʉ>“ö­m:¶øŽúk–ÕðM8:ÿ_ÞzTûe±éÎàªtž®ú

-°£)Øj¨<6É+(ôqo·üs|fã^âËgä·Òÿö¯W‚½5ƒþ0b—ÅÏ;Þqø­žñ£u»ïvŽð푞:/OÏ_žó&Àµô¹d·o—¿²Óí^¼žÆ
?´ùím¿œÆÝxͲé›é‡è{ýSú²íÐwóÀ›nÝI𹏯‹ígéÒûÜzݯ]‹×ôš§Úk·è:Ióð¶Ýí°¶9`̈́H²¼i‡lo´Špþ篍$+Èê'G•¿…‘aL-o‘|Ÿ'ºº¾b÷Ùªá^½ Öjí»E(;Ë»CóúїÀAÏ…ìê>meyÓAUΝmŽœécßxMÏ꯱lÜLÅ_åJµÄ'Z÷î‹Nß4ÅËošš]Ø,²ìÁò¥±Ê«D‡e¾)îgïÓ‹p+	®ÔluÑMŸz¹ÆßÛ	%ùHÖí\ãz¸üzmgüíò€íîášêÿîáVŒb
-²wݝ0·Ç
-T‰šˆ^ß~äåI_)øî—zå
~‡¯Dg=·â¯vXã‚žaφý4®nõêÆÇ ˜ÜéT9©*S àš`>ýﺡ›ZÎøƬ(}8é‡k.¯pý›Ôîá{ÿŸÿkÕèàê™{®Ô›îí|P`<¾¼–ņzðiÈ×®mŽZä~¥‚%Z7
ÎUøÐØ'ûnšÆIÔBtz€¬|tÚÿõa’qì¾s+…è1wÔ«=ʯfÕõ^Š{µsrçø=Ýz˃h©·Æe·c“ °æ_ñ˯8}H4½œ·û協dûŸÈóNuj¼ü_÷ñ§IÈäY†¿ÒÉß¹âC‹Wo_¿ŠÎ§ñôa¢7ãòvƒ»ÑÖ__gT†PõZÅ
}7ò©§ ú·Ëgö
Rendstream
-endobj
-1384 0 obj<</Type/Page/Parent 1369 0 R/Contents 1385 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 287 0 R>>endobj
-1385 0 obj<</Filter/FlateDecode/Length 903       >>stream
-x
ÕXËnÛ0¼û+xLVøÅS‘GSôP müŽã$,+õ#@ÿ¾»KjIÇ@íÜ:	``8ÜÑ—ZQú9PB¿^S‹I;•„þùñGDmü¶Â„J%0·ƒ¶Â¹ª.¸¶B)Y…‚,1°ÆU¾dl×ŽàEKÜ
--Õkj„ Ð@º®a€‘Ĕz¡™ä…µ} ˜8¥šJ‹šÉxE*ˁr`â‹Ùd¡5ˆµ8Æ2•/ÎD²Äèc;ԑlc@¼—%e—d˜,1Ë2e¡¸®1=Y6qI†É³,³QÖÕ´êQ–@–M\’a²Ä,Ël”µ†je	dÙÄ%&K̲ÌFY#‹’Ȳ‰K2L–˜e™²Ê%#e—d˜,1Ë2e¥)JF Ë&.É0Yb–e–dm¹d°lÏE™L–¸—Íl”õ>–÷™%@²b ‚9™,1°ÚAu2ek¼G`ߒ,›¸$Ãd‰Y–Yºé­ÃޓºE(Km¦ç<vÌÌ0:
›¤‚xÉ©‡‚½
Îo4<1zš¢µ·btOý†'g£ñÝ|*ºqÕ-ÖÓÅzõaôQ
£†)l¨1ììêiü²ž.qvrБû3¡ë
-ÇT]õ#׳ñã¢[͏H@k7*¤É¿º
)h[ù~újÜލIÖTF6iæjº|MWӕTi¸:öŸ2
S9¿±¼
-µƒ¥0°%À-˜UdWë”ç—ÅzÙÝo&ëY·ˆv#qìD÷ê''Cï·Ò×Ûé_¬V›ö“§ê;ÏuÙ{#Oàü¦TVÀl[MWqë›êȹý•|oD7»FâfÂÞÞß
è÷‘VUúM¦p:¾ûW·Á>ƒ½'ÞT&n¯½†ôɲSm¯!ónYº{ö²§gˆî‚Ý
-¹Ã¹wc(>P÷V¨~7†üaò§gˆúÔî–k3Ô¼Cá0Ct6:©ç¥Æ»[!ø„€‹ßþüd¥¶¯tåNâÙª’/ß<Wá°˜j’'ç§i¶üÄgŸ¡o׳ùíÁ¡G†þ
àiüš^!|gá³·7ðÞ²úˆ
VW¶þ_îT¬ó›&½+À²7Æí<¾+Ü^|½¼ߖÝót²×ÝdÓÂKÖ¸Q0ðmÇÁ졗
§¿ÎfèèÓhð}ð‘åtendstream
-endobj
-1386 0 obj<</Type/Page/Parent 1369 0 R/Contents 1387 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1387 0 obj<</Filter/FlateDecode/Length 159       >>stream
+1102 0 obj<</Type/Page/Parent 1099 0 R/Contents 1103 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 58 0 R>>endobj
+1103 0 obj<</Filter/FlateDecode/Length 3675      >>stream
+x
Í\Ûr#Ç
}߯˜·8U5÷áä%µ—8Ù*ßbɵy•¸c‘THj×þûœt£1$ѶèU\µÅ3g Ñh4f”ÿ¾(²ÿYWfU›]-^ä“WøOÁ¾ÿ¯dmÝãßEVõ“.€»ì⅃‹¬kGœƒ‹¬hŠIã¶Z5“)„vͤ€BÄÀ¼œôŽeò~Rc\“Àq¤šiõ,zF¸ÈšÓÉ9UjˆLœƒ‹lÚBÛÄ95‹ö%Òc°Ð4êÆGz¶¥‰n¬Ã‹¬Ì›Iå؊žkÚ^<ה|ª1%A1êS"Sàã`J„4…S•HÁ–fÙ±ÓPΌcÛu“Ò±jJÓNZL¦š" ™8ÕÝ8£)Æ©)a•…:FzLe+<Ù±ƒ•HJ¬*‹[yª¬€¤làT;ãŒÊ§Ê†qE.3k¤ÇP
¿'Öa°mCÏ&ÖašÒŒÆª)UŽ!Ñ
ɔÀ©îÆ9M1NM	㊢£gôêTC1±ƒmd	&Öa¬†¢åZ1Öc°UÇÅa¬
+e˜ºtÎ$C§–ç`4Ô854Œ+òŽ¦é1
Íé÷Ä:¶-è¤Ä:¶cÂu¬ÃL
+“‚õl]ÐIƪrz=ºA@rCàÔnãŒn0NÝÆeECô˜nè©Nb¦Z¦›Ä:¡‹Ô”X‡
’9íJø¬îsI(=Óµê ÄbõŽô˜
+s5¥¡ƒÅS¼`ÁöŒ67ÖaÎL=bUa¤E&ÕP@R8pAA#=V…Û¬N,ˆ˜*qŸt¬ÃP©dþM¬Ç`!©ñ¬Ã4‡š»±ƒmkZy¶/Gϕ ­Û:%%¤‘“¨Lœƒ!H'AÇy M$1æ1<‘señ‘Å(_‰uì´ ë0Åâ€ûõ,R–×Êc°-cٍu˜.d
+O¬ºªYº«$N}fœƒÑ…Æ©øàB#ƒ#‹ù†Cë0œÔM¹äë0c´FBs¬Ã0Yn°±ƒÅ¶çŸ«n€_-ÝÕ’§vç`tƒqê†0.¸ÁÈà†ÈªÙ‰u˜n`2L
+yÌHê¸ÜÒX‡é‰Qc=‹B֏õ,§®Ç(ë˱dÁ"ê¼dÁN§œÓÊcÔèHÑXÆz[Áh,K º¬q;ÕԀL]‚˜Þ¢7’syTÖ¹!ç \&)$=‹Z‹Ñ†z¬“SŒÕäj™É›ç¬EA"Øa
+fæX‡179‰ÁU?•T¨‚%ÁÆVÜêë0ˉK¬
+F$0AÁ‚œàÈ"•ãH˜X‡1¶eìX‡iϘõ,Tô’U©®å”䔊,ÎQ°'±S)…c‹8˜zÖaªÌ#Pë1؂Ʊƒ•²Û±ƒmâ‰UsÛñ`® gndQÇuYe¬­p• 74²(404±Ó-²mb~J¢p‡#P,h„X‘<9'ÎAšB½é1X©Éë0X„æÕê1µe
’XÉïgù]
Օ"?rZp½Ü)¶0»hÝê`60r’VîL‘¹íìW
+H‡=­É'V¢ åAKÊ;ç L,¦HÁ¢Dƒ:"‡CUl£•# ‰
\c¤Ç&ÖX‹	§_U¬€$6pAŒ‘›XcU¬T™Q¬€$6pAŒ‘›XcU,¢•Î\¥u–Ä.ˆ1Òck¬ŠEBNS& ‰
\c¤Ç&ÖXËݝKL|«ÀÄFNÅ$Òã(6±*¶Ó“ŠÄ.ˆ1Òck¬Š•Z3j+ ‰
\c¤Ç&ÖX+g²A‚(×ceÑìX‡Á¢œè«‚+=;A‚œàȪ Ä:l‚•TS”®¢V@¹’j"×µPš7’s–2Û&Òc°Ò"K,s1¶&îXB…þ¦Ì„B"–»D¦å0F»FF9ˆG¡Ê«’@Á‰Ó¸¹ý±1ÎAn~Ü£— 8´€§‰gÊÑ(d_ùm®̔TcdL«•8\~ۘÀàv4—y™„`–ÔCF9HÏWpG⇽
½å(ÒAºªÂ“— LFÇÑÉtœ}6N<ŒK–ä7
…é+ó.aQýÓnƒD.Yò–ß&.2Cײgg”ˆC±Ì8Ô½€¿M\d(@~›v)Pö‰zuùâüËeVvù
ÎE©	ëêìòZÞ5àòÕ—Ãû»Y¶ú½^-·³åvóçËÿ쾎Xßdç_6Ø/)ç,:+)苋—_¿zÉ1X)]ɸ˜}·^ýgvµ•ëèÖ}¸þfuõ°ÀS†í|µ$Ëã_¥ääóü¯ ç_ÖfÎ{
¬d¸íØWm°ãr6,8ãtZVý÷½,J–—Ù4•ùzù~³]aj¦“®yfÊï›#WJzû¬…Í–×·Ãýv¶&Å<èÖè+&¼„pUøÏÕ'™+çñŽíJï˜ôEˆ¾ìír³îîD
+Ñ<^–×2:ŸÔÓ2H¼œm$¶KtBM€­œþР訟`$Xj!ŒŒ¥aÏW]r±Ý‹Uå¤Ê§ábþW^Âa:]ú~6¨õØÚ8x{;“qxë£Gƒ,gìÅ­]»nf’N¸Jú0úæ÷D—Å5g|óWŽRåbß!¯æw×óå
€´]¶1È9åÕ|9¬çê„.:–êé{PlôZ!#TGy Ü÷Àe˜}œX,"ºAδ6_ܯÖÛa)ë'⦌{À&Äž˜‰ÇƒšŸæbôόn…ÔG¹£ÚwÇëõlØÊz@ÑSÇýáP4lïeÉ¡\vaÉ]­–æ7kÛñ:/â‚ü0¿›©^pvƜÆ-“ɔʝ±+6”æ(ÏÔûž±$ésÂÏ«Éף̩^àóÑ HQEóy¯Ôj˲ŸæÛ[q£Ï\[äãûa-[2Z_'«è*öO\µGyªÙ÷ÔÅvXoCRÁ!«±ðø…0ҔŒln7†M
+G†¶
+åH¶\¼7þqۑº	wì݀ÐĵüppjuŽßY~Ñ9Ö+­ÁêIaFϗ³íõ„
Å AÞA_蔱ìív7tŸ$7ùýnÔ¼¼CM³DFø8oà°Qö1a FI¡"9]7ô¹äÙédÚÆ4È֋Ý<U(}‚‡yëz˜-´Ǒ¯«Âfþ¦ç£Îäð5Z#Ý®µã Ý_#—ëŸ)ráwó-LÀÿ݋7·Ã:ìĸµŠ›Ñðq˜ßñ$Ⴗ&Ñ}ê¿£L]›Ùú£V 8‚ÕÕÓígE<Xù•4=Ê}ÝqîÃ*YâßóÙÎs8˨û–óŸ¨(òyª¯îæ8ãÉe¼ǁód›|ôš=ã¯?ÊQÓßí¨ƒIho½ùöâ/â¾hÔûîû¹†Wàu«Èwóeÿ“]®cuËß\êeÎÁåòÇý»¿½8/å*B2YgÛ+,lѝË2Æùh®ÐÅ;0WÁÉ5>­å"Wq¦åí “Ž©‹òßJ"Æ­¹]º¼EÈIvÂ7H)jÞ¬–Šã»xúz·Zÿø7*]á+» ó)òÓ12‚Ýãà‚5º¡ñ}JœÐ7óáf¹ÚÄՄ®xgÝd˜…˜\ÎX
+£ÄｧnÀßfì¡[”7ââju/©°ÄKÛ&޾ѽǸ¸½ü^µ~Ûø`?rݍD=Ïx[^ß®l:ð"®G¿J—Þ¡ª
+S´]]­îj8-æqŠ²¯fgrm\ë0ü6ígOî¨'oàwëù2fo_õf“Òß¼ý·,$¿ýY$-ýäõ:esEãý»×”†µQU'9™DWà#½ÉÖ3‰÷ÅW««cÀÓíÃGLځ[
+íW¡í¼;zHðª=ÜßՑRÖø
µÅrXhтÎxwÚJvÇ
+µÀ·}å…𣽷ÐY‰©o'+"ZŠXzY=åN›añ^p´3¤"»€);
+Ÿ£Ü7×ÐFwsZî÷ÖÞ.·ëÕõ
++­!c—ä4
+þJ©jÏ>æ±×{¹Ù<,îi‚¤þF:Š'+ã~¥8ïqVÎðòÀïi(Aw«>ö Äwûµ;õýÁ˜q‘A[öÍ[*²Á£Áք¶Ñ©õ}D~4ïâ;³>hŒäÍgdL-Öì£qæb*;hŒDé³7F‹GO<#cšƒ3£•Á£ÆÈàgoŒÖ
+ÓÒÏÞíü<jŒô矑1âܳÝ }˜G‘îà³7F{%#-½gdŒ¾Éٝ™Ð”ðöÁܬ‡{´Góg°ojKëz}RìwÛ"%Àó²¥ïýþàõÚ\ßµóë­>¾ðº>ÆCþNÅ^$£ž~@e# ž‘þàFиâÑÉò'£ú¸ÏBuF8'ÌnÖèóëÛd´ùS§þëæt÷†4C¯ïzõIjÙ'bëuã}Ç'ôÈ"‘Þ„Xo©¬›qáÎWO^0’îÜY	möQKZüaIì"¼¼™-¯õėÞfŒýýy‘…
`ǒ½Ó78ªsÒÐ9³#jöýl³º{°“ ¾!±.Ô|)S쿶Øk½Ü?¬U&žn¯€~@Ëýü«ùòAïøã‰ô:‘p¿×èã×*Oí¿àþý•?}±Ä'ërŸ£é|~»
+g°:DþS+t´¼ ù¸+C½Ãád¬7^­î>Ú»Düqo|yyôŸèÆBߦõP՝کx8ˆŒ§ÃMmœÜ?_3LG;5üŸÈ/ùšp>·ã‹
|ØâêÒç„ñóÁlïsÁŠß°Øñ£Æë/æ\C¿|ñ¯ÿœözKendstream
+endobj
+1104 0 obj<</Type/Page/Parent 1099 0 R/Contents 1105 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 103 0 R>>endobj
+1105 0 obj<</Filter/FlateDecode/Length 4540      >>stream
+x
Í\ÛrÇ}×WìC”BØûâ)¥‹«Ê’•ŽR•Ê‚$,Ë dÿ}N÷ÌtŸ@‘4u±]Eóà`f§{zú6KÿïQžñožµEV6Ùlùh<ãù‘ˏþ]>ɚj‚ŸË¬œŒò.³ãG—Y=p—Y>nlÈlQJš–1ضŽ%¼ÌŠ¼4–1Ø*µÌÛ6£ŽØ0qYãÃe6QN¬˜ ¸É¨ÎçÊr'² #K•¼(F
&­¨@&%¸Ìº|À
u¢!Èl5–G:KlSÊÆ8Kì¤í:KX´+ëv–1غ,™1l%*´;žàä]®ÝÈåy#5’±ˆ3U8Kl7²„EœÉ`f]R­-Ғ°%%.,ÁIÆxh;†•KX–ÔAÿΆ‡v¥(5«Z?4ryYA'cÚ:‡:¦m&n¼µŸ6ry!†æ$c™¶°aÚZv$îZ­À§\^´øŽ“Œ1mS
X=uUª1è1@¦%¸ÌpD1«~Q8‚˜´Sp’qxä˜Y,!a°]!{f3†¡ŒUõÆ23ªcƒ­ä¬ú̌ÁªÏ!–0ØI
K'
+3Ä2ߜ&Ì^fü$vÝ$bÆ4˜YœV]Š[‰N+ߞȵ¹Ø¶Ý‡P1Î1“ŒÁÖ¥ì¬
e,ÛӉu;Kj·¢&cƒ-$JK,œã`,a°„"KX\Zgzqƒ-‡1ÛêÖښc±yƆc—·ä$ÈSƒÏˆ\ôDF2†† Ž³ÀØç4¶“
&–0ÆNô@ûX²ô|,cÙ‰Ä%·r~lfÆ¢äv°æ ŠqIŽM«"ryQɒŒd,ö֊°Îçý;KX„-eÁÆ2wa%,ªè†c	ƒ­Ô’},a°“BTá,a(
+[À«b3ñXÆ`5Æø̪äj2† ÑÍ`JN\^U8\N2†՛K,qËc	Cر4ËlÓ`ƒˆ%,Šj°õÎjx©ZÑmô_
ˆ8^—C‡Mæ¤$»â-Ù
@Æi²›8Ín#1‘ø”qÈl)é€e¶;$–°¨HW«ë“™ƒÕ$ÑÇ2‹-†Š|,a9tÃU1kэ³±A½e«G2èS«7rðžEVG¢ªY;ÉXÔ$nÚÙðHœpK£+þÈÈåÝ0##cZH
ý¦Ís2>mäÕc׌#ˆIUaDF2¶ÐYÂ`'’-øX1Àz2@Ö£˜8µ8碒×ìAœmÙ4çŠ
Öâ$c1>Q³ŒÅøÊÁXÆ`kqU4–0XÄ^c°ÈrK¦	;á5놖HK¤†SÓÀ64q9r½úM!Õ–È~Í œFÜÄIuŠúM!uÇÊŸa5b%¥¡b1R;GPk?l»Cí— v1º3’±XW3d	ƒ…ÄZ},aÙ3Ɉe¶’º›XÂ`‘ÎÀlfÆâN$ïp–1X¤\,QØ3Ôfbôaψ
+	Âx¥’-#QqÀ`DF25‰W –0X8ž˜±(B\‘e¶‘$XÂ`g±
¶*ÆPÄX®³ŒÁ"RðXÆ`a°P¢Í”8͋ 5®ÄÈ!$ã™Æ„¶²©Æ¢$#ƒE’
§ã,a°PÊ`,aQ¿žKXØNÔO¬c(Õ,ÏÌX¶nø\U’dUE0%%NMË9‚Xâ{­¹Y“É@Æ`áÚrbÃ#/,)ø##žaA{¤‘ñ‘qdŽìr–0Æj*K,aџÔΪ”dËZ"
ÈrÕ
&.N2ÆC1–¤óÈÐ0-J>9âa>märíÐF2Æ´Zƒ8”7kÞ¾Pàʍ\ŽàUfN2õJx"–0Ø2‡½KX$•„˜X¢^Ùxg‹ÐNÑSZ(ðGN8Ápù¦ŒñPAÄâ¡>–0XD—
KÎUËXΓx`Ÿ™1Xt˜,a8,X³A9µ€
+®ŠÈEэdlªp6¨"
¢;KØTálPEE7–1„…À%-@lŸ³„¡
+¸R:c%…Èál-é@4¡)Dâ4gpŽ •DkçBNt&
+"ƒ­$¡ñ¡ŒEG’`KrÂ-çÄê¦æm(ÖÕ¾°MM\(¼œÑË5Ï,Þ`ûažÈåÚ6pR=K®esô,
ÈÕÑ$.GRAXù)$cˆ‰5·Ä†iс5?(í×BG†i#'…
+ÉÓÂâ¡ÎÝê¦9KºEh㱌Á"
e6,CÌÃJcwLŽ\h#;ÉKÒ,XÂAk‹x	‹1ˆwp–1X䄰PËXÄÉÅ̌
â G·»IØ;'r9RÐÅd"cÁH‡ñPg	ƒE°„E¹Éñ±ŒÁÂÏ@ÿ63c°8ïÇYÂ`µ
F,añÒpVUk+Lôw³ïÈHVeF”M•êÞ9‡à4ÙrΡh@:¸ÆéUÓtýݎvd°ÜJ.³Â)s„GÁíE0-‘‡áVJòßx¨õw“92¹FĄðy¸~’)Âi7®Õë´Ä©‚ëPsëÙÖßía‘	þÂ(‚2¡Ä6çŠõ¾E¦—)	‚S×kãt!ˆPfóú»-$2!Ó2Š û–VD<)ÁuRÞ§CËÈÌJ·‡E&¦uò5¡bBhAÎ8‡àÐ×@xLܳ“GO^â»ãìäLSä1îAÛ*;9ÕËf|<{|2}9Ïú³ìy¿ÚÎWÛÍ_O~ݽ^ŸgO^â¸ç2ϑäژ訐‰?¿˜^mçk%Q¦=}œ•#ùC|…ÉÏ×Óíbu.ŸCù“¼ŒÜëcý*Î}ün±:í?éRÐi›4Ëj¾ýÔ¯?$N4Nñi±½I`šu1‰O—ï§ò铗ðqñȎšI
)$8c¡øϨҵâ*->ÿÉ|;{²Úl0ëìb4ëWg22ýȏ¾Ý?ùD}„æ/9*WÚ¯A½o¦Ë¹Ê­É»øáz¾é/¯·‹~%”(2}}ªDíî›p½™ŸêȀmgD­xÛ5Mœ8n̬J3òŽÁ‘ÚqÇÒ¶#j—E˜å!:,ƪ•¾6C{‰Pö²raO.T5¨.º:-÷Í|ûìÕÏjwÒF„A|FÏ§³0š_þ­¢¹Ê'9áŽxŝÄûéõ?Ÿ¨xh¹Œ»6Šw¶¸º€åÔÑLn]ÌúBQ™ìîY0gôÅÌ@mùHëý壿ÐDïñ…Vw¿iŠReQ0°¾èIH’otX¸ŸúþÃõ•Ì€&ã·0§ÃÂE!`Ðê={÷*È >ÀN	&ßä{‰…ÈQ:䁻ðtâì?‰Æ±5Þ¯d¢k¸³ëÕLüæF†˜éJ½$.n>qj4,̑l{
+[Ž“;>_]ö¿ë¶£fßÜl%ëÚP[˜ã<ô Ì0_¦¯£@ëªoå:	(²“d¡ù뤋~Ý̤¨d9G2ǁRƒiRï6óÙõz±
òãP·)˜ôW¦i¸¼è«)àŽš–ˆ½8¿^«Vqu:'ÿnr£~ñ-8ë5gòemæóåå|,™þ"e21¬"©ÍoiQ“%ê,ø6:gtïœý²ÙT÷Ðð›59TÚnDºüAœŸ®ô[”f¿Óëí2¿ÅéYªAÞl´™¯?†ñ¯Ç\̌徿W}ÙÑÈ~l{=ýN^]˜¤ vx5Ñû&Õr¾|óRÜ£Úè^s¹ÛTò0µßhë§ýró)DA¼û©YÇ­Œ*“wûvT¶9‘Æ“íãm3Üôö…MDâõźMîd)úrFO¹!È<»„£‹;I|Ûü߄/Z1w.ŸÐžÀ.¶~Š
,U>i[c´B[}žè)ß>}-Ï@ýâfž\’~3ýÓÅf»^¼¿Þ†L™aksàSõœÓÏàÖÓËKõÙ8®…Í´œ®¦çaIQ­â:àI_P(ÞÅ΋.hÊjµ²¦:
q{wÛo0è:i¯¡ü½Ëb¾®mQÐø¢óïJøbgÇÐÀNáñé¾Ó¾«;ù¢²±@E;•#ÞäÜ&mç!ɬ=òT£ªMF\å ‰Ú,ß[AŽÄ¬ì¾áv–ZuòQF»Ej™ÛÎr̛’X?ö›ÔA˯ÅÄs¬!LgÅèëÅlÝoú3=™èÖMÚü]»€Jí¾Œ5.~\“Ç¿o¶ó¥œ/”̶ëyˆ¯èYÛä!@;´´‚ßOò–“ÛíªÔº–Ú1ڜ\
¦´ˆœû«¼Öµ§ãH{Ó!¸ýßâA¨#d”|D’ýïM¿kÀ…³þ“HQj]ÎV
ƒ¼Õ¤cN&ý˛WÿVëâñí|½\l$,…pã÷³Eh4Ê̓%1ãÃíRÂÎ}%îÆdo›á?Íb¾Ž&´§üp1Ûu©«Ãi³Üø'øÖ°ȅÿpT(K™˜,ºÄ29u´òwýà¿óO©èÄe›%¬‡
+žÙÅtuž¾ŒkKÊIá¸çŽäÊ®‚¡ÉêÕçá:‰¿¬Ç-·‚ô@qsB»˜^öçú4(½¬¢=ÜéØÕ•Ú±ô½]…*ÝÔסWfPâ[Njˢʼn®—’ÉÓî•î
+¹‚Ü\LCµ‰tWÇý¸“î÷¥¨3\Šy1	‡¾«±›Lì 6úO«ùzs±ÐŽºÄUýýZkQ>ÜH²|{͜ûÉŠ{nvŸ.ÖóÙ¶_‡Ì©±{‚p–¿T5ó¹.CÃe§ß‹­8BR|—~¶hwµáäS—ësÏýò\”‰C‘d¿º1ØnÓ슃CU}‹}HúHû›®/ßo€õ§‹³ß“ƒÆŽX·ïðQ{€)"1í¿¬Å!åÞ«¸å:o=Õ¤LFà˜Êzlv‡—¿L‡
:Ÿèf®µ¡Š·=ýâ갏­çÓmHWqË5Ní åtóAÝ>®­r¸š®q#†5†ã€{âª.jFß$˜D»ë{¿‡jÛt«}ю–ú,§WWÉf¡÷æ
}<1ån—£Ä}ë­IdÔ]J"ß®Ñ[MëBËÕ¼ÛñõÕU¿eþdήƒ­>´C榃ÜzÉ(F¿©‘à}„êë…çä?’Vv;òF.ûEÜc0Ÿuê=Z1ٙúûÀR:ÂëûtPÉì
+±_ÖãšýO#H”íƒá^àMk„ïꞋÓI6ÉÙú®ÄZÿò_=\HŸê`þІ–±ù¢/»X
+-²mçÛ$ˆÔGÖux±^ ½Rxü̓©ƒÈ—"?ü†¢)jcкУ›fAc?ÕtHª›UáÞ?G×g í~œ\Æà
+y/Ÿ¿œ®ÏCPA˄_]Ûå
÷K\¨$É¥úpgzXþ*¾€·¨vßþ¥óÓÓÓ´KØÒT˼‰õºŽöŽÈ`ãðÇ~A?.TUƒÊðPç_ü8PE>}ûN}0^¬ïS(ÔGT‡þ¿&vô±ƒíQ‹¶Cwԇžjþî[Ä=#xË’ºöE?¬´9s´7öJ¾“o¹¼Zªuêº%Á²VÉIß_næPášïâ»\OU)ê>B†õ¡7yÞ]LuÍr•m…Š‡«1o$%¹ÿ&óâUÚ®ŒÉ¢?óëÿ¥’¿„ä'nä8çÃÌMö¼¶š)^úLåëÛéì.f†#Õi¾^w<‰×ҋi"Û¾+¾—eÒe3Þ-Nà×ß­ø„$ÕðÍ‘kßÉ”ÍjܘÙu5«³ç—\¨É–᥋ò[¾1¤Â	‰ÿ“!ýM_êìÒ{‘ø;
+8™¬Á£ëµäñÓ×Ϟfo×ý¯h”d/úÙõ‹7¹äOÇ%¶¾•—KO/"×'þñèÿXQòendstream
+endobj
+1106 0 obj<</Type/Page/Parent 1099 0 R/Contents 1107 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 147 0 R>>endobj
+1107 0 obj<</Filter/FlateDecode/Length 3948      >>stream
+x
͛]s[Ç
†ïý+Îô*©žoò¢Óqì:u&N\K÷–¦h‰	?ŠršßØà²ã:¡âvÆ£÷¼Ü=`±'??*‹1ÿ/‹¾*ꮘ¯GcžÈ?¥üóêkyRt͔×E=•¬ŠóG®‹v<à\Ó*O"ã\e]*7©Ç°M;d†ŒGµëðº¨Æí@¤º)êv4A•¶µˆH"îTfÕª¸S!Ž+Ëñ¨s¤Ç¢L3ê=ë0l׏Ï:‹Y°n~­Ç¢L=ë1l5É2ŠÈºhã)#Ò¢)*,ZäÂ*eÎAäáhšIaYh¬ÃA—‰cÕôí´CÈhú²éW2aWNju?]¤V
Œ\9n°ž‘#óTžu¶ŸŽ¦Ž
/í¦æ(­{iäÇ;3ç “–-æ7ÒcØJœÊ±‹¸­X!Oì1l×`cƒ¸mǐd\&nä&H”9™t<2é±$
À±ö½ˆkc†”b%cÆs1“Ÿ9(ӈ³'e˜2‘ëÇø_›9ÙÀ5Kgœƒ¢h?è±(:åiƒ8µØ&‰£Àĉ\xæLâd.ˆǕìܺh3é±XV=,³Aœ²wÛA‰¹^/s2i%Öm3é±¼²2^I,ÈQ³U`¯ŒQ£gÎÁ`VV9“:i3•PÍ@ž4q*¸qŠ
㍔ ×°7d©4Ê s:Èû$Sç`ÌTÆi¦Js–Õ»”hI”Y	¦DäBPk2Ö½™´Q`#§
Å8Eû
+Mô¶—s¬Ã°“–4åX‡%™Ôx€±â†«V/KݯÁÌ
+Ìê‘k%¤5™s«9‘•ÀîzÛT¢gžÖcض²‹$ì»±£çX¢¥±ºhõTò,.4aÑÐE3¨»½t»=AQ¦Ã´6ÐcXß{ÖaØ®D\7ÖaQFß±K”íc=†¥kÜØ *>¡Ž­º)0U#ÇFÞÌ9(ªJe¤Ç°¬âæ¡ÃâéØ×X‡·*‰àÆqû2l'W‰¹‰Xuæԍ<™cã'ˆ8Ô|X>“Ò2°‚±Ãv4ë0ì´ÎìppAÿ^qɄaÙt6³lĚ*,×|
䍘8ÝyÆ9¨¾‹Ú:‰ŒÃw=%é1,ú#Mê1²–²oŒõ–°ÃR9`ß<³Ç°IçŽu˜4 E˜±Ò]ýÌÁ‘jYú´Å˜#EŽ(€­3ƕáŒBƒ9©
ñÀL†S4·ê¤
+l`äØÌ]QgÎA,_Éx#=†åŒÁ+óÐ^Žbî-™·‹®
É;=†%,ôžu–:aâXÕ¥b£já&ºuIœn;ãdR-MŒôX^)gcƒ.]8UDÙ9]ÛH]Wë0i¬Ã➕Ø!õXÜs‚
BµáÄ…Rä„Jl]"+cF(V#ë0¯¥^÷cÃkIÀâJñµŠÜk«§ùÊX‡™˜Ê}2ëqÐKe6¼¶
+gøZEU?­Œu‘›F–ÀX‡a)üÐÖX‡aIܝgFdâ1ŽšÇ‘Ëpˆ"+r"'ÇÆ:,BIÁØ°ôÇ,RUȼd ùm2)˜mGÊ	`êY‡KLÆNy¬jSô$Wm2m2K¸k0–üVØ0TÃ<T‘šXœ¿Da)*m(©Ì¢ˆ$ºNÉ(Eb1?Ý$c浤Ú³‹²2§U—tQ¢…‘Ô‰+)[|J~)dH3&GvéÔ¸¥	7jª7R’ªœeWáôØ@Îia¤‚5ÎÁuAS
+³çqjفú™#.'ˆ,Ô¶½#=ˉT6Ôc±\“ga=–à!…„õX"€d)Ç:,@ûŽu–fÀ:Œ‰4^f]$ÕS ¸‰þW32%û¯6ÊAô¤'Ô§Ò_Èþ¡ç	#S–
ޑ)Ô¹Â^ÿ΃"eÊA¤ 4¢í'S¨±
Âu²a3(ëP¢{æ„ÃVŽS!q«\’ëßYÈÈP˜H#†_	cHDÔW¢¥‚ÈÃD6„toâ”™Ü8áГžZg§ðãâ"¤ßç ƒÖDæÂñúA‰ÓØFlÙP®Ž=‰#Éé’†•Ë³PÌpÂΜA¸i9à¢õ‚œãœÂ¦<gPT_ÎãT,l!V©8êò…üP9ƒ¼n,3ç íÒWç gKJžÌ„#xÎ * :5K÷ÕÅ£/ŸI.+.Þ²U)i÷Mqq©w<žq1{³Z۷œíf¿Øìoÿzñãá5Äîªøòñ¼”yÎâDg•LôœëÙÍ~±“Q yÓ^~Qô#yĐ_ýrs%ÅÄ]‰ó»››ínŸ£x|¾Ü„ñ£)ï	sœÏÖofò”ö,ýïø”zô_yúå3Â|‘꥗È*'(Ä!y:lf{±¼ÚÍöË­¾§áŒ“ˆý6¾¹Oâoßî¶kyHNjÜt$Õü´Ê⌃8üöCSf±é#åNö¿¦	&Ê«X±{‘ìƒë8®ãÓś»««¸ÔÆÍ$)þÞ~¹Ûâbku,*¢O0ÕÉtLÜt‡¾!çYO®ÁñáÐ5žoö»íåÝ<yG]c0ñŸ‚Bgj%ªC%†+E¢ËŽ{#{1nYâEŸ¶â_(báô!×IÍÙô²XgeSûõ©U{}=Ӏï¶NzÕJ݌l]§E+.Ã~æ0vøsy~_ÖqÓ^ÏÞ-þ!™q:ŽöxðNڋZ^ÿ£Ðu¾Ø§XʉÈäݍè€cgMu©ç3}NªíÓÞ+f›Ký-©bèjryW¿¸]ìÞ-vÁ¬ÜH–bf"rœ•=2lÑúÂ7Û7Q‘±y³ÿ[T„ne\ä͑lïö7wêIÒ[ûÓ7yRšªt¨t÷éJßîw³ÍÕBŒÁ‰«-SF3Õ©ú:ñwùѨ™†•f™\HŽÕƒeëW³_tA«Ñ4ïڗÛÛýù|·¼	ÕeXNF!Ä©‹³CºT•|6úŬjú=¾|7ÛÌ*1I²nR•áÓ*×R^tʶK+vä¦ÓC7}µ˜­ŽVíÒW´
ÛɃÖYÃ?Ú±ˆêë\
+Ïß,¢Î)Ɯ/æw»åþW™JÊܜ„V‹w‹•Q‰îqqExpܖAç\8Ó
vá–zþpI?ëÒ(¨sPqˆ<TâÅv§qP?Ì·ë›Õb¯ßXYt¹¸Õ 
+Ü¿ZÊܾÒí²¨të\€
kŠs
ªà“¥›´¦VésÃ΢¢ì}
ª‹Å$¯IC'.'¿Ë9M¦Òÿr»ž…ó5_FńûáôGá2©,·õïKÃßç]鼨Iª¤ç7Ûå&}GÐÙF-G³:×Rß]è#Ν9]=õVâë²h¥_–ûkù­?vÔž-+•Ãm:?Ÿ*d뜕|€§æ̌MÂnÊ6¹_ÒûÊË×ËÍåöÏmÃÐL×ÐëÌÁVá·tzRWàTÚʼm#¶=Ӌü¡Æáü‘5~}­á}ÐXª¨Xgœ²Y±¿Ž)±s³â
•{8yU8[®Æ÷×Á…¸Y·N‚ß~ƒ@¢ÛKŠ”Fb‰®@]yÊ=ÌäÒ¤\F}Lx9J%?l–o—¡âõ²á¾Ý^m7jOŽqVÒaº_ÝidVÞ÷w+NöÉUŠ¸ikçsAôJùŽ(WŠ?|÷ü?²ðœ,[ßÝÆmÎ*MJ÷¦7ø°üš«z“þÇ;e{؋¨YðAÈáS½aÈyüF*øy8¤P,¥?þ•'þeÐèŒÛ%¿eXž¡ŸqÕ5è{ä¸ÊoÃ
ÇËî€Æqi
+Ú]ï–ÔêTÜø¥öå‰Wâhú¨˜|C2\ҔjçμÅÅlwµNÆíMjýpÔી´‡Ž^súml
+ù¢|p6\¢mÃ
Ñwhß³B¯·»ŸÂò°çOH?dŸ¨E÷Á¡ÄѽXÎwÛÛí[]%úÕVk¼Z¬·¡n•€Ù§³ŽÈò.”ºƒ3å“Ù*žE¸Ù£M®
ñ	ú	\Zµ	‡¨ÔjÕU¡Á;ßw³u(Ç))syNÛi9:Õ9ܟS/͵`âkŠFá)„¿Wß6ö¤(¤–+įÔË}r¹[Ñtá®ßí¯¹gYÎó吶˜/h<¯bôàzïDî™t9Z°«¼"
½Ý!Xûè¾úîëÝ64 m©ôùS17¾Ö}¼ZmM{<“OøN¹Œml1ñmòA²¥#v´Ï^-nïV!ºðP<™Í¯SíÏ{*ôïõ”“=LšÈÖ2êA\£>ßÜîÙäÙŸ¦Ï	ê¾µãòïíòêÎ.ĸÎ=•ï½Ç:I7ª³#ݎ£áQEa·mï™ÿ”£ì“Ã59Žu¯?ß-w‹uºií0€ytzä:;®¸â?Ú‹Û|ß ·†s‹Ù!‘JI­åïCKONóYÆ¿ù„G¥ø˜ysBû<ïo—ëå^w†Êî¶Æ	Eûè©»Píô|5ô¦ÐÏZ°cç+Î)áþúsSBS¥;$ê'vèó›M¨°cø\>•ÓVׂßåzë!¤ø¥Ù–~—u]¬?qðр¦%{ÏL¡¤ÿ™JÝB¿5 ¡•ÞK+~=ۅÞ.Ÿ˜¤*Ùú:Ò$Ë£å{ŠÝvµ
+ٓ®á§µî;M^îۆšjÊ{Õ+ᗻÅN¢Ìí2…|”“ïÜZò—)¹^ÝG»çùàڙ|•=TèàôøÕlþÓÅE8z§–ú)É'Îœi—#¹f´:_˜‡Q	F7´~ 9¬oý™“ÑbµLN©Õô‰*}`XRFE?HÐl…wÂküև/HS­T¼Ð*Tľ…s±»»ÕŠ‹oRìüòx>gÍÃI4͇ï+`Þך}²Z¦T;¸*Ï1ÄòÖ}‹áÌþ	wo½^¯œUòuÚÐÃï=àÍ6wá¾lðùµfüLÉ[󞻇ßa`¹Õøcªð¤u5qYXœä¸úË÷›3Ì~ölõë_d#ð!d®ŠRœˆßþŽ#p¯-yüïöõ/ý`Ž/mã×hÓ\.ŸSëÌùã_=–Fя‹ù¾xºßI=˜‹õZ²Ýų^¾Ü»üb¹\Šqþyñèߏþtëztendstream
+endobj
+1108 0 obj<</Type/Page/Parent 1099 0 R/Contents 1109 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 192 0 R>>endobj
+1109 0 obj<</Filter/FlateDecode/Length 4542      >>stream
+x
Í\ÛrÇ}×Wà)Qbï»yII”d+¥#ҥǮDØA $ÿ}N÷ÌtŸ ‹–H*I•‹ggvº§¯3kÿþ MðÿlÔ䣢Í&ã	~‘dò·?É/£ºìðÏŨèÆY£ã£ª×Ä\ŒÚɸ$ŽàbÔåã‚8‚‹QVæã†HÆ`›fÜ2KlW&f¼å“zÜÑXÆ`³j (c°U3•1Øn‹%
B“¼æ&õ~Ē'ù8HôËlшõYe	ƒ­
+Y”³„Á¶ÅpfÂ`¡ªŠÇeLdlfÆ`ËVilQ‹@yŽÅÀ&Z²b‚xé$“iõÉ ¬c°¥Ï£,a°u)ÂúXÂA,ÉØ°¤Ií¥%)ð%E®+d׍#ˆIՂ‘Œe¹2»e¶­Åm¬.¨êjlI\P¶ Äµ"¦s1)¦ëˆd,ËÍC‡åòIJ܄ÁV5ôà¯e^Ælö$
Bw¸RàÂDNåuŽ ,WÆIƲÜV^iÓ2‹}š0Kö™×Ø«WÕâ…ªZa°u
%–°L,Nã,c°u5ËQ¶Ïcâ vqš¸(E´¨Ä†E8KØel\T›c{ g	c,V
-;KKFH̉e¶h¡PËl£Ê°™ƒÉ”…;d¥ÀM&r!Â;ÉŠ‚AÀhl(cQE+:6–1زïq–0XxTá,aˆ“O33Ud¢
+Ë,"¯J²k•5ê<šNM„cIvuŽ`Ì®ÎivMsj:uŽ ô—©êÛÕЃ…}§µ)K,¶ 1Ûd¢?Ÿ™0´‹÷0Ël-vácƒ…)ñ{˾¢]{/cè¿3Ël¥!ÈÆ2^ŒJÔ¼fÆ`‘˜
>)4Ȅ˜¨À
<rYVˆ8F2†±$ cuÚ²›h˜Ði°i—ebeN†ܖ
K>0ršaœ#(!ÀIÆÁ Zfa 	ƒ˜0ƒHXBÊKŸ™1XšI̬Ö4–0X|M3k -გyC 
H&f,âJ⠖0Xd̂YÂ`ê:f	‹¸]|fÆ"®î®1ˆëXÄm`4–0XØ?¯™±D&1H”QÉN˜2‘2‹ q%,ÊÈäµÎeˆÛKl+e±„!†Zgƒ!£ð•ì<@¬˜àbÔHð/#ˆW"þÀdq¢:K,ÇÎ:KlÝdž0ˆ!¼(Æ`+µ(›9ˆŠ—[!]*pQ#×JÚvŽ š+ÉrÎÄbQì@P›”1XÂ
K8¨
ëc¡†„…meO‰u¾?˜™°(I
+WŒ;&¡+z¨"2ÒÄu–0Ɩѓ³„…Õ½!Ö1ض‹q–°,Y½ÎXƲ¯µx³„Á6ÒR;+õ@ÑVê’Z ÂŒõ€sZ¤q¨ÑÎë$2Ž $A£ÖÉX$)¡gÊ,tT0KÑe"éÁÇ2¹wÀœ–È$•%Vc!±„‘{3iš™¦,D`~“8m@œS+DÌßðq‘ËôpÀÉ0õ£%×BŒ\ÿÇҌd,;#é™XÂ`ÝT^ŠÌh-d¡À_9¸|
ýʃÂĤHDP‘Œå•’;‰%©¦c–°’8›e6—XÂbfÒ¥KXI·ÛÖ¡DÌ…WDäBMä$cˆƒ<
+UØPÆ`Ñ/Â>%,ÂJðsVC–˜¿·˜
ɚB3Vs!±„11^=éL2V'%
Ö¤½j@>±±0Ö6–?ÊÆØNüÍǪ%™	 #1p¢a*à"¢ô҄1-²uÇ,a°|³„EV	zþÚ°$4·fà¹_Räp¼V¢i…#ˆWfâqN2‹ò6'6¼çfv’‘+ðWF®kpŽ è@š9'ƒmä‰X² 	°Ä††°<6,YÁ]®À—¹NŠœ#h˵q¹qdV‹eûPÆ"ŒäHb	‹0ª]Ÿ™°#ҏ
 aKôEˆyˆ01-:&Hc¤$L‰.b&xLŒ#¦sš0Ó8¤J¬ÅÆ”÷IFp’1X¤S~%c°Ø±ÁXÂP
d†˜öZÆ`ÑèBNcUAR‡˜q`»¸PÆ9É8ˆSaod*â$,nðRb	cIçœe¾–f’™ƒEsÑÌA$53^Ép­®I#N€X’V©N26qlh'ÎÅq6ˆÙ¸|c›8ÎñÒX˜/el§¦Î<S໹N,Â9‚UOAd˜‰É¢²d¥’t9l«,pE5| c°H)Ã¦
¯DjQ7SàrDNcžså•Rc:É,:e¼Ò¦e!YMyYÎ=j@j¼šE׉×ê³ÊI¥"q6H:¡N2Sà’FY³GP$•ÉIÆ`µH!–0X˜yNcuA¸x±òSÿ¶åDÅ|;2Æ惁fN‡8^;§¯BŸmv¥Û«"ƒ(GÆèA%õ% !‚h”Uƒ¬1c#“¡³âvŠ&¤lpΡ¬\Ô9‡àÂBšS¥Âž[DÑ¿MªÈÈB¤áÂcBĄZ.8çP)v`œ¾'̶[ú·½,2:C„xy,¼Ì &„âuŒs(/“HâœCpº%Æ=9ypð\Åèä½.r‚›¼¦œé5.~ž=<™ž^ô£åûÑáòrÓ_nÖÿ8ùuû¦wõatðñ;“y‰´˜èQ.=<<Ÿ^mú•Œ’݁iÏ›Æò›FÆðËÏËOò:ÿ&=´Yê386Ɋ8Ëx?ÿp½ê…l¥1ÇÓÅéT~•¼Z¦)Pñë’`Â{¦*Þ_å]úIK¥GŽVóÅtõ‡üŠ[䲎=].¦óKý&m£E3«åÅEòày™4‘ãÔ³êJ¨D0H—â€HǕ ½îßËùåüòƒL<Xûæ\¥çìò$ÿÅ» æ(ðMLÓT1iã“ûF»è'Y|t|ëÿkTéät›ÉòW*}nâ,‹ePi1n&i—VK˜ÝBwª„ÊL¨éå™È.…UQFAŸ­V˕>
+Ë6»u™öNزØ<®û†‚ÖCAÿXoúÅÎ-/æ³y¯«Ç–Tm…Ú'(´ò~~†‘'
ì]Ù]üؔAZtÕCa›¡°ïΧÁDáuMòž%Rã¼¢¨’«÷W2)RomF>›ªI`—ÍFG/ä)¤ó÷ýæ_:ɹ‹/¹¡¿4gSEe¨'³·CmÓÁ>MÈ6dd„¢Nzz¿T-¡§uݽ›_ž-?%wðhØ}>xõLgÀmOòž/-øûoÚ 2zÙ-k‡`*4‡µª§›ypqœ½•|6$	àÅåz³ºž	·þ§L‹Ûÿë~ói¹úM~FÚD«½\~Àã*0êÌøëwÊÕt*îx
+éà6%:î7›ãх"95\«õ#A˜ìo—ÓE|Á‹¿¬£û H‘{´¢WÝD#Ql¹mG"bóí¶Ì÷Í«Ç/^ÿ÷ðÍ듷o^Ž7ŸÕµ3œ/5uÊ5aÇ­Åé/ìëQ6pݏÿ¢{üM'@·cïòď²´™å&*gZ
àT¾82…èÀŸ0!ÿåæñ,è¯#³¾AIòd:û-؊|.‘%‡påáJâK%	Nw¡PÀ 1»
jÕÄåÊ«­~pëçÁÆõÌ–U?š˜ÜÅ}q(ý¤°T“÷ikÙK*˜J|—4,ø¨jhŒG«~Õÿ~=_Ï7¡ÄÅA—ræÛ~z–|âÜ}<tQvþ
+²=’ö.ØÖP Ù׫åu¨kRZܙîþˆ4
Å|p0\ýÞDÿûõôbþ>50K¯ÔÔÐð‰c*\Fd!{Rc¬¨qÂÐYÚ™„ãå¾:÷2ä­PÁ·“˜u¾_Q-r¼¾e©ÉV9zOcÅÚèl*8|cè¾µ£™wH덥N$GŸá=ª
ñ‘»³ÍCkÍxósf
‹\Ý¥’kfýJÐN¤ëoO¥m#KA¸Ì¶e7}¾;ï/uÝh-ƒÍ5ã;QÏtûvôèé¡EnMÏeߟõg*‚bUÝY;ãf¥Õê¡_—CÏ8%ì`‹<€âèÇêÀÓÐäaßÌ-v¬¢?JÅ%¾î>ª	ÿøH{+øºLßþWÚ{˜ò–3lµyûý@6”=y§Ä_÷!W–v¦mí×󓧇ª雫ûë’Å Zõ"%ܞ‚ùµ´ê¯ÐDNCB”x›§6zŸ#­§WÓõúÓnº–Þ2hçíuLªßnƒ‘­vTfå
Êí¯ÖXÁ©¨Æ:Þ,W)Ås»¬[þ÷Ð á%U#)š^MgçóKu3|TÓX7ñx6CâU“Ã9s«ù%z°…Ç^|¥nùg_ù¤A
÷áÞý|úøH¬§¶îèOç«~†õ‡s%äæÏ£n«	•GJ(·!DÂaÈ9º^]-×*&…ûÁ6üPäyú<–c«$z!Çig¡5%¦}ù¡‹/"Š¢t¢ggZÇ×WWËÕ¦W/fhTÌ¢ŽûÕÇ>œ_¡Ü¶¶æ~¥í&¢ilŠž¾òælåµãÙy¿Ðˆ+ÇUv¸³ï¸êm¡>´>Ÿk“‹K÷X¾}Ò>fê˜ób¢%ÃîçŸÉqÔoEæw(2j÷©¿ÛJnéœ#Æ%úÉòþTôi¾9}#oÚ~öÇw¬ý¦C»,ìü ?á³Ñ=ùéÍU™V‰ko¼PQ꡼‡LÜÓU1Ýt!ßô\Z=>nÚÞ£Ýúóf…ó¦üÖڅ	•„€‰³çm Gó9NN¿RÛ»Ï÷~BKy¥Ê‚–‹éåôC¿ˆ7òIAûŽŒn$Ìއºpá[Ú-_Ú:9>îg׫ù&>à›";íÝ'äZn|Øë‘Sï¿éïŠà@0Á-ٶ΁“ëàªÞ£ÿúªŸÍ§a«u³YÍO¯7¡YÄI ûNˆY:>3»«Íã끽n>û<]\]h92¨®^>}ñ\ƒZZk‚ž!ç§k>sÚ'êN½Ï²ËÌø «¸«àӕºÛòÝý0ࠃR¥>ûw[éÆ.܋£íõ¾í;½¹ bFÝ iŠñ_Ö1å
®"u7D\͌p’-¿ÑhK‚Èíé(„ÓÑùÇ~P)ã_/iÓ9ó:”V:;BI{Ë»ÜmHÊGfƒÓñ”­Ø“kŒéÅETÄà®r_÷¥‡—«Pbîr’.B¯pˆÐ¬®+Çþu²¢}ð´?‡ó9 ­n·Usk	êÀ-îÐ֑ù‡ÇÑÁÛþìçpËøct°u
+g¿Bÿ,–)-¸QÛW	ï0]Å?௸«øþ‡>An*.¬ÂQ>Jõ{?–×á—/úÍìà·Õi5–BPT€úÛ.#îWÄ.Gî42¨‡ò®úxd"ù8]¾îóÙ¶yX冃Sáåç蛪ê~«Æ1N%D׸cÀ·,”‰EÔÝÛØ£åz=ÇG;yì²÷Ï'7óû;cÃH¢ù@­ø¤_ëiÍàc½&‰c4Õ"«ä&;Áb4jô¹ws&ÊR}ñï.^¤£ÑðŠõãÐDEÜtØ¥Åe¸2¶ÄÉÝ#ŽõföiW‹_\Ý&ÜÖWøÒt(ßëe¬nbþª#×K„ê$|Gûê©e°Z*u^,®Vˏñ@_ÁYÙ{ºÂW©vÀg^–6ö3z]u;‡.ç×þê¶"å?Ž8XùpgßÀù>ÎûOâ€òï7›.5=Èí³uvàkÎzçžøkë»5>ú_ú’[âß
+÷„7
aÅ+W§ä¯¶—~Öc{‰/֬ǽ51¾>Qwnñ?Ø£égœø<~Æ){„ÿÈ
+þ•qýóøñ«'å{“_qˆ›§Ùµ47vâSȞJÿÛÈç¤gçe<øσÿ
¥ÔHŽendstream
+endobj
+1110 0 obj<</Type/Page/Parent 1099 0 R/Contents 1111 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 239 0 R>>endobj
+1111 0 obj<</Filter/FlateDecode/Length 4146      >>stream
+x
Õ\]“Ç­}ׯ˜7ÉUYŠó=ó”’ב£Š×ëh×µ/z‘\‰ÉaH®dç×çè0$ei“¥ÜTÙ><Óh ÑF£{ï¿¥ÉÿK“:Kò*™,GcüBÿHé/¤_’ªhñÏe’·£4€ErõÈÁeR–£Êq.“t\ŒGz¶ZÏ:¶Ê†¬Ã`Ûj”¹¶yEêæ%ºƒJR×ÁeÒ9!´`uY
+ÛÉB³F¡LhàÒq>*“JI!6ÏiŒu˜ìlm댔·£¦ãŒÌdD½z6«ð•cçåžul]ŒjÏ:¼L²qE×~=I0ÈX‡ÁÖå@gÁ6Ù -;®do†1 c¹6Åt0ÎA¦Æé1Ø4Ç@8Öa¦ê:Öa&ò±¢n“ó²à‰U20u'ú)ç ª«dP7´L˔2Öa´Å2(=ë0©;†ß\[‡ÉolŒJc0ÿtє̘À‰öÊ9¨Æ(Œ	-ƒ1Ɗ1‘åuX1VŒ	m³´!S•cÊÊkÉÀŒ	\[ÂyÆ9ˆ.3Š Fz6¯©Kë1X„/L3c[Uä7c‹8äY1î¢  ӌ8Ñ^9!TŒQÒc°šÒX‡ÁÖ5
„±c"aé{VÔÍǘ·KDa2…
©ëà2ij¸Ç8ÑeJÑ×HÁ–--që1)T‹BiÍËT4``
+Žv$¸TIiŒ¸SeiO,Ú1O1ސTá1ڍsÐVç Yh$Ôc°X¸^,YÀ1:IPKž3‘K±TÐ'ɺҾVT÷Âì`
גlãxk*°‚)'­HëÊ[•²ECMù[b¥)Ö…šÐ”‘kYì¿eRë0ÚbwòʊàŒÜ¯‚9Á‘ÍRl¬Ãh[жåX‡Á64Oë0¦_ÊJ©dÁf9¶.kë1Xl¼¹cÅ«iê¼Ê€ì¯3§N
+儺¼ôd¡9‚Œz\€
+¦Xt>$ÎAÝ?)B2=L£œ	
\CyžqŠÐƑ"´Ny¢°½98ž›ÆI;4Ð\-g`íÐŸrB¬ôܑ"AWXÎÀ„®¦ðmœƒd!%FŠÐœ»8lLhà0ÅÐN9I(í~FŠÐTÒux9ê "pC¾PÎAª¤EnE‹V¤00¡CB€aSÎAÓ1’,4k%©f¡ThäX5ã„PHÉ#Eh-I³e`B'ñ=SÒcˆew+b±S뾖10±å”sB‘ø7‰5¡¥¤¢+8‘¢œƒ" ¤Å&¤®Ê˜ÐÀµ9æq’PÚ~Œ¡8TКM˜ÐÀ5X3å„дBœ2’öÐl,©ošH¦ƒa5Ž÷Ð؎7Mã¤þ(}6Òc°è#öO]z„«X;fÛÒIÍXž9ŒÆ?
ÔñGéÀ¥ã*é1Ä"É*+bùÜâƒBLlàGóp@!ÎAŪƒü%‘¼M¦•¤.²ÿ
+"Òc4…}ˬäm1d‹œ·ñm‹ô´ö¬Ã´M¦˜šÖ¯Ç`‘PÀZÕÊc°i/Ùc°p\åÛ:ŒâöJ•Jöl™
´ò,Zù±ò,FÝëì1±-B±ë×áeR`ÎøÑð,bŠ·×c°ÐÊ÷+Î/$QÎfäœYq¶±«óçǶâlcVç+Îmƒ³•õXo¬L†Ø‡*, cF[¤½p¯±Ã	œõ,úÁÂÕ¶ƒ­hDë0XäNp¯µu,¬ÇB1Öa80剣¬Çäüz YܛK:Ÿâh†¹ÎÈ>––åì)#çûÈâßGc&ßÓ6èX‡ÁâÄk­­Ãä{Š÷ŽuBÂáYÉ÷<R*Ùcò.E{“ì1XloÞ"á¤VX&*Ùc°8ûÆ:¶*‡m‹9æµò,29øÞ$;L¾¯#)ÞE4°“íÄf>t	Æ0Ëb5Öar Ն\[‡‰åEdm‹Â⍱ƒmÙ c†pü¹ÊzLäÊX‡1T\c´¶ƒ•È­m=‹ð÷ë09ÒÇҙzëñÿ›	o偡àÙÊgqýˆQÀ)»tœAp5-É>E–d%^Qd–DÑ)ÀœAˆDlòœApˆ5kgŽ!
LÁ¡2[;ÉQ”ý¨žlB%JÙR˜	‘ƒHԙげjá
BM$už3H#FÁÕÚ$ȳÊ9[î#b’	ä!åØôi‘‘™9TPµ¢™3HjRÆhœAt‡NåÂÐÎApX@T,«RÈ¡WF“©9^ÑÆ„*Ø~P"!ÜÎ ©IÎ3Î ©II9IúÝ9´$‚¼A /¥‡Ílöýõ£§Ï[8-¹¾å2Þ>¨‹äzÊNøyòäº{½˜%ýmrÞ¯v³ÕnûÝõoûwR›7ÉÓçˆæ)É9£úe$èÉùÛn½›m¨"@@ìô	ÆdD¿á_ñ—Ëõ¦?›ÒÏpdÚfáÓכþÃv¾zÃn?ŠØb¾b¸~@_"vÛ-_wôëÓçØ"‚BðESUЌª$èæÜ{»øeÓÃÌ%÷€¨—µAÜf¶íw»yÏ=a¿ÃTjô•þ¯mIÉ3
+ٙTMúޏêvjS7Ùô[v#•lóhêöîõj&î¥%CsR3Óñ˜­k‡ÎBm#}£ïÿÞ Oq.Ƥޚö3¶Á¸Móð£Z‹-)/cs±–$äöupj2˜j¨éêüÐoÞq^È_émópS"ŽEÇzèßrèß«Ùn"·­€»5i…yæ²&x= é8ݼøùŠMǑÐFd¶y/ë4Ãíd^?œMŸ9…PÄ$¥0¥kÄ?³%Tèbý|Ë?º4räãà¼äp”._þãǗ—¿þBZaÐØõ™öÜã3ÔºØtºÌÝ[ÕõëõÿÉö./ž½ø™tÂIGWÍ=,ºï§\q>Ҙ¡ó›á<ï7“8푎ëÊÕÀ a“zדTԝÌϯgüŠmºvoå7ì-ºà—Ý6n[é¨Aò¾VÝÿ{d!{3¡ÄE÷îãpÄÂi¿ìdàGƒÅÀî¢9É.Ž+q>Šb{F£XFÎÕ1šýÜïØ[ƒÈß½îïváCó!¢y7À‘Ä  ¶ã¸ßwÓ)¶ö­l`Æ1¸Üßc÷k}[LE¸ß1K÷L½¸[ìæ뛋#aåÌÍÛn¢úW1¯ºŸ6óu°É§€8òuœÿY(ÑÍ%W1Ü´Do
kûͲ[Mx,PðFjv·ùv{¶})žMñ¦÷0–}Z
+n{Èi>ÛD–8ð,ª…Õ{Þ/×Ýf¾íWœ­ $æö§»û¢_[Îðȇ`$šCý/׋~òŽuÏéØvÒ
ÿÄDöm8Ì!/‘ð¼ŸÏ8‘D©?ÆÀOtñeè¨8Ž_–úÐÐËàûÔ÷§ÙûÙ"£i‡Ä/kC¦–x· Y†ø˨{Tj´!7q2C\ތËõ¨ÄcûãÛîwäÞULÊ{™oÙb\’–Fēmú8áI¾{FÒwz.˜­7³I·gKÌÙê
SvJ»ÔçY†#úpÚí3¯°pf¼¡Âi§‹~M†ÈŠB'æ¤GùT?F›šf0!÷N™/g{qx¸šÿ›½ˆ:›îY§RûOû‰6
Š
H-†ñí¢û¼98Eþ¾œK~r}sú³ÑÇ­Âu"O½=“öŽL?aÞÅlñ›ÙÑÚ}ìÛ?ú¼í6°ÏkÔ[öÓ°ûãÎî+ļ£ž‰NA1o/Ø;ÍüÔsU+Ã]¥ždÞyâŠ$VmŽvsê£Y{smï`r3ŸŠ›ë“óUpj3±Zwjýô‡7¼|pY5œ|‡£¡nÓqöðEº[upƸÙÌÃyʯ*3ë›YSØe£¯PžÜsVÈPí”xÔYȦóIÌp¦'Œ#3ã4?E›ÚvúP¾ã`]̖ýæú‘N‚ZºXvëu쨙§a½Fùý^¢1ÅiBÞ`]-BUMÝÎóxÇ@WÀMÈàö;:-NSN¶Ïð qޅÌáV!ÊÏCv÷ÿ`TÈÌ(ñ
+OHÜ·ibw·ŠSÏÕÜN뛽ÞÔUäG÷—/%„m»ëy9Û¢Þ"I8"Ì׾艖áodHw_]Á›æϪ®H²ñÉêJ·’IH¬÷%=j¢|i‡Ê›%[ç/ž_…lâ!%™¸5‹»”xñõÿrÿƟ!ÈÈØMß~Õ÷§û¹=ªÇ»~û–Znƒ|§C7­y«sÿ1¶Þóáú|hÑåG'œVôܘ¸‹ÐkÚ÷×âÁ[D³ø,×'£Ë3Ç®ø&݊<G7Àô^Fƙ—LúÕíü͝œußË«§2Z~Ó¹é6|g†©ž6±¶€ëîÕl"Gu<^VÙ=¯
+Ôjí†ñó…ò|…±±ÞÑq´;¸†’yI&’~ї	ê¡<¸~Ô$›‹§q×­Õ8tØñÓgN4î‡õ¥¯:îìܽz²êåäíÏHÁ;¯¾û
½CËâIã¨7ð¿ôÅ&\
+ñÚ„#¾ÍF\p14üYŽ<i˜Nâč>ý™Ì·RMS¹Y;²äkrÏdÍÐ0éÃÚ	ä@‡+iýµ[ÅԒQÛ4ü-¹+ÐãaH<Ð&ÞÎx)ãŽÀfðQç½z:CŒ³r'j·[Í^}GNDÚv©¹¬*¼ãˆ•šän+µ¿AMçóWŸ¬)äÝñ~$0ê8ó£qˆTx­È!Û?­±©\VZ!:9ˆlo¤xˆéh‘`½ÁŽ^Øà5L7s»Ð·h9í?¬¸ã…9z” '1ŸóïX¤9ê§ÁŠÛ¶xEsd°ÜO6n\ö·W<½™¯ <;—‚º†äc
+ÞÀ˜7›þn͟Ók.<:õ’Œ¦í×Ãñ^þÈv÷ëVŠ¦øK}”±@ÑZ®/Q`µËîëó_ž¾àw	tu«…òí®›¼#¿ª±·›ž6
.L/æô.¦¿åЊѤg_7<Ñp¼g°‰•€ëŠƒ•ðÃl1“
+½Ä‰Q|´þ 5°xc{;_„Rê
+çÝm˜ù´°õvwÝm·˜Í2őÊk±pò¶[½áQÆÍIŽ3÷Cš,w؇&FYì^.?q,’›ÛöŸÏD>j
Œ™¢®&ïâ°;¦_—FAô9Kz¥8\›‡Aí¼“)<˜i-±Çܧ¿%ɃÜ'Z*KOaÆ_ø˛7(ÔâOdy¢Æg
ÉÇbÏã¶|ú¸å;à¯ôlʅRúÏ`6¿ðÿ5„ÿ‹_hâ©7?ˆÄó¾&Ç+]<õç'šWÏ.¾–à	äoHx“úÉÝE˜.ÖÉrÔnhnÕôPtúä=ùío׏þùè?Ä!DCendstream
+endobj
+1112 0 obj<</Type/Page/Parent 1099 0 R/Contents 1113 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 259 0 R>>endobj
+1113 0 obj<</Filter/FlateDecode/Length 1600      >>stream
+x
ÕYËvÔFÝû+´t#ÔÝzõҘX$8xَ5™‘yÆ$Ÿ[Õ¯’8>ÎññÕUU׫««å?ŽTVà¿Ê™:ëvGE^à	ýPôãõsz’Õ¥ÅÏ]fl®<ØfGÊkÁ	¸Ël‘·‚p—)¥r-H‰Áb°>-)1غž)–¬µy%4›šT™
+"0·€ô
+ÁBçֿɋ
+V7y#YÉ$“—’lېIlk¬%ÛË¡/,ô…Ð3 AzϹXGN@è„í°'’ƒELŒdÛ¨¹¬À»L%Å!j–¬nɗÄ
+¶¬æ²ƒmŠÙºœ¸ÊÖ¨Ÿ8bâ§T…M¤l
/§¸b=×j’‹œ€ˆ‚¢ºI¤Ä`‘ýR²SiW$ÙF“ªÚr	R*´G\CÆÏXÁV‰sšXV`°¶Ä
+‰uËV5l
é–a$–
¬[&±Çeë–
²ìXYªßÊœ6.XhQ
}ëH×oSGŸµ8k†=†Y‹%UƒŸ¡R¤Ë¿ç|¥DÒ	†ãÞd=‡-Š„FN@Xã*%’¬´D·£°³R¢ÒÀá•%N@RÚ¢e$Ò)m¨ê‚RI©ç`Z‘•‘J5u©D:¥u™vXÉ )õœÂ¦‡©‘”˜l­Hmbv‹ÎdaDÀ`k*!+0X˜ß
+Ö\ᐊQ`öv,Š¯¡KÎ×`ɀÄô%™8.IwYKÇJℝ†J(‘ƒm©KÖÛ¦
â@´&p¼|â„N´Xåµ° m
ÓRò}}8#8TYã_Lrèðñt4’œç¸9&N@2¦ÆəHN“AéÇà@R깖‚¸§Ë£'gGL¶|‡^‡§fSfË5'xÜ/W—Û>ße§ã°ï‡ýÍËwç—é}öä¬B]’ž…W´Ð¤èøôju½ï'’¢Ôc¨]#I9=Ã^O.V»Ë¿‡ã¥OWڞiœU­ö²ãþÊi¤™À6þéé˳~µÉÛ¢õ»í&ý䬌&¢•µ¦­
9´ûÙÖx»ÖãGö¶,s«ŒW¨‹¢àUp,/úévÓõÞöÆXÿîùªûÝ¿«LГ&·µÿ÷ÿ”jhQ™#lô*[èÛöŸ’dï&éÅ«·ËW¤¬¬ó¦¦Á–’yÒuý
Ç
+Ó!†ŸÎèÍx˜|°ý˜¾n\sÑ)R°n7\¨’”ÒÓ_]šË¼°>ÍBœ.P±R4BžS¡ †ç…òrØOãúÐí7ã@•¯Š‡²é›õxg¬s›ë¹ù)šiÏݓÎýHþá"aâöº¡=›Ó{_QÇ7[ýõ‚ÁOU(ªé¸¥ÉU—+\Â^½Ç·ThʆòEh>ö—ìºOQ»bÿz¿^"º„¶w§ú0Ìr¿Ñ§î–·)&†ºzD‡bâKÇEÝ~¾!\{é´xÝ_Ó~3påUÈOìÐOïÙG¾Â‘×ü_”æóBœ>ÖÈ:…kÿ›Žâ\™u˜§£<ï‡~Zm)_÷ð:ì¼ÍðŽ9Ü~'MÒ'gÑØÙ>ƒ‰fÞ&Ÿõ—.5º
+5~çdÛþ¶ßºbÆÂäÄÇáã×Ø|Åû*çNáèê§Á§
+#ep«Ÿ¦qrnáv짙ù”VTPLÜhå±É#Qw涓ý~Õ]ù¾€!%ÍŸ8¾x¸hò:gÓa¼,†jۄ
çz㄃ËWå§ÁGˆBpœ¦ê¹ãõ<™ç«}wÕsÖðá+̦`á-áÝ#(º mŸAµkŽâžð|×Ü]0kâ’áFÐÝêú:d½Ì
+3xXq«¨üÑþE&?ÄKJk.[ÕØ/pÕ5Ráê9Ž¸Õåf»ÙÿEjp¿níwÒ9|Þ «ÄɆ»«¬Ñ0ÅKՋó7¿qæÒ@öQ~ޝ>¶ÍZL˜¸¢§|¢‹J¼¦¾6’gZçu¸ã>ŒYÿNKpªnç¾kÎÛdzŸ_rjp¥þ~*,øî½À‡ÿgþ?;´þNߢôZƒ¿¯ÐGmÜI/N~zz’OㇾÛgÏÆî°Ã‡€U¸¥\c,õŸ†¾~¬o7”½—G¿ý
LÒIfendstream
+endobj
+1114 0 obj<</Type/Page/Parent 1099 0 R/Contents 1115 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1115 0 obj<</Filter/FlateDecode/Length 159       >>stream
 x
…ŽA‚0…ïûï¨g;æ˜Gˆz3Ѹ?@ÆH$
"ÁÿoN^LÓ¤é{ïk_ŠARŒÜ sˆ"MpÙA[XŸËl¤Ç„fió+”Aí/GBh„årPC8$›¸yײÀmÚ'œ†øîR?UÓsè·¡ýFÙ.Ñ]Ƃõš	©ê‹ójqÖéùÀ?®õ¤½·òxyƜƒº«•ã;Òendstream
 endobj
-1388 0 obj<</Type/Page/Parent 1369 0 R/Contents 1389 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F6 9 0 R/F7 10 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 328 0 R>>endobj
-1389 0 obj<</Filter/FlateDecode/Length 2703      >>stream
-x
u™ËrÛHE÷úŠ
-oFaCøöfF¶ÚnE[¶èÐÆ„$X$À
@Ëúû9™E ’’':Âöå­|gUV¡ÿ{»
ÿÅnš¸áÄe›£A4à—þ¯ŸâxMÜx>‰nã’xÍöhínd½Ï~Û¸é$íAO
eÁÆÅã8º±"ádåh2Rn4Ž’=ÊÀ›Ï¢Ør#Y:¨¹‰xWæ"§…3_bñ)Ã&óކˆZ,qˆÃÈ;›FsÃÎfÑ؍†Sò'f‡B*RÅÃjjk°˜£©•5XÌÄå^³7›ŒÈ1$ñ
-E]<†%ÛÄXƒEñXêÔ³^qc
r 	W¤Š
³‰˜
¬Á°“™˜
¬Ábv&Ñö¬šÒ
-ÚI‰˜÷ÈÇ0¢$adYƒaÇR#k0­(W`-†
(°Þ©ÙH[1Ì©ñP‘ÏEÀâT"Šk0ìDva
†¥u4ŒSÙVAÖbqy(.÷v½ËÓØ·c2!ÉCE>
cv”H¦k°¸<;d
†Åfƒ¬Á8KÇÖ;5žùfL$SŠ|Fñp"™
-¬Á°ã!
bXƒÅ©Ñ¡fƒq*Q—{ÍKc	7°ÃrŒY¯,†¼òáê‡S>\E&܎¥;IF`
F–F`Ö`X̲k0NqˆS¡žµXÂI…zÖ»LÏêöó.+2.w¬w1°K
b1Xƒ…‹YÃ,.O$ܞµX\žÉ.	¬Á°Ì§Yƒ7nk3÷²ÎuïÖ`XN^z.°oÜh0”ÎèY‹a‡ñì\¦¡—QsuÈï΀…Kuu­g†å!́5ا™d–´w˜TqºR„ž¥ c=2üJbÕ@Ô%{¤'-†5zÔaƒa§¢?ÈjÃ%óÄ	Ã!{¤¢{ÅSË¢¸Ã°h²²^±nH¯H‘Qܱ“9…Hk°(–N6¬ÁÒ«	ñ֛ø”ŸÇ‰"5«óÙcs‡s¤ÈZa½(=§Má=Vd<îXΡ¹Kk0>
âSÏzÅC.X¥ê«Èû°$JÊcXƒa2²K<²õŒ¬Áâ”l®Àz§Lþâ¢N(2Nu¬w"°c–}ˆâÀ;¡Ù`Ÿ©‘•Ìu–±F@½fï2W9½ù<*2.w¬w1°÷.Ö»ÜÉzkpïrÏî]ÞË&œäÔ¯g½Ëf‰„
£È»0,3hk0,{‚,Ö`	HwA`
†å:GÛÖ`âl´šÕåx&ãQî£sÔò.;žp‚Ö`XúolYƒ%r-
²Ã2öy+õvõÀŽ§ò:B1#ŊÔ)ƒa)
Šk0,G]lYƒ%Rƒ ëÍNûÓQ¦F¬HÍF1=„hÏ꩏¦Ú¬3¹.y ’>Å*.ÑÈm)Vä£	–êP€ÀK”SÃz£Ì3}"%
-D/K;ˆ —Y{Òb1*ïÃ,Få²`Xƒayǐà Ù`ÌΠ؞µ–³ØÚµX.2/ƒ¬Å°”Îjö9杤Ãq©¨/ÅÕ³F9šþ	&ž“¦À(IS™À()’Tà$ÈD|ê9áXNc`Üù' ¸© ¸ÙqêWàìÜœºÙÉ©_P*%—О3Nßg§§ANCàÉâﳂ‚Bǩρ¸aÆANUŽ»Ç ÜAx•=DŒ‡ŸOd¡r
ŠJ9¹L<„Ó×Tà„›Ë‡…Àè36œdláôÑÓËGÔ{ã⧁’MÙþA.@¸¹ìÃÀÈnà
É÷¡.vå"-c§ç4·þd`N¦Œ‡À:›S¾°P¹%-ú‘©ãô"bÙ^¼ý†„Á¿E* „¸²3x:Ê@8­àGdã.@r¢£ ç„ãgÆ`gÏ@¸‰ÁŽû°8:ù„[ÜñÍn2¹ÅJ?ÕñKv|ºlÚ:ÍÚ??X7Á[¿îÊVI›Ö}Û®Ò6÷k8Õtͱ{ï;wº»gzÒ¢ïG³÷£±ûx¶
Èê{§Wô,ŠÆ-«êÑñwê²j½Î³¶¨JWݹ¿®nWü¼Zå+×Vî&Ý,S·ª²Ý&/ÛÔ/û™×®}ÈÝsžÖMäÎ][?Ëâ¼lvu•¶.]¯÷võނÝ*ÛÕ5zÞºå®uMµÉÛb“7ªLY§õ=ÊTKтGeî¶yÝà\ܤNeD¼¹ÛT$¤Î3:\jö!´Ä÷Âtç¿*Yæî®Ú•+‡—m»}ròôô5iTÕ÷'XUÞœÙ°ß¸mzŸGîz§Mîš
;­þW/þÈëúù?½Êèw%èœòI%üUAd†Ôãß>ɟ/¿¹Ïy™×éÚ]ï–ë"s_
-bƇïǟ¯¿|ÿ£>‰Ü)õÜ>K%)ЧU1Le¶ÞI‰ŸŠöAƒõ…nª]åÁRÚë”ô¹«Êwë‚â¤Ú¯tWWe“Ñ»æNó¹·ÛœÜo×Qû«“èúñãCNñÞ:͙¸|ò‰[DßýrHצËu.q}¬Ê–Šk‰öIçÁyÔç«(›–FÔ‹f>‘÷ŽÆ‘û«z’¶=÷«\JE9=uszñáôõz$¾æ)ÛBzdH?¼ì4æjä>ìŠõª(ïu凢LëÂ/|gŽ÷1ºb³­ê6¥‘›6ß¾¨["÷±ÎÙøª±Ù,©ryWÜïjß<wÅ:ïz¬Kgú%œgŠºp²R‹~˜ècײr›Öÿ{wü:<‰ÜM›ÖmŽ°‹ÈZÉ?^9=Å<çš®î88]~¦ÅÚ׳ôÞ5y͇g^іrF‘Ò¾aweñËeë‚^xezþJì®®6vgW7oÝíÝí=åü—þu¹Ð¿’Ç·îêæ$yëò6‹¢È(?tŠÿýànåŒ;¿ã©ƝUå¿Zw[ՏÿÖ l£Ñç›m]ýd»-ë꩑0ŠÒéé «ÓeWäâg‘?I»w/bäUNŸuښÝVúç@«iµDZíº®ØA̦Zïä WO–Ñg½Î4««¦qÍnYæ~·,¥¹nòVK²Û’ÙÛóËÅ®Œk¥oÂÚÞ9@îêëߟ¿^}»~í

ôÅή.NÏ/_%…~ùTՙdXÓ+ۛ3ËïX¶–¶Øo´ÊEúhØÜ«J
{ü·Rþˊ½˜.+¦JW™Ìf†&Ém^ou^‡Tõb·n‹-ۏ–×wi¶_hËO®¶ë*{ÔsåA…vÌÑÊ/zÝlTðŸ]‘=r^Hõn´z¡¨'ûߥSïëŠÊõÕ¸ß+Öê(ÂêYÑd»FÆëËñq1rߘD~Þ¸7_ódæ´,™°Y.3³N™ò¯÷67¸ßŠª?¹»y.³Ò¦l<²zai¼}À[¯+wyµp;¼ÛTþVâïߏcf&²­¸ûÈ°¿¸‘Ó`ÅÖ¤æ;úÕ±>ŠèáK"atÛÇ]ÕÌhM‰M¦¿¤åóANÆ˅»N›æ©ªWîÏ2«Ÿ·z…¢»tàŠôɧÙ~ܽ=úi˜gïƒ#¾Ìf#nzŸûsqôÏÑÿw²Îendstream
-endobj
-1390 0 obj<</Type/Page/Parent 1369 0 R/Contents 1391 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F6 9 0 R/F8 11 0 R>>/XObject<<>>>>/Annots 380 0 R>>endobj
-1391 0 obj<</Filter/FlateDecode/Length 3554      >>stream
-x
š[o×…ßý+ÎSÑ>˜æýR (d;i]ėÚJÓ·‚"Çc^”á0¶þ}¿µg΢”A
7Kkö}Ÿ½ÏŒô˳Aêó¿Aš
ÓhšV»gý^ŸŸtÿ|üÛ³ù¼7IÓù´×O»4O{Ã3Ú¦Ogr6ìÍEŽ&"‰t;õΆ]/Yû4õ{“Í>M½©Ìög˜Ÿ
-³†e¶ÏSÆFq~ÉöåAŽQ<+œÒkp—Æe¥ãîÒbŽ¸q¡f4Bَäké4¸K³…ŒwœAÂNe°#ü‹:†
z3—5,v¡Ü͆• Ô±ŽaÇÚÂXðh"EÖ0ÙFš:6×tH辶$³¢¦†aç™íØ,ڟæ.äQÈ@
r²¡/ëí§ŒZ½-†pØXðèX8k˜`Gjà"ëv>荌ÍNÍûÑgº{œ&Â)Ø¥ZSg
Ë©Ù%kXõéSù¢Ù1,]C@]Ç°‹É¥¬aUO‡¯È:ÖÉÑy5Ö0ìd¦TuvÃb‡TulNEÇg0RÃMåT¬TMd¶°†•ª‰ÌÖ0áe¡°ÙìdœÛq8 ·&Â¬a3Rpª°†å”N±†1;P×6›%]1Pcý$P˜5Œb~NÛÖ°œŠ~,¬aXҋÙ¹0¶`\ff’åŽÍ.“¾8`Ì):.PÎTÁrjtɆ%3T¾ÈV†¬cX²O2:ÙìùÒ öµ &ä”c±Q c–â0[XðSmGÓl˜Vf‘ŒNÖ±I$£°†uH4ÆLÖ0,rÍcí˜	³ºÛ1(ZžàÏ)åg½¥S8ƒÔ†$áN'èv0Sm
-kv2º”5»ˆ¡[d
“`ڌºv¬cG›ÍXÃ*NœË"k–†Gä˜ÇšÃ2XÚ|+Ž¹F>G/Žù·l¶Œ$š7]ÇÆf+ló8ˆÍ6$ÑL²£âàÑG“4z
«š}Ɔ厝5L¢HàÔXÇ*&IÑìX%¸ôÊ1,Sg沆s	Ü«îX·\¦q*P„kv¬Ck¬áœY’Ñâœœ*l̨Œa‹îÙ°k˜€Fš‚EÖ1,ç^å€âҌâÚq(ׯ`ØáDY.¬aXîCg
Î5½MÖ0,‡bá¬a±š…&k˜€è—u¬dh٘Qc¦¸ŽÁl*ɊÖà.ÍêäŽ3ȌÒÜ+œAœåBHö;AÇ°Ýê5»_ÈæÚ°éò‹Mœ@Q.­¨jÙq´ba
Kq_E/¬aåHwÊÂ:†E™èdÃÎ5¢
-.ëöã \̨¸Ü±á¢±†[—
—[Ùìba·.!t²Œ·EÜð¦I^e—çC²‰Y^&l6¡pÙ0lÜÅ›E£!º«Ž…¨aؑ^òŒ5ŒÇ\ôö«F/>Ñ1­¹èAÊ>,Å3|5Ö0,w~œ*²†1;Ðe§°9æT4\L³Q 0kXf‡JTa
ÃrÑÃla
Ë©ù›ÍÆer¨·¤|•ÏÑËúÁãx6Xð¹I:6+æv¥åÿ
$Ñ£~~%Ž³Ÿ8ƒçQP¸­\œýÂIJKeÂBøj–OUkX‘èt6"^nÝ´2
-ÅÜZŒ(Õwְ̖gCְ̪ñM³aµË˜aZXÇ:uz‹0Ö0,ldlˆ<G«E‡å€ÔáãT\¿Œ5;шÆÆ,s³fÇ°qo(lv
-OóeF—
-ùçÄ`P0f™óg
Î44MÖ0,·áYðT™à‹]øÌۅ{å6׺“u;Óeß4$:´ß4’ŸA\ÌåR<©ú0OñA¯ÃÌ.ú-PÏ°DuŒ5¬LhŠkûzý(¬ceB/6Ɔ廂Ûeµ¢Šƒ(>nd$—3õÅ'v7’r3˗ERQXð¹ù
-k–·
-òVXÃxÌé"žŽu;ÕeÅXðl\÷9ʟeڀ2*
u,KgŽkº4kX
éºh¬aÌR ¡±Ža¹)Nœ5Ë;ìÂYÃ
-H»¯ØuÌ­œ‹±ÛÍárÉs~&³" Þ[L@±Â5¬€Æ
-·“u«ÉXð,”™Ë†l²†a™<„[ì&\"ëv¤½Vdò®(o§Ù1o‰ÜÐÚÜ(WŽa¹†»]Z'ùô—½îÝI4×`r~Á¨Å P®AÁԀƒÕ†eç`µ°†UMÂ:V
ôùÀXðÌÙ©³†agú¤d²†É#µ&WŽa©¦ÛuKâ<"ÇùMúušõæÞbÕ`|áUN3­{“O
(å‹ZóyRû÷ITqÉqÀB:V}ôº`¬aX±vŠ“E^!ÉqÇ:†å:MkXõ\hv˯4Ü®cÕ'š³ÓœóÄފ‘À峁¢
+Ü(Oa
Ã2Z/d
+ ]§ŠfÇ°|ÚÂåN³c\æËÕëXÇ9 ŠPXl-Á²è]³cXî;œÔ"kX
§\؜ª儛§e |rcz¶l®Wa
+‘ÚoƒÂ†å³$QXä*'£cÃrkàlÖ°Š0W"k–)æ^9†Í“¶“d0qò5Am tMËÅÛjá
-TËèèu\¨äøå·x©PT¶\è(\Jžz´pB8ßqsð“"®LÏo缝ñ;*p¥@URî®@8Àȸ1dž_;¶:
ʕû±ãÂNZœOÞâøEŽ@v¥ƒŠ<>ëv\pq½*rbŽ¯SúÖiŽxøÝqÂÑú@+W çŠÑ¬_,œ9ƒp\ÈørÝr·þX•^€^ËE<…+°
¯pÞY.ÇÓqÛð
-áµr|¹Õד/Þ.lgŽ
7/½©·|L8º¼c	DxBäÂßW \¼I®@‹¯ÊgP¡_øb.>“¹U=}¼é¸—×Ï^|Ï°¤ëÏú»„é|–®×ñ7	ýt½ú#²{é;©ëÓªÙöºþùY?=§?†<?„ßÝêf¹oÒ»CSÓÕÍáÔ¤OÕêToš‡'£^º¾«Òqws¿<¿®Ó«Ãn·Ü¯õàs|蔿yÓ÷U:|N›ý±Yn·ËÖþ€¢{nÚK?|MÍ
MûϛÛS]¥OËÝÍ2-i™Þ]Ó‡z³[Öéõa·Üìõ!m·U-£—ºøC]ÕÕ/§ÍqÓTécµ\oö·Âà/3zéårõå¶>œ²ï–jÓëœA85œ]úM.DLjÖ‘"÷v¹ºÛì«t]ŸŽMºZ­0ÖÔ~þqØìõÈ«í¦ÒÏ_V²þÈå…Ö‰Úí{¢;Ül«]Öò]]êã“àH駇cSí҇Ãv³ÚPUÙDôóf[=}~ÖK?Ý-›tÀ…:ÝUÛû´Zîӛt[5}¢}Þ{TˆôùP§Ÿ6ûõáë1-¾½xûÝÓ½{õæÝ^½wýñý½æ[“þ܉½»~¬ô9å¡ÊkŒ³ç~¹Z5¹GTÉÓý#´}G} £¶çv½³¶\_ªÿ}-Äýþq=·’±
ÎIýå´Ün>G
~ÃC*ªºï«æë¡þò8Ù|3¥ð”"wßME8ÿ+ا²42µ>PÉcÕ$R´<kzùúU<ÿÜC§°vð®^B4Ü®ÚÝ<=l,'M—8Ùí)‰ƒWWëtOI–·4žzãuu³YÆðñqûøò«õߗͣFdÿÅ¡¸§¥³ßO yŸª†°§:½¨šÕ‹/õͤ·bÐ<yXGL·Š‚¬»ûSC-ó©6´úrId¼UëÐ}¬ê_y˜,ŸîŸh¦cõ¤rôuÓÜiv®âØ?UJ	b
-ãµáüXm4ÿomøÕu¯›1ôO9^áAVÅMý‘¯ìÛΣ=ÓÃ>é–GÓãáÁ—yõùCÚ0Ãîøç¦j”¶æ«ÇóIá?• Üs—[‚5ñþ^‹a¹M*Œ6Ào.
->9i™U·¢5]?užÏ1ç7¢Sdž@¤IÉÕmµ_/E
EØï–;­‹ãa{’7yvÜký¸ß|{ñÃfú–8¤ÛXuÖ
-ˆ“ƒ¯‹8Ëëtä (ߌ¡§ÎBTùR-«3{S3KäçÓ>6wžàwyQ®«ûíá!qòX1Úù‰ìDORð(Ô.5—Vé}s°+Û!êraº­P»u¼Uµc­IÙ¹:OnäˆóÂð]mq및6º>¼í¥ß½ùwúPÕ»ÍQ¥—›ó¶l‘6f‹ÊªtH?lŽM(»¨5ßzé_›ê«R¨Õ·¢oÂÄ}gBEҏ5ƒQÞE¾Þ,·‡ÛÇÍ®7ÒnûüŠú¤}Z¤p¹°Ç»e]=J>â4JëVˆ¾î«úx·‰¡áÑgi…Ëgë´ÞÔÕª9p²žZQ9ëÍç…–íünYʤCV/£íòRvh6¬^ŸÇÐ*ÊÝòø…Y_svÉUõÖâ×z¿O_x¹lšzsÃØM»åý=ÎÇ
¹¨,ù§ô1$܇«·±aÖ´A]'¤—ªšçšöì¡uZžˆbßlVÝlyñ½>˜èê¬ëÎÛâ<®ÅŸ®Þ¾¼Òmég’ÍÜ[vHvrÏõ®§ÇŸÏú]£¯n0N¾äíX6ó—Â#ýä»ëgÿ|ö_´“
Çendstream
-endobj
-1392 0 obj<</Type/Page/Parent 1369 0 R/Contents 1393 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F6 9 0 R/F8 11 0 R>>/XObject<<>>>>/Annots 432 0 R>>endobj
-1393 0 obj<</Filter/FlateDecode/Length 2332      >>stream
-x
}YËrÛÆÝë+fw“…`¼Kù!GUVì˜tœ-BÀ@KÊ×çœÓ •TªRut¦ß==
úÿññ_`²ÐD©©v¾çã/óÿ¾~¼(bÏ7ižâÿ;„©—ÐÖ¬.4'^¡Y…Áf)Ö*ÎB/§â8¥¨ Q¬ð΄AìŊµ¢Iá¥
-’‚DTa°yì%šUl‘À¼’Uf£ŒN͚ょáY³yÆhЪ‚;-©âd¤(Rc:$éžÕjló€`f–y9b°q6ûG—4›f§4›L¢Ó¬ðÎD°ƒ&˜Yëdy¡”®`&ѬÍRˆ&b–
-œIH–D¬h&äs&­VŸ™$QRȤˆlÉQ’ÀXäÈܗÂ
ýJ‘Ô˜z#x«X…Áæ9t8ÖZEæl ÌQ"ˆŠ%Ð$ajhŽJX@NAh
Rڔ“ÎÝØW&‚²XDrR“"©1Ø4‚mÅ*ÌfIhu–Õ,’¯5kÌf‰™C'«0Ø"\ص‰;ŠD$L„I„ƒs83yç  ªÈ¯c†Q?\(Ölc09YÁF9ž5k6åV¬Â`ÑsY…q3Ðöšµ
ã¶a"öF"h.mŒÖQ*
n‘#³Ø6…\ŠXб˜uçåR¬Âpö
-ŊKq؆
-2dÑ"Q¬0'l;Å*V.‡c­â˜7$†Å
-Óc¾ŠU˜åá]w¬U%‡[Ǘ!äò²iUHA$¥c?—$bÒGÆr
-BP.–#5‹Ú Ñ3یdŒƒDUSc‘#óЦ!ñ!	rdʱG£l–HIÁâŽEšU9ÂTƒâYVc°¸ÍZ³Æ`ñ¬ZVa÷lÁJö£äøàóͳȺì0\FG,X…é2_:'«1X›F±C̓EµfX§YÊÅv•:[@½
-Âa¿`žä¤„£0ب@«9Öf"<¬Ö_Aµ$&»tSRIëoHxNÀÁ¡#„Ib÷šI™_qȱ
-#!gž“ÕlÁ5Å*î/dFK óÑl³]9ó–v5‹puD’§°°ë@€qÃ8ќÄ0ÓO¾EŽÄ›&/!jæcT‘F¢ÐÑ¡fF°GËZ—ÐaR:‚D±ÂPŒ¿C±c¶ŠSÅÒЃÅ"ZhVa°QŠÛá4kV–NÅ*9Fg¯4FdOs¬
»¬Ì %0N$á*̆cË*Va˜õÙɎ՘
q`;֚EË †AD+ÈfÙaf™’b‹uc!«03%õ›5[³Áa¹Š8BAÖ¬Ã4+=åX…¡åB1gVÅq1ã°¶HË=žÙ”¯bf³«1Xy$œ¬Æ`áE®4[§¤T€_<±­­Â`­ŽU˜IÎP(%«0sÁå˱Óef[±
-ƒÅ£€TÍv‹‚ªð1hwj΋˜GœAbW¤‚;‹ä„¿H8´ÊÉc
Ž,DãX…ÁbŒšUØƪÍ2Ö#f¬|òœfÁ¢µf[žø°ÔÉÆ’xx5ŒûË+`‘Ä#ß3‹¼Ï
-«0âÁþ·U>ፃÇb‡²6Åؗå+–eÃWß2ÅRô™Ô˜F¥3kÕúvi“ý' jå:8~ðâr̤ÆP›q,;V2(ßà’œj*³»^ ]ÀL¥\?ARAðûjæD#†€¼ò3‚sbx
ùñ„ƒ³5ìÒÐR7
VŒe=rò2sbM7j´ªL±·ë‹7×hºÀ¬ïùãLšgf½‘f|³®~BKžY•»»Ò”íÆ|¹ºýyýç…o.åãw½á‰Ð3ï›qš»ýToÌÕ~z¬Û©©Ê©éÚóã‘G5æ]×Þ7ûAN™¦5ãîΫðGJ\âW"g¿tãÔ´¦4·M5tcw?-Œ^7ÛÚ¬^Ʃޙi¨kÓµÖmj;Q†ˆnZø»¯èàxn/†‡Cƒ`pµïûn˜ÎÔÄLÌM;
ÝÆê5:1XO¼e”<²<È֏µ¹Ùõ´7šu×mÇZ¬-Â¥÷MùÐvcóŠÃ	jTWû¡™^̶þQoåÌ"ìä5µ
\(ÏÜvCmªn×oë©6›z¬†¦g–LwoÆsË:¥žùÖ6÷
šàS÷€Ôš»zzªëÖ|oÚM÷4š_×ÒFß~½ùÃìGæÌȳübiñÌÕÊTVgùHéëiòu0¸žùþXNGý(h÷£A@geÂbÍözšO~äØR!rÌ®)·[Û±¼‹>­.~÷ð̧f×L"ðšåL¤Ú"ö¦,ó	úK9Ž›;sû²úí“é·û‡FnÔ¢´Øp<óvßl7Hè©Ø¿\¾Ê#Sߤý¶DÖϓéaõ©6£éS·ÕðÒófÿ|n)üXOraÚ®½¬ºí~ךM9•æ~èp%ÑäSy·­%ýïó9È?nÿ5Äü¿BÌâ·±|xE{›1u¸\¸Éœbÿq²ÞܖÕcÓÖ檪º};aþÜwÃnžEek>½¿ú‚;7Ôä_è÷Âm¼ìp|?ôÝ(fu³`Bÿw{â‡Løe'/M­êáG=œ5~ªÂÑê±ÞÙ	üµ¶ý7>6½™:Éì×ëw؇ýÌÀ™æùÒi‘°
-á0՟šéQ8?ö=èåÖ~º}?š]Ù"Õ;Œøstì<ˆxAFæü_Bé%ô±¯«¦ÜÂÊtxEFƒr,¤_Ijûá¹ä¬‚š›kó
Ó¸©­h¹>wÛ6nïŽQ؋©‹‹µÒüòùûú3ã¯Çñª±ÛÇã¦6?šÒ¼û}EÅ'’¯<ª7 š÷ñ÷ÕQ5J(IòºAîîb„P&YGÒûžM,n„ƒõéàa_ÒÆ-ÜlÆqoÇÝÂAyÐy_Íxxý´òœî·]u6a‡m¦žL'ÏÂiUpíúµ.QúæïӋÁ=oLùlž1ÅåÒ4&ÔÆԛk¬“²™à1?ç¿é„ØN~Z]ݾ½â@ÿwÓ¼ïª=Ë(wWtøåœÇ/3¿àyýŠÄø¹>Ïcücˆ˜Ç?¬/~»øKEJendstream
-endobj
-1394 0 obj<</Type/Page/Parent 1369 0 R/Contents 1395 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F6 9 0 R/F8 11 0 R>>/XObject<<>>>>/Annots 468 0 R>>endobj
-1395 0 obj<</Filter/FlateDecode/Length 1345      >>stream
-x
uWÉrã6½ë+ú6ÉA4W<¥d;žQÕ8ãXš8WŠ‚-ÎH¤BR^þ~^7(
ZR®²ëñáõ†FþoŸ€Ò"Eåfä{>¾~=~å±ç“Ê~o(C/Кf#ƒM"/rX#MC/ciy9)A"u0Ø(eÃÖH“ÜS"͙d¤C‡løÀ湗Š$ ØIA&`‹Y{©Ãiy¡H“‚ŒÔb–*ÄfY#
Q:ëUãuÏJ–êÀ©¯L™¢Œ$RÃkæ#6ˊ4É#S¦ÿd¼Zi’±F
-{¦L²T#ݳ‰Â¾&ÖHU:”)÷J©Åðª¸"–5҄{
-d v‰ÔÁ°Š$–ØOÌ7¤¸ú°2ÎyiÈBès‘bRz)	â!SÅfYÒL.AŠÞI™€,†Ý8@CXVìÆYæœƒvã46•ËlØ,æD3xwXo(D'+©Æ*T3>Ž°]r8\Kº,ŠuÄ:˜Câ~p´›%¨¡eM!âÌ8æã’\ÌRÞËi”åO8&A"
,†4NЅ–5R$i%Ì„$ÈTØbN'dÖu0*ìs÷XÖö³aëĐ ÇðžU<¡â+Ò(OLJLYéÅfä°FÄyŠ¼ÖÁܼµ–u1³9Fˆe¥c"é
å
-ÝdÇä@8…Y\²RH>¦R”q˜H¼‚,‰É`ÊÏC>dRµx_~˚*al˽òŒ‰ÔÁ,å[òFŠå G!Ç+hïu!U|8,k¤12ð"¾%"AFj1{å)ã°f–'œËZ%ÅÞXËÆÞà:AM¬	ÊnœˆOu$ˆƒ’óáNÁçŒ’ˆ¯¨Zê²ÀûÕ1OGë`°a‰ÃJLa:ÜG²í±[C*l—K
-²$Š%%ø–YgBº	>I6†Ý˜W9¬ƒÁæÁ‘öz>ººS¸MhþÌ/•¥4_Ê+ƧyùŽ}êÑlU´š6ÍRw¿ÏŒ|ã
b!ó™G_›ZëW½fv|Lç=UKM몾¤|u±¤¶x;·P·U¯ÿ‡ñ¶Õ˪쫦¾`#òè^ošöƒ6Åv[Õ/ÖÄHrݼÑͺÒu!KŒS³¹Võ¥ÊÔÔïêË^PÊû¤ÛíÖÆÇ%?ÔrúG“íV×Ëêݔ
-ïÊ‹
-=4m_,ªuÕp'4jõåáû¿Ìí
¶
-±ß|£ïuõ~š;^Ýþ5™»s‘‡š<ê嗢§¯U½{Ø,Ú¢^öãéTœùç
-›EAXAM¿Ò-ÝLïfTڊž¬G¼÷EYÕ}Ó­öËþ8/æà¿Í¡¶ç4ªêeóÖÑsÓÒSÓþ|i›ÝV¶è¨xÄصŸòäêSžÛÃ>ïí…>ô3ݾV¥¦‡¢üIáyÞXÿ¨·Øl9]ï^ÄïQ¦¸ð=šÖ}Û,w‡=ŠW¸GŸu­ÛbMUýܜ†…Û»¤»áœõ_¹Á‡nk˜ÐmÛ´Ö ÖIßåŠcí*¨ÝÕÜ«´m›Rw$èꇢ/W¦!ÇG‰»­Š—ºéØÄG³k©“èP3Ýr'ë/Âí9Åu˜tÝn³å³|ž¼Íuw~@q3¡ÿúj½¦Uñ*é¡	kÝIG]ÝeÌÃûÂÏðJù–›Mî¯'ôÐ6?tÙÓmSî6Å~”Œ<ÎY0Nýœ×O]ßeÏÉÅxeYŒÿA$üåÏùèïÑ/ûË,8endstream
-endobj
-1396 0 obj<</Type/Page/Parent 1369 0 R/Contents 1397 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1397 0 obj<</Filter/FlateDecode/Length 113       >>stream
-x
+ä2T0BCs#c3…ä\.§.}7K#…4 Œ™¹…BHŠ‚ž
P$YÃSOÁ=5/µ(1G!3¯¸$1''±$3?O3$¨ÍBÁТM¢Ÿr= !)f \C¸¹˜T&lendstream
-endobj
-1398 0 obj<</Type/Page/Parent 1369 0 R/Contents 1399 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F6 9 0 R/F7 10 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 513 0 R>>endobj
-1399 0 obj<</Filter/FlateDecode/Length 2873      >>stream
-x
}YËnÛHÝû+.z3i aDR¢¤Ùœ8é1:~t¤ ³è
-Ñ6'"©!)»ý÷sÎ-²êÊ
-
ÞgÝG‘ùßY,ü‰ežHšÉ¦:›DüÆÿõõ·³E”Èl™E©$£Åv²:3°’iņ3°’ùâN	å¬d™zä¬$Ž§Qj-;‹£¥agI4“Ù"09'§@M“êŽç¤ÉY47‚ƒNé­u&³e”Á$\G‘Œ‚“%#ñ¤ÅT»Œ¦†ujg~‰H4é
-4’+Yd4é9¡4Mhғƒ…
ÄéYg§–ÀäbÆ(ФŒ$¦¯ž´l¢gXƒÁ.¦<¢À\I2™2Ï:—RT#³"Ç3š…‘øŒZ=g ÊX³ž´,ŒYµƒÍfÌ`5˜îÎé®g»1ÍÁ¥	³«@k!@¨d¬MOZÇvÄV`4Èv®UæYd±O#Ï؅Šè“ÅT¼`k°;8åYU<E,Pú4‡T±Á`ËcÖ`°K6¦‘5fcZ¬ÅdH²e‹ÒN
§f2ÅX`Ï'h5—&dÍ=©á6ž3Õ£¬Á`§Ì¢a
f°<<ÃÌϘ
-¯Ùb°ÉâÈ+‹¬&Ù˺`3ι1X!؁c¿ÂaOZÌpRæ0°Ú›ƒ…QœN`
»ˆl`
f°‹#ÍÎá3?:¬ 8<pƒƒž´˜Ïh4°Óa
'°Óá	jÃÈ‡ã]X‹ÁN³#Y‹Áb_àd½]‹¹T9¾k1Xlԛ—µl6gUÖ`°Kv|`ÑҀé\Ç
Fï˜du“á`õArXl#Dš0P‘bOZìRŒ$)1ŚjØIB6™sD;VÍÆ®ƒ6Áށl`lC4ã.V‘ÊûX•M—ÌY‡TÖ`°£7¬Á¬ã)²X‹Á‹#ÍÎ.rÍ2§1æWªÈÙ
˜v¹„
k0Xœ	ìYƒWKÃÒ«ƒy&AÖb°S^ k0Xôø‘]î(ºb¦œ×©"È±¨;Ý(eÄ«ÈÅ0#â`
,ï)ڗ§«Eä
ÔåÐôArØL#„NL™Q‹ó'`°©ÆâEu¥X·,
-xƒH¨ÚZâIš1Xè±¢N-v•ÞT‚ vàâ4eæ=i1Ôê(3¬Á`çÏÅË:£Ø(þbš*P£¼§:HµÜ}TÁ‹‰'¦IpÀ{;r1ÒRi1Ôbîg†ÕC‚ë‰6k2A³:D½±ÁôˆåiXƒ©˜:k0B³j‡š-fióu°ƒ…¦Ø²ƒÅnµ².O™{/ÂX[@ž€V
DYd3Áà
-i-›r©Q‹™®À:‡ð7ËÌy  84pÎϥȔzÒb°33°Ó!n#k0ò‡Û'‚ñ²ø
†´GwwÎùç9½»žÜ$wëÜYç^`
†»x_ñyÖ¹‹Õ§mÁÛ|¢€îê]ßA¸”p¥Òb°hq„íE-f8lbÃ6ãÙÖ`°ØõV³sX'=ò«­ª@ó ]óyÒb°¨A¨
¬Á`ç|Å4¬ÁÌ!¯Õë;’ó·AèU .µú²H‹ÁâZ€>õ¢Ó¨æß³j4Ƌ±N_.|ôà„Z”~bHnŠXß:ñmƒ«É
Êinã̽ýÌyãw€œè}Þèg ìáŽ47¤Úӛ.nœ5îZBV‚kÄôArÂmàd|¼üÒb²~–
,†‚ôF-fk3µìœw>ÃŒHq\V³Kmê^\b¼o‚TòŽzåY¢Ô`Tæ=@WÊyÎ@Ç8ÏažŒYà+@ -»ä-Ç°#NÈ"ƒ^±‹žØ9« 8;pÎ;Ï8:ë9çì 78çI‹ydÜF\(™î$‹Ù%üÔX‹ÁÂwäÏËj(øJÆÙ§‘èÏ>QÇ=|Á»S̯nSuEÕ¡ÿyÈxsҟ©. „Îi癀¨Ž×Ok&3\€àfüÖä‡tÍ 8}Mr
"U¸&AÎ@VÛßËo&Ù\3^Î@pxÕ3	ÓT"k:Q'°¦?3•xy“B!ONǘç8…fîõŸ.ðñ‹?S_@84NÏ44žg´mqÂFó”ð
±…ºäãÖèÏb€Hbç9MÞ©ôM5‚7Kz¯.¬º½õɟɠ¥°®‡”„_ôŠ„nëŒbÒG¾^y¹ë³÷Ÿ'²¾Ç×õl¾õV?ªã7›7—uß6Ûæ/›ú×õñ,æXìž}%	ž~³~,;Ùçm/›¦îó²î䡨‹6ßIYß7ÒÔòØ<Kßv}¾ÛI—Ww¹äõv$ x_>ÚBúÇBuuÒÜϽ4y.!V5]O/&òN—<lïÊÅîEê¢ØFrûåÓùꓴE¾…ž²‹œËÞeV+]Îïv-|„ÇEÝwîILÌñÉÑ@É¿ó—ƒót{]t½¬Î¯>œSÿᇤH¾:
-©òÑ<ªß¸ɇC¹Û–õƒÆü¡¬ó¶t¾;z2d¤0oeµoÚ>¯{éúbÿ*øÔÉGß»,vÕDóšóå¾Üš“#ý3èg8Hs;è“ÈyÿxœÁ7ÒãIuuœ¯c‡³HV=Êa
Žlõ°küpš/ܐŒÀ}ÛT¨“¢ßFtþ$F¼fDr¾ë‹¶FPOÅ?‘ŠÁVÙKÞI.Û¼¨\¹¾;>™9"m_dWvÁ·Ç¼- ô”—;WµKDW´OE{b~áTÀµº@Wàð˜%=ÁC]þ%›]‰r:[žˆiœ¹\ܬÞÊ÷ûïø»¬—é?×ký'ùñVnVRô›(ŠŒòã„c~È÷Ǽ—Ë{”
-œê䢩ÿÑË÷¦ýñ¯ÓŒãy¤ü¢Ìê¦c·mƒ~¨N«”“	‡³iö…\^(bõùñ±qŠØ½PÖ7›f'_Š§bw’
-¨DÞ¶e­éÓ<|»¾üçC.5rû‘r'¦Pª_šÍ¸ü3µ¨»«|¿g@ßp|u^
í„ÿ1ôý‰p.«}Û<[¹k›g¿¬Ý¨y*\"¹A<•Å3ÇÅ(ñÊ<ö*ÚyÔÖölSTqÐj:¯!Œ_3ŽYÕ5»Ã8^mÀ¸#ù¦mºNºÃZCÏÁ–6Ÿ…§TÛålö>Ë3ªA´Žú—ZqÑëqö8„ï—×+ùià»òѳ>fÄ
-¹›¯¿ÿöõæÛíëÃÃíoÄ.n®Î/¯ORŠVûÜ´§Û(;7Úªóïusâ»5€Õ1
- ·M…„AüS	vÎuƒ™ß5‡ž©Ê·<*ùv‹£éNç1J™¾:ìúr‚*.Úû|3<h§|³ß¡\OŽß´††Åð‘Æ=tz08ÿ?åæ†:Ï~¥gÊìýð{6ùCÛàäüi<Êmñº˜µD.Ênsèºa›ªÄeĶa•³‹ùŠ!ŠÄœ×us¨7Å/ÜÊè¨Ó¼ã;ÕO%՛BV/õæï„å`–e÷ª
-ð…ƒª‘뛵à\Õè
[µ©ùóMü篂fvóîjÅ1ºE[ãÄ7…§ˆo}8sD‚-=öžÜ´[WOGÁq“×W°Æ½–Û¼ëÐE[ùToڗ½.U׊י×éÆî`Ô¼º?™„ã“Ž¢a¡³
-;9×2\›C[ö/Tùþób¸”¨k¸™êæµâ)îЋÅW8Ünæü´>ûãìÿ¬h†2endstream
-endobj
-1400 0 obj<</Type/Page/Parent 1369 0 R/Contents 1401 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F6 9 0 R/F8 11 0 R>>/XObject<<>>>>/Annots 517 0 R>>endobj
-1401 0 obj<</Filter/FlateDecode/Length 343       >>stream
-x
]’ÁRƒ0†ïyŠ=ê4	±ÕÖñеy
$A혤ÕñíÝЖf†Ÿïßü»	_„ËC% —Ð:Â(Ã/óãåÔ’*JRxÉfõ	;’j¤RP~öN4ÑHq<¥‰v òŠÖ	=ÅVãæØI%±zŠ¹ÒDDž gšj¤ŠÓ"¡¥ %Ȳ¦c+‡DLM$¶$
-ô\aª‘b\JqGA5.W¨
-ßÞ½…Ž¬4Yl$pº‹§ UÚL'À@·7%Å-¥°4ߍ›7;@è`·]ÁÚ·ýïaüþVï	ƒŒç8¦6S…ø_áƒÏì©Â84Ãðz3ÄÒ>)Î)èwƒ{\î‚s7Ѻبs§<甩§ÁÝÃÐÝr»ZÂSö¶á>´Gg±ßK{—85ú³ŠÕÑÿèÇ>˜c{1
-ÿ+U࿈PŬµ&Ï䪝×endstream
-endobj
-1402 0 obj<</Type/Page/Parent 1369 0 R/Contents 1403 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F1 4 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 520 0 R>>endobj
-1403 0 obj<</Filter/FlateDecode/Length 1086      >>stream
-x
­VMoã6½ûWL·6bÚ²ì-)ºÛ=´‹n|鑖(‹µDª$µ^ûãû†”ç£
ځ[$‡oÞ¼y£¿FMñ—ÑrFù‚Šv4S<¹û÷ùÃh¶¾]Í×bF-åë…ȇ_
Ýò~ºÊ×bNóÕßgø8EU\Èò9=³ÏÄâñó›Íhò~M³)m*`Z,W´)#<).~ªe”£LÐ/ö@ÁÒGãƒl’¦¤òn¯½¹þqógŒ“-SœqÄ°)/2£Ÿ•,)ԊZi¨“;åÓþ9eÙ°¶6ìߜï¢Rûàô¶ª¤ƒuºŒ
-k‚Ô†<يz¯ª¾!m*‹kdÀ^ ¬UÓ1â
-t´=
·C A+þͦ4Îr…‹KkÞÚdY§L£¾CÌø
w$o[jmvÔè½z—RA9ïRY .ˆøCZɆ•µÈ¯À08¦o·¥X=¤á‚¬£‡ážAå³<…1ÎVï£Ñ7j­SO‚²M‰"öFU^ðúx
8‹œÆ³
ì'¤çZï
-9e2]+ƒ¶†$´ÕYm¸ t{ŒÅ¼•íVÒAmÉë .©¡{7™áyIX·KXÖt®‹HN&f‚nzݔL$kãFéôKÒ°Tr}µ¿¤J;HÏõ¨ŽvÎîœlÓeWß$&J¥wýSN >˜ò…Ìœ*‚uGA„'_Û¾)IöÁ2ô~dÑÝÇ:N¢
d±¨ÙN9œARþèƒjOr£Z~Q(Aï{ِQªôÁDi¶òÍúšÙER)‘g$å¬
ߧՓ¬ò+±tu–/Ç,ÿ´õÔfã´÷®æ‰D\镢÷ïT¡
Ïv\w±P«2rÛ(f€ÕWUôœá„ÙÊý#>Û·@ÿË´¤!è“)éð5ê(Õ£ïcmÚN7P'÷9†#¼œ$šÜËô¸aßÑє\æèu‚þPyÕIˆC
ñ?œ@G÷žÓû×Ñ|º¾œÜüàÀ_¾æ7+
-¥éèÁÑYúÍm€›H¢›Õm{O_”ól?pøÔd\ÝVïꝗ›%úu´|ngØÜé{c9kTÞqRRš[…©id{š.’ÞÄx‰eøîûÚíà{²Øó¥è	HO¯¡I+^¦o ­Ò˜½ìƒ§dA&¥„ݸïR„g7
L<½uÛY¤AËõÈ&@Ùi_‡tºa§’SõðÝJ…¢æŸÎ«¦Âí&<å³ ÇQé´ÙÇý«ºí›èŠ‚>¨í‘Ytüòò÷³ž;+š‹å斎cW·˜N(Þ
-Šýñã-Ñ00¶°©c4W˜DtœÌ0âÒØO><\†ÂÇQ…Ð^4›dÈñ½ÆûCœà(F›¼_ÝÏùyžæü¿yGš¯¦bµš§
¾æZý¼ý>úí.tendstream
-endobj
-1404 0 obj<</Type/Page/Parent 1369 0 R/Contents 1405 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1405 0 obj<</Filter/FlateDecode/Length 1387      >>stream
-x
•VÛn7}÷WLòˆWWKN>$iA.´F\Ü]j—1—”I®ý}ϐ»•½U4†mÅ$çræ̙¹=™Ò_SZÍh¾¤¢9™dšŸeç´8_áóßNÒ&Ìf«ã«y¶>x¹>¿yNÓ­7ð±<ŸÒº$؟Lh]Œ¦Ù"£WNŠ )Ԓ|“SaÍFU­AYC¥eötý
f4Åk6sŠ–04Z×q	|{Ñlµ<òؓ2Ѷü¯xòm^*'‹`ݾ?,•Nå-ûÌèwªJú@{Û"sQ²…†Ã€óé<›±ó~7­Ö{ò6^,„!/%Õv=Ú-›óTY
-¶’0áØß։"¨Bft‰Ëœvƒ‡[Q
aëHh}ÿuLžS^ݔ2yÅÉ"¼ÖsG²¦muI9€±
<+S‘V7ìNù_žzÞùH¶©û÷µÒ6ú¯>á	
-×ý1~כּ©œm·ô+½¿zûùã—OÝåÙ4•æÞå¯5bð?±†»UËùØØ3öÇ~q3–ÃÀÞ_}@ù2»«UQw0R”Ä2¨z,I¾'aöÖHÚ©Pã3‰¢°­A‰-^º;éž
a†N⊇ʑ¶ªhD#ɺ>ԎcªIøXC¶‚JÇË]>ØHt@1¡A/C¼xÀ3Ô8½M.Hy°Â!¤M¢ÊËÏÿ¸¼øð6ßÃÀ/§”A(í¯Ÿö•èó¯SþûøÍY×F#ЄPÆà“Îú
ÐÐØП“ tB»p„^͸W‡/cÇÒÇH‰Æ±T¤W±œ—z3$õ{ŽÄ·ècn¸m›@é=Dè;.i«På»~+µQp”Ú|$怆A^¸ïJ¹­FŽ¨–E]í
ß»×â+†éÝqëÝXÛBè1ÊÅX«|<prýt˜æ˜k,²T–›¤p"·È×Ë¢u*@Kd œZÀAvÝC¾fCß/Ñæ#„…Ó°EÛH3äėþ}ùú՗Ïë+æL§£9>w?ÍÎ2Zw‚ç:=I°Çþ8£>è¶^ˆ/Âm³µ.4Q$1—‡Æï„V%çg7\77´¯õÃCjBNµ"j+'hõæðG×?¨àÇwìÞp#¥5„>¤­(Áš®C}4ùÞ]¬Ô&‹!éWMzôÀ[ØgïÂð¸@sÀ½ýÈ.Ö.oÈ1©r	
- žÎhT|hû…Þ‰½g«‡E%ÀÅ'Äèµ0˜nþÊGéÚÑê/!0
RÃZ£nò2æaðáaIîMß+„дÀ³¨­)AGh	ž÷â	I,…lx Ѝ³›z¤Œo£Œ~³æ	°Ä¬†ýÒRnCýˆ^'E
-ƒ‚óî¤9Ò¸ÑÇQÝâ²ÕEMJüÀ8(%æ3fé>
ñóxŸqr±6ˆ#¡í²ÄۍÆ#B_Ø&ºÓˆ”mÑŠ±+²(?‹¸†;E’n6ôÓí¾“A<ÝÒ9`Mæù£ŠVˆËJЯC”ƒóI¼vÌvì")ó^ö±| xëʤT	Œ8ÙÐl†—žˆè=¹- m>¢iÎÚ$[ƒ
¨á>åĆ÷&ˆJ4þ‹Ä\€ÄÌ^û/ÑGÝìç~À¶ˆ²HʑHEµÅÔáAŸz}f§“~kÁ¯UU,-Qÿo[UÜà?€4QF%â×-(pxËQ§ØçÝ̝.±ŸÏi9[¤%çòÅû—/蓳߰ؠSÒˆs…ã8휮&ØõÊÿ³o/V‹lµ<ǶÍï&lîõúä÷“ù
»ôendstream
-endobj
-1406 0 obj<</Type/Page/Parent 1369 0 R/Contents 1407 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F1 4 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1407 0 obj<</Filter/FlateDecode/Length 1295      >>stream
-x
•VïoGýÎ_1v?”(æà€v?9JÒZjצŠ"Eª–»=³öÝ-ÝÝ3ðß÷Íî]ŒÏP;‰‚Q<¿ö͛7óo'¦
þÆ4ÒhBIÑDÆÓhFãٔ¿ãŸ‘”uÞÏ;ýO§ižÁe2ה`>Ð<éÆÑ$Š#ºqÂ8UÞRftAª”.]foæwpS÷Þp
-÷îå—ùÇßh¾Dçz͞k•ç´”ª,“F–ŽTF[]Qe%]^ܐ6üã-9
ëŒZTN¦d¥yP‰´Tˆ•8á€zÃIÄuvÿÔúž„ã8†B1x¶/¦Û—.é7ÞOíFôu	7e)•ž“r•6ŽâÑiß%«ˆ.2*µ[ré;fn)K)ì)‡>îe]S<Š†\|ìYÈïSWèJ۞µe“ëim;¯³ªP¹0ù0XOûUºò˜Ù¥®ò”–âA’(	hš­¯ååÄ¥m"Ì{)7Ždªþ×C袀€ÜZ{ˆ,Y]È$£E;øè´áÍ84”Zvá'¤(ÝAgÖå­õ+kú¹NDÞ·¢XˆþB•}[,@þhº3÷ѝV|j–ôÖ <CüBð’ãúgŽ&!
s_nDâÈnK'6¤³½ü<Œãƒ0
-¬_H·–à\Uª´5Œ	ô”Æ7Ÿ-U¹3˜ž1¢y{ÍÌÛJ¥²=B<«gtƒÕ9HäÀ9Ýv1µ8ºo]
Ö?ë{ÓÁÍd·T›h#¿¿á*(¯œÃoºjUYTìSámLŸˆÇ"²Ïü0ÌP›BxVʂ i҃7ïGéK	ãr‹žÂ¨°~±‰  ˆÄRƈ«ÒI“	ÈÖ1é•Sš{Ã|ôªÉ¦v%•m½ùÅOŒ‘Ö¶ àY慰÷L ¯r¡#º®ÊðÚwèATY—ÕmøÿF™1–6LK-º©.ut9¢5+!W½0Z¤‰ú<VŸù=ýOM(T£u<íL/¬â ¬’h"r˜ª$§
-yBPvʄÊ-
–‡ô¾‘
A+~ì¤õ»‡“ï%6ë‹N"ˆyê%;얦1©ÆÕ³õqttôõüúòâòw|£ÏÜÚ0g¨ª+’D®PºÑ 8½£•€@ð£|ÝY¢"õB·‡úia9ªv·)0X‚¼s‡˜QvÅDú¡œ7pʱ5·U
ÊÚfÿ£»÷d£VîěZ^ãÜëς_îÏø„þ·[ÜŽk4_ãzB+i–ØätÇcn%ÀcvÐ_ùËõûµ¦JÍs^ÍXp؂
-Z÷ìy˜t}y4”ìz9~ÆD^Ö°™ÑÖ³ÁÑ{¾J¼”c@Ö2Ïk®?^D½QVŸBÈÎs N=È3òïö|ÃÐJ…,t=”ÍðñF÷gÑcßtÀß5xю×nïH0äµiß¾
-Žb”8±þpàV©ÛÐÈïΰúÜРLõ‹_ÞÅ¿…Õºl`<°R/äÞ¯Î\ÓÏøúþÔ¾O®ÍfۂѬ̐qpIndR9±È%nNç‹}Ô®.%ËRñvZñnV}ª}sÏG‡xÜ)wOZðê¯1¡_–¿œCˆ¦7áD5I䯗ð»Y­äñgúlD“IÎʛóÏïÏéÊè;H#}Љzð0Э×8ô¦Uék.÷ñtM'3œýls
睿:ÿ
Wÿ§¦endstream
-endobj
-1408 0 obj<</Type/Page/Parent 1369 0 R/Contents 1409 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F1 4 0 R/F2 5 0 R/F3 6 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1409 0 obj<</Filter/FlateDecode/Length 1161      >>stream
-x
­V]o7|÷¯Ø-*ÖI')úðC¤Ž‰ÝV×EÕꎒhݑ
-ɳ­ŸYRgK–“ºEØ9‰Çݙݙ%?Ÿ¤ÔÅ¿”F=ê)¯NºI—†ýa2¤Áx„ç~­¤EX'øøÂB¿›&ƒ—BŒgÞe'Ë
¥)e$ŽG”„ÄÝ.ey+3´VeIʓ“º ?:µÔ¢$oȯ$m¬É¥sҝf·ˆöf­Eºšñ»&C‹„Þ}õôš;~-ám]j÷† ’­«ëìý9}XÐÖÔT;òNÿøm@ÎoKIJ3­ó²â%ޫĖJµÆˆJcÖ$|Ø!¡ÒtK>ˆjSJ×qwvÐv^X_oaIÚOzŒÄåVmÇP%z*ª¹ ²+ʁG Ð¹œPŠ’rmÛýA$“&£„2ËàœWz@¹•°Ò‘¸ªsP2„EÝ흴‡˜¹2#Èx¾+éŽÍ$é¿A.ZÍóRIí©ý‘âKý†2ªhWÆy-*yÈ´<ÖýO”Û­L]´”žæ"Gn2¬|sÒ4¬0úÇPzMÎTÒ¯˜´r(Yn¬•¹/· ‰ª7moŠ}e<·:ô
ïóVSP.4‰ÒšKÖBÁÍpRÒ=¿Ø`‚Oji K…þ$´Xâ1ÇѬåê|E"¨w¯Ñ7‹›åì´AÔq'Á|eTˆì–Jy'KÈk«üöP~ÓQ(V~®¥óè3m„s÷Æ`±0@	ݳÕX„û²'òJh
-¢»Õ}«=vû°-¨T#ÕSÃX*¤‡¼\Òl$.$¾ÎCr6É.uSÄ{…z×þìö.Q„ÍÆ+¨¶ýûÍdÈM…ük	ɯÐÃÀQ5vO~EÚèv,OÔº›F/zg½“­¡Î‚ &Tkõ°ëkÐxüßù%î}4u:û~éF©òo'ÛnT.J›Åˆ½¶_ea³AÙ¼ýÉFãgö+$.!îÒ˜Te)_5MQú#/ÓhÁ—ŒvOyB³;åy%î$”iÃzJïlÊͳ'Aƒ‘÷Óð_¨’u€ÑǍö	Uœì·58†ø‚þZaT¸¿ÙXAVJÇhM’=„_I÷Ü»—pÀnØSL,™PZhsŽa®ø„ŠðJ³½ˆÏÑ‚.W>vÈo7òüQ3&^1•;®ÃqcœFî»üt\LŽ$¿°¦‚-/®§gă
-•ž<„ÿ®²3ŽÇšïÆk½õ]O;½3’>O’äÀ&MƒölÂ=ªL­ƒÁ
-åÖrùuÂ?ŸÏf7®.®o¦³ÙO‘Os&Ód²;”4>¾‹sšá'ú+Ÿ]÷>žGkcqÔÂ÷ÿ+ rãÓ0mŒ)ìÞ¨¯ýØ+ùì¸.”’IÇ25Õ?
-)K9·ÂË3‚pÃõÓ@м^â¸1ÖŒws%â’8îÓ0Mã]eúöÓ»·ô‹5·ð]˜¼®pl'ÞÙn6´GÝ	_þëÅd0$£á8Þ;ÒÇ~Ÿüzòù2Eendstream
-endobj
-1410 0 obj<</Type/Page/Parent 1369 0 R/Contents 1411 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 523 0 R>>endobj
-1411 0 obj<</Filter/FlateDecode/Length 1504      >>stream
-x
…V]oÛ8|ϯXä¥)¨þ¶[àpp¾
-‰›Ö:䅖h›
Eº"ÇÿþfIÉMÔŠ †e‘»³³³Cþ8éR]÷¨?¢¬8é$öúɄ“1¾÷ð_JZó,=~|û|ÒëL’

ÆäGõ†Ã¤[?iZ„@ƒÑWüˆú“N2ú݋q÷×
—éɇۏÔSºØѤKi t(ÍκI·“Ðr+<Í֔n•Ù8º¶æ§¥-Ÿþ~Ÿ~Çþ
u±÷_ôÆȝægXm¬çõ´ÇBGÂät°9/JOÞ¿|¢ÓýÖÒ¾´^òŽvJK²kò¥pÛSü&
ÍÈU›t>È-bÈõHl„2ôx†ÐŒÙ»}ЅìáÍã{òJë°)º ÜîMR¯ìÀV¦œ€qj³õè†È9)­Çõlúyþe1[$þŇ
-øÕíôkÂlð.ö¹Åù*{Šx}y1
-¡4  Û²…ÑȽ۔¶Ú¡mí¡ÿífz}Ck[R.=B¸Ç÷	-D±´ŽVˆ]•eÒ¹u¥õ
AªÖ2'´ÉomåÀˆcòÒµò¢:ß«\ž“³TˆÃ
-%ØBZ#Ij'C’­
-d—´+íJË"ÏÙí³,3¬&åúd¶ÒH¬«Âf®`¹\¶r2î¹Ë„¡•QʹJŒ¼Ãqu¹â&·;´l:´V/!|éáîfº¸!'¡,â¨Úå%G}It<«
-i¼ðʲRÀ©³U™IÀÎ%ԞÅ
-ÈF¢å;Y:lܳŒÖ
-y@‹NÉ2 “å÷yº ¨02݄®•ØëX‘ÄЉִԳÂZڊgÐ{
ו¢æ`¬º¬C;ʶbçe^°êl„É‹êÍڃ´2»“4»þ?x—q-*ík¢Ï˜gZi
võî„ÝÁ¡Âàe»ÌLDk_°§¨0A*¡Ö7!ZôÏ®3†™d•ï…	¾Á*0sñ@$‰‰í2ó>Q¾3Ò¯”uð;rÅ*ɬY·òÚK%¡iSÁÕ{0@g‚!Z|Hï¹Å<®ÁÀ’
è¡>ö@x
-*̏\¹?4¥ŸÐÕÖFíp&èÇÛÌjº“ÏR3âߨ(ÅÂÅý%÷=.æq-„A÷”Ð2óQ«²Ä8€Íè'®Úílé
Ï	ÉrõåÛÍyø|¸ûgqNwÓùýtÞ=oñ†£¬yÚmmpÌzÆeHÚóŒâEUñ ¨ª
4ÞKÙŽ“³×=úYñY0gÖ¼&”µE#žA\󊏐Ø(IÏ…ønKåG¯l×13duŽ
ƒí9#8V䎕÷Œc»¶Ut#ٗEœEÖóÉLF¼Z*ºP¦ÜÛÐ ¤ ³Â:îVð|øŸÌ¡«P±{ìu‡Ë“ÄŠì(þ׳VáµiZ‘X£­´¥Ä‰eXÍ"Æ´‰M8Š›
-"©ÀÌ·µ+—U8
1¡l“ËõrƒîJ'Ëgö`ô' ÑN8‡±ÈۇQ8óøدE{©HGà´7ê«¿ôpŒ†FÇ!]Eˆíæ˜
d
 O¦ÉQK«F€*ι‚ŒëdÂ^yÄiÔbÐþ:¥h,ÏPpH×Ö됉{ËZk@˜¼Fì̟¶l¸d¸;ŒßÖ)´Â„:Vró‰]*?´çoYë<eJðôqˆkB]ls¹YÈx 7sôx†EÀj*¡Ñ´—¡ÌV}ÕhG˜ãbö‰ÒŸƒº+løG%+n;›GÃ#ÏB8#RŒN-8½zø0{ 4–eьmÓöV“bïYN	ÝaྙŠ/-ù´œÃÓe¥Úa¡F³Â–p%ƒ¼~‡ÚšVސÇp½,`–qÐXÏU!V˜1¾ª6¦·“Ú¨º#Üæ'}ø	Ÿè‹éýå”mû;|÷åW·NyÑl¸w>ï¸fƃd<šà’Í—Œ>ǹIO¾žüÚêaendstream
-endobj
-1412 0 obj<</Type/Page/Parent 1369 0 R/Contents 1413 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1413 0 obj<</Filter/FlateDecode/Length 1741      >>stream
-x
•WMoÛF½ûWt©XŒ$+’}ÈÁ_
‚:¶kÉI)Vä2ڄä2»K+ú÷}3K*
-íŠ"-îÎǛ÷f†?Æ4ÂcšOèxFiy0JFôæÍqrBӓ9ž'øç4åòâô4™ö?_¼~wJã)-s˜šà!#˜h™Ž“ñ(™&tçLLõ•rgKz¸yÿ7KŠ.
-£«@w¯–ß`hJãq44œÌaèpi©ñk6 …µ
-d<©'e
-µ*4=…÷¾\
WÊ댼vO8(Ž5•ùIkëmLXÓõÝ=mmƒ?Š‚*ã#µem
-Í!Œh8>N&ì:¬5[Mc„µ³_*úŒÛxUín›Êkr>u¦4À=	xÐ½Vp[|Î5i0¶Â3›–#”[×ó\Z@žé€}Ò¾›Ì€=²ÖxÉž
\|^|$¶ÂGç‚Pfµ§²I×1,Uj<0þ)BeZï‰ßú§„Þ€PÁaå÷ã|æ}¡ÙŽ¦‹‡»•ªjTÁñãþ_*ÉM­lP… õnêXº]ퟕDl	T¬aXQAbŸkÃãqÄDHö&¡k›~‡¾ý•n+ðÈiE›µ
.ޖ:˜0¥
-óœm˜OÀ¶ˆ†^Æ6(l,…m[6ïN·v;R­4ÕÚ1,€{µåR}8oəÊH¹q %Ü
œN­Ë:Cƒ^ú1^ÔÍnPvj		Ä8LüàTõUs «m@Dà–"[ƒ¡9H]y8¨2öÅÕdºÚRi3íø
‚âœ|­S“=sSJŒ±
¶Üæþ·ø‘$¨L꡾R|`
â*d¹¥Ìä9(ыBO½½ðÉT’Mè£vza˜{Q-T¹R´ÒX£KMh­žP‡øYÒÜ48Õ
-œÄïyZ…âñðñUì }Ð¥h›².tÉ!Aå(:Þ~=zžW:l4 ù•HŒ%ÖA/×È5Uè6 Bʛ¢ØB_fe
"³Àh@= ¤G‚m™$’H
-Ž>Wièyå¢¡Žp(üˆÉ·¼`:´ä€
-ásòåxBPëäËlz„ƒJf¬K4$öÖëv!ÁôüJmuHÈ7um]ðB»èïZYá7ãP[ï
Ëq´P°
”Çç,‰Ùéöý”ÑPPB›KiLWPŒ9Œ§®©öG0oã+ø
ö…A¥3â[}Òƪ1u¤ì˜à{Qè 4È)Ð1a :†Nx^lL
*}5'Õr¯*’³tþB×(kÁÌÌ?48‹z
‘#Ši¬‘‹Dh
Tõ|·D]ˆg0maÖI	~#®gš£uIJ€{£¶Ï@„âÒPöÛùµmŠŒÒµFƒâùÀ™‚(Q­Ìü-¨ù3à)Ï%&bl4	zî…úeÈev#È^>hOÚëàD0`õ¡ú-S|”8¡ß:íctušpX™L?Ô¢ä]A0Íí«Ò`•WˆWùžóVï±w²xùÂ{ô@ä¥úÆy"Iî`` Û
~d„Éüš(¦ïü*h®ìx`9GKÕ¹jŠÐRAÄÉnws¬õ»á­Eÿ¬“)™ÿ#–éÓ9¢†7BÀ’ÔË‹Ô{—Ð[ÚÆËкlU»ŒcýY\\ôpx¡ô}Jñ‚Åõ“'3^–<„i¿ƒ;[«ÇƳA÷æ-ú.ö.éÂ(+&
°°0`)ÖhÌ
Õo4™­þÀæûÚ.GÐ7¾ÉŽ,=/V
-ZÉ°ÍúÇW ·PxK±‚¶uÈ¥"XW¡…`àî-=|#H\W
)tì’ö °Á>҄Û?û-ÑÚŸ
-ßÛJpc؟ùÒFy«æ©ªrýwÍ̈;œP©ò°çƒ7	P®1VTíJƒ½jÃKÄn!R)‹¦ëÐ!Êo7àš7%xª*mß©Ú`‚ÈNAgÝbµ*/£çñòêæó?7·7WG$÷Wg—íã§û÷Ë+žnòâìúzX—dÁÁÈåui®LaB»õÜ´K²Xzwq."•?.1ù쯡³„>I.ÕöÖ
-›·ˆø……Á?EdqéfX`¾Æ[ÝX¾»ˆ]‚«‡KüÀÁß ·žž› JÀ•î, ÷Ô`Ë[yǘîã¦[ä±r'X
sž™T+ì‘Ü®÷¿=^¿;i?ÊÆ3|žÓlŽO:þYœ}8?çýƋͥM^¢„AÒ°»0œNùüÿúœÎ§É|v‚oJ¾9eƒW˃¿þ®ÂÓÚendstream
-endobj
-1414 0 obj<</Type/Page/Parent 1369 0 R/Contents 1415 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F8 11 0 R>>/XObject<<>>>>>>endobj
-1415 0 obj<</Filter/FlateDecode/Length 166       >>stream
-x
5ÎQ‚0à÷ýŠóh®M×6Õ
-z(Œô*Sc’Ždýÿ&—‡{ùà¾	‹Ã¡2äv"Œ2H]P
¡UìYÌÒc •!Û£ç0¸Œ7C±¦CDŒÁØäVž«ÍâÇÞì½ýLýÚàü¼1#Iÿ.ýÁ„SΨ Q¸9¸ù‰añî—ÓÁ£EýrÑ£©W-” Jêø¯é¾[WC®ä51†endstream
-endobj
-1416 0 obj<</Type/Page/Parent 1369 0 R/Contents 1417 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1417 0 obj<</Filter/FlateDecode/Length 1600      >>stream
-x
WMSãF½ó+º¸UF؆`²7ØÍVqX³)œÊ!¤R#idMVšQf$¼þ÷ûºGFì&)
-0h¦?^¿~ÝúçhAs|-hµ¤ËkÊê£y2§«›ëä?Wø¼Ä·×TȃÅ|•ÜLÜmŽ.>þLË9m
-غ^ÝÐ&'ؙã?ÙéûR5­ö0D÷uãݳÎ)õnŒÝ’±Tª³Íßbd±ŠFÎ/¯’%̜.“EBÏÚ?½#WŒWã+Z,úËbƍÇOwdu»sþ{`&ׁÕ:+•5¡¦tO»Òd%e•Ñ¶
”)K*Ëtàs•	-»ªUV‹«ˆR
6g$ÁÎé|qCî<SU…´Ž%/-Žڔ&Dc™³­26¼˜lKՒ°^«|O­ƒÃ(¦Ò¤l~á<B7¶¥À¹#29ӖÚsæîÇ(w¦E¸„#C¬B‡ð[ÊX×"•¬êrýHÄ
‘Ø“–²ÎãC[íI¥ˆQåN@d­
-_B2q¾³ƒ¤		—Z=Xè–ªŠ¸&=Ô	½w¶0ÛΫÖ8Ë8óӑ¥
-”jm¹pˆ¡Æ©Œ
-7Í:¸ZÓ#S‡ù0ƒ_›!dÆ<wYW#!ÚåurÅÔ¸h·3jý°!f	™‚¬‚9¯ƒ«:‰ªð®¦µnïîå¡Àÿ™TžãXš#¤Eg3¾4&sÀ2–	ý4ç©è÷ûõã€'Ce¶%Â1W#Þ€
re𸄃ËC0OLð§³Ã &ŽÇ“è@·Á\íZ
ï[†f(‡°*erŽ‹¿Ú}£AÏ@„°Ü&[ª'>û.‹·{rLT4œçü^©kÆa»K…–	db,SèšÆy&í¡J|¯ç…Öí¨è* Ú_“úŠs'ôLÙ	ÑÈQ[§9wóWUÁ7¬wÒÔ °kցIÚ\¦P§	Ž±uŸNƒ~ùßÓéOOgOgSFÞF́
-ˆæ8hÈÐJµ
-¬˜œaŠn½ë	=ªÔT¦ÝËsQO.â€Uîj.f嶈x.g2o(2e¼Ô³27{BüÃçÛûuÒ~mÅzí P‡,^9ø—ÌF•õéõ—úĤ*oì3²Føå’VÍP
-ò²2âæœdV½…ËÅÝÐ;Ü(áC²5%hÏûhbd‡Í!]øÌÂYEg@J½Ÿ¸¯ªa˜?Ü(€–MÏXxñùU{³ì§èŽHh)éÞu~ô1{­S„×ÜÄîQ(]WåғA·½ "ë4üö)ŸÄ
-ë­Ð˜Pú”ù8%úzC„XïÐŒoaGTw<<-šPcjS©€³z Í„

ŽŒŸMPõz«|^ñP††ìJ8}êz3ë³å&Gd‡_'¹ú]€@ŠÔOÖ)¼@,ºÀ}
-<¹ÇylA1¤c´|Fi‡RKµyÈZ͛„ò2×C£3S^d(•×t¬Mh½¹}”Íäw¡Ì«³`1óÑ¡Vœ ’~iÔöÙxgYù' £œ˜KÜ"·Ü"3\r—KÌeʌŽN«ɖ©&J”ÑAúëÍÆÄ1G’¼öŸ>™Fœ’\ä?¢lG #øsZҍ£-Úc˜¬—2ù9«ãØõ
v¡SU¬ªèÏpfÈüxäìq?ÞΆq.ÀY?NÀa´ÿx·'pÊ㺢¨Qv®˜FDžÌ%îVÙx0çϱ­ã¡¾ðp×IÓ]a4¡IÆä¹â`)÷RèR¬Ê¨SwBŒ7²%=G!˚T
€äbý¤³Ú	5o¤wðbv#ͬÃyf$Ó²¬=ÜÎøâÄ©þªêfFÇýÊ2Ø9Žòú2^±ÅbOT[-ˆý`¡¸Lès\%6*v{ññ;›Ä}A¼Z"W¨¯x¼Wº¥Ò5:®œ	†lÆÉ/D)uՈ¶^e_``ò~™Å„ƒ((ÊuÚm'©WÐKÔ´ %æ]
-ª<Sú—ޅÑM·<VQ½~pýÒ>,òö"µ€Þ€õXuZŒñ8›tì5#9íJyõèßdâLrw苏7//Z—óøÞó¿_ì®VWÉêúï†ØÁל÷/›£_¾
:(ϳendstream
-endobj
-1418 0 obj<</Type/Page/Parent 1369 0 R/Contents 1419 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1419 0 obj<</Filter/FlateDecode/Length 1738      >>stream
-x
­WÛnÛF}÷WŒµ‰eŲóRøÔq][m^+r)mLrîR‚|ÏI™bâ¦(Ê8/»;3gΜ}=i„!MÇtzFQv0
-Fô~4	Îhr>ÅýÿKM‰|O¾óájvpòqBaH³gOi΍hÝ[¯É¯”'“ñ[íòŸ=mlùL‰-ik«
èœïÈ­l•Æä¼ISZhR‹Û-ùmÁÇhrº\ë’r•á££9®§ÛÇ?oÉädz/#†§Á>%&ՙÊÕëÅÀ
-öuîñ¨ò˜ºŸ³±qEª¶b(5ΓMH­•IÅ
·R¥vAce|LØʓ…'…¶MÎ]”vãL¾¤‚ˆTåÄù-¢çØWj]³LíB¥t¸¬4Œ©(²Uî£ç˜­Ujâö}k¸
ïQg:[Hl@—±¹{¸þ‰"›ç:òÆæx‡‡“ϵÿd»!è‰Ý áW•“d\[û²ª‡mãkëSÆeê,ΣÔ
-v
,€–Ú{ea¼G®5ÈEi‘àŒqöÖ²µ¥B•H.²äHbÐ)סÀm,ͳEÜóÇäÈ¿öq€ð“€f+DéK=s¸À2‡CœW¨HsRüFÃ
FÍàǝyšéåÆcí¼V1ÛÆ4žzæeó«>gx%¸ï. {½!×!7ˆ­ŽƒœÜnÀ–’2‹‡Ô<ëðXÄ]–H%„X¨²g\Sq¤˜<pHY©8Q݀œ…ë8ß±qÃ1€“LÃ\ëXÇýά+‘ª%µ	j2)¼`D™YXd°êՅÖ,üȔ{&T÷Ý5Þp"6¥æG®Ð‘IŒîgqcüJ’ph¸LÎÕa› Dⲅ$x~Ì8œ|¼ jò3<Ôå8&
]µ%¨¢Ò:G®ZÀ'WozÕªáx
-¡C
ní–:Պ“󤲅¢0¸ÂéüH¥ÅJ…‚²Zصž7V¡S©*bå58d¡1¢P<¸ª(l)hõ’Wê"5‘öÁ è§ŸëuÏqZ@bU¨(²1²ˆŒ×Üuu½Š@»vBE+£EgÌN³ZéòpJÄÚE¥Y€+А=fùáJ´òYL£Ø$‰s</àZÞÛVÿŒ÷êý@„)¨ºœf×' C“°Àè ¥,R¤¹ð@HCi+©Ù\kf¡Ç×zHúR%‰‰î!¢`üf
DF¡FŽÏw÷O0Ä
„%bïgØñG7Xŝé^û«»ßž¤×¸o*>M톭»ŠÑë0nå.­Œ/hg"¼0¶¼U
S.púZérˤCIõ½4BÛN[Cb䘵Q»Û7ЮèqC6…ráé”=ê
-•5r€Ï”@ë9^Õ5ríƒÌ5ϾëDU©‡Ì£EÿËè[Ÿ±}—C𫴙x'ñ3"­k=ÓÂ×LM,‡Í2iœØšS´á¡•¾38@mÚ´[Dx»û6°ÚÕgô³ ‹hu¾ºj–¶äoÛñ@°”b–={
-Äé‰ÞI{
cëЀ]‡;[úŒQs]¼ìîïg}"kµNÕ¬v5÷wóE‡‹ ×~~—fÍ
Pè‘q^Aü_¯QŸRo¼Dß­TÚC…{¬YV(Wž2æGLø{ñ^4	wpQ éüWwÙ¦úJ[èÒCÉMî` Ҋ
-Š˜Ï“°zv{G¶Ý@&9icÒ0•Õ!|ía@¿BÜxø¤nBj­â<‰¿°Áî4‹ÁýáºÓE^· 8ųI­â(ÁXå‘ðæ•É…Ï(Óaf×üóÐð;ž°ÀeõŒ|2ì‘M|/Zõ.1nµÂ(„Da„’jõ—:h4ž«Î4œªç¹š©Zr{B¹Çœdz*º¿‚Àƒ
P5~Õ3͊Qw>èƒtÄAÃ36£
-io`ÔPò0ßr°ì¸Þ5®1æ€jûØWË6ÄÁ²Â:úPçdDM^ÇM§§_ó£›OWõ°À:
-Î9›{ûîÿ.븻j?áþº¹ÇíMçõmÕ÷£—v%uo»÷ôòæYÃÿv½yޞ;Z†¯¾îݽíÕ;xõno훲ôMw^C`ò(]¿>¿¹š/c|xyÿNÿ›G{}ãOïÅÛÉ1
¾ì}çjޞ¾¾’cN>ž7¿Ã3üà>?Å/èö—å姫K‚b~ááÆFU†éKD—‘¶†Ój#>úÑè;™N‚éÙ9¦e,§|Æíìà÷ƒ¿
~5Ô7endstream
-endobj
-1420 0 obj<</Type/Page/Parent 1369 0 R/Contents 1421 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R>>/XObject<<>>>>>>endobj
-1421 0 obj<</Filter/FlateDecode/Length 1763      >>stream
-x
}X]O#7}çWÜ7@JfóAVU¥–
-µ
-¬öiåÌ8ÄËdœÚRªþøžk{&v&Ɍ}?Ͻ÷˜¿†4ÀߐÎF4>¥|u0}<øt5 Ÿéq§çøRÐ ô˜õ?¼(\¾ï¼8~ü~0 þpC<¤þç÷vïñQŠð²ûeûˆŸ¦2g£o"ܧþ~5øq‰æšy.|Á¢øúO/)•Ú¼ì|>}½ž=<óÒOW'4†ØõG§ì܅®¬²NUϤ4&[Ï+é,=
{4êÑøé˜r]U2w² ù¹&£k'
/ºÇªûÖôÉ-¥•Thª´£µ°–æF‹"Öٌ¼\6³«_
-K?ÑJäKUIKº"åzÑ¿>i_·/ÆɋŒ&ÖÖ+ImØZ镬¾
-G¢,ƒm‰êV©0’]\¨çÚÀG§i.IU^ºÑæå>¯á0k°jµ.U®œ‚ÉV¼È§ãŒn‚4~»`?B ]eÅ]pïR¯”Ý LÒÐÔèÅçӑ’bAós]–ÂIo‚ŠT"i¶õ·µpÇà)Q­l×Shgl¾B§¨Š&X¤EÓžÞ‡ÈÈgX€5X¨ͤ›^ß>P…xY햩f—Å'£Óì„S?±6¸³“Œ¹Ö¶zÝ#Yx
-õ®®BB€?‡к¹ä°K¤‘Ì(pK#ebGÄw‹‘¨=än£ ­“À^¨Òä1Jƒãå«0y5¦~¢Ƥ>¾TzS2Pê\”ðß³õ,‘]ãT^—¸ó5”3¹4$¯¢râ™›h…Y×5r4ö)êúÉë8@ÄJ‡àóï½àLy»'ê„& ´½mjC5¾+6½XFv)ËXT¹Ç€x„PÊpã-q’‘é%ðæçFDF?pÛ%©Ç‘‘¹T¯¾È¬V3G¹ )D7vhS4h[ˆ<vŽv)„³5O4Þ±exÁ5Ì»ƒD?$j.Б©
~iFWÚ$&8–ƒ+
Çл=¯±>|ö&ÜVûjlëЇ}…Àî3ål
-˜j0 ç·„=ol\Éî£5ZUHnÇ¢vKm”Y9ôõ[yì2Ê%öÄZzU"½Mc9tÌe.jdX4ÑAVdåGÛGpayï$&ÊW5’¹
˜g?ª@F—[Ö>û‚YzÔ¢-«…ó
0ÒêÚ䲉ø0ŽÐ›Îðm»©=È
E³·ö?):ÈӜ6KÄ Ì™XIè=ðYŒÜ×´™ò¤Ÿsð
-…Ø»ò-„²á
®=ø;Îj¥«þnfÚ¹ÀU„<­µò#¼
_y¥Ö/ܚ˜‰˜„˜”¡êYI§ð,½é“».6Šç9˜¦/%É«¤z^εYj]Zø½¬c#º"Ê@t[q“Yƒ}ŒgƒÁË2;ä´?:	ƒî!PŸ-'›†G>џ¨£Æ È9ÝnÙ%¶xÎ’=AÏp»ÉS‘íOžL³á·©¿_øû¥¿Ž²FÃÌÓ k´Ý˜êÎo–þêï,kK7v¥Œ;»˜´v.æ¸Ø	‚ëï,+B ßQÕXA€´Gu‘¦+„fz•˜› L=䦭sìð¥.r£AOEõÖtÙ¸5…âLoHþ#Và¦
Ÿ1s «60žÄh* œ€{{ Äx
-4F4s5Lý&±žCсXi²oU¾4ºRÿÀ {zô+£kƍié+ìüïZš·XÀ;äîéˆó¢™]ß%zEQ Å ,Öê\!v…×á}šuè}½½ÿã÷ûÛ/w¿
§¿Æ¾Ê¼6DÃÃY

5PˆD×.ÝA
3TaG¯p‡—nã0²’@ÓlÝV €§L®Â,mœŠŒ0ò™D=¤:Y–žþø–	 p+ٛIÄ/q&€§Äßʪàð‹Hè'U¥kØå#k‘¿€ZÁ
A_.ïÐጣáø…_ølB/ÎÛ¼2Í-hžRŸ
’5!9žÁ®êÕl ,cV‚WìÊ^"ç!ƒYz[Dá,x<žûP&û‰‘‘7/Â&‰j;yɍç·û¢
6_Ê¢.
ã”am
€’3ǜEm°TŽ6¸£O.zBÆɂ&sÃN$½hÀ˜(4ê™÷wê)=¤ù1S*-~aï?]Ç“óðô,œñ¿€}˜ÜL'tgôw@„9Ç1|œ­å}ýfyÿlÀÿ«8e'Y8åùä…NÛo89;ÉÎNÏñÏ
,žó£ÏüÆzbþendstream
-endobj
-1422 0 obj<</Type/Page/Parent 1369 0 R/Contents 1423 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R>>/XObject<<>>>>>>endobj
-1423 0 obj<</Filter/FlateDecode/Length 912       >>stream
-x
íWKÚ0¾ó+æIó ÀöÆc÷Ô®Z©$d‚Ùxì®í€¶¿¾3v‚ÙˆªÝöR©$gb23ßØão&ü¥0Ê B±ïL·7	\Áb‹Ç(l ‰“$EÑýR­%·®©VGÃá#3–kœþ Œí-î;	DiQ¹¹+¨€Ÿ¨Gœ'©¥ãý¤Aé6]ÍÂ>Oú4NÝ8sã܍×}hY;W¼(ßf«É²ûfÙCÙjÄYçN¬-gi<¤Ø<Î,%õð„8Ѳ7êF™­æ/ƇÑ6H0ä žð¥+í§«ëŸC͸Û|5O5wPs·¤ùŠ â퀹>pmà(l	œ#`[Ú|[ò=0ÍA*±Ê–Jˬ8àÛs“©·7HSŸ\QæÖpbQUø¦„´P2¿SêAÈ;’Ì
-
˜uG¥ð.îʵҥRPŒKHƒ¬4dk·Ã90¼£&Ê/¾ºV¶ì7+ŸÇíŸ÷v²ymÁ’%wOÎXːG¤Žw&|6ŒdtA~1bÔ}¬¸,8¨-ð—Ö &fAE¥ù¶ˆÙ%ŒTG?iÜùÛ©‚í`ïÏÕڝ2†¼ȲK›µìÅðµä„ó$‹R+)¾sÞìðtÖ{G>6jÏp…[NÐ¥[ŒÜq|Ÿîl1[ž1,-ÐEXÄ´LnPC!3„é,†‰K—x%3ç7>£ÐóÌ)DÁ"Ê4Fž[.ŸEC©‚=ð:¿NÜe¿ÿ=i²¾fäóSQ&*hHù ˆ'¾¡d#¬wæ¿ãæ¸]\¾óIw–êÒòÛÔýò
ûãö/óyÃƗù)¾Å¦’k$¬~]DΨçwh=”b¯¬ëÊb-³·	þFHtþÔw¤x‘¨‰Ù½=,JH¨ÔTôjÈËÀîˆx]ýÏNg,­k¡suNóB`Yq(öÂ*˜¾ÞAMÊ1ÔP!r¬ŠœË;5¶Á†µ™#6±Å ±¥HãTÀ5ß«Ö'
-¢¬Ný\í_m·Á~ÆÃ҉Œá=íÍY'ùÊÆØ÷y"m²ö•ÃGÂ9e^”ÿ²$ýißûÊóMß>®ûöt8Š“qÃá»úhòq:OZÝóÂÂ\Õé%)Ó£F!%ô1ÙÍâASêh‰°X¡•ÁVÐ÷ñ¤0
âÑpŒ_ŸørzES׋ÎçÎ"¿aendstream
-endobj
-1424 0 obj<</Type/Page/Parent 1369 0 R/Contents 1425 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1425 0 obj<</Filter/FlateDecode/Length 1571      >>stream
-x
W]OãF}ϯ¸âe©„M ª‹Ë"ñ°YZ¢VUՇ‰=Žg×ö¤3cØô×÷ÜñL⪮*”„Øžûqî=çÞü5šÐšOélFY=§cº8›àýürŽ÷)^FR1º]ŽNïÏi2¡e#³Ë9-sÂãã1-³ã§m“•F7êoá”n,­¤{‘²!WJÊu-TCµ°NZýbñ)šœ*‰jpÃҋª*ÊtãTÓJršt–µæ„V­ûaùe4¦dr–Náÿؕʒ-u[åðH‚àAä[|'É*×úpÒpl:KÏùØCAR!2CF·Ó/ÒxŸR!Te}Ѕ®*ý¢šuŽáG¶ ’hh!jiIˆ¶Þ°%|iHŠ¬„ó\ò@5"ˤµjUIj€Œ6_©0b]Ëƅ|>£äð’9GØA¶•F4Âr©j@ã¤=iï!m¤Z—+ݚRkÀ«¬³>ù…‹ MRbø²ËãÆ9Yo
-ÀðÌÿ‹Øí ú}¢¾JŒ—/L…‡Ãßh´ãŠYëgÎÇ蚝&Åۃñ=qO_ǍBêfóQtEÖ:À_xÏ>¸ßO„Æ{–h%åBY›jë;‡+ƒŒ»:…Ç|1•{]nZÛ®:rßRk¹Mº‰²ºBó¡y†ž§…t·ŸŸ¨
<@´L’”–è
Y@ےͬªU%Tޕ‚³
_¼«%ÇKw»¬v…ŽÝyÖ
vzEе@½/(™ÓK&Á4½HéI:°lMí¦z±ÿ>ߓé<ñ©o=‰z%вY‰†eöà¼jrp›KØeœw·káQ¶ÒyOȶï@h@îpÕ[$} ]Ïñ^˜´Õ-Õ-0y§­Þ0È¡ÉÖ«~P¨4_öVVÀµŠ.<Á{-ØõǺÒ+QÙ?q"óV£»
-ÉwX]ì´qÇ*¨Ô©Ýl´qôž¶ÒwÒ!¬A‘~…txÝD‘;d7F>+ÝzJNÒ«,çˆÞÞƒVbáÊe!ÚʓæS!’R<C
›-é*ÇS(E´>À¶ó8pÊì¤	ì`]uô5øaÛõZBYso»Ý¬€¶¡!..þ
-4?ñm€`-\n©’Üþ\Y\xÞçCïýŽ‹" üx¢*Ò©*{úS×p,š®¤£Cìÿñ㣎ö_¥ä†g}dZ±Û>I-XºÆ=i³w„ ê¨ƒ'$X²a²fXŽßQ™0¬4ËÏçÅG8áVñ¤IéNÓâó2âö’½Dk
]|4,”ƒ »â¯á^Ä90²Ó…W¼fúöÑH …b†Ü¸vTU™¤wd×h‹å ”\g-C?®=’¹Ä(¬ÐҍQî°§/Þp'2zdgä¦RO}Dà°FPzÔ¶ãŒÄÀkąÏ@ZBà ½ð½’ß‚ª“lžØÀ!¦tcé“ÊŒ¶ºpp\´èWXˆ9„ŽÖ·£Î4®ˆŸÇ%vûèpéLm8N‚à¡g‰î)ºÑa©BU´®íê
Exõ¾’ëΥǯg‘bL ž—j/"~Áx)Œ2вßN‡3`à.‹KY@õUË`›ë¥ì™À³¼ß”‘-^蟎^ÜK@O²÷ºÇCÞ,š‰ï%b[ñ²ÊB­`§t~°ÈÆî!…NDaê‰h˜(X	ür‡iþ
-í¨(<´°øÒëúŽ.ÒD)7{!R¨ò`òžð@«âèÁ8Ž³íáqç/tËÑ£Qµ€N÷Øt{ÛtØ\>`
7ºØ|¬’k¨g›\?ƎN®—“냹•^[Ž12øê‚GEü¶Xú
ÀI$òfׂ™~àÂõÒ1öP{c
à	Íìä³aŽïÇxÐþ¸²äUÁ’ß	Nïÿu¾w¡½§k¿Þ!­}„?±Á7çý´I¾y„k~œpÈ<X:ÃÝO‰~²±²ð‰-µç×·ýéýeXI&3ü”»<£Ùì¼[ýžn>ÝÞŠö…ý»¾örÄI<ÌÇWßµ*žÏÏÓùì?y±³‘ËÑÏ£k¯¤Yendstream
-endobj
-1426 0 obj<</Type/Page/Parent 1369 0 R/Contents 1427 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1427 0 obj<</Filter/FlateDecode/Length 1414      >>stream
-x
ÍWËnÛFÝë+.¼©Ȍ$ے\4âæ
£ˆ“Æ²hº‘C‰	9£ÌQõ÷=w”ÄH)²jmøəû<çÜË/ƒ1ð9¦Ù„.§”ÕƒQ2¢ëùe2§«ù¿Oðe$ƒÛtðäåÇ”¸2Ï(Í	ÇG#J³ó{ÝHjV¢Á·ÒRU*I¯ß?¤tÿ&¥Ûôð"¥Rá¡$[/’L«‚Š²’¤÷ÏQ/Yi¾JC"kJµ$aÝ£w÷áÉ£ôÓ`DãËdïçeceU$tWÐV·8ÓÐB7+wëŒÏ>yy">ߔʒm×kmzJ[iý˜ÒùéuSjEBåß±à#|J¿*QË_NÙ@žŠT½È{oʪ¢B”5šl#L“„“irÅ9¥+‰z|5Mkmm¹@™l&•0¥¶ThÙº
-µkÊŽ ±…âìÞX”.!˜A}m(—
üáÈñ;½£âBln´ùLhŒ(nʇRåpB7×CòMãzÅÿÞ§T‹l…îsï€NDé†-å²52G[{>×(ã@ì›y®kxô‰X‰ëù¿eÒeϱ‡ÈC!þž_ë½Xׄ'/ohT3¼/.¯|;&É4¡‡]énC…̈÷Í»ß_½{óþ-[Þ§ÇÅd–L];Ñf4æT£N–¹«"üà2в=ŸCWX¡Neå8¡$*ÎXóAhÐò€jÞ0Óҗ‚^ۀ‚.OüüxŽîí3ä~N?îyeŒ`Ò
-zkÊZ˜m´ùàctUI3$Q5+Ý.W.E]圅:­+±µžÐ¸,íÇG
=Çüȃ'$Pû‘âEŽ¼—‡ô0‘(ۀMF×TéLT®Ë<\´®5`«ËÌÑ«[ð•øŠ¤#ꉱ\fåZ8~Åc-n×	ÎéîhDLô€°•;è‡xzéÆ´$XY¿Ñm•3>„BºšÍ©ó9¤V	–‡>´ž}Žø¢‰Ryœ60ÓóËUXi¥²¡ÜQ†¢OúZ|ÿ*ÓNÑXÇÄ.̾Þ±ïFR}-VµT<bäa‘:÷uÅãJ ¨óš1r'´ª¶½q‰{r<«5ªÓ”Xù
ŎT‡Î<ŽÚö|2)9—èÔPË8‚nþ\Vz!ª¿À^LD¨Z–‡ôg¶º›t¯8Kƒ82ôöΦ'kj
XàKTóÈÈB<m¹Ìü1ò¸!…éLz£v°Bü&G%Ý«O	¹ÕáTQlÜ~¨*#º	Š>	ŠNáãDqx½aýÁ(Ž'2ìªxä`¨Ø´ä{‡1Ê+$]a™^ûÆ]ĵ%,'Y‹®
¢ùíÎ4¤Ò¯GF~iK#ûD»—7C¿?ùFƒâ˜ÓhÆ·“™ˆ:/‚q`
-æÎfà+67ÿƒšEÑå{guÄJè´h·BP@ó9X®H@hKn—Š‹ÇÍuÆbfuCö¡WTýEb¸ûŒ\hÌ74L#e]à䐀ó²ùɺñj[謠¥Ö9•¹¬¢-›dÃn"i8þÜW\Ù¯@/ëXÿ
-êª#àÿéϵ+wè¯Ó× ²ÑßZ …{p]á†l=$6b1À‹†4¿VlV%šùíhs»Ž´,Ž”>]Rœ;ÛïíÏ|Lޚë¸
³Hù.Ü6Cg}Ñ8£Laý
Ì/>p(c´EÉ*Î(-¿P`[ìÞ`¢ÆìÇÐÅW%ö0©Ü:Ð;—M¬„Onuèû»ó<¼h§xmœ_Ò¯”ÐЇg¯oŸaԟ&öÁ¬å	ŽíH»½õ"¿˜ ÔùùìÛW³«d6c[ç{cûE:øcð£ÔÉendstream
-endobj
-1428 0 obj<</Type/Page/Parent 1369 0 R/Contents 1429 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1429 0 obj<</Filter/FlateDecode/Length 1346      >>stream
-x
½WMSãF½ó+:>AÕZkË`C*›*›…Ä>²VŠCÈa$°@ҍ„Wÿ>¯gFFf‹\ØÖL¾÷ºùç`L#|iæÓdJQ~0òFtr6ñŽéøt†×>~JI‰yàOfo,‚ƒÏ—Ç4SÀÖôtFAL°3Q.jTMkñ"ItP.¢uZHRUkIºYᥨÌÉMª×T)
-¥yœ©Hd¸£+YRXªÆ_Ü+Ìá&ãT‹0“GÁãÁˆ†ã‰ç#€Ã•ÈCAI©rXŠTž$h¯µ°!-«ŠOp@‰Ê2µáwê¹JU¡)µ‘þõ©PdãtÄH%|¡çXç¡©"¡$Í$ýÌO?_Žè̖g裄ˆÜW¬r
û.Á/T¨ÖÞÈ;íÜ	ýçžK™È²”ñl*M™|‘}¡‘
ôŒÆè7r81qúÞÌ£•+OýLn
Aúzs5_^Û«¯ú3oʱ»æ HÄ1ß²mA_d©¹Í‚îÒ"†M†ÆW[Œm{óZW¨HÅý!8;÷Ihmµ\ÛwËéðâÑ¢¡X&¢ÎªO»oË4eÓz>WEU¢ÿÀX¢JNÐFTˆ\R
-w™V{zîNõPÊ¬ù6üܒ¢Ág¨„¦Mše@´O”&ýÔJù2äQ#@ÒÚï¥Úóv-«ÅòfE&ÔûCۙ_Nj_îàªZÓÝòz…®Áªˆtéöë¹çÌúSÌKDm9©IÁ¹ÉÁ@µ€vÀr/9²Nó`Ëp2†OܯÝn£]Ä?Ì5Ö蕎Ê4”±GBў€Ÿcx»Ã‡V'Ö{î¹~‡Ñô?q¸‘º
¨Gö=$~ÿp‡ÅÓ6ØÕã¡ßeb+®VŽwKš¤k[=™93¸qz
48Áf.8ÕfioûÍu¨mFŽF_ô,J\c
ç!¯xažhËMeñ†±EVõªØؤ*c†Ônã0œ²ìae—B(k
±•uÁöˆ±ž+|K€:s)"
--­óVé—7ßΗ׿Ñj~µ˜SpC‹‹¶u.Ñà÷ºš¯‚‹oL¤Ø'Vwvh³›‡—Ë<dæÛñBNÒP}
ÁpÔ´rÂÅâºÆ/“—¥˜È6¢Ñ<O]Þ|òÍøtX0³OÜô¬b™oÉÕÂ…”an` oGkÏé^vví{¥ÿDɓíÚ
˜[ùrÕêÌÓ]¥àÉI{è…O;<Ú7
­}ß;5¸‰¸BÚ,¯ËŠõú–‚nÞ­y­aÈZYìJø€'(Kl+˜ß(ˆÐVA«HjMµ¿hŠˆ#¬E`Ð6ªí¹^#žEôQt²ÖQQ3¼][Rb­SØØ:Ç{¬c(S$cYD’îÃThŒAk…¡¬×ªÎb»ÖÙõ¨ç·
»;{Æjü
?
KA×
«Z×<(øPkÄl
-¼ˆPÕø]4<‹d¦å;,ۈ¢rîÐls][c­-+G²;ž[ýýÛY;H"‰âÙ¶¾ÛsY¡‚fË0
<úÓô
-›ÔƔËL²´2ñ0™_óSÌ&¦Tㆮn0¨sÔ]~äsÕ~ʀëUڞÔ?ݹ-æ,Çm^h·ß‹"”èñ]r‡Åe‡$|¢ååë:˜¯<š›¿­1ˆÜvdzh¼ÍÄo«Ò†@Äsñ=Íëü•b@ºâ†Õ©cñxŠÿ8N'4šÅ×Jím©1°Eu.±{ðæÍ>‡íñál„å:>üè¦z<;öfpOpÉg[ÁÁÿê$Öendstream
-endobj
-1430 0 obj<</Type/Page/Parent 1369 0 R/Contents 1431 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1431 0 obj<</Filter/FlateDecode/Length 1589      >>stream
-x
WMoÛF½ûWt©HŒ$˒] mÒÂ*Œ¹¬È•´	¹ËrIú÷}3»”)J.Ú"‰cQÜùzoÞÌþu5¡1þLh1¥›9¥ÅÕ8Óì~’Ìhv·ÀïSü«4mÂódÞþ¸ºúøiF“	­605¿[Ð*#˜i•^?mèàÚ+[“WÅZQíhãªT“²¤sÖÆYÂ__«ªnÊ!Õ;Oºæ_hPVz£«JgT(_ëj@ÛÜ­UN®”“ïë$uvÓVß®Æ4šÜ$S„q=8h?HèYïMžã;õ
-÷äs³ÝÕ¤²WD§¶šÜ«®ÈÁmE¥«µ­
ü·´®ÜÞëÊÂÂÔ嚎Ñõ÷%ô‡×8i<•ªR…F"´7õŽRX’òdB¡$´zïhç|íéëõ~§% ü8ˆÛ½±B¡û[r-W=Ïx&uþú‹Ê%ÄGM¹K‘‹oÖ…]#G©°„p¡ÄÀHJÁ(ue\f`!G6#T»6¶áÏ=÷¦Túd@åª™ÃüZ§aq|!´ÓŠ%Ñìt&ȋ4Z3ˆƒÌ
-–OÏbä¦&Ô¼bg…¶X$ð1%Uîá-ÿ^.Áä€ÃÕ@Ôª
’É’&³ &£èb,LwIt¿s9H&@WôëÃåè¹|ÁC0!„ͦ%Ju±FŒ¯
GÜÞ2;U–¢A®ËUDÖg…”‚”Î{³F0H;Çlši2ÑÑ
-àº#U׺(ь'˜½Ÿh[„Öqۊ+ ½1"ÆLOM‰f@sP&ÄEã	=àÐœ§AÊÑ·0{íí¢]ÒÈô@·T€Ðµö	!ÒCˆgƒVq*`Á²ÐõÌÌRy¥Uvà°{~/;ãæ	Ý¡LήX*÷j2”A55¸\›„Í›)›†äw®É9Mi!„žØîù:EvÀß}ütOˆ2«óèfúišÜ'ôY}7vsbûgv»Ê>š. þèÅUÿÍÐb¾t6Šùžº4dól8E¹aMCM^›ü$õ„V”Æ”ùTŠéàR$ÜOO×{ÍóA”hý‰Væ—õ½íK•¢oX¨{ÑúÀ
/Qõdã'âIAÆöܵ£%¡Çez£8wg§õ¡A'uk‰ßJד$$ǪÑ\~Y‰ö<·#ñ"õ¹Šö®ú¾­šDJ´‹©Š˜AüT?ðåŠ~aì‡ó"ÓU܂{ç5b†òÓS==æÌ¢üY|CYë›jè«¬Beý^@ðÛFGh5˜cþÆ~ÜÚT®¸¨pà
-X€hÐx
o™>x`e1ÐøP@œú¸lº«œ5ë.ùúÕxo®pNPe?–žÇv«!b'„ß8O9Ì´ÃZAUÁÍÀLl/F¡‘õÇ%Èc@ñyóyI±ÊÝ!“[¼¤€Å»ÛT?ß72bvs¨lÔú¯×Ʀy“%
ÈȬύ ™¢6žßQôò´|ŽÇ9ÏJcôØ¥®Ÿ¾<÷²e¦¢]CÁ¡Ñ*/R΂Á(°
-sL”ã̦ðu0x\a¥²[ÚQäâGv‹UvÔ¶Ÿäxiň§8«â,Áïõs»ù…--¶¾„Œ£¹s¬¡½\ãâÕݹˆ¶ävNâSxrƒ_ÅÂÐN•¥9"ØØ2Î6¶Ñ£ËìÀ…2¢Yâ0ó;Mµ‡@ÈBy.p")ÜÔÃc‹ŸT¤•)
¢ƒ`‚aO=Kn’Mo1rîÃØxÚÞ5`7PQ!昀ԥÄŠÔÿ3¾¼ªF8!,Ü
-¢¹c.cI0,®•Þ²Èñ•C2”e¬‡p‹C+‚AcâNϵêôÆ0¤w‰ƒ¸XOµAãH?à*P²·Q磲@E|	‘=U¦èûBËüÃZp™°o‹~™ÁâÿgU¨TË£~ø2-ߢ£ÿL2ξEëH=4ŠïaÓÁ‹uÂZ¹ð°™ž' ñSé‰MЊ‚×q~ó•ì¬Ê‘ê?ÝÅ;ðd†;óÝ
ͧ·áúüðùñ~«Ü7\v1•Ó†G%–#g¥P“9.Ú80ZŒïy¿ú—»Ùl1Kó;lu|æ†Mý²ºúýêo‰ï>wendstream
-endobj
-1432 0 obj<</Type/Page/Parent 1369 0 R/Contents 1433 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1433 0 obj<</Filter/FlateDecode/Length 481       >>stream
-x
RÁnÛ0½ç+rizˆf%Ž[lvè°!zÉE¶éD-y’<¯?ªIš.†Ámäãã{ü1‘Hø‘ÈXf¨ºI"d2¤ëœÿ|¡y
¬RÉ׫ÀC1ùðù2GÑ0V¶–(j0N’ ¨f!¯6Ti‡€ÒYUWʨºvä=ùÛâ™1RH.óE.2F™}iðbCa´î€“¡0M¦(•§úo0lgu _ªë[‚n ÈÔÚpe²½Eؓ‰°uÛ§p_¹äÁ¹oïlÙRçž´©íèAŸ˜ÂÎÙ¡÷¨-16Àu~è{ëx&$7þ=-S_zEXU¶/h•y¨p՗µ½6;(ŽÕZk±áhÍMà·;ˆ£ZÅçËT¤‘5K-‡6è×ÙM רêúnTW*žc<ó÷èTµ×†§uØ£;ƒÐo Gw°W?é’xIøSè«I
±{¬;ó0½ÔMaû ­‰Žù®•5ML_½x¹ Ø½Å·³;Mª)(Ýú“JëÓNɌ—y½„\åG‡7÷÷øæì3U
m5td‚Š}#Óù¹`ž'w'mÿkÓ<y¶æ%Ž†¤ëS1ù>ù
ïÿ;endstream
-endobj
-1434 0 obj<</Type/Page/Parent 1369 0 R/Contents 1435 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1435 0 obj<</Filter/FlateDecode/Length 1657      >>stream
-x
…WkoÛ6ýž_qá/MŠDKÒOÃ햡ȰÆE: À@KTÌZ"U’²ç¿s/ÅØÑVMH¢îãœsþz2¥Kü›ÒõŒæWT¶'—.oæø\Ü\ãs†ÿ^S}òãòäÍû·4»¤eW®®ohYŽ_âNyúÓZuQ{šô{׸rΖ_äéuzãb¾(fxçt^LzX«H
-–]:ý}:¾ ét8>».®øøÃZ[RT6FۈãÚ\Ö¦Ñd"•Ê"¾¯½0gi’ÌMÈùt¤Ñ*肖k?§ÑQ0mטz3+Ïðû©G,6jM‘³ŽÃ¹¤‹é<Åì¬&ÝMkp€°†­õMTV»>4û‚nHÓ¸]:7„
¯ÖE
-ÚVsO}W©¨9{°†3l9h¿Õþ|@\÷
‰V}iì¶:îœß¤8TYꎀ¼jh¸~<u¶äŒ†p›,U¹ÖgýðŒ­¼V›	ã´èÿŠ Ç&i0	ø!òC®uӇ5Ê•keŸìJ•ò(K
-é2Ñ)ñjgƒ	|ŒB Q
nlàSċ¡ºø5Â⨕i¯C缸Fr*ìm¹ö΂±C,³g¨XV+=r_:ï{¨~~ÕÙIì½%W×YÉvˆÎÔÔièQ‹Î×jË̱VÌE’_P×y·jtŠÁåìªX°ø?ÙF˜…í­ !‹œÔ¢@Ó÷¿ÜÒíÇÛÏð\Ñcû¿Å%gãl³'H…>ÝÝ~"o®;¨œŸ·®Ώg£TñÈrjP¿MRt–ä%Æe½¬
6lé^µ+%õbíÔQÔMÃ(ÄTŽ#§®,{ÇçYGU™d20VÞm´
-›Ùȑ¤XMݯç¦ d\p³Ø»
mµ€1ržLCRK)H^µCŠ¨ûЮª„0…·FÑÝû{A¦_
U.rß[Ëï'"pN¨L²VF¾‡(Ê‚RwñÖ j¬‰É=ßs•F@£/=ßa˜¹.8‚Ô&ρ	Ø>€	´ŒÝ*/
õ‚‹µèçwwþõðñvùŽ.F
îÖgZ
0“1–ÚØqrCCÐíL\ÓÎÔëЍTÍóA˜ÍÜmSÿäŽ:Ô/Þc˜FÎqk$\ßT¨Iª[v hÂq®[㍳ÒÞõ…£žXƒm…Zb€Ë ×{‹µÇŸÁT`äf¤s×ÕÿŸ0̓uH=Ûp
ýÖc&¡f¤î… Æ´hU/Ɔ´‚QÖjµw-x|0¶â‘Â~•˜{ÝÂÑë$lP«:·R @P žÛ9ˆ@?&Ä<¡\*ÑGCŽKH—‘ōîn$4VÐ{½;6‹0p¶Ù˜
go¹D§·ðSkn€|ªô“©5hÛ-z•D4Fé	bc"`Ju^•ÑÈôBü&ØW½"„¼£Êí2ó•»åäˆAª¯aœ1ÃI·“Õbô<Š¸ˆåÔÏ·hzI|
-	ÆaÂ×uБf©Íc=gßY+yÀ8qÅI¤²Ù¡é=£•Ó?0ÚuàÇàHéP·ÛÑ@7ÅKÂáEAA#äî–Ü‹ÔÊm1Îó«Åöê!ì'©a8!	ð(ΓMæF£FAÓ|Êk¹šË_,2~>¼Ž	9E×ÉC3V
fY5t®ô
-/ÿUs«=0õHœôù$OÞØÁ˜+njc¨!æ`AýHÇ!ß̕*-¾tm§#w†”0\XúÂ%éõ¨œLÛêÊîfÜ.DÂysÃ^ [E×ñIx~Ãi²Ž‚™ÏunÝaíÜîQgh;Ø4Ñ,s “ÑݪÆ$œ%´uË\Y8žêÒÆfät$axX>wÆðȅH
-í2hä
èÅæ0Á¹¦o1Á>Z!Ô~ZneSx6
- a‡
h¸Ÿ+ïΡ¶r{ÞÀ¸µ£#¥ñÆî0x"M6­l’Žc7HCdí<ʅ?Ž!AY²õ¡—j®œæn0
-ŒÛ삼cã7c‘_³Á´[g²S_Y=)ÔëqfK2g…Pž¸c$Ƒk.—,Ág€sq¡:ÒüGyÉBp΅–÷€¼3æúÁaq÷F\§mðÍû›Ã—¢éÛyÁ_¼¾ñ}kq½(®¯nðýGfßq ï–'œü7x —endstream
-endobj
-1436 0 obj<</Type/Page/Parent 1369 0 R/Contents 1437 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1437 0 obj<</Filter/FlateDecode/Length 1631      >>stream
-x
¥WMoÛ8½çWzi
-´Ší¸qºÀ6í°MÓµ‹6{ %ÚbC‘Z’Šë¿oHÊV” ÀbH$r>Þ¼y3úçdJüLi1£ó*›“I1¡·‹·Åœæ—ü>Ã'i_LÏ'ÅÅøÅÕêäìã;šMhµ­‹Å%­*‚	ž”§ïkÑéh^ЗN•÷ôÞYïiÙ­tåìÎ+³¥³ôüÕêûɄÞÌæ°qúͺû­³]{<¶íT%ùÐÙÇ9M§Éå›Ùe1ã«ZyªlÙ5ÒòµítEk‰DEÊPiÍ÷ΔAYC;ê£]a*jĞq/
	O¡FÞÂ
-N î蚂Í!NϓOÕ´Z²?Îbݧ#ʘ¥Yzbógdåç»>3Ow§x\ÙF(ãï^ôíúfIHƒ½¯%{·VÓƺ‘_'½Õ]LÅnèF†«ëÏK2¢‘¸kéú–DUIï¥?Ú¼ù¼V?ȈGW’VpS#FÍ9È¥l­÷´û‘SxbìÖ‚jm‹kE*Ê;š.rQÎç Š2/¦}P¾ì¼ðéÜ°xp
-ç>*çƒÞ¿&¡5}ZÒ7e*ƒ@†‹C,ká;ê·ütì–Ò=€\Ÿ‰ØJºÒ¶¼¿{•O

-<åàøô(•ÃK¶z("lw‘PÜÍZøÔHšR´¾Ó"_²ÌêýíÙõmF.ûŒZg«®žJaPzà/wÊËâh;f9ȼC™]¢*™‘Ç๛,Q0æ^*æÈo#ÀaŽ‚
-5Èí:cϞ5ƒ°Á;àÝ}ýpûH~˜¼# ŽÛ=Û7Ä1J»3ŠŽì྾Hœ¸±®A™Qlkô¾?EGã]²ÎÔß	W¡2@j1
¥WhN66Ht—±hkù‚Zá@O–›'}ê›uþßP-u[eø>®·Â8Å÷Ùz®y¹M¯”FŠ¨Fiá8tíü>È\¿7å0NtÔ!²c©ûbBµ43œOÔ̘2Zc\—)VÔ.Ô|Èá{ÚÕBžéœô%‚ύäSYÖÆj»EïóifsµVk
Cͺʚ:J¢ÉȪmçRoZ#ћS4b#ÊZá¯,§Qܒ3.!˜Ö@mс¤ð{֕DÖ$YMGî¤yPΚÄçë
n–uŸf_%nêALQìUxéÉî ±¥±Äº1`2ñÂ÷”@[Œ«¬ê‰	GµGØ,QQŸÀæ( l¬¯}O­qßY1JóÀåHƽíܑ)¥å¸ö@"֓ÁäÆA¡+Î.¥ˆ¿´†ñÌ£–çÈ`dÉÊëöãÀWe7Sºk[ëÔòMŒÚÉVC3˜ï=E¤0ÌW˜•%Qo±$ƒ —ˆ)ìY‰ßtÐÍ"dŒ"Ÿ9Xé»

ÇåB›[L>¯¯ÅƒŒ¨Ž<6
-ûÀSŠyÖ1,"Ug*aÊ=Ï}‘ClÑhiW@Ïð²‹ËÖsè'Láý±c%Ÿ1É«OÛ^Ú0€XO#Ôq4úR«¨‰;¥õ(áh\E†¯ÐiÁ獊1¬ˆŠù÷
K~ío¦µ€[$ÞC
YÀ(ÿ3jÞ_ä¥U‡—T&;áUn‰—\õÇö3¿À'P	mÂttPÐ҂yóšÖ]ÀóQʬ; ':*2¦År@XÍz㱝º¤Õw§Jþè¥ÚĕFjä½Jû—äKi„S_¶ÞOÆ?0-㠁.r@¹¹ú¼©ìÐq+‰ñÅs
IwÆI­5Î>Z€J¬(_CwI8ö0JKŒÍ¡#„ŒDcq
MßR£oœ»,Úǎ„r3-âÖLA¥Ýk+"Q¾F˜ƒÈ#'p
ƒ}äœwnB@‰ùÁÿņ,É×<ہ3–-Ú~Ïæˆ&<³…Î
-ú:P¾?ÓîðÛÓ݁c{üy‘7ÔÕ³’~Ði.Ãa–çå%¶0ò@󗘢¼2zLÉ\Æ
6o-﨧ÁÓ§É#¨ophV?4®@‘â±cñ£o…§ÊpŒXù_R¶z×K嵝ò¿ÑŽE¿’(°Iý%‹M±-ê¿©(2ð—Ço²ù´àÁÿøýG?ûæ›/æÅââ™°;»àÈ_|9ùÎÌåkendstream
-endobj
-1438 0 obj<</Type/Page/Parent 1369 0 R/Contents 1439 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1439 0 obj<</Filter/FlateDecode/Length 1584      >>stream
-x
WÛnÛF}÷WüRˆhQ–%9@l4)Œú’F
-Œ¢.Œ¹"7&w•]RŠþ¾gvI‰¦hÛ2¹œË™3g†ßbâ+¦éˆÎ&””GÃhHãóq4¢ñlŠÏ#|[I+c4=fýW‹£ÓOcŠcZ¬`k2›Ò"%Øi‘œ<ûônñ
g†tŽFãhŒC'Ôü³²4•$¡µ©u"éWÑ2J¢ôôáþË¿¹ÿú™þ–Ñ*Ê¢üp銢(˜>¸Œ&ly›K+?„›“}l¸7æá1¥ÆîKCcŸ
ØRŽ¤ª`ðƒnn¯èñäÆ$¢ [á*\¾²fë¤}|GןI¤©•Î‘	Ǘֈ4qÕáúʛiRÖ²ÚûìÓv\Ê{gp/*Š/FQ<™Eqß·Æ[_‰©‹”–’2µ‘š„띟“GÄ¿R¸gRŽóíxÎÕ¥L©2lg4¦¥ªÅãQû=||ÑCD¯h¥ÔÌR)RÉVøHH õµ½…ɍ´;Ê
@Ûª¢€£D"/2µÝS„½¹ˆ9<â¿6Êí|5¹Nre¬d—ƒN‚µN¥SV,ÄUWˆsǙjwNÀ¡ZÑVRjèî~AÏÚl}
-݊¾ˆ<hÈ×òkÐ%͞¸?å•YWÊh0‰‰˜Í5\ãlÍVÓ#³¦^‡¢ƒ
-æE-ƒèzE;SSíîÓïd°¢E	(ß2Áiò¬®®ïçÀ(ɕHxƅbHŠX
-cž•Î¨PÏ}W°ÂÈ·=òÞý{8ñ$Ù!]Շƒ†1EÍPÐÚT¨çáÈå-±ÅƨT¦
âCdVäŸ¡IhÓqtÑW˜l’;þT%t'Íw:9¦µ°ÈMû²,@j4¼r,ÀÛã†Ûà/›ÜËGف+¡OF¯˜|HÃ÷Í^¾µÐ8X¯UW¿j¶œ[£¼¨êG-ò–Bù¨r_”¹(—‚
Ftutwó¾(܇¡}p
>s
ÃÝë¾@:ŽÜ©².*¡¥©]±óVXÞPLC-r2ã~kEªQF
-	TâÇòŸã¦\£Èÿ9	:À†Áë’¤¾œUG¬Ö½ÜO²`à%V/ÅÑêIvÅ&Õ.6§ŸZb‚Og͌ï=-®ï毳hˆ×P—Ï@w›$BQý5¤t;§¥SВî4ÅæÛ>È#WYŽBB1M‰’qÇÐG–Ó^ð-ÍÚ·2פ…˜2=û*“IÏá-†	ñ©Ú­%mDQc%`ü \|î–m(ŸÀôãv£0ÌU_ý™–b#TÁZ‘Ì>0¡ß
-!UȤBBüÕZ}‡ßÇ®–døcx†Ä9\ߢpæMCh‘Wa.[kÍ*Æ¡K¡E†æ
xkQ)žM;µ¹<ž´Í^ŠgÜͤËKÕÚ*í
ÜgÆâçE ‡=,X‡¨—\§{CãíE†#Lݐac§m¿KŒÆ¶ŽŒâÀ¢m†ßøœÄ&’PSM…ÔY•óÀ’ÛÒ*?v‰ c«<JÈÙt/ƒ
nԎ+àcwlý5å¸Ô;ÿ	gYþ 6¹±‡ÿÖý„Ùû÷\sk¡Ü,=ßñ9ȸ÷‘¦ô6ݘ}<Q:)ê´Å›sH(
:—HÇh,9=¤}ûñtvFªÑ5ï„^Hv„¾Ù—–;ð’’Bñzä¡Ø
-¬.œ\a2H->x˜ƒúô²e§¼®ñ	EÃî=á‹ù€2	0!0 ‘},K-µ¸¦xD¹1„½eò>õ°Dõü:±A
öëUV¬V*ñLϸìèIùc-SUá	“›W)`Ñ8wÖ¿@„Δç¼0!±&ôûö‰5Ø [An$–Á|ã#éNÅüæd4bÂú„bëm”˜yáä¿\…co/úrȓ\eµÅSÇEɛ§;¦•*˜„Ì^žÜ@ÔÁ.GÆ;Tz–a±t’SF`\§fO™5oñ¯R³3šL.Â+Åüòöê’>[ó
úF¿™»7)ӏ
´¦C¼3ýŸÝf<GÓÉ/dx|4e«GýJÏwIendstream
-endobj
-1440 0 obj<</Type/Page/Parent 1369 0 R/Contents 1441 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1441 0 obj<</Filter/FlateDecode/Length 1642      >>stream
-x
W]oÛF|÷¯Øú%Ӓ,KJ€>رÝ°%7VšMQœÈ£t1yǏVõï;»$%‹q€¢È‡Š·;;;»súû O=üêÓx@§#Šóƒ^Ô£áé$Ñp2Æ¿øã5¥òAÿl
º\ÌN®‡ÔïÓ<E¬ÑdLó„§×£y|ôùfú@*+•Ú?é’ÂJSQù•š\J©ó±±KZx·Æ“Ì”ÊWÞYSª`œ¥Å2º½»xUFõÊ«½õëù·ƒ÷Opž!‹ñ{A×&¬$ùåÝ}=J\®Œ¥\•A·/ú¯¯IلóJgEy)82‰¶Á¤2áUIˆÑŦ“6Ñ©±F@‡•)im€{íü#9›mð_<µ¤¨Də–O–ÞUEDS4à© _DG+UÒt6ÿp3ý¥“ð'áiÍ1ÚëT{¯†ŽsÊÒÝ}66
Ï4Ó¥ÑýÈ“€Cª>¦m08‡¦Å•7¡[§¶O
ÊÁ”Âmef%-xsò¤¡7v6x—eH‚~ïµÅX<Éë>3GQSÙ`
¹‘Ÿj™HKvlÆ¥Å
”
-¯&¥«ß®>~¡83iþþþäæž
-]FePñ£Ð·ÐÚà¤fY5äTÈôF%¡H֟@tçvÓ—&q+¬ôãxµŠêµ˜c+a–“2ôNVLJbh’ªDï¬Ê5(]b*|ÍI¾\mhʕÓRC8Ž­[“Z¸
-Ý@k±Þ@ê1Ä'¨B'ïJ=i©§Î¥™õ}©2Y
Œ’$^—%eÎ=V©t^„’GցTߐÆúãˆYÖIÌïh(@$s³‚nÉ©8æÐP±óeWs·k#=¨|¡Då{p¿ñŽB:\Y…ó~¦.[‰–ù"bAPÊ2þc™¹Ö՟¬|Fñò‚†–¶—Hë¢à5è
BEH%dã*O{H:<½Œëäz´]¼ÇíÄ\ÎxIÈ@pÝr>"fx¾üˆ¨ˆ{&o8ûm¡|0q•)éã¨x™ÉRì`vkK˜ÂF"BäÉõ[êà Ø)ŽO‡õˆ£³ëHP3œå‘[LˆÆªîc-oGv°ÛcMÂA¯Ô*|¿ldŒahX&çê1.ϧV<H¼‡‹@–E¦s^že•AÆ©w9A;
þÃ/ìC{Jök‡€vÛ6¸ºRº0S.nfíxRP0HŒ¼XÀÈ!S˜:cIšÄ.jxª°uA–`ý3ʱb‚æ•	XlT…ËÇ^×Þ(Þû ]Œ"Ñx„õ>w>¹À²eûƒ+ðþÆ4ÙŽnã5H9qSp'³¯êcõ´"NËÜHVûê4²÷Ú-Ǖ掝¾2A¡7mèúp%&æØ[yÙ¡ŠUUvëÀ^/¾
ÒÝF̑¥[³r˜ºj¹‡U8$†„KL¡̜'¸f¼mŸÕA|ÞX0˜ªXËöeü¼}™DÕAÕVÿöŸmQ[k‘!m\Œ‹º¹ÿ½•!ÅOä.ÐHG[¦&©aÉÑV™]&϶ҖóDšûâq4³öÓ\©¢Ð¶|C0[ó|PƟˆ%ct;õÊVÙGǯ[9Ãrf7ƒÖÐ&~s¤–Ü-©u‰ü3ÒV5ð²¿X˜:À‡8€­â~!SÎwOÄDqu[ÕW>c0NµjåUAkîkp*Óʊo4w.>ݪrïÞã
-Ý8:jåÛmÓm!¯]dµÊÙp_’l©R
ľBA¬/BSܳp	@r=¦OW4›Þ~Á_Wtÿq6Ÿ½ŸÝþÄ°°G¸ò½ã£.]V‰ÏxÔGvWýíZ}ö"p´M㻋\w€ÿÇX”õŠË0$y(²U¾¨wMr	Ÿ?“ë»K‡‚ž°™ö’þ6…Ƹì.–ÊëwŒ¾
Obü„!ð-êHcÁTç2a†¿IŒ¢ÞèŒ_º½û0{˜ã=è[î&q3^v&àýÒ¶hwð¢½Í½ã[Ò§K¸!f—³sÂe\Æ/aJÅÞáºãuÎ_J½äÛu}ï9¹ž4>ߝE£³>ÆgQ$5<œß]œÓ½wß`ðѸâƒr…âšQ¾ÈMNéxÜ{Ëåü»m÷”l•áxG9b&œêj~ðëÁ¿ Ò§ endstream
-endobj
-1442 0 obj<</Type/Page/Parent 1369 0 R/Contents 1443 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R>>/XObject<<>>>>>>endobj
-1443 0 obj<</Filter/FlateDecode/Length 673       >>stream
-x
¥TQOÛ0~ï¯8õ)H4MҐ¤=€6Þ`›ši/•ë8Äà؝íPòïwç´F‘&­mÒ(¾ûÎ÷}ßù×$…¿)”,
-àÝ$‰ÈÓE\B¾,ñ9ÃË
-h&WÕd~CšBÕ`J±,¡ª
Ó*]*/¬f^>	èÓLšu³Q½—FƒÔ\õµp'ÕÃ$óE³¬Œ—ø_ÕÑ\x>oóî¤çŸBËl
Þ@ǤöxÓ5(Æ](p燭@èÆj³´ˆ“âŒ?ß®ƒ{cj୑\À¦÷ûtáœÐ^2õPLH³w¼az'½p°cÚÓ¦°9o%÷€¥@óØo]Øß!€=YÃÆVsæü;J¼eM#yU+`J„ºXā•@’jl-ì¶ÌbrM!Å÷V0­P[¼Y1â¸
™z¦e@e8Žä˜_'p>j;Ëò8'þ`ÿyÑñŸ`'QdÕÁ`š£gÚþk£Ì²‚ îŒ½—þ§Ì¸Ÿu$”ì$º
•+“%¨úúäƒúDo-Ö+Ìý[Ço9֩¾å±ýPüƒŠ1ìH˜RÖ±a]„Dù3*¾5µƒÞ	tÉ–hùnp^td1Ùm•èЧañ^`‚ó›4YGc¿dú½]š^ó0kœ)En@›àOÛá‹
¸ÑÞ¥ÆrEÆ©~™ÀÚ·}E§p,Z;·“ž·Ç2hÞæ¼Úh˜öÑÜÇrÃί—û'-ð0Z. [æñقµº¼¹º„oÖ<?Ã{â£©&žcƬLÐÖu„y1†Áí׊؆Π6¾eŒ°ŽÒõ	l­ñ†…¯àf?¥®ÍÎáÉÃ[©…#ܼÌã²Xâ	ˆ˜Ù9½úRM¾O~«š»endstream
-endobj
-1444 0 obj<</Type/Page/Parent 1369 0 R/Contents 1445 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>>>endobj
-1445 0 obj<</Filter/FlateDecode/Length 1570      >>stream
-x
­WïoÛ6ýž¿â°/MDñ¯Ø΀ah»(°¤Ûì!Ö} )Êâ,‘*IÅõ¿w¤ÇjlØÐ($ŠïîÝ»wçÏgcáϘšÎIÖg£lD×£I6¡ÙrÿOðÏ)*â‹ù"[Ÿ¿]Ÿ]ÝÞÐdDëWÍKZç„kFx"Ïߕ¢	ÊÑuF?
-s'	“Óýš~Þï­Ë齑îÐm
iózýçو.'3\r¾õFð/Àåt†àðö:gôÁgóVòçéäŒÆãîäd‘Íùä½Ú#‚½6¹Ý{’•V&xò
-¨®rjºx<ÙGœ¥ÂN] (”ÈÉÔTB
-êK8Ïh£>tя§)Âi¯«Š¬©É¤8U´^Q°éØK`ԚJyÏái‡/¶Úw íÐa¯ÄNåY÷x2Ï"£ÇT¥0¯mIku€oþB>*õ?½URp¤`$”"ÐÁ¶”nŠñ—jŒHO Ôñbœq”‹ 6ƒ^Μ/(ÅcÊ=Xèé‡^ê£^Já<y[«}©pDU^etkÕøb©Ma]-X 3]˜[ÙÖ¨}|LbcÛÀ@üéÕíu§›óHO¾¡;–Èwé}¯+~ïD­ êÈîP›‘çëlm֍uH=н
ýM\)Ù:§·²æ;µ¢F‰(ffu÷ö©\}1¸S‚’¥ÑŸ[fD©š¼®u%T©ó­+„=ëRãDz	På‚J»W(öŀ²$О+Õ$Y'%ÈRÕ`ðÐh)ªNÅÜG
-€§Íp죺{G¨•¡Ên·ÚlÑJ)¢
2B܈<!rÂ]Srž>a8¶E”~Â>þyƒêê@¹eŽzQ
ÇsÚ‚‚ø ®œEŌ7×~×±‡èDåm
-ñ¡<|ÿ¤éË7èSÐ7}£
PÕçV
-Jü&£ßRó‹P•ÓÜ,4É+,}álÍ/êâ¼ð¿z¶­à[Ж	:ŒsðLÑ7¡ªÞ‹j›ëBã]2%nó-›™2ú‰E¼ÀÍ]Úûx»ãX‘üÁkÄ'60…$>hvÆî+•oá6RŠª€+Òå|DÜN.FFå
-%ÄÔXï5nMLø2†²E¡‚¹ð×¾ÞD*s*4ð‹À¶Û’ë‹ÈaçúÊx¢DOd‚â(gŖã"ˍŠiÀ×ıP·>:âN5
ŒH§B2)$Âw1‚ìƁ|	×dR1Ù øê0t๊¥Úc¼ÄT+½c­ôRé¿/µ,1V4`ÙècÀÛ¨oz´Á
{õbú•1´FÖûþ²ìÄ£€wpaAlœ¹üƇV¢}ÂróJ[7pN>ŸÚ÷«?`B֞>?hs¿ËCñ°½ ¼º¹&ä§×‘“	vŒÑ8ÚÞr:»$CÍq6Žj¬	3ì+èRKž[ˆhJ²f›ê–)D[Bn¬©Z'1‘hÚBF¯PfŽ0‘́<й|úêvþ4¢ù¤‡Ç!€í
l³+±.xSHþåmÕÆ]
֓Ü‘;˜“å <i
‰$§r 9•CëõŒ›§ñœºT&ñ)«
L¯0~5ˆ|éý:Øk˜È\¡£ªèƒ˜lyJf(æQwZ:ëm
>P±ô’H2Žþ©¾”z“€ºØ+5°´‘U›«¸¿`½ì7•»ýðqE÷Ýé\k
-5D^˜	ìZ¢EÒ q`È¡ãØ8*øR*šì*y¹È–¼ïb#ü4™/è´¤ñå“]ö,C²Ox/ µ
WÄÿpI¿{õǏ|‚üŸÜÒëür²ÌÆ7ÇÄnüö”£ó7pN¬/ŽÅ;¸z÷ávuܲۆ· ACÒ£QÍ8ÏÏ~0 thð«_”o0vÕXv„Ѿ†2½tzƒæç0ÃoH>šÓq9mý4ÿassù>
3(IltÅÛQ\h1ìâ/Ö=V=xˆ†ïq‘Ÿµé)H·.{¡õÞ¶¸Én 4î_þJ6Ì!ϳl1_&ÙNcE߯Ï~>û.Úw4endstream
-endobj
-1446 0 obj<</Type/Page/Parent 1369 0 R/Contents 1447 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F1 4 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>>>endobj
-1447 0 obj<</Filter/FlateDecode/Length 1532      >>stream
-x
WQoÛ6~ϯ¸‡
uH¶lÇv†a@»µ@šu‹‡í!/´DÙl$Ò%©¸þ÷ûŽ”dÙ͐¢$&y÷ÝÝwߝ¿\e4ÁOFË)Í”×W“tB7«I:¥ùj‰¿§øµ’Êp0_M¿=x»¾¿¿¥lNë¶+üQìL&´ÎG7é4ÍRzS<	íÅV:2%Ý|Kïtn{¯Œ~½þsÊ26
Ét	£}%”&/¿zÚçÆŽÐh?‘‰ÜçÈïð©ô¸ò˜Ò½©¥Ñ’§ô–Dw@N«²”–r¡ÙÂçÆyvL(Éf.­Ìáeànk؆7ÁÃvÒ>I›FÌy‹9Y¦«Œ:#ÓŒ΃
-çÉt‘rrFÿ(}·¦ÂH§_yªÔ£$/ªÇ֓h}À¥ð¤Â
-û—1m½ÏIJ<TU¡Reã`Ì°÷AXkü9²ñ“*ÏþC^+géÆ{K•|’®æUþHµ)äɉÒN9OFÓޚäÁ2¿¼ð[Ž:¨üHŠ|G¹ÑZæ\ük:ì>QŽ×#qmŽ0™Ò6®Ž°€ÿMÃ¥CÞ¸Λ=Ÿ¸—°ƒSΠ[ðólÅf·é‚2¨XÇädºJ³[J– eX<½d±6:y¦ç•ÿN:?Ê}Hi¡Üã³PÑLg8»v‰Ìꨇ¸9Q˞TªJ’@Û¡F–­¾¨œo6È<Î*³Eé….¨ôûˆÿœÚßç+Äý	^lÄ•••¢8¶0
ƒó‡QçÞË
-ÍÛùxÝRÂIzN.Jn@œ@3¹&И¶¬¬‰9ÈTˆ]ÒFm©¢z6Õ]2ÏY
I*¡L‘óe$ÎM:‹Duõ&¼ ßL]#“ç,@/NÛ'LëÓí<Þ¦Rçñ¥BF³)mŽþ¬²‚²$ž™à£;ËÐ åvßö- 1ʓSµª’õŒÉqÞ´B6Š¼¹@?":{üþt️ñžÇ‰÷Öl­¨Ý5€:¨ZÅ~9Þì	"?7Ύ+“‹jºnÄx£ôøÒÖÃ(ú((fC²èžŸ¡Z@5
-åöÆ^·%íræ[Ùí³~éG›ñèÉ”WJjŸ´JÉâBJð‘@¸¼È},SÀÏÅ,8£ùNèmY–ÂW—Ê4A¹UÉôfíЅR[›†O´,ùJÂÍYšª‚|ÿ`\l˜ù’‹½Ø¨Šåü„µƒuЄ©TÀa4ÅÐ=ŒXa£
-Ç!œÂAY¬üÒH\FóùŽ`0õɪš+ô»aŠ£;´·‹Ô	FHw,äoÚ»1‹½’µ¥tmÈ6zÐMˆãYUd<ãÉ÷’~>'àÀÊOñó;Pó6Ý`Ú^ð¥ãnnô¬ú£*‚¾t¹luæ²lžÞ¶	H<‰ª‘H• ¹hjYé«ÛÉ¶6„ë0i
õ«Jçï×ÿ
ìN²Oíòô"2
مÍÞw×IɽÄnò’ƒE–f]èV&!úÞG„ݍ±$‹—û´BϘ¶§dñº6¿ZxL­ÀéÆZf[Ì&6‹µ(î@Çô¹æäòUVÔÞµã‚WÀhŠ7F3àsU×ü2ªm—ì¸fñÓ
Z*4|sÀ' WúÉ<ˆ÷@À4â`D,"aW«
ôÚÃÃÙ©3Cہx`º»Å3¹à-YxÁ\O`Š3',Ýèa·Müafîe®J^»NX4o‡‰›ÔE~:$ÙÓæ#¥;ƒ±–× 
T°NˆúrÆ%2”
µÊw2 ZÞŠÒ;
õæê@+Cx°:lÝMOì<H»ãP ²Oø.cìÖx+«ìéò(,ô®Nm5Š
߬‘ý€ùCÞy­[JÙ«âðýûîÿXÈ!ǎè×K£xÕêU¶À÷´ÕŒËðÝâþÍÇ·o ºæ3"”4%Ý÷,ôY¼ž,'·ÝfûßÏæËyº\¬¢0Î2†ún}õçÕۅo˜endstream
-endobj
-1448 0 obj<</Type/Page/Parent 1369 0 R/Contents 1449 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F5 8 0 R/F8 11 0 R>>/XObject<<>>>>>>endobj
-1449 0 obj<</Filter/FlateDecode/Length 257       >>stream
-x
mÁ’‚0Dï|Eك1 {ÄZ½Yµ[ò1–D)þ~ƒÊmkŽóº§{~ƒÜO„,Æ.…ìƒClO{DÊÚoÒ<CY3Î9JÎà ¬ªòæ¹äͅ¦ï…®,[›8e‰†'3¢7#¡"'Tga4îVéæe°
-aûëÿÎ#Õ4¸–ào`
aj•l1©®ƒè&1[\éITT+­œzžJҒž¡¶§ü6J3Æó’ü•ñRœ¾Gs#éðeä½'í„SF/)7+¿ÉøçÒiÏb1ÕCx¬!_ªÆå|ÀQËqV]’%,KsÿD¯Ùŋձ~‚?0jÇendstream
-endobj
-1450 0 obj<</Type/Page/Parent 1369 0 R/Contents 1451 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1451 0 obj<</Filter/FlateDecode/Length 115       >>stream
-x
+ä2T0BCs#c3…ä\.§.}7K#…4 Œ™¹…BHŠ‚ž
P$YÃÓSO!¤² U!?M!3¯¸$1''±$3?O3$¨ÏBÁТO¢¯zs=s3 -!)ÆÆ #\C¸¹øà&äendstream
-endobj
-1452 0 obj<</Type/Page/Parent 1369 0 R/Contents 1453 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F6 9 0 R/F7 10 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 562 0 R>>endobj
-1453 0 obj<</Filter/FlateDecode/Length 2754      >>stream
-x
Y]oÛF}÷¯ô¡H5#J¤(X,;Ù¦h7Ñ"/´DÛ܈¢BRëúßï9w¤™#)-ŠEÃ'gîÜï;3Ò׋ԍð'uÅØM¦nÙ\Œ’þ'üøøϋY2vù|šŒ\ã&i2ۃµût!°qÙ$I…ظù(Ʌظt|,¨ì$O
-UZæÊ
-;͓©²‚7åðÉ{FgƒÅN¿v>N2‘ÍÇôo6Ft v4§ZCUL“çTX/:¥ˆiˆ¢žÌ§PHC‡}±øÀŽsYÁÍ*²‚Á"½È]d3y2Öeñ@f3Âmˆm‘;"ŠÁNÓcV0³“1ïAV1XÔ܉¬`°ùüXV0ØùäH¯bT8ôêΊÁŽS*èUz¨À"Šè–	º‰Ù›Lh”!˞`°……*²‚ÁΦ4*²‚Œ
-¬b#;f3«&Èz“SÎå5d&†è¨`!V1ØtÆXDV0²‰¬`°³œíYÁÌÁŒù¬7yĤ2Ê։†|”#›Í˜ƒÈ
-[˜É‘vf&GV0ƒ‘3ׁU6˪ÀZe˜‚lë9ǐÖAҝ9IÅ`µTYÁ`ç)Re½Ò‚ùn":s™
*Á1­¤b°VÞÂ
-;mì•N¹aãÏÜe¨T Ñw™ŠiTUL“2*
+›["+l1f„ë
Îé…[…ËXjF¨iRIÅ4i‚ò¢ŠÁ¢XÁ¨´
-BÕ²³IáSò€L­`ˆŽ-ü¶–¬b°ÓV0X4Òd­¯2Ԃ=^!Q»g÷j«ÛÄñ;™Q‚iO&a£ÙÓ#vVv’±¢"+,R‹¢	¬OmÊj@
-¦UCÞ¡ˆÁ<ý³È
-†É˜=0*°ŠÁÚV0ØŠ(Ê
-†É˜©(±À*f0xuV0XÔµÊòÞ6™Ï¬óì¢æ
¸¿·E…›9H¾”ˆnž`ë('ã%E€"'±MynDR1؜×a#z6%"«˜yá]QXÁ`QªW1X\~ŽXÁ`g<8dgÁˆ<¦´Ú¬,¦l&²V†“Gܵ»¢GV†‚ÁÚ]1²^´à½É‹ÂbCõdÎÙ±µälÔzA”
RHÅ`1×`ndƒµ+´°‚™zYÅLç¿°‚Ábˆ#ÄA¯bŸµÊ†ÓSëeL=”›!¢`˜l”°‚Á¢k°q”µ#öOdÓ¡‚îYÅt(=–¶˜ÒÝ(+53f§GÖ»‹Ab7I2âhÈ»1Âœ*+˜îòYÁ`íÖ)¬`˜Œv‚QA¯/8V,d´?´°‚‹ێ8/#©,Ê¢ŠÁÚ1+¬`°Óɱ¬`<b§DYÅ`Ñáj•w÷86²
W
˜;b¸ÍÂÀ	čaÊI8t”GO$ÓQ><„¯…#YÁC~,+,¬@¿«Q³ý–jÙ;þ={ÇcªåÌV0،7XaƒÅ÷hgÁ`q2å*+˜¹aWƝƒE±Âò¤œÁ8ÍFˆ„tG`ƒgUÚBr‡û
¶œ@$œ9ðñƒ¥AP1XŒ3µãêÁ>ÆÓ’hŽ@¦l H*æ¶CDƒÅNˆAd#xØQ¬b°ö"Š¬7?í:lˆï¹½TŽ¬wà ë
Œ¬à`p`÷ïeÇ8"ál`ñ¼ÃÌ.Ƨ4`G“ìó¿ÒªÁH¼3ìøäcäÝ„àhÌÔR1XÕXob¾u3Àmñê:@nk%HÅ`qPÀ„È
-;ãk#²v\ŒG‡x³õˆZÓIÄ´—·±Èš½|Ÿ„¡î…5yà #ßr±)Ü/„T:”õ*íA¯ñ™Ãë÷ÔYˆ"„ .G!s[6EõÛâÊʄâY
-΀m‹À§™
-ۈð€”ÀýĈœMŒƒœˆÈ	„:K‘;qÞ´S¡bzÁ&‹¢Þ»Ø–“ÎÏdó"B‡·ƒH*¦Ò¸Ö+˜JYö"+,n©²‚Ùž¼QDYÅ`q\#ðf?õzw03Y^Vÿ˜3Ÿk¶ƒ‡t‡ÏH*‹Ü¡ú‚¨b̓GXÁ4˜—ÔÈz“ðð²sß84·ˆæò€N'ærªFR1X<¸TT1X.+‹q`ndßõÀ*‹Ç<:-°˜­øüm†®Ç¿®r÷¯/ßbŠŽÜâ_L‹™[¬ì[üÏòÅ»Íе«Ýr¨ÛÍ‹ÿ`-2“úµ—¸Ä±úÅâ±îݶì·l7CYozWoîÛ®))æðw×כחÍ]	ʕî·7—¹¶s¯®?ýöƒ[µ
ä÷îÞ=·;÷T÷nh]·Ûì¥Êޕ4`ä.mB­—qMÕÜU·º¾úœ*Wnx¬\¹Ýví¶«Ë¡rËÇr;`
T[ïbÜa'Нòn]¹öÞ]Á›j3ô~%fÓaåÁ‚iâ~jŸh(–Þ×;„ô“9IsÝÍ"s·]ݔݳ»6mË®]¯«Ž›â{—à
.j	VW]õuW÷5¬þW¶¯qÆ$îu¹üòе»Íꌝ$ÁƜ¡ð&}Ó	'¼‡(â7Pî}¹|¬7•[t»~p¯–K(àÔfå~në
—\­kF‡îS‹ßÿÜ-|`»Í®\ï·gMÜÿ†3Ð ‰ûîÃæ:.ß®Ÿ¿ûÿ6AXvÓXoû¹é—Ç)É̦Á·]‹ªh|Þt]ÛYYÅåð鹪ÆݶëzYW~5Dïëuu¾¾HÜçÇrp-,êÜcµÞºe¹qïÜC5üã,³ä¤ˆZÌ}®7«ö©wóß_¾s|ŒïX¾ßmú¡óÝÿènªá©í¾¸_ڇvsn":üÏå?UƒÕËnë>¶eúøWoÔ铠Îáȇ÷¯ÞÝüûêÃÍâã‡_’á÷Áý\Ád8®U÷½/aºw´¸ï¿WËÁYϱ3`Ëñh7?vnÑ¡ëç}C°½­WP»Å_lI\&þ¤%q
-îóü-Pß[Y|Ã@+sãbù×bä6È%ý]µ¬,÷yëŸÔ{”«ÑŒ+?g–ߺÓBâ>0÷ócµqÛTy{}µÕªZÙâ“s* *ý¹Ã`µéó­{ii	œÔ‹QÕ}58ˆ•û­^__}ÃI|í$"]µE#q„Óξ¹Û–}ÿ´rì'¯
ß^‡Š‘鋃å
Dœv‡õ»¡\¯£Ò¦oW­pœ-¿”ˆ3›ìºº«K;ÿ.Å;덿$ÿ±ZýT'oœlºlዷûl
BþBÌp&vîe5,_~éîòÙ½?[ÌYÅéícµl›íŽg^éG÷¹óéÛ¶ïkwUiGéÇ6q‹
-G€™€Îþ/öD&wÛ3Ѝ\ÉP>ÕÃ#Óµ´#‚+‡LÝ´ƒ‰Gú0$…<@÷ýíâÓÌ8×Q¤qt˜~«q2>±·ð }s˜¡x
-öy:	ñú`Ï<û–AßÜaî!Ã#´öÕr×Õóû;~e€¬4_¾ÅÝÍnÞC|ž8åõâôJ•á¦YLg¸|œd4õÍââ׋ÿ
™Õ£endstream
-endobj
-1454 0 obj<</Type/Page/Parent 1369 0 R/Contents 1455 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 571 0 R>>endobj
-1455 0 obj<</Filter/FlateDecode/Length 1693      >>stream
-x
¥WÛrÚH}ç+ºò²v•ƒ
ûæK²qmâ81Ù샫¶i@“He$Aøû==#À›ªlR©`„4}9}útëkoHüÒ4 QHQÖˆ
~Ù|ø£7Š€&áXÌ(£ád„¿þ*¥Ç^0Šáþn0Žïv®3
§bÞ9/4™Lð9žMñà¿U´êáPLh<˜âǐqWìrÎĘFó±áî8‹°¹â»Ýk܇xÊ?ëîv®q7œ#ÜÃÝëEïò՜‚
-V@%œÎh;0ðKtv“È¢R–BA¯Í–*C7&_éu e¶”$K’t¿Ÿ/>÷ÔÆ8ö`u&íŽnM&uÎg*kÒTY~Šý
§Þ_4Ò8Š¡ «¬úZëRWŠ>(ë|íOŒi8lNS$×jeÅÎÔÁ¾Îk(Ý‚Ï*Ñ%E>ü*R%KE™ü¢¨äà«DVî¬ÄEd2تä2U´ÕUÂ]’ðOKYê¨Én8òÑ®tªJ*•Ýè_à®Ì–‚O‘ÌcJ<T*wùg:×%CYȲÜ“Ê#»+*mr6àдHT	‹ÕÖìBGå‰gî8Å>KE!0Ú!tÖFòt6y:?Fïä…\+e•(zyˆ¡ÁŠÌÊc÷úݧÅ;”e‹8Hám×ÎU; k}Y[Sç±.lâ	† Æ\F®ÔWu•û[I÷¦R¿ŸF¸àºÅ&ª3•W„ï’˳ԹtH!º[¹Ñ1üå¹Éaå…ç!ÜÐÃí
¹°_°U°±­— yî~ѲòÕÕûˆÛ Þ­?xʺP¶T1 ^î<&W.ÿþ>©˜ùtþ³€§dà|(…ÕÆr¯XåiDZ%2úvDRŠd!—:ՕæZ’Qåé“Îc³4C
Žûè$©CWÑÓR:ô‰Ù»D.h‹b#§¥‰+ÀVç‘B¸+iƒt°ŸÐ8ßõß/«]ªNÜƾ§S³æ¤WÖd'§¹ZCÁÚ¥Å,™Ý\P[éfê*Õ9"¢5Š’r…v*Y9̉ßnOúô qAwŽ)‡Ó€4‘dNè´/ÜÅþw,·`[ A˜hü‡
k'nW‹™'Q­<­œj8ë¹aÐÒÔlÁ”CM^®??ÞßýýÏÝýãâêÍ‘TYú):q
-Q³N^,ËX«¹1¾Z‹~Lw´ôú‡ÂFJ±R
-ºBD	Ž¬‰A¾VPh'†@¸Q(§,P¢µgu§SÁçĐ%Oebê4v²Q°Úu/†h?1Ÿ Ê'äxƨË#>p֗¯¢F)úh)žÍ0ó„ÓF×Zåw7÷
]¤2âåž{óo
Í8´…¦TmØ­¢Ú¢t?ï˪ÊjµñîRˆ8w:{•¡+,z ®kÙðŒ…l›`þíò~q”ú/Dc\$OgÖH̔õÓ¹Ï<pSéç-·Ñzíñ½O坙QaRˆ…rÓèG+Öfb8?pã˜Z…æ^g(IÆbō¥ó(­Y‚ú²†6zúŒuÝÈ¡ånç¨l]Vÿ+Þc†=^½…¿iûÁãö‚®#Èó³õ¦„k¡x釉àæÿž÷®P§ã®ñú„7	‚8•²ÚÇ}ю²ï¶FۂW1‹ACЍ–N™>rC¼•9:Þ:¡÷¡ÿ>WPEn@Ð-,®¹ŸÒbò§²Keï>¾Õ¬fÆîþ;éï‰Á)µüœošÍ®h¯
-<v<±@,‚*C,Ž~²eÏ?,¥›å~65ì;-·tŠN[¯Ã^²•‰LênÇê!”¦¥‚6ÔÉ;¡JAÔc½ZÁ"6§'‡½º-ÿña¦V‚,•Ê÷fßèNª4`ÑÙ^ì[ªÜuÇ_—²¦ƒÛ{eê&
âÂÎåš²Ðâû™í鎬%ûݙAÙ7ó¾%ÕÛ>_ãr¯é7ßq*“Q‚Å€\c7Š°°Tž6Ÿ
ÖhЮÙ(XdهGåÈ
VRwLŽ$`"ø9	ý<±ª¤N±Î×QÂ|vã•Ó‹S¼ UEB¸÷!{Á
àÕ¢¥W»„èԍœWÊBE;—Û°°Ë¬q
S;g	J'+Þ*C²œ+¼ø}+A¤
-¿SáÌV§)XÀw<ºÍ«kL&ç:bŒ­ð—9Ûló³Î{ÕDLGž¾?þÒw² ž¼è§c1
g¾à£	÷rÑ{ßûOðº°endstream
-endobj
-1456 0 obj<</Type/Page/Parent 1369 0 R/Contents 1457 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 618 0 R>>endobj
-1457 0 obj<</Filter/FlateDecode/Length 1427      >>stream
-x
•W[sÚF~çWœ—N‰']°Íd:Îʼnj»1/8‹´€Ý"-&î¯ïwÎJH7â1èì¹ßWßG¹øó(ò))ÎG®ãR8_83šÍ#<ûø¯5­
ÒÃק£`8çú3ä4sNÔBݍ†0°çã
±ØhæÌX1Âsq–“Ï?¡,Ö÷œÎƒ9ÌiâÇ=Ώ@‘Sä:>pÀÍç8Ì)duèqó™ÈôÜ9ü™	Ô#£@„.<f Ç…¾*ÆÌèq+B­B
¸`ÁŠrò¼4ê‘áy¯0 Çx1I À
ç/8vˆŒ‡ô¸hÑóùô¸ ´|Q_€Î[Xg¬Ö=nÎÒFÛ ÇE^¯Ï ÇùÖy+S€çE–3è	Ðã\6°õÏà€Cr9ñæ–gƈ+¼Dz1õf9š^.ȋh¹F„ˆòœ–‰¹KËx:CoËbnvuZlÈl5Ý©|¥è]™«´`¤©Ë,Óõ‹åWH›Á^+m"•·LÆKð¬Óº1Ô]˜âZ+ÃâíËú?Y¡·ïÞRڐ)iW$,ªHDg¥j•kƒ#*t¬›FՏ,©ÉWNûº¢}šel„K”GÆEiH£óÊ°ÐZOô*c»Ù‘Ð­F‹+hÞêGRxÎK|™­¢¿ï”ÑÙ#ÅåèVÌürÊUq¤¸RíÐeYƒ§xÐEª‹X¿<Ѫ4­´.(K‹o¼OÍVˆTlv*ë5$º‰ë´2iY8­*Ÿë>~dÓ4Uþ¡ò*ÓdS©&©wvÚã.CcZÃ<(’D€Ÿýß:ÖE—Dž	Ðòy“•+•}i•Ë4Â1áóŠÞ¨&©Ñ5ƒÃ"¦”Y5éˆmVi‰"•ŒÓëÖT”+ëßÞ|¸9¶ ãæJÙÔå®zžõúâÓõÕÅæ‰U/ß[÷ÈÛ¶Üe	»Þ¦œ[Ì\mY#ð¹B­Ö´ªË=Üb©O]™~ÐRoìF8c®<ÖPVÕz­k.+ª3úQK`”­îÿ"Úu$ìY?£eÍã!t?ÎwhÂÂa‹}-ðý‹S;’Nóñó³ÚPÞõceàn¥š©JPPÜRè¹ï»´Ö¹.Œ-8.³Sm­€ž½SÛìY­Í®ªÊÚtéËÊMY<Swm„{4gìgr÷200Ãc@"VÕå:Ítóû©í"–›mgô=>¿\ßßwL€vŒ{Ö«;X4ýÚжÌ5%ˆZý˜G(KKÔVnjXØ †l®xlí
-΂2ÿjgR§‡öû(
?d}a†¾0lÛû§ž4•ŽÓ5¦.t™`ÅÙÙeӟeâåqXÌaHÔ:ÊÀx<;{wswv&áå΃÷3&‰Hþ‚^F™±©Oûs¨·sDΜ8Oøà(¯kEDŠ±má`„vÜ X½§Ëaºkê©4ð´áå9ÍÒÕ´óY2±*‹ì±3ûtbìÑ×+£‘28¢…QIžÊJš^ºv´žøÛ{ÉEÎ;àI™Yõ¹«dYOcýÄSìWtä+gZ˜–éH։‡EyD!÷³j¾uQpC×=¢êä	ad	û«HçzÈsyi7½Œ¦ËÛ²\SU¦…‘{®
-[l³¿±Rí’W+,}ÞârBM¶/“n¿fúɬEGêB­2ØˀÜ*mTš5H2}Ï5pY§ÍKK,
œtž¶×˜÷×o?ýu»¼º¹v¶&Ïä0½ŒÛý>‰œ¹GݕçÞ£v«Î[/óE€ûßú„»‹?Þ\Ðm]~ńÁM.ÞñxßXóÄñâ3h¹ØËÉÿ¾òÛLÎq¥s²Ì÷Ëџ£aE³Âendstream
-endobj
-1458 0 obj<</Type/Page/Parent 1369 0 R/Contents 1459 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F3 6 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 623 0 R>>endobj
-1459 0 obj<</Filter/FlateDecode/Length 1752      >>stream
-x
WÙnG|×W4”¦qyI$•7IŽ¾b1ÈCÃÝ¡¸öî=3+šùúTÏÁcMÙA`[Ö^}TWW÷|:P4ÒhLy}ÒÏú¸³ýñþ瓋á0Ò¸?ΦTÓÅå4ëÇ«Šîø}º¼ec<N²ËxÁö.kº¼Ì®öžùϦ#˜¼˜N`bˆFÒÂÛ\M¾|p3;齸 Á€fŽu<Ð¬ð¡öi–wfKIVšGi¨n¬#Û¬VÚ8*t-JE•~ÐʒP	:›}€1äíuþTÒùç…ÉK‡ìRnæñí.bcÔfEç~8žD[éÿ°;
1¼ÐŽi.É!ÌR-¬C´s£×œ¤6~YhC”ªÀmÊ«R*GN#\¸ð}LS Ž­O[‡Ïo3zWIa%Ð\À>dÂ”º±ôFºµ6é†}–ê
¡äM
•Z!„¼j
-YкtK|XZ*JëL9oüsDÖrXH'ÊÊfÇ0Ž³‹'`ê§ÙàŠº—C@][ºõ\€CÄ$-)íH/8A¹®W•Dò%ÿ¿W/èÁèfEµX­8›9ғRmÑ{3/øº·"ÿ]•ŸÓÓûŽÏé)ªjCŸšî¼ß’a/HùyU1•ðW€L.»¹¼?;§nøVS‡À‡R·\‹¢†º­çY®Õ‚VˆI†ú—
-Xס*H3G\Ž3<}è|Í&ì)Y·©$‰<׍r©W4@o,@Òîè"Ô¥Èè6Yy-òe©$ÍwÊuüÚ7ǯºTìèÖÏ"ïü°,1B¡æ‰ùp††ûj¢ Áóbx|E¬sºå–ÂñýÆŒEûÊyйòþÉÜ}Ç<­—‚‹€¯ÌýÙ.ÆÔwcàSh•Œ^îH
ˆFÃoÎÇáÿ£ÒkXäOoA·†ÉN‘Ð3˜_	kÑJHŠoR€‡ùŠÜÁ 0Äû^I
-(Jé|‹ã×’’ՍℹcãíC¼×Þ·Z9£«JšŒfܝQo¨tZ€$l\]ùÈÂ
˜Å jSþˆS [?¤cY¸yùöŽ_,Œ®[„ýIÁ‰Dñb!}@70WPLi™*é!×¥øm³ý¦ä‡}šP__þ–Ëè
¢öœ D[KWŸ·
-͊‘Ñ/RåòIº}‡±R…F%Õ²žãJ/ZžEÊb.sL¨ä!%i¥­å\Ÿ(9<#5·„Ô.Qx¥[ußÂ~T ©¼-Æ]oóy÷üM¯
â‘h²mApb‰âZ%ÞË–ñMF×±/`朖z̀œGƒ-¾a~
’	ãP$º)1Q~d˜ÍÝ$ýÉ]dAôT¤ø<ùü`cîÇ^	õšÛHBÀ·@—Èú¾ƒ¶1àvµao»1¾×'UÿYÞHÕ¹?ã¾IÚƒ¢XSØf—Á’VŒ`;€£ƒ.ÉΓûÀŽ\#v»ÒªàÆñ3h‹Û¬ <~|=J‡)vzÒå½£©eæEãÛßH¿
XˆIUÊÇ2®l®»”’Avý|‘í½èioüM)mv"<܎¾Hšü£«0+P(¶,ÂfBk±ñ:ã9._°liD‡¤VÝh¿¾l²>
¼w4ß qUq´Ìÿmç;}«º`NwQmN÷BÚÑîhR^ɇáγ9°Qe”°ËpïЕPlÜN“"ÇbªÊ÷ƒÐxv`­L£b7øø#yIśV¥.PWn”–³¯`X‹
¶¯mИ8{©ÀqíKTmŽ›Úc¯°Â`w\@Iâ¢È',Š¼Ç2Š¿õ
¤Cøõѝ&°3	€ò©Á/æ‹Òð1ÁÉËQ
-0–Œ§ÚSÚêzø~¬ÁÍÝ0)ü…À¶G§[-NúŠ€µ­áÕ=¸Lgz,WëÃl;8O:
’úL^ÙÌ3¿o„!6/Å{&ÂÇkn+ä؉J®Ô
-óüˆºÏRƛˆÂŠ,xE÷û W¥j>Ó§‘â`ó
| ܉
Fk÷];³^cMÏÎK…_¤áLº4ÀöÐ-¨WÈǞj sÝ<b:Jœ¦NÃvõ‘W¿Çõ^ì0ëZê±Ý…¨l<楯÷z,šù›M´bû>\§22¿âŽx4“ ÜÔ­Ú¡~ÛÅ>…£‹·Š~¸¹{Nv×ÄþóQ¼<<˗ìüá WaWŒ%˜F¬c§#Oâ
-wýúæšÞýAæûþÞ)‘S“þUêËÿy¾ðñíN“‹l2ž†öhÂÞ~šüvò/}š3endstream
-endobj
-1460 0 obj<</Type/Page/Parent 1369 0 R/Contents 1461 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F3 6 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 628 0 R>>endobj
-1461 0 obj<</Filter/FlateDecode/Length 1583      >>stream
-x
WkoGýî_që¤
-©Ìò4úì¤iS5IEU]UÃîïΐ]cúë{î<`!ŽUU»3÷}O'=êâ¯Gã>
F”'ݤ‹7»ï~â74“>4%£ðÓ•;ê?ë&=NƸÖǧ”´8'øڛL’1¤NÌ?±X󧇻î´ñ\а7Lž5NٛI79?¶x9;鼄É͈h4Ó,sti–¶JcªGOgqé<\jQºZk©-èÔ
âQ!ҕÒòo-
-y$õxúÍ´×íáӝN»øû`Ê[‰J}¨¥KíÞi›e­ôM;™¼íè:ϧ;Wº£Mn–J—†»ÚýQ2de³•$o)ÆÛêÈ*íp0›ÌŸD±I]•[Ú¨<§\ي*HwˆÃÃQµ"¤àñ)‰õZêLfg´1úIE+q+qä›’_³~ËVñ	âÈ®$þ‘6´2Pž©R¦•)·	½4%É;Q¬sÖÙt!£'™Y¯·O`¶Î³`Vÿç Žøhsu#¨²Ó˜§gíþÐçÐÙ{<½›žwÏñ酋}r÷õRéÍÝpÚ,Wl!r`ó—ú#.ÖÅÜÜʳJÿ3|èÂ@¦Ð4Gšô–2iÓR­+…R¸z-G.bš+D{F*‘É]
-+<?7ź®d™øÈ£ÅFŠ>ÇâÞ®˜[“C<ßRQ,ðM½‘Õå«·WÞ¾Y4ÌSeøÒGƒnÉø¯g¦J'4ÃwÀê+Qq[”zÀ"¾Å\xüiSeR³Ôê_f¶
©ª„ëGFEššZW.+®6oÌß©)Ki×FgJ/é½VwĀH‹0¥¦´”¢âá8µ¼«ÈVrMÊrþÐyw£8Jvä‹ûRjt…t±M~»Aµo´ÙhÂËJ‰|×+.°O±+9Ï° “-©¶A›Ad¼l1÷tqݚ\?õ×ö0HMQp#j»bOV²”»^Š»#¤{Éugùµ]„x€a£ùFy6l÷‹½³ãæ(Ùru@ğØäz@¾{õ‚„µÜÄ«»¬"“K©eÉU>ªÙ¢4…+Ñû½Š/c&4`Ì}¿Ÿô»=°Â8™ÜLø=ãÔ4©¢™‚ùö°:\ÄQҝ3»¼º9ºÕA‹¾gÖC´DH ¾BV+“Å\ÉOµº9¨ƒÓ²×s|äëC­FÃà¥3³A®gôۋç{ðÑé•,oeIðR,eyŠSX)Ẵ݀åf¥Ò•KJlF¶ï¹ÈNt1dMˆâ{öqS(]	½”îõQ8±yÎhkê2ÊÀØmsõçR(hXa~Ö¢`œá¦€Ïªhd§é‘-vÊò¤m2\B.[J3Æu…ºÔryŠ¹,mi#7}-ç”L]‘`;Íìå¢\"~¹,%n,P	¸­4اpë	Gdk$ØçÌ&ô‡©ý´uä¶%Xü+VÛy‰¥Ûƈ
Èô#r±‡$ý„Nßê6bk¿Ì·§ôœ‹„ˆí¾öÛ͘ˆéÂS¯õjc¯r—óŠæ¶6Ý\·˜t˜Ú
~ÞC®ŸÒFlpy/-ƒÙ*¬È"ª–çŽ×e˜.eŸ1p“¯¦:-%lHç /¡úÞñª·²+¥SI¡«÷zŠèÐo3€Ì—¹ãŒ
廔§½¨+LÔJ¥ÜêÁlÜ,w
Ë(;˜Y𻶞l½^c[ȾEƒàõÎd}¡–5È.TŽ•ˆ,óÈñ{쨫
-ÛmÜ9]ªOXÕa…[a0íéÆn?&(‹;|û@Ð(?¶+·d8J•òx´_J
¢EǵÓ%“ÞÉìgŒüVó_•®ïÈn1ċ@ØaÉc|†]ñÏenæ"ÿ+î&.=¢ï’$)%¯;LÀþZ”hu,`'?|.rœÝï©SÛÒoþܯ|ÞÎh÷£€ÚKÂO
j[êìvMj¿¦¯ë0'a©ìðl2 Qo’ôìáÕÅëK°Li>b§&­yCtÅfÇ0G¼D{ÜÅڛµþ_ÇÃd<šà‡Ô&¬ýÇÙÉï'ÿ€ýnwendstream
-endobj
-1462 0 obj<</Type/Page/Parent 1369 0 R/Contents 1463 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>>>endobj
-1463 0 obj<</Filter/FlateDecode/Length 1617      >>stream
-x
­WÛnÛF}÷WLV
-‹Ö]r
-´°åP€¦)¬"( —¹’6&w•]Ҋþ¾gv¹²ÄØEÄ7Èär.gΜ~=ëRß]÷¨?¢´8ë$ê‡É„“1>÷ðk%­ÎnçgW÷×ÔÐ|…GF|ÈÇ;š§­Q2Hú	}0J+½¦r#iš+©K*ÿïÎBé·ó/03 n7˜i÷Æ0Ӛãø֚Tf;3–¾Ô†¥'f2o†ž„UÒÑN•oýIZ§Œ&³¢ÏJgfç’àjT»Bví‚doõ	ê!ö6R{ӕ“–d.ÓÒq.˜¿þ— Õeô͹[œçL„&‘¦¦Bg´ÎíŒÍØq‡ÚÝ~Òã˜Ê(I9<©žT.×2;q$tC¢X
-Y
 ]iE©žäÁÁ¢¥™\’ˆÇjÇÞúF¸†SkLùìÑäÂH¨.ÞRQ¹’–’PLi×ñÍVrxl§òœVBå¤Vœ1TZØ=1z
¯
d»Fð:!_þY¹ÁÍxÎmL•g“žNÀ[­VˆF8Ü"ú¦3çLªD‰¸ùÎÕ=Øî¹×º’ezå÷µxfe‹3µûK‰“ieU¹Ggt ê¹Ä¡;é<ùåž	øá+UL%
O©Ýo=„ü4óI–u5r9äZ;)DºQZRi¹B5\
Ío…*
ÇÉ0"F·l{•#YÓ,SµÍü!TÁzŽg²=Éo`]l®´Æ²=N&]êö=“½Ñ¸Æ:6Ÿ¿Ýë±ÿ>ÎCI¢´p_ÉàÅ
-¡+‘û{gʧV*
̜‚kHE!u(üKjUÑ¢—´¬J44iôFº‘é£/èÒ|£ó©Ç
Ý5E{W躩¬Ö„;¯NÉ9Í8p8¿§¥‡‘«ür‚xs*
‡“AOkE¨)éø¯°Á*ìµúÿ ôXã~lõht
·W]/?2dšii „Ü@‘^,ïqoª d®Únóý³Bž)»bFUŽ´ãaD]f‹·õliп;ÁԄ”5æ%æÛ
-r1Iº×°;¬å~”fQ
íüdÍ2—ëAFï­5ÖëôÕ}l?»ÆɈÏ@)ÍÔT:Í«ÒOo.ð>D†0ëckuÖ
]ôÏ.Zå~‹ŽAAðCWþ¡l;39D%¶[©3™%to¥¼}¸k”rÑâ”
*j	wÉí]	 ~C;£/бáüöÓþ/žR–¹e8ÛƒÊ#ÕhÔ»nPÔpmEqè®B<B?q¾–|£S	34-Dsú#YÚ¦¾OèÁBjR塁|°E.§‡
Ðaœ<ô¤¶»p-֧ŝ)3ø<
-Fd¢a—‚±„þ°Ñ;ÚmL^Ç0Vøífâçê	ù\/X|
a2•V_+IñŽ3»£ŸBT§Ä¾î…µéˆ×‘™µ°w†‘œk?¡1­Ïÿ†846‚wJÖ’÷…“¥0Á×96pÛïX¡Ç½xrÚ^ÕEÞ\a|;+H%Œ¯r•¢h¼òhåIÅøa ²}ßÞP|ñ¹[N§çiYNH*m<£/9Œ!¶ÎäÀÒØW'&i…eЗ5ÞV¥“9¯IY!v~,?G€-Z2Y'¨!Z*£[¢D—À¹ ·¨é¢gŸ¦opùdût7
;ÁÊä¹Ùqò)„‡½óÖÆ>ceÁ:
-% -Kn€àì¨xî])
-ÄHÓw‹ÅçÙǏóÅâ×pè™ô0çI÷3]5®#÷•·-ºïtþ{,½õ	(d±e¡?Âwéښj{
”ÃÍýáXŒ¼"a[àP|¹Œ_|ßX´–"#•I
ù¦ßl=­yžXõÄZB»ýZáí2HÞð†š8SHŒ -sÌÿ†K4yf°‘°Š¢ä5b‡¸/±b.±c{Gi˜Zb7¦—gM\¥^ïÉá$t휡ðºÊ“Ã;ÍÍÚ§š,ZSLÉN÷úS
_¡h§ý÷»“¡6©u¬ÛÇÀ»îÓhT»z¸ùýö†ÇÙt9ݙ´ÂÒUú5Œí¶»#¼QNúÔw®ÙæÿxgŒÉx4Á‹'žë_³¹÷ó³?Ïþ
u «endstream
-endobj
-1464 0 obj<</Type/Page/Parent 1369 0 R/Contents 1465 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F5 8 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>>>endobj
-1465 0 obj<</Filter/FlateDecode/Length 1858      >>stream
-x
WkO9ýί¸ªZ5Haò ›¾¬ À.ªx,¡•*ό“¸ÌŒSÛCÈ¿ßsm	
V¥ª“ñ}žsîõ¯uñ¯G£>í)+wº	þìv“>
Æ#|î㿑4Ý9žìtÎÔëÑdÊïÇ#šä„÷»]šd­sú©U%srsI¹.…ªÈÖY&­ÖE±¢´v$¦Nª3#rUÍÈiTÉ%>Ic•®HO½…[Q¦‚2K:§™tüpwòs§K{½}D7É[%L‹™lÓ§	\ڕu²¤LTTiG…žÑJ׋­oˆ±Û;8~ØmÓu!…•äÌ
-®g¥6ðSÙºp|ÂDK[ÎD^ªJYg„Óæ-ç²"áàqáb"𨫄í!Èþ0p“¹²¤³¬66Ú(Ïíù	Y˜Cџ육ú¾Â­…QOÂÉÎýÕÍ÷¿n®î®¼ÞiºÐ"ØÎ梚É<¡3ä!ŸE¹(d{+x.„‘¥~BÞ(ÕT’D•k4ɖi|¶ö j‡^:•	îaf$b²¡i¨­LèÊø:€Ä.ÅbÁÕHEöÈhª›o“J·”¨^l¸eˆ%£6M.ÿòg8¿ON(5¢Êæ
-nª‘™.KYå2ØMˆÛ®+„µ+@iËO¦
Þ÷À¡…Ñi
t ^€œ‘¾ê¾Ú¨™ªDÑ@–{‚BnT+b9+”¬M.ßÁb|‰s6’‰àÐ9ÆânÀ–£.E6Y€ÂڂY¦k¶
ǎñ‚,53E*Tà 6Ԝ Ÿ
AŽ/ñß8	(äý5Û@à=Cõܹsl>ññ¹(Ò)°©	ð·BÛ*üÿú)¡û¹p_A£«ÙŸñð+¾l´+µ?R4u»>ùæóž‹'ƙ€Â('þûMè|ú‚ÎÚz¢éœõßvFä9Á 3já8²µäµP 7×Ð7iÐô
˜âûÎ-u]0›sÆ1ۄ#åh.B¿–Ú<‚«[;…ø€>œ`ƒ#V›KÐ54œ#…ætS±£H©@Ñ'	*¨už¬¾L_À¯Q@R)ªÚÓ9Æ-WÚÀK™šæ9pè)T¬Ÿô^ˆGÐ=Y_¼N½@)"û¦?èËDg!¬]B,X– ×0²U 0ÐüuCsh€¯XƒÐÐ^¨¿Ì4• ÔLt€[¿á­vªPnÕF5½?Ví&¿ujœQ㢥ô‚g
A.¥;>¿º%ÿÝt(¿~þJPB¯Sà
Z’n¸ixþƒO¦¨i€Bɲ²HÇr¢P©†ñŽtY'֋ņÃ{]Á„n5Â\HAÀuÜÌË7ÉÈdٗÑYñðƒ¬°ºÙ:­0kKa-ü¡f¡àTûE¥/'UÑÛ
TÝjgEäsB[¸eŒb10b|®Ñ6§GË"s÷FɸG½ƒ1ÏهþpGh£¹þë½~¯օ¨ƒqhs_0±Yy	ù„µÅk¼ ËÉ sßÿîyg¦«v\FċZŠTc¯)W[i7I%#/W–E*-)oö„wuOÐõѦJ
AÖ3fMˆ·ŸðìÄ„:ø/,HôŒ·ð×ÃxFÍVpv…­E—<gX­€³ºBÀq’£#XZ*TÀ ”eʪè»oÙ8C"J•ŸYØ)tQè%’Ýò%áqUÅÕ
-F‚²c8O
å’?%Ù!>ýˆU{hõ‡ã‡]Îûî.¿_^Ý_ÒéÍÍՍ‘wäpËÍÖí/ñá‹2b¤*˜$£ÆjÊNEŸW—
tÎ^mD‘l{’Ö>Ö-lµQTßÏcSzUͱù
l“y~adÚÊ̎žmm¢>ç4géÒzඦ:œ¼ $4¸ÛfæLÕ¬™!f¶µ¢‹ð´Ù
Z|Æ]дŒ¦ðu³ynèST›2É;–÷ñm;a‘è|ó­o
-¯°|Gàd–`Š?1€ùW­xí?Üû…4¥r‰õkܺÀ°²?L<Åã,_
-jƒ·wÞ5—Â𰔜J½¬ó>d¿]>s§ß,Ø;EWo(¢ál”d¡Ã¾Å>2ºÌÓ7y´üº
-¥ó‹2+4܄qÍócƒu¥žßDŒáp%¥_Û7¢d¬´™ØkØs°ŒùRƒXŒYî_ݹ€.îç»"Û·Dö€z¸ÿMÑãqÒ;à_ÝÐëa2Ä
-K˵.TÆkøµÑlß¾£d”xë5¶ýxýSÆß; B‚ÅM/”HñýW÷®í÷Â;ðúÅ‹Oxv½Q¥¨`Hœ¸ ;üS‘‡Ð‹«¸< €þ…[ŸWAA÷ØôôÒB(i€‹r0˜Ð¿à¹{qŅ)Þ©Æqlõ†¸W÷i8Š÷ØÛ£‹ã#÷'_WNtVs~>wx¯9°7ê‚Xyë·*<
’ÑpâĠˆN';ÿìü›Zendstream
-endobj
-1466 0 obj<</Type/Page/Parent 1369 0 R/Contents 1467 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 635 0 R>>endobj
-1467 0 obj<</Filter/FlateDecode/Length 1938      >>stream
-x
¥XÛrÛF}çWô™”¼Ó/[¾H‰j-ÙkÒqv‹/C`HNÌ @ÿ~OÏk³IÅ.QæÒ=§OŸîáｐFøÒbL“9EioŒð¦ùøòSo¾–4_΃¥NÆÁ¤zJhÝk?ct¾ºm=ct¹Víµ­ç”ÆãY0k¶Ÿ1:™7^°Ýö3F—a°h¯m=ctµ
-Âöhë9¥I8æíÑpŒ)œNa/¥é|‰sû'wÞÙïÃÑs0:™4O<
-Üh5¦4ÅÑF4ÆO.iß{·é
o§†´ÙîùrA›Ø¡<¢M4(Ž’NGUHÊD&sºK³D¦RJèsnö*‘–„Žé³IT¤ð 4}S:6'KšÂx*»ör“Ò½Šrc;~ØüÖÑõx¿6ñàg	—~¬IñG«B-Šeìž?¼WނÍÒoGQØ™²hw>é™ü~õËY›ÅCQ.ir’˜L~*Ðu°t½W‡ 3Éå.:›’ÒÒTZI½–ùÀº0åÎê=	{±­@>Ëîž@<:’²üø¸°¥£¤ŒeL'U[vveáw¨‘6OøfòG[†±c# Í‘áVˆÞ¥£d4^=l?lL@s°_Ç[ªÂÇ 9ø@‰®L*À¸ñ·eÈò+Iq4åáè¬é³šu<‹„¦Cëœ0
–ÎqÝ9öÐÇâŠÏqRIâ9
–DÄÁw'#Q1—e‹üLòŸ„;ýu˪£©,hÇÃÈÞJäˆdúٜ$Hpå†}š8ö_RŔ—šŽ"ËTr&©²–II@ÿß´Äi=˜
G[tº¢È¤©ÑˆÓä.U;+OJë╹
ݹ؃ûOR+$=†2p‚ÏPœïÓòïGރüQôŽ•èÍvë,m·Jï»nՌ‡Ø0+ÙÀNi8„ci¢a ¥RCt,œIs¼ÉOÊÊZLêdy0Èg‘Xƒ5Ð÷«\F‚3SºTq,u¿^X«Ð¶k"…ªÈrªÂ>§ïy™Šì.óLE’>‹è‘&´°(2òíÎõ—=;¸A"ºy.ryh=„¥mêE4¬·’ÁˆÉásI=;n¿Ê·—ÕÅÔfsϯ,u^V ÷8Æ\8™`mî_@òWt!a¬„µ&RÀUÆT¼Ù‹™… ¾;IÒCƒÉÂÒI&IEÌ®[.0™±Vq©
UQƒtb+&[íähe‘Yõi¿GèV—dµ@eg2ûöBOš.5ÏÞBAAì^NL䗹ℚmÿGæ†ÞÆ©Ò,+~üŸ¤Vi„µÃ¯ÕÉámT•Žkt=!…«%×Ìíx¾¨R­V7|=C4˜ñ¢	îALcÓ(ñÿ.†wÚÉ©;ø!7eVãvDô”
ãýž(ÐsZ3¡ó
}䄅ˆñÙyò’Þ@Òx²ÖšÕҎí¶0&±Ûm.í£*¶[’Ïpm·•°uxTŽ^šöÕËû%N´vg^Û2›¹ÆpôÈ}Ì¥W·!¬ßëìZìSX¤\ߘ.%#G•V‘•(¯ûêølY ÕqåÒù€¾jÀ[”¹bP¹ôBìYì8b£aDW–s…TDG…×NáP¿¬Fǐ#?‡ÿª¡Zðîöð±™>Ê%WI6˜ËNY²åá -þ@Š¸£[f±Käí-TüÆ­¨ÈàÇeÇêx„¹&qõìD¦ò!A~pær±Û!q]ÍÊ"ºíœïߥBȝï%î®Á4'N‚;>õ¿Bëè^hqyß´Ï"ÞzÉ¿tÇ,5fk‰<R®s„Ê3öiuf ½6§+:¶
3jÆ]JùVÉö]ÃЁªë—ËÞ¶;MKM1ë‹BãÆ$$Æ¢÷«„ŒTÎ2Š|¿¤åsiqåsÉëæ7±™‘=[h´­ISËÞ‡ð›Y`Y•CWpÚmù%žÎFÆ P£É—¹Ù¨ÊúA¯†›î·®6bo×´6ý¢äI:‚¶¸õü»OƒÄ·qð=ë	ùþå¥ø8	9rô‰éŒûí‹ìÍpˆÏ m®Bè؆k܉µÞ¯?ÞÞ}¼Yn~ýºn~½©øP³Á¯C„…ïX—‘þ~½JtwëjjQ‡}——6zR‚Oà3óOeýå—ͧO›Ó´pöålÉ·ÚË^QˆÛèY·Â~…+_ÒæÁ" wåóµ÷(“¤Ö>³_©mÜ£±7p«n˜©Ðg\3Ë<Bž ÌCêMžzþ78ୋñ$Üe®¬QöŠ¾Ü¾ïû»ol¢’/Ån}Ó2]TœÎ}(âŒ5ßßX¬Hwâ%g9UÑm㲫9 g:£ÿÁ
£Î׃Ô2Ç­x}ÿ)ˆÂÂʌû¢¨ú=|	à®­!¾-ñ•ÈÂ
»~{ÿî-ßÙCLÚ.sÀ¯ëé׋ъÁú OÓ`1_úž†¼Íͦ÷¯Þ
)Î\endstream
-endobj
-1468 0 obj<</Type/Page/Parent 1369 0 R/Contents 1469 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F6 9 0 R/F8 11 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 640 0 R>>endobj
-1469 0 obj<</Filter/FlateDecode/Length 2010      >>stream
-x
¥XÛrÛF}×WôKŠrŠ¯&¥¼lɖUŲ³!w]©âː°€3­Jöß÷t@BPòàÚr™qéë9§{ôõbJü›ÒjFó%ÅÅÅ$šàÊé㷟/f«U´ ùÕŸ~ÎOßrZ_Ì_Ï¢×x÷:šáîb¹ˆ–Í7¾ûfs1~¿ é”6)ü,¯V´IÄü„6ñ宲G—™}ôjó.›Éh¶„›Mrùù <©J“³…¦$S{cÏbGÞÚÜÑÅÊPí4¾S¢wõžü
ÚBe†r»·†ÊÊÆÚ9R&¡ãAÿsGifö<¡ÑtŽøáïÿќÃ>óÉh²©8Øiç;á4Ѥ¶
-Aì‘ûÝåºp”9Z«b§(óNçiD¿Ûú7Â%dKŸYÓ‡íí¬?+v‰Äoø¤êJgéòA}!ñ\?ê|@¸p<dñ«jÑZ£:ðR ëRíµ#…-Ùݨ“¾Xç2án[“GPX”,3øµP$¿.%˸‹hÃu—H ’`¥Ì^SZق¦½Ü¶\l¼ª:÷ÛWítBÛË)Ø«£rîh«Äm_	RpƒêèŠ:/Ó:§BûƒE1ÓN€¨>lǶ(³8’FÔ;.Jèõëy—´cíÃÕ
—”æjÏ	ÂÔ1Ës#ÎëD^îT/$ß- ÈIî2£ªuçÒª<·Gz•ò^¡SûdÇßøYtÌplÒñ1IGGtת‚ì_B£åýù\O\û¸!ÔñÁyi㨀â½öâ¹s‹-êA`ÓkPatÌ0ˆè×
-´â`c_å#•ûQ¢síµä¹·|'±GÔ ¤Örg¿1#\¦YœiãÑt`6×Êù!c«iK§²!PŸA¸p_`ZBxöÚèJ±s|pꝩ‹MU;¯“[7ˆVZ¥^WÃ~ʽ4Y><þsÏÀMm 6ñ¡ä‡(+ÂJ‘ð)ÀØqîÏkß6I:W
wʳ¿.õ8¯ƒzÔfàÉ¡#Šiž?‘;Ø
-—˜÷Ysl͌YÛ!H;í
–ÝnfÐ'éFWžf{½<ýSÉÁ¨ jC©3Ë$C³A)£U𙩵‘ão™¸f}†3ÇÀ8(NÊ \<B3³=°gö?q]÷¸WªJô§è
ß¿^Ž¦Óh2Ÿc„@£·³×
-÷[†6·O2ŽjŹ@kôÆã?Œö»Ì:2
-ABœ®uõßïs2š-¢ëåê<,n­ïߐ6
-2Ÿ,:QGLˆ¸Lê¢d˜«G•åü@PÁƒ÷åOãññxŒä¡2²Õ~Ñ;“ʹY"i[‡
{Y+Uüh8“¥)hϬþ·É¾	?gf>£†£ŠôŠL¾ÜªÁ‰wœC'
_•C勾¨¾‡]_©8@Ÿ20ðÝgqeM=Á¬;Hʐ>€º·&óxHP¡è…5Àé³*ü%¿Ïvoy†oÕÉêÛÛ
2bïgŸiÜ@`
-Z=~{ÛRYãë Ì£^;
-ÁÁ,”Dz’… å·E ]˜Ah"W!ޝ¨¦Ì!g*5ÔÄ!ç,
-¤è4­ÌÛ"j®†	²¢«TÅ<QyC(2׶v@}¢1àdŒž
2Ý~™0ë
ç×k ?ÌI38z¾õŽ¶²êbs© âÀE#͹UÎóÅ™yŽÕL%1ùÔ{y¤WPWï`9¢7½#oiRÏËaÐ*l.Ç*ƒ87ut±Kp)†²v辊®¦²r^ƒuìù¼"Ê£ùõ’ïÿó4±XèZ8>>G䀧
-´ù}>Ï?â¡xÕõ7ν·ûuî.`Ú$q2ʍm†*Tûkâ‚ø@G]‚÷¬7^—͆”Zžÿl…ëÅn¢Æ¥^u‘ºHÿY`æ‹ëa³×²°/x=ç%9ðšŒÓÏôÝ<¯
-^ l— :"°;e´,OØ»N@MO…D‘ÇL^„.‹nϛŒI£ÑyYlÿNUZÀ#l=/XÞmãóGúbvd<ød¢½øÚÈтipƒ­Â|8ÐQ œ6x«Éçםd?[˜^{…¡=BžÇÃ¯o19+›Ó¯Êèß[ŒòCÕc†
-.Þ$r"éPá;'ß#?û\Ÿ/Ӓžgñócðé—AŸ‡ßéü­ØbCÍwJòYòÿ§ÀA£¸=m_1pÜ*[Bk¾ÓïËyÏN1ÌJ¬ŸÁÃPÑ0^Ԙ'ú[†¥âÎÀ¿ÇéZN¿—?¬_oÞÝÿöéÓæ‡ívýM(æ³íք1¹ý1ú1¼Ñ.5—@ÙÑöèÅ
Úmå@œ)¨Î±;ô\b¡B©ÜvÛ3|ґfÅåRb©Ç2¯ª'ºýðaÆ¿ÏJî3£{Ñ4	ï:aËì«Ò×ÃH+:Ûã–ìö(Ó¶O$0œõOzÛaXT…ÖᐠÒÒ!7[i™ÀÑuÇå}³°4,—‰ŸïØ™A³ù
-ñ­ô4¤®š–OçWÑÕõœ‹EøcÆúæþÍ
NMösôÖÆu
y‘Ø„6]®¢É՜F«É5Û\F«ˆä/ çS®Õ;>´É¬Z¬Ñjy6ãŌͼÛ\üë⢢®endstream
-endobj
-1470 0 obj<</Type/Page/Parent 1369 0 R/Contents 1471 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F5 8 0 R/F6 9 0 R/F8 11 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 657 0 R>>endobj
-1471 0 obj<</Filter/FlateDecode/Length 2189      >>stream
-x
­XÛrÛF}×WtR”S"x
EJ~ÙÒ%vT»²“YWj¹C`HLÌ0˜hîÃ~{N÷”DÅÙdåR•$`fúrºût~=P?š)SVõ“>Þì}|{4’S:Œ’U4LÇÉ`÷TÒôh2Lú4–1/NFXŒO¼8èO’	ÒÓd(«ý$Ý=ñêpÐçÝC–PQÚó^y’³ãs¨õϒ3^…ÚöIÎöOñœžŸŠÞô|IñIVÏÆИŽ†ñ츏¿ñIV‡c¸’öS±*=•UyâÕËÙQï͈š-–ñلf¹@Ò§YvüÖGÓ ê@]šêŒ]yü{ål¨]I”Õ%žßé°qõlªïM¦yÓEž¿šýÙNAw0HúiŠÌòãùð´Oq½5`·Ü°±Ø2ե΅BS§Õpë¬	®¦‹•¶¡CÊ攕&»#g©óþïäe*¯Db¬¹UüÄåj¹±^RÿÉØÜm<½›Ñ' èƒ
-šGHcñT–tuM›B[Z×®ZÿEåÝá(9Ohë;·¡Ì­·¢iJk	ÑÑÛÂ\ßëÚéÛéÏÓÙ÷·ß¿Ÿ};ŸO·>è*ÎçV‡ÊÙùü»ä;
-Ž
ï?Hÿ3‡vÐ>v˜éu µ®+ã=0ð¤<m]C¹ÖՁµëÚ¨ i‰lÀ¶š¼	:¡Ÿqbc›Õ:'•WÆjÀz¯©6«"ø}hg´pŸáՍÅ~öJÀ…;R6ÈÁ™ÛÇ
™€
|XíÃvþYD´¡âˆBŽÔöJ¦*ÎÔ„Û€ãäÕõ[óãù\,Œƒs¥ß£ý*¡Y¡kMÀP­±¾#zTº8äð:Äè	å5\®eÏÞeä’Y2\š,ce^È`“;5>AÑ?ÏEì+Xë„ÑÙ!!BËî£Ü€WYº
ŸGJ‡M*t¹^6%ýôñðÉà€eM¥±wþ5ÆÞåßݒ¦ªZ(‰;!¬_÷zžß$®^%ôIS¡sE•©k$‰ÕJ2…¾ayÿ?-Á‹(`¼ãµcºÖ÷ºtë
-‘ŽK-¥¾¬á÷mÒE›£I¦!!‰×¹ê%‘Ù‹RW	Ý,É»2"òŠíÅ¥"äÑ]<äHHø_´,ûDÜÁTKdÃ4s!Э®k.0oª¦Dæq>^^_ÑBo Õ¡Å»àl6›Äߙõz› E{ˆmó¹ç«E²ƒKŠP•/·õ¢…kV¡Ó¢Ç UVYV¨hxÊՖ©Eч뫺†Í9]*k
–ǝÖk©£(
»8¦óxš†ˆŒY·0„~¯ÀèéDçM¢š˜´rœíLS¨–‚+v«¿BPnÏb}p•^ݼ™¢ø
-ø° z™YúÞË2MêÚU
-5.îüdÍç¼- œd‹A’¹ª÷ßò.+{6äøÿeZßÌ>Äg]™ƒ¦·—ä×:ó¯i)ußIe²Úy·„
й«ˆº—׫£ó§¬è¦Ãd2™Ð`ÄcœŒ)hÑþ¶Ü'ÉÙýnÂc vü€ÂGÞÐ
-í‹iìëŽ=“œÿ[”Ò2Ãã#¼Îu«È6ÕîÉ­Ö\b9=•Ð[²k±ß“ÞÉÃ,$TŒ§½TããôÝñ!³,HÖîEO÷¬6mÖkW?c´ÿ}Nhùw-ŠÁña·}ƒÿÚÀdéÿ"ñƒ«‘6gïÞ¢œ¹.”ÂêºÁ®˜÷{tÕîÁFð¬Ö"
ø	S>ï{¹³LzÕÂ5!jì²F¨NK%´ªvæH\}mCO”‰Þ£½[°g¥i±(9HëR+w!ÑñÐWÉy£Ó<k€åFm=Ü«´¤Ë—úÀ½+4ÚÂ	‹ï!ɬƒÇ
-¤·äƒ‡æQ—Y5ªV|–MGOʛŒós»€ÉÀû,´
-
'mxú>˜
-s؅ŀ‰ÿv.°âΑ¥âë;¬íqN²-0¬àpW®Ö_hmGúƒ¦•žÇºÜaÔöÖ
·J¸É£%——DŠMk<+f#dŸÃŠ¯¼L½Ò70$Z¼:À©± ¤8vz4ž2g°jQn%ÊU$²¾˜˜p³˜Ú0@*Ýle—2¥0”œÒÓrëxIø¯U	å¿!œÁ_.ùš„>E>VìËÁ»Á›çF¦’]úï°Ã@Ü-
-¥KóÞ(ºúçt?Ëpšç<ŸË݅+¢„c‡Ne…Îî Ã`>j¾BSœÕÈqD±Rwh³|+hË,Çó/.j£—'˜›ù*°Ä_»s:ËÕÂ\ÛñBé9‚‡·a_ht#ÔF[Th9(ç vžÍétÊ=µðdCÚf.‡ô#xšïÌ0Éùx×Í\	£Q+.qãFüæXÍ篾B˜c(ùú³g'Œ2dÍ2l©sÓ©xl-\i04ùÜE
ø‡ré(PÑIÜ3À¾¬8ÁÍ
-k a'ô£¬ß Ë=mj|êùTþÆԈ8
^èwþ(ÁdŽ¹++øÆÁi)4$¦6æ~üåÄð`;©ÿLmAš&
•I“8ŒI{n
Ҋdҕa'
-Š-Ig…5™*ºU ÃµvÈRàÜK,[o>«Í‚Ùö=fCìDŽpˆÄl¶•§
Z·U6ÅÖЩڦ³A×
Ì"
\ŒKÜûeÐöЏû—ñ—%=ô-VÅQ—;ªt#;ø„æZ•xËWO8¤˜Âu}"’~?ž-=ï¼¹ø•Tóá~ä:ÛÍ"ƒ_ÆÎS|ã/düièâöò‚>ÔëÝKnâÜ`<Iúg)u'ýsޏÏmÈfËx¯”9ëNÆ6ÍFøž7ŸÅ¯S£”Å|?;úñè7dèöendstream
-endobj
-1472 0 obj<</Type/Page/Parent 1369 0 R/Contents 1473 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 662 0 R>>endobj
-1473 0 obj<</Filter/FlateDecode/Length 2127      >>stream
-x
¥X]oÛÊ}ׯ˜·*…EK²¬Û¢…}o’k vÜHEZÀ/+r)nLr™Ý¥ýûžÙ]Ê4Q (Š$v(rwgΜsf¨£MñgF«9Ý,)­FÓdŠO.?¾~-§Éšnü³¢Ùíí媤íh~³Hnèv¾J–¸;¿]&ÓxÅw±-VëdN‹õ
-ÿŸãŸ‘”îw£ëOšÍh—óÙËõŠv™?wJ»tœks&#åHׄ+:ë6ù°û>šLi2»ÁŽ»lü/ÝR¥…#U§e›I~àúÓ2î;¦F§D>îŽS©”«RZ:圬I8”É}{ ReIV:rš„¥ªMþ=Ÿ&ô\Ja%eºþƒãM{±XYgä
-I²v
-9òûÖáR·‡‚÷:¨£ôO¤ºvò'2ËÃc_%­i}’ןҘÃd6K¦77Ô¥ü2¿Òû|â“ù2Y0*/ãgm­Ú—ç—ô3rTœ-(ÕUSJ'©–®°ÎˆTÒ˘r£+Œnd­êC[£Ĭ{q¾|àÓûUàýSQ²ˆÀ“_ïž=ÀŒÛI–åÿŸTDÞª~ÅiFæmYži/Á
dæœHqëÀUÔi[¡¾|5ÉJ¨2¡_umU&
(a?È¥2Åõ°”ÌJż÷:;wxÄ*%´Ãr+ª½ ޟ7,•Åª°m¨h@¹­ö8un¤ðWn@„q&Q–¨ˆÌ|…@5d«}²äˆ…ãU&&J–:mÎ
T²åB…7¶t¢˜ÌÉf¹¢ÉÍ’]~×'„Etåu8ù.©xH§¾Û§³|´µ¨ÒJ‘‰'”ø]Eˆ(©)™ƒL¢S¬ô±Ô¿gNOfŸ=¾…sÍ/××òė!ÑæpEi©ÒWvŒO¬ƒEx…‰@ÏúòTÀîöâÛ¶i´ñlx3§1ý—u})l=#@+á€Á;Ãa†ã„¾€‹Ò¢±PŽ¤Bo_=tûnCæL¢It’d ±WOh
5tø_@ˆõ½Å3þN.AX‘ÖbB
Ø(²ˆY8B[Ã-XglŒNù"Ó±d´…;‰s’$Áz†µJÖ3ÚÌ£ÍAµú†fðøäY'³
L$Z3
ñ+¡ß4ЪY¦ÎèÒ;þ7Ugúdióóúñã{øæód>a«
ÌÑ·Öc®ËRŸu(ЀÛF~«:¨Z”ôۗǻ‡§ÄÁŠ¹ OyTºµð•ØO2:)W@òENè‘ûBܲB½

)K{tˆŒ9xbì<§{V¢_C&Ç´mdÊK?fŠc¾¢XNÁŸò>ëñ_÷ù¶?ÓW•Ü)·øÙÈÐ"/ð 
ž;HÜÌdtÒæõ`tÛBò§H’¾H’]öàMGšÊr’輆öÁÍ`€™ÊÁ)YC¿HÜsEÀÊÀP£ÐÅ‹g ?¦Â—'ø˜*Vk5p`Ý0æÞÈ9â+Ï´
M$©§£÷ÙXBw¥ÕŸžYtñA#a	*_À¤¹[Aï‚h­4°|o~g²­<´˜^ÌHàÀtòÃBÀm¥Æê£4ƒÔ_ÆO»xÇ{ˆFîðô³u ^hòö
þ •½â֙iŒ( O.0‚vOŸ©Ö§—3^¼
-Ø>Þ³»±"0°­ƒR¬m‘½ü	Ö¹P_7='„賉M§[hݖài†
óBœV,?U£;CøBO
-QÞÖ^¥¢TÎ÷¼"ÇtEUð7¬ñ“\¯Àü$n#›u	ÞtÿõË·íÃÓgÖuBŽbä(x­Qî«@Ԏɞ¹Ú¡#ã
-®'ÔÌbiCQ†h?XÛ¢8ÕGOei”rVvš©t†’…1¤­e{ð
‘G£Jbq#¸òÌý
¡ü¶`F·q05ªqL€Á<f¿Ó-Ï͏[ꌔ/{¸ò󽻛F›íḄ®€Ë@—h'€‘˝cÊòÎÀd½¤î(ù
bg¶õhÉòí(uR¶†¨1ì£*"K™íFþÀ+G-ºbxfóɕÁcºæùt”‘
ª‰‚MIÒw½èA5xÎT¸…IЍ…ÂvÍ*@“…£Öʆ8´t‘U
-a^Æԅ™ÇNdS…dæDЮyçášß¼º¬k•a(GÆ©‘8®‡÷­/aßÁZpüɾ;I9äEp0@%2á=0Q²­Ãœ!0¼ÍœßÊ
	"Ë“S>u,©¬,ì6Œ>OU݆.ÐŒqWÃÌ3|HÀ`uYrè
–~´
-©¾™±Ÿ
•´Ô8–»íQãôèüцŠm¡¢_äýÀú)‡Ý¼¯~†4Ñþ,#®rßÓ06¥•ð‡’Ôþ–vD7-ø9¨í^8ßO'&´8ìeß	’…‘¥.Ab~'c¦ˆ-õɤ}uMρ/†º:¼ÖöƾûðNS
-øclÄñ~P‡Xwì­·P®=^‚!T¶0¨Ä+µæ¹íÃWåâ~œŠ0
2Å<ʆ
Ä~áûøZàmއšb¹(•§ÅßÃsOÀÝ,G$Ûî
SSÕPà–ð7ß?£ØÁÇ .¼Yú×9@Êkî¾lÉ¿m„	îϳô/Ü&û·Kq–&E8-4Ø!xԀ»~Æ{öå{–Ä‘u_
f|q±¾¡å_s,oyhÝÞ=ÞßѳÑß¡1L¯áÓ†ƒŸÌð(/™¬¦›ÿiÈ]¬Éj¹Æ—28e±àÍ>îFý#¢·“endstream
-endobj
-1474 0 obj<</Type/Page/Parent 1369 0 R/Contents 1475 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>>>endobj
-1475 0 obj<</Filter/FlateDecode/Length 1937      >>stream
-x
XkoÛÊýî_1p[T
dF’e=
-…Ÿ÷¸vÜXin
}Y‘Kkc’«Ë%£èß÷Ì,—–hA› €øšç9gfóÇɐø;¤éˆÎ'ç'ƒh@ãù0Óx6Åïþ•šRyp1¦ÝûW‹“wci‘²ÉlJ‹„`g0 EÜ3¾µù®]Ÿ¶k¯)¶E¥Lá¨ZkzÔÕÕý§g*T®É¦r/³/¶ §ËﺤÊRí4™B¥¶ÌUÅ/.ñçùöó¿n?GßNt6<FðÝ[Àlœ]TüIÁþ
-Wðgq_{Ë}‚Gð´ì%V;R=?\9휮êÍï˸“3¡;ÿLn­P¨e¯v¦xilUp
;àJ"EÄ&pçl4A­í#âò|}u•ú‚˜“²”úZ»*³ÔUi4ª+åÙ¯"ªVþÕq’¶èìâÒlªwaÿ<¬ÃZJû|X>}.˜ÓªŒ×½BP†›I	PÀEjk\ò­_iÀC%ýN€x/$æßÕ?t\W:¡ÕNõýè2­#ðÒß»O‰qm¤iisy†ZîÅú.ûñϳwºHw…ò‹®î‹Ô"Ti‰Ç—nḅ$ÄӐµÒ¥\MßçŽ7
<۔R
-¹)mj2í"z6E¬Å`©ÝÆ ‡[šq,,Ra«@<ÊëxÝqš[€—ùx$ÈàZâøjŠùï
½=|y^ Ig’–¡l€$ÇĀù•-wm©Ø/ÞJ}>&Çð߶¯Éí]\¡ÖÚ𛐁Ç°«êrc몋³­†n£c“zhñÄ=—Ž	¿»U­#ºÂõ•o2ÝABîЬå2-u²\Fm÷)×ûlO¤¸ÖmaY9„âñµa«9DL'ïê7ùyýŽ2à]j}©"Út ‘ÇhÝÁKfí«gøõ§Ç»û_¢§O¿ynlfbÃô\#ºgIóû0ë½0É3èäÔçùñnNC¨d
-¹¼ ³ñØCfÍ¢aD׶HÍK]ªÊ@ËïW•uÌ¿Ýߘ¨[[¾’ðÞqoÃ
-Íñ¬’y‘c A5ÒT—šéµÂ‡³CÑÓ͵ĩÐOìÖÑü‡ՆèL«½(ö…qØêû“r¡$óån#±âU¦%˨’¿þ«
ÁÇ»¸µgÓhÆÓñ/G“©Ì“·Üäa;ßÿøpÛr7±â}c1\ÅkS@ÊÚU¤â:]¹ÿÉëÙ
™¿åŒA\jL
CѳÊW¾š[“e¤2gម\o”¶ñ~Ñä<E£
ÏL¤w.£Þa*”¦ÚQn¡@LÌ\9ž«Òe§åBÀI4˜\4}ϘkŠR½Esæ›ì	¹zECÇüRˆË†‹7ÀÑåY‘äHkd±b¼°´R¢WªÂ6)èІYoœ«eÕÙ®5®K‚ˆ0üx´¯¬æ
Rº)›éÆ
-J÷ª´Y†/Ùƒ
-@ãØ";=ÔLZ~,{²©õ¾`wò·Âò֓d°e»C«ÍÚ&mã@…Q	r`iÖñº0±Ê€båÀ9&zÇÕ󯗟o;¾¤a|o?ΐK`}ìͧ‡ËûÇ®	nwו,„ÝÁ8ˆX3dùMNßUi¼x@?°
Ê¤KUÖBÈŠÑ¬k—qU³
Ö<ô=Łuœ
°ÌÈç®L¨æAÛ=/rː¼êûì‘̹썍×"På^¼”ȄقìF³òÊ´º¹Žèë:ÌàÊ"
-íBtðÆÜ7+<>€œêøôC-:F÷²§déBú}Ï3¿ð&”øÀeã„{êË»"Š+¸[QZãkôòC˜­®ëk±:&Zq„ÎFôol·¶u– ‰¹ÎWÌNÞé¹pPj©c©_àSžà¦`çOÃÕÁQƒ±nDö
ˆ²™ò˜•²miò§ˆCfcæ·w‰
-7s!¼Ñ«Ïû¥6nݎ|ÂÅÝ÷ٌ1öpåw
-Á”'T¨´dG[㗽7yàÏ<‚ØŽÿfš¸>Ú-­T,ÚŸ´,Iß,¡ÚÈꈨp™:miôw¡É©LøFÝ;¸Y[`%
><Ä.zÍÊÇdkÐD´Vq¿«Ì$\gÞZØâxÄ7ë¶ßø@»ã—iH)ÏÚcÉöþŒƒ®BÑlË_nˆö!âøZðÀ—åX­°?úX¤ø¤ã×÷³Žh>ÿK8ÍV&ǔ–ú(B]T rk="îÔ~<£eyzuœh›ßÀN[Q8ŞZâ`Í\
-ƒÃ­7ç¿wæ ~\„¨–=9®³¿}¼ªŒW·Œ¼#ô©4/ëêËM 
‚‹°´xØÇÜÊþ’Õ¬A˜HƒOþšÂxèú‚;î^a¯S9B!qͤöÛ¯ýŠ¨l«v{`´ŒQ©ZÑõ¡5Ëɬ™¨C¬¥³Ùˆ&8Ñæ²X>_>\]ÒSi¿
¹tcãš÷5RÕáÿÅ2;§³é`ÎÉÿµÐŽ§ãh:™ùUp|Á†o'ÿ<ù©±¿,endstream
-endobj
-1476 0 obj<</Type/Page/Parent 1369 0 R/Contents 1477 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1477 0 obj<</Filter/FlateDecode/Length 1449      >>stream
-x
¥WïÓFý~ŀt␓_MrHýÀQh‘hJ!¨­B{}ٞí
Þ5áþû¾™õ:¹„RD9!9ñîÎ̛÷Þl>ž
i€¿!ÍF4žRZž
’
ý0&cšÌgxá­)—ãñìË/†Ãñ鋫åÙ£ç—4œÐ2Gé!À`@ËôbšÌ“QBOm•›ë¦VÞ؊^TÎ×MÊÏî1½ÑޛꚚ-½¶ªäÇ·N×ôª¶¹)´{¸ü!¦4rˆÑ(
†Ô͓Éx„X‹ß–Ïî…E“vÑEwÒ¶=„\³ÝÚړq”™<×µ®<嶦?Luù'©*ã§Å2á“ú]”Y2Q®4kìuiã'¹±;ò–Ò¶4Mu›}ŒÙ##ñ§ó¦àµNkÙv“Ò ©t@}À,…™r[è’óôíЭ|Sk')bÝhš0Øá´öÄ@)ŠÚ3Š?kÿ¢Ê-ºû±Ñ'Y>‹êO€Ÿ®µOH²~à(æN…M¥Y	ýbw‹{¼‘Á9ÈÉlÑCÀbµ£ÊzÚ¨O„-[…@[…®ëӃ)7ºÈzd«âVrj3ØØùmT­ZnЮR«Êa…òGÑCÝ]Æ؁2Á,“zqmkÍ}2ÕÉñ™©uêm}û(Ë؎(ß<ùõ¥½u_¿z±ìÑncÒ
À+ƒKU݆ªZ_¥E“qü¤dFæ¨nIœl~˜o,ÑLâ¸êÛè-‚51‹ $fQPê0advç@ܑ-çüèy”Ø
ÿ– v«.ìÝãÇ H)ï®»VÅ{*¢ç]¹NX:ø.0·EawØê‚Kҟóõðq< Ë`1ýÑ$d\HG¶ÊoèGZá_DAȽÿÈ\ê>ñòÕêüíjUBÏíþòå1,K´&Ó¹jŠ`ž)i·âcxâ°ç‹p`{X*Ujšß9U®UPÛjÅçw]2ÜT-ëç|À¨?™ôXfˆ“Ö?X­oK3U"¬ƒrÞ±fÃ+»z‘Ó­mˆшWƒœˆ¬€î_æ\¬'Ë?”óŽ¨Yª-kE’ä¶:5 q{{Єu
Úhµ.´ÈêÔCß7iA£©j®/§Ô§ܐý‚MÕÂb¸>Î	'”¾èÈÝ-UtfDqXU-§‚³eß!Ãà”×Úï´® ¶kH6àwƒ@˜)\tLÍ0†’%?KĜIÞÖ`þ‰œösã2΍ +ŒÀ(+›ï‘¶µ„fIšÈJzs?tip‰Õà˜×uBo¤éÅÞ¼Cí(<7ŸQ‰ã1 <ݯô±«âÌGá Þ³³õ#°ÓEѓ1i<Fµ=ø ÆÄDþ/9´
‰³êê¶e$ÓoŸõ>éPÝ©—o›pKŒ€"7²•…é%³ãÄÜã<½j<í”ñ÷XuLF<.n„þL-œÓ©çԘ¾bg[½÷4&Èؖ¤lëüeð$VHuÇiيYřÆ;KÔÄÎe7¸eÀ€“Âԑ0¤ß¬;d؀堻€»ŠÎŽ4Ô¥cö›†çÜ
Û4b”´1Y¦«ÕÃãAºÀ] ì
-|Y#§à,ìz@’µ*ÀDæ–èTá-§¦âU‡3—†£)|+áhÆì¾ç›<?JÙæa†òU¨§G•‚`JØ,I".ß0º{߃ßñ×T6
-ÈÅð`÷୅(
-gŠG±÷)³Az+†{(ë+cx,~qx/ýFÓø¶ÏDŽ9RJ2X[ŒÊ  î¾Û‘³Œ—›¸¬c8S´ÂG³Ø\õù~~ÿoÌ[oNñKe>¦é?OƬ\Ê®žðτ¿1è'›6|Y–[+g؏;ú³
®ñ†sÈïø-2™M’ÙtŽ;8s2åPϖg¿ŸýváWéendstream
-endobj
-1478 0 obj<</Type/Page/Parent 1369 0 R/Contents 1479 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1479 0 obj<</Filter/FlateDecode/Length 1917      >>stream
-x
XkÛFü¾¿¢!à 5 ђVû2`vœFâǝµÈ"#Q#i¼ä33\­€üø«î!)…kAl,öArº»ººº¨ßϦ4Áÿ)]ÏèâŠòòl’Mèj~›]Ðüæ?Ïðå5mÎ^/Ξÿ8¡[ZlðÄÕ
~XîžLh‘Ÿnë,U*îè%-ñï_?/—•wSè€ßîž-¾àù9M§|Àl–Í&SÏ®³ùÅ'¿¥zÐd]¤|§ó{½¦ýNEZ©šžï\©‡´v:B½_ຶ4H‘ùâ€L €ÛU µr:KAo› ã.êmv“¢^e7Ù,›gô‹±k·tû_ú˜²¦O:Ö՟Ӟ ã«lÎùþÂÁgæic|ˆ„DËÉOQÜ
=  ·fo^-8ËÜkõz$©2¼®Xkhð)*靶õ`ıqz‘	Bƒ7:ÜGW
F4@Ž[¯Ê0 e×4x¯ãιõ £ÅN«µñ:Î`Å7 ã)w6jíMQÐJS©ý–q6è§Y¸\½¨HË8`qnFù‹årŸð:í1CaU©€P¯‚þ½F4†ÅØÔ½±[‰S:À…ùòÆ»’´ÊwýÏÕ½à’¨Õ€³üu[¸•*>“«¢d6¨<Šö`O®PüK:èÀ …–_»˜P“»ƒ¶ÁDƒ‡_ö‚[B¡áø¥26âQ*UA…Ž‘›†?I¨¼¶øEÙ¹TÚL@Û_!ä	‰Ð­#-„$Ü#Ä@ÛÐ"®–Q®b£½¶¹½ÝÐÁÕè[@ßi»q>×`#“‘On
gi
-Î2¾W!Ÿ-Œ”Ð	bŸ½{õ¼kÖ…๒öÞDœŸ#zàˆqóCR„£‹V²îà°å;cõˆ¶xÎÑ÷(л‚>*«úßCØãDÔ WŽ¸Crí,"¨Ze˜H¾Ú+‚Aòà(¿FKp* ðN•L·(2œÆùøiD«:BIè7ÈÍoµÛKÌܕUžr¢^¯œ‹Rà¢ÕNá4#Nùç5c\Qò=ªÿ¾02ÎÓ;“{Ü&Rs9Ði|"
(àȂ„
v[9¤M|㘦C;5B
y‰¬¤ÔGoJå„gðš8<fÐö4!{„0é
-Žˆ3ÿ·0lµs–0Ï.i|9ËnXOï,Ù‘7£cï*€8Û©5z,Šñ¤˜n*d<¹¡íñæ¤rzeykŠj'&·;L&ZÆâ–{SÅNEû©a4}{â'–%ߎ}Ë¡f~¿™)
[¤O_M§Õð>(¢áíÐѸW´¢•Á~ܲÄ$F@prjþ43imÈ$¡QỢ­¢í"ä:a`1=ìƒ#͞R‡i\¹GYC"q¿²þŒ`’ŒÐd&ïghhˆZ­9§/uè|ï±Ïàú¡Ò,¼Üõ Ê!ãÝLG’Hàòc&âŒ}{ééËôèGb’†•VöÀƒ œÔÈÉwP5Ž´Ñä¼ÕOðÅx4ð¸t\êSÆ .°–1M÷÷B7ēª°\«
-›
»&.ŸdC¤9§Åû¢
µß´è¶à$éïà”VF&Ԣ훺(ô 
-³Nö„m¹xÛiy*ÛðÚ)eIâÃn²>­Ýh¥ñ$¼çn9£áZ»Ô»Aßt”¾ïšE@C,úá7+<É;O2y‡!ª+äß8žu²T#ÉK¼.ÖlŒÔ
-~
‚ªy‹¤<:÷V"¯^q­ã:P¨tn6•6Œl*{ãu¥Øj6¼m¡>5{å	¿a[ÑLµ´¸±œ}¸Ð4x¦Ö¶ª’ci£0‚ײN0&sPWB‘dÂÛ>%ì6Zž7ýd‘³ÃEZ÷1ÃS%Ö¬ZE•˜
K/ÆËgb͎Ê"ÒP,UR{ÞhL¸x±1›1–ñϔz¯iR­˜`)¯5k]§OÆ´cLw1Ñ éÎr°
-¹¦´¯™êÈOlõ^C’Û:x4Ž…]2[¼~ß&•–uÂ0K1íAÏŧ…œ›fž
-e³ï’©Ä"ÜÂGjïÌm·m÷·—=øgÇìHúÄIóO5äÊ›¹¬ U¦#ÐiGñÝL¯KwÙ ŸÑk £¢nÿpe½Ø,ãM†^³‚­‰@„DÛý7Jï’æΚÇô"Vi_šÞj8	è?lüÎTäÍv‡d„šŒz‘“ÞRaÔ>p
-é_5	C`Êæ5mªÈf´åFäÊvôítAÖrjáL©@
ª`‰­4Œl¸5ò¢*†]‚à0KV?vï«ÒûC·É"	Ó؀Ìð^h)v÷–õlá–|Ò+/[¿|þãMó–=½ÂÇ7tu=ÍfW—ìí>½z÷úû¹/lî߸¼.±,¿½1¸ãö‘ñõ„?U8Ooåüª°1ÛÚˍô¦À×¹¼ò½à—ó(ÀUôŸÆêßñBF~/³7¿žg×W7ø´gί9Ô‹³Ÿýv·þendstream
-endobj
-1480 0 obj<</Type/Page/Parent 1369 0 R/Contents 1481 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1481 0 obj<</Filter/FlateDecode/Length 1951      >>stream
-x
•W]oÛH|÷¯h8¬HŒ>lIö=yãd×XۛÛèÎ8D1"GâD$G;CJÑ¿ßê™!EÑ·— Ž-“ÓÝUÕÕ=^Œhˆ¿#ši2¥8¿FCšL&øz5ŸáëÿŒ¤õÅϋ‹÷Ÿ®h4¢ÅšŸÎg´Hχ´ˆ/UaK)ÒkÊôf£Š
©‚ª"‘†ÊTÒ×ÊJÓ§°ö MÒ§DçBß(Q/à7FZKÒÆb'£w‹ïÄÂÑÉå("þ?F“hÌ™ªp§¹‘‰*#ùCâ½1"ï“(ä ·Hà–_Ò`<®ø½_ûøß×Çß?Ü=¾>Ý}øõáùãrù¢ŠDìrù¡2F失JËåg£×*“Ê–cŽº¢ƒÊ2Zã]Ä#¼fŽ}ZkCRÄ)ùbE8ã³(ӈžu)]Ú±.J¼b­2U–¶òHËËLmev¤RÓJ:y]q|»\êLQ*g†œ9P!r¹|×ç“Jd&C>´ßeÇTùg¥ŒL\–êB_?þPe-*7Gb„µù֐r3ö`Ž=/ï?Mƒ,CÃëhÊP¿Üýñüðü×qÎ%
P`’>Q–	§t~‰üb=R†*´ÄϵËY^:è€^·ÿ6a·|vNŠÉf©ØKz$•ï´)EQ‚g M!írQ%Øm©wÖU$Ró…“ð„-…))—Eµ™ùûrÏÌŖ´ñ¶Úq†œ—S
š’“ê„@¶2‘Éò'¬Å킥ætëJd@åz
 ùD#s½¯ùÈt,2(Ò ¥º€(S•$—=‚ŽÜ…^¾óº¿[z”édtz¢͉$:ÿs|¨ìõ©WÈ2Õ:áoOèõ\S÷p·¸íAËœÅ6šœÝxc˜œ¼¢–©•Â %¹79"wÌO–¢Ï/
b4-×ΐÖZkuÜY
èøÐd0.¸1ª«SðZ°6€ë„äÑÐÍ5řBÿŸ¿}ýöí8•±ç›©‘ÝÁXÀ“•’zˆiò'=–flÔ
-j+½wöÀ¶ØrÆ!bî´cmÐj÷«§»gG¸>ýIÖ~ҔS?õ
Æ×4˜Üx[x€„A¿Ì,,TfûÀ;†Îð³ùJ€›D®ª
ÊäOzG,œ8%Œ†Þæßsïñ0¨;ÞJ8—q3:r´tÀ‹wI•»¾…Úr]ðühÍ
®˜ûLÃÇKv
/µV3¡Þ,☇Œ³àyA€vÏÓz+¢±%>*	l´ÈYh?ëªqU G †‚÷ºæ‡k‹ž'±…?Ügä>ÛOþ~-·Q±u¯à
"dÓ𥳆©pæß
.Q°	ÌFTIì0îug˜${‘A˞<¿Køý§›0´¹Óh#(=]ÎáE›-:½ÄÌ¥«hÈ¡O£øƒ)\ÿL—uÝ
-ÜÿæDÇA6¢5ª‡²ê0["ZÀ!Âٞ\b1ˆ]ÁZõìNÆj­€b™]mRg+gÝ·p)Œa㐏£ñËËxÍ'n}ùšmãŒFCQmnf‰
-¸ñIY[°ël(j‰?®1^UËeªsý!cO^¢lŒ>Çxâ
-ÚÍ\zJQ¯k7T Äx¨lP
|
g9óJVâŸ7gŒ©Ӂ‰A"Ì÷Wû[%›:Q¤
-í•hhäµÐå+LN#v«‚IZIßÀÌ÷6‚D§ÂùÜIƒßÖþÇVá‡{A <Ώçu¨æ–ÖFçíÌÉåv™·Ä@	8‡q{ñ:šŸ1ùbÏ+t›ãX·Ò簓ÝÖFœµ—=VÞµ©®²„%ÄF€j{ém¯SmpB°[ðÛ¡1›wÏ­B æ{Uxfš^,ä¡Í,õNÔRoÁ¨Òo¬ÍPD¢õê&ð¼6KØ+J/
	OGß-x>•ó&ÔÍ[K…‰^â43;e2º™Õ
E®|ÿ†½˜·o†éìÔx*C2áV!TÁQóŒÂ¶»“&W–ßch}_;Ö×U–u‡|Ž›œ<Y9~¡89Ûy:ØuÞöìÚµNè¯ 9N!¬g|B'vƒ¨ëE‰[‡Oqm:KªÊEQaNC­+EËýŒxÄïÊÈÁ‰1
-*¤­r¨fUyx:á™ÅRò>Ͷ蝞¢šDŠCJ]\‹¤ûw“WÐÇÒ?Ü\ãWaÚxg@Âd‹F]ð
`zì„%VǝS‡¢³ø·.GH7ŒÆÓ!à‹5–òRûgÍóùǾµ[cãÁOӚö†‚>ÏŸ‡¥œo$a§dh
-,i=”ͽ»Ý.Sa܋RøÔõ*V˜ÓVÛ©¹wïï¼Î>Ÿ6Û/î^ð„{AØlá~³=›FÀÛÊl͘‡»ðõ}ؚeaÜÎë[Ø÷ù„¦³I4^ó]ìËÝÓÏw|yúÎËþ½Ž¡ø<·+ç;…W³á
?ïÇ4}ÐÅZm*ãGànø¦r¦coéKUØiþ;Í¿ÙÙ¤¹—\Í®¢ÙtîoñWsõqqñ¯‹¿`k`endstream
-endobj
-1482 0 obj<</Type/Page/Parent 1369 0 R/Contents 1483 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1483 0 obj<</Filter/FlateDecode/Length 1814      >>stream
-x
}WÛnÛF}÷WM‹–dÝ N“¢
jՍUAU+re±"¹ìî2²þ¾gfIŠa.	ìDâr.gΜ™ýïbL#üÓbB×sŠó‹Q4¢éõ,ZÐt¹Àÿ'ø±švòàz6fßz0E×ýï߬/®~ÒxLë|̗Z'û£­ã+ã÷iñDª,µ²Ž¼¡­&çÕ	¥ù½¦èþí%©Õ1¾>]’*ðÈ;*+[§)uWÖêÂg'ªŠCaŽEôrýïň†“y4…ßLE±*¨Ây¶ùpr^çô‹)¼5Ý«Bgì<6å‰e&V•ÖìÒL|éT¾Åom?kK›NkZ­é7•8Ñv¯[í||MØ9T™ƒqUª-ÛÛÑ.µœvUJ4±Aø±·>…±:óoF¹3–N¦Ú¼ŒhLš$RvÓsž˜´{åQÄBåìyµ6z{»æ´ëOw·+ò•ÅaÕäƒP$ù¨+ƹjAw2‰&£1 ^DËkÉóïìg4©êéfACJ©0>q¸F =8¯$E¯³ÌQ^?L=—1Aå2£aDÁʜáÏ̑²´84µmà=î5Jjá&ëØW*¸Ð±rú’Ùù”“qÌ8M±KŸ*bJ«pZ9:ißPéRÂÚõSzd.Cºìœ£•ˆBð@.|ʕ÷°Ýjg²Ï:ù§É«ál€sÒ©vüR`a’>iç>ˆãJS$ºˆ9OxàºÒÎTEZE¡¤js¯¥5»]/3t	^à.äJ ø»ì¯ŠL;G§Ñy©?Ñkq;Þ {*=•Ê¹£±‰Ãã“vƒºiMϧp÷Ýê—Ÿî×ïÿXEþÙo^rѺBãÕ.ÓM;¾¦´ŒT’
¡Á"tˆ]­Ûwlß%PJ"z—
-4hHüi0eè•cšeèYfp‘Ç™ºPƒ8føá²P9æîï·+Îp
jHŠþQO¨B
pmRp—tD¦òbNʇ¦c™‘ÎEÙ\ølõd0¡í©D¡‡iœAP‡^?wêð=ŠÍšŽÍ¡» J΢á ±NÁLR[Ž(4œy%¡ro±˜1
-V>n»ÇH¾æÊö{Ì+ç™`ÐØÖ;Rdì%¨kÑíg½©-_6ç R!«_oê¹2lµè¦Ñ¢y´Œ&Ñ<¢i
Y‘^}éæpº#©kt‰4(7—ý‰IT²Ú’+uœîN¢LÅ	Åó{$Yã‡YzÀpD܌ÏQ8 ÃÅt?7à€™â'Ñ«x±‡Llª,i<ë]hσâËq$
-§Whõ‡»7ucˆ˜eÉ@Ô$^<ë¹
MB®*KcQöoPT¤éŒ7Öe¬
çED{%#í>M‡û£Ö}¼™‰,ôôB%fuÛ¶óäÞxn
á>ˆù¶å´h&Ȧ-|nVѲ/j;žG£ùŒ‡ð{¤ÏrÜN	tøÖ<Uh¿-ȽWŸ5+Jt¦ÙOê#èՇ4F^‰dWêÍKù̶6R”/îT•ñâu€	‚)³ÁŸŸVøù+âêNÀ 2˜9´\‹­F:¨l»ëô
-5`c"7ÃP³Í†	†‰®yGPºër©2ÛhÀ€Xˆ
-É;«uÏñ_ðBwAÁúÆk@²Ð€Œû%´	ãvÐÏ*/3Àö#ǛMÝáA¨æEG:¿ƒÓriM
-,Ð×=ÊÈÕ}ãnåíÑVq́:Ýfð¾0¾‚Žªâ8Ð ¬Ž(öG¯¬§;]TtEoµ;°N°Œ3Ý¥·¿Ë S×=”¿_Ý6Ÿ
}¹c	™÷(,ïÉUÇ­Š¼‚Öd‚t“Û£«cž.†°tÚGúY_öœˆx/
e·Uf?Ó(~µÙӢ𠠬ÎØøZš²ÔÜö3#m¶ŸSS9ÙÈπëç[ËWÏ=Túf64Îïó_
ªÍxVWEUü9ÞÑÊ°ÅØý;°ï úPÀRa±‘lº|sèLN€.Ü2¤¬5{Áµ‰	Q¾Ö©zQk§(W˜/²cÊV 
«^ JwÙŨèL×K[\„¤‰lôÝ]BxæÓ\_±$bF¡Ë0[Ò b²ú¡"²r³>Hê(I¡ùâR•µŽ†´»{,˜½Ü¹ø¸¬ jì0˜
Ë:®Jihz>nL]k5–gZÔ4A$€Û¨·ŠÍ:¢ezn±­ó,öô˜í°R[U¸¿ªhgê¹þÍV°¬Êx:–Ë	Íg¸NøÞùâáöîÍ-Ý[ó/_·Þš¸âMGÆ50ÏqÛ]^Óp1ºáóaºñ5±sKx_8o«X6ÅWô ½ç­Lü`ÂÝJäN„_lwº˜F‹ù÷_؜ÞðWïÖ^üáËÄendstream
-endobj
-1484 0 obj<</Type/Page/Parent 1369 0 R/Contents 1485 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1485 0 obj<</Filter/FlateDecode/Length 1652      >>stream
-x
WkoÛFüî_±Æ
Z’Éö‡ÎíÛØJ-F

ʼn<š“<æîh…ýõ½£dšqÑ àH|ÜîÎÌή¾îMhŒšOépFI¹÷.Þ;8?¡ÉœâwfÇŠSGãñ˜âdDôaqyvqõ×ûÅU|½ø¹oŽNéVU©ÞXºŠéƒ.…ªè½®œÑÅëøËޘÞLÇÑŽÚÿ‰–¢\¾zpþ–&8?£é4šŽ'xè$Nù±ÏÚZµ.ZZ4.N¦t‰¿F	ÞÁùQ÷æ=™EãÙ[~+Ε%QײJÕ7ÚKÚ¨;U‰'‰ÆåÚà¤uK¿é¼¢_)–¦¶ÎÒ¹\†ÔpU”$ª”p˜ª’¢IñR.ìJ™F>ÇLªµå´\…ŠfÛ¼v%Í£ãPÒÕ"þH§á±múû#,N(éÅSØ
-i^ø$´•ddáQpš”÷LÂg]I²µLT¦*%žM¹.UVN%Â)]
Òv¹p”ˆŠš*•†©hyùŽROè}Bò°T…Z¯ÇòRš$qMhlÈêÂCû ðpcA]Ö¢Rôص°€TW|ðê"ùÍÉÊ"WËQ˜ŠOgW ¼wˆ1EŒÚh§]Dý+,m™Â]ªÄh«3÷f‡ÎF´CF©ãjÝ8UÝùHEˆ§ˆ$'8Ɉ–Rv‚÷BgÎå7QÖJÑÙ l®7†ßZP j.ý€7#ùË#Úö
-›ç¿$B6ÉeÉ1
Ž„£•/¥OÏÙ¥—$·Þ,´^ÿn ³\srÖ¡E8º%©8	ªîâLÒsª*GÀŠY_íß.®ÿåzqó™6ÚÜã}Vj¤ž_½æêq¸ØàE؈;m <	Na—kiFôÙ¨R˜vû\
-ý>î;‘Ü7õ÷O®^G¾å¬(Q7ÔfILêby0¥[aj0Î%Žèœ°Ðgár_£‡ÁãOV•ªÃb¡QˆÑÙ
MÖÚ&WIî{­Wê3•ŠBCŒ ßS÷¾XS)ª–j©¡>æ¾ÀÖa}ð@²ÆB×#t#Ò½â[n©¤ŒÆÊOþˆzÛ^d²-\­
O¹íÈ›¹çÒÈ;n¦¶×.1"ì.3AÐ4…>åÞgÖI¥MЎ¾ £,^ýÔ¤*0S†Ị̈ʂR	ÎZís5òk)€ñ¾©`û„,a$ÈҋÌ4•Gúƒ轖Õƒ2º*qTÈ®QÍgk
üH	§è¬¸gnƒFõlŠ@>Ã`DMÛJ”xƒ§R¡E*Öà³PkëìPâ\«äQFM­«ˆ.Ќ"q#¾õãŀêІ%3íò`}ÐSøVŠ–*	@Æ÷lÿ£ß¥AÄ ÌÕzœùsÐÈPJq?7öŽ8i\ŸUÜC¾	2’<—5êåäð.¡ö”}¿¬9Q¤ÖÖ¸×MPl-~uèùÛûÓÕêöâê*^­~fÄ·„}¸¾¡—K/ëk­ÝËÕ*|9œ®VÜ6ê®ãhk–\HOÄcÍóÔ?WøGg£zÍjG‰(ä‡sf*“\?Éô™¼À‰z~¾ø‘¨ézы¾Õ
Ì¢Å
-„Æ•è¯’+LÀÛK”_ÛRÄî
-Ùd¢) ±@îh Û­¸q¿Û¬LšÝöÓ£ZÝBÑGqD»ÁÜ@Ø<|‹aaÇÓÙiäc‹¡Ï9óåÙå =ÖÈòãû›ë‹øÏ®04®Çƒƒ;x{<ca›e.€(Æ!†{âЗ*
¿WC˜IÈô9¹?[R'3¡áÙÞEå!`£R§²)ZÞOvÉö<ůLƒRw.X6èÈÞÎàY-­,Ðyk	×ôWZ¯Ñ PS*¬×˜×ºË£ù˜Q·sA4©†‹}gØÀ¾E
ðÆK+ÕρÒkï$»›ðppb¤¾vH_¿ì½@ç%ƒÞ¿åôó„¯òÚöjèo»2}™âAžkÌz€Lœ6íˆîŒÆj–
-›«óÉÜ;]³ÛpG`€CKH¾;è¿›•?À¿_'06
-"ô2Sm»©v&þd§]úç}açǝËMfóh||H³ùÛh~È?u ÿwg؈ô”…='ixríö}ü(
-o¼™Oøùÿñˍz¿ÕŽæGÑ|vŒŸ„8ëí˜Aùïý±÷R»½¬endstream
-endobj
-1486 0 obj<</Type/Page/Parent 1369 0 R/Contents 1487 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F8 11 0 R>>/XObject<<>>>>>>endobj
-1487 0 obj<</Filter/FlateDecode/Length 885       >>stream
-x
mU]oÚ@|çWìSK¤b>B€ô|TŠÔ@š¸ª*!Uçó×Ú>÷îÊ¿ïÜÙN¨S%1Á¾Ý™]ÿîi„Ÿ1Í't>#™÷Fш¦ãhAÓÅÿOðg˜¶½«¸7ü4¥ñ˜â-Bf‹9Å)áøhD±ì»½pT
-ã”T¥pLª |<±¬ŒrG’ºpFg´ÏL‚RáD",Sˆu{>’ÝCŒÔy®àYeqÁ³TÓjŸÅ?{#ŒÏ£	ê÷õ¡ Q "å’q)m«,䝲Πª-¢·>2„$¬Ï÷M›_Ö	§ta‘&¥2«
›g66jjMfÑÔ׊÷L_-›×œÊ’YÆ©OMOË{Úô_Ø.¥dké^bÇfsöæ+!´²ÜjCHῘ7Q!k
A@ùÀ8‰ÏôïSÐS…c3 ÒèP¸¾é«ˆ#rš¸°TnU'T~V’»Õ¥—mòÈÐ2MWl@|É&WÎ9(·GǼ™Â=KAjØÁG¾ÇQ£žUÆ;¶›³ÿiú$òDc‘×΁´’ÈŒÚNeÞ9
«D£Ó*/C©oh¹>XZÅAwp×dó¤Ö‚ª¹pA­Këvuýøý!¾[¯"÷füªÀÇ=]ü¾fñ}–U2´á°<„ê8rԕ¡‚áU먆Ÿ+c™::z]Å{H·²fU{~¥¤rpRQhG	«²cíÐRy™qî­íf¸ÌZKàa]Ýїüc[‘<KïõÑUi?P{ÿò“’íwˆùf$žàƒ‡×oÑ¡ÚÌ»mç½FU7\›ñ÷ã’Okzú¡Ëa9$Ì~ÃÒA	DnÕ¦M[ÿ´ó¿Ìr0âý†ûæ 0%!ÍzuKFåp×õÊàéMÿáæ–¤;睲UF$Y3,äþ4c‡k½Ãeh–ƒm˜®„üU•ÿ­sê4N×	„à@Øro$>ív½Á‚	^¶šÕµj
m‡¢*vÐ/û^zU	nx	Yë-†í[‚R8†ÛOu»RC†ŸÍ«`<ÃkbqN“i³&aÒ«%d×?Ñ<È!+ïÝ0^Π
ÌG—~­Î¢ËˆnÖ÷˻Տëõ*~\£ùñÔ"ÿR£wµï}¾é|Íg¼’ëbìoÝƽ/½¿øELendstream
-endobj
-1488 0 obj<</Type/Page/Parent 1369 0 R/Contents 1489 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 665 0 R>>endobj
-1489 0 obj<</Filter/FlateDecode/Length 1504      >>stream
-x
W]oÚJ}çWŒÔ—T
R©ªòÑÜö¡InAʕ’<,ö{c{ï:”Ïì®Á8éUUµª÷kfΜ93¼tÔǟ
M†t2¦8ëô£>Vvÿüü«38™F#:L£>e4FÓð•ÒŒÏÓéx
i4àÿCü-%-ÝÆàlßۘðHëÂżs|}FÃ>͗ði<™Ò<q®`%>º\‹Âʒ&}Ó²šÎcK ?W]éL¨üãüßNŸzÃn]êܖ:MqOå8yW•2ÝÒLdA»Í¤q•]L¼½“âÂ3“hÑ])KùR)£¬¤ŸR$*_±±ãë
áÆp‚€qãB.5`ØêŠbø òJw‡=±ke(öu©H¥0’2ñ,ÉÀClëî
-|Ä:Ã[V,RIe×üàR­ªöI„p'ÞSÙÝÕ%#“H—j!oRú¸{Øí}»½ŸßFÞýÀn“h9XW¥®òä·aÞ³£E÷˜–_è{ØÊD¼VyˆŠs$ȟÈ͉IõJç祒ÆZ–:£.ŸVé̵ܸ¼Wy¢7†næÁpD÷k™ËW¼'¨2þY¾Êv¨qü~ÿr8Òý#›ËNð­–IÏ®F€ð?
ÊφÖ
-¯%^+ݓl?™t'
-al$»²Û§„9 Ë#šÃ•×ݱ´FEª¤ñ,Β^"FÐ#sX
Z]ٝ¥.a‡ä/‘anµHEŒá¨ÿfO
¥^*œP¦³± qâqòG—Uš’‹
–>^Žè«ŽÓMgž ¦²ÅÇ)`3ï6º”¨c*·|vþÔ‹yBU
$8ÎEa7šžAüM+v˜qõÀ†)ç}¢s”²ÊD¹}{±ÿãjåñ£Ë£ƒfÆe} 8
Jz<ºà>Ÿ\†\ýP%P
-`e°„źز߼Ԉ²|Çä°OkÔ2	½ÈW­™T¤’uÍÁê÷™ŽHi`CÌ4sW뇒„Ó
-EÈá4òùÛ}µ”4«®Q8ëéÛïØ’ò*4)¾å`[ªàj­‚ÐÒX@€=‘瘥38ÎÎå¨
-ñ*TÊ2ѕ×IF¡¯U¨Ð¼†Õ!\Î+´1L›†²ÔýæIƒöèu	l&Рeu.Õ«÷µ~ɉ]p¾Mö™ÊQ«P4D_†¶¥—K+ØØ¢YZ”Þµ>$<eâ
-â’۝ü]B=rkº¨Ç8­êþÕ(¹Z'‡}
ù?wÌd jå/n¶¦Ê ?ìp°(À&„„©|qŽóni'òu“¯º-DŒF
-Qâ6ÊÂ	=?ý°JõB¤O=eäØC©˜lqïFgÆHû‰_=¾îÓY݃G^-XÙ¹ôÙûV›ïcø€š„BQ~¦­ÜQäð„ã¢Á+áÄaÇwý~Æ­G¤¤7
ôfC©BCô°FœæÉ÷zÈ¥u>‘Y3ÑDj4”aË@"|k4v×éñ‰Ñ
/qFš Ôu ¡éCàÖM‘f{””L6N¢óɄDn8jÖb
§ëéINtŒüæöÿæ‚®4ý—J¤jÉÝèÞ_WBå$|ñzgLú
-¶¾5 ¼æ!iŽkµž•r¥œ°2D7Ò^|¿‘Ï<3³…–»úa{ˆùÊý÷› /áv°HG©EuA“õʘjô)
-1íÞå¯vÁGË`•+Ì6;Ç\÷N,Þu¿íÎñ¬@¯lhó\ö¥tÎ&5(-{‡¼F‡*&a–d;
-HÀ4åBJt˜)ò­_Ô‘Å̂9h¯º¨Å.-€ñCÅ¥6zi[Ö¯¼)ž9˜L~0q“3ünjG(¼à`(耵áñ©æ·?¤‰;;¾žî¸/ÿðçA£[óXò'?	F“Q4Oñ›¢q:d¾Î;wþ™êB‘endstream
-endobj
-1490 0 obj<</Type/Page/Parent 1369 0 R/Contents 1491 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>>>endobj
-1491 0 obj<</Filter/FlateDecode/Length 1695      >>stream
-x
WËnÛH¼û+ØCÀ¢õ–œKàGŒø°NÖ"XÀ—9²“3
-gdEûõ[5CÊ4íd‹Àˆ¤ö£ºººùýh }üÈl(£©¤åQ?éËdÞO†2žÏðyˆ¿JË*ŒO'ÉøµƒÑdüò‰óÅÑÉÕ©ƲXÁÉtŽ™ÀA¿/‹ôí,%ƒD>ٝdV;QòÕVÎ+Ÿ[#«Üd’{‡³RåFRk|e‹BWÞ-¾ÁðXƒh¸7œÁðÛ3¹YÈ®eOùµnܞý~~†”—20¬¤°©*dët%ÞÊR‹Úâ
ãóTyÉZ9þ"y2Dï}é
FH^Ÿâ’•­$xIäÚǜü:w²ÜãKnîáñFûóëÏ·bT©åûVWûð­ßWv»‰ÁÈoƒ”v:î”sÛ`…<´J×bW!ËŸsƒ“Ü˽FzK•>Ȫ²e8¦¯œ§Ìû¤¢vªþw; QØ{k:ž+
λDVŒõb7ڈÓé¶Êý^Ö¶€ù¥õëà¯]g†N:%°woŸ/?¿¥G@<»¼tm6wï:~_	¶U%‰ÀD•ÈÙʳ”,1m¶c€å,zb¹ß8I+±Ôªpˆ‡ebM:¾ùÃRv÷Žd Ý‹r,0 6›Ê>ª"¡­6ÿ{£
š”!ñ‡‰|ÕXšü‚üFDÙÏØÍÛúé©HØÈaD”®•¹×ÂšPa_kþ‚×™5ZÐTµ«P­á›tso£W÷çOØ[ÓuIÀNüהö¯Ç_LµTŽUJífßA»f2Ì!ÀNýØf*­ëŽ#Õʭߪ¢Ø?ëÜÀfÞkðh0&Dâ©2Ð
*So4n*3Nä}p«Ê¥
-Š çè#4æe”¡‹_ÊP2e}¿æh”ÊQdžÉðí32жGMB’ÕMA©á5pÆÛԂŒk…쯽öˆYm™a^n
-]‚²:Æ:àňZ•ä‹Ç:ÀòÖdŃÊA‚¨ª¥X)àÔ8ª[öNm!0ˆ¡0ŒŽ?Ð'wk439ßJ6€H‡Ó)Ѽ¦"…Ê-AâUµVrÖïVþƒü¥©.(\PüJ+‡øiÿYÄñ9„¨U^¨e^@ •«N„5S¢äExjF‚¨.,žý$íâ-JŽæ‚V<橎‚ˆ‚E	”]ӌðÑñÊN<ۙ_ñlÒ>€S»Su0@å5ˆÜº¥`h¡Fæ¾&â¬{ü=ƒÁ? O0k¹º½¾l)ÁqB@¸
ªÑiÀ2 h%¤;˜wÞB1¥ž©«¼è&¾©òGŒÍ“ßÏ.>]ß|L௶ÂËĄL‚ì†ÙªÌ¾„Aq¹
¼±
-h•d"(7r4öªÈ¡ê|oìNej… •ì¿̎A¡Ú†bâ³e"·¤Ó>(PÓ
­óŽ¿Ãea
Á"oƒ$2#¶•ïp²³Û"ã
-å±S@ØwBô“=¦ ¸o2úéµ	‹ÂVy¦ƒVb¡ABKÒ]Ù:ʦËäô˜ðÐFØzþYœO€öGî<S§5V= ÇÍ¡.oŽcÜƌ÷¡ÜíxßtIµIö‘go&‘=Œîä*­7´Þ,™ätán8I¼Ð¬pá¼7èO"ÇHàO“ÿˆƒ.S^-•Ã„‹ëûsoÒueMþ7õ§Yqž¨æ^©±Ò¬ÍnÒþDûô$ŒŠ,€¾Çm,hqä#Öÿê‘kTݎu‘šU±T&«ƒ|ÄÙ
%C'”*ÓÇdӎdt"$®äæúwÂì¤*q@å:òJÇp§I¼D(hQÚjË¥†{ÞNÑp†Œ&£î‹6v{¿~IðŽ³ú¶Z¢Õ
˜JSí¸‹
©äPDnò,fÐVl
ßVÍL~N™É0™s þ”2Ó0oɗ¨ ‡ßöGˆ‚Ä \Öå~¢Ô¯ËÛI–‰aM@ã ÷҇ý1ð
hô/)‡û«íА⧹5­}föPVrqkR忆Íþ®m±,Š<ìdu`%\¡L.­ò
êG‡‘§Y '’mÃ+6#¾2qIñ“»xëDÞ5`w¼=õpX€^ŨàŒzÃy28•^C‘«Ü0€°ÈY{Âhe±ñ%Œá´¶Ú°k €ílpBmd¸'WóZÂS¼ÏGx‡­_ûÂÎ+_*û
5Ær˜â­*ËÍ'{ͽYÿ´Ùùÿ÷Ëîx6NfÓ96U4ÃdDGý‚wøendstream
-endobj
-1492 0 obj<</Type/Page/Parent 1369 0 R/Contents 1493 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1493 0 obj<</Filter/FlateDecode/Length 784       >>stream
-x
•TËnÛH¼ë+ÈÁÞ`Ő²,ɇ`açø¯ØÃ"‡ÙÇ&g虡þ}ª‡”Ö–sYâkº«»ª“ŒRü2ZÎèlAy3I“”Î/2\ç«%®3üSæó4™\­'ï>§tAëP‹
-LšÒ:?ÝY÷°u¶ké=yÕlÔëûIJÓ,MV0<-l£´¡FùÀ6ÆþÞ ¶[k<zöbñîóœ²lˆ9-
-0¡búw[ۍªL=çA[C¶Œß}³IrkÊýûÕÇ	­+íü}´Á7²¦îAy«cF‚hTÃtwùõêòM–ïÓ;ƒºÓ¡Š®ÿ\ßܑg÷Än„²±Ô:»©¹!5DxE0QtÃáêúï;dŠ¡RAV&P8h2Ýð!A.hÓScQ#8¬aðÉ+mXÒ`j•Cú"îÉk­O¨´.FÞX	w@?";j°¡]¥óJ()êŒ~ìø@"¦ÌG-
-	õ¹uºQ®§CÁ?Xœ­k¨5”ó‚²ùXγ,ÁcqºLΓ,¡/vG…¥k`¶µÎUªL¨g«¼ß!„®ù¯×M±Œï£ÏËFxæ(2{6^ýÉ®UR*K¹5wFU)‡¾[ÑÊÆøƒdoTÁ‘ƒtõX O°ï©ƒ'@–Ö#€ŒÀc¿¾äAÊÏ28P.öacÛÞwÄÞN›íoÄ¡˜Ž-‰n%÷(Æ>íÙbürèÑ£Œ04
3
-"µŒjàŸá?NüØé'U³	þOҁšÎ´}ù k@°É]ßtª¥v;í^i&ͺaxïT/d=ù}VæGÌtél‘n1±cAdxÁo>vA×:`š}oòd¸Q®ÌQ[‹¹÷c?§Œo­Iü¦ƒçº§QÌ	!Tžsè­l‹·#rt-AQ–‚íê¸}M¤b®}ËG¨ƒ ã4¬Æå–-°„Wg4;Û2 Ý:{Ý†QÊ»+Ys‚8ݛO—©¬áÿ?Aóå<Y.VXäð>Ÿè§õäÛä^vôÜendstream
-endobj
-1494 0 obj<</Type/Page/Parent 1369 0 R/Contents 1495 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1495 0 obj<</Filter/FlateDecode/Length 1013      >>stream
-x
•U]oÜ6|÷¯X =-é¾ä}p|NcäésMQà€‚'Q{©P’]ÿûÎR’/6œ …}8[ZîÎÎÌ.¿œDâ'¢uLó¥õI(BZœ/ŒÉÇø8E¹1O¿ô"Ž8îىWۓ³×燴ÍQdµNh›
-„x’Î.KÙtÊQ"蓬÷’dK’.6Ÿ(³µÔ†jUï•;Ýþ4Š¢!M3†m6ۖº%üJú|uû'ÝÞüþë*z)ê,µªë´)¨o¨+¥½sÊt´›}°w>/p…ÑY5¥¤;åZm
Ù|4!W)ˆæCÍ{ݕtP¸,*÷Hm:ÊŽÏɨۀþÐ&³÷-*„ôvs)h³©Êz§ZªtÛ©ŒJf%>•>¨êa§¥4¶Ï
-û,ZËԝªlӊ1 ^‰³ñQ«™lOF!÷^å™ùÿ½*´ù™ã#±˜ÇÄk‘ৡ2!Hs Á§¸ë•WKŽk½@àƒ¬£R@>
81Æ÷×Û#?#֚‰¯ôÞI§
q7S`Â3Y²ª(w¶ö"É=´¡ÖöŽ[A¥¾ÔÈô µ;x,•®3Yq?ä(ͱÀ½FRc;º·îð2̛F™w›‹O!ú3lÝh͞FÚæˉ¶DD‚®øl2îÜ©/½v`~„Û ÚkiëS¯ÅŠy½1cÄQ8˜`"†Ó涪ì=™ò¾¬$Ú?¸ý2ç£3ŽÂøàrœ¥ïõÿǾnUöFvßëkˆ5ÑZI3x³-m_ÁùBK¸Bɶ{¹!š„IüxífLèAÝíN_î$°¿8®Ò¡ñÄ~+Üûñ{•J¶cjëF#A1Xs0ädòÂq„°¨d–iÚ±f@l2é²'îRæN;kØi“'§Ùý`;ì¬|à4[Ø¿yx¹ÐHèhŽŸ5<âZ>#ê…ò9j찜.7ñ3'c¦ç‹a_$b.èÒ7ª†u÷M1¯s®ꧽw5FÊ®	áVv܈hÇ`0†EÎë
Ly†Rkr]`’m˜¹IÎq–ƒ€eØ¿l®oŸóu‘ó½Áj¹Þ@­)W- Ÿ³z2µI«>SgC€(9²ãÍæð[áìOoÀ³×!OWÌHÒ™ÊJo.>_ýõööՒ¢	i(ø6›=‰ðÅG<v?ê`Qw¸ÚTk~ô"}<әWÕ¼¨ ½µ4áh¯A•ÉæøXÐ;k¬ÀØce±Œ,
ÜNPGRmX>xßäú ݑïÖÅJ$¼ô²ÿs;/Ö±^%¸âqn¹ä²WۓßNþP)Žlendstream
-endobj
-1496 0 obj<</Type/Page/Parent 1369 0 R/Contents 1497 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1497 0 obj<</Filter/FlateDecode/Length 1424      >>stream
-x
V]o7|÷¯Xè¥v`>¬¯(P%VÐ µãJ
-Š îݑ’gU(úß;KžlGrÚÆàó¹»³3³ûõ¤G]üôhܧ‹eåI7éÒ°?N4˜Œñ{ÿ­¤ûð¢ßëáñ…½~?¾x³<é¼P¯GË{MÆ´Ì	
º]Zf§ËµÔ”™²R…$¡sRÚyQ´e*H8ª]-Š„>›šÊÚy<ãCO…xðkdeŠÂl•^Ñ™Ê+£n!W¦IfôýåÙòRèÒë˜A»?@]Ëü”P’(Jú‘>ü4O>Ìæofó‹d>›þr͇ºÔîu“IüV䎜´ÒâÀÎÔ6ÙH›Jk\ÿ|tÂɬ¶ÊïðýôjqôZêÌî*O•pnk,®Ç½ÒÅlŸk÷GœÀÂ[•ùbG®’bƒbÏ9	ʄ&SªD,G‹2"¹Óôþ–Dž[é³
¹§šz¯ñ'àš	'÷¹^$ý;´b«ÐQ{ÓÎ¥—YédÒ|ÛEP¹M¹¡WÚøW¤¥ÌIp'B‘9Ý£Ëç$
-¿6õjMÈ{kôžO½£µ°e$Á}¨n-$-9YÝ0"¤‘¦(RÐǺgê¤"Ûðƒ6¶Å#Àh_Ó®ß9Z™JjïP>É?«X@`Z‰Ô º•_keQƞYÿŸl-ôJ’3FӖ3ÝJZIO©ô1DænÊqMæÝœ^®¬`¦ø:ï^S²`}´/vN’ABéë*°:ÒgM‡ÔÇ,Czà	ôD¥ÒŠgö«U#…¦?ž'åþEþýøäþØWû(zI0`ï_/|É7mòìÿj†èïãÒbargÝ5eQºmXõ‚Z¸ôi1›ßL¯g?·“Ê r5ì+ð;\±×`@{2Yy™ï“oHë™¿)Ýg«úpõöê7—³KbÀ£ð‚;¥’ꪒ–etx€µ!
-g¢IýMRAʬÜ“É]Ý,¨0f€XœÌ3	› ò¢).=_°ø
-	Uû5*Ý_Ü\ZŠÊ±LBÞR!€eã5Ò§Ê8
-^‚PÐÝ©’IxZçÃÛ-BièE)”>ˆ-¼ÙZæwgÉ¡EìW¿´ôð³—"FG‡èš&|Ñdà1ób+Ð-C
¤hqÐ_,Z­ÖžûŒ÷ð?à”Äù;ðÐ#€¨˜H߇‡*S8­Ÿ¡‰ž•Ccù?›up´à^ü¤-L‘JkmEßàÄ9!¤úÔ	½X;b±Ññ÷[¡CyûiªW•±ø[Ñàø¦˜7ÀmTEÎ[ A0çeECtqËáß/0£Ñ¶ð#m¨Xjý¸yh×wœm˜Ð[Ôå#Ùxú×Ñ(3SkÏH?_ÚXD‚\±:¢Ö!n(—w
ždpì5?ט+a⢦Ɣ…M*¨{Ísa
ÙHèÖ4g¿d8`έà´2æвµQ™¼;KXñ ñqø-BK‚öKå¼}'n2•U\ñÓ¸;
«
@¶ÆxHÄÖº1åa³/2Ç@Û°ð:Ҙ³#„Ɂe&NŽ^Á“d˜ôº5ȂÇb`X³WŒ1 Êó¢•
-·¾¤` —¼ˆ•¼„azc^Ô:o}Ûl‡9DÏO¢òlic‘Ù`ãÑFóÛk†`.óŸÑ ·ËJ‡éÏK^8Õ©íìùÓI•>Ç}Z
-àG†Â­<QQ…Yq
-bûAñh¯¸A€nK º+Š»³XȾþöóJZXÏeÃ¥7û(/£
“·Þëðä‚Fã‹ÈÉÅôú͔n­ùÂËÕÉê¦àˆíýö¸‹ý3?ýï±>’ñh‚]ŸG|ËlyòëÉ?Äû¢Ïendstream
-endobj
-1498 0 obj<</Type/Page/Parent 1369 0 R/Contents 1499 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1499 0 obj<</Filter/FlateDecode/Length 741       >>stream
-x
TMo›@½ûWÌ­Nþ|Š’8‘zHÚÊ®ªJ‘¬õ2˜
°Kw—¸þ÷]Lj;9Ԗ
³óñ潙ù=ADß$c˜ÄÀëAFǺNӄ®cúi„Ü̒it0ÏÃéG“y¦ç·«ÁÕÃF#Xå.mœ&°Ê€RG¬øpÉê
ƒº56HÙ¹’¹Ø¶3xj¬Õ+B÷.äŒø|
LfÞ°nDåÍjV’Q…L«*ÒXº;ËÜ¢[àÅêeDŒ&á˜ÒKÔÔÊ@%6Æ,e¨é™8À,t~WsèÂL¦T=…HÃ8„î½j5Ô¯”Ë m›Î«/šÒŽ¢’|¾@ø)d¦vƎ
^	”¬ÞwN³SCh¡5Ÿá™>]xºð4þ0„_ªS¨¶Ê‰•Ún‰!a'l
oµºªµÎûˆ
-‰˜	¹« ”jGfÌNé,„/9‘'äLTÆñ(A·òiY	bÁ
-^¢5ï°-Dæ‚-ÕÃV+/ˁµkX(4 ΡŒÄ'QQrÕaÜ7*‡Åý2¸»½3¸î2öQeÿJ:…\yž
-So:ÂOQž*äåìÚò *©ãè!^‰SzðzùTÍ{¯Ö¸¼o)}—õZøÆ:á	}diHù–U—°i-˜¹È	A” +”‡Á¥È¯	¬u
-‘ÌYœõî	/iOÊâ™XG4¸†ò3É&·$BVI*kf©Ö¾A€Y ©#ñ•ädä§mq×ÏÏ¥ãŠkd=x-¶…=Ó#pyãn¨vã2êù‰êF¬Ï"¬ûZÃu›5žÑu•±&\[Þ¸†'„†sÖVÖÀâiÙMdlO£‘‹?~2œþGô;UÐ0^šCC¥‡IÅ´Ó	L¢¨Ã¸¼y¼½oZ½ ·Ô¹¼­‰uϹôAÍÿcQLiÏ&qJ›™Ä,q!îWƒïƒ¿K »Vendstream
-endobj
-1500 0 obj<</Type/Page/Parent 1369 0 R/Contents 1501 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F1 4 0 R/F2 5 0 R/F3 6 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 672 0 R>>endobj
-1501 0 obj<</Filter/FlateDecode/Length 1424      >>stream
-x
•VaoÛ6ýî_qÀ0@
bŒÛ)º
IÓ)dk¼}™÷’hK$z$Çÿ~ïHɱ•X‘")EòîÝ»wwüwÑ?ÍbO)­£p„/û_ß~D“i8£I4cª(Žâð¢]•ô0ˆgópLÑhN°;>aׯx÷bF4…sìE“ì¹o,±7wyïj18ûrAñˆ+À›Îæ´È*|IƒO¹ØX©é"¤Q%‚„!Aw‹	eªEM•¬©Oߝ™hæÍÇ„°È‚‹0
-é«*ê¢^“¨q“®ýÅmaóÖfÆÞÀ„¢¨5ÏÂ)¸4¦©$íTC¹x’pîqÄá3©Ÿ€ÍY(i¯nî¨8¯VäM‚qg2xøüí¯èØMD	-éûÂ6´T”¥ÌŽÍŒh}h×÷·=s§´Í‹4P&é÷ëOÿ,ápϘÃf·Š‘>6›ŽïTÕV+ÓÆ[oÃæÛà˜Ó§~®®?½IÂq”?ÙËJ@aë%žB‚HÎMMJgHUŽB²¹lžÒªÐƒ±jC ²M[&d¥jÐâuS»©ª*¬?c@0­”ýÉïFm:ÇçáìzS%aÌ6£áwpjþÃôÿô·P5^—Y)«…Uúgw

øCø†ÞöÞ;’¹…îTò¥óDZð'ö¸R #¶K×2àU—;ªDšµôÛ,‘­.,§©42Šƒ8y¸¼¥LX‘#—'T˜6¾0îÑÇ?bÀ6ØA©Ö¨aW1ˆ¢‡ £Ç…ÚRÕÔö@äl¢–Œ_èmtñT”r‰,ë"æàœ7_W!ݬ°ü3Ք=ç\ðÛº1’)“h4ð²–ï«d¯ƒ®áȬË
Äà„{ö¥Kñ¶>\!iRC¢„Ó:S[´»ÖïÞì2˜ƒ|(•6ÀáH©T‘I+ŠÒôk©Á&B”Ï·¿L>ÉRm*	S•9š¸ñ W´‡;™j,w:¾ÚR-Dâèô£ÔU—åj¨G+1‘Т̑V–	p8—ŽÒ\m$‡&èï	èERJ2
-ÆGËRBi”hQ§9ڈ«€²|¡³êŠ—Ö
-m®U³Îàv@÷jJ	üm´²*Uå)Ÿ®}1xQÖrKËÎÁÊò¤ZWE¯ÌúÊ"?ÚÙPÔ¬Eô"ćИGÃó!+´LÑvüÕwm$vŸkw¡çy«š2cÆÐÒ4Ô5¤Zé
-­mGï‹ò¬1ú¬T%gð›ˆ3.d”m¿©Ç›z?àFá³#ǁq5Z*õh¨,Y…iÝv¥ ê<gïo/oîèîòöó¯ÞÝ~¶åÐ]>zÎü<½A¯n€÷w1CêýQ¾: ÖW«SÛ"³Æ×O+é×ÉD¾P‚Š³ÃÕ)ŸEµA
-E¢žä)´Ï‰ŸÕïç{€{
¼v@Û
ù1{šœr¸['*ÕrSŠÉoß‹ë+HuÁ­ãú¥G»kœ³¬ÏŒ‘¨ikB›%DŽo֗W.ª×5¼V0lÔ¶†ÝdG<Ý­ñ_œÉ\)cOÔ;R릵€¦k»¦ÿ(wÇyXrgb4ó8¨K”k‘fg¬¬NCƒ>å«ÁvÀ€CÒ÷ð%ÈäÝÃSÖQُñNmOÛVô†v­’ëÔk²{0ð<¨¸ñɬ°¾e÷Dâ
ñ:Z-ƒsß5^ê+ðiä1$÷O˜ñQô¯”u=¹ã¡/cncËãÁ‘äAí+«»M¿øn¨b¼ oõïu©Qþƒa—Ú]ÏWOy狓Û
-ü¼öÒ}qÔ÷þæ/'ñ¬q¶xÒOf“p6ûwÖùœM~^þü†@݄endstream
-endobj
-1502 0 obj<</Type/Page/Parent 1369 0 R/Contents 1503 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 681 0 R>>endobj
-1503 0 obj<</Filter/FlateDecode/Length 1678      >>stream
-x
­W]oÛ6}ϯ¸ËKÝ!Qý)ÛŠ!ëP`I»ÅE0,{ %Úf#‰*IÅñ¿ß¹¤äÈrVìahë”&y?Î=÷ðæÛɀúø3 éF1%ùI?êã›ýÇ¿žLÇѐâYõ)§Á¸¿_etwÒ^cw2ŠÆõY¿;FSŠûq4ã»óY4¯W~·µÎiw1îNâ)üán<&õÊßm­qw0ٟåÝö»Cö,ñ.²£Ñh„ÏñlŠÏ!þI+¿1NlgcØ!ŠÑaLÃÂûzYòÞüpo¿ÄÞt^î].NÞ}Ó`@‹JϦ´H=ò}Z$½[ùì(وb-Ém$½]|Åùa}¾G[m×FW%½[©eª¤
-í¯u¦—"û›¬LœÒøR#W‘þ.Möþχ1J·H{-ÃtýéæÐxŸö焅e	9¾Bä’ôÊÿ?Õ¹€ÿ­$
\¿jU¨b±¥Öý?uEye‰Ìjڈ§g),9iºË"1»ÒQ)¬EŒ©=Œ¬‡g¾§=°½<:ˆÐpVÚÐNW†*+
ÒÐ$*äR8•'ëx\zà‚]ÎóvAŸ¯¯ºÉ|P…Ȳ݉4¥‡ìæ:U«ÝÃ[ÝDš°yBÿsýŽÌs2ÿ¸¼¾Ô?‡‡ðµ
-³ØH*Çù–FåÂìH)-EòÂÕåMtáŒÎ2†îNäKA[•e$œ“9ê¼ø„Hs1þ}„}¢¶-Ç-;R$›šcˆ0ÀÖÖÏ<B9);ڊ‡®S7˜š)®¹p\`[ro®p¹·ØÀ­“iì‰\ëW è2â"‡áԓd^¨•͇eóeZ“
Âdu(eÒçܺìÚŠvº­ÔÆ€)&o'ÃpÏöXøÆàVõ€ëKIÿÞÿÇüùñ;TUtëF§g´Ý(”g]PLŒ´JdÊXn@d£ý‘ezÛð¥ÎD>ƒ$@€ó¶,#¹dáS6ÇWÂu²D¦ZڈœRpNRᲡ¥A‰aá%‹ö»ÿx{G©pb)[S|.ÀJÔ¯°ÙéŽÏ²`Åâf]·à{	0Ò:a\P–|*$hƒ`ào
™b–í¼ü$™‚ÞxíYÊ5‚«,´²	
-¢]åv?„
-Ìi€G‚_‹s¼E^­çÑ°é6~Œßa¯xàNGþ¸Ñ§Q̊v#Š•R—™ú+ì#JfäZ˜”£ðqBn:ŸÉä°TBbü Õ`¯*ùBÔÇî˜
€ðã‹ê‰%\Ëx#PÎ|‰:Öʯ›u±t)
!Âm®ž5꺍•W6^›Gm
v Fð¥GÑM+àŒ–^J·•2<•‰2I•£vEÞ0óÅ·JᢠSïåÔç4‡IeÈ!{x2p^y¤o“êFClÁ^Èn•K6ˆٞ†@ƒ±ˆ.^3~ÄJ^è’BʔkÕ Ýá*ú2ϙ»|®oß[ÁpD—¬8+QeMù’ð</hºu¬ì¶*KmŽúQºËŸî<·‹ßnžžØ­–a QÊ¼JvÔ0Þr%Pô†3óçÚaÌj8½ñSF÷)ö"Q×&÷íãÉÓX~RkséBu²´!ØÔó]ìµjH¾xLÍ›º <Ðì±ôÁé Åüò3!5…¥dŸpfSP4X>'²ô³JîiÈOﴀ¦kiNietÎÓȽkA1pÐÈ2¬ºË]‡ÞÂ&@LY×`tâ4žÖ/]_鼬ðþØSº¹¹Âs££­^9
-fœ*¬Î$†š2« VÔw^•¥QD÷›]˜‘g:¤S »ƒªÑûºÑòÖL°-‰ºªŒg~Aëì/ƒ©µ¸â5(Þ8"¥ó<2(½„a
-ÚB 2w–¾êùeÜ`PkN
u óÓO3:jK~V…Ý??²î‹„†¬Cä›Ý1Ã×Ã"LSíÕXpüðb#Mž¨BÊ!†3Ž|dEð÷¡3¢›'ÃâU§+¤Í	™”•Ê¤Ý¡'ò:·#=ðº#«r•	T2ŒÃ:ãAº‰ª®++ðq•yBàpÃá­®²Ôó
¿Ç¬7J@gVïüòן(žú·îîâæò‚>ýüÅëµFéðè‚ï7Çϧý9¿oÿñmãÜi<ëŠ;“9›úeqòûÉ?.®¨endstream
-endobj
-1504 0 obj<</Type/Page/Parent 1369 0 R/Contents 1505 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F5 8 0 R/F6 9 0 R/F8 11 0 R>>/XObject<<>>>>/Annots 688 0 R>>endobj
-1505 0 obj<</Filter/FlateDecode/Length 1282      >>stream
-x
}VMoã6½ûWÌÑù3þ(ÐC²Þ
šlºñ"=ôBK´ÅDjIÊNúëû†”mEÅ
’P$gÞ¼y3ý1ð3¦Å„¦sJËÞ(áËù××ß{‹U2¦ùlžÌ¨¤ñd„¿qUÐs¯½Æîl‘\·v§óy2¢éd•Ìqw6™ÂR\ñ]x¡é8ڝðŸà­Ö÷¦É¢µ×Z–´'«Ö^k	4ãü^ŒÞnzû>Óf‡ çËm²ëˆ6i_Ô>—Ú«Txe4Yù£–Γ7$èEéÌ=nÈI{–”&''JIGñNµŽ­®ÉØó¥Õ²¹ôËæ{oDWãi2çþÑÔE–4'Ì>>R8	ï;8ovï[ JTø¸ƒi¥ñ»Œ@U{w^–
lí
濫(–S{Mßïÿ¢Ze	;{þǛœVŒkX@€5bmnXSW.¡M®¥&“„¿â T!¶š2y…©J0H[+tšKGF3pˆ JÃ{ƒŽÓmí騊‚¶|â 3ÁÊHÂَ3Fw‰ÚÀ¦ÈB{±—|+ ¯
-ÂÓÚ*ÿÎ8}Þ@èd˜QÿìNâIyî n¡¯OŸ(ͅÖð›òM¤qGÀ tK@!ûp@Ê7¼–RhGÏ¢Ü"ŸAe®ãW›#D`‘\U	y©ò¶†VA\ЄËUå~Šå,bÇîÿî«D&z75¥@(²,bèønÁj¨+©m*
-ƒ®rq@&8/K©!BÝYSB­ÝËOëOAººãS¤©©!¨˜&±®
-î`Å;€|Άw×M•÷/Bø­U„—6Ð'Èž7¬gB–@+*ÖyŽÂFÀ¯RVžd9
ýÁTÒÚE݊^ï·¡la«0øÄ6Y”¿B8..¤ ³\}LdË߉3®* yP©5Îì|Çù9¹!#©@
CaÔֈåfv­Ê½8€—ÿç/f!|j£ý
åæÈà Þ¤%÷@^Cgsx‹Ä‡&ÁM­Åª<KçrÃz»PÆ­iBM̘©ØÇó%:FW¬c…°æ.ûgIº®ÂnÐ0wJs7…Cäw›ì„æ_ráðÊ»…˜opÁe,òØ\(fNÈ¡·ï#áVVìŸ5Ñn´—žµ$C¯&•ñ۝FX{J¸:ͣÏ÷ëh¯Pèfס:ڇ¦±¾Eƒ×{.‡
IŸ&tƒ¾íy"´…n¶Ðª"R„Žæ.ß¼ÔºeÃÝ®öµåÆÌt|—<`8¨f¨ðB;·}•‰ª*¦OL&„>ðj@Ú ÎpŽ¾iõ֌±Ó”9ë*ȧã9"G÷iå&m|˜¡1ÀvàM—ÛŠô5ö9>À*;²BE“¡nKoåYf*Å+ËE|Ì2º;¯Š;ü(ðàQpMs”ú ¬Ñ<dQÉÂ#Ý\TžØHÏ#ux7??‰®N¯Ç/›Ï¿òv§|`	E±’G>ãÿHfÒ:þ#Jx§,ôTÕ[è*¿äûEnÜ^ü£´¤?”®ß^Œ-²“$ÃP+º ×&Ôx|¼B’!?¡B‡wËöx¾HFË)MWc<÷ð„z¾y¸½¡'k¾£UÓº
#‡tuºpµ­øü*™$
ßÌîé4á%¼ã5$m¶˜%‹ù/GܙØÔçMïÏÞ¿ù›ˆendstream
-endobj
-1506 0 obj<</Type/Page/Parent 1369 0 R/Contents 1507 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1507 0 obj<</Filter/FlateDecode/Length 116       >>stream
-x
+ä2T0BCs#c3…ä\.§.}7K#…4 Œ™¹…BHŠ‚ž
P$YÃÓÓSOÁ¿ $3?/1G!9?/-3½´(Ä×ÉjµP04„hՅè%¤ÅÄÜDÏÜÌhWHŠ†™!È×®@.08)¡endstream
-endobj
-1508 0 obj<</Type/Page/Parent 1369 0 R/Contents 1509 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F2 5 0 R/F4 7 0 R/F6 9 0 R/F7 10 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 733 0 R>>endobj
-1509 0 obj<</Filter/FlateDecode/Length 2872      >>stream
-x
ZKsÛȼëWÌ!ç`šx$~¬³®²µÊJ§*•DB"b`вþ}º¿
0
Š»ÙÚ*¹Zïý˜
´ÿ½ŠÜÿEn»$s›ÃÕ|6ÇoÆ¿þí*Jf+·Xg³¹;¸Œÿx°w·Wn•ÌRá\g³…ŠÁfë‰ZÅ`×óÙRe\OÍ.VTµŠáôÁ­Sºd€îzÆ2p«Œœ
ra2Éf±ŠÁ¦K3Š*»X0av¹b0Œ`’ùl-¬b°‹õÄåh¾`¬BÍшPϦ	"l4GÔCÂÂË­—ÔlHØ(³,2ňÈYŸÆy"i4@Χ±ç¢ÄGR1Œ¦Ù,q‹À
-‹¡L‡×,A`3،iYÅ`3-¬àƒK¢xjwNœ¢ç,Éq»Y¢Ógö¢°‚és„4
-+^Å1ò)¬·»\Zù"oǐØØeL¯+vWkäYX¯9K}éLjÈ4†ì"¥Ïõ²‹¹5F³ÕSCÞ«€™
ËU`½l²´¾‰ÐlK—òv¦,›:°ÖriÌqÆäš^”A¸„r¤bª]1vEׄŒÍ9¹UÌò±©„vOYÁ`A¤²‚ѐóùÄgÅ`±`W1XÌ5cŒWñÁ~¯vù܀Áb¯¨f_‚(²~\.X,@¤1ZÑèH*µ0XÁ`1(_`#QXbªY1Ø$bùFYÅ`Ó;AXÁ,Á’ÁYÁH#Š©vƒÅa¡)‹©Dˍš³«‰W‘ÍH²æL"Ø	ŠHäç+`°	w °‚ÁâÔ˔Ì<¯¯È
-fž#øXÅ`1bê•b°¨Xª²‚™IÖ(hîã]qË0^p‰!oÀ`3‹>°‚Á.¹¡EV0¼ÂðÂî(«˜ñ®QaƒÅ)6‘vÁcWdƒÅ
¹
-v#ègäydƒÅ5C½R÷+õªÏ$.
¼ÜD)/9‰!ˤ`°èØ
¬`°ð½XÁˆÈgrdƒ]¦ô9°‚á3.,ÈÆÈÚJIðӎÖÈHCæ2[’rsNðäö—¼ÀÁ[ôA/E)#5dJ#RTXÁ`—sXÁ̯˜Â
-F0#ªY1Xtî„w(tÔh×g)á	‚`¹”ŒG \µéIÅ`q{TQÅ`W+f8È
-†K¸7Âá‘U£¦vûpT3Ã0[ÂR1jVÌà©ì*‹cgÐÄdøDáôá.±[Ab€œ@$ÑJ7r™DÞa‚ b°p=1Š*ëXÁLqÂÙ¬`°ðI¬`$G³z¥¬]'‚¬O†«À·ˆÐ1=áåጤb¸„¶D~GÖÔÆð‹ãjj=ÕœWHÅP‹wÁ›‘z(ª˜FyïV°ÏÃBY;/ã%e¨9ÆÍ#¯9`°ö”°^ÖÞaÁbÛ®0™œ=“»sî‘ÀúT ívlÍ)Ä"¬¼¨`ïNl² âÀ
-¦Ë܍Â
-†SXWw”õNá`'ÀœÿƆ,Á4Ë^XÁ`íWXÁ`ñ>
§‚fÁ¬û8°ŠÁÂYµ«,îJhÔ¬ãŽ7Ô~d}¸h&;=|x†$܁õáVðn`}¸ƒ¬/°‚ÇpG¶·—ñ2µFJè#½RÌpyV0ÂÅ¥}2ÊÚw˜?ÙéX,H£
êˆÉäÜN Bµ{h ƒÅò?ªUÍw+˜‰˜º¤¬½	YÅu=±ë+‹÷;ñø^`¨öñÇC¸„ª#¿#©¬Ÿ¥‘5µŽZܽÖèe"kÁ>ÖTX/ºì?yð-?2@IûÐå!S&)ŠÁÚ,¬`$iÑ¥Q12½BMü—\+“ШÀ¾¡âþAã„I¬ïHHÅtˆïAT1X«°°‚á.ziðfƒÅˆ©SŠÁâvƒZl&+,ì¨WÞIL¥-y¤™0DQñ’ásï"k9´QBž8<‘
r15œ6á̃yÿ­Âî‘!$i÷LäÇ"‚7¸m˜«)oÿŒrvçœFøaï}hÜÌ0¹Y6Ià¤N¾î.@ä‹$	œ@p{$ș/öå:±oññ×ïËÁ¡Ù#᤟Œ=È{˜5|nt
-¤ŸÜA_9_ù´ãÁ[8ßà‘8ïçáäø†>p
‚Ã'~¸é§}8àpñ½¾—#ÌÏ# 8üJ1p
bžúâ/(ýë«ŽÀÇ7BƗ¢ß 8\ä±?G¹Ÿ]>îÝÝ՛\§îî
Ȗ+w·µ?à7›WŸª®©·§MWÖÕ_ïþƒg1Á‘ö5ÄxúÕm~¸ÏÝ.o][|/š|;5Eëº]Þ¹çúäåã®sOyÕ¹ºéQU÷¿éjwj‹™»Ûn³Ë]Ñ´®¬ ]¶î˜7+òÍÎmjh§s÷ÚN$Ø®«ÂµÇbS>”›ÁìÌ{ºOyãé»ü~_¸úÁ½¯«®¨ºÖ?‰5Ä4èE·:_<6yWVîË­ûZVÛú©uUÑ=ÕÍ·Ö=•ÝÎYðTƒ¿¥Œ^A:š¹·EµÍÏÏÜu~(ܯE[ïOL-ƒÍÝ)s¿Uå7ŸËêôÃÁÊ~{A5.[3ç=Çj3Ï_½)ºÍ›]ÝþqH¸Û_–D­êý÷Ù¦®¼âË)ÁEî²<-ÿ	éô²tÕ¶ÈåfwAÃ보¾åÎö¹Cß¡{¶Väñe¥P¿YÄ
-÷w]tï>ýrëõ¾G£|Zz%Ã!âþüåç_nïnÝC¹¿øü›>ðú\rðáúÖ}®ëo§ã%K‹™ûúiòÄy âçúÉÝ7hG6çé²	m]^mÝ&j[÷õ³k;ëyø
’#0ŠžLÁØÄSgá‰d³-6§¦ìž]}dÏNŒ±qÊGö¯_ò¶(û¢å$÷säwÈYEqÍÜom¡¦®ïªšc(NÝsZn0…“¶húp–V|€¯ù·Á~îÅá¾h8ëP#Q@õȶ>ä¥íµó¸QF¬ˆIHÿÏ¡³°2Ó°Ù#ÁÈë<­"ƒ¾þôOwS4‡²åCî]Ùù¤›¾¾Ýl˜B޻Ïe?ákøSÂÌý£,žØ¬4–hõH`&Ž£	N
-¤ºI"Ê|_?š—š	Üh|§¡¾C½u}H\Îûz·»¼y1¸½·80®~ª°Úw¥õý¤„ø€|þlã¶eSlººyv‹Q¦(âÿH!›‚Á‰Ùuž={^6½-žmÂÌû?ðè,TŸ§G“Û\ú“‚IÇ4b›mŸ¶Mƒƒ²p‡¼ýÆs‡¾ó¥€ËџSg9λ®)ïO¦öx„ó/{iº›Áݼýâ8°[4—Ý:(pLNóý3¬òG¬Øé8¾¨„L~
°¡÷<;€>ˆ·“
ù8:ˆî
îú5€-ßîÇÓbZ9n`œF,w_ÊMS·õC‡º‡à¬UnŸÛ®8¸®)ЗÕïœãvH|ª êï@V›Éìñ	tßuÝF¾ÆÿVî
hê›ûÞܞŽÇºé^dͺÝ2¹héZßN2pA‡åþ=û‰¶þu¤Õ¿üû<¡T…êߝ=ö¡)±O[«þO?!kŠ^hCÊ"¹}Hî>oW†Ek6G‰x»ÝRý5öˆå„†¿—¹-#Ýx7_/yq”Îò.ºäÓ²þæ#^äì&dù·¿)á¾wžÕo$Ël…‹.È,¦Ÿî®þ~õ?î‡
-=endstream
-endobj
-1510 0 obj<</Type/Page/Parent 1369 0 R/Contents 1511 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F6 9 0 R/F8 11 0 R>>/XObject<<>>>>/Annots 785 0 R>>endobj
-1511 0 obj<</Filter/FlateDecode/Length 2358      >>stream
-x
…YÙrÛF}×WôÛÌT`ìËSJ–ÇMYŽ"Ñå¼B D!

¥øïsÎm}IqœJ•“Ów_º‰üqÿ&M”šj{á{>þËòÇý§‹$÷|“æ)þܚ,ó´æáBÁ­	‚Ì‹©1Ø$ôbÍú!Ue¡—Coæ¢bÁF95ËYa›GСX«9)¼”šãØL*Hd›å8¥X…·&|/S¬Æ`“äXÖڍSÄ	Íaà%&d#rlꐰ
-ƒ-Fäd­æ(BŽ͂”æ›%¬—c†Ï~LŸÖ7DÁ©ØOX"A¢ØšõS[¢”§RAŽMŠÈ¦9‰¼ÂX$¬ÂМ³o«0œŠücY±›äþœH¶†E6\‡¡9Màb›±	«0½bS+VaŸ‰T¬õ*e$XüDx¥0ظ@Ã*VaÚ=af‰Ø’NVcæ*DK*Va°ðçÈ®õ9‰m}QYÔHÍ¤Ãô™ƒ¢X…Á&Ù±¬ÂŒ(§WN³µû¶s¬]AÊv«04£bðÙ±
-³FPÅZ»af{2d³'‚¬]‡©9b¼ŽU˜UȨٱVs۞ŒsüÍ
-3{Ò±VÖæñMØς¬WÓ+ZP,w[Œôr@±B“PRÁ­Á´Dš£De²]ÑÊÐ"H…ÄÊá‚Ì™”X9á
⇚…Ô˜¾²«0ØÂ?R¬1ò+ßÉj6ád:6,H’·³„, Ã
-‚Y8Ì,„Rë5†»iz¤Vc°9ÇNÉ*Ìf	éîbVc°XoÚ®ÆURìd[³²¯cìî BÊ(ÀU5¤+pؖ\#±ZØHÜ0—ü!ˆ¡9 ’3K	ÆщÒÚQÁe6ŠÑ‰¬Â`á|¢X‰%B"y]æ¼-—¤KìTGjLµÔ XëRZØi‹9‹‘ qIaÈâ鳎U˜…cÑ«1ǝçØ9ҹЌ¢ƒdSá0X¹¥«0X½Ð²6¢x~*%>"‹‰f…áaˆwa5¶>#W;ûÎO¥O—HhV^Å,²b‹§` Y…‘ÔÓiV^a»ûZÖÆÌ)T
5d3é0í:DÖ6•?¿”1+HD†¨-‘c¦Ëܙ‘cÅ©KMÆKC‰fËf‡§R—CAŠMç§R”!Í¡ af@>©X…ÁÊSÁ±nˆ''nÃ}IDŖ„vy°XRµŠðBv¬T¾¯- §à¼R'+õ Ç-ƒ@E‹³KÜ2XO©Üйó†­-›—c"ž*ºep稷é
"
¸7"EjÌäeT»ˆjVŠ§X…Ñ…QŠÄ;Vc°XPš•Ü™½ÒñÎa›€+£XOšÔ˜'T»ˆjL‡™BÅ*—C­Yc†Ã¡V²â£¸=כû؇¥Þâ'^Ät/œ‚pãP(Òf
¶¥Þ|EêzGó##§œfHîó à#Jœ
'€œ9@4ßúŽS™gA™;.o'ª1²ƒk V¬Æ`—–Õ¬¬§Yã-6Ʊ]Á":M ~wÉ}.>	`"„Cî:°Pø©*;ü"óI­ƒHz:Tœƒà†’k¸†8X}ø¥Ç§F‡ „žÃ¯ö¥ UÈßÒ³õÏ.ÖBq"Ÿ>7Þ"§ 8¼Ù”NÁ!—ø¹z°§ òŒ¤8	NÞ	6„„Oi»$ÂÁ¡-ð6_8Á¥lLÇ9®àkÃqö›_ xðQ„RBP ӎ³·ˆýÔÂĆ&°r¤=^l÷~uñî#†=0«'¼Hð•%3«µ|Æñͪú'BŒ<³z®ÍÍv74Ý4šUß·c=ýkõÛ.1!DìÉÀ3ߞËÉ4ãrþ'¼ôO†ž¹êrjº¹£Þz0†æݕÕïå¦)w*vêËX9w2ž½îÆ©l[ê;sÝ6u'Ž_žxŽÓšrÓõc#vßÐ즛†~½¯¨ê­E47tԏû͆1I®ÌnèÛz{&I¬$k>;šuonÌsùRŸË.8Ï<ԓ¤l¿³ªrgÊnm±Ù8k+ñÌÿúGœè¦›®7ý~Úím*ŽsŒŸtúè8
e·©ÕùÓã™gîËWs׏ÓC54»iŽ}}.G¹g®Ö/eWÕk[väêܹJë²5ëCByèŸ]»!¢‡ºÚÍôÝ´õKݾ-.È—
ËÓ3·ýP›ªßîÚzªaq”(Ø/ýöÆÄqï [_»æ©A@ŸûMߍ汞^ëº3ߚnÝ¿ŽæËJJôõËͯf?²9À<‚dLG†WòóȜWokƒ}üãh°,æñ›
 ÅýKƒˆÎXÂLH9lêÉ|í‘ÓÈÐpÿí_îšoýðû9Uøøƒ,6ÕЏýӄÂm{$¶Qå=r{
¹£-€':úRnkrxi*üýÚLÕóiCð$"»k1[%¦É\í§g4rSÙ±¾ÅT¶o÷Å
‚¤Ÿ†csóÁ\µmoEÏYB_Ý×㾝àwõ<÷çifpèFoÎàuß=5›ý NÉøßv#¾"0#÷õûf¨·ˆP²¦ŽG¸ëQÖÀŠþæçy’Oš	­ù¹Ù6“8tF&>W-šÒn´ã(Aߕã¸~4·ß~ùlvÈ#›ïÈ~¼yæý¾iׇ\i‡q)ŠÉÌ|à˜G8_e*vmÉ{àO,˜}í‡õhúÁÔ]5|ßM˜¯Ã>­Þ>žù4oÆ®ï.«¾Ýo;³.§Ò<
ýÖ ]ÌÄÖ¡èq”ØHs”¿ÞþßóƈwcÀõV=ÙÃÔã‚Û˜‡rûXþc”†|w+½…V®ª~ßáÂìžúakû¹éЯæó‡«;\JC]Aþû›~*èÒÝ~Øõ£˜ÕIŃáǛßà×~·ë&VLqëáM›LîCõ\oK™¢ûÚ^¦ãs³3S/©½ÿxÍOU™3͟sH§U§·£N°ù0˜øgqàL„21?ïêN¬Nçë8d™Ã.ù¦Öwñ[G8|æüMòby¸º}Å=õrl>ô՞3·Œïe€Oâ<~™ù_8§~ÍÒÿdÑÔV¿\ü‘M3endstream
-endobj
-1512 0 obj<</Type/Page/Parent 1369 0 R/Contents 1513 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F6 9 0 R/F8 11 0 R>>/XObject<<>>>>/Annots 818 0 R>>endobj
-1513 0 obj<</Filter/FlateDecode/Length 1376      >>stream
-x
mWÛrÓH|÷Wœ7v"4ºû1„ÀRE*,vÁ³'Ymy%;À~ývŸ‘5ãKQè´ºÏeΉgFbü1R&’Òlfqã7ӏÏïgyÅRT~nÄÄ&2#ZËbb°I¥!`°yqª
ðF“Oqèì–IT!ì¼À_…r
„­ajž1Ø*Š€u¶ù¿ÜHU1]´LFÈZŠ(ȃ-Í)`-™ÒdbTŠPÍĺ”2†C¥sæ @+õpJi"ǔF¥)ƒz6ÀL¸ˆò
0Θ’×˜	'ìÓÄ)­Ò™Bj’¨36)pð—<góà±ùçÎbԙDk™È#džr<`Wi”•1Ø9'*ÐØ
aèìŽ&æô±ÒœREZ
#Ÿs¾P
'ß
r
¤0žÔl’HC¶d?½±‰´=‡?§Å¤Y4‘:lÎeuÏ*`°s39)뜋Ò«sR8YçäÙÿGVžÕòLG"ËU
}ˆ&rF=@˜&\VOêœåY¬G££é€šr—Žœ‰ó	¹:=†-ê<>KVO<OJ=Tcæ$yÒP1ÞI¹g«ƒûQ·"csEžÍ0äz‹"h*)`¤„#7!«“•\QöÁ I©6À`3DÀ¬^†
`vâb°Ó2p1X,*Ò™•¶1Ã
¤»1§¯r•‡,'Ã3žt¬Ò#½L2*ôBt‰t”Ó5nc¦@…\N0‘O5IôdðfI$S๘÷µN'²Q ¦2ajJ†˜HÍ&óúÛHÉup€Â2¾H<é„UâëOhDÖï …]'R/å´àû©Vä¨ÐC
-+¤'ïbNæ<&§€Â²ÆåxÒ	3÷†vøˆ#gR^ éD:aâÞÁ<G䪈Ê#&æŸ&ë¤xãsñ–E>
-4¦‡b-BÒ	c÷ÎrB^8rî&H&h„¶‡›é…¸ûyÁyÒ	±:;œ@.I%ÑCö•›íI†JpybHõ;‚“Ù[yš½YÎ^¿+ð¼,Ÿø¹VT¥,Wúµ˲ù·UÉmÓt‡í~z»’÷}wØ
²©·õ³ÝØíþÏå÷Y,7¸=h))#YØæзûß*êÍ·z4¹|ºŠäãÛÛO2ìlÓÖkDÙïûöÛaoyêz	ÕÃ¥|Éý¯z³[[Ø|x'÷[¨Gi}"¾Ôbüä®Û°
-u¾A¦Bð1 =~]>²~;²`2t‡¾±Òt++/m-w_4>SšH> ‘nuhöm·=
ë‘¿,ŽÖûÎeuýó·$‚ߘÅó§ývͶÁs͋+ßâ¾,Xéâw»vûìŠ<7ƒ‘«wg{œŽE·Ãp°jyR®¦‡>î꾺­‹Œ.?Ø=îÖ]óãšZõ/¶iíÏËDTýѾØušœHb½’WOõ+ö
-ÿ`ÿåFVv×Û¦ÞÛ#œž4>FQ.²³ûQ ižFÈ"ùlë•íö2É<’‡ú—üÚ´çê±CáŽf_
-¹,ÿÔØÆ
&êJX®G÷,kÖ©Æôm1‰ëv{MÌ
פûúJc
Fá+¶ÔÊu‡¦b4nÕ^cœ:÷`7]ÿû8O—Iâ6’źû)wëö¸j§½Åw°{¥¶n€Î@Zö‡íÕFâ})¿‘ñpX»u~ý®¯6“âë¿â›S¸¥·onåSß}·Í^Þv́—@}ÜÕ~pRpSÆs>¾Ìü.)‹
-ÿÓYd¬ù~9û{ö?ß)aIendstream
-endobj
-1514 0 obj<</Type/Page/Parent 1369 0 R/Contents 1515 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F1 4 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>>>endobj
-1515 0 obj<</Filter/FlateDecode/Length 1287      >>stream
-x
­VÁrÛ6½û+öèÌD”Hєì›ê&ÓÌ4nÚ¨“‹/	‰hH€%@Ûúû¼Hš’Òi;m<™Iàa÷½Ý·øó*¦þbZ%´Ì(¯¯тÒÅm´¦t½Âïÿ[I{ÿ!YǗ~Ø^ÍßßR² íXÙjMۂ€³À›üú¾“-ŋˆ>h'­pJèãgú¢taž-iéžMûÕÒ³rå›íWš%)P®?‹z'ø
Ÿ¯Â	³e%üqD›ƒÔE¿(¥8î%«(ãE[CªÚ©ý‘\)é«<Ò¾Ó¹SF‹Šj™—B+[[2ûïÅ¡:CR‹]%=@!›Êk@òŽ1BÄ/C\’°ÐS¾8È8BsӂΦùÛyŒ9Ä£MeÇh`"‹<_$ø©*’/¢VZÞñgh6KúÀ¶¦ê87RQ4Äû]«—ùÏJw/´½ÿ4ÿð	é<©ÖhN‚af`
bÑˆøc2ç°H®³²ðZáˆK‘Ø	fr‰ù“y¦]附A¦*ñ	|’É:O;À֙U·v`”`Lcyyä$N+ó®UîH¦a¢NÎ͍ޫ“æQi½¬”u%­£}ù}’azyÜ}ƒZ‡C°²m8I]ÌDe´ÄYí“lú"Z®Ó ‹èO¯Fm6'ü?li½ÌStì˜baj
•jYïØ^êÝeЀzU#ê'»"S'üp‘¦kMU
ؓó€?[fQgt“À9Pa7áõk?ϒšÁj†ŽF¹ø’ûío*ŽQLÔüý÷º¾ïôAÏ Ã^AGÊ
(FƒW*Ëdy•DšjþŽèmdÚ^séòyi¬³áм_3[EëžÒÇ$[ùþyEðG½<†oѧˆ#ûHÍÿ£­…óæå?ƂÒöðžußÒl‹‚!'lÉ!¯¸_u}N݉^\\F(S¶M4ƒS9UÊz{…WmŠ”YÇ6 ár6"yðÄD߆Ÿ† ¨ÿc`
-Eqÿ\™\TL¿"ÿ+ôÇ̾u:¢Ü"£iö8;uؙ—P…l«ÃÊðžÐ@JØKÓTÃ8Ba”c%ÛBX5ÔÛ_2uM¨SôcӚ'L3ðÄ<LÝ~œcd
ÊZ8viK…!m&,êݙ!Ç~Nµ2øe1°|>vÂp¦Fä_¥CŒVAÛðD+ù©Ø”G«ÀÊ0Ìɵ˜iA·8b˜ª;%Núž”89—vŸE“9Š›B‰Áåyv”vmòœÝ¸÷ž!ò·«þ¸¹žqÛ8©DÛotu¤eB;…d`
•Ô‡ñÖ1NpTçèŽ
'…
j{A#àÞt-=^§o0–rUsÚ;ì	=@Ø°;B¯*<^#ÄF¶Êo|
“/-.±(îÅÆ9§òZú²´‡Éë¤Eܧ±â‚1—+*ÔA9*qw8ø¬$¬œDã¢C³áNx·–wq'wËôî&;÷
-á8ŠÏ“²Ý·"—Twè¸R`žð0™ê³±ÖäÊSÄ?4ùÌE
jq¤:£Ñø±8)Ú`ÁIéÒÖoB¯<ü‚樼ëÛR5ÀpÏRb¾éɎ@ÝôÔ·èߊl—#kÕÁߐzÃ_ŸÜ-ý0û·wÛ×ÛbºJ£U¶Ó=»a2ßm¯~½úeù}endstream
-endobj
-1516 0 obj<</Type/Page/Parent 1369 0 R/Contents 1517 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F1 4 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>>>endobj
-1517 0 obj<</Filter/FlateDecode/Length 1614      >>stream
-x
WÛnÛ8}ÏWڇuX¾Ä°ÝîSÚlÛn¶u±/y¡%Êb#‘.IÅñßïR’eÅÅn/h*‘s;gΌ~^ÍhŠß3ZÍéfIiu5M¦´˜Í“9-Ö+ü<Ç_+)/æ«E²¼ôb6_¿|ñ~s5ù¸ ÙŒ69œ,×+ÚdÓ)mґ€Ya·Ê{$c)S.µÒ+£ùÒ¤…¯­Lè֓/$UÆyÚ
-§R*å“,I”%iéÆ>RjªªÖ*|ߑÒѾ©¤Ú)½{³ùq5¥ñì‰m²ÑçÛ$²ÌJÇ/ú¦4NöžâvU³?I»ÒláêH°ÿ³–×$tF;©¥
O­¬„‚Ë\=ˌr$"ôqàn/¬Wi]
-‹¼¼´9âºI	°Ó•ÔžLŽ›ôé¾
Œª„“Ú¡þÖT$ºt+¡ÅN†k{iÝ^¦^=Édàö³A‰}
«F˾叐YtŽ¨a£Ÿ|Bá|SŸ®ŒÁÞªŠÑ9EÉi(7p¬€N·‚§ƒ\p
-ˆk«áó¡Û¯÷x¶/môóe²`Œþ)¤FʵCp\U87)£ƒÐLt	ó¾@ýLZT.-Rˆ!oRS’ªöe(Y࡬`×0ò*_{ÕÚТ’¯8€W0þ	â®)Ÿ9Ç
‰	„ ÁD€Ôq:5Ú[S–8¿=r\ƒŠm>ÜOPTËÕ®¶1Äæ¨UJ—ÐañÄw'Ѷ¡³FéÓ	’9µÜˆ3ò®N‹pób‰9ÛžLC~’Iç:ítâ,Â
Cà’IиB³L,qŠŽÀ@:ùʸÂ?àã
ÒU¯òP‰>óZïЄDáÚfÀœóh=tÀ¸ÍK_…:Dyo#бAáZœn­Y*¢±
-þX%}a£„H}¿»§‡ÑwæܝðbgEE­á‡7Œ5ú‘s¶ZSŒ>ˆÝEÊ¿€oiP›®}Ü…Þ
ÒÊÍ6f¿¹~-ú҈[Ï8‹&ú€ãªBa™‡{ƒ¤pò¹¢]gw
-uЍ umʺÆзm›çïÎÿD
-†f¥½HPÔ%Íð\·
-}ÏL†Jó½˜Ð8ÑåK]	(Kôñ©´Cön+;ý_­¤ÈM­³@kàр÷]«çɟJ×ÏÔô!Ý’pDbÄñðuUWQ˚œis
ØA-øæ9ô–½ž`™A«éP(ÔV–’5Çb§ô¯<·òÇpqÆ,…,÷A3¹Ò0Ö՞XÃäg“À
D‹ÝÅ#C>«0рCýÂÌ£F{cK]0±•˜Òœë“P¥Ø–q^M>¾¥ŸW„ñÍ,jÿlš`Ixǵ¨tQx–ʈþiÅÏyŝÒö²,ã,æSª­
÷Ž`÷·s‡iN·JhxÀ3W:,Ú
-CK£wî¦ Wɚ÷*Dò0_®š$Ú(ÃËni=Œä¹YðÈqW˜ºÄÔ@_Ö/°H€™G萰i

8ðœôöˆE†ƒlæšûg-J•+™
ˆÒͱ@Prp±¦ç¹´kÓ/ÓyY»¾ÉW:ÝÅz~a‚}“ö	ûKÌ´ǐ¦{ŒÊ†­L«"/FH«RÞ
-íb§¢ÕÌc½¿DžZލ±¼ÎÞÒxÁË-@仹L>®]zíu#õºYÜ;Ô"æ1ÊÝmQ•DègMT=Æî¢GÁTì ]¬OžcݓYBŸÂj1s©U#ƒe‚e ¯Ír»ÃØ¯“›a³°ç°}eÁôã¸gˆå¼­SÞÙ1øC[±2¿mZ{¾ˆ­Mͯè2¬-×[¥;’N“5ƒÐ«êÒ+ÌÔH˶”\ï€ʉUÊÓN-èË©cÚ]3¡ûR
-¬ÑV演±èგ¶ÇFMlø_^[œÀ7‰ÄØ*]˜<¿ªÅe®hç Ôiq
-_NRu†‡@y_ˆp\‹ú«`ô€W³¦÷1Ý·?Àâ(@ûU$†ÛnŽÔþ«×‘Œ/Bh–3¼^G ÖΖøˆ\ßÐrÕlõßn?¿¿å•*xgҚ7¡0hù渽0^MÁœ¦1	†ÝÀ‡ø]-×Qj—K~ôÇæêï«
%¹@endstream
-endobj
-1518 0 obj<</Type/Page/Parent 1369 0 R/Contents 1519 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1519 0 obj<</Filter/FlateDecode/Length 1606      >>stream
-x
WïS7ýÎ_±ã|(LÁ¿ 6ɤ4¤Lc ±3ùÂLG¾“m…³tH:Œÿû¾•N¶¹ÆmSûNÚ}ûv÷­ôxУ.~{4ìÓ進åA·Ý¥Ó^·Ý§³ó!>÷ñg%Í.'«.½¦É;çøVw»4É©þyE7b)i,í“Êð¥|¶ Ì虚WVxe4ÍT!ÛG“¯]:§sÚ÷{íÁîóR8·Êß$7°¸,…ßg„.
-/­†»'IR{«¤£™±Ì›“¨ü/T!	+ßì5öÒwô‚p¤•£"%­”ž*ï±á"7«ÿˆ~nMUn×¾µÉËÂ8ïv3·V®Ý4¯öÒÃÖHs­t¦¨Bºþ‘›—þ£wxĀœi
C*§|ZDZ¡k:-ýÊ؇MPLñÆnQ“‰dÚÍ
-ÞÞ=”Öx“™"mÙøسޖÙÇÿnßÅòOæ_âé\Q¯Û褪üvv*ëä1I~13BDNÒRf
tK‡Œ<V
-iÁáù5‰q”V	þ™*”ç::ï ÔBþ`ÝZ™ùb<Eƒ£íRcÊ<5dÐ>ã7מÜÂTENSIÚx™GǕFÁ	Õy
-¸¤ó%‹9 W¨!ìqh¯cš¼»ë\ߥÅØ05ª}UX4àÔ«ÑbËJ×½‰=ÎU°ŸVgª3äJ)”ž“ÑŚVhg¸É…]7£{a=¯…-è	ÅÂBÔo³º9±œ
-ZG•®žÉUei¬z!Ÿ½Ô¼´›@z莚[rQޔžYá¼­2_YوÉñ>d¬ƳB!vEÁ,‰i!Ù´™z¡ônÛ!Âј¾@TÌÊэô—×·ãМ
H½Èsԃ“®MÓð:gk~Á½SéŒûX <Ö4Áj)ó`Xϐ<R³[SÂÎÁ;£­c_Š‡°~‰£ûC5³sõÓ¶ž{ua…¥šÍúß)ÔŸÿ„Hº¶P·Mpxü(gÄR!IXn‘ÄT€¨uÍ\a·C
±Iâ˜y&Ån:d7ñQj°CÊÑ2™70Ƙa©ÁS‹1µ0,T3%´¥Fä9—}L|+J]‹ÉXB54HŸuRÔmn®&V%T>70rS¥=©Í«ÉKÅQçT] %W¯ÐëÝ¢XB+Ìt
?l‹$=çZ=&`ax3òȅ˜ÞªoÜTŒ‹8Ì!Ž~µPФ©Aç°ìÄ~IVjZ¿	K²ßЊ«×Ô֚wz%³ÿ´Ï»ãÆQåêršmԙëwãîZ@ËKŽq¨èãáa»7	“ȼ[™³¼À˜š*Êièì ¿)6¬œã¡¹>ñ9,ÀÿmVšž„U¦r“ÔûC¦:ÑPò
Õ½?ŠìKjq»U¡ÐœÖ1µ’3¶Îß·q‡õ£©2.k2R»…ÍAQ	¶1-–RÄL"[äµÖ>Π|Îdf;D†n­×ÉΰR]ØVûŽã¤¢m½`ò°‹Ü,YWìYØ
-
يëðsÁJt÷š¾ò˜KöÏ>ƒ†Ç¢dW‰@d“Âd<óÈÅKÕdòYð¤»4}\Ž»#iîkoà
Ÿ›Å\>¨Vxv‚)‰ï¡^Á‘ƒÐ@Ò1¸'1•ŸDQ1ûè:èx¨8—3<>ÉÏq.]ÖãH^Ãõnµ-†0çâB#ÒÍtHT0iôX	ûÌmZçŸ2Òóë2‚l8†
0ž‹ $†¹Žã«·Í!;Á‚™)
-M…ÜÀ+,#èbƒq…Í|7n#®x1pá¾sÉ8é×J‘ŽýŸµz¡‰‘˜‹›¾q“H{Fï~»¾ys1zÿ¶Ûý…~—(ý¸¾£pB+­3Î;ˍ+Ê7
Ÿ²áRK«2ÕºÌø0'\Žþþè;¬ö܏BÐŽ¨SÒþ/ê/·Ÿ~ÿðéöóÝÛޔ1ÿu„ó¬_Z6¤­16Ùøf;¥ê¼ž½½
îŠç§4žGu_Œ./èΚ¯¿p’…“D(s6~’6œ»|‘<üÎY°£çlîlxÖÎq/…©Á½Ÿüqð$»Sendstream
-endobj
-1520 0 obj<</Type/Page/Parent 1369 0 R/Contents 1521 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1521 0 obj<</Filter/FlateDecode/Length 2027      >>stream
-x
•X]sÛº}÷¯Øñ“Ó‰dÉveßÎmgìĹÕÔ_µ”Iò‘ˆ˜$”¬ß³P’é™´7±e
`wϞ=»ÐÏ£1ðL—gt>¡¬:
Gtv~‰×‹+~=ïӴ”Îχýç7ó£Ó/#úæKœ4¹Â›œpÊhDóì„zÿ¾=>ÿëçǯO¿ÎÿA§?t­ÉèAUvVÆítN‹-©²¤JWí<Ù%ív~˜ÿ8Ñ`<^ÁÔ/,Œ3¶ðÙVÊÔôÉÖÁÙ²äÓNéA‡Ò®lM3íÖxôÿŸ™ó™w6S%Ý+v–nœÝø?u†æ3¦56×:ÄПµ·eçÉ闏# ƒ³	G9
äۖ@FSm 
+1116 0 obj<</Type/Page/Parent 1099 0 R/Contents 1117 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F6 9 0 R/F7 10 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 300 0 R>>endobj
+1117 0 obj<</Filter/FlateDecode/Length 2453      >>stream
+x
Y[SÛH~çWtÍË2U ¬»ÌË.M†*&a§Ø‡y‘í6(±$¯$‡ðïç;§¥î#Öb\©2ùøtî—n™ÿøj†¾J&jUžÌ¼~C>}üñéÄ÷C/Qñ<ñfªTŸzY¶êžWqàw¥J/ꁥBz T~ì{¡Š—yŠ’ˆ¹Ð‡´
D	Xª(ô|Á	s$îä,Õ<´H§€ðŏà‹”Øx:lx±Šâ™‰0"µH-L°TYB®ZN@2é[-$(1Ø õR!*1ØhNîZŃM©Ž5î†)JÆ‚œ»=gü³œ€äPBJ-)19xȐc›…Tˇ‚­18ÄÀ9ÔsÆË	¥³ò‘%%ëÏ)Žl“»Ž˜ÜM(»–5î¢\u—s·çŒ–Ê(–”lS†+0Ø8¦Vq¬À4~u™e%‹¬#–å`ÂyÆcÆÍj€
fàØ{Ç	‡f)’áH‰)˜¬À`“ê&XÁ¢wGš¿çRV`„ͪÓlBÍ"7¦!jϙØ,' L¢
Bå%“±d›$cV`°YLîZ³SUi¢‹]›©0õyˆ©yCFÄPŒæ¨c‹¢£:ŽìœÖ„`¦Ó~u¬q*&g jœb$œØ0"§+0™QÙ+0ÌbJVb°!mY'+1¹œQ@V³Ä`ãdä•Ä`ç´¢œ¬i¨(†3ýÞ
+¸†ê9ÓA–¡Î8ÿ–”,Ò“Ž,6>‚q¬À`qæ"ŽÁ1ue%ΩU+0Ø$y%1¥) F¶²&Ma V—¦ž3y±œ€6M–ìÓÔKÒFDG8V`Èâց^s¬À`qò£‰+0‚ÁMÁXVb°‘?ÒlBåÕ>tjϙØ,' 
Ւ}¨½dªcM¨›fä®c†fØA"+0…RGXVb
+5¡;V`°é|,+p	)^|VVb°èZô©c‹w¬À¸üÍ|êDËJ6àa·,¦•ÆEn>X´ òÈwChå‰CGIÄÍîZRb°1]++0 ¦ÓÃÉÎ<MÃÛ'ì™õFŠêˆ5²H4­wb°ŒXV`°¸ Î%kdqþðÍ;¢}0bY!›Pô‚˜¼ŠMÇJ^Œ4»zð1=)v.!c×a²K3-XÁ¢&°ëd6^!^˒W‹F—š%‹»j&eÏÇvMDXÔStþ#WŒ8"âc¸¾8./#¯ÃQŠj8–ÞŒg¥Â¾EqÙm}L-å8@'çcð`Ñ
+JLÞ²EË"]1
+Ú¿ŽùtD6™¤•9çub*gȔJ‚½—ǀùR`ny0Éï†q
+Ë£åX#ÊÝhE	с5¢–5¢8-¹ÁFBt`¨eh`^çz‡	с5¢–5¢¸
s3«Œ„èÀQ˲(_0†P8Ác9˱XfÞEŒ¯œØÀ±˜åX,1·~#ÆÀ‰
‹YŽÅbsƒ6bœØÀ±˜ãx0휖 DÃ2`98ÞNèÝ2gƧ¿OòƒØè‘áä,÷aqrñó>S‹
¾»HÒL-Öü•~³:½Z¶]“¯º_ßð\‚¦4ϝCA€'Oïò¶S_wë¼Ó晨æT]ªÅó^]ퟰéѯ—QvÅêúfA£ÐÓ3uŽè#Ò³x.Zµ¬ëï
+?sµª·[½êŠºRõFýöåqñ¿^¯õZuµzÈËe®Öõj_êªËÍc?t£ºg­^uÞ´žºU]óJëªÝ7TÞ©|»ííò$Ãnjµoè9SË}§ÚºÔ]Qꖕ±3Û¼y‚òoõ’´À£J«nZ8·,óN•‡xµ*k$¤Ñ+(Tp©íCèßӃÿ¬d©Õ¦ÞWk•s®ù;#þà/Žš'uªž»nwyqñòòⵔ¯nž.X§ý–‰%øaøFÉøåF&éµËŸ´§î·:oµj5ìí¹vˆ¶«ì¢FC®¾é¦yý—µ=~ޚöú0G•b5µBV׫@ÂQQ„Ý×îÓç¯ê“®t“oÕý~¹-Vê®@*á쟧ŸîïþüÕæ4ðÔÚd÷J
‚P{«ƒ¯e1˜*ªÕvOóRtϜÓ?m½oVÚy‚JYTW[’º:ߨùTiDŠD6í†+Ô{Ò^<í¶^÷óMy‡´‰Q¸~Öè›3Å馰.>¦bð†É—[M±_×U‡fãîè
+ßTÄ6ÉPÙSõ[ýBr[µ&Cåh‡…Fû>\ýþáêpyñ½¦íߛVýÐ靚]ª?tŽ‘¥¹@F©ûÌXgDüÎß`ÒcVë_ªûb».ª'Vý¡¨ò¦8Jsø¾æ€v
+då®nºSÜ"”ÃÉ…ÇÝú}Õ᥺n4Ö$»Ü–K4oµ)žö™‰M±Õo4ÌMüæ!WMÎM„¨„¯hîނ"ÕÜüãf:UžÜåMy8º‰fJÞw ¾T]ÞtCq)–:«Â÷^þÆB.LlšºÄ„ëníQ>Õ	ïf£‰5°ítS¡2?ô% §À	B§Ó:×e]¶u>Ž&}ßV‚rá˜Úbڄ=ãL‚•y±53^™j¶ºÁrØê(Âì}›©±‰tUtÄbˆìbÜWÅOµÚØ'Gؙ¿o'û?;\¬\Ý|y8S›Ç'|Õü'ÿø¼àÁ÷3õåá"8Sº[yžw¼7¸g}v“ñHgÿí³h[uSWÿèÔcÝ|ÿçXb¸q	¡xº#oŠü©ª[Êâ}Sc%—Ç,8za˜ôö
§šV·7G*š^i×ϵñŒö/¼ëj\«Ôþ¡Í-èý%§WÚ}ƒ;Í%ýúùö¿täêš{GÝ_Nì¨Ma`z™ÝÕ«ïÐœšé•ô{¾Û‘›_1<UŽ[Ýa…çø‹=Ö¦+#ŠÍû•¯B¸FMÏ¥ì$|Å8YóÛªkêõžo¼‡]©Ã!“Š®Úv_îèF<êHÏtïÐ!2¡aþ¤8éŸDþñàK†÷•˜×…÷¯ýø7¶å6{ŽÙaÚßddºéYIt”’éÆf%ñQJ¦Ûš•$G)™>€XIz”’é…•dG)™>.XÉü(%XãçÞÔ؟é‰"ãzãçÞª™èڋYç•ÌÍÛ«|MŽ2|’Ex™Æë%÷í¿'ÿ9ù«\>”endstream
+endobj
+1118 0 obj<</Type/Page/Parent 1099 0 R/Contents 1119 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F2 5 0 R/F6 9 0 R/F8 11 0 R>>/XObject<<>>>>/Annots 352 0 R>>endobj
+1119 0 obj<</Filter/FlateDecode/Length 3312      >>stream
+x
Z]sÛÈ|ׯ؇<8¦	€ŸO)Ù>ç\e霓§*•ˆ„$œIB
@Ëþ÷éž%v:B¦SW¥s«¹³3=³³ÔÏ7Ɖ›§.›¹Õöl<ã7ü‘ðÇï?›¦£©›-f£±Ûºy†ÿy°qWg·.OGs!ƒÂª°‹Qêfót´€Õ٘S U˜q>Z
+'6S8)¤b°³¬gV1ØÅ4xÀIo]šô§õ"L—£Ü],è’
ŽôÜd6š“3@N ¦ÌÆ(ŠÁNRYÁ`!_¦¬`°HäŒc#˜t
+ß"«ì4ë¹¼\RµŒax6
ˆñx2e*1	OÜÌP$Ç3Ëi²LhÖP §ËÌL“¢ñˆ¤I8…XABș„—¤6Ð>IR1%cî8T1cÉ ¿°‚Á.'JXÁ¬‡¾EV1%œ@%ao]
tÞ%šÎæ^à„Ë#H0œš²…‹*š%+˜.ϑÈúiáS—øiÉ´“p*²‚9mÆë
›ô 3¶‹©!3,ìdI뇦s+Š…Ґ
Œ¡S*°~h2±’IPᩛòC#ÆP4¨X_mãÄ07³8R &Kf.Ši–ÝKXÁ`)åcsép}EV1SgõÆ*‹e‰#+ì|
+5…U­>+F¥NluˊÁ.Ù ¢eÅ[7Á’Öyƒ&Ìm°l)˜ ‘²gK¤Ç¦@ SÀ'’ŠÁ¢ΔÌpC’±‚!º—ZV6!}q¬b°Ùu'¬`°Hu¦¬`ȘôçU{„F¤ì<Aú⼊!ršõ¼²%2™3ãrFÆl‰›±/+,v]ˆÇ
+‹¦Žp#+ØË—K™;+L½RL!§¬Œ8V0…´և;K`NA5ä;BÄ`ÑL0mdƒMúc3 Œb„±Š;’°‚ÁbûêvÂÍVÆ
+‹Õ¢>+†c¦9ŽUg	õJ1«ªï•½€»q2™ÐeC&¤`°è—˜6²‚Á.Øî…Œ€¼a¬b°hp9²‚Áâ 1ëûIÆ®iÇF¢Ë<jNR6/ô“É)[·3ÒÀ	¤Më%TõÓÍa"	kÇähX1BA…@Â`Y1XÛñ…ŒÌ¥“Þ¼^†ñq¥¦B„ÇÊ4ŠÁ¦KºX3›-¹±p(O“Y¬‚kŠµY?
µd‡÷ÌG
+ÄÀ	}$ƒÅi#SV0XT,\
+†™ðõÂbÀZç¸ÅA	÷$'ÅÀŠœ@zÃCN$ƒµt+	Åi‘˜wœ”8zë·amòc3î”Â
+éÕ+ï$*Ñ|ã9u0Äim³
Øހ2B°†Hš~¨
¦;ãá53@Jàá"9»y¬z"©,²Ì*¦‚	YÁ`s*YÁPÁ®#‘UËGçU÷
+(,{±Í°xqŸÁ¬LÀáRÂ];’ŠÁ¢°â0T1ÃI©pdå̄
+¬b°è_:¯bŽZfx¨
³viRD˂‘v E`³(x0Ž¬ÊδX嬸̅ˆŠ±ÔN 2’"v,Nþ¨‰È
+녈¬`°ØàÐ"+,®M1²‚!N(È{`ƒµ³wdMˆ;לUŒ¡b:ŽË!AøI’ŠáÖé\XoÖöÖ܁höÀÌR1ÌbmÌÐ'¸gÛ¤‚ÁÚ}XXÁ^‡±Œµ’â#¶'ங¢‰Ì°`F\ë‡â¨îÏ<,§†l(ºP‡1tɽ,²^œ¶ý>ÏåʳxzÐ0b…0YÁ`±Èa8²‚é1w1aC
+4/DÆz§ÐC}£å¦’²x°Óv˜Ór;V0XčãXÁ`qï†S‘Ìü°Š#«ØשÎ˺í0X„‡€‚eÅ<dðÂY.§m><CnÇúð"+8„Yn7ևYÁ!ÜÀÂ=ŒMñ|5$ô‘^)f¸L•°‚.îg¨›0–¹NÐYç“9–¥4+Ў[™p8}uK–¹‰ã²$Ø`"©,^ç&šøÉâðì
'áœ!úãIl–¶:Pï˜ÔI[uÉÔ_¹l+ 
‘TŒI­CDÖÅÁß2ŽjbׂCŒ¡34XÁ`±·áe9²‚‘´£…°ŠÁڃkëÊ×=lWѐ'bL‹ÂB´‘L—M‹È
+Æ´(ð¥ŒU«cÓe6¾Èz—ñPbƒà²!ïrÄp
+CárdƒÅSTŽ¬`ºl
V1X,s8YÁ`ñԇp#+,J
¹¬`¬Ü»Ô+.®VŽ(s†,\ÁÌЂ++²‚ÁbéCåÈ
+f¸l呵U`oU8‹ð½ÄþÍ9#‚M¼è
+%ÞÌ BfqàÈàÊ<­ðQˆaxë\!8É"g&ñ¶n›§­E¾˜½ŽÃ։'v~и7•
œ@pØOeœM]¬îP²xÆ#0“ÂK»D.Bpþu¹g&qÿð­ÆŽ|ÑdÇᨈƒdà"„Iܪp¦ë8K.<vvâMÇþM‹øÜ
adz>æ'ÚÎM‹*{Bà"¤#	O‹23«‡Pì$ݸ××g¯ÞqÕºë[œ‘ñm×Ü]¯íë´±»^½€v£¿^ÿñôK¶úνpWm¹Ù¸ûük¹»sm]ío6Eó·þ§qX;|ú%l¿ÄÃh
+ë/²A“ïwmqWç--^\¹Ïån]=6nW´Uý¥qe{ï®òíM~|šþ,Éà<çwÅn=`c¬Ž¦ƒ&.ómá~/šj³oËjçʝËÝþ.ܧ]ùíՇr·ÿæàõf}Š«xy¹þíÛLH÷ê‰åçÅ«¢]½º¯š¶é´S9¦òIé©Ækôu´ªv·?9Evêôÿÿ™`r껦A¬îOšäIa—¦åÛäñùηoŠµ•$rÿçjE
—°_¤è–ƒ5v}_¸Ë¢}ýþ·+gó¿ÉW÷Åq«½Œc¡=kôÃů¿]]_¹Ûrsš¹a]~ÒÐp;y{yå>T՗ýÃI
Nüüþ–žä|Ø¥_«GwS£±Ýîw+®ôÆ廵»ÕVn]<lªï®is4?#ðöÂ0tožé[½ä
G&EÖ«}]¶ß]õð'§¸zË;¶"›ÒÝVµkŠb‹öÜ OZlµ;®s¿<ñ}ù ÐŸšBëþòÚaQäèƒûö¾Øµå
+±)ê¯E}|²'WíEþ¥'wÛb{SÔ®ºål"
+<º¬«m^„ødÖáâ~óDɟŽïI©ÍµÄL«
êõu\©ž¥á’í<fÅ~<¿°Ü¯Ë¦­Ë›}‹v…Ÿn…äÔùfóÝmó]~‡ßö3vÜ
­œ©#ñ5Ç5‚ù›ýñÎ8hé­ø}Þ«©Ì'•²t2ù
+Eÿn¶7Ïì=ñ‡×ç¯ØÚ(|î.ÊU]5Õmë4ˆwh·îê{Ó[˜ŠÂau<ÓTñçÖáûò»÷Íé¸2O-
gï²j‹¡
+ğ\…3Üp%º|ÿ/÷±¨·eÃrv¯ËÖ·Ìî4‡Uz¾Z±!87nÜ$z`Rõ_žÖÊ?ËâѤGÝ­îó݁¹ò\áŽÍ_£;¹^«(óMu7à€Ô*.΃ós«À~ðnØ®$ȍ¸¹Ïëï·ø¶epš.LnÜ®zÜus_þxÃÄlj&k·.ëbÕVõw'Êý¸¬8Åpz¬òcQœ¢õó¡óñ‡6{K†2¨ÃEµ.o¿³>¼¸?¥D¯J†×ï7un+ÕßeXŠ8<àÀP¯E²ª‹¼-К›/î!¯qÍÀ˜S›†vÊ´tÞ6
+Lÿð-Žç½§éð´k6(èÕþᡪ[ޑüî€ÇÛÑ·ã¶uÁãû“çbª«µïzÇ-INðÞ>h¨··Ô÷‰wµþ纫Ú÷†ÉcÈÿ~`ðùOÿƒÝEí‰kÃÎ]­™{[—8C5¶ÿò
í’s˜¾§ÔÃî)]vr·Éë»ÂíöÝéÊb8u‚ás¾^ÓÝK´ÆÎe4ÊÜú°n
+?Ÿ¤Öð–£ÕÇñ#Ên`í<)âa}x{¿5-w]U›¦h;Ú¯“çnvŸïs,‡&Øx6éÕÉs—ºPw/÷1_}Á	o@‚'æO”àÄó<¾Ëzf×1QqnÁ1ԟÁÞlJKëú$UÕvQÚë¶\ìÅ·uµ
ýf<úÆß=Óx^½ã3ßÁøü=^ào——Ÿ«®Î/^Ÿ£r«?°/º·Õj¿…§æ5Ý}Ég:~üå<śÙúÅù
Žchò$'ü{1Á_¬ó݋¿ùåúìgÿšñiendstream
+endobj
+1120 0 obj<</Type/Page/Parent 1099 0 R/Contents 1121 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F6 9 0 R/F8 11 0 R>>/XObject<<>>>>/Annots 404 0 R>>endobj
+1121 0 obj<</Filter/FlateDecode/Length 3058      >>stream
+x
­Z]oÛF}÷¯ôa‘Ö
+I‘U`±pœ´ë"v²¶‚ìۂ¦h›­$ºÇÿ~ϹCÍ\WŠŽç~ϝ;£ü~›b3KÌ47Õú$šDø	¿ÄürýóI1IL^ä“ȬM6ŸÌ°27'
+®Í|>™*NÁµ‰ÓÔI‘…É$3ù,™ÇIAž„ìœd”Nb“"©1Øél’jVa°E<Z›‰Ö4ǒµ™4Aå*H‹r.t¤Æ`“9ìV¬Â4)§7~­Â`ólÄZ“¦SüpmŠŒrÐ$%º¹âÝ=¤J$F
+ƒÍŠ‘XÁSdÖ+Õxm’xÆ(9“¬¹	ꃔè
+zsSæÅq
+BeT0ºŽÔØ:ƒkUF¹”ŠU)À«8«Ãq
+RhD•ŽÔlŽZW¬¨ÌæS)ÀY
+͈J±0™ÂMOj6›a·x֊-")¿y
陊UÖ°Ç“va>“"™eT)@ìñö¤”êHnÝ,K%[éŒ2p‚Ȥ8å8«/$ävwf‚¸Ð’ÉÌgŽ°fÄiLŒÚñ¤Æ`gSÆÕ-Õ,j_ÖU™$“™Z«1Ø,ëE1
,F“ʈ3®
ªö:NAÔól´NA‹zFÔÝBÁ¦^Uj5GÝZìUd)Š%Õ¨@„HW*H¥Ü™žÔ,
+rK5×P˜žU,:Üñ¬Âì9#áXÁNÙÒ=+B#Ød¸ã!ÝáÉâIÁflRŠUìl¥ŠU˜ÅÁ`ÏZ“¤âÑq…@“sS“:Öï¡59’æî1X9…«0™3~­Â`¥´«0œ‘¬{Vc°)ÏÏƬŸÉåAšÎQ/ÐU¶
Ï)ƒ¤ÇyRc°y>«1؂U­U˜Î$šØG“4‹–€{Va°Ø7£µ
+ƒEÐ4ksžÒÐjÁ	 VËMy,Ãà˜Gp*ȓh7¬_„SQ“3J«Û-á9…¾!óÏ4e…
+¢àXa¬…HœcÅÞé<“¤bÀɌb’‡4‰‰÷¤Æ› Š“¦HÛdŒã¡0‰I
+ƒEG€Zù]afâ˜tÏjÌÄ#ֆbšÏmü‘d¬dCá1ô"Œ°Ê³
+ƒEÒ皵evrq*`Æ$’†U˜s Ù±[›+Ç6§Ãøšp œ
+É
+3’Ì”b‹VkVaz$ùô’†U8’#½Öú‹aTæfd
9d#é1õzDÖZ»$?µ‚d©ÂXjSäY…i²¤È³Ö¨È¸q.&ÉÂ&h­Ü_Lo†½K¤Ø™ýlSM	+MÕb:Ä
O±
+ƒ-x7ñ¬¸›ävÀã€37Q°%Q6B
+²ZQ'	T³[àH@NA´[ΞS'KÒs
+ÂÔd¼Pc°¨¸éTjMp¦Y…ÁJRkF5EÙȍYkÜñ~­Æ`çÜñžµ”Žµh©0YDPašœR°cíRdÄ^…ä2Ãm.Ž™)“MŸÛjQr¥*íïÚ¼±‘¸µH}ª×*ÌP°qúµƒE-Š‹c,\Ëæ¨6jU&aŒ©1Xí#Va(•+²¬1Xìr¸ãÔjyN4«0XبõjŒ
+‡^-Yc°èt”Ó«1؜·
+ÏÚ®ã
+''-JMÇˆ†ÜÜ«0XÔ¬òk†G¸­Â*ÇjV^«0lFCB™¸µƒÍ’cèESdAb³Â³§zVc°£
·Vc°È	^\<«0Xôý«0lƸ€ºµƒÍxq±ÃǾ¿v›ÈÝÒbx„í‡,xVafAlö¬ÂÌ7¶Z«0£Ákg5+ã§gÅøxj'Õ8âÎ"	³ÂP‹ˆäËï
+«0XRäY…irÎô:Öª‡¹P@¹ˆ1ì8>ùÀ$GjL“8Ó(Va°x;ÛK¢`«íVž|86ÆÈa+í!ʝȓƒ/«0Xt)(u‚5&+qP¬Ç`ñ†;VÆ“;·ä{‰‘C´‡g¼£‡€Šó­9Q&Ø4sµNÆX'…9å+ÞP×rCî8ÁáÆ¢9¹ý9ù¸uv'a+Êy#
+Ðuök<wZÎ*pœ‚Ð'
Æs‚Ã#Ÿ/¡€2„-rqœ‚àdôóœ‡à0Bâip/S’'³>›Àf
₇äXÊsádŠ§ 8ûVņ,.xH÷X~‡tåâ8ÁaàËÑ SAp˜iÔ:¹âÊQBÏá|OK<†1Ç úx/‚¼ùpsŒGÃû°c^´d
ö3î
+üžz<BqÃ~Mì!8̾¸Úì—)ˆ@ÉNwœ‚6ø¸¸ì×1ø$Ƕ¤8Ááæ¬9ÁáqTËôQD»Wv*W>\±ö¶Hma«ÉðnÇ:qÝC¸n‡¼=÷nqòö'4éØ,îðáC^ÌÌb)Ÿ9DfQ½)&_üúòsˆîÞ¼1ïëÛÝý}³¹7Ÿ»fÓÛoÚÛU½ÞŽ—à,ÁG§Rg‹%ÄÆAÁ›¾k—»ªoÚÍaI‘”yiaݙÇî5Gb§A±_Ê’DâÖ,[saÊoõ¿Ž°5
+½©{	áîъ®ÊGSn–˜mÝ}«»@\GfgA
¿´·³éÿa6­iwýã®?ÂâüyÛ¾+7÷õñBgA¡×å“ùÜnû›ªk÷Q^ag¸NϖßÊMU/]™!m6°.Wf¹/ýâNu¥‡EÝÔÕ®kúg³ª¿Õ«@rÇ¢þ¢Mƒ–tð²íjSµëÇUÝ×ðt+™ÀV4íêç“GîãÊ2’|)
Ä	û'6Ѻl6oÊõmi’É÷ñªC=¢Ãñø¥m6lIåÆ\-Ì{+ÿ©éœ†ä°µ›xÍZo
åýÚl–íÓçúœÕHæXökæÙ4[Ó?àË-:WÿOTÄlGôœqÂAú²iî쌏í}»UOu½q!pôïËÕÅÍnËhÂÕ[x{8rºTqß«=»eǨþ¸ý@J8
ê˜àý'˜Jièƒkèí·e”ÓW¼\”Ý}ݛ/ې¬—Y
+ÿnŸö¡7_Ûî·ãŒÃE4èòeSuí¶½ëÍu½n±Ñá6zä{ÿ¼\…š‘®ßx‚©%(ÿª\×æ§VSá_ì»êáp@_Šgéó
+ãF‰ùœíúdMUrD0—V¡ ¿”2ÕI½ÿܵ8…/ޛ³Õªµ:Ž³=|ö^×ÛݪGh«l£ÃÒ^–CXÚÅfÛ#IÖ{îÐóvs×Üï:ùÉaé/6'‚¹û³wç ¬ëú÷]ÓÕk¤+P´ãáÙ3(kQoeDZ0†[ó)4¿¼dx„ùج›^‚v”qá±	¨Vh‘¡ulR8\Üè}ëò‰­3‡‰)·¦ä³.»çýyµ•W«º;"éÉ+)ÿÜÕ3µmÐ
+®ër¬R.|lLÖ»²úí)tXŒå„“¾/mž>ØõC@†óüü+	oýó®F@Ã¥lÐÚ,ºÝ¶7gUz{l?Pœ¯3ÓD{¬%G…ÿÕ~\nv,­!vÖ:lËaM/
çå‡O›SØ}úÓêù‡¿L]8}û¨1T6rÇîåv	·Âóv½F¸pzÉÅS2õ¡ëÚ#îJx w†›çm_¯qY5USÛ
+€’»æ¨ƒÏÖÁ!ÃF‹xtæ¡^=š
+s݅Á¤˜åÆ©
_sÆ[Âܵ›ãæßß^~8\8£c
Ÿ ¾Ò#ö;Ñ;<ƒ:{Gßþh®êþ	sÉ0HVõґp¾¦Iݓ¯ÛrÍM+÷ëÉyYPáKÙûO—gWÿ;ÿtµ¸þôqÒï͏.þ&1tó7ې{<ÖÞ$C×?«zÛåÙ;1Œ3Š&ÏûÎi«ç¡v¬0Ä݉^Z?Þþ„PäшoßQç×ùOGonÎ.ߝqGþZá÷mµãéïF“S¾Õò×Og	^˜–oôm Åÿù)ŠïP RFõÃâä?'ÿú¤“
endstream
+endobj
+1122 0 obj<</Type/Page/Parent 1099 0 R/Contents 1123 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F6 9 0 R/F8 11 0 R>>/XObject<<>>>>/Annots 456 0 R>>endobj
+1123 0 obj<</Filter/FlateDecode/Length 2995      >>stream
+x
•ZMsÛF½ëWÌÍރ)|äiK–lGµ±¥•äò!IÐhÅùõû^ˆi0†[©RôüÐ=ý5==cÿ8M€ÿB“E&žšbuLü	„üq÷é,M3MñseÂ0™¤=ZšûžÌ¢Éä,á—È)Á(™L©1Ø8šÌ5«0Ø,œ„šUxe¢(˜ÄŠÕl<6Jc°i0‰´¬Â`çñت â×éžÐ£^[Dw5›Ì&™f›N©Y4‰¬ÂX7ŒäÕ˜Åô×±
+ƒM¦cY…ÁΜ\W㕉+½nhý…†„þÆ(3$6+Læȱ
+[a³cáI~«0lF~aÕÀÚz„ÓŒÊæ\UmRjÐ	HÁ¢ ‘Ç*Vþ\±
+ƒÎƲ
+Ãà ¥1ØéØ*ë|äö‚ãpUÝQpeæ)C6p
+  dµ
¤Æ`Ãé˜U˜®ȯ’U˜¬Ô±Ó¬0Xìđ¬ÂDÈ=ïdm=Séý~$õd÷ӎç…cƺIÊ8Va°³Œ‰w¬Â´J:ÂÀjÖîDÇ*†0°Ø¨3“¢M°!`‡Ï{@Dbg³Jb„¹)ی#5;<Å*ƒ’	p¬Æt†ÉS¬Ât&Bˆ«0š
’¥e5ï´CRÅ錕„J›ÐYËM3Ù°aÈ®™
+rdʔÀW60© ’ƒ§\Ó±
+ƒ…õZÖ®Š.ē	›œêU‚8Ò v 5¶j§šÅ2;v&©s²
+#À
{¢Ó¬1؈e£X…Á"ÀHì Yc„?d¤k2©C{F§‚$Šrf[“Q1p×±
+ƒ•N¦X…ÁÎYþŠ•
B¿ÒÔ-’u†Cáœ9omny¥hìã!<@Y²²s]öENJ»	ö”-žYÅCÝ'Ö¬Â\v:–U˜&³lœf»l–Ø’bKpÕ¹ƒP‹ÁÔ,ŠdªX«Ç›œ‚¹¨Vú†…ô…'±#5+½W±
+sь&
Š5†§~ÇZ“¤±y˜ôD€xêà`Ò@ö&õ’!–âŽU˜sTQ¬Â4˜qV¬Â48bœÍSNLIœÚb
+Ùº,’Š`—N"ötiڐSÓ;ãDØI§ lłX^V¦'é˜UžDœœ¬
}Àò‡(6ØÜ$‚D±Â\–ӏb‹	Š¬ÂX6ˆYK«1XÙ¬ŠU˜Á—8
²brŒ¦*c±˜h‘3y`ÅDÅ*¼3Y±bòN֚èXw&+VLdÓî:֚ŒiXÎ+6’X-ž;“0
eŠ´‚Sî
lVÖ[,€‚
+Bá	©1XlN¨D­Zt–(jœ±ÇAªåÍÁ‘ƒMÙN«0Xt“™f¥}DzÀâÿ1vîIœÂ`e8p¬58²W!»c
”T‚XÑHÁ⢃«0X¬¢Y»(š«d-f|H”„ Žx:S-w†c­Zlˆ>§àHØ;"d„‰Á‡YÈ)¥ð3Q¤Æ4(‰jãk¨dÅ íÐõ‹Ä"Ù`O#ŒrüVX…éi†jq¬UŒfévj$H)Þ±¸cÜVø­°
+Sq€?W¬Â`±—àÏ k—Å'ýnƒ¤êÅnÛA‚;À‘V0îGGë¸ eïŽÅåñw¬ÂPœqS,t!l¸óÉ!W‹D³Â4JÒ.ß
+«05'̬cf›å€áXÁ&,DÅ*ššA³Æ`c-kC…¹Pæݐ¹ 1vRl©1Xª՘¡`ÛrŠ5f(¸Õ+&…¸
°Ú0ÂÅä“vœ5Á‘C-jÏQƒ¨Æ`1ShÅ“å5RÉ*Ìø³µ:ÖŒACêTô
+p÷\oà@j<ìXëÀNÖìX…ƒ+ô²œHC‰¢5g	;FÐ9 ƒ„ZÌûðt 5‹½;VaºÃݬX…i0'VÅ*Œc¢×š­Áò3Ðìñ5ØAÌ{¢#5‹³	jQÁf¼ÿ+Va˜„ÊGI²èR€‰êeJ¶€1TjåPq¤Æ`‘Æi¯‡¢3Y…¬]4¶3ˆÓ&Q…é뜩s,O¤0äõÓ,ÏB(© ±Ñ5©1XéNTâÁOä:†á	¢‚¨WH<<Èt£F~·¶²‘fý¸*wI
Ž›ös!Öã³e¿ÿ¹|aKÆÃÛqҜQeô0Ä|Œ»èt≗“sœÜ²ç K€§ 8ô[¼{ìt*Çlì8‰
+¶ŠŒ
ܦò;­œ
ˆ°”á"ÇPÂ&Yü]„!„€çkO½8;ÿˆê
+ÍÃ꧳Ì<,ä>0Å[4íhò¯‡?öŸï›ïæ­yŸ/ߛz»^Œ¿@W
¾Ì;ÊC!õÄ^=ߞóÎüØæËê©*[“›«z•WksY¯»¦^.ËÆÔkÓ=—f]v¯uóòïÃëÁþñ‚¡wÉßêW³¨e±oPØvyWa§j½0UׂŠÁϒû.úƒõí¹\›ª7n¯.áJ¹(µïö\I¼Ž\æksŸ¯sóX"rLÉvó÷zÖ›ŸzW±á2צ-;ýy¿æû«Kæ=pºü³ò¦Ü,«"ïJ	R»zÜämûº@V–¥g™wøû%—s˜î»º©Öß­ÙoZóµ-›óÏyñ\­KsQ(âÎT맺YÙJ@ù!²¿_]ܚ«ª)Èÿ:¡ê’#~Þn›Mݖ‡µèL`ðöëš[b±-X®§hòïºûífS7]¹°^ޗÍϲiOÑy$ÌÅs¹Ê¹…¹+—Éö¹Ú˜®–”Þ}¼Ä¨dq¨þìÃ~ʊþÊDxª¾o]rÍkÕ=‹K‡
+ÝúHÂn6åZ*m@‡«ç‡7ƒ³ø°Âq@§÷*ìãˆÆ‰°B?Þ´f•¯óïåª\w‡µÍͼºï˱í~‰î–}æÿÈÚÌ«V¢Únʢʗ°»ëšêqÛ¡c½ÌIõ8÷®óáÏ|µY–(‡ëæ¶Ï®‘V9%FîƟÉ_cË9xY¯i­ãDú+ùkË%ΛdzÔñ6úÏrè@¦µ›vlÉö±Â¾^ãÀ[.¹OÕ¦ü±E[˜
N”
ÑUùXåëÃ+éò9Vë'-tW.~ËO¨Sü5å±lpJØþ~ŠÍGzXÙá„ûUos^vÅùKó˜NØ
NQëOïeSîN¶¢^mPí¨B{ðV¼—Ícù¼­Û¶z„ûeÓÔ¾¾_‡þ†òP¶
NI
+<õ·›ÃVŽ+ÁßH¨“õ&U£½XV'5'\Ö¼IÿR£e6kì¬ßÕëÕ¦©¢ô›úU6 ~ك‡õŽ’‚¯m7ˆÛϪ|5õÓ û°JAܬ½ßï,ì{ƕc–ŽÕúwÎmS£rVhm½Üž6VànøÏfæEƒ²DÇzÄÔîIÓ^8MOÃĮա5¼ߐ¸·Œ“Þ—T©Œ¸ß®¿Ü£ô¹Nɜ¿È”Ö!‰œ/Í·›»ÿ|º»ùz{Š~ÿÞò꿺ù|qýååþMö±n
+w0aÃ=ƒ‡Æ*oÑÂNÑí?ž?ç/J5”ö×®Óu9•ÙLþXo;VI¾(`°ÉzëkãMƒæ3öÏùŸ·Ë®âdQ­…§¼ði7¢#9”;ܺxYÐܶ[ŸÖQAãyíÄh²É›ª­×ž¨=Æk¸WÑÍfY/%{æàUϯ§ï‹ãÀî&˜}küöü^þ,—‘9jÖ¾6¼Y.̛§ü¥4µõó
~‘wfQnpÿÃÙíyåØÏ°•{D÷g«ÙʱÍþ6{WæÓVy®“çù”ÇG¾ï3¼ˆÍc>ÄÜ_|~aÐôÿÀïŖ£ëp±yâÐðs\¬ñ´x{ñØvM^Èx–à_ÞÌf	Þu@¤Ìà‡‡³ÿžý[èEÝendstream
+endobj
+1124 0 obj<</Type/Page/Parent 1099 0 R/Contents 1125 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F6 9 0 R/F8 11 0 R>>/XObject<<>>>>/Annots 501 0 R>>endobj
+1125 0 obj<</Filter/FlateDecode/Length 2446      >>stream
+x
­ZÛnÛH}÷WôÛ$ÀD¯ŸŽ³¹ã7rÖûš¢lÎH¤—”ìäï÷œj’]4ԆXPptX—®ª®®¦üŸ³ÀÌñ/0‹ÐD©)vgóÙßð#àÇ·OgÉr67é2ÅçÎ,糨[³:Spg‚y8>IÒ
+.ÂÙ‚Y:M*ÀqI6K©4Å& J„Ò`A‹#i•Æ|dg‹YfR
TÞÔ:’V0Šà,FäˆE)˜RëH¦Ñ,1iˆ˜PpIN€:HÁål¡H+m²þ99
Ìä爃#E0É"š°`´8pAD厴‚H
+ƒÃt@R%5Lj„c­hº°áYÀt"@l:Á0˜V0‰mxäI
N°çD-2ÉHZÁxnÃÍ“  Ö>@Z¤rGZÁ¦ú‚LˆE±ÑsA3<#D„ø’á‘°€‚
+îPnH–ãD!NAxŠbEàÄ•j̐g\ÕÈJE&(SVd0gè-Q…)*ْgɊhŒbdM.2xd
9©6CÐÉ"M¼``À†	þ·HŒ*lÆš…›0sJVa°C¨X…w&D)$ŠÕl¼˜Èjv¹@fÁfl)ŠUxg"TÒ°®Wc°	+ÛÉjL6›¬Wc°èlˆ³ÄU4+›p¢YaT"R­#©1ؐÍÉi֘U<õ¹Ï¯|;æWÊïÀÚ|:Vá1¿Žµùdm>«ð˜ß‘íóÛËöùt¬Í÷À&	ږ]}†æ;¿bFœC©îQ³Æ`ag®d5›ò„rš5fCÖ¤Ó¬0X¬Ùw¬ÂÈQ°bGVcæ7h֘ù'Ñèó/æwNVÍ¯Ã`ÑÓ°"Ç*Öjv¬Â`q@¡&«0²d»ƒ¥«Œ²3ƒ²«0،‡–³«1â±ù:Vc°q0ñYc°XßDVa°˜t¬4»LدFŸ5f~—Ù>GQ‚o™#‰† µ6ʨٱ
+3ƒ²«03²®«03˜p§8VaÄ^iY™#JNVcDã
+öѨYc°ÐŒ^çX…Á¢‹h¯4fœ9ì9Y{ÌaSó˜ã@—I È6r¬Â`<úµ¬4
+lö”@
+²)r²H;
+DZ
+ƒEiÀ+Ç*Œ@"TXîÈj3&ŠÝ±
+3	R#kˊ­†sO€gÒxR#>+M3ЬÂ`Ñ41ï‹&‘U,ŽÌ‰f…á‰TÉjl}žh–qƒÍSÚ È
+»
+Ó+Y‘c%gƒlˆM¯FVcØM9P8¶Ušõ[?dóë0즜°«0XÕ¼Q“È*»a†•9V
+6Jì]ɬE"*;²H‚!ϒµ¢±½-õ¢‚”èÀJK‰«0׃›š!5‰¬Â\3Å*ƒ7bád¹m",’%‡‚ÃÄaå^)“é¡784
+j6ᬯX…Á¢4µQé.©dFrÙ£]aô©EäÂ?﯇¼EDÈ!å„MÜ"°š‘Ô,&ÌáY	¾Â\ÄÓÉÊöq¶Jƒ‹xÖ[$²
+CÓi Y…ÁâjÖjFô¤ÁYM‚”恵š«04ã¯Ë%„¸ƒ±$dÛY@½
+¢$xþ9N¢Jû‡R‰¾E´ddoŸxUÈ)HA¶yGZA¹ âj6g„ˆ ƒ”eŒ¤D{–Ë9û!{³Ý1ò®ÂBb>‹)‚AfoŸ
R™ øD4©1mòš¥X…©˜…¯X…Á"–Í*ñ†f´kZڛ­ôõ@€øĄr¢cVaR, § –r-ò 9é,w´#å*ˆYT
/§PÐ:ƒsBBË$ðújCk9ŒqrwhP€tçìSŽ´‚8¸yå…Q €‚Ü>|ù‚±ÄÜp^hK³9{svþ1EÌÍ]/®æf-¯·ææ¦xƒšHfooþ|ùÖ«½7oÌUþÓüÜUû)[P~—fïƒê¨%õjù£)þªêûS”,¼JV9Ö³kÖewŠ¢¥WÑͽٖOåö5™WÍmµ.ͶªOsûjjNÞ,JŒ¿•ùÚ´ùó”?cÜ¢¦95·mµ/OÖzõˆ;m¹®Š}ÕÔSs¯"¯¶«r×´¿Ì.|<±Ð¦6ÝWÛæÙ\n«²ÞŸTh°¯ªB%TõišüÅmý1ûC}êý5~õË|+»ÃÖ·¼wØ¿nËùK|•ïîr“×kÓìÊÖ\~ù¸2Åk{¡Ø_fWyQÕû¦{ôýmâc‚«¡7_WaŸÒãz^8†K‰WÕgTG‘×æ‹)šzSÝÐ/¾®ÎCs›·æ²©ë²Ø›¦U_Æ&ïLÞ/ÅlÀIèN\“U¯»™oêf?¸ôãíïÖ%Œ/¿ã'‡ˆ>†³Ÿÿ³?þmxP°Jů¾(ª®;”y~(kkþÇ’OeÛaßÿxkªÎºr­Ctb`ü[˜Y7HÑ}¹7-J	å¹n+XÅ÷Ïõ¶A3|nZž²~I`_ºë/w…?·U
#(¾…‘û¶9<zÀ‹ÂÜâ-¼ïN‚|_v{ssy}þåÚtû¼øËlÚfg®ª¢mºfsŠñ╝ò¡Ü–èð³Çç­ÙT[¤.ß0zy×!bkS<äõ}y|飚fü1Â>é÷ÎíæÖ)‡î5N»qª÷ÀeŽ`
ÊL³-xÒð2¹~ÍCr˒óß²å)q🃲pŽQgU¶OUQšk&5<®xê§løüõö櫹(Š²ël³1]sh¡½ÀhcžªÜ\þkuÜƤ$ñ;Š· ¿Ôû¶YN<Àq­÷j‚/ƒ³ûÆt<WfM멂þ½Ö«ûôË}.X—-Ýô;ªO¾ZÂ/¼ãñ‰×ÆS›nÎøV>6ížèýáÞ£K¯ªþO¹€&ÿ?•uÙæ[S՛fêú‘Cšü{üCywè‡`ÏòTà¡É¿éPie[é²m›ö$eþMw±GÛ|`ÜQk¹i5g*
wË)Köi×ù¾xðÍê“Í‹75SS®0>ñ¼†Y#[yúè±Døz*Ëïªmµÿu\ͤÈ^ÛNŸ¯¿ÿû¸
+È×öÏêò«ù^W?OÑòJaýã‹Çó¸€Ë”÷ÙùÏ0ç ¸;®.®Þ_˜ë¶ù“óه¦8ì0áçÃíãß¾PàÝ"čuýæâ®Û·y!jŒ÷RËeŒ«(ˆ”ÎÿýæìŸgÿ·TY™endstream
+endobj
+1126 0 obj<</Type/Page/Parent 1099 0 R/Contents 1127 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F1 4 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 504 0 R>>endobj
+1127 0 obj<</Filter/FlateDecode/Length 1081      >>stream
+x
­VMoã6½ûWL·6bÚ²ìØÎ-)ºÛ=´‹n|鑖(‹µDª$¯þø¾!åÄIÓmŠ †-~̛7oÞèQFSüe´œQ~EE;šŠ)žðGÆ_>Žfë…Èh1_‹µ”¯¯D>üjèŽ÷Ó"_‹9ÍWK|Ÿáß)ªâB–Ïq腅|&®ž?¿ÝŒ&Ö4›Ò¦¦«åŠ6e„‚'Åŵì‚r€E?ÙKŸŒ²iHš’6ʺ»ùùöæûÍïñžl™îG›ò"8zTGÓkú¢dI¡VÔJCÜ)ŸÎÍ)ˆs³%0âÜæ|•Ú§·}P%t¨SP*¬	Rjlðd+꽪ú†´©,ÂȀ½@Z«¦cä;èh{~‡‹}ªø7C˜Ò8ËA—Ö¼´7ȶN;Fý€˜ñ
+îHÞ¶*ÔÚì¨Ñ{uRAR¹B}pãwi%VÖ"_€i,g«ŠÆ|µo·¥XџÔZ§ž’2ŽƳá¶Ïˆï»w…ŠIs¶®•A[C"è¬6Ì2Þ#Ûw²ÝJ:¨-yÔeLø©à܎.¨¡»žL‡ƒð|BX·{º7*{Y1畎ifb6T:»¦Û^7%SÃÕ¾ÕF:ýZ±-•\1í/©Ò¢r=8ÆÑÎٝ“mbd10xAb‚ÒWz×?'ëŏAŽSE°î(hƒëÉ׶oJ’}°LY
%YFwI!ñvY&Žl§Î )ôAµ'
Q-ïõ¦÷½lÈ(Uz†`¢ØZy„
+}Íå@R)‘Dâ¬
ߦՓPò…XJ9˗ÆctÚzjœqÚû ’D"Bz¥èÀà;UhÀ³ÅGl„§ŒÜ6ŠÙ
`õU=gøa¶rÿ\¼Ï€Å†,ÐQAÅ2miúl
+E:¼GúÒöèäX›¶Ó
ä̝ˀÑão@yDûz>7ì{2zº•ËÝKÐo*¯:	q( þ§“èèÑEzÿ6šOa@àë¹À§ÿ¾üõ0¿ØXQ(MGWVÔwhÞhÜDݬîµí=Ý+çÙ¯à٩ɸº­ÞÕ!z)7KtàhâìM;bÓc,gÊ;NJJž¿U˜‡F¶§y!éÀï ñ Ç~¬ÝF)‹=å‹þ’Î[(DÒʅ×éH«4¦*ûà)Y†Ù'a7î›tËΛÎ;»æF&žÏºí¬Ò õ1}ŸFu§9{R<tÅN%Çê῕
+EÍ?WMF¼e´ ÉQé´ÙÇý³ºí›èŽ‚>ªm’ÙtüŠ€2ó÷³Þ;+ž‹eç֎U·k(æ}±?^âaŒÓ`»:F“…YN‹“fcèɏ‡`@f¸Œ¦“Œ9Ük¼Ŏâm“«Ç	>ÏÓÿ7oAóÕT¬Vó4á—ðÇÍè×Ñ_Vì÷#endstream
+endobj
+1128 0 obj<</Type/Page/Parent 1099 0 R/Contents 1129 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1129 0 obj<</Filter/FlateDecode/Length 1446      >>stream
+x
•V]oÛ6}ϯ¸ëK]¬‘?ã8öÐviMºÆÅ4Ã@I”ÄF"’Jê¿sIivÔ´À8v,ò~žsî½;˜Ò¿S:žÑ|IYs0I&4?:JV´Xãó/+©fG‹döԃ““o/¼^ŒßžÐô˜Ö|,WSZçû“	­³Ñ4Y$tåå†æ§ôÆJá%ùJ’kRʌ.TÙZá•ÑT¨Z&/Ö_`nASXas‡³ãd	ƒ£u%ŸÀˉfSË'.;R:ؖ_ÃG®MseeæÝöså¼UiË>:Ǚ²”ÎÓÖ´¨€ÈÙBÃaÀùtŽ:Ày¿E[×[r&̄&'%Uæ!x46ç¨4äM)a²¿™W™Dp˜Ónpq#JTÚXu½;$Ï)/“E—29ÅÉ"¼ÖqOdM¦­sJQÓÀ³Ò%Õê–Ý)wë9¡“¾œ‹h›ºŸÏemRQÿÝ'<Aƒ‘pÿïÆޖִú•Þ_¿ûxùéCwx6­Ù;ü¹BîÖp¶l9s{Ú|ß/N†v²÷GAc¾ŒÁ>T*«º2 ¤h	€¥ÑõВtKBo–ô |…Ï$²Ì´!D´8iï¥}‰
+sé$¡yø£,Õ¦Dµh$ۇÚaâYHõ	zÈVÐép8¡›Ñ…	@5`ã¤wõôž^‰&¤PaR¡òúãåŸWçïÿÕü2pr酪Ý͋¾bþsÊߏßu4
v„ÒΣ>ñYO±Êjãûç$(`ŽÀՄ¹:¼K× Ž–Ä1”E‚«@'ëd]Aýž#q-x̄۴±(½‡ =SAtI›Z ª|Ömd¦
+G‘æƒ Ù04òfļËe!Ú9¢[}5·|nâ\V„
Ó»ãÖÙqm2QP*ƵJÇ'7/†i¾…¹Æ K¥a¹‰
+'Rƒ|ÌZ«<´Dzȹ dÇrëx/œ	
+Æ#„…Ó0YÛH=Äħ‹ó¿þ¹:{óéãùúš1ÓéèN–çñ§ÉQ§Ç‹SZwÂg;]‰å<ñxH%|ĺ^Ïýsn³1֐)€™ÛÄC¬÷¢V9çi
+ïù –1†HFN¹bjJ+hv±ûÒ¶Ú
:yù;»×ÜÍ킪ÈžŽ©.
+¸ï–êF“´–»'ƒP»Ã/ì³w‚?¡yl€Ípo? Œ5Ì-RL¬T
+è«5è‚Îÿ¨KË®KG§˜žÖ¦`½IóàOãÃãÒíMËk4¢i‘wV
>à>Eß]ïÅ–ÙðCâ…5]×wú¡´ôo£„~3ú9rÆl…ýÜPj|õEEˍá¡Ù¾y‚hÁǓ:Ãå­šƒ41ôòKÌS̾m,ďã}ÉÉ1BÃðÕövÙâíF
×#”>3MpW#R¶õ„VHŸm–¹xÜ”k¸DâwZÞO£}'ƒxº%#¡5k(Ï•µµyY.Ђ~}¡،bóÀ¨Äî3ïeË‚76Ê¡&H¡yI	ݓÇRäBõ¬`Àef°±4¦E~Qà=äæßa“‹ƒ"1²‡Ç¾ú¨›ÕÌlwh‹ÔÌìb0×WS‚sää6(Á œVº
z\­ÊÊcÉz}תìÿ œ€«ÒÊ+Ö®n¡€Ã;^`vÜÅ®6Õ9V]ޝ°%Ӟ½b¾
HßCy /_¿¸\ŸýBk¤V^f˜øAÇPó\ÐRAS¹³tq~ÅhÄÛρ‡ý~»'uèèÆu¯º©>]bï_Íi‰÷°ó]½zÿú}°æV'p;Nš0¹¸r‡ý…Ãã6{Îóoö‹öËÕ{=î¯ØêÙúàƒ
ã4ߐendstream
+endobj
+1130 0 obj<</Type/Page/Parent 1099 0 R/Contents 1131 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F1 4 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1131 0 obj<</Filter/FlateDecode/Length 1361      >>stream
+x
WkS7ýί¸Ðu¦xýÀÃ72IZfBÁm&3™éÈ»2Vؕ¶’ð¿ï¹Ò
+?0%)a¥û8÷Üs¯ÿÙPß:Òјòj¯Ÿõix2ʆ4šœð{üZIó½·Ó½Þ‡
4ãÊxrBӂp¼ß§iÞùݘ;ž–¦±ôfú
‡a7îô¤Ï{NÚ{•KŸ%CŒ>/pM9*ä\iY°‘ÚXOƒ£ÓžÏëŒ.植_(}»~Ì/¤&Qà<•¸‡—;ɶûÔ!üiÑÁwý
žïÇوŸjégʸ®s:ùڌ
–ÒY§*U
+[.in,NŸôš¢æ\É-LS´÷’„&©½]†X^w¬]²ô¢ßKùèIê?pEî¾Èr£ç›V:à ÿ`DŽœ©d’Ñ¢5|útëÚŽ"<´õµ—óVŠŠPTæA <kŒ§^ãl¯4¹({NT3ћ)ÝsÕ¬ ðÂñquúلñß²OÉ
`)n-Ì3į×l<¼l&7Gãèfº$EîÉ-µdæ;ùù2Ž÷Â*éh&ýƒç­¥Ë(1D$ÐSÚP|>©4~RUcDʽeæm£
+™µÿL$»ü4}F7¨QëƒD	œ‹edS‹­‡Òµ`ý
°¾vÐ\L¾VHërcå×7Eå;ûð‹i¶¢¬ö©˜“ðìúd×ñ0ñ铐7T‰ÀJYøì”óÈy7JŸ4ë%jŠC•­X‰%H¥ÆED”öÒ΄ç€Lí•áÚ0CËðQWË\͗
À‹+î+]©5)á^æ•pwL  r+Ó]7:æsœDÔœ›RÝnç)\ìÌPaôϞîÐGôÀJÈuœY#Š\}è"+Nðÿ
ŒÞ‡äd-@n‚mO‘/H±¡ô„"‡m4yUÉCš5žæB•ŽËýodDÐÉ< †ç^:Ï2ÌÎv›õÅļ’ÓL…)Líªîïï>¿¾¼¸üïè#—6öâ‚êŠ<—5B·§cª‚“
+q3d¹©@ˆ"Ýê¿H»Œ¦˜ŒÜ˜•h¬•¼s…˜Q®f"=)
ûœrQlímS²îÙ¿ºî
+r¹Uµ?Gq0°å9ž¡¹5U¬f*u'JÊV‰·a¼F`ø{®R-íBԎ¾q›;	ð˜ô۟Waærüa¬)
£eÉ£SPAëî=7“iÇÎ*ΝLäaÍSn¥
ŽÞ©²ŒRŽyeÙrý”×¼rtq4
²q6ÌèÆ˚Žg—`‚^ÝË3
+â!ԅ
+!+£7ƒ±!ï/)ú?•X¤µ~k½ˆ9´:›ê¸k˜‚¬è©„+æ 6,-m=’¯-ø†mF×iS}(ÿ´gì"áùÂl}y2wß™æ˜~än˜¹íÝõµðiì‚Ú,ÑÐsJ>ʼñbVJzÀ8‰Ù®“/*hÆ/±Ïààbµ;ÛP(ƒu¨Ø¶¥ð¤ÏPmc	aq—íR6ϳY–µ8@›ÀWäGÄ?ºÕ¢ä¡ÂÒP[µpiå]廫CݳdžKz ÆZqeÀ‚̽•fÞÍ_×#@¹ÚJs„aFFÌRÆý{a»¶s¼ÑbiKSU—Òõܽu²Mý‘´k·Â…ÔCÑoxÿÃÀÓ
LGËíI;'c|ʘáóÄ îk7çߞӕ5ß0xèÉƒ¤¢¹cwӅîÉ<ŠÎÿƒÑ|ŸŒ +0rÊy½Ÿîý±÷/Xlä¤endstream
+endobj
+1132 0 obj<</Type/Page/Parent 1099 0 R/Contents 1133 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F1 4 0 R/F2 5 0 R/F3 6 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1133 0 obj<</Filter/FlateDecode/Length 1290      >>stream
+x
­VïOãFýÎ_1=µjˆ'!?øЊ+G…t@¯I…ª¦6öÆY°wsÞ5!ÿ}ßìځ®=µ™¬wæÍÌ{3óù(¦.~cõ¨?¤¤8êF]Ž'рãž{ø+%-ýÁi/ŽÆoôOQףּ¸?y}ãýì¨s9¡xD³%¼‡§xg–|w»4KZq4Šhê䚆g4+·”+ë”ÎÈ­$ٕ(¥%ñ(T.¹$£ikª’¬,ey<»‡uÄëíÞ(ÂzëÛp×'“¨
+ç8°Å"ɕԎÚ)¼Ô¯_j±á•±N‹B†£A}ÔöÚ½!R#¿›
+ÈL•§”IG‘<ð¸É,ÿ	sDWKŽR£¿w¥&k
+éV´²¤tbÊR&.ß"LW­#Ó¥vÜGÞáþÆ8‰{‚/ã}¾jRJ„&‘[CI••)9ƒë’6üb“GTw/—îKú(ôµÐ"ÃcHŽ¥yËVɊ„=ð}·¼ËæÇ
¢&!uDÉÊ뽗”ËG™@R•ÊmC˜u!¶´Tð×T
Î}®¤u¨3­…µS¦ˆbi€V9Ú¨<ÉØ8!.ðÖ§ËÓ¦ ´«ö~9[@¡á*×MI©t —4#äDâëÄ;G™l¼IâF!ߕÛ»=À%Ò´¡°Y;Ö¶ûŽ+ÂvSÀ
+ÃZF4ãúµA°¦|ÀnEÚèvHOຝ‡(žÅÔî!¡ÔZC£ ¡Äh
1oŒÝVZ=Õõ
†þnÂݝh¨ÓAÒvºéF«’¿Ðl»V‰ÈAp,öšª½4Ž¶Î÷X§,8~f݂ê”á*mìË4ØcDýÝÎ(—àˆ·ÃhAŸlñ……f•ú½ç•x”`(	*ý"À&Ý܃"hyÜRåÌ´@N
‹¸1ªÐ0î+Äèíúc…–aÿdyz)¬5N^ ü‚»C
_B	òIktÙà˜2>µàèZUÄÄõðr“!<_.K„Ë™rÛµ<{…¨i_ѝ;ï®Ãvƒ†öu/~¦þ¤¦þøõ—¥) ӋÛé	qã§ғ§6ˆõºA=øòfæÏz't;íôNHº$Š¢=¹4„á›õ˜áZ¦Ò^h©²h"2ûrà?ÍçwW7·wÓùü‡W3£Æq4©‡”ÆPAõ)=£9~‚þ9ÓáùµºÂÝÝ|bXëRyXÿ+ |íâ70­É÷dß°°}ì+ã÷Ø1%rùÆ(>4)s¹(…“'[	z¢+ZTæÊڔî›}þ |Ï܉»Ýñ ÂC#֙¥?–ïЇߨ;ÞF³ö›6WP¡ë”Üç•~ w›•¡Mæ5T²FH¾c•Â®ÞqoÐtE¶Ê2Œ?/ŸC›w¡‰L@_óL×|mæ¿?™“ãÁȚC+-°Nlô¡¦ÑØü¾D…ÊVù<w1õÇÅÕùÏ7·Ó«iäž0Í
]žÚm(ؽ€†½XWaÇñxÈÅ/˜™<_üx4~{Ñt´Üج4ÕäÆ<4­ð×ç×^Ž]lõ°h2’ס*I¤µËŠ'Ä®•“_xLe
ÕúEK9éÛqçr\xˆ=vÜÇVË;*v¥éùõûsú¥4÷h”¨mRXþ÷LÎj»¹Ðõü~ø_·ÑÁh†ã°lÆ]öñavôéè/b"p6endstream
+endobj
+1134 0 obj<</Type/Page/Parent 1099 0 R/Contents 1135 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1135 0 obj<</Filter/FlateDecode/Length 1512      >>stream
+x
…W]oÛ8|ϯXä¥.`«–“Øi{Hœô` u}µz¹y¡$Úf#‘®HÙñ¿ï,)åCi¯(š8¹;š™2?Žbâ_L“Œ)+†ÑÆ£“è”NÏ'ø<ÂÿJÒÊ?8ŸáÇ_<8=F£_=ˆ'ñë—ÉÑ»§ǔ¬Ð}|>¡$'t)Éz{Sù^å²OÖP)©Ä‡R-IVÒFXÚ(GSW´­LZȒ„Îý³“U†Õ¤\DßLM™©‹œDZ56»¤ÛÛÛ·É÷£!
âàNòžUÙLhJEvOÊÚZZ2+¿ÃŠ2ƒ\­¥uQ³w4KØ{»‘š±ÐJ=øÅ-¤ÅÍõÅòš¬4âw z›‡ºèÅHr“Õ¥ÔN8e4ÝõL…eu•IÀÎåÝ[fÀm„ãÅÈZ>8ÚÊÊbã^Ú£h‘Â*Yy”ï>¾§ ™æÁIðÆQ<Œâˆ®”Xkc•^Ó"h¹Åsi#–¦7[ù÷ۈhÕ։¢€›7Åë0k`5jÀT^ÞÞÕìâïùçål¹÷²~ϳPø›ό4%ÿÑ23[I³«ß¾<P.W¢.-Y=Vߒ ´úB‡Ý%e!Ðx½©ö Òì-¥æ
{ÊÚº` ÏÀ‹QfW5lUå´êï	ÒF^Ô±}¼ˆZʼ]Ît¼ÑÒ¥ÊØø
Ù22£W¾fËŠè¢}ƒÅÔ¾,è¡sEX_¤s,ü
+†sLbîL‡©ÇÁ›ù#Wö¢œD4ݘà(îW9“™‚näN/µ‡ƒ·,\~ºdÝÃbžîRh¨§D!3gQµ®*	ØJÚz»5•³tÖ§,ƒ²éç/×}ÿuqóuÙ§›‹ù§‹yÜïð~=òi1Oâî(û¼@dü’ö<y¥xPe]>
U
Ë×µüsž¦©’ý†±oŒ	âÂ£ñSÎB¼ô™Ó%i'ðC)¾›J¹§'W†)m"i¦É¹¬ahaŸc;v2Y‰a^™:d†–™´V„Yä˜d>™É€·P¥
+ÅA
+SîL‡\o$_·4–ÕJ%R
©(søÊ!Ra¬=öZK…º—Xá‹=šÿù¬øUx¬[)£‹C§m%K¡4»Yä;L›XK&¦}nëÛ°×}›Ôf55L(‡çíêv
u¥•ÕŽ“úd ÆVX‹±È}Æ<;.¼î¨Ûš¶«H.Gà´·îk>Œ­Yh¤3¬‹
+õCÜ<vYȓ©s¼Kç
ªì³	2~O&¬‰F{Ü
µ´¿Ž)Ä
ÛÓ¿°o×õz‚LÜKÖ:Âäµfgþ
+á
k¤'ŒÛ4-
+…	µ8Âäú§Tæѝ¿Û&Xç	S‚ŸÞŸÝ½í"[ÊpL·st×Ã"`Õµ( 	äe(%³•K'TñÊÿsãäJžu[)ÄðZÖ,;‡GË#ÏBsøÀ×ÌlHʐØÉtñn¶ ËD·cÛÊÞ)hÏvŠè#zî“©p„’ÇnŽL—µê–…;MŠ-÷¾ß¯QÝéëû؃u²DX†Ac?×¥H1c"8<­×žèßß	N#D6xbjV•)éë|öMÐÔ«I‹)·~Ê´§o8à'æ;èH.%PšR¸§
+[ápÖ¸<mÁS7‹/^‹g"Σ-¬×y{æÑo<‘ëJ”áê‡GšÚµ¹¸xbmV©­£cìó€#ú""
µx]UgþBÆÔ,aÏu:ÿŸÎžñ´ü¶ü—¬;€ˆ¦¹g(7þ~‘m,>š‘¢à¿9ÖÚîäÝymqøÃòHôg8_ù¿ é×Ųž¥ñµw7‘šÚ=^ê-¨{®ý+I|-o€
+vøŠ6&;o.€ñFœŸà–ÿž¯’Ë‹O—|3øŽ£®ž_¹Ú ]>˜ŒðÇ@ÞûÃeõtrMÆç¸ÞòژK\'Gÿý»¹ðendstream
+endobj
+1136 0 obj<</Type/Page/Parent 1099 0 R/Contents 1137 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1137 0 obj<</Filter/FlateDecode/Length 1480      >>stream
+x
mVÛnÛ8}ÏWü²	kmDZ݇>8M
+›&ÝØÝ¢@°Z¢j6©’T]ÿýž!)ÇU‚¢ˆm‰s9—áü8ÓÿÆ4ŸÐŌòúd”h¶x“Miº˜ãóÿ­¤2<˜\\âë+Ƴ‹—'®Ö'¾Cã)­K$™ÍقÖ!ÅhDëütœGÙeF·&RúÛÙú;Li<Ž†“9^?½×’„•‚v[•oəZzUKG¹hþxkÚM%I9ªb Œ#h8™¡(DXo%Z@ò;C~ßà”)»·S\-eAÞÐFR#milï›=	Z}¼"'íOi3B(*•užÓ
¬Ì-º@ƒ”v|‘M8m¬WT•Ù9„É+%µç\&~°B“\ÈfïQ‘ÒøÍ4R#A%c*‡ºà\‰…Ô{ªM!Ý?zrÌU©dñ"=B‰Œpä>0¿Õ&k¡½Êµº–>kõ‹¢ó=ª,
#:(­©¡‰ãÖӁ/Jh6£¤uÊh†¹WÕJÔ

°„¸&´?Á‹Eý

­já~/sí«ÇÓÇ3$@-nＬA|Uñ˪n*YsIE{¶WT/óFú$ύÄZ"/(z½E¯¹Ð¤g”mUí	m¢WOE‹Ê0¢B*áÐ`¢)TEÁD•"÷½ì‘.Jub@ Ø|ÒË!‰£m8çäߋ	‹¿³é9Lð°Jº_…bzynÉ8€†\Û4Æzdó€ð.Ñ8£
úfãœb{¡ŽÇ=®ds„š­üÑJ×oYl(DñˆùlAHŒ5ö;"réÎÞPx„<À¾R`º 6n_´‘5–Ž€5b’ƒ\O¨™Eâ%Š†8t,¸Ž‰
+:¯öæ‘À2úP’è
yÄJè9Ê1ü	A7 Ž5Ð
„ª4>ñ‹Ñï£!#rN±-z`sC)ÁAº—;~ŒÈh‰Ðam à7á:–9FWh	pïÄþˆp\î
Êñx#·5mUP¾•Pph
+ÜÊÊß³ð:ßY/BˆqÐd˜8ç[ø—!ß)¿åÞ{ý  #kïŒ}J°ûÀ¾ÃÈ9j¼aÞZéâ´Mž1
X
+*•3pQmà?Q!4/-¡*'P¯p½äÉïqv²\tߑ<Py-ž ÂxŸ„&á—8´ضC€?2¤žoÕÏ	}WVð¨3ºÂH•¥h+Ÿ¤ÌÉi÷XʻۂNù«©T®eî)Vn§ØÎ9mZ QÒÞ´½~ô4€àûÐÐ[ÚÇ;‘áõ‚˜GþÙL.f8²¿B}_R_M‹PóQ('xj Ä(û”Ï~lçtOÞbîÒ†p`ú-8‚8qƒ³DÐFÿỹvèòÂ͎.O]‹BÀ+®0÷x	ñ
c¢%Ë@A0¬ô­Õ!¸p†¾$æUÅN]a<Øm"Çý_}È֘
+éŠÏ+
m%8À5ßùaŒ¢NÞd˜Uæx7¬dð¤‚Vù²çƒ7	H®Wqyhk…½jÇKÄa!9›¦›ðaw79UC§BKÓºÎÕ
+7HØ)hٍ@v«parô2^ßÜ}ýïîþîæœÂLJ›åuúøåáÃú†o·ð`y{{|Y-…W.r´¹Q•òi
ê¥a*`éý»«`Òðå—#¿{¼q/…õ0¬¡³Œ>I¦ê3–=-°aÆ/R\pY\\º;̳^ã©îZþô.N	f1^.a‡dV!:/|{l‚ €™î"À‰ÍØ2£bºr%ã~äêM†Õ°ä;“=’Ç5ˆªr©ÕEÚ¤Ç3,ò‹ºœ^†ütµüxµ¤OÖ|çÅæÚä-/QAAÜò°;0œO°§¯íéÓù4›ÏXëùù„Ý¬Oþ>ùæ
³endstream
+endobj
+1138 0 obj<</Type/Page/Parent 1099 0 R/Contents 1139 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1139 0 obj<</Filter/FlateDecode/Length 1359      >>stream
+x
•VMsÛ6½ûWìøÒd&¡>kٙÉA±åD3¶äšLÓLÓD‚j`
Њþ}ßdê°é¡c{Æûñöí[üu2¡1~&´˜ÒìŒòúdœŒi~q‘œÓü|ÿ§ø³’Êp0™Ïþ}ð.;]_ÐtLY	_g‹sÊ
+‚Ÿ1¾É_\îE㥅#ºRâA§ôMkɉz'ÈIû$íËìÏàf²ˆn^ÏæÉŽ^L“IBkí­)ÚÜ+££åœ&“ÎrºHÎØ2Û+G¥ª$åF{¡´#A•ržLI^:ï8,åBS#milMÞГ¨T!¼Œ)¥ÏRBXO¢r—«*^>ì…'¿—ðû(«#ç2¦×“YÌ5­“!,kv•¬	I©’”§R(xúHF÷V0w^6±‚M#œ“0ª*Ž‚Ó˜7þ×ì¾Ø­ØUG:û()”Jˤûnz–̘ϨÚíM[TZÞ܄
+‚çW¤tødl&ÁꠑíÅb[%Æ(V–m… ùÞÎjÂLàl—£Ñ8Gýƒ„rшª”W¨V%;í¢Ja+Õ{¦
D¸_Nê‚j	àHր´92…NGa¤Ó?ù€Å),Šp#$¯
7Ue\SƒførY´ tÀ
ùv@ñõšÓÚÆ*Ç—€E¿¸Š[6&rfú?çm}š€ñKçÚºaÖ:3ºþ
m×:´›9
+ÖÄ~¯	<hQ4ÊôœšèHU!©wë÷éêþ×Õ}¨]ÐÝe²¼¼Y¯6íŒßíA‘̝kچ²Uš½¿ß~¼ã®²w‘9¸n¶Õš
?(]˜FÌØxpàð5"ˆD.µÇè5àw¨e³V¹5ʟ¼©Äù#0ªÀ!-¼zÂ@½ŠØ"p-ŽÜ€>ø§.øÅτðý'øåÅ'_Œ2ÎQÓ ._^ɕÅ	í¸€*ªU%l¨˜1)
(‹ZrpT{7tñ=^Ü©Gm¡‹Z w¸	Ί'p.í1FÌü@WïèTɸæýîœL4u]75úº9Mè3"²˜‰¢þáËî"‹íŽ|ãVÆQŸõ±ß°ãÑõ˜.z)GÅøþ裎¡ùP´¶®¹ÅoAÒº1VØc[GCËF€oi/Ã#+E
ýƒT¼¥£üÁTD)ÿ°JW›)-ÓôãíŠ@òt½ÝðB‚Üoïéf™÷ÛkÊ>¬(]Þ¾[Rúq­J·°¿ÜÞÞ.7WiŸ@'Ñé‡í§
]­¯h³ÍhõÛ:Íh½¡ÕòórßGéoõ
+zWI
ÙkÀIá=@`®AYi-YKçÄøÂ<àYƒ¨³Þg‚S€‡eäy—D.’ò¬í$Z4H¹Õ%„XÀŒwU*9Ë÷2üæ‰Öw¨g¥3U²„ÓÜXdäqßIOm“|xC·$¾E9ÄIŸ‚—§ÀÒ¸W£0\xˆ7wWËF~ÅÎË{Ë&J:ŒX_ƒ°]mÒî	@"ρb˜ÀaMlÀ³rz”ãW¼ÂHªèy³G9m…ô1§X_™†Ú`˜2¸Ûñ‚8 Ç¼ò:`
~ƒÆ²67φÞï)ÇûõŸÁ'¿9¾™`+ðûèõŒù63~Ú°M¢Õwہm°¸ÎBqÿæ
¹ö*ßG&à«nõ…J_±j†‹<²¼z 'VhÏFðt€^`-woHÓN²ø}Uª‡ÖFÍ
O.€T
+À{]Ÿÿó>›_DQù/Áùbž,ÎÎ
@˜Ì8±UvòËÉߞgdÛendstream
+endobj
+1140 0 obj<</Type/Page/Parent 1099 0 R/Contents 1141 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1141 0 obj<</Filter/FlateDecode/Length 1638      >>stream
+x
½WÁNãH½ó%_–‘ˆCB”0#Í
f…Ä2ì­4—¶Ý&=Øݙn›$¿¯ªm†Ùã!‚Ý®îz¯Þ«ò¯ƒ	ã3¡Å”Næ”×Çé1ÍótJ³Ó¾Oñë5•rc¶˜¦óáóåÁøëŒ&Z–ˆ5?]в Ä9>¦e~xãý‰~¸ÖS¨³4w¶¤ÒTšjµ£LSårÕ肌ýD–?ç‘X‡cÝäñRþ¾ùwW¶Á9R5ªÎÔ¸2Y|ò#Mfñ`£“IŠ¯Åá4=I§)-uhhú:þ1¦|üÃï­¥f¥)wu­lAÉÚØ:¿úóîòû?—ß*½«eÅí½,8»¸¾º¼YîÝn­ÙRæ¶)]•´s-ÎþÑЃnxgì7ÁaxGEOª2Àkgƒæà–Ÿð´¼¸_ÝRpe³Q ò®ÁÙ¼×ySí€HhTUé"í‚Nç1UT#[oLU‘Õ»q„'|CŠ’ÂZ#›u“ÐÆØÂmÈÅä‘z@ÁÙcwù D©uêASP;*Y9€Ë‡,]k‹„Ø7µ©”ßËëËÍÝKRXÁ|ùÉ+$æ9Àé%렛v
\díB0ʪ;±”
òiV®mˆwÒ¶ñF#4vbjƒöOÚyyep÷ˆ2,½"B[뎬Áî+õÄE!À¿‰èu­ ‚º’·`QdaˆÜ€Ya•×*êÍj'SmV@L™Š32R/žJü,c[¯7`ûº”Õ…T÷ÈõºR[>Âàø¾­€ ªÀš‰,oœD14GÁ¥_-ŽŒïG´Ö~¥Ö²a;‡Úx •ç`:V¿êÒmfîþ
®myc>lŽÊ×ôd” oÖåF5WރWuzÿW¿þF¯'^OâªÞ~¯WxMd•F×ûºíJûE–Œ]@‘T‹¥\”.TO BqI…T7Ì&SùãØW’ÐÞ£ÒzaÀ÷c(ŇZdœ«‚Ö(8•àŽHžQÉ°õŽ¤Þ4ªX*ütµ7€Vô"MÉQ”_ B۝H/‰ÖÒ¢äC‚Á˜oé=ùˆ%*W¸˜h(W¤Å2–)]¬tþ8Ø{Óً§7O¶A’d¬•¯[£ëµóʤÅ8JÙ]f©´A
+HHölÜ¥ƒs'ƾÉðê^‘“€óä¢÷ºD(ÀÿÚz…¦:+z£à~ÅP guR|öôgÿ%òœp7El|o	օáî'-mñ™âj÷~|ž©P@Nôk)gRbÞ~X¨Ýa¢Ó½¬åüp²Ì¸0
+
ïÐX·ñ¯¯î–—7Ü$Ð@:±˜ÿ§‘Jþ³ð“‹ˆÀŠ™ˆ£1¾’½À­·ž¯ÃS{>$k$‚V(<Ñ:âú½8€8Ó\h­-áð¶¨Põ²—A'y–R¦sžÅ×EV}Ñô=^t:Uµn i’à_”¡úö5ظTh¼²G¥ki7’
„Þܐ&Û®ÙN ´"¥³*¸Ž0C†=6s؋ñþƒt©°ƒglIŒ$HðÁîÉ@Y¬Dó	êr-­"oœ´½
,„û3¦#zÔ¾ÎèTžŽù³Ó£œ"Þ‡/åi>Ù¶Îb‹
,¶ÔÍÊä+ÉR&»È-›J¡aÄp@øº.`é8k͓S€rvå A$Æ@”«`Ü?ØRŽ;,`ê;S]IJköŸ8O”»p:‹ƒu?qÚ`£¤Ïtv}ÝòPöz™xÖm·Ûtïw¼Ûýæ±ÓNj*ú&€ç}¦±™ìOÍ£éœ÷»Š-YepÅ#¸MttesN€N¬ÑjU`ìšHQ´\2¨¶q5Ú:†bìÚxeCÅjF÷¬ý‰»é³rn͍T¡Ö¨ü-`‡&S¼à3
[…iï¬+®ù|¥,¿ÈÍÂù¿p—ãEŽ÷GÁò‹£›oK˜—Ž’÷ÈHÐ|;½cc@•R¿VUÿxNߪ»¬ ‚dS™f'ŽÑéíy‘öÑÍÞÝ%/,bn3¥ÞÃmÈU­´&\âËq!_o}.ԍ¿žvoI“9:=¡ùÇi|‘¸;ûëüŒn½û	íÓ—c˜…p<>ï¨`´˜âí×¡Ùb–.æ§x—ÃÝɌº\ü}ð/”“Dendstream
+endobj
+1142 0 obj<</Type/Page/Parent 1099 0 R/Contents 1143 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1143 0 obj<</Filter/FlateDecode/Length 1473      >>stream
+x
…WÛNI}ç+jý‚³‚Á7l²o@È
+iÃzÁZi%$Ô3Ó¶;ôt;Ý=8þû=Õ=¾d DQ$c{êrêœSåoG}êá_Ÿ&Ž©¨ŽzYÎÏ'وF¼࿓4ŒzãlüÖƒ‹A6hp5;:û<¢~Ÿfs$_LhVôz4+º…5FAYã3zìÞÙ ÿ °”Ôɕ)I™ Ý\ғ5zÓ¡•p¢’x“J9W…’¦ØÐz)Q
+´VZ“±„ÖvMÁ)Xûaöõ¨G§ý!
+•]mí*Å3‰²tÒû G§ê»,É[k?dÍCƒ1ðÀC—H€„ˆ^UÖP!j/ÉÎ9<^„µ%éœuž”§¥xQf@¨yɯ„vR”rµ1ü7¬¬Ô~<!_KžD•‹V©]d|•¿{|îld(·‘?u	µz–ôI-TúØÓT„åÚºg }½”è|ck—"d€kŽÎu¥\Î-ð
nÃHJŽµ ZA¥@â„'PCâÅ*ÔCƒ.sWûàÏø·WP–´‘WéÊz¯r-P‘–æBéÙhvó0£!·›È_çhž*á1Cð匛ϝe!<⦱¶ ô2t‚Ê™5¦°Î‚Mµ˜`q	Kb
+ÄgÀöT¤Û)]6|9£«]²ý{©ª/¨ê½ÔMâXxLçÎxp+Ö¤7Ìf01qK¥¦µ]d¦Êã¨"9Ï>¤>¸É;öMÙ0e4“ÀaÄeÊðtÀ2ìÞ×)"S™áë ,4ñ\¯èôŠ®nÿ|¸¹ÿ÷枞ž.¿\]>=u2úÏÖ䗶Ö%-=*c@¶˜˜Q­¶Sc^ºè†×ÖÔm|ŒJkŽcHC¨$2}7`¡˜§µ,F^•Â@\ÌÅ(–ª<aZl'Úª-‘÷PTŒ„V>ȨPð½.W[•NڕÿmÀ˜ä+gÁ]èѧ\€”kfqªj…O¤	Q˜¯ˆ
+h3~kgkìsÓíH4dt;oU
7‰ÃðƒêP'K¢€¹	éY#OùIò…S+†l†¾ƒ†1¾S‹eØÛ)Ā®¸øÕ½¯¼O°ó†`ç?!X
+˜B‚ô­óftyÈ{º]^ÿu{s7£ãߏ_Gk¼÷
òM¯ý!
#»€ÓðO(}
ã²ó°fí7PO¯12žÇŽ_-°wjŒ<Jߍ(Ëø§ZÀì8‡Ázj¶
!ðÚY³hsÕm›-­Œ©±}¬~‘ô¢}º{àP†x±pÌõuÐIc"·x4@éïOkÜLküß·ìài•4xwN3¦gP€b
:,tã!x÷±ròEÙ°Må5,{ÿeH˜á†ž¶8ï~Qk<°5ßÖÀ7Êè’L]å0øҝ¹²þlv= KëÃNl[o|
ÃXYƒÙ
+àt‹eÚȐjôc.ð¢Öº•I¸©ô¸ÇÍÒÌa±/#è)Yð
™½ÄÅÃ0¯‚Â<#“¾ÕÒáZˆyÙ¡
+WŠXHßÊõê%ìUèÔÚœ‹ž±%܂SòªRZ8ÎÀ€6øþ8ôý¸‘jâÿN¼x¦Kâ
>.ª¾¨ƒ­`ˆº*–Â(_Áé؁@žhj,¬f&òûJ:
+úÝÊ¢³¿;dW|`ñ2¸RÒaƒÖ`µ5¦¶a'œ«ŸÈàôu²§T4Dƒo‹7ÀŒBàl›ÍbuÙEW‰4o 7“TÉk¥‘7VmS=ÞÄqIôK ã=‹¯ÂØÞ±¦„íz“Yb±^T"|\QZš¸[·Ô®‚ÝrgmòuÝ̞ö{9‡ºPwsœñ¹Ò&g´§æŽ>û|ѸŒ_Cü"ÀÂÇH<1hêìW\côÉõnaòLO·œNøéPv_8£É(›Œ/páÓ~\I7³£Žþ’Å&Fendstream
+endobj
+1144 0 obj<</Type/Page/Parent 1099 0 R/Contents 1145 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1145 0 obj<</Filter/FlateDecode/Length 1615      >>stream
+x
uWÛnÛ8}ÏW,Öj9v\Û-ºz]ضÙÆ»‹y¡%Êb#‘*)Ùñße§IÀ±È¹œ9sfôóbJ—øÒrFWJʋËø’«—ñœæ«%>Ïðg%eþÁÕlùøÁ»õÅäÓKšÎiÁÖb±ŠW´N	–./iŒfñU¼Œi-]MËgë8>§é´=>ž-qxô­ÑTç’S–B§í©áԈ\¹I
+%uM“É»ë?o?~û÷ã·ÉúóÍ©¹QLßMC.7M‘²=MI•5eU˔2cIP%œÛ›ú³|ÿ’ÆÓ«xÆa„›“>šî(™Ìÿ/’Ä4â'¨f»…]¥kãŸ7Z=ÐÆ<Ð^ÕyLי?¹¸Â'~BBgϜwÖ}Ü"õ	ÐøzhQÊ×dªZ€Õz”:í‚ÐQ¡´ŒIn_=	â™ßÉd£¶Nڝ´“º¬àò‡Éujdk`X«Ê˜¾˜Z¾¢ëš”£Ê8§63ä*™¨ìpŠ(ŒÞ¶ys…­åLH8¤(ÌÞ=)Ê}ÛYä}¤¿9™XY?ðWH_PHÚÓø¸˜¡î[‰B!Æ|{âôuLþÝ?×(¼¹'Ñ–Ö‚W¥tNl
üuv¤ªÉ‰ƒ£Hé(TJZÖàß=1
+ûk©ÏP3B
"F$A?X+“º8“uSjœ†å†ˆ£³88›…Ê€r½¿H{²üê^Â^"P	Ç4öð£ûǝF$;	XDjöÞÆÑÝ™:ƒâyþöÖÉ\-Ë»g´ijJUÊ@•/²kªÊØÚ7 ò-ñÇ=v^¹ñ]?†0tÝ8‰á›ah–¢Gf’‹àGgjÛXáû¸)Pó>p*”B…zcý>OA¥z@#'ß7=tÈs†¡à„¤àyۖQª;YD][‚‚rµÍC]:WR›f›“?܅Õ=»:FÖUÀ“°Š?"ßÐÅPsæFŸcLïs™ÜsÕ½´°ÈT–Ÿûüè¡sʹw	õ¹HØC«/ÃBZ)êVo?¿Ã-@ô÷2ÔùÄá‹ÖáxöâX:߃(–Ÿq™mfdYA:å
bæØêäÓq¤Êwi՜5ûˆd`Ȫ [Ç;¹,*z,¾n-v¢6bNòW**íjÛ$L'w2P¤×7Qp÷xÐë<h€(ý\À˜È¬”èw1èf¤¸×\±ÀIÚs¿sòõ£P1 ϳ@}§íøjÚª1Ï×U˜¯«Ó[°ØÎׯ­Æܼ÷n½È@ÚG´ N´SrOwøégí©Ù0g÷ª( f܆RHÈ3ôõTDߊRƒápÄ6)îfÌþ`®ìF€Í¤Ç°žb'TáÙ
1²,ž}èv^ýBþZ¶ßC¡õjš¡J)z"¦J˜µÔŠ·×`œÞ(Dë‡<™¢é…•˜%[é-pæ,•gæ ›Æ5-1XVSÚò­YíHCÞpՐÁ”òÅvÀBUà
Um׌v,—Ó1Œ8Ÿ˜äÆ@³Ž—!ô<SŒ‡p\X½^²9–\/½íd¢[C®o
+
+QO‹n
‰PLjù
9³C‘îf/’TU…)jxóÞׯ÷ÿ‰n%
+|b®<®ÍN	úðå–>ñ†uÀ×.:t~’ñ@z‡Ÿä‡
+X*Êܸìæ‰öDøAeOD/¬€¿Þ@Çh8«[R&¶ãu	Eäq]UàV'¤{àIÛÍÔ3^ð6æñ_0Å«§Ø€|XP4„ÛÖ*iÐÏ©÷è¦Û¬O4jó?̾=Gñº9ÈC-f¶ÒÝ=®»Ùõ¶pæ93š»†éî—%/•™Hxg‚hzd;ÜV £¯–•?ê“ã±Î“b°ë†$kç]Qœ¥-j¬!|˜î>&
+7»òí‡ä>WIîE8lð†7xŸÿi¥Hr¿HGvÇXyôÈù”H·Á˨——*oóvx;¥ùÀpøâ¶1ön¤µ_…7 éïb«+¼\Íão3·o?¿{K7ÖüFôÁ$M‰ÕvÐÒáÂx9ÛÏÙ;Ø|9—‹Uhügõq}ñ÷Åÿ®n’endstream
+endobj
+1146 0 obj<</Type/Page/Parent 1099 0 R/Contents 1147 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 509 0 R>>endobj
+1147 0 obj<</Filter/FlateDecode/Length 1729      >>stream
+x
WÛRÛH}÷Wôú%NU–íؐ*j—$â
–gS[ËVj,ì	’FÑH8þû=Ý#ù"ØF–fº{úœ>ÝúÞiˆßf#O)ÊzÃ`HÓÉipB““®Gø+5%ò`òö4˜¼ô`<
+_ÞžL‚Ñ;à5Â1Ü}Ꝏ°*O`$£pÆÿý·”î{áË(¾
¦x:šNƒYóŸJÀ/„õ~Þ;¾œÀÍqz2£y,^‡4W	mlMK]Qß:2‰Ñ1E6+êJ—då¶ÂÉ#mžL¾ÄÕ÷Z»ÊõɖäLfR…U¥]¨Eº¡L«ÜQµR>4­¬«+¯çßzC:
+Ç8ã<D6¯TTa“¦'£¨Š
+rº|2‘v
}Xéè‘*‹[šLr`«¬óœcáëR….ÝRy̝%ÇøF:¯Ê
™œ÷v|sT.Pijהà4ÈCIQj°|¼z‘ëê
é*
+^³‰ãËS
+'>“Gã$ÀAFÁ88
hŽ´Ð©_µË÷шó=¸«%Nl†@ýª·
*‚ª¦ïè
?ï¯>Ý_Üý~q÷ð0¿¾=49èæV¶NcZhÎ|VTÏ ¨Pέmó©sÁÖ/e+{ÙgÀõ›xðT³WGÀ%ušnú@Ó9µÔ
'L„ÖhI·ê¤Z+TXbòȖ I
+˜ÜUÈ-ŒÙ²ãVrì²Eô“ƒ}
eêQÃ=ìɪ¾€DR_еð„°Ó,)5¹f·´µÆ‘4AÛÑÔCtU½r°nÖ9ÔÛ2”9ÇfUþª"dî‘l&0 ))WV[ö›ã|’R†Î÷¸É	`Ò°žuŽÍŒä§4õÅì}Æ7ç×}¶ÎOÿ¬²â/>ªŒÍɂËm¢Ö886îv4ÞØÇ×q'Yp…Íc)o}Kd—ªM¡cA•¿%µS­`41?U\æK''ÍÔì”`ëP–tÜڂž{ÊÌrºqþAX¶)°] ¬›ª³9Øãt;oTn„ÖmÜQr¸+õ$'>¾ÜUP³~KGgèrË7vZ8`òø[PU‘ÇA›ðÎJ€]—9ËÜBA•Cªä¨ÿ¨	á°…pxheøÿT![¤Ö>Ö]Óüâ~þéî×Ï]9S™ÛÇ-…¶àg›Y½,-qÊ9˜=%îU¶P"¿`<çù(a×eî€YjYníô°‚H:ØÃÕ-«n	µ`ÞòL9n ‹VðâÔñ+èo#{ÆߗbËU	{^>uÚDU
+Tgdþ¢Ùr´.F¨i¸f«!ÏÍáXö½M4µT&—R0ÝԸʤ©Øù>N«912Ô499$[öà+‡YŠà|§Q
]ï‹Ü‹L.JhH©4‰=œš„žÑF»C>
ø°:锹ùµ™ÂÑW¡B•Ëª.þƒµaËÚðÐ˖µ—h8¾k¢•¡9 +H#BðXú^T…/è£ûäjwmž<®ÍÎÔ#ðG(™ÚH¥Îléâ4óÌBQYvÃË^¾^Pâ#ãbmÍ]ÂÓ4Lí•Lǯ?Ž†oœm¤n…®ƒf°7F¡«šüI¥&ފQŸ(º3JÕ·äX$Ù_sÛj§§ŽÛvÐA1ÞÌÅ»ç2R;æÛ.éÛâpYä̉®ˆBxµ0©©@|˜¤…²®w\§úI§ oT—¼6³1
Œ¶ˆzkƒô\-U³¯ÅÛ]gxÊ͕mïïùÍGk§ß­Ê7;ž©w£G_oæ_¯U„þÔt€vÒ5Þ´.}ÃcªÎõçÙpt~9¿¸“é9AB™;uQز+<\½dàa åÊH0¹¼y ñü	1/bäÉûh<içÅI@÷"-ЁÚ6ºŸ%‡aóãœ+LTÕÇéù‡áD¯(»8Ê*ÍÈh•R
/¢s¹I¼23Ù0¢ Ì¹|’ÄDK}‘fÐRDÄqìIxÀÄÝv£恦ð‹Ëî¦\ÒÀ[úEì¶ô¶¶Ëd-/ƒ{î¡à [™E¨_ú@˜œ+–iD^/\Tž|’ÿ-Hym`3œ-oj­¨Ä%ì{P·±È[—„¼ªªâÝññ6f%YØ®n#gTš±òœ'šýFà'ÔØFRV½h_±
üäñå—:æD8śåɘ¦c~ÏÊ÷ç×ïÏ鶴ßxÐüh£:Ãˈ⩊wµŽf#¼¼½ðæ1™M‚ÙôlÃÓpƛ.æ½ßzë"¥
endstream
+endobj
+1148 0 obj<</Type/Page/Parent 1099 0 R/Contents 1149 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F1 4 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>>>endobj
+1149 0 obj<</Filter/FlateDecode/Length 1286      >>stream
+x
­VÁnã6½ç+æèkْÛÉÍM7èMºíºØK.´D[l$R©$þû}CJŠìlÑíXù8óÞÌþyÓ1­Z,)«.æќÒùu´¦t½ÂïÿI{ÿ!YÇï?ü°½˜Ý]S2§íXË՚¶9
gŽ7Ù䶵“
-"ú¤<4Â)} û/ôUéܼXÒÒ½˜æÉҋrÅåö‹9M“ “/¢Ú	~ÃÄ«pÀt‘F	]DqD›ƒÔy·&¥8îÖ$«hÉk¶†T.µSû#¹Bғ<ҾՙSF‹’*™B+[Y2ûïÄđ:CR‹])=@.ëÒ+@òŽ!@„/BX’°ÐS¾:È8Bç3Ӏ̺ÙÛYÂ|9Ä£MiǨ'by*¾JÐS–$_E¥´¼áÏPlštßD%mMÙrn¤4¢¨[H÷»V¯³Ÿ•n_i{ûyöé3ÒyVÑœÃLÁ¤Ê' “Ÿñ8$s‹äZ+s/Žx¯";ÁLÞcþd^h×@y&¡¤éœ
+|߁d²ÎÓÎð†uf†­­$Ò@¥§1ŠÓʬm”;’©™¨“s3£÷êÀ¤yTÚC/+eUJkÁhW½FŸd˜¾?î¶ÃA©CŠ¾NHØw²m8IOEi´ÄYͳlú<Z¬Ó ‹èN¯m6'ü?lÑb¯³ý:¤˜›J@¥JV»¶“z÷>hÀ‰ªõ3ŠÝ@‘±À£~¸HÓ5¦,{ìQÈYÀŸ.–Ñ2^ÒUß@…]…×oí<M®h
+£éÕâ+î·¿)døE™3O³»ï5}×轜A†½‚Œ”0Œ-®P–¹ò"‰&ôÔìvè]dÜ]3é²Ya¬³áЬ[3]EëŽÑÇd¹òu÷†à?ryß¡ÏGö‘8šÿG[ß͊Œ'†#ía=ë(¾¦é"ûcCiÅÝ¢É9s'rqIp¡HÙ4Ñ
+NeT*ëÍNµÉs0f¡›€†ÇوäÁ·ó|ÝÛ}b î_ÿÇŠâî¹4™(™1~EþW莙|ªt@¹FFKdÙáìÔag^#@å² ¬
++Ã{Bû(aS,	ŒS
Ãu	K®•l
+aU_nÉԄP¦èƺ1Ϙeà‰y{ý0ÅÈTµpìіrCÚ8ŒW”»3}ŽÝ”jdpË¢gù|è<„ÉLµÈž¤CŒNA×ðüC'ù™XG«ÀJ?ÉÉ5˜~µi@·8b˜ªZ%Núž•89—v­ŸD£)ŠkBÁãyrßË»6YÆ^Ü9Où‚Qßonûg\5NjÃô]i‘ÐN!8@)õa¸ró•Æ9ºcÍIaGÄ^Јñ·7mC“ôñC)S§Ý²¿žÐS$€
»#ôÊ¡Âã!Ö²Q&¼ô5L¾´¸Ä¢¸§æœÊ[éCL\ÆBÐf	X'-"à®8׋q´¸YQ®ÊQ›ÃYÀg%aå(ê·š
÷Á›µ¼™‹›8¹Y¤7W˳p?¢Žƒø<'›}#2IU‹Ž+¦	’±>kM¦<E|ëI£Ï\T GÚ¡S0Š£ò¨œ”.mý&ôÊÃ/hŽÒ›¾-T
÷"%¦›íԍOý€þ-ɶ¢±Vüý¨óûõÉÍҏ²y¯}»*¦«4Z-×ݕkÍ\~Ü^üzñ
T”|3endstream
+endobj
+1150 0 obj<</Type/Page/Parent 1099 0 R/Contents 1151 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F1 4 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>>>endobj
+1151 0 obj<</Filter/FlateDecode/Length 1609      >>stream
+x
W]sÓ8}ﯸfˆ§™$eŸ
+]f˜YØ.„Ù—¾(¶œˆÚRä¦ù÷{®d;Žf—¶t¿Î¹ç^ÿ¼JiŠŸ”–3º^PV]M“)ÍÓY2£ùj‰ÏðÇJ*‹Ùrž,.½Hg«—/Þ¯¯&甦´.àd±ZÒ:'8˜NiÌ
+»Q^Ø#K¹r™•^Í”&-|meB·žüNReœ§p*£R>ɒDY’–þ`ì#e¦ªj­2Á÷yñ(íK‘IªÒÛ7ëWS§×Hl>ß~ ‘çV:~™Ð7¥q²÷·«šýIږfWG‚ýŸµ|KB紕ZÚðÔÊJ(¸,Գ̩@"BîöÂz•Õ¥°ÈËK[ ®·!)¶º’Ú“)p“>Ý·Q’pR;ÔߚŠD—n%´ØÊpm/­ÛËÌ«'™Ü~6(±ßÁªÑ²o9Ã#d#jØè'ŸÐ_8ßÔ§«c°·ªbtNQrÊ
+ €Ó­„àé œâÚj8Â|èöë=žíËcýl‘Ì£vR#åÚ!8®*œ›€ÑAh¦º„y¿CýLZT.Û)¤C6Þd¦$UíËP²ÀBYÁ®aä!T¾öªµ¡E%_q¯vLÀø_$ˆ»¦|Bä7$&‚C
RÇéÌhoMYâüæÈq
*¶þp?AQq¬PÛÚÆ›K V)]Bk„Åÿ$¾;ùˆ¶
5šHŸM8¸Ì©åF옑wu¶7/–˜³=áÉ4ä'¹t^¡ÑN'ÎÒN8`\r	W¨q‰%ÎÐxH'_Wø|\¢Aº*ãU*Ñg^ëš°•(\Û,
˜s­‡N·±yé+£P‡(ïm:6(\‹Ó5"Ï@4VÁ?«¤ßÄÇ(!RGßïîéaô9w'¼ØZQQkøá
c~䜭„À£bw‘rÅ/à[Ô¦k_'·¡wƒ4…r³ô7ׯEB_qëgÑDp\U(,ópoR>W4£ËãïìN¡£º´®MY×ú¶m‹âÝùïHÁЬ´Ù#Šº¤žë¶@¡ï™ÉPÉ`¾'º|©+
e‰>>•vÈÞ5be§ÿ«B々©uh
<ð¾kõ<ùSéú™š>„ {@΁HŒ8þ"¾®ê*jY“Ó m.`;¨ß<‡¾Ã²×sàÝ°,3hµ#v
+5€Õ#†¥¤GÍÀ±Ø)ý+Ï­ü1\œ1KÆN–û ™\éFëjO¬aò‹³É
+
à¢ÆÅîâ‘!ŸU‰hÀ¡~aæQ£½±¥.˜ØHLiÎõI¨RlÊ8¯&o(…àóŠ0¾N£öcLã§A7mÞG¡‹º›°RFðOÆxÆÆ蔵—eGÑ0Rm¬€
+¸wl«Ï¸;̪pºBÃó©ÒAÑRX½md7kôx¼LV¼V!’‡ÙbÙ$ÑF^v{Hëìaä .ðÈũGŽÀ¸©K
´eíñ{ˆy„	›í 
“Þ±ÇpÍXBoÿ¬E©
+%ó
Oº1øfA
NúkzžK»5ý2—µë›yµ˜Ó]¬çæ×7iŸ°¾ÄL+qiºÇ(lXJ@´*‚ñb‚´"å­Ð.6*:Í<Öû‹p\H¡¥Ý»kzCã9ﶍ¹w}™{\ºóÚ	âFæu“¸w¨>LcT»Û¡*‰ÈÏZ zÝ-$‚©×Á¹Xž¢À²'ó„>…Åb8ä2«E«‹@_šÕ"6‡±9æ]'6Ã^aÏa÷ʃ	¨ÇqÏ,ðÊy[g¼±c쇮b]¾i{6Mͯè2,-o7Jw&+Æ =VÕ¥W˜¨‘•m)¹Þ
*”‹,t§YP—Sô›fB÷¥X¢­,x%cÉÃçm%:šØ𿢶8/‰¡Uº0w~)SóËTÑÎA¥³Ý&tt9	ÕUäea Àq'êï
PÞ˚ÎÇhßüEˆ¿
+Ðÿí'‘®ºÖQsøo¨^G.¾Hi¤¸^GœV¦|A®®ùË/¢ÿíöóû[Þ§B€w&«y
+S–oŽÛãå,èg3†½Àgçø].VQgÓ~ôÇúêï«
œJ¸endstream
+endobj
+1152 0 obj<</Type/Page/Parent 1099 0 R/Contents 1153 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1153 0 obj<</Filter/FlateDecode/Length 1598      >>stream
+x
WïS7ýÎ_±ã|(LÁ?)LÚHCÊ4œÉf:òl+ÜI‡¤Ãø¿ï[éd›kÜ6…a°ï¤Ý·»oßJ{êãw@§CPVîõ»}
úÝ!ŸâóVÒlïb²×»ìÓkšÌ°ãärÂê~Ÿ&Ù>5?¯èZ”’î¤}Rþ/•Ï”=SóÚ
+¯Œ¦™*d÷`òu¯OGðtC›ýÍóá {²ý¼Î-ó7É
,–•ð»ŒÐyá¥Õp÷$Ijo•t43–‚csµ_à…Ê"$a囝Æ^úŽžCŽ´rT䢢¥ÒS¥ó6ÜBäfùÑÏ­©«Íڗ¡¶ó²0λ­ÅœÛ+×nšW;ÓÃÖHs
­t¦¨C¹þ17/ýGïðƒäüHR9åÓ&Žuºv¡ÓÒ/}XÅ)^Ûm"jgA¢˜v½ƒ‚÷°gG*k¼ÉL‘¶¬}ìXo«l+ÇÿnßEú'ó/ñô.i0ˆmt4,¿™!;µuò¤@¿˜!"'©”ÙB]éP‘ÇZ¡,x#<¿&Q!ŽÊ*áџ"S…òÌs¡ó¨ž0êëÖÊÌ«à
Ž¶K)óԐÓî1¿¹òä¦.ršJÒÆË<:®5'ÔÔ)à’Î÷J<s@®Á!ìqh¯Cš¼»í]ݦÅØ0Õ¾-8Íj´XYë¦7±Ç¹ÖáÁêLU¢à¹JŠ¥çdt±¢%Ún2FaWíhîD9ô’°
»¬jKU$òœ>*]?“««ÊXdB>{©y)²mB®CS4)%UMé™ÎÛ:ó5‡Å+7šÔd¸ƳB!d}"9bZH6m¦^(½Ýml|G_ %féèZú‹«›»Ð“
ryžç “®KCsÞïjÝNßY­3n_
V¬(Ư¥Ìƒ `Cr@ò‹TvŽt3Ú&öR<„õ%˜E÷û*Jeïò§†ÆûÄ+Z¥ÔÐkÖþ^¡¦øü'ÒuáU›Ø¿?@ 2ªÏÅÄr‹&òçšÙ„Ý^Œ7„+)Âè
+´ÏnZ¶)G»dÞÀçŽé0ŠNi%,óôÙäÄ`ÊÇêw¢Ìu€N3–`¬@ú¬—¢îrcµñ°"õܼдÊ(íIùĉ6*ãœjXRqb„^m3£„N0˜é
+6~Ø0%=gÂ2'ÛQL–ôþ¹îJ·¼r’X}Ãâè—=šp„ß¹ÐGÉJJëaÓ«©d¿¡
{—¯ipÚèÝè8Ê˨;êÆ£Âö¤qT»†’HòÆlƒr؏›éAV^¦ç‰ái<7lö&íárÚ­ÌYYàFLM•4twPބ+ç8<h¦'>‡øÿ ÍRӓ°ÊÔîojz¿ÏDA8”ƒ„@pïbòA>n¹:ðµéR'9cëü}WpØ<š*
ð÷»ñE«dasS‚mŠRŠHP"ƒ"Ïc“s
ås&«0Ö!4ìpc½©u†Ý˜,TQ°¤mô¯å8©-º`谋ܔ¬IŒ+6w„ÕYóªú±×á´ÓJ4÷Š¾òì%ûg-ŸA¬"'ÙUJ *ƒ!a2…yÌÅKådòYð¤
ιô|\Ž›ÓhîëàÄ/Z>׋™>`+f;;Á€Ä÷ÀWäÈAg ë˜EܒÈO¢¨9ûh:hy`œK3Ÿdç8’–Í™8&¯åz;ˆÆC˜3¹ÀcDºž)œ4†ôX	ûœÛ´>Î6>`¤IæWUÙr8[<)Ö@(ç:Ž°^߶çëf¦(j¯°Œ ‹5>Æ6óµ ¸¸âÀ…Ó÷ÖýâhØE:ñÖê	M¹†¹¸é—ˆ´g|þî·«ë÷×çã÷oûý_èçp/Ðß5×.h­5cƱ`kyJGëvòMÃ#6üAjiUFãF–fe‚ËÑß|‡Õa€ûQè1ڑáu*ÚÿEýåæÓï>Ý|¾};˜2æ_c£Žq†õ‹‡´
Æö	û_J‚`§R5£wp‚kâوo„QïÎÇçtkÍWL_8ÉÂi"М¥
G§C\óýï[rÎ֎O»§'g¸‘ÂҰϏÞOöþØû>"]endstream
+endobj
+1154 0 obj<</Type/Page/Parent 1099 0 R/Contents 1155 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1155 0 obj<</Filter/FlateDecode/Length 2025      >>stream
+x
•X]sÛ¶}÷¯Øñ“Ó‰dÉrm÷NÛ;qZÍõW-e҇¼@$$"&	%ûßß³P’é™ô6¶‡÷ãìÙ³?ÓÇt~B“3ʪƒÑpD'“s|=½à¯'øï4-åƒÉdxÚ~5?8þ4¢_h¾„¥³ü¬ŒF4ώ¨÷çËýãÿx¼ÿüðëhò;ýFèZ;“ѝª4ü¬ŒÚéœ/¤Ê’*]-´ód—´}óÝüÛÁˆãÑð®~àaœ±‡¶R¦¦¶Ζ%[;¦;J»²5Í´[ãÑÿo3g›76S%Ý*–®œÝøeC³i—kbêÚÛ²‹äøÓ)ÇÐÁÉg9
äۖ@FSm 
 …
-‚¹™>ΨRYajíw8b‰6Žì¦¦øzRžxŒÇ¤v­‡4/Œ'þ©ip:·gl5cÐ𘂥ù§§Óéú€Ì¨`líiS [„5¹áø`+§û- ©H啩‘R§‚u´1Èh®6žj6ɎœêÖdÙõì§%Ÿf”« Êk˜DØ)ØVÞÛÌ(dcBA üTyî´÷ÃtâÙÌED0¼l;j¬©S++•3K“IP}œ?Š—|Ó<¦ådïtü Ë×	-M	§jN&vÜé̺ÜSn9oÔ8»6¹îʋ»4rl¶
#´´®Š^I¶ïgôÍÔ9øŸ®Y®
k 2rT‚—
›qš€ØÀ̵Éø™êg·R[a“ֹ·t]“~UUÿ±/$b܅j`EÒ]#8zçm;³wA!^®»^œ±èØ'í†R/N´Õ9Úa·Ï!»£$á.ҟ@m+8Í@™z…u¥µ/mCßOÖF‘êÙï0^8«òÌþþ°•tÝV,‡ÅKOWM‚|¡Öoô‰!Þ'ê/¿Ck€ ŒCTz6þÙjÔª»jÖ
©S%C¼ÈéÐBò®@:ßð¤D-±{l´ҷ€óö,§²Ã>§p&9
ÎxLIFŽ#Ú§”yW;ó.æãu/+gÛæ5KÇ1ÕÇ° !P)ˆÇ²õ|4^„å+@²-("òfUKéñ
-»ìrHUâáa„f­3
-ÂAñ‚ÎX"­>ä&ԕ=e•C
@vèÐót¸ ò®6ØÃƙJ¹-ò|x~:”Yg늳)~—BÔFk7vÀQž!¨ŽºÙ·0–í^¨;º)„åj ¯fZdz›¤ã]èEcVÜ=s߂݇ìOi* ƒÚ²Ôvxö£	úÑ@?QŽzy©¹Q EÌþyý|K÷Ÿow'~ÿ !Ti¤,´ü³â¾‰7¡Ó
-¦÷Í55•Ma™܍ÛÅ/]ÂèЖl#•"œ©íΊO¡6ÖG¨«,ý:»}ÿ{ïñy›ƒT²Ú·\ƒ?[ã8Šžâ7.–<+”‚>n·+ê 췚‘<@E¨
¦œ®î²Ôlloœy$WT½”|;]¡õwÒԋ
Þ«h‹”¯ÈzÔw°†ûPô
œˆw3‘`ºO{nÐ9^ÀÙý
1J0ó7&96Åj{–Ò²3öý¸ôèFyLwÓºi=¶ÿÌd6`Fuû’`è:So1[ìlÝÝ}‚WwvèW̝©_º±NïŒX87¢‰PøØ
QPm$[ {,؍ۯSzëõík€Lê¼íW&‚LoK•é~ªô–Õϵè$dhõpr7í1(ìƓÊ^0ûݾf…ªW8eï?*P’µØö?à<Ð
N~ƒHD@Lèí¦A­ÃÃӟäfÞ3
&2Jó8ñ[8%¾hîäßU6¢BÝd–õ
-ív˜? KÒF‘ [¶Ò+͘_¡µÍ¤sl°ªõؔ}\ &ÒiLñ˓£`0°¦ÎŽ”È¢,À¹J|?ýò1"ò%fp>ŽÓ"îçÃq¬¤.èÏ>a8*x;ª_òˆyÔþ.|¸-zVÍüÄÅÆ¢µ,ÚåÙzŒÊ…Pg2Ê
Wåô©—˜4梉uj¡ÁZ‡I¼S	nøÐKyéô¥Ç‡ª­¹½vÀI:¥ññÈ?
Æ%Umà!cڟá*BФ—˜œyåVc
CǸQ¢g;´t¶’èxX-Á^ ÉÞ
–ØH-­,`¼X¢ï‡G³BÓÏŞU7úOyŠì@…z.sÜÑ#yÝbœšg¶…¹›EEŠ¯dX¢_‡úùAҖe븺‹\—R¨TÀ])v:ô€=MÒ,·š7ٓ	‰ñíâfàÞ3L¥–=Ö¥Ú"yf¨‡C
-}?âä	$K½C2
Ò±·Y†kÂG–©´kA,>=ã|ɉóîr½Lµt@¸!LVÈ
îâ92¦âP(§2ƒ.úÔAø˜4»/2s8rPi’§B
mŽ¯I|£1àÒ`ϧVU¢(úâq½¸à†ãXô3U-ú#kU2ãÅ?æÏÁþj;N²r•îŒã	¾N¹:§Éä"~q1»¾¿¹¦'g%‰Ÿm†+H
Óp•!t—#þNåä‹ÑÅåÅðrrÃòÉŸr;?ú÷Ñ
J,ÝWendstream
-endobj
-1522 0 obj<</Type/Page/Parent 1369 0 R/Contents 1523 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1523 0 obj<</Filter/FlateDecode/Length 1698      >>stream
-x
XkoÛÊýî_1¿8€­HŽáGpQ@¶åV€­¸oƒ(VäRÚkr—w—´¬þúžÙ%-Ùí&½M;"—ó8sÎÌPŒi„¿cº8¥/ç”U×ÉÁç»+ŸQRàÎù%þ“Óh8(Ɏƣá—á鐒µ¤û‡¿}[$*T)?%¿ã¹3Ãs'§xî(Y+çï~·®e¹¥Òd¢‘9)Mú®tn6Žæ	
Gd,²/Ü6·ytó5M¿Ïæó$M¿-’é×Ó4½}šýcú´HÓiró>†#:çK#:#f'3ºJ;jþì‘&yn¥s|Ò_ªD¶VZ’•ä*ÑdkDZe]HúCP]3$TK[[!5Ù\Ͼ-¼Ù5†ã]•¨k¥WAI
ˆ†ÝéÓó!—áhÖP³­UÖÁhž•êY~탺êÁ?ç©ûsH7¦ÞZµZ7”eé'_]]҃ʬq¦hpÛÖ½3”ø’½=܇üñ:H€ªâŸ 'ªï3årË­vç	åvtSr~¥C&êÁ¼HKÉÍãçÙ#‚vÈž	˜ö¤¹ºŒ=»böåyG†yG¦Ø+ˆS333UÝ6Ò21\Ôö[>ˆÕŸMA)B²vKnmڐHz–uCFƒw`Y®^Te ”ZF‹à·G•±ºYP³ºSÄ[¶•Tei6oeˆžÔ±€}ûÉÒ÷üìuÂ':4¢6w
:Yë6ˆ†J)¢Î\ÐYòXOƒÃ
ekÏ`?jœ[I-­×çʔKméé¢Xx(ÀL„Z®9nÊ×ð+£ã…\JÀ–~Š#Ø»~Ç(‰F-!ŒjÖ{r»ŸÌéAh±»O‡¯é¬ÖÆ5ñ°˜¶¡Y™¢6´±Pc®›|m¤vœ˜oÜ÷>J6¸ûáãÓô''n¿=|ý%7ºè_~rt6¿¹ÿõvJ¿pØ,‡Ÿ=p=ýëlþÏÉ}2}šO’ŸE2ßþ¯gÓtôª5ڍ6ú¤¶J7žæ=Íȵuml“~Še»Nw^`lMèm's̍ ľîüéÓŽó”(KÊصΆÖ
z£mÔ¼¹;®ðm?©2ô9¤ë-4Pˆ¶lŽýcŠÉbãæ!—ÉcZ¶
Ç°³Ü¹Æ¨dHùnTœ¡Q ¹°~¨ªt^$û uùy}p>ƒÃ}†
ÐV
)áœÉº§E, õf-mFfªP¡öìå~óJÊGk³ù¡å¥Å’,¸–f…ìñéEeÀx)×âÅïaR!§eæ¾Ã[ƒéQŽ†Í™³ôÂo©æ¡o0$
§cR
\-á×	ÌÐ@”?òœDÔ>3Ž²?eü4é‘ð#¼Üˆ­ëR¢l0®Vköè©
-¶D탛h÷M›µìßñ’­¿(‰)ô癲ð…Û²¾‡ÿÙO:a!Àáܞînޖ-ãë$.iâ½gÃ|.
ÏÞÀŽ)»®åKîEÁXl<…Eþ@Z¼â–ýÖÇ(ìF– _ç7'KÁ:c¤Ž
7&Žï#Q3&·(Õ¿ðP7)ÂjPnɼÜâ.ožžÒF1'쒈irÿ}ò6Ó}BÕÖ`#‘°Ñr1¾{û†+®Dƒeq@-h¶üh`^_ÁNy½ñªñѽÏÔ\YhR½ü`š!Å<÷]ˆsèåhu»,U6à՝¯Ê×°–úqNÞ€
-7£‘ߍѼñ—Š7•‚ó¶,ÐÚނ}9ïÄØI2:YØh»^£‚à¨X)‹ǻzº6cyp¹í°z–[®V«á/j8M;÷i궮‘Ušf-;ÝðªkMédƒ[]ÛJÓRèJèP©4å­’h÷.M5\»­G6¾’tH[¹Rá.Þ08ЏÞÊÑÕ߃Y$ÁÕ±ñêF3LPÔð&xU¾[°Vo7(	š:«	/ů%=ñ¢v±/.n×\heM[CIYIŽuHÌwÂÜ®>àRV¶y\»!ï	éͲoâÿéˆwJóÒ{Lÿ}•qØ(4' «¥ÌæЫƒjE ¼68Ѕë͈´ÿâʺù£5@Š7Ìc¾¯!Ûî(þ|wÙ½«Ï/†£Ë/øö_äG‹ÉÃõ„­ù²¦[“µŒµ7ÄϝôÇO.FxƒÍø%ÃÙÅÙðâü_Mààù??Mþ~ðoå+endstream
-endobj
-1524 0 obj<</Type/Page/Parent 1369 0 R/Contents 1525 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1525 0 obj<</Filter/FlateDecode/Length 1607      >>stream
-x
•WÛNãH}ç+J𰌉s™FÚ ™ÝHa‰gG#YZuìéÁîö¸í„üýžjÛ¹	ï2 PÒî®®:uêTùçI‡<üvhإހÂäÄkyÔïy­.õ¯†øÜÅ_&iáôzÝ·t®û­Áñ‰[ÿ¤ýÙ£kò¸cp…Á¾ç‘žSõsFAà½jMÚä"WFSnȦ2T‹
	ZÊWZ‰¸€&Ãwmôeš)+ýLáRd"ÌeÖúàÿ8ñè²ãµ®pËÎxÓ:ùK¶Çf͆ä«HÒX’ŠãÂæ™È¥%Çd”/¥•ØKmáýÔd²i:^·õ±ßD×Ct¶TÚÔñÓÙãӘÎF_>i™¯MöÂѾÐsfŠô7K£»wÇ5lóT¤©‰$‡k§º½hïÙXĄÍde¶’Ù{nèöØFjÒ"ٞ¹2†ƒkŠ,”¿`»ã°‰M(b›­öl9|ö¾342’‘#²CJ‡qɦšÖéìvüÇdúÏͽ?~šÞøã捓éÝý×шAía¤Å<V!V’¥±¹}ßq—û_8;žŽþßÃÆ«'¨& $æfÅv$¿pK5MN«Qht.”ïËêq£ÕmÙ
zR¹%æ[e¶"Ç)	Ñi
Ööމ+²ÆlQšÉØä÷™`÷Oh6HÙJ$˜`
Ü PhšK*¬Œ]‡¶Ä¨îŒÎêœ
+’¹šÞϨRYají·8âˆ6Žì¦¦øzRžDŒÇ¤v­‡4/Œ'þWÓét8L†'ì5cÐ𘂥ù‡‡ãéú€Ê¨`líiS Z„3¹áøàE¬û@S‘Ê+S£¤NëhcPÑ\#m<Õì’9Ö!;.¬¨²ëùOG>ÞÍ(WA-”×p‰´S:ð­¼·™QÈƄ‚4@ Ä©òÜiï‡Éâɘ‹ŒîáxÙ:8vÔXS¦VV*g–&“¤ú8¿—(ÙÓ<–åhtü «×-M‰ j.&Üé̺ÜSn¹nÔ8»6¹î%ʇ»2rn^Fhi]£’jßÎ苩sð
1]³\7Þ@eÔ¨/^†51€ÜÀ̵Éø™êW·R/Â&­sé²&ý¬ªñ㽐ˆ!pª)wäèM´QÌ.…|¹ïzyƦ㘴H½D:ÑWh‡Ý®†Ž’D„»(´
¬à4eêΕÖ>µ
}=ZEªç¿Ãxá¬Ê30ûë;«¤ë¶Ò`)8,ÞXzºnäµ~¥Oñ®P?ý
+­
‚pQéùtú{«ÑCè2¼U#°Hõ˜*âCN‡w
Òņ'%z‰ãÛa£ý¾œ×€´ç9¥Þsº
gRàŒ'À‘dä8£]y@™7½3ïr>ÜX÷´r¶mѳtK}"•‚x,[ϦñE¨Ñ¾$ûBƒ"#oVµ´Ÿ°Ë^ ‡t%l#„@0k	ŠtÀiõ>7¡®)«²Cû‘'ã‚È›Þàg*å^Pç}ûÉ((³6ÎÖWSâ/…¨Ön쀿£=9CP}³a,Û½T·tSHÊÕ@^ͽÈôD4IÇ»ÔߋƬxz
+澺9žÒT@½e©ìˆì[ô¢~£ýòTó Àˆ˜ýyùxM·÷¯·¿¾“*È4JÚNþYq_å›Ðé׻ᚆʦ°Ì
žÆ{‰mó—)á
tè…l#"œ©í6ŠƒO©6ÖG¨«ý<»~”ø{ïðy]½R²Ú·Üƒß[ã8‹žâ\lyV(}<nWÔAØ5{"¹‡ŠPl9Ý(ÜV©kØ8Þ¸ò(®¨z)õvºÂè朗—¼W+Ð%E\‘õèï`3 ð¡(˜°ˆŸf"Át›Þ¹Âäxf·WPÄ(Á8Ìÿx 0ÉñRìf±çù.- [g_ðˆ[®”Çv7­›6Ð}øÛLvfT÷^]gªñ-v‹­¯››ˆêÆ® ýŽ¹1õS·Ö!è­ó
çF4
+§!ª-ƒT«d‡‡qýy
+G¯£¾~I÷²ýÌDím©2ÝÏC•Þ²ú¹“’­þ–»mAá0Tö„Ýïú9+T½‚•]üè@)Öâ¥çøö@ù"0¡·u˜µOÿ«yÏ5˜È(Íã2Ä?òÂ)ùEw? ÿ¶³‘ú&³Ì¨gh·Ãþ
]’1ŠÙ²•ù[iÆÄø
+£m&“cƒ÷ ŠQMÙÇb’ñ*6À”¿,09kšì(ùž,Ê
ØUûñ§_hŒ‘/1ƒÉ8n‹“ád8ŽÔå|ÇÛÙìÒ¯7õsÞ0/Q¢½Ößf¯‘¶ÅȪ™ž¸×XL–E»\‚"[¾"@M™ðüé\F5জ>ô꒶\Ì°N,4H밈w"Áór)_:y)@1”¡jkž®nRM™{¼ñGƒñτª
¼cLûË#BE
+šô‹3¯¢<iì"`çãwJŒ¬‡–ÎV’ïª%È$9:À稥•Ål«Bäï­ÞðfaV˜ùùÈ“ ê6ÿ)/‘˜A £0‰ dÎ;F$cXŒÓBóÊV@·°vó^ £¦ÈÁBñGôscP¿>(Ú²l}P·™‹qé$J\•â ÓI8Ò¤Ìr©yU=Pß.¾aõ
î=§ÁTz`9b]ªÏõð?(¡ïgœ"b©7H¦=:Žã6ËpKxÂ2•¶ˆµ§çœï8q}Á•Bn—IŸ–û7"ԏÉ
+5ÀU| &cé¡
…r*±çbl@„I²û3G {õ(y)°0åø–ăý-íõlm¿«ý@4ëEÀý6ƦŸ©jÑߘx3X«’/ñ1öÞ¯¸Ã¤*éÊ8>ÃoS.&tvþsü½Åìòöê’œ•"~´n 5\#T†tн08?±®ü£žŸÏÏ. _8}2f#×óƒ¿þF{Üëendstream
+endobj
+1156 0 obj<</Type/Page/Parent 1099 0 R/Contents 1157 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1157 0 obj<</Filter/FlateDecode/Length 1698      >>stream
+x
Xmoã6þž_1p¾dÄk;A^E
'qî$Þ\¬Þ¢€€‚–h›Dª¤Ç÷ëïRŠÜq·m[ì69/Ï<ÏÌ(i€‡t1¢ÓsÊʃëäàóÝ
Ï(YâÍù%þ'§A0P’öOû£>%kI÷ÿü:Oæ´T…ü”üŽkg4†k'£\;JÖÊù÷„¿׈¢ØRa2Q˜”¦‡9}S:7G³„Îú2–Fì
+/ƒMçmÝ|IÓoÓÙ,IÓù¯ódòp:JÓÛ§é¿'Oó4$7ïc8"¡s~4 “!bæp2£k¡´£áOiœçV:Ç'ý£Rdk¥%iQJŽ u¶F¤•Pօ¤?ÕbðÑ5CB•´KcK¤&ëëé×¹7û!¢Úp¢£U¥ô
+ (©
Q¿==:ïsŽ¦5ÕÛJe-ŒæÙQ¡žå—.¨«ü³pžÚéÆT[«VëšÒ£,ýDë«KzP™5Î,k¼¶Uçl8è_²³·Ë]ÈŸƒ¨*þäDY!ã}F Ü@n±õÀî<¡ÜŽn
+Ρ´ÈD=˜i)¹yü<}DЮÙ3
ӎ4W—±›±ç!f_žwdh‘wd–{‘`Šaff¦¬šZZ&†‹Ú~˱ú“}¢	(EHÖnÉ­MSIϲªÉhð,ËՋʡ”RËh¼âö¨²3V"jbV/ÁÔñM©
UQ˜Í[¢gÆB•A,`ß~²ô?;ð‰¨Í]€NVÂzŃ
¢¦B
+„h 3W!t–|-ÁSï°GÙÇ3؏ÚçVRKëuày†2åR›Zzº(–`&B-ל/åkø•ÑñB.$`K?E‹
ì]¿c”D­ÆFÕë=¹Ýgô ´XÝ£þkËp*ʵqu<,¦mhVf¹”6´±Pc®›|­¥vœ˜oÜ÷>J6¸ûáãÓä'n¿>|ù)7%ºèÏ?8:ÝÜÿr;¡Ÿ8l–Ï.\Oþ1ý6¾O&O³qò£H&³Û?{6M¯Z£Ýh£O*«tíiÞь\SUÆÖé§XF±çtçÆք޶2ÇÜBìêÎ?½qÚQaîEA™{£Öùbh 7ÚFeÁK‘{±ã	¿ö“*C‘}ºÞBKÑõ±¿¦˜,6nrٙ<¦ESóq;˝ÛhŒj±„)ߍʂ34
+4Ö-…*Ü_É>hm~^œOïpŸa=4†U@J8g2….ÂiGh½YDE›‘™ZªÐ;ör¿áÙ%eµ£µÙ|×òÂbI
ܳBöøéEeÀx!×âÅïaR!§eæ¾Ã[ƒéPŽ†Í™³ôÂo©æ¡o0$
§cR5\-á×	ÌÐ@ä9‰¨}fe?~ÊøiÒ!áGx±[×
+¤DQc\­ÖìÑSl‰Ú7Ñî7š6kØ¿ã%[QSè¯3eî·e}õÿ·Ÿ´"ÂB€)¹=Ýݼ-[Æ×I\ÒÄ{φù\0ž½Sv]˗܋‚±Øx–ùiñŠ[ô÷Z£°Y‚~™Ýœ,댑:ܘ8¾DAΘܢPÿÁ¥vR„Õ	 Ü’y¹Å[Þ,<=¥bNØ%ÓøþÛøWl¦û„ª¬ÁF"a£ÛGyåb|÷öW<‰Ëâ€ZÐlùj`^WÁVyñ²
ñѽÏÔ\YhR½|gš"Å<÷]ˆsèåhU³(TÖã՝ŸÊ×°–úqNÞ€
+/£‘ߍÑ<ñŠ7•%õfMQÌ¡9´½9ûrމ±9’dt²°Ñ¶¼6F Á;
P±R„wõtMÆò^Âå¶ÅêYn¹Z†¿¨á4mݧ©ÛºZ–iš5XìtÍ«®5…“5^µm+M¡K¡C¥Ò”w´R¢Ý»4ÕpíB¶ÙøJÒ"må
+HY„;WøÀà@?z+G[æÒ 	®ŽW7ša‚¢†5Á«òðÝ€µz»AIÐÔYM(xQ+þ,鈵‹}pq»æª @+kš
+JªÍJr¬}c¾;ævõ
—²¢Éã2Ø
yOHo–]x§#Þ)ÍKï1ýÿUÆa£Ðœ€,2›B§bªmðÙà@®7"Ðþ‡+ëæÆ)Þ0ù½†lÛ£løóÝeû­><¿è.Oéü
+ŸîùÑ|üp=¦Gk~‡¬éÖd
cí
ñ½“îøÉÅ¿cÈ¿÷;†³‹³þÅù%~1s£_Ÿ$ÿ:ø/¿ä¿endstream
+endobj
+1158 0 obj<</Type/Page/Parent 1099 0 R/Contents 1159 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1159 0 obj<</Filter/FlateDecode/Length 1605      >>stream
+x
•WÛnÛ8}ÏW’‡MD¾ÖN
+ìC.ÄÍÆî,h‰ŽÙH¤*Jvò÷{†”|C´›&H`Säpæ̙3£ŸGjã·CÃ.õ¥Gí Mý^;èRÿbˆÏ]üå’îA¯×}ûAç²O\ώZŸÛtI³î\àCL°ßnÓ,:¥êç„°ý¢5iSˆBM…!›ÉH-^IÐR¾ÐJ$%\09¾k£Ï³\éBé'Š–"Q!óàÃìÇQ›Î;íà·l7­ÓlÉ“Ĭِ|i–HRIRÚ"…´$’„Ì‚Š¥´
+©-¼³ŸšL6­S§Ý
>ö@t9tAçK¥M?<<ŽèäöËý'-‹µÉŸÙ!:ÁzÊM™ýféöæÆq
Û<Y¦E*ÉáÚéo.Úùpâ	a3Y™¯dþžº=¶‘™¬LD¾cÎÇ°·`M™Gòlw6‰‰DbóՎ-‡ÏÎw†FÆ2v„@vHé()cÙ@Ó:\þOþ¹º›'W³QóÆñäæîë툆aíafå<QVÒ¥±…}ßq—û_8;šÜþ¿‡WQM@HÌ͊9ìH~æ–jšW)¢ÈèB(
ÞûêI£ÕMÙ
zR…%æ[e¶"Ç1	Óq
Öæމ+òÆlQ–ËÄä÷̙`÷h{6HÙJ$˜`
Ü HhšK*­Œ]‡¶$¨îœNêœ
+Š¤FÉ'É+¥€A€É*©´P,NvÂi´o_m!Sö®Ôb%T"æ‰üuuš˜B"M¢p¹Z/
œðžXÊDŽ+Ö;4iŠ,A;¥ˆ–”ó\fgÍNz–2ã³¯.Ó9ÖEµ%À$(UZ¥eJk¨"©4˙D™Ì!Ä©ÐQsX,®¹Ä6 W0vñJYFÃé;Ì
o͙P ¸hØ·Æ$ØåÄÖqëó%uú¾Ýœ÷:Üz
ÿҟ_¦³©ÛÈ[ŸûÔÁcnKçÝ!ï›-+C.u¶tt`öjºŸÒ7¥c³¶4™QMݨ˭%àm¢:›§7ŸÂðÛx2™…áôût6ºïuÃðöqü÷èq†£™ó­§Ìó:Ðú+ÜÙ#çgü@WqœK‹ÂAØÕkŽÓy8Š"ZÂÑL¨Ü4Þ«š¿ú4sS€“”ÜfnTz‘´¾2*JΛÞ	ùŒb™
q&8¶4kgpvóЂoR¯Tn4SÁƒëõqì 
+“}æõàâµðîɟ¥B£g+¾ëÒW­^ZwJ—/‡·dµ6¢»eг¡ÐídJw®F|æÞfC$21W‰*^÷Ãbl8UøVeƊ&êUß á§š…ˆœ1¤g
̸bäó
	Á0<8MÝIdúg)QuìŒ\pžý€`F
+#Š.so½TP
e}Ö#ª±X©ÉD×ã/Ӄ‹'&FH¯ìa¦J%kä^6Q¶
]Ñv.jS*Z$—*³4Ï¡Þ¨Dá)#§¯·wm¶„\4 mád»ZÇk'pc´åü‡Œ302‘½Æñq—…)QUbjOxßÁÍäQº8ë´»@3'Î*™à"»»÷’¼bʔÑ3Ó‰C¶Y¿¶(\¸¾§!—oã
+€Á¼æ%¼eÂ{±#ˆÆ”¦nã%3ç^ËU¬s/©[OÏj77R_É´iƒq}Hqg|K(·Åñ1ðNügu\ù=ái­ˆc
¶h 3áÌøϕÊ–sè|§¾óEÔi·;-üëî4óÉõ䐜áiÓ½˜3?Á’-Ðr<a8÷^.¡Ph3¬žîŠ€sšË'…N
•byµ¸Ò%QNÕ|ûß+ø¥°6¤¦'µÂ˜M$“Þh¹—Ç­x;ä¹á<Þ3³Q€&Ò¹à¤c€7L„*(†nû¢²-N‚«?ó<ŒÏ¼™cà÷®ªÙt°&ûåZêN]3tï2;ïhçݾ÷­·ñr„9«Ì2“ô;}—nÊÝ
+®ÇõÏ7ƒa]xW4n$¤j®¯Ê¸v|×Ӌ*ªÎï¦=¾aN¯î¯¯è!7N&nMTr?rÊˁŸ×·]¼}6Ìýa?. kØÑíñÁÑì诣
Mïqðendstream
+endobj
+1160 0 obj<</Type/Page/Parent 1099 0 R/Contents 1161 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1161 0 obj<</Filter/FlateDecode/Length 1780      >>stream
+x
XËnÛ8Ýç+.ºr
G~ÄuÒ
f‘L4Àô1pÝdCI´ÅF"U‘Šã¿ŸsIJV&AÒÀ|Ü×9ç^ö×قæø^Ðå’.֔UgódNëÕ"YÑêê/ñÓHÚú…üÉè󛇳Ùݜ>ÒÃ7­¯ðGN¸e>§‡lBñk¯´%ÛÖµiýI_Íû‡Ÿgs:_̓+í“ͳl°íåå%üð™Ù݊‹`ì|¹æ³ûBÂ𸌋“Á1¾âõÑ	)K®tÿDž7ÒZ2[ÿɏû¯²Þ$úH‹Ëhïb…¼ÀâE²Jè³ÙSژ½UzGÛVgN)tN–œ¡\Ö¥9u"-%/ð…z9×`]êÜ/öµþº¨RñÚg>w™ø€¯‘J'œÌI¤æYNéˆ~(ÃªDV(--Š¶SÖ!ˆS5ôUº›ûoÒ¢ÂâãD%2ùÃGOøښ†$®ˆž..’%Ì	Q™$w¨%)M¦–àxߓÑì
ÊÚÖ	]—ÖLIŒä\Ë‘9ª¤+LNéö…Ê
+x€R°SÑápíȼOpº.\Àö\"®
+QÆ{p%â„çÚ8Ò Y©¤v³PQ*àY*¥¦zÆoAƒrlF\Láç«ûÿþòùÛæaC¥1OmÍîHÍ%̧ìÚÒ-ÄifÁYS¶œ±W'¤Ë<ʸ¸ëŠ{íCȄ•lÈæè|ÜÚý%Q–o3ZÚK,á_Ÿ×à(>Ç%¹Ñ’sÿïí÷Q¸ ÈaÔ%ôÀ%QðëkÓ»\s5K“‰ŒNµtSjuÉêrƒó­Eu°·{O;îǶcª¥MÑÛ°°Êµ`–<¨n̳ÊᏄx6@$Ë|‰´
QWâ€Js!2•–‡Q´Jÿ”Hé' Âbw!«Œ“Cj!Ò½iž@ž@RNû¸Mhm 
òÕ¢
š
ÐÇ÷ãÒþð…|:F§jz·´W¨$6pŐeÅâ´öìÞ+Ç$’Cdtv;ön8£µÈž¤³”	͉iLëjåŠÖ†ã@kH¤ã°ä¾‘ȃJÇã1%¶³Øø¶mXÙ/¯
 
 
-¥FÉÇñ†À Àd•TZ(–'{á4Ú·›Ë„½+´X	‹y,]¦&—H“È]®ÖK'JO,¥"C„ë
-š$A– R„KŠy)ҋf'
½H™òY†WɈ@ëÂÚ`”(­’"¡5T‘T’fL¢TfâDè°9,×LbËH;‰h¥,£áô怷ˆŽ€æL(\4ì[cìrâëŒƒ¸ýùš:ý²Ý\ö:ÜÐzø¥?¿Ìü™ÛÉ&۟ûÔÁsîK—Ý!oô—•%—;[8>0}s‡5=Ìè›Ò‘Y[šúÔGWD;êr/C
”6ÑGÍó»OAðm2úA0û>óǽnŒž&ŸfA0öšï|8g¢×‘öÐ`áζ9A“Gº‰¢LZT⮖XtœÐÁDäᎦBe¶E“ƒb ù¦Ì3wX1qÁ}öèF¥™@ï+¼àÄ齐/(’) gƀdK³vý»Ç6|“z¥2£™ƒ\_¨g؈Z ª0)Ñh6G¯EéžüY(tz¶R¶]úªÕkû^éâõá¶ÌÃöVu÷¡l"C¼¨èÐoÑh:£{W%eêÞ¦C(R1W±Ê7‡q18œ„*~+ó"eMõƒª‘o¡(皅1äg
и"$ô	É0<8UÝË„úg!QwìL9ºà<û
É†-\ê€Þz© ʖi©Æb¥'S™ßN¾ÌŽ.žš!mRØÃT•HVɃt¢p[tC»}¸È£D
-4
ˆ.UfižA¿Cp‰‚sHFF_GGwm·\4`m–ZGl'€pc´Åü‡502“K•ãã,/S 4ªÄԞ𾣛C¤tp֐hwfN\T:ÁUvÿPjòŠ9S†/Ìg$ÙfÛ¡på:Ÿ†`¾+X|›—Êà-3¾”;‚jÌhææ1^2sîF°\Å:/EuçéEíæVì+ý€8m1®O)îoIå^u|l•^ügyܔ{‚óZ'tрfÊ©)#@x<Zª’±œÄ²Ä÷*<[„Ïë´ñ¯»×ϧ·ÓcvçuRn`B:ÐÊ!–lŽ®S2†“_
-&4
-†õÓ=BpR3ù¬Ð¬¡S,¢–÷c¾ÄÊéZ9
TüRXÌRÓ³Zá?̃Yo´<HäN¾ôÜr%à¾ÙJ@É\pÖ1ÃÀfBC·{WÙU'ÏÁˆµ<ñHŒÏ¼™càW¯ªÙdÞbU.—k­;wíнÎ콦]vû¥oõč÷#ŒZEšš,§ßé»tƒîNr]8®ƒ¾û¢qS!U£}Uǵãûž^UQux=½êÑ`ð±l™³›‡ÛžӉ‘	îHNz9ðËúÀåÐã7цѠ?췆ƒ+¶=>9öOþ:ùÁ5r¯endstream
-endobj
-1526 0 obj<</Type/Page/Parent 1369 0 R/Contents 1527 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1527 0 obj<</Filter/FlateDecode/Length 1779      >>stream
-x
X]OÛH}çW\õ‰JÁI MèJûKQ‘¶«dÕ^&ö$žbϤ›¿çÞ;ÆDª´ (Ê|ܯsνÓ_gSšà{J‹KºšSZžM’	ÍgÓdF³ëþ¾ÄO¥i#ù“Áç·«³ñý„>Òjƒ›æ×ø##Ü2™Ð*=§øµ7֓ov;WÕô'}uïW?Ï&t1$×80ا«g]aÛËËKÒûá3ãûM§ÁØÅåœÏîs
Ãâe\<ïã+^='ã©Î5=|'•e•öžÜF>ùñðuI^H¡4]D{W3äáõ,¡ÏnOëÊí½±[Ú46­C”Êf”c©v”é]áäkµ.4/ðˆúçù¬k›ÉbwQ#×-U¹V¯æs‹D"¾A.kUëŒÔÚ=ë}YÒc3øB¥JscµGÕ¶Æ×È#5}Õõí÷%YUbññÜ$:ùCBŽ'd…6®"+¢§Ó«ä’=匘TS}Øi2–ÜNWŠã}|Oβ7¨k³Kè¦ðnDjè '[¿¨´¦R×¹Ëh} }nÒ ìTt8\;0_«'8½+\ÀöL#®QÆ{p%â„çÖÕR/ia´­Ç¡¤”óµÖ–¶æ¿õê=°1‚Ÿ¯îÿûËçoËՒ
-瞚»£-—0±fCw@§±Ÿqç]ÑpÆ^Ðu*0ãâÎ(¬„*¯Ù4 ÍÑIÜÖõý%Uo3zÚk,á_ÉkpŸã’ÌY͹ÿ÷îû \Pe0Z'´â’øˆuµéÜ®¹š…KU
J¯­®GÔ؂IÔæçê`o
vžv<mÇTkŸ¢÷
`áMÝÀ<	hW¹g“Á)𬇠Mžùy¢.Õ
•æB¤f]ÑûS§L cc<B@„ÅîB*VºZ÷©…H÷®zyI9
ïâ6e­ƒèw´SÐ€>¾–ö‡òè
œªÑiÜÒÞ ’ØÀC–
WˆÓÚ±{oj&‘î#£µÛ²wÉÝ©ôIמRe91•kD@ VuÞøpˆb
‰t염Õ7RiåPéx<¦Ä·[ß5«"û%Ú¢ €)cæuä3$:&wä6K+
Ø!ÿ
`%â·Cu„^ŒàÌ10AvU`{6¬®~AúK²#cýø†VôĤC\
-ˆ=†šDæJÉ{íI`ÉUqg§å¬6ðzŒT 8ŒjA¼N‘¡ú€ÏäòÔÙºrãñª‡“–6E؂£¸@3vù2H-[•øOfòñ|ÀŠ€*ÿÄ{E
-¡[›Ê•-“!ïǶÕÂI¿¤¹²[>Óg
›…Ô‚Ä" {P£™ENJËâ@n]s~ü.w˜s$aQ¢íº[+TŠ1Ê"ú$&§Ó‹éB‹È_C|Ëu!ÒÔµ‘ØŠú˜ØBØÊ·‡`\Õ
»FˆÝ)*¬+£z?šˆ¬ÍÍ6× t³«M‰NŽüÃÐÀzé°Ãkk°
-Õ.u!NÉ`$ií¡e±j`æï:€Æ“ˆ’÷/i™è"ƷЍuîe¹mY™$l¤•¥sDë†YéeøÁpÓÖG=+S¨µ)ô‚Ѫ‚=!<lÍsNJñܟØÆÇ®oiÅçƘ³mÂ44-kHÅÓ[q¾ÇÈkGZth—7)'€Û(”ýÀV<:¤ŠC†S˜_°:ð?WpLß!	<a;¬¥Ù´ÀžxO‹\i^±ÞHihqvæö·@2Ü‚bs›ƒ
°iî¬ñÒ:9Ï=‚âìIí†'"Po`×ö¶x_Þko<rq|¹N8Û´1…ŽÜ—,µ›E=(’ì?¥Fƒ4‚Ó]ÿm›.Õ¸©Ò¿æK/®uՅ}ЛMÀ$f]™l!@ÿnó͒$d`Ükîà\.LÒæ*‘4$§c»oûX Ø 
a}*LQ´Æü–½é¤ËìÀäɽJÄÏ]Á‚¡—àNñ›3ÿ›útS/W—cæè‚Õ>¡3ÚàY:‚phLljv$/‰óQæG2þ¬…
q`V̹îገ" ZˆÖ1+ E™¡P!—'ÀDÈÉø’³ãÎN¶èãδÍê33û(>!ñ–÷åùÃù8‡ôzvÿøð<ÇûY‚Ä9+Ò9¾?ýFüô§Ç®å;Hýà¡ØªU+üí1pŸ^ëRFlȓÞIãûëèïtŽ×ùõÍ?Èqyóåö†¾WŽ]ºsiS"¢ÎE»ýb1á'ûÿÓò+÷w¯ØÙb–,æ×øXZLفO«³ÎþQü‡Âendstream
-endobj
-1528 0 obj<</Type/Page/Parent 1369 0 R/Contents 1529 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F6 9 0 R/F8 11 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 825 0 R>>endobj
-1529 0 obj<</Filter/FlateDecode/Length 1960      >>stream
-x
XQsÛ6~ׯØé“2cђ,KòÍô!¾Ä×ÎÄIï¬NÚ¿@$d¡&
–-ë~ý}» (…ñM;M$vû}ûí"Žf4Å3ZÍéjIy5šfS¬ô?þó¯Ñl:Ϧt=_eKªh¶Xf7ÝSI£óg¼½Yã«ø-¿…!š/¯eçzÖ?ô¯®ÙFWüÅ\Ò«Å*[Ðb½â=ø¿Ñ´ÝnF—wšÍh³CÔËõŠ6…;¥M>¾ ¯Æîà)/¶ÁS¥ŽÔzMÚæͱº ZypMáIy<4ÜŽå{U–Úê'}Ùh_;‹Mª
{X1¹
-ÆYª\¡Ëw›?FSšÌ®²9|Ç*{ÎTFŸ7Ÿî_fïÈ5¤Jgõÿ–—Z5ôk cŸ<í°ìMU—º…¶Ê#²oÝeô36í][´Õ8¿*Íu1ðö*ÐÁ„=!Tz¸¿¥ºqÁ宔…tX2|VÏ^܋FDøØê€<<“Æn,Ku©ðS¢E}Ê.hÛ².|oÜòóªú._þ³ÕÁgݶù€"e_‘Ó“ñ>	À+$¢_„mœo¤¶ZvÝàƒíQœâcÄíόq4Guôÿ`· ô$ù}oéþírŽú×Ï?ÿóˇé±ÏVÄ*£ÍÖñçÙºƒe¾ð¦Ï±!Ǻ¼Ë;6NVٚk‰91_®ˆ½Ÿ¸*/{Òl`¥÷󹳅ɵuSå`Ä)‹%NW­Š‚±rM:ÆOgd"hߣæxyÏ,³–mY®ãF>øç_?}bö7*Gr|úº4ƒ
Y+Éèõ’¶Xúðñžõ\Ê:)ö49«‰*õdòh-NèE•­æ™Ä¾-ʀf°Ç¡K9 \ú¤ì½²ÿ?³	Å7’;™¯³Ù
M®çÐäÿwצÂiôŽÙî¸_ºÊ§Q¸¦qp¨‚°?0Ø?}ùºù@ ¹=—kåÀÌBeJOØÄñku3È1—×x·œB>“¥›kÔ§ž€·/&gäÏ4» ³/À.pÁ#6OWÙ«ÀÑ-Ð:øÝö+ ZeI$/Ö5«ãÜn(3ïËòäž#Õ·C2܁
Iìc³Ž rOßåÀƒ¿¢z¦%É3Šøˆ4î80…3§Iº÷ê’F0ñWѸºfî$áªÀi‘ÔN$𹨄) ­ŒÛlJ•±-ÓO1Üä8	¸¨*b¢BÐU¾Á…ˆãòvƒº)(UÛ1ã[i’ètq![â@÷‰öAmK㑼
YØô™µÖóÑЇT¾‡·ÜÕÇ¡,¥Ð¯$ô{“7λ]`*Œ”åè̉
pñ]BŠ3Å^Ù?ÒÌqÀ ì§Ò
-4•DX¦xo£Ÿ”èß
š‚$.ç$+I‘”3Om'هê»
£  O@†ë,6%ñªú#uŒ s

246¥Vh‡B&ÚèÊáÕ·E185—+4¢p Ú`Ÿ¹¾CöyNR|–8…®€öƚ Ë£XPôä\A¦ÐŠÄD‘”Ÿpè=ôÎÑê|›ïÓ¤3$ÇPÄÊe\{,€TóØ-íFFÕ¸6¶Äê[ы4Iݼv.N‰-r¹Xà;¤5·„"ü€\¨¢4©LåGÐR¢"ó¼Ò%WŒEp64}‹œñònJ7qþ›Ìq¤`‡2ÔQ©_âŒ6¦»<Ÿ
˜îD³Ïm̦±k¤ým§9#÷Û^ÝèAU[Éíìú¹”Gï¦ËMGUN)’R:÷ÜÖý‡iº{ψ\-¥ËÕPîýÑC·Hå9pÄÄE·:WðÄÎo'¨Xo^x uÃ.ôÅâÖÐØ,ìöqöÓ@T3&ååݼtÆé®ö™?M=ãï¸xp„,4\c’ö'ĀJ»81ÝVÎOßì®Ôs¯•ye½äìôq¿U†= ,w2²œM,|$n쪿?œXT:™f€TmÇÚ¿ ì›ùKÕñwòWµ>pµz-ãëk¥^MÕVdÛjËQïNu©Á]4°†{“ï#lËN«D\LÔSTUFç4tã2ÒȲ>ˆŸqÝá¿<0µâJ¼0‘X2$¦‘áÉÅëqüøN²ÁIŽAô„J	9UÞ9…`a+)N\Œö04\جGhÒÉ \ñ<_v«zlíÄžp_ó¬Á<›²õ8(à¯'<ãÑ?–4ßž… U1C’ƒé½jƒÜ™®q-MžÝˆ.s=Z¤h!îŠ<ñ_(^t&Œ”Ùæbçaÿq̬ýnÌË]µ5¶óÅ]íñÝ°¤6Àk‹)„\-ó,s¸Àïl¿Ç¶Ó7.Ž7º…{WnÓå
»‘ÆBÆz¼Ae³²o´8;óÔ6ñ];ïÍÖànaSö•fäé
·r…»¼[wž-ñ
ë+Z^w’ýðþþö=ýÒ¸?0’Ñ—·ÔM|q4“´a²š¢ccHý"#ˆmü#
k2çÇ{Ϟç\‡f]—L)Vp{’Ç~k¬}¡{[¬Ùj¹ŽWÀ՜—>nFÿý†°œendstream
-endobj
-1530 0 obj<</Type/Page/Parent 1369 0 R/Contents 1531 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 830 0 R>>endobj
-1531 0 obj<</Filter/FlateDecode/Length 1477      >>stream
-x
ÅWMoÛF½ûW|rƒŠ%YR
-ä`ÇIk ¶ÒJFP €±"—’«ì.%ëß÷ÍîRiŠE“8ÌÝùxóæÍðûYL}üi2 á˜’ò¬õituh4àó?ZRÆpôðߟ¿ž†1ŽÅƒ1Ž”4š¢qøVÐÜŠãA4ågC>è¾õ‡ì©íãfqvùù=Å#Zdk<ŇÔ9íÓ"¹ˆûÑUGôh$ÝÏék^¥jgèaA¨HÔv-+›'Âæª"#õVêŸÏ0Êî½ÑÞ`£‹un¨”v­RÊ«­*¶Ò®“HӜ¯R™ûE¦ŠBíòjE¡®HmpÅ=3å2JT•Q–òïªOïO#¤
_þÈ*Ñû…cvJ§†>Ð_Òðµ>õÝôô´‘I­s»Ç¡c&oœk¬…S8~þ íÍÝlþT!Ü'•=}¹ýxþ‡±ÇA¢¼?v§h'ö.ï<e³=g½[%©Iiª”%A5Âaˀ<=䂹Æ}C[Qäi8Ѭ’|ÁaÛ$:ŒìZËM±’™Ò¥¯ØF«-\§\O€m›t
-[JcÄÊUD«_~vÅP.Lçì¹6ˆáI­w¢Rï «+ʵ}ªžG“ü…‹š¯jíã¦F&‹ÂBÜ¡>Z
-Ã|™‹r)h—žÁ7®t2î–JÐR­jÓF´ùåá0ç‘{.jY*+›Jg"/™Bƒ>KšÃÚ§ãùu©:ÿ
-ºBž[yÈ>”¿i$àáŠz§}+@29Br°7!wœ*ùFªFE2øDj+ÐBU].™Yè¤Âuow°°V–Ëè£Y-M]Xî?xÔĦaÙt«û‰pý{RӎñT•Z~¯s&¿ËP.]Fx	Òc•¿HUW¾èLv̌ƒéð¨“oXagÉÁ!)XÝh¹EG!Ü3e¹'OV©:•²¤ÈqÌgsª„='µè'ƒˆîÅ7' c
ŒmkÆISUqôߊ¡BȨƒäoËàÿ ‚ÇÞPAè鷕Võ†õÏ©âþ’S¿7n5„m:ê½{
Q£“\øówçÍU]rUQàóŽ¥sÏÖDðã„
§@^aù¸Xg¬² 2(
õû™D%˜5P	à›8âÉþ¥
-òºËÁōÝ~¸Cu
-/¬\ŽºaöÁ(Cç,{
óÆ*)1 ðøYÁ8;nÜ³"ZpCä‡iDÞE9÷ô1nFbÓè52<{ËökpjÃrÏQÌÝTGTb…|ÀRÀVŠ uۭځò4?Ðåç$ì½I4)Aÿ=O¨M÷üõƒ|±?šƒ#ú=¯ê2{±"ù‚±`›]à*˜¿ l
-Ž")õ4a?=\ߢÞ3ÝÎî¯ïÜWﱟôâxzƒi¿?âø_ÓÓ3Ȫ¬Øfò“·æ¹_%žàM)Ö(þRò¬9j;DÈ؅Ö¬r·šÛ^J;\X½[Pɐ©“5ïFZË܂tbt»‹YKÌpÏz_¬ÈÍúØpäRÚäҗԟiVÌ‚&è}·¯Û£åqcߏw·®ÕxÂ`cL=gƒÂ‡ÖDŸa `Ç°24'®.±wša
ÞærGÉZlxöºÓ¸ÿÛìëbõò$¼í†v8îÞí‰3Œèc؈cçWî°`°wõT–¹<è±]ɘ ¡Áx
-_¶ºl‰ñ	pÜx6v_;_thǵDQßcº
--ôy'ƒAßÉm
-ºMƒáʝÁm©ªÂ
-‹x;¸‡MçsÁm/È	µMçùý
ùyÚÇZLçâ1ÞæC¼
9-˜_ßß\Ó­ÜÊw«7ƒÜjÆAôšã½Iï!acø‘—¦ÑdMÆS¼‡ÁÊdÈÆ?-Îþ8û¤:ƒùendstream
-endobj
-1532 0 obj<</Type/Page/Parent 1369 0 R/Contents 1533 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>>>endobj
-1533 0 obj<</Filter/FlateDecode/Length 1198      >>stream
-x
V[SÛF~çWœ>ЙH²%Ǘ´é	$}6-Êd:¡ÓYKk¤DÚu´+ÿû~{‘±
î%0€iÏí»œývÒ§¾û4Š)RVŸôÂ
&I8¦Áx„Ï1~Nû Œž'ƒ0~îÄhòôÀ›ô$z7 ~ŸÒ’Ç#JsBâ^Òì<-JE5ׅ̩+Y­¸"–ç¥.¥ ¹ ] YUr]Š{Z²†ámÞ(ÒÒ>Sõ<̤XТ¬ø«Ó/H×£‰Ëăp€|çgg´¬8Sí-xÓ¾eõœÑÍå[úuö)QV°%‚SÅÌïR‰×£ ßCc.Œ6g(ˆg¶Ä…l¨–ZÎ5++upâó}%ç¬úóàß俸ȚÍR£/¥Ö²É½¦?øaîmų¶)õ/µŠ7Gbæ²f(½’÷Rüs¼Ÿˆ	šÝRÅW¼2ÃNêÚA—
Ïd]s‘óüH*©üÙ×8ê߉ûáÐÌêóô*ý0{?›ë}ÉtN"%k¾.XãRDÅHm”æõ‘œ
g9IQ™)lܨv	Ä6;€qDƒÅ̓´Á ¿£¢| —ŠX–ÉVhœ¼3ç”!“湍ÀYVؙ¿ ¦hÍ«Êü5±Í“®Ò²@ç×·ô©¹\+š¦Ql˜^ã­RðÒ=:+Ý´™nÁ;îomÙð<4á¢w“­f‚xìX¾“°ÒGÀoYrк{ï–ºmJL£‚
-¹*sŽÞ̜rdË´l6¤
-ÙVùNӇ…~(E»–aù–¥¾m Hz³,3f¹d„‹„ÏMfTv FÅ`¸ïõ©`;ʟÙV`(Šæ`Ȝ©‚‚œ"ÓCtj„Pæ§ÔÔ}îàð¢}eU–ÿÛ{DWÂÈÿÆkòý¼\ÿâƒvì~
-òqöý¡ð64òhÇ!튮—èÂqö8
À5ž¥áŽZN7ë‚rÖÚa€¹!3#opS݃kBúý‰[pËÀ¹%0íFí)°k„ß
í‚U(Ø`›óU$Z¨ìÔ+ç/
ß?½»û¡ËxÜàÿœÙÃÎ0h/›IeqÁÊ2»+Hì.
.ÐÞJ‘U­Â–z€‘³@7c¯:3áEÅÊyűñ¼>#—¼Ë€0´Ãb†…u:¾ÕZÀ*)8è+Ð2 ©$µäY	1·„£q.)!;cx¢;ÛsÒNÐnš?—B	4¥[¿\[Ï´+ÅÖQf\½°]={ƒ±‡®ŒÝ€UÎv}Õ.¢I˜}êó¡y¨~äžË0o5–/vœ¾f_¹f-ß_váN¬‹1TÒØZÇšÛ9dºQš™¹=[3oº
®>}J&Ç»x8²WG·µÏƒ—±»\ˆ&áC4Àej»±½¶j^Ï¡+Ǭýd¸åçG3uC&VÁŠ_aÄҘéNgӔºÜ—î¢vrþ/iÇ~ýdŽ'	
û~ùÜ^\¿¹ ›F~ÁÒ K™µ¸¸ZXûCÜ Ç	£n_[û2BY”÷f89«A-ËÂÞ¢&Î`4GÃ1䆣ù×UzòÛÉß®‡%8endstream
-endobj
-1534 0 obj<</Type/Page/Parent 1369 0 R/Contents 1535 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F5 8 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 833 0 R>>endobj
-1535 0 obj<</Filter/FlateDecode/Length 1701      >>stream
-x
•WMoÛ8½çWrr
ǵ×N÷–I7@‘v·ÝC.´DGÜR¤JRñúßïR’e%)°(Ø5Ÿï½þ:™Ñÿf´šÓù’²òd:™â—îÏ׏'óåjòžïg“%•4¿XMVÍ7M÷'ýï%Ï“Yïiÿ;ž.—%~nh±¼€Ý¬NiŽÿNÒ6>8ŸÎøññƒ듷7ïi>¥õq/W´Îc¸ø%]¢
-ÒÑl6¡ow·ÓéJå½²†>¨àI˜œ~(“۝§»õ›õ?'S:›/`dt™eÒ{º²&8«é“òÁó
ö7[%gç‹ÉœÃ
\|Wr§Ìc´šÂ<ò—è·êüzª=ÿ
-Ùó8DŸ^fµSaO¹Ú>6þˆ¿ñ7_¡8ðw'w¤L4r/ʍàRÁ„“Z
-/IùøHl”fk[ëzYR¦•4H>XÄ"ù¤rdDPO’º¼
qÆP“ÙyJ4Fû/¿þ„„c¶¥ÍÕvÖ&—Nï_J}Òx™Ò½³Ý‹€?¹
3áä¶Öd,žYÊlY9‹ÎÅhAÚmtK\X(\m‡`Í8èƒÒºqßæb7r¯ZG#[¥%úZrh슼T8p" ¢™0ˆ$“º5ÍéÔF˜ØX”–;žË­¨u '¡kIMø•p¢”ŒÓ„¯yÓïøÎ4ùºª¬éi‹†ÂÓFJCk2§-j”Â-dÚl·B{94Ú¿0
-®ž“·T
-£ªZ%à?TÊG¸ÕÎ <Û½)ËX™!]"ÎA—ù„þ´»D±úø`¦­¹/…ã°™¢
n1ú&ÑꐐxÑz-Ïð5ûI;ŠX|§‹@¥eÐoê882 ÷-͕“z»grµàdÎ1ô‰à˜.,Aßðê·»+ªD(&ô£@K¸Ù¥45U¶ògu5æØâQÊgÙõù‹³¨gPrÀø¨ˆ&2A[]¶°aó-øÚ&¯™GÇÄ¥ºŠQëJ¡SŠ Qã§Q&ò˜‹‘ªÔגHÉXœ!SA\bÂؤ_ƒŠ[
%îg*ÕۛCz÷¬·q4¡«CMw4ºìmpàØKfÃßÔ.?~V¸ƒ®Œ?;zYçŠmxŽåahöóÎHçU
?/÷³V¾â¦\Ì+A	\;@¯t*1nÄ£¤KÈø¯Zz`Ž* Øį¨‹a!uÎc|%´ƒBeš¢ª¤p¤’8Â>§·ù-P岯ccF¯hñ°+TVðqÌCÉsf($TE G/Æ'ù¢)sLtJÓ¨	‚ƒ¨0å“n@Ì^
-oBÓÍ܉y˜³mm2"1”ôÈõ–¸Q:wð^P¥Ä,H^¬Ñ{~<c¶Æì=µû]ÇË˔Þۛƒè6ÂûÈ
ÁÀvHæš*‘Æ„GMá6À·…b3®ÍoÅñü°K$iz=!ŒLJï¥DN;DŸ Ýó ␗Z³ÙÈÉ’ݙTÁGȟ‰-åA=9ÄAÎc-1I7ûHIšóhV‚Óûë¯ß¯¿><DØ>Œ>±Ö°‡7ƒÈ{/Aq±&&›ÝðL††Ù2˜2|¸ý|-·‘%ñC›ž¤­q8¯ØŠ‘ÆTûëHüuW¹ÙՏûšV“AÜG9¿â2—>sªJ[`¹'•…ØÁø3gØÔ/©?йÅ˛‘­öôâãõJ±U,-ý*áýκœr
iÆ^ùðæH²ŸÑåJÛç+FC bö 4!ñ¹ÕÓ¶û·I²^]ˆ~¿Á,ö1æX*[»^^}Ú1}`X‡U_ O­V@0Ýoµ¡W¾Ókfot4Ì4IµFF´?%}~™Ý£–šÖ$…a*"Ç´ôÅ^Gîñ¸JíCbN8„³ÎK½¥‡QÜ?…Pq—ìå]äÊWZ@ÈÚaÀÀ«·X{#®šE$‚‹ãÀnÖSÀNÌá9²lÝÎ(ìÊ,–›X€žßˆJ†j|ýˆo+qùˆ\…Çî*Å6rmg
-¶ø舱ä¤Ek_â2Ðs+ž„ÒbÃK‚nêÍakqÖ>[¹9ñ	]â‚›KSÍló8Úù.ÉF–òJ7¾¦;Àq.¶ãT›Ñ’¨ÜÔcyXÛâÆ%a›•7éYìW㯙9‡ËÁ9_¶qŸ¼úezír¼X-&«å®â0ºzÇÉ]¯Oþ:ùü
-£endstream
-endobj
-1536 0 obj<</Type/Page/Parent 1369 0 R/Contents 1537 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F5 8 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1537 0 obj<</Filter/FlateDecode/Length 1810      >>stream
-x
XßSÛ8~ç¯ØÉéL	¤	½— pÃMK¹’kïŖ‰Šmù$™ûëï[Évl‡þ˜¶Œ]É«Ýo¿ývÅ¿Sšàϔ't:§(;˜Œ'4?ç4;[àùÿŒ¤Ä/Ì&§x}eaúöÝø¬¿p±<8¾žÑtJˇÌÏ´Œ	L&´Œ†Ëµ„aeIät»¤h­79E:ËD“[G•¦´Ñæ	OnM÷"[	ìŽI¤©Þ ÒJÖÎãLåÊ:#œ6Tõ¬Rù(ß,¿Lèhz:>ÁÙÃH繌œ„}ÏƒAD8ž,=Ø°d´v¼­Eþ(á‰$x&]«‚tB	,[Ò9­4œ”êH¤ˆàú>,m­“iÓ;ÛÈL;I™.svÀÁ‡Ë1-׀ƒy*«T²?…0ŽÏ…#lòøz^A:¤{¥jþ·zÈ`Z•F¹-aÙ³¥
ޜ„Ï۞["	ٖÎÓTYÄΩ¼ZJ‘ZÎ$FgL¨¼Ú“¸‚¬rr¼xGSd™Ó}t:¬}:ÏÆôEɍÊ=D‡be	
×
-i2e­Ò¹íF'6À¬LL«Ò9ø	<Þ6xîv¶]cÃêË1]¦*zbW`6-­Þ,•’+‘êG¤ök  +±ƒ3]×¢SËsOKì ¿ooþ	|©±d¾t"æ<Wœâ8be‹TlÁ	€Ê&m2ú-¸_ÇÆXÌžƒû«Ï_®>?<xö??hĒ‹L>¼éÅÜúè«/¶`ó¤Æ+êã ¥[é.n>Ý{Ëu(¬¡TFÔ³Æî|ǖ÷”]¬
y”Bõ®5ÔBÅæ“ë©ú¡Þ{'ubþΑ±´‘Q…C]dó­b™;•lù™q®ðË
7eÜKœ’Ðó鏫K@‘(™Æ
-a-*¦X8±9ð…ÐBþÆW.W1âw˜^0¹#¥dË¢Ðƽ•^ŽÂ
-´ÚËé0©­ô`Wùˆª¢ç«VÑ@ðú
-=áÐ!»tµ8Våà
-b¸Õ¹ì1jØð¼Í}¯Óí#`~p]B¼/uîŒN}P–ð¡m! Û)†X%	´)w>3&h«?¾–%투¦›Cœò
'8¼@6‚Ö½Œ
-ôž]å%ÊX·“0èV0HW#aÓ1]³Í»Æt³ÅIççÕÊ:W€
Տ.‹cÐ$#–wßê$ڞ1Ò:™œ#E<рU[òƒ| ãñ
‹è,E
=Ym+‘V¹ïwnm¤$™Ê°2Î/?„öÉ šÃnðƒ½:|9¤•r¶¶åM`[Æ®ã0ÙB<蜏?ÝZk»Y›¦ÇT¯|+%U@÷vÖäìÂ?¡‚y0‘sHèi¾uv®¶@eCn¼o-_}³÷4^´Ô©cªÃ!”–Ÿdºn[…¶+T…IÄñêa¢hNß
QCò2UÐ<!m¾6^¹—§ŽÛ-¥†¡» ûõzÎ<È·aëÎæ0$Öù¡cž@;yn‡èÀV|e‹0&U½½Îæ°"y?…}ða
-ۓ¡0^_·ì%œ^Ô@ÙËOïֈy)½ì3»l#˜…‘‰zّ‰u~?Š{d3G‘´vÏϪ¥ŒJl<'ûð^”vyÜXsá¢ý©Ð4¼†­A¬\w\ôó/<c? ª¨LEEhß×<{x쥇¤@]Pö=„~§}&F£`‰`fР{ڀWXÝ%@ciÈ4´Yáxc˜	4úEªE\·—½<.ÅS_;>ÕSõj¬KÂAÑ0íIznÖ
-ª€È¤È};Ï=Þx§Œäö‰dþ…Pƒ´uƒé…h×â¹n—{nÚó
¢È´¯†õ
,àæb

FçH—Æ¢iTÃî6—ý„”ãEÐÒèÕîó[ϛÇôQ³ºH‡›€¿m0Mcpe¤c­|ë@ˬ»ï#ô€WÂŸt²“1½oÆﻟ¶³z/ú-ÏÌáºÖÜwȆpDä
¢W;¨`éĵD¾Ýò2ƒÖZÅ8܃„£f6ø½a¶©ÛÿøZ™&#ð0ào]Ñ»¾^OÔÜޛóÐ!sص§Z#à^ò?íe¿ÕPÑÖmÓúÒöƒˆ(B;ç+_«“|O6ŸåÁ˜G_è<ŒþÂð2j&\‡W(¿Ð¶;#T]m¿¯:œ	\1tÔÐì m'¥ª;D‘6ì­LûÖÑÞԆU‰>¤_IéÒ*Çý³NÜ|Øa‡¿‘qòºXÃÊ¿ðîøØë[åF—³*»U=œUÃótŽßlœÒ|á/—÷ç/ÎéÎèohªô^G%ÏG¡ÐØÑ£zûÑbò®™ýB;[ÌƋù®Ä
s6yµ<øëàUendstream
-endobj
-1538 0 obj<</Type/Page/Parent 1369 0 R/Contents 1539 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1539 0 obj<</Filter/FlateDecode/Length 1510      >>stream
-x
WÁrÛ6½û+vt’glY’eÉéÍ©ëi&ÝÖê´_ “¦õ÷yB
ڗNÆFvßî¾}»úq2£)þÍh5§Ë%%åÉt2¥åòŸ‹ë>çø³’2ÿb~9›,âŸ×'wšÍhÁÖòzEë”`g:¥u2~åFÛé:—N9éˆ$)K«j™R%m©œSF;ʌ¥û5mvpZ7V+½%áHhþöæ×?ø2ýsÿå¿Þ-*M*O×ßO¦t>»œÌá~\ç¢&AZ¶”©BRb¥`_0Ü
2¦”#—„ך¦Há2‘êENØÖÅÝ'š!éür°au6›\Mè›IU¶cdÞ4§
-Wkcw=T®³rLÌù|5Y²•è¾Ðéûð»Se…ð”äBoÙ/'!U®*Ä.ʟâ°ø¥(̖6æõ,J{K
-•<;Ê«P¾1=|}‹{L›¦®žÐ秊/Ҟ±¤ŒÓV¨RÕ¢ö•oœ´H»LQgCœkù¤ÉÎPĔDáL„HéZZ‘tVZUç>W㸰i(ב#T
-÷̌HñTU†Éèöá‘D][´žb(?£`ìH"·µx–,äIb]ûº£ÚóeWí/™GR	+J	ŒÔef¾Ï•҂\SUÆÖqژ[²fÿÝt™ïq<̱kÆìH#¦!ËÊßãëN&
ºä
±¨UEA™PE’OžÐ¿cIG7I"£[©•LG1ÐïĶc}/ú5h”)ë%÷\1¤M¾åFvxè(šïèÓa†Ð×èÍBÁ6Jnjq(D¨4髺»³EG"3Q¨ÒZô]€+(ßʒWÖ$2mÀÂD„āL T¥ÉW¤¹–qjžN'´f‘(¥€6ù°w¦MF»S)´ªš:ÃÉ!ÎJp„ã»ØZÓT­±™#—OÀÚ68F[4À¼ƒ@YþGÁ¤Vqå!p	Uå^cçï#ÞçÁf.Ü;”½k„†bíyKô%:€c9#Ì¡> §S&'û¡d֔¾¾ýpCœÐòN¡¢²^ñ]M-àiPׇ¯q•‚@1†Ê‚ËœÎÀ–Ÿª*Àz–Ï‘6½ØÜIò@}VœJå„Ðò(p„ÊzQ%xê[ ±!¢mTãÀw* Ha
ß¿_c„”bÁt”J—@Ôda${O’¢0­cà^íÒ·ۈäÙÿδ2:‘þ^.Ðdû
-eٕQD^SVF#˜>7®›ÍA]GCŽzdGg4jG¾íF¯#Ú¨¯3ü¿7Ù¡Çœ÷KÀAûzÂîš$G^"\£[Y@¡YÈA8A8|•ðȇ9_çP
pBmµ±xãI¶'H CXW¤Å¨‹Ãû—-A•kÖÃ>­qW€Ñû%€x…a
G”ýжŽwÑ€ö;’t]Cmb}Ie&šC'Pڏ6ì7Lc™F°æOh¿æ 9XèZ~ÍDi”‰Ê*Üè$—L“wîo‰5#‰§g? D/_!æœf@goͽ׹Cÿc,cãƒV†d؃v‹Òµ,âwXL 1f~ñ&é^•ÄP‹Tîhâ3"vä.WÛ¼ÀßaÚõ6ÌãMž$>€òǺ8HI7½ˆú5
”9ZD^À}[z6U2ÁJ7HÏKLÔ­Æ<ÍU5py¬ý¸>vÝtq×[wAÉC2dêkðц¼ëŽ+'&'†¢®ÛÈý6"˜óàÇ~|X¸>^¡ïy®{®û§kZÞ®ØÅ
-™†WіŽ™!èËښѽå“Õt?Bé2½_õzkÑA”x
Ý#¨==ž8þ,Ù¯”‡ÎìúÈÎ{gƒÅ‹»ë°MΖø‘v}IË«Å䚓÷xóíó
ýiÍw¨ݚ¤)!+~Gg´çûç«é§ÿõ“f±ZLVËkü,‚·ÕŠþ¶>ùëä'GCˆÒendstream
-endobj
-1540 0 obj<</Type/Page/Parent 1369 0 R/Contents 1541 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F5 8 0 R/F6 9 0 R/F8 11 0 R>>/XObject<<>>>>/Annots 846 0 R>>endobj
-1541 0 obj<</Filter/FlateDecode/Length 1445      >>stream
-x
µXÛnÛF}÷Wòb°iQR)ÐMŠ HÓ6zÌˊ\Y›\†»²­~}Ïìò¦µ#%

-6–{›93ç̬¿^Ä4ÅOLéŒæ	eåÅ4šâKÿëŸß/³8šR’΢•´HçøëG}äõ”,_E	æfI´h<5[-¢˜–«)¾–4ŸÍ£´ñìxŒÙer<»œEsZÎRwð|µìGnïh“ÞëÖòìx̧G³ÞªÅb孊SØèGîäÑV%sÜ;š1û*9še(â4Žfðh%퀏}½¾¸y» 8¦õx'«”Ö¹ƒyJëlò¡Ê$	ÚÙPV¨ì‹y¹þŒËvDŽ^|øã…ÿ֝2!«IÔuq »“T˦TÆ(]ú(ʍ RÔÆMÝ©{Y-Pïu÷ÝÜ5z_ß<è¦Èù‚)]Çs¸°Î'ÍÍÃÍ#ÙFՅ$#í‰*ç+zPEAÙNf_Ü
ÙNTw2?ºc«\±UØ+ŒuK7Ê>ŒTåÆÞ©Y稑پQö˜R
-ó%t¿(¥•MD·ÕÜÁv',=ÈFÂ8o’û"ð¡ÒÖÝÏ/ãK½2ԟB¼¨[K¢Ð•ììccFPGí”Ë|@öÆYY%ŠâpEÿÊF{³NûŠH=õŽ¿a~I„@
-x…
¢ŒÞvîJŸ4ªMäœK±	»«ôŽ±:pÈcåÃË®;(»Ó†÷·›îŒáwÛiùX#—•uz5ìBÁg„‘îE±G¦øŒõ–÷I‘9ÿŸ…i«}¯ò0\™.kaÕFÈ+d®Ýµ™E¬L;N»c{µÎÑVdí6XÖ4:ßg2h
þ0kŸ`Zê\m¼¨ÇoLµÑ]†tÕ2åÊÃâl鲛Qš¦± Õþ”¶uÄÑ#×¥ýàŠ¡Ÿc"vA”:>üqÀŽe¬WŠ>
-穘馑¦Ö¬$-;ÚTø6+)~½¢Š#֝˜³nMF’pžªˆªFùè«ênpäžP;ftñ =ÀöK]]†þ¬òHtÜzÞ1O²»e}'·ÆåéG© ‹¤ù)jyâWš}(i™u•Ò¥ÞSºM§aÖЩ@•j<#ß\)ƒõ?’yHˆWwåÛiˆç6øº‡¾@	§ò£¢­›±­+Ko]-ÎU#3«›C+®ˆC(`X9±ÆÈ%÷ÈÎ\š¬Q.>}/ÇZ"3Y[ÔNs¤t¨^Bh°ã$„Ü2H‘s±<µÍW±`ƒ‡¾¿7°t8î$	¾mÏwD6ŒÈ3ùԛ7hÆsÁ€ëæ€ðlž@.ôÂÚr¶ öWHœ¾¯íþÂhàŽ¬?	çIë»N5áõOÕ±’u]ÂwkW`ËPYÏ)Y»±#á;nx(È}K@Y9ã}å{$Q¾E‡—ªRÐ.

-S&*N[ßï›4ƒ«‘*L¨
-ÆrÃî:f+?4pk/¥œ4£û]	åFÉõ­è¨G…‰ŒÊtÐ{8U¹~ŽmÚ×ܦ²5p»Ýµ¦½t»ç—ƒæVª`	*åsFÀ=|V{G@ªðÒe²’n–r-MuiY§øI…w
øbU¶/DÓöÌè:\á
-íŸï¡äû·š›:†¨§÷}¼ˆ£yó/¼ö
×7?¦ÜDphûi²üôÒ¯ÞhîýÓÁè11µÌÔVeLÖYúÅoêÚ]ˆy—2ƒ2ñkàW×Yå‚s¼0XÕÁt±ó̑Ïm~Ôvöގ
-Æãæ3Ó7ڌïÕÖëUhœ¤Ñt5§$YáÿxJ}¼}ÿú–þjôgÀD¿él_âiå*;wÝm¸N§¯x}Gˈ޻¶›èS?†w¯¥EŠ$+<DZ;]ñ¡oÖ_üâàIendstream
-endobj
-1542 0 obj<</Type/Page/Parent 1369 0 R/Contents 1543 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F2 5 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1543 0 obj<</Filter/FlateDecode/Length 827       >>stream
-x
•OÚ0Åï|ŠÑžXi		PÂû©ªÚmµTía/Æ1w›ÚÎ"¾}Ÿí$
i{h…¶gÞüæóc’QŠOFù‚–kâõ$MRz‘§ÉšV›¿øA‡°°\Ü&›ñ«Ýd¾]P–Ñî€XëMN»‚'MiǧÜæÕÌ>]ï¾ORš-ÖÉ
-[¦m¸ n]b´^H#¸Óæü÷Ã-íùùvÕKé3Jh¬(H*ë+Hȕ‚ŽÌ°Z8a,ÒòÆú=%v'^Ë|{Kªñe͖«¨:˒<¡w
-‡wR+:IW†hÖ1U0SÐ=«÷Œ²Ĝ3r߸¾¸4†©Ùñ(ÕcL3”œ=àÄØeÉêZt‚ßÜÝÿ
-I{é,=LmÃKb–®€¥©ê|õpR²¾||÷ŽÂÔÒZèµ>VT—Ю”¶Åž-“…Ï\†= fœ)Ú£âZ*ÉžÜIéõ1£+=KYÞéÎàÊ*ýH ó§3£Ü>Âþ6^҃¯Ð—‡î” ó'¤
jm©OÔ	²+“JÀQšˆÀˆq.¬%80äÒ'%I‡VVu!.‰‚çH¬7PßòK¹àÇö{x)VŸÐ…\®Q…ªUۂÐ>Dë˜ó¸ƒWãR‹r”^"$D¬öÍòÇt¾úX=ßXÏ%dŸ6VÎK¦EÌ64
-Ī
-@±µ¶¢zƞ!¿ÆÂÂ~q$Í^6ÿ†8¼óŒ6ß¾hçsJWwï¯üÉ_3;%¤|ô&`üÉÿö{Æý,A)Û·lo:k©Ȃ©õF²cGn|REw­ Æ«
Âé$z 3?t˜DX&ÒµtŠì7&ÙÁ¯èÛïØbþ‡ë8–Ô
"zȸnÓá<ð¡
-?Wn™ü3ß
Ö֓g݌Ð`&šª€0l–JÐ]ôò5S\T¿õÓ0Ô駌…ñ¹8òçöe\=#„êÜÉð/¼NúY#‹B¨à÷ùvÓ:*[㍵YâM¶‰—ìý˯^Ò'£¿ãEBo4ojÁò·¶¯oÖ˜åé­¿úþ÷nïn't•¯’|½Á+
ó[ÿ×ÛÝäóä'ú.S¿endstream
-endobj
-1544 0 obj<</Type/Page/Parent 1369 0 R/Contents 1545 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1545 0 obj<</Filter/FlateDecode/Length 1451      >>stream
-x
•W]oÛ6}ϯ¸@6ÌZù#i’ØCÛµO+Ð!Þ[€Œ–h›«DºüˆãþúKŠ–¬¨[¦ICñ~œÃs量Íi†sº^ÐÅ•ÍÙûåÙôÓZÌh¹Æ›«ëZV4+f3¬”“[±óÒÒ|QУ×j¬Òúòî3­¥J9oÕ*xY~¾Xþ}6£W‹K8™”R{+êú@Ðbƒ"ø-U)¼2š7sìùuŠýêâ²X°!‚ͺÍJÐK{/i>o÷.®‹+ÞûŽthVÈЬéO­Éœ—£»‰Ü¼¥Û éÖÔÂ*w÷â%	G{Y×ü™Ð#ž÷·¿ÑZ4
-ir¬ß•/I›=¯jõ]òÎ×ü"%ø¥›XՒޝ ¢Ï¦
-µäàÈùî—ðáä
í¬yP•$02 yÁ±ê{ä%æa¥3Á–ÃÈ¥
§¦&'íƒ*¥+è‹U8øg@ŠßV¡dz™d
çTÉR9^Â¶à‚F8Vx˜Œs´Î퍭˜+áÅJÀøn’2Š‡1™J_N£U´™~ÊÇ4
{ꊬü”T&b6H°—†‹‚bvÀÔÆ
-œ¡ß
-äÍÉÚó‡A^·¡Ül¹5`¦
™ĩ
1’?àƒ
-÷6
|
Rm6ª•ëÛËá¦QžìBvûQW(›,/ðY´(WE¬%®·V@Yn…V®I¡
-!-KuCÊdu°ÖÖðnIAWÒÖTñ€ÉÓꜞjR鵨uh+X	Ù!!åacO@qKïPâ֚°Ù’Ñ’Ö
-%’xª¥)Ø4½Ëœö(¸›ôªú^HVÊsëQºR(¤ êè¿U‰€ºjƒÆ‚L”þaСB‡</AÐÚÔµÙÇPàZ“|Íî_€TÓ1}©I5ÍT´Ü‚³ìo+Ð!w³ãru´’2*£GCÐ¥i´LFåø0Wh;´'BŽ­Lyr^”_7Úfª’K4éØr (MíC]ªm%°L"&ŽÈ}tŽ;wlçœt/H	ŽV’G
'„9À)Ĭ™CøjÈØ¥Üù(ÁpnæT=Ü;ÑÜïöÕªpíž,‘I<°é§½Éƒà2UÈùϐä«y1ËXf²É9H—Q®Y«ÝÄŽÃ`ÿŠhÉmuèbð7Wõž¶»Uy‰³(½?´\›Ñs̵‰=5>³"G¢ÜYObW8¦°ûoÛ$<ÔQûpލPõSËç¤Üž9èÓ³©^hCêei‚öm¸H›S^öÂ{Õȑð'vã {réqí ^|ù;ªqËsˆ¡o;FVŽˆszšðùqŠ¦ÀcaK‹’­k§èíá׋
ay?#ù
ëÝ‹xQ↍²3{¯˜½VîjQÆ&Ò¤{7(Ã÷ƒ¨ ¾u‚\êíý@鲕l‡äÓBü‰¦+¥§(ð)ÐMó$z‚­¹‡¸·?ßÚ³j3Ü´V«Fù¼)öõÞñ²‘.w÷¬Ïhɼ;]ÃäêByéŸFÌeƒ1Öφ=׸íÆF“Aԕm‹ÈãÍ×{ñÜDK#^*©»÷l¡œ\™^kµ]ñ²“̵VlÑoIlsIõöc/Ç^’-:Í'£˜Ë×­i0ŸmŒ6–Kê坅Ûâ~<ՔKÀõ½9âEê‡î=Ç­+Ñ?¢ˆ¨1¾êvx±¢R!‡Ž¼4+®´£¯q.¬ÏÄ߈—ýVJn”Rg‘uØ!ºO÷Blñ‚˸S.³»Vg¯y-æÒ6£ÖÍH}ó”ën.ùŽÁßh<àŽÓœ/Ömåã;…_ñ
º
ÿ—3äÙÚ^ìV¯9vA'”í·
-Wgxˆ®’ùM÷‘vq•>ÒþçW$=çËñòú²¸¾ºÁ7+†üMœú—gœý5õ“Vendstream
-endobj
-1546 0 obj<</Type/Page/Parent 1369 0 R/Contents 1547 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 849 0 R>>endobj
-1547 0 obj<</Filter/FlateDecode/Length 1633      >>stream
-x
ÕXÛnÛF}×WPQ‹ºX¾$@¸)ÔAZ»o
Ú¹7!¹ÌîR²úõ=³KŠejŠm‚¶¸œË™9gôe4§þÎéjAç—£Y„_篢%-¯¯ðóÿŒ¤”àèþ¿_-/£9],q  ùÅ,:¿ät?zó0š¾]Â=¤°y}E‰{FñØUÂÚ­6	%‰•°’>Ž_>|«ì¿:žJOý¹$<iŽÏè©£6‰Þžttmt]
N~|I[å2r™¤B'u./™Ñd~-̸Åï¶X±o‘Õ;´ÍTœQm¥õ¶îE±]˜ái¬K'TNÜ©Øh«SGw·K’elv•“É>G|AïöLØLڈ2e;»øÙ:mðš*I"iŽ²T[3Íu,ò©e§¦•Qá䴉e{”çg3àkŒ<û2iþÚUõoFÉóS"+Y&ª\“.»42¡Š*—…D*Â±îtmè·R=NVeýH
nœ,9ôäëU ¤µ2z£$vµ£P̍4¼YD4|ȑSÑ;G±(i%)ÖE¥ò`ÁV2VéŽ#CBr.ZÈÓdÂœô\'öÐ']q¬(“%™º,ْwë…
gÛêApKÕº6Í}5U¹ˆÞÂíèAÁÅ"ä³Éü¡Õ>ø‡¾…œ‘•Ò×,ÑqݕXØGü„•‹%~ß[Có‰22Æw¤Ó^¤DYgÔªæôD­Ï¯Âš,–˜jèÜï¾ÿps7™G3>À	šE×þs<C­BªH¡lWðœþÈõZ•/žÙ¨Øç²ob`RÔ&½?F~©@Ò~ÔC„JÈ\ì†FâX×¥kßÁ8þ#˜D×fd?°3§{ÒgƒÉâ’ÓÍݘê<×[F/zŒÓû•ìÌBãT\çÂÐqc'2uŽvÓ~ðôm1Ð2ÑÁø®¶ÉêxvÿK¸ñãîpsãi®VS+ãÚ(·ómÒÄ@eL~nDIÔÈÅóp:Ѷ·ÒšXëáêDkOƒ¼­í4!ÉE(r;ÐЎ
`ïit“‚É"Œ%L`ß`RŒgÌÑB$x¤™´ý‰=§uü*78Ç±¢bò%móÑÈîx‘Šýìˆè¾†õ·×¡•ó„DŽn)ø;Ù c?Ȧšµ‰2¡­?í²Úât
-Ÿ\ع٦äÇ™(ט5µmˆfpÃÿèMœ'ÉôßÂõq€„˜Š~è”VÐKúêßk'_û9êÊPğ
 ÌCtR!#ÊP’P*˜Á˜•W¬¸Q´‡Ì¡ X±h•^&öÔK».Ão”“Ë ²×ÐÓÚ#¼”®ÑÕ¬
-ہï=ŒèC.y02…lmÞ8Tè”
ú½ÔëñB³Y<!
-	¿sóka¼¨äëƒC/Ç¢+•ƒ9 ّ)&"ï¢òҋT–etɚí­ِß¹:m&ƒlô‘†zµ¢'H(.Í1µ)r™p¡ï}ûBÔ²éùVäù@·>
-ÃY#rJ!ež×ÁÏy#]¦âAi9\(ßÚ@¢ ÌZ(ãV±ó dfG j<”Z¡Ì")ç¼d£ˆZ ‰£mb 
-¹Jy&3”ÎCØßæ÷ )…øÌ+—Á,Ÿè4µÐ¡š÷
LÚmT“ð»ßÂ(­
 a(“y•Öð£“ÃÍÈ|Es,´¼ÙNÎQ9gåO·­þÄؽ9`‚Pý>G]E{$¬«ì'Ú*äÀH‘«?!”Œ.àr›K†.Š•*•žþ­Åæ,xÓ­`°•í~LB‡g{`쮌ãcƒgáŸ9W½žNý‰ÈÓd¤Ízê×kDµç2’èýU®lƝã'T‹Õ|‡š•vÖÉú#À¬Mø~àà{8^¼Z¢Å9¿»1®¸µ?Žåúuh\8%¶kOC¼è50¯¨ª¼!ñfÍæH{Ñc˜^½ß|S&6Lá­B…ûA‰dÜ!ëw@Ü^gŒsYl`ÚtÛÿMìݶkNÈïu³Î/ñÌõ9¾P™…]æþæîÍ
}0ú¶"ºíïZüæ¤}ar5ÔŒOéòj]]^ÝxázÎv~|ý2ú¬¶«endstream
-endobj
-1548 0 obj<</Type/Page/Parent 1369 0 R/Contents 1549 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 854 0 R>>endobj
-1549 0 obj<</Filter/FlateDecode/Length 742       >>stream
-x
•TMs›0¼ûW¼[™š&@ÚéÁiڞÒIkfrÉEa”
-ɕD\ÿû®'Øé¥ã±Çâ}ì¾}+~Ï"
-ñ‰(‹i™RÙΠ¤4Kƒ˜’<Ãÿ_éö
¤¾üüü6‹ÒeP'Hi)Bz:ž$­gÓsKqx,'ÑéÑ4®§Ñ4
2ºJ’ Gçeg8ùÎÓ3¢Wð'ÑÉQt>‰NΈfÙIgŸ›äñÛáoŠÙåׄ¢ˆŠz¥yFEÕ«RQÎ×Ü<‹’Óã|u»~¼ ¡Èjª™!f¡^ՕNhEº¦½¨81Ã)îöÚü"Ö¹†+'JÖç8ÃêZ”ÁEñÈkŠ€ä!ËT‹jÅÁ2 ûÕ}ÖªÛÎ…³Ý%µ¯t±_
j‹†c—™]7)£’IÉ+Ò~ kÁÜ:#zî6 S­¥Ô{¡¶¾ImtK OZ-¤Pœ.wH1x(¬'
ÚÑjúný°*>ŽÑ8†z€´fí†Áp±oîçðÃqrš¸bÉû¡m·Ûiã µx@èpp¿™ùb±®Y€ü©óNj÷=+ÌeXË7X…”Æ-ÏÈa¥ÝHÌ6º“£:ÿT,KÝ)5+²ÜZ¿ã–)¶å-6J•0â=óQ¼Š×¬“Ž6¼aÏB›3PQ;;Ìée,%‡…ÿˆS—h%=,*ÄViÈÄžŒ„Pû–O@ßµƒœ
sgȃðLîÙÁŽíl/¶'q†¿ø•—<ág®JsØ9Èj-ì\YúD‡ãÀ°¹…$~°· ÞÁ­®:ɱl¦¼ÎÇÝö7£ÚòK¸p§àΘ´¼l˜¶ÅUâ|;RÛ¡´<½ó9ïn^ˆ™cgý]ƒUf¼öôÁW_~½:zëß÷ó*=dæcf”âř/)ŽúK·^ÝݬèÞè'¸nuÙywô—Ö×-Žé‹,¼þždI¥9^
¸]yì[})f?f
Pœ¹ýendstream
-endobj
-1550 0 obj<</Type/Page/Parent 1369 0 R/Contents 1551 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F1 4 0 R/F2 5 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 861 0 R>>endobj
-1551 0 obj<</Filter/FlateDecode/Length 1403      >>stream
-x
­V]oÛ6}÷¯¸@æ¶bù;: içµE±ÅC1Ì{ $Úf+‘žHÙõ¿ß¹¤$;j‚!À 
ÅËû}νÿôbá7¦Å˜&sJ‹Þ(áKûç÷_ùÍfq4§‚¦“hZrzè]Šã8š]]Ž“(¦ébŒ'MFóöÄO¯Ï¸Î¢E-n—Ñ’¦³ÛhÌo§Kè'{uÆí2~t{¿îݬni<¢õ±ÍKZg>$|IûïöâàdIñ$¢Æ:¥w$è“JKcÍÖÑ{e]©’ÊɌV*—¯×_{#Ž§ÐÒ8['r¥”d4=ˆ",ÀãE08œLá5„a!Žè£†¾*uÊhD§HU-:^ ­]ï冩6¶é›’Þoíæ5JsT™´p¸B[2[²ò JáÃpВ›JENG%O|½E×eª”©3¥’ÞĽ£n/UV–Ú$mKƒ¡K¤®‚ªÃþl½Îܤ0„8X1¬¤RZS•)L üFKw2å7ÄíHä¹9YÚÂÿ½ÚíeYç²±+ŽBå"Q¹rç
ÙÂh(ÉÂI±“$¿#ì
•È(¹Ð)×Kº4¢Ô¦”¤4,Þ3‰©PíÀµ-”9Ó1z©tfÒªÚù—Q-6ž£™|E”¥F‚]ɅBà{s‚Jü³í´½ è­¾S!ҽҒ6}Cqp2ÍLAÜPR"+å¬,‚é¸ç[êgI-’\Òçûa",zóýêÁgÖ?PjôVí*N‡£“r{_
V~³×
×ùfXØlÛéÅ>™—6¢Ï:•”T*wDØvøU» QŽÈl*4%
g蟊ú"9£\ۑ»Ü r”“£g©ãRHå“q_’±ªBo…§ +Ÿ¾-’ˆÃŸ¯PÕô÷~DšŠ€µÓ±§vÏõ"®_‰®•ð·¹<Êç]öÞú‡M÷©u9¢»V;]¥¯Áá¹eŸëås¥¿Ù&^nkñs‘˜\¥n=\FiÇÝTcÆ×ÄTÈï¢8äõ똶׊êJ´éüZiÏRß}|ojƛÏI܍µ.JHØ%(R‹FgJC~µMO7Åù²—š:ø{𑉼5J|¬ûL\ÅRÃÀRÁ&òh¸
-@ôŽª.é¥@р6øéºyÝøڐ
ÇÁœïYÎC‚˜äÎÀrOÄQ
-½cªòdúE錙ðvÆnŽG£Q×ÂYʟ˜§A5¾xÚŠªCÝ«ÍÜ©q	˜1½®›Õˆn›©2
öŠÖœ‘&~¼i:b„ù
-šû+ óïÎgªÀæ‰2–4€HoéáîÓýÝ3¢ž2¢çvʌyu`SÙÖ>gç @Xoé<kJwI†å3–.ð»Ø¹Y]á2Á}´ÑÑÚÂ3	ôCŒ`µAXVÝáƎqÂ/s¼žìõ«p×·l63ì!È@š=áEÑ0È›¶ûm˜E:ÐW'ÂÇî½Tka2ZÌfÿ§«¹¦¡¥G´rç‘ÇT|ç“^¯QMN_æô#ý÷­úAÉ»öƒ7—„5MÓ5Ç3ÃîM•gMƒ0·dY(ËIبìL{…öñûÐUgýbyáA?gl•ò`ƺet~f®C3¤²zã	›–ck€	–c’ßy2µ={²HðS
'·†´7®ç]ìu!ÌkÐUÇ.–4Y2Fàl=¹*TXŠ@F؆6qÄöÁû.‰£QàÛòì#ûqnø=–"Q³>Cx´¸+ß·¾Ôlµ¼€g2ap¼t/oÖã†ÛMeº˜F‹ù2@n9á`Y÷~ëýfô3endstream
-endobj
-1552 0 obj<</Type/Page/Parent 1369 0 R/Contents 1553 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>>>endobj
-1553 0 obj<</Filter/FlateDecode/Length 689       >>stream
-x
u”AoÛ0…ïù¼-j7v²Ø=¶ërÛ°¡)vÉE‘˜Zm,y’Ãÿ~O¶Ó­A— €a‰äãÇÇüže´À7£"§åšd=[¤ZçËtE«²ÀsŽŸc:Ÿ³<Í/î·³›ÍŠ²Œ¶äZ—m!ÏbA[9ßh#ŽÇž<j
-“ïë½=jIGm^=KÕ&ćxl8tÖ½’¯„cO½m©&\“0Š|.У¨÷"½Ú¾Ì”äk¨Ýªù“gçÉz8øDt&yÔl‚')ÛÑÞÙÎóP—(8æ«)¡ÒØ‘´ÃÇÇ2»:ø”î¤dïµyUOµ³%€ vìDuÃážvó®Ò²"Ñ4,Î“ÒŽe°N££©ÏQÜxÅÛv?Þ¯é28Û8-¸@FÁ&h“›Í-e@Ǒ,³‘”føÒwØÇà¿CÃä“<NmþKBoÜ³ŠJöì-Bé	jŸ´m=„Ö¶5ñ½±&
©Q%iOµPŒ«ñCh¤sҒcíÂÎèÀÛðE‘À¾}ŒFUxÂYÕʘÅp7eŽ.¨AŒ4ƒÁóO­ËɉI‘–‹ìòuAï»ÎßÌó¥uV‰à+vüÉ£&Üœ–AÄá‰Ú
öu7Qcl¾²íQ<)mÇN
-ϪÁB¨ù¥œµnʳl=5­k¬g=ö:¹¨'
Yð"œŒ|ÃóÃÙؓ²Jœ`òÎs¥›¸DÖiØÕÖ¶Ý`K}\Ctk
h(öúÙÀ}j2h\¥Ú*}H]î²—éìöþCçFÿ!QNS˖eZÞ.)+ò´Œ´ï¾ÝßÑg_°>ô`e[cL"Îd0R¶Æ¿T¹¤¤XÜÆûÈýÞæ«b•ë«€Órƒ¾ng?g±Q‹endstream
-endobj
-1554 0 obj<</Type/Page/Parent 1369 0 R/Contents 1555 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F5 8 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 868 0 R>>endobj
-1555 0 obj<</Filter/FlateDecode/Length 1647      >>stream
-x
•WÛrÚH}÷Wôƒ«W™
a›KÞ'Þõ®í8T–<ÒÈL"iˆF‚u¾~Oυ`‚÷RI¨ Í¥ûô9§›oG	õñ'¡Ñ€Î†”–G}ÑǓíLJ_F‰ÑE"†TÒ ?gá[AÓ£ä|ˆççã31à·Ã‰HÂ7~‹sh0‹s~‡5“ðmûn<v»G¼ÿjE¹Û”ôî g/^ώz×8¢O³AGcše.V<I;WK¹jTMɹ ‡ZW®iÚ®V¦nNf_ÜÞdä÷vÏÎð,ë`q"è¦jj“µi£M嗞S’„¥ƒbÄÒ×êQWºÑ͒š¥BÌ>êBI«Ni*˅$믴nE%½VôIW™ÙXºŸÑ*†Vªt)+mKKº\ªTU£2¾¾O݄
Å¥k-énÚýðpEóŽJ¸S§ïÞÝN§TÉRe´Ò+5?á¤ÕZ›ÖÒZÕ™X2yˆÉTÅS;neu'«m({w¦²(¬CTÌ®Ì2Íɂò¶rhÉB7O8Ȭu†ƒO>kµ¡c€ƒt•m¦ì+>\ëƓC‰(75
¤ª02c”P¨gVÁšr](`j¶XN.z“qï~ÖôAÙ´ÐÀÏR»2eª”UæRè]§¡”Ý‘3ݑÌ|0ÇÑ»Ž…v/·°\Å(áó@/jÂÕß)êe–yÎ!ÐOú»¬3”ëòáÓü„/¾)Ý1œ)È*GɝBÏ;µÊ±	.›fõª×)˜*VXÓÖ©<JTªA©}èÏ‹Œy1·Cxsd¢eîN†ß±œI—$-MY7oLúÀ!©ú”ÞVmù»YØyg~rJªI…Èyª§Ècº›¾¹GmӖ9E D²‰y–6«D©ÓÚX“7"5eÏq¡4°]!ïÒoÁ®ûÙà%î^>ÜÌOÁ³ž368pc—Žëeš*kéÊ°Et«-H†Ú^Ýrmƒ†P7³ø¢Òƺú¿QŽ	bÖÐPëÁU§kU«¤Ö«¶ðh4ËÚ´Þ‡Z«X됴«4“\À•¬ÃÒ®ÀºŸÌå‹Yì|(öXÁ°uc‘L¨›-
-¶YJUdMÉåƒa šÔTy˞Draچ6KÔ6ƒ‚jK¥’0+(ÏJ4kªLCñ}á[«k琜λ"HÞ(œG,øjÛàÊ·\‹#+œŸy­E°·´ÏkSn•LEÐ%Gaaq{W#È­ïg`sÔ\
dÏn”Õm$ìÑ ¨Æq*Å;› à÷D¶.ôw± k8··Õ½»cpáq$8Ž
FEa6¬â»)ýñ§6:-i‰€
¸âʳTŊtNO¦u7g
-~\´·]{uæÝ»KíÐofƒ”ö"ÛqCë›å½¡ˆ£ÑªZºÎÁeؽ‚ÏøaÇpƘP°ÃP©=§O{_½¤í½OƓ^Òë_ˆËéƒ?vB»ß54tþ`]çú±­¦üڋÜݽŸ Ž‰èÃp`
:–¦µ俨úøóóÈ»lêCÑ^ð–èɵ‚ÕÁ¹oB€[2
|[ÿq
s:àÇà.¿B`Ž©à_¿ÓH‚ŽÑcêµN¥µ’,˜DïÉ_Û~	ű<¢†øxD&vWÇ×|&†‹½+e
f[H“Îö¨
l–M$Ìb–Y×
$Ò{+÷Ó
-²Ön ÌCúä°a,Šñ„Ù Ž
?M- §BÀ§®qD3ÚN[¡±V€û-¢—5`æ9ÒWÁw	¿wqaÒæÄYb§;ôG6´ÂÁ¾È0gÔïíJ¥:÷ƒS<ŠÒ>Ÿ}€Iµ«e˜@a¢! 8®E¿¾„±‘þ¯t|®1‹N,YX¼E#ªLåÀdåðöÐpýÉ
¿…“qª¼ÇÛVa Kˆ1‡È‚ØÎbìÅæô‰ÙüŠéËFõ=’C}Ö¹9àê|_ûò(ç÷ÔÙ_Ù¢3äºÆ'7+ö&3OTyüyð®rù»Ê¡²¾Êø$áL–9,ÏýFø#?;!5z\Üf,]Ÿø
~µH 6ï8¹r:AÕÂÍÁvg¸ålh;<¤œ/öt´1ǁ÷ŒòXôÐÿö;ë|t.FñŸ´ÇéÛÙÑû£¿
o™‰endstream
-endobj
-1556 0 obj<</Type/Page/Parent 1369 0 R/Contents 1557 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 879 0 R>>endobj
-1557 0 obj<</Filter/FlateDecode/Length 1851      >>stream
-x
WoÛFýߟb®(`ˆhŠ’(©Fs§5pqUKE{8+r-2!¹Ì.EÀ}ø¾Ù]J´ªUKËåÌΏ7of?]Œ(Ä¿Í"ǔ”aâÉáÏãO£E° É8&TÒ4:,
-Z]ô–%ͧ/öF£"“hDÅó ö+–쯱»ƒq··.)ƒyowΪƋ!:šâÛ­¬âÞ»ã0õw{kÞ]À¸žloÝi|8‡5O¢ŒŒæ1Ü,ißç~ew{kìƓ`Öۍ"ÍÆxțÐëVò¸D€§,g_ä½Þ²¤Ù
=îõ–06ŒàèqóÍúâêÝÑ¡õ32Ïg´NmbCZ'ƒ«–L¦Ú"¥R¥ùóžšL’‘ú³Ô—†L¹	U=Ós^Hj‰4µolµÕB‹R6Rv%ZŠ¯B˳*
-µË«­•~µþpÒ)Œ`ÁÀdBKz¨gJT«|MF•’°fكbú,ŠVì¶IFÂÐe-šì’XZèMÞh¡÷öpïÆF’–u!™Ò.o²“sE]kU뜍tªa§¦=l “7òéÕ,qõ.¤…Ù0š Ü0ù?ÎéÿvCä	Ÿk*e¹á0xû«F¤e^ÑV«¶î"ÓĦgå}lS#ò.šF6K+„ߪ–ºÉ¥9+­•j(7”—u‘'yS $ˆ”¶¦\ž|ñýHÿôfûW£ðɎÛ÷¾?ç8'‚W­ÑW…JDqeD¹W^ó9k·HgCê#ÄögÝÙhµ3’#õÕW²”T7¿¦äÙ¬"ÂâÀ†Œå|Ûj`P:hy͘«h'©’2=¨kçNT䦹ˆn3™|t8çÚ0{ÓȒ¤27&W•áj(ÅÇóé6°ÁÙ&à¿j(Ì«÷¶X¬°­D.œvÏe‘Ÿç5çP
ÌCT©jháà{ßò¦C¡(Œ"ùnœwàûÐ9)èpóšf­}ÊFDkTµÛŠ<
Ž:^ÊØ¥Ö Iì“xÕ“µhP TÈϲàW4y7mÄ2=§¥AAT¤tŠ× ©­ST}ç´ç!&6Tme3iqÐJ:ëØïi0}z…\V ¥-óšY"y…Ÿ%,‚8þwàêÏÁÎþĈ;'ª‰¡å§6ײ”H<t8÷§]\è¯%rè€RYË*E„jš!8òâ¸uVÈ4`ÔpŒˆ°(ô³mAØ ړHØàÁǐ>&+®gc$[Q8ÈA
`o¥uñê]ç7¹pDÃhÌǖíoÚ&SÜP”ËÀџ!7…8ãiF°UËî4™³=3œŸ¿çU
-~ ‡µ÷;Á¿ØQÜ<AÆSÚ¸¶f]9ñÚµ:4¢®¿JU)€Ç辺ö†Ìùc)ˆ‚dó@h&9ãëpÚ[«æä¸[U5}ˆìC³P[·²(ìyˆdU )ùØ;`tØ6(ö”ÅHGè—C3=9g	Ú)ýÑõ#Y}εª,üv™D
!úЂ—w€â{ÿ´\n{©jñ‚ÒzÏ^ kϧÙ<ú¢:Ô$F&-˜sï]8àóXq¶¢ú®„¹äGÛÛ ìfaþàÎX .™ùNvÚ~¤7è¿!ÇN¨›ƒ@0®à»–ÎFÚ2FVw²(zæÆÌáCÓVàÓ°;;¤­ãŒ’ªc#ó!ØHÔµD9T _à¿Ýf

‡$h#ö×:¹ïèŠ9FP	.	­HŠiëZiÖ+
Ø]U(‘òQ˜?Üáû _¶E“×èQI‘£&N"%t’¡¯%
|ŘSKƁŸãL»IATI£4f‚.t~(°’£Óî²ZxHf²ä-¹‘èäXo?ÊÅY…a®g8ØҎ!™@PAú]†¼¾ŽU䗃Ñ6&ÞjT¾o$wÞè†?p ­•ýóm9ìr“1ü½¥žãΌ…>Cþt^öfCžÿ?ü}ý1ù·ÿ\Ów½ô~™Çß}]öþavrüݓ]L¯óoˆŽ£›-¾9H÷DAe7E‰ÿÝü±ü¦†÷÷ËÕAAÿphxœ„aøMéåòö(|"½T;©—·VþXÓ½º˜øþ±^ß=¬ïyø=ÞýúÛýãÝ[ZÞ=¾¿_­ðpő;v”
åPQÈ$xH£x8Æ5ýKîºbÁ.S`¿Ù©ÊÝFvœs怐‹#S¸/5º•ö®€3fœcsïh7Á@mY•
x<Ã+ã¡EP›c¢å+ÚÓ 0ò	êOqO¯œ‰Ÿ†h­|gÇ<ñÅ3?YÍýî
5^DÏ`–¿V7ïßÜÐR«lÊ[•´ÌþvvaÍhÁ³ œi8qïI·™¨ùâ1šÂ%„ÉeåH‡&3\lã¹3aó£»õů\ڊendstream
-endobj
-1558 0 obj<</Type/Page/Parent 1369 0 R/Contents 1559 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F5 8 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 886 0 R>>endobj
-1559 0 obj<</Filter/FlateDecode/Length 1912      >>stream
-x
X]oÛF|÷¯Xâ-J²$÷¥p¾Š‰ãÆ
-Š¢éÉ<IW“<–GZQ}g÷Ž4E»}(‚8æ×ÝîìÌì^þ:‹i‚?1-§4[P’ŸM¢	ît?>ÿt6[^G3Z¬æтršO¯¢«p•ÑýÙÕ*šÒbGs<¼Ž»~†eèjãëùj‰ß§ø[iÚʃxºÀBƒñ"Æ.W1žä4gXN.xµÞ%ža߸÷ìé2§Ùd‰-»ï^¯Ï.ßÏ)Ži½%w#~d±XÑ:•\'´NÎ×{M*IlSÔÔ8Rm)±E¡“š­ñø^åE{ëjÊüØàÊu¾ÑÙ­¼òýúOl7
۝—•)j]ñÝ	%¡uz®ÒÜþÍ6°sʌ«#3	Ÿ—Ñ*¦ö«¯ÓŒN¿O
Ã5g׀
Ú"ä¦rúB‚	á#—61	ÛÕ&˨´ÎiçøÿƒUšÒÖdZ.8_×lRS
[íIlt¡U½§ß%Çïþˆè³XÔ{U“¼¹½ª°&~Ó‚å«J«”l‘_ÑæH©Þª&óɏ§SThJã)rŸM%©"Ñt´
íÕ£¦ßÖ\ÄWé¿ėv1`ƒêÑàuU gçlbäåÓD.ș¼ÌŽ”Ù¢èw#/‡Ú6Î;”º²¶¦¯ç¶
-e–>/ì×ï;ô·•Í±Ì¯¦HíÁÑíšæÑärú@IftQGô©Ônu}°Õà –[mvû
ª»·6‚}<Rx—î2…2Ž$ñM…Õ¡3¼rÊZlp‚ef“KŸêÅ`ÓB=šÞi0ºó„vQ°C–ê*¢ßP··M–¢>™ÂÔFeBjÆêR¹˜¹ª“=3
eOQ€¦@‰mÁ¨zb¹¦xÎ҆¾flCA<À¢ˆîu]óîo+ƒ2:AäÝ7èŒo¶™ð~OU¦K^cÀþ+SÀ}åº%0t`	k²6ÕT"bŠšgWÛAÚÀ%h½7®•‡—(Ý~ùð\2ìD³Yf	<«5!®kF7sH”û[Uâíúr:Ç{Ê9
±gM7u­óR‚.ö‹·q—•-uUÃ
LÕ%t؛d\¹¢O1Ó0OAn¹]Ž{·®*Ð6‡#©þÁ×fìk³ð~«EæðÕQ¢Šڄ!§Æ•™:ê”ÑÃ¥ºÕ‚+ub¶ˆ·!XþÒ®†céôB|‰\imö̸{éK&§û½µbS…ð’RœFa?>ç[ÈéMf’¨ßŽ4äÁH!$[»`»q	aHå``À²Ëé$LöÅAŸÍS®Bä>Ð-pp­±¾‡3BW‚/ào
-»:…‰)lšº†X{(*ðJ¸ß0KW¼|ÚìЊÓó:t®ÞëŒÛr´« `˦×a-tE
ɹˆ~öÆóžrÓíeâ_lÁÿUÛ[Zþ¼
%r(ÈNS÷Òñú#–“¹¹£ƒôYÑÁEG½Nñmµ]< Ð:H²HMîÑs!ŒÕjÓºBEžZ­´YÜ8× íd7ßtýÔr-tÂ0Tô¢R™³2mÐ÷s›ší1äóÂæ®Iöƒ`7o>`V×ӁÄ}öîⱱߞ…N[P-ɬtìÄæ9$â
—/hclqA’w2Ž„=éË®L\ëM<äà„_ÀÂÏp=ódèïBƒìz€#?l32Ášü$™Zø(ßÎÕŽSº“Ñk™¤q̼<M­”†ïmدŽÕԁ7æ¿5¦VË$Ö!0ٛN2-Ÿ»|aˆÜžzÖù3ԑ“Vf]íÛ«3©¤Œ.Ê=
-¿GæÐ|(µ’~KÛû¯ÛÜ|L7!„W‡Çèâ«äGTV4¬«èБš†Àz[Ëôî¹ôñ~üùîMè²ÏÎܔ4 4v~iSVGP°ïyÈUó­*	àƒïk°¢j•Î-†(Ù[FTnÞ¸Z•ƒ	Ž¶¸04÷Râ¼Û¥h‡Q‡c‡1Gýõ"yôóÐÑzDeã4¦‚v•mJ©íåû›ªfànS–¶b÷ÍTµCâM{
-éHØ/ŒTŸ
-&ƒk˜à—B£´ñó¢†ìufKÖ-•xE†OhÌtžL6ô‡d\ˆ%4/´º"³*Çí?žL0¢õш¾ˆK0 =4oî~å]œÍõAÎ1‡¨ÈïÆ
oËQ`ö¹iÁªåK<
mYm­wá¤òv(A{e]µ‚£ªL<¯+¦›<Ñ¿ütd„"Øm!Ÿ®Ân¸çŸAd2/àÓa{ô4ÄP‘’	ô7…“’Ô`/s&îA&ôùì‹Ó2ž·×iÕV!‘xÿ
-ÿm°ÀÉtqÅMýþæãëØ£ý“[÷[›@dEÞgEÖãö“ñrrý¿†øùr-q¨—f½ZrÒïÖg¿œý_Üj™endstream
-endobj
-1560 0 obj<</Type/Page/Parent 1369 0 R/Contents 1561 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 897 0 R>>endobj
-1561 0 obj<</Filter/FlateDecode/Length 1653      >>stream
-x
µWaoÚHýž_1—öT*ÁÆ
)'Q%isJI.Ðö$臍½·ö.g›„ܯ¿7»^bH"õN½TiÙÎÎΛ7of—¿ö|êàOý€º=Š²½Ž×¡°Ûñ
-}|ð›Kš³
[7]¿ßëö`ëú^2ê^X-RïՖ
Þ f«-3òCþöv¬¯a†ºk}QÐñ7Ø·¾†5èoAê|Á!rË(„o¿Z±o}
ëAèÔ¬ÌJÐç|aëá»0€ý¾×%¿ßA0>è!ˆ]km̀ôÑZ_Ã
-ÒjV?€?MX? ‚]™“kkKEP³2n
+ÒA•ÍIìûn²×>ëÐ!Mæ¨~o€±©m‡&Qã5½|ÛkäË(J©JZê[M­O”k]þZÈ(—%µ"ڗj•Åyr'óbŸ]:Ôò;¨×$nœèL$êx:^Î‡_ér|<ý¤’õWËÇÓ±Èn䁵Dº\ˆî×ꌀ3¦_ëû‚FZzÎìB\å‰*eN'
«¹&ÿhñOµc$2yDÓWt!
-™ÿŽ,ÂD
D‰,èjì"8?#BàÿßÂqÒÆïÇ?ŸÉà_•ri	ý©µtÅ2u˜§â¶8švÖÐÞé8º·ö(.Òt†Ÿ«Ë÷—³ÙbÙ2¸žÝË"ʓe™hu4µûwýš£K:¹>ÿ|zMÃÏÃó‹á»‹S:»¼¦É‡ó1]]Ÿ&§×ÍgOt–AþGSguºø!Vg³)þfÛÊtN!KÛ8äò£ÙlÿeeÂø3;Ì1>^E‘,Šù*M˜єš*€/ƒò8ÁöÆ]hI«ësßú!š:ôhljº¥‘¼§ª“
-ºK•IµÖ^}±aºÁŸ'R+èóAï(–s±JË&Ùq¡çsiJ•Z©Xˆ݋‰’1%ÊÐÌã͞Ö(²/Òj¾¤Á;ɾÃæyÞ>ÍuËØÓB“\'EÉ)$ÊÕ²‹©
-då")ª½„O»űˉþ-rÀ&ˆ‡té>A7Øõ=iòWp+èaÌ#’Q‰´VXIܤ’Pœ¢^9¹–Ѫ”$].¥ª:]ÏÜGðÄÀ½EÔrA"Î…´rQbpsZ-ÛU^ õ.Iå-5Ozfæ“Î+Rq¥˜5ûæ¸fgo+eDÕî.qŸ\ŒYÐëïgì›Ì
+º ÷–ÃczÅN,Àdò+™¼·Zܨ…uBká‚õ)?WÈåg‚QÇ5¸7æÊíRÏ0Å(¬¢Rªe½i-æ
wµÔØR£Ÿ'ŽPñnŽÙª@kŠ;@ÚèüN¤+”‡U²Ìõm.2ZhýÌÞ-up8æȱ	¼,ŠRfU™mD×25DmYFmã‰å..ÈB,v
ùÍ¡œ:C?܃s‚À1‚Dþ`Dý_5À—…TÐ=÷ãeöç¹ÎÀ}–4Ñ4ÆÂWÆ£XÌ< XCÂJ—¶‡›9WV½„™ð„eӔ®•8¢uª—ÿ§FŽcô…²1¹\ŠœõcI·G:ž_M¬£ÕY–ì˜êˆéeH
-³ÔE5‰ztnI°i'¦?j1¿0j˜ˆj@6yJÈ<Gíôœö‡æ ©ïó„Áãn•ó$­ [²=iƒAÒ³Ü8\O82ⴉ»ÆÃð-P3µ0۔é9œŠyWÊuÉÈ8Èöøkš4œ\Ma§“ˆ"½Rå®~&‰/.<3qP¶L%_æÐÙn]c™J¤æh}¡˜s–ËLß±qy2=2Òg/‘Š	§gàá+#Õ÷æJ
.b-Ù.¤Ú„`ìÏÍûðAùKŒôØ^AõftK½­¹š6¶zÛc•¥»eš5¢…P·,>.¼¦{þ÷A¯ DW½nÃ<§¸‚¹xoN´’o°9‰\
ÞEÃŠw0w÷
0Fx˜:ÿ^Ý ›ï(­ ´×â«_Ú7‰jÇnõeáÍSH¦/xÙj&÷¬‚Ý”óì1gf¥úæòÊAtkzí77êàYÓäÛcߒ¾yƒb<³õ©{дcÞvv¢cG¦‡.µZ?=¢)¹í³A5Ëü¾¥ºÔëÚoMãáÇwC<?ô7¼èDG+£{~#ó¹-çÐêwøkß|­…ýÐë÷x«áˆÁ€O>ìý±÷$5¹)endstream
-endobj
-1562 0 obj<</Type/Page/Parent 1369 0 R/Contents 1563 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 902 0 R>>endobj
-1563 0 obj<</Filter/FlateDecode/Length 1198      >>stream
-x
­VëO#7ÿž¿b6U“}%ä$¸ƒ*ÐVªNê‡sÖñÝ®½g{	Hýã;öÆ
-׃å‘ìcæ7¿yxf¾vˆñ7I
-Ã1äe'cH&áFӉ½ÆÅ`e_ èîãú×Îp2C±$†)”0NÃéö®€4³højŒîÚ¿˜Æø¤eà$ëDg1Ì [!¥ñ/¨3C–ïïA0êUüŽ)¤d?gŸ;1’­fÔ¾?èC!sb¸}¨5£°’
-̚
ew<G'xÁ@®Ü£Jqa˜zŽ2îƋÙýk+’&áØz¦rI¾0Ð5Fiì]‡ï™à
1pÍèü—ڑ²oØr@z+ÝB]\Ÿ_eïŽóˆ™<r‚9©B§×}œÎ?QbüÒûØ+{tÐûлìÝ|j	^,æEÕzv}z“_gó®fÊŨ¨(æ[¢Lw+»ó~c¬¹¬Z8yçüx–\KtŽ)}š0òQ¥%Ìòµ„nþëÏÑѐAúwþ…?¯àPÓytGT¤+)‹£éwͼ´¼ŸÇ‡ezý]0¦×€Õ<ªµŠ\MEš”K☻b‹‚ƒ°Râð18߀ô…ad¯¡û"Z$2eÕ4¡4H~JZYǤo‹ÿÔ³,¿P®àYrž™.%…	öº—%=ɗ$÷\‰uÿQj1Új§oÒ¾I{ô&íƒ7iL;Øv¶Óރ+išžÎí¼àðO0Fm¥§)þgµ_ðe¤Ëe˜K±jiìµïᣬ¸í„Š™Z	ì²w¤¨Y–µs %Ïhc'
-7P2"tØkÝ7
ô½Ì·s?1Ù=bÄV<:›A2jæî`˜Ø)—ŒÂ4<áƶ ‚¢˜°Ê¸iáðGa;­éÄjýÉ•
WY”Æx„\+
;Z˜Ò@´–9·sŠ@…(8gÍÁÞá™
-![3 Bª’Å;ZíÇI^ÚÑ}±È’þ÷ÑnhöÝï—øÎÎ/Nñfzæe­
BKLfåŒZ4LJÎ*c
í³'ÔhC
-	6î†pò`ç3©Ó)ŠÝàÛÚÆÀzY‡ÕwË	…n¹§Që"·{®Ñœ´ùÕÚ°Ò¥W›bŜçÛq
RQ\yŒl9íöAtHÙrÀ%¨ýµæŠ•L8ï|Bò‚ã“]±¤c\Ü0pXä6¼XN
Û‰	V÷ÑYpqÛ·D	ǘa6›6§e³fÖÍBÞr\v¾ÅÞòv±ç··5,þÃÌ+ÜÒ|ZÀ§¾„Â’DähÃ+X[þx¿ÎWð€GjŒÆÃôÒn…+níÚ-Q˒ÙÐk»;6g×bWÝûOñcÑï#Gûœ]éÈV%õ*LÔ¥s¡åv.ËScÀŸ}ج9‚œ@ZnsÅX4ôðìaÕঊAÆB“·
-[KÙ-³ïÌXV.(¾ ŸVXc
wsçN2Ƶ~:„q2	g3»dïß_žã
—ŸYnà½Ìk[?n‘¶º¯2˜ÄNþÍa4…“ñ[âOgæ4ëüÑùÇ~“êendstream
-endobj
-1564 0 obj<</Type/Page/Parent 1369 0 R/Contents 1565 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 905 0 R>>endobj
-1565 0 obj<</Filter/FlateDecode/Length 1518      >>stream
-x
¥WÛrÓH}ÏWô£S‹ßâ/[ÜR»@D±yKc{@šºÄköç÷ô\YqŠª
-S¶f¦{Î9}ºõýlL#üÓbBÓ9%ùÙ(á—öããõÙdr-i>]Eʱê2šùo}âõ4Mñ9[.ð9Á¿RÒÆ>˜-–ÑüԃéjŠ3O올8XïÁËøìâjEãÅd;_Ž)Nm’#Š“ÁxM#Šw’nò¢Tº®(6&«d}Å΍±w'䧃£Å5VSQš{•ÊŠ}~ó7É™Ô5™
ÕðEéÔì+zӋ4¥[Ž&KüüC”iDW¦¤ÄäE&kɱq<lˆ¨ôƔ¹¨•ÑÏD%Ó›kcnsßË5Uª–$jÚÕuñüâBù{E•iÊD⤭Œ´¬/HT´—YÆÿ#¿^ÌÔ$MŽìmTR:ɚT¦´WõΆǒ;–RUÕ¥Z7œ$ª*À’ð7ìA£³C	­K%7½À£4iã6ù›m¤¨›°ÄpËÈQRgžšéºP–ÍqD_v¸?2;~w;ŽÈäõá9¯@?Ë|ÊLˀUMQ˜²Vzko¾5ŒÍºNæ.ø­U¯ÂQ@®X*ø0å
¶$âç-8ç¥QÒêòbµLNi©îAr!’ob++w‰Ä+r¸ˆ eˆ8ÜMæ:¾¢}Ø
-è!5¢»™–‰¬*ÌøŽI	 Ã
[XžHÄðk™
HªZd™“X’).–ýN%;/™u-”&Æůì!4°Ì
ÿIäkÁk‡Nítž¹íÐe	X«“·%ׁ4èl8YFã
g3çVl“ˆ^èBE¿v´ÝÑöH{l#0
&ÅÝðæ,ѵ<€ÁV‰)¤s<ÅJwƒÖ‰QýOMP¬é
󸤄ÝB¶ÒÈ
<¹£Þ»óˆn4U;ÔÄ3 ÞVëÕÕö‡*
-Ùg¥åÌ£äà0Jáù6*“Õ30iÀsnÞ_‘ÿ‰µÀ…ÊN‘ÙIKÉÆ´>8[z,©ŸØEßþ:Ž«Éº?W“€õ:âkB
ìMP*j±f{v§ %Q. Ž¾7¦—Ò½Ýë@oãø–r™ì„VU^EôF$»SAì)ì#ö¢m¤ì$ˆª2‰²x}þø§%Žu"’º¡ñèÌk9ìm¬='O1|ëEfi©­â"= ¯lµOÿZ7·×¾TÇíš
-Ï`Ú¨,µa.pq¢Ž8Ñ¥„9£ûÇ
-¸ä¥î¢-ÜáÆP›»chîÝp@ÚôZö´ ¡¢‰±>lBµoKM©ê%;™|ãÜ!y±Îdú¥Ìü Ð•Ø+ëZO¨å]¯rPð}¾{{³S>È@Ý•qb
-W˜H‚Y…ƒ†.›áÛ_âQá!
-Î3põò¸îU˜||+Êðbý-þYʍšiÛ äÌGt{$”Y‰íÄp1gJKº•%†¨¤TEýMNÐuüÇoÄå—Ò¶:	¤o[éF$Ü÷¬äŽBÿ3th]pNÑx‡áÖC“äîœ=?Š¹ښ?[Ã!˜``ó‘™pŸž”@=¦ÂdÇ;3Ì_ì7RoûdnR™‘LLgÜ°
D‚3µYV§óâN‹íEnnw†±VuÔ`Ù:ý€Ä;*
'Æš ¬6˜Ra²`WKÉò“àì{Š^B¢4kôW—­
TùÚÍœèÃä>àsÜOkË"9¹Ö;ÀˆVa蟹áØK83¬Ÿm€¾ÆĈ
Õ® -6í¡»;ˆðZ‚æñoï;ñL«Ôfóœ®QŒ>.Z 	C§¦`ë†KÁÏì(yê>ÓïõÑC#ãqÈçÀËðžEÔ¢õœ>»óHwÝÖa¶ôøŽçxC[Nñ5w·ùôâÝËx‹1_‘½î¾.ðÎaØ0\Œ¦ŸÍŸ|Ӛ-fÑb¾tóìjÄ'¼‰Ïþ:û/d†’endstream
-endobj
-1566 0 obj<</Type/Page/Parent 1369 0 R/Contents 1567 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1567 0 obj<</Filter/FlateDecode/Length 1473      >>stream
-x
…WÛnã6}÷Wò”bù¯í,PÙl‚
ºé¦‹-°î-Ñ6JTHʎúï=CJŽ­MÛ\lK"gΜ93?wÔÇï€&C:SšwúIŸFƒ
¿N'xâßJZv>Î:½›>]Ðl‰ã)>d„Õý>ÍÒSâŸó„È–iª•,üºu®’ŽDA—YvoUá¥ýdÕFÚùéüÝ=t¿¿z7{ìô©;è'S<ý»¾’1_Þ0ylñúåÀyC"õ•ÐzײÌS+…—äגʈ‡õnF4ĸºÃàök!É,ë…f¡eîH©©8™Ñv-Ry‰U«°ô6VPMNzÚ
-\À[!rI®©$YYH¿•²h@ž'Cw#¬2•#W•¥±ž"™$lºV^"4+]B7ƒ|àŒ¾©"3[G¿ÎH©®2&²ÀtðœÑÉe‰¥-g_„“ö›…YK··Øþ'mÞ’é	ÎöV/ÞS
-:)ï¹sÊ‘å'Ñ<ýhð¤v9'#Žo˜„‚Z›-gì©Àûv-|mĎçb#i
š¨*µøX"rÑd/¡K„ê|…¤"µÙ*­[qZ$)_à™gœŽÆj]Ò½5¥´^»L	mVd
-½{%4&½h£VO?§XZ~Ÿ+•>‘6æ	fÚ~G¨+·s^æ@¾RÎÛ	ϸÊä‰ûü˗»ùü!l˜Ï¯*k¡»+Sxkôƒô¸?Ïç! ùüºØ(k
-–g4z¤ñh”¹‚÷:rsÀ‹Ð[±sT9”A\ŠJh¶Fþð‡à ñ7Z‰ð¡Õ`¸E² %ÒÖæäH]?g%" „>›-`Û3zùZ7pT¸-‡5&©€Þnª9E±S´ª©8è7b&µšE¸ìJhVÜ.ÊSÎäÌ~®=
-DrÁ8…Âô²,c»@8ZåÊÏ…+B3pšö¥%8t’'±BÐuÁÓÂø5cn~‹`õQvPÙï{Ӗ„¹MgÑïk¦
j-•u>aû½›Lê~y>ŠZà=¡OJ¬
-ã”Û¯CÙóyÑ=ïdžÖ
2k²*åèãâCÂ:7À½Ì­Ñ	ô¥V•/ðY7L.ªUŒ†‰-mÝ®·
-ŒyÔbÛ ípg‹°ãíu¶º´&Ž‡»M‹âƒ¦VºhÐ"«‚K©àF„¬‹#‹íšŸp­YˆËÉ °–ﺡ»ÞÞm†
-J½±»À;Xldõõ錜	bÝ
-ˆhÂ&þp+B‡ª-Ý_ÅÇL)Ær/$ú*6*ÐyËͲ°UlÍA‹òƒzv¯9ÀI!õò'=V(s,ä6
d¹Ê2œ™¨³úücŒ¬¡•ó­–ç?
-õòjßU‹Ø:“:`Ib®ˆj©4æNSÓx+¨®ieaA J¾Ä^@'½–ÓÔä@š$ôŽHp}3Ç}LU%³Ôí,Íà»6€ÈbNcŸF«@›á˜ h®4rù"ÁóeLSn@•Zn8ÃͲùév­Òuð²¨tN˜t@ªœÆ&1é%z&/aåÞp0Ïu‡uó˜Dô}¥ÍB迳õtR‹
-¾Û…¦‘:
qq¸¬BWb
-’ûL¶Lèò™.£Ù.­01…]ô\É
-e‚æX…Vr0!6tióc]°•L‚ÍâMèßC¡òL küD=b½¥§Ë¬çø”‰Œv©0*r’—Fk³ål‚Z*Æ<PƱ0•ÿ¶)Æ[
-Ô+)àԛÑÔ 	ÃGa çÍkS8'+Lœ{[lJ …þ—­7Æàë8bÖð§õX2ã‹ÁôœÆ“qÚ.ï>^òõˆnEŸL
-ßE<Ød·ÙНôù[ÃégÅh2J&ã)N
-<¿ð¶ëYç·Î?¯O
-Mendstream
-endobj
-1568 0 obj<</Type/Page/Parent 1369 0 R/Contents 1569 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1569 0 obj<</Filter/FlateDecode/Length 1542      >>stream
-x
¥WmOãFþߘrGïNº8/„hAâtwêUªŽ–TU|XۛxÁöšÝ5¹¨êï3»¶	>hO*!Šï¼?óÌängL#¼Æ4ŸÐþŒ’bghz0Šf4=œãz‚·‘´Üy·Ø~Ñ-–˜â"%œh‘¼¦æ¯2ªt”è¢eJ'4¬­ƪ敡
þÏ÷*Ú³o7;#ŒGÑ!ÔtÒyu×ÉÒcé;6ð_Ò¦xl»è¤ož±}WËZV¢¶²ÓѨ°Áÿ$˜·NWÿ[…0Žu?Ni<LfœŠQĂl¦ë<%+’/¬.EœKJåRÔ¹³´Ô†\&áj*+Y¦ª\‘.i£kCvc,Èm*ù–âڑ¿-_¡*¹Pæ^oDé"úÄßR©½\ŠýhÂö뒋e.Ž5R&î%9Mn-Åmc–Èu"rä
-æÒ¥h‘u¹³m"_‹
J–užoÚÜ5öl%µT2¥J¸¬…´oIX¶C¶Hc*ĆÝlÜðŒ‘‰£ó³ÅOt/òZÚ¨Q:™ESâLúl @¡ s!·¸ˆ%y Êô-§g­òvn%Ž"w•6ÂlYµ!½ôùãt ي
k<{ðZ•½€øàeÐnì5<H8;q?ÀVSYö@¥S…$æ0–KQ"	ºFm8M¿èŠ¥
ÀÓ¢ò¾*l¢ó³gÞ{
íFú
-ÅÒI¢J~ OËBå>Ó!Y…ZeŽ–
-Žæré np—KKŠã\º D>œžño	.
m–úœn·<*“J¸[¨
"È].\Y±4»…U+ΑÓ=³÷yX Þxa[iKÓÇ'wï4—†~$
nÛ-Db´Ý… ¿BÏ¥±©Œ‘U.˜]+—‘¨*£aJ8Ù`Ö6x»ñÊ80_Áž{–5[Ôe[ɘgœñµ÷Ù'=8’•€ÊÀ9çS Ð×Õ³Í2
"¸önžSð(ãëL%³!l/©@(­T63üxDc4…Áþ8ôßxM£IDïe\¯VÌNy|j0YáÀcö›sã~FáÁܬ)Ë>`µdÖÂSë@¡\éO6
綸ÛWËfm£ª¶wÐÁÚø4ö’$̪.d‰smšAmÎÑ' Œ;"¢3²ª¨ÀÉò‹ðŸþ|»åö	7åÊRè©X‡\uós0AŠ8âfn†@·'+ª¡õ«ÛSs2ÆtnD_|ç§kw°
jk°¾ µìfk Ýƒß0ò¹žÆw=`kžíÆ·JiPÑ鐽Â;ò^=!à™:ðe»pBÙCoOƒá
HY±’O-/ÚñÇ[¾žì¯D¶»GÑÖà{§.ˆny9¦—šœž~ÿu@Qé½hÇI¨…
êa‚Yà™–
¨@Ýb`òÄò,ڑuó•R¦ iÞ%*Pø Ý2²¥lchF$GdzW€~÷)ç=¯lzLM'ÓÉ$Ӕ©¦ˆ™j­4P	'÷ù¤-â$W€>
‡~ÊgÚºa¾žöDDšzçÁ¤KP$©ê¿¦'ºövrp@e!ìí	®¢ö=ê©;cê=x¯¡Ê“˳‹ÅÙo‹kú|qrù{©¾\Ӆ4˜R'—'±«Fóëž0‚9¦««Ó¦Ã|Á¿
-l渄ÜÜÔá-$Sƒñü`JW¯y1¾‡öê
nføòþÛ|ùœU_¸ÞÃñhzäû~¿í~þlmõwþ'¢LdN,Ü;òÁ·Txžs<½‘c0J
-7{ß óçVE£V¦Ïéx*Â΀ü¢žÛtÑUô*¸÷
-À›¹®i8ˆ5jÐl2ë%³ñRA½‚b,X…²Ø¥Ú•˜×–vhW\îQDE:é5¬ÔÒL˜lí(ýE®õ-a3à>|ÌͤöM‹= 9c¤õ[:¶‘‡Í–?žá'Õá>ÍæMk_œýòîŒÎ¾áö½Nü¼óqº­À`>âß[¯¿m°NçÓh>;ÄD†Èф5}Xìüºó©UÁendstream
-endobj
-1570 0 obj<</Type/Page/Parent 1369 0 R/Contents 1571 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1571 0 obj<</Filter/FlateDecode/Length 1323      >>stream
-x
VmoÛ6þž_qߔ±üZÛ	P)¶¬
V4[<´LÛL$R%©$úã÷)ɲ“¬ےÅ{yî¹çîëɐx
i6¢ñ”²âdh:ã}2Ÿá}„+i~˜ÌGéèµÞOÓéñý‹“þՄ†CZ¬ác:ŸÑbE°?Ð";ýÛT”	M_+•=ä;Z+½"SyRkò[I¥5Ë\¤=)¿¥©,n*í•ÞÛ9/‹”¾¬½ÔTJS撶â±=WŸ‚%eß-îOÔŽübuڗ>ëK™(á'
LK[(ç”ÑŽŒ¦Ga•©\ôˆ e%]ʆúWç4œÄœzãaŠ¯«Óá$¤ã”þÚ
-Hëheè:õS<¸£7b0Z*'CΉ—ΗV»„ÓßXQ7”meöÀ_œ”{t„´¤E!(Råfef6Zý+W´ÜÑ­(–"ÄÞ
á
-)ËgQ·³`€k8.b¨:¯S!5Ž•ðׄפHP¾LrʃûPêDu})c¯ôÚØBx€Nkk
-m9ꈔºx»P­Mž›'η•æ:)FÛd"Ÿä³·"ó€¤ãõDz퉷†¿Ñä?F¨s&ùÖ_*ÝÏj ó$buÀ$6x4IéVú@󪌞,þ¬ì#øõï–T…Ø‘–È5€ã	vœ
SÖ;8±¥byb?ñãà@J×(”#ç­Ñô&ó©(¤^±E¦8wvCáµÈT®¼’\fó¨ø8;œ%W“ƒ¹ûÈbsíó;bFÃÜÑ41l%„Ë„8À\]">ËͼÌÐjSï–?¥Åy6¨tBß:Žú(ÍÈ©ÿ¡
7ä7‘+á†ñc”¦é…)™ãE^ÉÜxYºÀ +„.òÂ8<ƵW;w¶‡	%ì*¡¢ÂÓKI¨PiÐ6éE^n…®
-iUƘT(Ÿu™P$ÿvz%ۊÐց|̔H+Îp0扶»r+¡Žw§I/¹{GèIæyJ—O cæTDäP&®†}b®µöŒK}„k8Æ&‚Ö°Dd;
½`«`׊ý	J"}BbÉÓ¢c—«¹§83ÒBzd°c+lâ?òÏfÀoÆ-WžP¾Õz`návQå^ñ¸	³ó“¾,Æ¡ßj…ÅDYïYÆÇ
-aäöZ—–î¹”Œ(/#ÇAö0@10¡
)ñ5.ÛIVÚȱƒC¡‘B=Ž^=þyG7<S›©£D¡ 
î5è1î^Æsá¶À=
-¸³øFV|£ƒ©.ð\X„ð½jñ{æ^³õ>ÚêÞï!n”C¬Bkï+ҙôŽc
-Y”Âya10 ‡ë0"ñ€>CSm@pó€¡O5§Òé0Ò¡W±ðÁv€½`Bpã*p(hm륕Nn³'æXmXê büvóG»!Eγ‰$/3¹•bõ¢ù!î<]@›3¯Ù™:äkûJ˜AÛëe錰f¥xV,g0Ö3„‰ªïW®7"?Â0äÖ!äÒ[',zߋ¼Ãû&rÞ%4ÍmM•¯0Nœ Ûë_?ýyCNm´ÈöæŠ%?Àó–o… IÇ7	D¡mܺQúWózN°UÏÇ4Ô›Ãíå珗hDsÏ°ül2¨¶öa/Š
2Å*Ž½Ùkُ­›“Ù$MçQ;ÎÇlç—ÅÉï'ÿ
ëÄÊlendstream
-endobj
-1572 0 obj<</Type/Page/Parent 1369 0 R/Contents 1573 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1573 0 obj<</Filter/FlateDecode/Length 1591      >>stream
-x
…WkOÛJýί© RbHÃã-EêUK¹@Õ[	]ic¯ñÛkvפ‘øñ÷̬M\«ííCrœÝyœ9sfò¸3§þÎé耗”V;³d†§7ɂÇGx>À§)ßy{»³qBóÝ渲<ÆCF8>›Ñmº7_$‹äMBÙy]‡	Ֆlš6¼¾ýŽ«šÏãÕéÁ®îÝÆþ…BSe} Üµ>8L}OrlN35¿Hè›m©R*ԓrñ»]MèI;“á
-ýkZ+O¹ukå2M8ˆMç‡É
;÷:Pې¢µSM£)gۚ-hJmU)~¶ì'¾ËM©'´jÅ<ð`ã/	"r[ÉU	W»¤óv°Žðvaœ"i¡Ó6[©äÐÂÎO_¿?ûøñcr¯ƒÀ€³‘3÷EˆXÐc«[Ð‡œ6@DÁFë1EooÎɺQ¢¯®N†‘|cm©ÝDn¦ª¦ «Æ:åL¹!l³Í-~À륦žø¼¦,iű¯*pí1ÙÐߍœ×6ðéˆJ–ЯOùÈþŌNz2€8ŒQÙ¤4½ê ”xâÙ!s–|ôÒ®»uL
’Ô¬Ð5Ñ´[6[k»±˜šL.9òqf ¼ÑÄXøK~x`”›çëµÀÉÙGn¢f¹
m@~ZÚZ[i)TšêÐ19£kæwg½gÌ¥þ
Âp…™ók…êÁ{²ÃNÞ£\œ§æ´*QR4¡¯&ò…òÞø êT÷Gýƃ
£¼TV™шˆ#àÊ?½+/•n ÓRÃIߜB
<=wcDÏqT…éÚáÊá\³³µmˌôF§1edÒWY­J(‘d]rd\lÎûËå‡h—ãÙ¥60uÃd:h‡Œx
¡‘ãA•†V€3þ4%J3ÚRn_úi¿l²ýž´D¯b—Qf2°nó¢bXïx–G҃öž~ûçU¤×TþÅu~OY~6›Í«M
å3?Ë­4
—È‚îH~{GDè oHB`YFtÀ|¾ÆGPLNFÖÐÏ<) ‡¦½Ê•W}œÚîÆC¨(z‘mI䶆xG͖DP1Õ{…0;‹›*HÕ£÷ié—á<šΣŽÈ Zs¹¾ëÿ4>s_0
e¾ô$ÞОÉä†GžzmÛHG¯¸×*@»Çlk“êr3nì[PU¦O[㬫+´¼ƒž©{í™41ÜSZ©ºFaâ{TbUªú¡û؍;L©±ŸÁ|è‡ÉÐP?ŒX3GtàÜ%ƒT5d›`e¯Tˆ£{ƒxQ¼ÜÜcŠe£rƒ5<£?¨C‹ Û	6lO"Å`ˆ=žú‚îö˜}N{O…V;sÃôï^wÞc÷G6|¿”/·ei×RQèŠwÔùÕŠykwJI’pH¿é¥aBÒ'(Œ&K\œ“¿ÆÉâ²V8æ,“"ÊÛë8ŽC£äî5˜$˜©d‚0gU,F€IY½†àŒkÛS Ûª8ŒÌxÖÕ8Ž^j¿ÝaúIÖµÖGtú±…Àùn÷\ÃÊ°Xy›l^h:Æݦ:O¼¨KɛÚ
-âÜóuƾÕæ,¿n븅Ø@~Ð$Û阔Š¸ae-F‚í[ËCj0E»DHe€L82³]¢¶ÐŽ0¿‚¤Þ¤Î4A|™KÑø<žªlih±Þ×-sªFxÍ9~2©³7ÀƒR¤^‡„.àZÿPUÃ;%¶Nœýjê“7#ϸÜ3%òëCéŠ+ªîèRUúùnïZ6Çw¥Iî^_AN¡¶Fã²ò’ÕóYöÄü˞Cvá%ˆe×^Ȧ…µ»€OÑ»àÊ鹋4’‘ÁóWBýš¯xMß y¡æ¶äál'„Á!z(ÃïG ÄiÃ5ä=`ÈsL tý{ΖhÞÕK¢‹«¯)/\pµ­&G)nË`P6ƒMkä<U¼]€up…ÂÖªáÝR¯“ãîÇÍ|‰ßLLJ´<ZÆ
söéí
øïL˜s›¶(€Vµ5ûšö¦G3,ÄÙÿýŒZ-’£å1~áìɂM¼¿Ýù{ç?È‚Kendstream
-endobj
-1574 0 obj<</Type/Page/Parent 1369 0 R/Contents 1575 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1575 0 obj<</Filter/FlateDecode/Length 671       >>stream
-x
…TÑn›@|÷W¬*UI¥˜‚M0~t”FêC«´¡}<`m“À喤ôë;wà¸r“V¶%ÃÞÍÌÎìݏYD!>­´L¨hfaR’®ƒ˜ât…ÿü:¦íXã y©p&/âå%N ®²Ùû›5E1e[°'I¤”•î0¤¬8â V
}UOtk¬Ü]Õ
-µ]¥…ËwÙ=öÇEãþùb…ÝçÙ¾²„¯Â:“×ܐ앸7½íU]T¨ÞrIù@\ɞ;,à”lkL]éÙÁ
-¶¶½ˆ{¬ôÖt’Êh˜Û`EuBfëd„4–ÁÂѱîM>R7êí‘ÄVúÁ¿q‹¼XáŸBÛªæ2
¦ï¦>;²UÓBvi€¢íÛÖtrB|4( ï¦§F
¤}Š!Ö
-NÐÙ¦ãº(èÆ·C×,\¸®ÎýÉŒöã™/#L:ô©¤
mÊG¥ܺ<àÒ+|6£À‡ù5óœE(ÝA‘ì
a]*½u–{1•«éÑ÷'„å={ã€
-Ó4J—oÈ´®ƒ;PIìžëš¬еqà#‚*
-Ó{é.Vvpô­²^€Kòí·	ݹè&
-ˆÉ#ŸÐŽ<c¯KâGÖhñÁyp³I:•Þ~_¡eL™^0tääWb‘ý/ö–ý¯ã¯^[Œ:´)í%r÷ŸøÖ8T¬jÈû~-»[/Nåæ‘ÇÅ$Uk‘ >‚³í…[àrv™=Ï\¯ÜÁñ`¡]¯íÅá`I§
-Ôºc>±0›J‚á·#›²ê0§¦¦¾ÒéÔG	.§tI‹d:~w›OWL¤¹Çz„]ô
kñähæ‡
óU¸~æ^1ñ
-wP’â‚Âì¯/ʇlöeö?õžµendstream
-endobj
-1576 0 obj<</Type/Page/Parent 1369 0 R/Contents 1577 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 912 0 R>>endobj
-1577 0 obj<</Filter/FlateDecode/Length 1794      >>stream
-x
…W]oÛ6}ϯ¸ðK QbÇIÜ
}h—v+†4[c õ0Ðe«‘D•¤êèß¹—”¬(†¢A‘÷ãðœs©¯GSºÀ¿)ÝÌèòšÒêè"¹À_úã¿ÐՂV4¿Lfñ¡¤‡£Ë«¿¼š‡—‹Y2Oüvz5å·³›ä[gó«dŸø-œ_.ðn¾¸Áï3ü·šò£7Ë£ów/ivA˵]ß,h™IIøKzüëV5^[š^%ô ÓÖ~O¥þ¦Kw²ü"[§7aëÙåå.³c¬&ô¾öÖdmêS‡¥sšNãR©KTµVäÚ¦1Ö;ò[”dÊÒìŠzC¦á½ø«‘›Ò¬UI®Z'©©sj”U•Fq!ú½ì‚Ï“9×ñ9ìø;¼Ÿõ燎ï]ìçÉþczEŸÝVYý£uÚ®Ž3«¶ô«“xü¦íÌTª¨¨ÌÅÈþ®9ðŸ¥VNßÈÅêû²+U£ô
7j©uü[Qã÷Jq·¤ê¬Û’™´­tíéöþîõûÿܽ½{óöc²õUÉ%_Ðٔ	‚„*o-à³´Véãƚq2íUQ:BØP4U&ÓÔõÐx*êÌì*þ¡íZ[ãºõÝRÙ8κêf€cuBvj—Úb­3´%çöúöáì÷ûOË{©<‰¥Ï®Ã!Ýç²H­Í7}J“>á+”ÉpO¨ÒŠI°Už]¬Žl1”–ŠoÏùm[×ÌdŸð	JéZ·~šJ}«ÊrÓpN¥<'<“jcí‹4ˆÕ_[í8‡ÁáÁx8”ÉXrr,.,‚áU–|¤jŒ[O\špꝱYl–^MB£)¤­À|«ÁûQY‡´Àå¿PªD}²¬ußG”ŸMà¿îIña+;•S*{A
``{,oÔºÔ@ŽtÚ=œ"4¹¥ÚQãrül8C×µÂ5f	ݸRjª¦„²#—Ä8IOŽ¡

ÕÇÞ9¼¦‡»7¤^—Ž-’…€—óÊú¶¡“êÀ9	;¡'<‘ &ùéMi"¬p2ê•5("&ôi[¤[n
uÀ8Р"«S
DÁš<×iôÁÚ×`9äd¬b"8ªGÉït™Ã=DŒÕ ,eàdêqb!
­Ž…Ì{ڀ9žôwÂC¾\S—÷	7$R?bÓcmvXÊ2ürÞªz1CrŒeŽŠX»Âo“jkT@ÇƃCŽ3Æ¥Ìû¡%°/ƒ„ÿc¸”%×ûQÿ\Oe-?ÇTLoSæÄ ”ÀdQßà—Bi>ÂÝVc³-ËãBàf§³±½ˆõÁÖ±MÎþÀÙ¼°Î£$ô<\Á·ÒíÏVºní4
-RÌUçxL8
þŽyÝ`ºÀ÷ÇÍzåXÀ؛ԔTëa$$zƒ‰†Ö¤îCU€ë¼I0€p„·Æ±2HiªÏ&bõ
YÁ,nžwÁXÛë‚„ó0¹,ÄZa”‰ÈÇ3Û°ÚP‘i%Ç4ÊT8FÜ©£¹{‹ãÆ 0u-U™SrçÙë^xLK–#ÒMBç¡ú	ÏLUGþÓGõ/œW·³n|ñÖgMò¢3ÜupƒÂm(!~Æc?®ySÊuì~P?(ˆ˜õ¹5ՓH°Gyž]ò¿ã3‚zn÷¬*n3Lä05!û&¸Óg'R®ž{§€íê¸u\ŽâÜ™O¼ÕlՂ+Nsÿ`‰¨Þ!p‘ïe[?ĒúœÌ™¶àÃà,6[ÈB¸ÎHze|ÞQÈSî#}<S©ÜT	4Bâ–ùـþEin|:œx¾
°¥G4#ö˜ú©3–7mÄ́÷¨ƒ<tÜF½aîp³|]8X::Ò~.£ ÉŽm¯¤¬bê*eEgÍÃõŗEwìú«cÜooÅåj°C±EñÐâꚦìnDR’LÞº:‰©:IÜ?žB±;©~0$
lø|ÏûÙÑaÑ

Ì°0Ӂ¯N0ï½×<5$PwÎÝ}³o蚽ù¨Ò€É2ˆdó3ƒP™¨`u"œíÇ(È
-¤ÁG w
WÓhTͶ¿‚@äAO„ò;“†aw(UÊ:%ÄÕ]7˜p»x¹3ŠÆ>¸8;ùÎb/E
-ÜΉe*ן¾è	aZ¬1÷¸„kè(/ö2è£æ9ÍÝa/?Ø">
F
-'mÑ>GûÛa‹CD]¸iör\Š£´Ý9â#£›p`#\‡÷tò†‹H@@• ºc¢IÖÅ÷±ò\ºÕ•(÷üÝâðÉz‰o×ìÿ¾‡ç7óäæzœÿå5×ÿvyô×Ñ¿˜NM¸endstream
-endobj
-1578 0 obj<</Type/Page/Parent 1369 0 R/Contents 1579 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F8 11 0 R>>/XObject<<>>>>>>endobj
-1579 0 obj<</Filter/FlateDecode/Length 1049      >>stream
-x
…VMoã8½çW>Í­›¤Ý$=ìa:³æP`
°X`.Š-ǚڒW’›ñ¿ßGú#[`Q¤H,Š||$ýïbEKü­h»¦Û
eõb™.éöþÿïv[ü_ãã5‹‡ýâæñŽV+Ú¸²ÙmiŸ̗KÚgŸN¥†™‰d)jƒöVÕú¦Q!œœÏ)–ª?kc©m4™Š:¿"ë"̓P*6NÒÏûŸ‹%]¯7éP>=)ÛQV\´ÍåŽÁ8‹ß±mүڒ)¤ñÈ¿jÏ¡œ³oªp^á k½‰]JûRw@÷µªªnôùª*“Ø«ÛtÍØc*th#.ИQJϪ>(“!¿\ÀMÆÀUT™É”4¡*=‡$¥¿ÁƒDÛ'6ƒe–(wšÙL¢×š2g­Î"RN˜gUG*gd׃§ÏÌ3®P!Ùã[GÑããF?üõgW´ÎÏðK¹AvÑy£ÃÏ¤˜w‚“’œÎ™`†Iø!ýžP¨)"-pnµÐ<1Æõ€­¥¬ÔÙËp·õv†¬ŽÊXÓÇr÷½-µŠYÉN×"4qͱô|ŠߊÃC…ê\aÆŠ’A:"d3éå;MTu©$†¥ Jνnœ‡N¥,S4½þ¥@‡0KûÒmÏܐ‰d6j!\ÊIå:dÞ@¨VMâûËAEõ)ÁÑ•ù QßÐÈírícÔuÓgV¹#Wž•Ç5»¼§ ¡CßRÆIÿRYD‹½ÇF€çŽ˜OŠHGŒ†Â»Z z&RBá…Ɂë¾ÃE{—üõ
g™–xߥ=Œ¨PX)Ÿ:[O³æÜsÌ)Ð w"/‹&P<zz~zä2ã[4ø
cs=þãZ.×V ~uŸ9̜c¾ã¨¼L„…§&\Q?‡Ùb (êªêÔtâ…=ÌE™Û³P½šæÌ;'´¸ڦ׺¶™ïžMR"‰\…ÝÁ¼ÃÄMì¡,WÏ ñö¢;ŒÉ=R#7’&WLv~…”I?DFÀ<«SbKõ
-âxêՍÁîk}øóœi«0¬1Qܘ¡K…V±õúJÄÕ½q^cbE|OЍòØm<%8øŒÈ²˜¡†Øáðø”x”a!L¸£WM‰É»ÊÔÓHäþ¡b@é•Öš_Å§¼"a÷?аBZU„äŽ%+“×fà5P(ãyIÁÖʪ£®±‹)`’×(+Úý„ðä"ųÍÊ=hzAÎRM¡³™(þæq7¼Q¬6xÛØÝÒï²wŸ¿<=|¡?½û‰Dß\Ö2¤b±ÃëñÂõvyÏ{úk©šˆÖ[ý†Í<Œí^݁íï¶wév³Ã›lï·üèýâ¯Å
-Cendstream
-endobj
-1580 0 obj<</Type/Page/Parent 1369 0 R/Contents 1581 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>>>endobj
-1581 0 obj<</Filter/FlateDecode/Length 1618      >>stream
-x
¥WMoÛF½ûWzrP[±dErzK‚0Ð8n­ =ä²"—âÖä.Ã%Ũ¿¾ïí’M-ÚÂ6l“»óñæ͛Ñ׳¹\ák.ë…\¯$)Ï®fWòjþj¶”åÍ/ðSkÉ‹ÅÕb¶š¾x»9{ùþµ,®d“ÁÖj}#›T`ç
-O’ów¹ª]Ë|5“OÖdF§ò‹Û9ëe«›Nk+ŸM]çånóbóÇٕ\.–0q®l*Ÿîn—Ö»ã©-òýÍ×Ñßåõr¶àq8˜ÏäÍÖ7µJšxl)óyl±Fè8vk½«Ucœ—EôôÁ$µó.kFáH“×®Ý墤íC/ºäŠÑ#ôy˜T×HJɹ+ã¦ø¡Ïd~ƒ3¸£
ƒÛi«]ëq±¬Ú†yi»7µ³¥¶—ÌÕ0T8<oL©gòYKUk—1£UŸÑ¹tc<†DÏ/p¶Å&ØäZT¹U“ˆ|kÍ‚ªUé9)ñ®@XH±qáêÓ¼qv[èaEç(æ­P&SVx·¸'„»'‰*
-!÷E»Û)•7-BµIâõ.m,“¸S%2ÑõÞ$øݙ&É$̸nT³‰Óԕ
-à#ÎڇãU¥0†QWið@3ïžf<ƒÔû|J•äÆ¢›Üx©ŽKª}R›-’fH£€µC­ýÁ7º¼ý­*à›5æᬵ	‘U…ib¿wbŽð^À§ÌìZð)&Þ¿é\ýèŀº5î‡Y$ÃÓ.Mƒ.XÌ$¯_ðaw
<vº(äѺ%ÏUó
‘«½–Ôd(~•.ÕEdm­{ž2_ÂMŒ'ÅØ¡›*¤
–—±Ê¬L6:É­C›€Ìv8ÒªìÉÐå¡K•jÂÇ°LÒ
ê<qLäØô:T¢éœÄ"S’ÁxÚsõAJe­®Âk)„l|´š}U‚lj¼‚·TN’N&µ¦/7ðö†TK’¸–Í[[׀Å`G`àsÄÐgA‡p¼x%tµ<ïcÐSK2ƒÆ❪‚ª°{NÊK3@cHv`pÀ÷”&ꀖÉjW
-z ÓÄÝuz¯kퟦ,
݀
:ˆZì·!A¯™mhCGÑ?°¤rLê”äƖBúk•òâ<ÞÖúkk(¸
;Xír)H”•B+Üdqmå¶æÏȲ^¶žä=ñ<àT’1âìJ!¤CB†ÜÈ~@§SÃvÕü®j†ËÁÏ…2[k-¾Dc£k†Xb€˜É'n›^MRÜmŽ†©3i-^ù>éÇÅåzvÃY&Y¬Öߢ^õk,Ĩëěÿï†ïû:J’+»#gçÿ±¹¸™Í_Ÿ0ºM5å‘C8ú
-T5¬#•Úz2Ì{Ä¥sm‘öZpà\	¥T[Ǒê!úMîÚ0ŽG¢Ÿ¶U1Œ.pr¬q Í±Ã•'Ç{KQ.B¡“∐Fy(>ñáÝHF"?r©ÒӅët]€u„³n`IlAú	Ür£;8ÍQG3¬6(‡ºÊûG“ïåd´+D¸HäT‚Ñ·þv„]cÃà07¸óÉ}?*ŸÒv4ˆƒÑU?Йûˆ]½îRàÕ.,*²
uv]?jðÖ}£„D…
-Y[àK]n"²SØY%®3ùh±˜4Üðb
;•F;FyÔ·- >Õ2jXé0Z1.H܉ßіrº
-®sbÄúOL‚‘rȕ-×%R‰kTœqøßÝ>üȈyrâÅ]ú½tSl¼«NdÒÈÛ*g0,óä%G²=]Ü59ùËX1I@x>{Š<e&…sX°‡c†M¢ù£úqÆ^_[Ißrb€©{N”Û?>‡
-úŽ})Èï±ã ñÃJ¿A"ˆtºV0ÚÙLÞêD!¸#esDV¶¸G?K
-ÈsÑï0´öº/ç{£Bìwa[ˆa‡e|’0¶.®Æ,+#x'…ÙÖª>|yÿ;†#dXþˆϜh1ÊG٬ٵ…ŽX_aÂÚ¦ï͛ӧ§å«?Öý»Osà=i	zߤÌf¹^ÎÖ«›8‘^ßðÑϛ³_ÏþìÑÍendstream
-endobj
-1582 0 obj<</Type/Page/Parent 1369 0 R/Contents 1583 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1583 0 obj<</Filter/FlateDecode/Length 1670      >>stream
-x
…WÁrÓH½ç+º8…ªÄ±ã8GC–Z	Yb
-¹´¤±4Dš13’µÞ¯ß×3’ì(ÙÚȚéî×ï½nÿ>™Ñ¿ft}IWJ«“édJ®fø9_^ãç%þ8E›ðÁÕr:¹|ëƒËŇÉü­–Ë×>®O.>Ïi6£õÁËkZg„ÀÓ)­ÓÓï^9OÖP](ú~ÿå'UœÚ(J9<4ÔxE÷kùË›Œrg›-®”'örpO­mÊ,¼ùÎp­wê]¼,¼5y¿þu2¥óÙÒ[g§k9!ק…m
mt‰›¼ÅM\Çë à#•Q²—Ø™­X‡L$YGj§•6dzZ΍R—,]cFa9¦ôóü‡6™mÉ+ï5*G
|¡O÷r
”cº¨Ü“MvÚ6žp\§¨2 †”q_‚g¤=%J›\pÿ½‰[ÍÏ*ä½±®åyûõnõåþéi8Ø?ÀOh] ~•¢v{©@×Äei[?d`2U+WI3C&NeÚ©4&n‰Gq;SkjgËÝF–Mb&@Ú²«uڔì¾}é¶ÐiAµk¼¼ÙÝ2`áÔF9eR•q]e™–\÷þlH{ëìNgB-t¦Ak
BF°AÀN»b
-$ ­èúÿP6yÎI©hõâШÆ;›5¶§Ó‡ÕÝÓ{ò{$]	‰º¸ã˜;Í(ü@A¼ÉfO8MÊH¼Œx»-»}ìÎ(hÊ[Nt©ë=X^î^‹€8^‘Ý “Îý°gËÞ·Öe¦ºU`zÌÑÀQú|ôŽHÅ×½¯zŠ90)máÓi'õWÍ~zúsñù†f ½xÅ9œ)(`¶˜\Mf¨]®júåH‰Ç¾r~)¾rz$…:¼,øԐlΨ.´QªÇ£‚w(Őú[ûZÊÆ	‹pz™cZ¥uƒC§;ªÁ?F·Úƒ‚èbƒôÄÅ೯»€ ¯pN7xÖjÀ$#݀ōrõlK»׍£_Þ꺰‹‚¤$!^U‹_1ÂB3\£Ò4µ©QÆqU˜s§¸†Áx]J2
-Ê”¬pü•,Ê)gŸ˜©D]{À-08¢{\æ+E, {hީؖ–÷B¬ˆ|«Ð¯-,d€å&j0¼`¥)$ëX8êÐùMÌ)RaØ÷¡û™°…O"=z9Êp.³uÈ*´YºÓ©³ÞnêŽ7j‘ÆPh-²
-v€a¤GùŽ`íyÅœ!XŠÊd(ًT‡´#åQ$éA2`”Ì|Ì|BbÌô’ø!¹Ið‘l&‹~È´ÝéL	
-Ô¹ŒAÆ̅Õ2¥¥¼‘ÎxŒY]£PȄVÐ98€ÉgÀ…êC7ùOJ˜RÙËN)cU¡ÔÔR&$x4ªñA76;Uz›>ÃZ†u#–̧~7 Kè	;r
-­ERÃ'bR¹2J¤fº@xÿø:/õ$)# ›”1‡c^â`ȼèés<£Ca¬làzž	IDQªÂ±¾~`†î)Ÿ:àPS’u	c|ú†ÎŬûÜ ìI0‹ú„ÌÞê°ô÷+ä¸TÂÓD¥½bçÏHm€!À~˜ˆÛ£Ñʉì°ûì؅•ã‘«„i
ŽR¥ªDv6—©Ôfªi"{*Ö¥ÈáÿÉñîñÛça&vÖtàb@Tú]YTЉmÓ©2tØn¥ÕPÐa†AXº¼Ø|·aŠÔҲɄG.bY±á<´ëL:ˆãÅ0BŒ"v¶°µ¶Ä=Ð@)nœ¸ªuÙc >°’²²aŠkð,2(þÁéJ¶ªÛ¸t~ö¡Qhì·‚צ1a§â0áA¨Ð¬3YÉ
-1Ä«í^«2ݘ›a“ÜPè\tUY…{€£	o·µ˜´cª÷~||ßz
-½ÃN
JqÊ4U[?L̨§°DÆâE›„A%䀪ŨZNdÈÉê‹õ¬½Ç+‘n¼qB_
§{‘Éqaù¡™áEg)‡Üj;
-šlò0^Üaå™ÐÇ=ÅM݅'¸½PˆÅiÅЖ`Lrqðø£·¯ílpƒŠ·cÏÞ´>žØý1|
@aƎî>|Ϲø¼ì,w¶ÀWºå-fSq€ÇÕÝǕ¸Å/™Ÿ·6E‹°&ˆJ¤êóþõóë鍼ÿK×üz>¹^,±žá›9úÇú䯓
ʸǥendstream
-endobj
-1584 0 obj<</Type/Page/Parent 1369 0 R/Contents 1585 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1585 0 obj<</Filter/FlateDecode/Length 1828      >>stream
-x
•XMoÛF½ûW|r
›–lGvrsœÈÁ®[)hoŊ\JŒ—\fwiUýõ}3»”(ÊAPFdjw>ß¼yô÷“)MðoJ·Wt=£¼>™dºš]g7tsw˟ñã4•''—ŸßÓô†%®Ìîð¡ ŸLh‘ŸMgÙMv•Ñ“ª5͵{­rü¿©B¾þeñ
Woh:W/®nqõl±Öo>'ëèi>?§Ê“¢R«Ð!€°VŸ´N{ÝàcCµj¶ôõéË_d[íT¨šù­ºö}	¤Œ±ÏÞ't1½Î®Øk<€ë¥u5î؆|—¯IyZ[„ïÏaº2¸_)¯DSPçµ;¸,-5*ã­yÕ•ÎÖTTe©¢û´Ë5‚úŒÔô?ªn>Gn>À´2¶Ñ1u/x&AÕjÛ[OI¸° ]…mI¥Qc·eeðÖ!@äPpcseH¾‘JetOì‡Æ
”•ó¨c@IÛ@H9åûFD£”%¾3¤‹*"‚†rÛøÎÀ,=}™S¡‚Z¢Ì„~WÏ}zšs¢¯èêÛ4ò8èh–¾º&wH›ÏIµ­©òXßÖٕSuÍ ©š ]©ØÚTͲâxíoÁkS2LPué'W=¢éǑІ3ŽUcO‚VƒàLj²r¶k?“O|ëQ(@}V,Þ Á‘C»ªjz*6Uùô´èëÖyöþ8ÿãùœš}­
-$
lI©<·FL7]-se›¾¢ý}{¿®ˆi™jé”ÛFû˜b :WÍÎ
-°–ljŠy3.U¼_«|,ÈuMƒhG9ö-ay-:6RªTXpC­éØז‚ë@EÿMkÛ­ÖҖ6˜Ù4ܚ1c°ÇÔ¤7pÕºª–¬mœ£%0…1_ñ•ËÏ X!¿³KòËÆ{!Æ£PÆ=;ž
™T“!bkõÂd4}ï4Æ2ØQ‰
-‹oµ/]+µ~ ¾%üñô¿£‘L`”û²YWàIpf¾„j
Ó|ضlxÜ´ª.ÎÅP¢>	î´U¨BqzhC@D\n/)>¥‰‘VY&«®ÍhÁsÂU¬Æx‘}«sæÇzż[ƒž…
„5e«0·p˜0Óz«2¨Ù†7u…vØ*¥cOŽ¥:£VTþCìë»ÁÖKl/ˆ$ܯƒC`_õÜ%”É“³ïæ¦2Œ3¦fcâ¤Úáq3qG[{È
—ø
êþâϼ g¿’ÏÐޕ¸»Ä°ÀY4xhh°DÙ\o25õØ(wç(ìb‹>‚ƒÙÆà5¦ž™^±¢_*¶>ƳLJ9’ÿ´†°º&çu‰Wà̸ãz# ¸>¬-N-a2£ß†îþ	OënŸóó]ŏ¼slÌ!"x—±+ü6מ1û>
-R…vË&ñ/Ï4vۖ´ò #ì}Þrý:€å5¦——Aô1Ö:Øà€ƒ¹Ñº`fÅ@ÌÆÈ6Ú.Œ’À‘(ö¸“o1# âcG]\´¬(è4™:aÇs{@þŒ¡8F)¤â:ºUAƒÙ±­ß˜ÄÀV°—-Â(;>”"*ۋëi”
"i¯3z6Ýj¥–°ûŽÍ‡^C<ÊØɾØÏ®è۟]ÃV7ÞÒKc7¨š§çûǤy“Fe¨¥N
ãXßêÐ;òU‰XWýNÐùº±Æ®À€,/D.;éÙ¢ŠzÚz_qn€†Ðe¹ÝëرËZÃ
 †ÈF®wÒ·—†ƒQˆÃi»µzåDàÊéÜÖ-*ƒƒ?<ŽŠ#J Uꃞ•øîÈåŽÎ¥6Ô*‡ÆtF9j-d^£ƒ’pÑÀ€,d`Ņ†VƆÛB•€Ÿ"»åÉâÕ"j.+(@d.£j§³Eé+TÕ!\OKT`o8©—ã$E?ÔÄ#ß(Üò0ZÖÂ<IºÉ¦'Dij¼9©•¬BaØ]˜ƒç҂UÁ5«Q(æ GQÁW/6c!„©’~‰HN{Zêé‡ê4^Øç…O#1Èú»dÃkz­Ç¯)x‘«ð2î<'Qö)êÀ‡¨Íoð…À-:fy*ËתY	+ ‡…	šÆÒq<a0cё®@”‘Æk_06@upһ֏£H%ìwC‚{Ô1xٕ5·cÏwÒ2®Ft>:³Xll¬0[UgÅ?3¡öm/½"GŒËkùŒ W§¨Û!õ¢•©Þ) #¸¸ƒ.†+'š[|¦äa„%,y…ˆzUd,—z?sG¡ñº†‰eI
-i6X÷"‡øDZLJ1B·æ/x¸ç«±rwI¢Mgø{ÇÝ5Ínïø¥q~ÿøñH²ß¸·ŸlŽ—¡$ùÞEüâvòžÏÿä 7³»löî
-9᳓	ÛøuqòûÉÏ'endstream
-endobj
-1586 0 obj<</Type/Page/Parent 1369 0 R/Contents 1587 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 915 0 R>>endobj
-1587 0 obj<</Filter/FlateDecode/Length 1790      >>stream
-x
WMsÛ6½ûWìÍΌE‹’-˧։ëÄmóÑX÷™DB"`
P²þ}ߤDÓî´£IFÝ}»oß.ÿ>JiŒOJ—šÎ(«ŽÆɘfÓY2£óù%¾OðÏJZ…çWÉùk¦“4™¿òƓqûß×÷Géä"¹¢Éì
-æ+šLçIÚþUÒ}ðÎÇ/]¿]ÝžSšÒb…hgóKZäÁò˜ى±¹´	-
-åHi/íJd’*ñC:y®ôši¹%ÑøBj¯2á•Ñä¤Ý(œ\KJ/•Îi#펤p»SeI¾WeîÈZÊ7‹Ç£1Òi2A'¹Ñ’à5ƒmâçg·Hhõ¤Õ_Ûh9q&>ìpœPeò¦÷3S+™³‹³R-ϜÌ«üîlh@ `öúåú#eF{kJZ©°
‰÷Bµ²”¡}‡©AY›:>z\ó"E%¨@÷RîÝå&k*ä2f’3Xû"=ÒUº$Æ}Eéy,àhš‚FÈ_:KÎñ¡o(1š÷Ö45ÝÝÐ5¢‰ezˆ&\ý“Temø&¼¯ÃE”"³2 j4HÁeÍÍÖѧ—Iy.*ÛdP,ÈP‚à%€lP‹œù±R¸úýäëÝÍ÷7‘Wƒd–+ÕºðåŽrµZI‹k\¾oŸîþ¤m¡²‚
-“z-ɬØÙRږ*!õ.æ½u¹Ph×ՉJÆëCçºõûË
¿KèÎ3жdǎ͒ã;ÀlO€˜âTù>*vz
§œHˆ³;pÛÚdó°¶RëÆRŠÖȝ¦ZÀ 2%ƒƒPxq57$û/µ•ëN©~C6Áy0¬_Q6Ãìý
-z5
8Ôיrƒp™¨ÞJY‡‚©JžF°šði-Ÿ|D0+kª`#”–é!)Ôª¶&“
Õu©böcébüŒGÏŸ]‚·
-ÂS°±‚)f*þ€êÃÞó®Mwïø»Û½ÆÃñ"Mé],êǎ‚L"Á!Í9ÕÈ­r¼ÇZMs[v¡b)œ¤B– 
w¢Ï—Ôýü/m#µiÚTäFhQvÝÃ
Á²6ڊ݈ÈEB_(z'²X8¹ý¡ÑÊÆ5BÍB«»ÐU”
ØZji!
-@Qš@áÊ=³Hs/–ÆühjôØ yJGrø­±?Ð`Td¿
-a{µëKnuT	¾C¨ä²BÂ
'4'&6{MwòïFjø‰âA®	ÔÊi¹cEËM%^´K;J”¯ÕՃ:jпŠŠm¥o¬†;˜ôåæ]èkÄê¸(Jƒé¹U¾À©A8úŠÒq^fG
^fwJC¬yˆDŸ=Šo!?’ûD訋{‰8U=HÌc5Æ$…²p~a0ÔYåS­PºÓá
ŽÈrÂA‹^—sj@„ßÌTP;œk”€¥„U`P®V
-ûQ„À^9ëPLÒàʓ!¾@ƒ¡Ûh€:W.؁
´ó­Äc	>üºYȸ±÷bƅbgg·Ó°¼g¦Îí˜FÝ
'¤(ò‡=½kÇ@ø%^0¦±ÈAo>r
± éaòüj
-M‹f‘%=beá/?;-j^Ç°Ç!µA¦!§–7ÎׇÏ‹Ï­|
-V"^áBÈÏ´
ÏâÑ\ºÌª%ú¬ÀZƒŒ¬¥ß÷»Âæç8YŒÄ6Z³þáXÛ?P‰(æxÚ[±1ñД-»3¥ß•nžhižp*˜Cà]'í]Æí(ùú
-þök6Z»=©†>Rè-ÇWîM),' –¨ž=¯±îXÓܙÇø
-_ÚË#t/»£©Ä?ùçÅ;éâèÖÜÛ]ÍSc£²~˜Ý$˜Qègck”4lÄ=þÈõÊx‘¤L/
ªÊu}O S]¯”—ÙFofêé~¹UF¹ªÆEþ
Ëý%^Aâ(¢n³…±K¬êèè-_g¿Xtâm£Sµ› ֑>h¬«khª†ŽÉîL~¢ÌŽ­\7¨ú1Xi{ŠI€
‚†ÞÑà5vYH–¯±=bù“¨_ŒÌê.uðäÚ'“¥q)±Ámñš‘eAÐqÌÑ(cUÙqX
-@<žŸˆ
ë犉ß$ã4¬€nC’pcÙp1OùF%X±â ã‚h³D°`áZ¤(¾oùýgVØ3ùØj}Äó·{˘µï^x›Ý¯<Ŏ\a¬*wlÍãMñ§È±¬=>ºLæü.Áú>™]¶}4oŸ¦xS_Mi6›GEŒ©ýbÍ#²A7ý—!¶;JgxwžOit9¾jô½èœÃÁìbIÇ)ûeqôÇÑ?}”endstream
-endobj
-1588 0 obj<</Type/Page/Parent 1369 0 R/Contents 1589 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F1 4 0 R/F2 5 0 R/F4 7 0 R/F5 8 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 918 0 R>>endobj
-1589 0 obj<</Filter/FlateDecode/Length 1998      >>stream
-x
¥XMoÛF½ûWLÑC@¢DI–dôP8i܁c7Q‘‹/+r%nMrÕ]Òªþ}ß̒4Í|EĶÌý˜yï͛¡ÿ¾ˆi†1­ç´XQR\Ì¢]®gъ–›5~žã¿Ó´çXÚ}ùøÛÅú*Ši9[Ds*(Æ÷«æSNŸ.úŸñty­ûO{ŸñtµŠ6ý§½Ïxz5‹½§ábãë—â¨E´>x½½˜Þ,)Ži»ç4W›5mSIfFÛd´ÍŒ'•çöä©Ê4}º¾}}M*-Li|åTeU0äg²¥,Q5–•ITeð«B'™Ââ·>l§ŸM9ÿjû×Ō&1£´MG÷¿¾¡=‡kgØ=¥¶P†O+vÚùˆÚC¨öøL¥¥Ü–í¨Ô:å2õ¤Éë£Bš¯šôîRIbë²êB
-iá¤'í"^<½Y5 ôv}Î,ùÌÖyJ;œUjÊâD©MêYÿ6·ˆbó|ԑž ùûÝçíñzíÍ¡D¤œ±?ûJ/QEŠïöt¶5)hÌÇ\óù|aÐ*ڛ\rë’ U¦t2>c(F{eÒʛüüðŠLYéCúðȧÝ;[ðõŽ˜[â3 ¬Û8ÑeȉaDÛLUä•IÇôŽTÁT}ØžÞ_ßâú£v՘¼•\uFN]
nÚ骹ØÅ9à§V"&&ØH¢™öš*å}CaÒP8YG›˜V+¦áa¾ZS é
-µÇ²ŸÌ7Q|E“«u`*^E—Ñ<¢úïÚ8ÝI+×ɨ¡H´¦d±S”Øro5Ðeù3C@´\&µs`tÔÀGÑ@p#z}ýæ=½Ûҟ÷?¼¼wÔhâY29«ð<%áÝqØÝ*yD;•<R}d&æ
D£©®’éQQ:ܔƒu~æÌ*Dî¿•”\ùS¿¨¨P)J™vÖV”ÿøE<·×ïßb¿ûð–>Ü}\Ñ«£[í6ˆ»‚¸‘‚þ
-æž»P(ž
-¦ Xÿ(#‹Ý;¦„
ã€BàŸXç…J2Sê ×Ÿ<²!¬LàI•ï@ý«æIOEU…³p¯ÆÇs°¸mŠ
-ˀ@ÞN{ ªåâ†	´1á/˜h½$Ð7€2֙ƒ)UN¾â¢Æ¯ÎtÒl%™`#]ÑÞÕbÚð>)$d~€ÏcÃÁ²&éçÉëæªgӔãt_\Ò³¸áËÁFí¯h>
-¾ºGð¹“3ì.¯Æ¨ûÂIòÞÇÖU—	Wž"˜r‡ªO)Uº°¥DÏÒîs=î6K7—Ÿô"80
-c#FqÖ0¦•’Ü¢ª&ÐÂ8ǎk€;”)
H-p3 ›ÚS™ÛÖæÑNp`¢¡¶T·1vèÀ‹¸MÒ¯¡Q…¶ÄܨÉMÕºÔۄâ3à
$ 6	?fÜN:ÏùûÑr¥‰¾ŠS2š“I´8Q›£³O&¡»sÈ7`Òp,&û0:æõá ‚tV(²ÆÝh	¤Á²öº‚CàX3_^ʱ`ºby¸4ÐÂNÜN·Œ²âù|á¢íÁ-+bVQLM	çfç”3@¨ #ÔÙ×ïÝ2¢Ðgâ…uú;7é£ýnÅãŽ_U&š(.\hUúaÉÁB&³h½œÌçœèóD4
-×ìX@«Î+¤?1C2÷uÎêT9šë
-äIv©~Ò¹=rû†N“GHÕsa†«ººç dé·B	ëÛ®
,â^ÃZÀ¹&—F
.绺z™
»¨´­×ÚՕr¼¡I‰IßA$gȀ‰±ôh‚ÝïYڒJ¦=ø@[­ ¬.¥Œ¾Dª˜£è}³£èI‡…¸.[Ë#_욾ӹ]Ó,ž×”_YÃÕ3<«5“—¹8;”·Æ <ŅØ
že–¶ÉŠ‡‚‘sk÷ÒG|
Ìxï ^-šf)Ó2U.•ÂkØæ
b
*E©2“däë#	§íƝ†Ý¸C}´íÆÁ¸“ ÕÃ7˜,¡­­¦
-Åà‘¤˜ËMØò[gÁ¥:tn©]=—`Q|T@ô9ÈÚ»)ß!Ð'íÊ^lSÞS(1Ú^™jCjŸqÂíá
[íj“³/‰«£h‚ÑӚÜBÉ´uÂøuå¹uÚuûš!sxKL׏ø´£œLÌX^#Š µµgÀ^o0¦³I¹ÃfÆTœž"ifüñí`èC,ùð¯; ?@žWÏ*èãý-[ŒxPÁôÎ!ÛÀæ…sĽi¦Ö0Ÿ´9Ú/ùåÝÝ+
÷Âþ´ËJ	{ÃôÛ
Ž$žQ N™CVi¨/Eá
ú½qÒ
-Ͼ
-ÒG	ꌉ™YÂò½WGS}Ô¥¼‚ÕGXÏ)Ó`QÞxcW•¸÷ÉØÚ³¯‰˜˜ëO2ªCaÒrD#ӛ]ñûg¸ø8Œ®?†üãðp1ǓÏþ褖³o¹‘½y>‰gxkǚïíOIЛbhnÿ'¸vð̛T—Ä8&š¶$jšLx0Ä©¾ÿ“ÚÿÙÛJ7œ±it/–Ñj³Àß(âðƒà÷Îþ…^á\”Ç;'ñ
-¦Á†ÉzrÒÑ·^얫M´ºœZã™Ìo·\üÂv>endstream
-endobj
-1590 0 obj<</Type/Page/Parent 1369 0 R/Contents 1591 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F1 4 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 935 0 R>>endobj
-1591 0 obj<</Filter/FlateDecode/Length 1493      >>stream
-x
WmoÛ6þî_q@QÔEcɒcÇ)¶
ÙºýÐv[¼OË0Pe±‘DO”â؏ßs”(ËoëºMLóx÷ÜÛsä_£€¦øÐMH³ÅÅhêMi±˜á÷õò¿Cü¯$¥v#œßžÝ€oÚýúõ§Q8»öfN§Þ’
+˜1F`^–H>SÁGÇäŽÜF`Y#
;ä?¬B¼àv¨Ž§#87L]”Øž«+_Pń¾Á¤ìHÄX?¾¡=ï
Òá]
+ˆ=†zDn*
É{íI`ÉUqg¯å¬6ðzŒT ŒjA¬Ì!wÀgþòÌhט’ñxE„ÃIË#›^؂£¸@2vù2H-[õñŸÌäãdÀz
ö‰÷z)„nmSuL†¼ÛV'ù’Bïø̐5lR{
ك€mü0Ê\(:V4^–2©ãü
+ø]Õ%˜s$aYŽ¢í»›+ªEŠeˆ	}ò&‹óÅB‹È_C|+d饩o#±
11²„°•1nÁ¸p-»&ˆÝ*,%?šˆ¬-Ô® t[;U¡“#ÿ04²^ì°R+¬‚FÎd¦$ÄiÁ!I:{hY¬¹¼w½?@ãIDÉû—o™è"ÊvЍud¹mY™|ØH+Kç”Ò–Yiýðƒá¦«xª©*ô£MzBxØ$šg͊ñ<ØfÇ®oéÄçZ˜[µkÃ44-)¤âé­¸
ß3äµ'-:´ËªŒÀmÊ~à@2Á!Ã)Ì/Xù_¸¦×H$ϳրŽ¾ÙtÀžxO‡\ß¼0b½‘ÒÐþâèÌíod¸
+Åæ6ö ³Âhe}ëä<Š³'µžxz»®·Å;øòA{ã1‹c«4álÓV•2rßg©ëÜ,êA‘üþSj4J#8Ý÷ß®éòX›ù«e¾â
+Q7}ØѹÝÌ@bÒFå;
úw—o–Ì !#ãVrçraÂðm®ñ’†„ãtl÷]ß<6HBØCŸ
+S¥˜ßò7@c™™<¹7PIø…i!X ôÜéýæÌÿ¦>ýÄ4ÈÕÈ°ÇË1stÎj€Ð9­ð¬	ÁsèÞKljvê_>~ÌG¹úñ7`-ˆ#³Þ!9Ó?œ€¯¨b†uÌ
+h
+Cf(TÈåI0rGR¶â,Ÿó“-ú¸3ë²ú…ÆÌ>/H¼†ýór2Ãp>+ ½–Ý?¾;'xß K8£½tÎîN>?$Ãá±ïøJ?z'vbÕé~÷>Ô緄•²ò6ÔIîŽo¤ÙÝUtw±ÆÛüê‚Ök<VóÉæúËÍ5}oϹtk²¶B6½,p4çÝöóËåœ÷ÿß-¿q÷†]]®’Ëõþw†–+¶ÿéá쟳ÿj"‡1endstream
+endobj
+1162 0 obj<</Type/Page/Parent 1099 0 R/Contents 1163 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F6 9 0 R/F8 11 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 516 0 R>>endobj
+1163 0 obj<</Filter/FlateDecode/Length 1983      >>stream
+x
XQsã6~÷¯ÀôÉ;+¶ãØÎÍôas»¹vf³Û»¸³íL^h‰¶ÙH¤*Jq|¿þ>€¢ä(¹ig³ND‘|øøÏь¦ø7£Õœ®–”£i2Å
+Ìøã?ÿͦódJ×óU²¤‚f‹erÓ>åô0:Æۛ5v…½ü‚h¾¼–“klºW׋d
¡+Þ1—‡øj±J´X¯øþWšv£ÛÍèònA³mv°z¹^Ñ&c§´IÇ÷ôÝØÌ=¥¹Ñ¶öT¨5^“¶iu*kQ©¼?º*ó¤<ªšÜŽ¥•çÚê½¾¬´/Å!ÕÔH1©ª³T¸Lç6Œ¦4™]%sè?ŽUò”¨„¾n¾Ü?Ï?«HåÎêþ+͵ª¨Ö/5ùº2vïi‡eoŠ2ם)´U–½V—ÐÏ8tpMžÑVãþ*7ÿÕÙ@}P5M} ˜J÷·TV®v©Ëe!^–ßÕ³÷¬a6[]ÃO¤qKÆR™+|Šµ0²sÙm›š¬«º·jù„yU¼ñW¥ÿltí“öØ|‰€ÂeßáÓ^xçÄ1F¬àˆn²q¿"µÕrªÖ6lO¢›a·?ÆÖÕÉÿƒÕғ¨÷£¥ûOvà³Õ¿~ýùŸß>}Ž·B¬Ú ?OÖ-ã…}݈¹Öå]Ú¢q²J֜KŒ‰ùrE¬½Çª¼ì@³”NħÎ"(ÎÚQS–¸U
+D\²Xbw•*Ë8vˆ\Վaël
OÔÚ·†«Ù^>3–‚XË2,×á _üë¯_¾0ú+•Â¹ˆtú275°âÑë%m±ôéó=é4¸èuRM?joÒh-:èYåfþÉkd
Í Ž-—l€µôEÙ{eÿ¿ccßñíd¾Nf74¹žƒJàþß]ó¦Ò;»c‡ˆ•¯¹­ÚӘ~iù€>Š@¦¿Þ*\([á%Pˆ¤JÍÈøéÛ÷Í7Dđ
+Cpn0Ît­Lî	¬Á·3Öêjà&Î=&„v9^ðŒÃn®‘Ìz?›”“>Ñì‚ÎvŠŽ‡Éž®’‰]»@æ›ãW>ä0áÇ@LqŠCNú˜ç½Jl<3FRug¸#_üÙÙf÷o|à
v>#ž¨‚w
+ˆ2șÒÈóõþ
~¥°+«\Y2Ò"ËHáߖQ°](Åd bŽÛlJ…±
ƒOÁܨ8²½PT˜GÕµ.JÎZ\—_°$YV(@^Û¯yL¬Óم	W@rL´¯Õ67΀…EŸIk<_
EK¥hK]yrX4=âJL¿7iå¼ÛÕœðˆ‡°KôrtFØ†°±/FŠ=ÅZY?ÜÌvõÁCÙÒS¡`*Ž82§ñÙJï
hëÝ*ˆ$ø0çÄ+N—2û僢‡¥‰£ @fˆçY¨`¢UuWjAça¬4èÊd XȔ\¡™L¸j¥‡W¯“bpkNWpDæ$ÔÌÎs]9íüyûÌ1P
+^
ì5µÎO"AÑÞ¹ŒL¦_ˆ".(îãÐi蔣.ú&=ĶhŽ
B2—ãÚÅ‘'£ùº¥6I¿ *ׄº[}#|Û®›—VE_ÆX"§‹E|‡°æZ£=²¨L
+SKFP„¿¥¹i+‘IpÖa½K¸ã¿¼›ÒMh'óEèHØé	)×Ï¡Åӏm	Ÿ‡ícck4‡Ââç2fÓPuâÿ¦ˆ¾ËŽå¥oÐ^Η\Én;¤UlU$øµm$…:Å­ÿZ8³Ûá¸Ü¹§¦ì6Æv
WÜtrFå.UÒàOÜF*Mk´pt«SMÜ1ýև“9é™;dgÑ=ƒƒ,>°†âg!·³³k/ã1p/ïæmç4Ž7๋Eï™qMΓ
+#"f<¯ÑÝýl@6^ô(CE–;„‚ëw5Nê©c˜Â¼0§²w:»ßKU‹:‘!L‰Ãˆ¯ÄÅ_uIŸˆJKå Ն¶Eö_€ú]ÿÅú;þ+_sF{-ýsp¡^LÑd›bËVïúÜÕ@3Š\EǃI!lË6ܳIXŒ3٘órtú.ÓÓ&SÿÀFlcÚË{`h…%Ð@f°¤ëŒm
̓IîqüøA¼ÁNFt€ŠésñB°™úQÎ	ŽöÐ4L€ÖÃò(PfFϓȮrE[ŽvD÷W=ó4w»,=4øµÇCmÀƒ<K„”æqd YR”hEÄ9Š¦–”áÖbÓÚöü2( Œ
+_bøäæ‰!yQ½b\ƒýámNvžnjÚ7­`ꊭ±­.®|†)µA¼¶èTȕÒó2†3üÍÒñw(M]ááäx§ò
Pä8s«Ö8
7f2(à
2{è•C¥¥	ڙ}S…‰¼tޛ­Á°bàSÖûøéµ2^Þ­[ϖøva}EËå,øÃÇûۏôKåþ@ÛFŸ\Ú`7ÑÅÖLâÉj.“ÞU²HCÛ
+_:0åî+£@˜£Ü
+;Ôó2w'| Ç
++˜Æä±;R_PÁÊ«E²Z®ÃH9¿æ¥Ï›Ñ¿Gÿ.À»endstream
+endobj
+1164 0 obj<</Type/Page/Parent 1099 0 R/Contents 1165 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 521 0 R>>endobj
+1165 0 obj<</Filter/FlateDecode/Length 1492      >>stream
+x
ÅW]oÚH}ϯ¸Ê[
²R’¦ÝÔ„îBT­´R4Ø8µ=tfáßï¹3cÀNV•VÛ4à™ûqî¹ç^~œÅÔÃOLã>
F”g½¨GÃËËhHÃɯûøՒ–üGùOÌþüíl8ˆq,îp¤ á¸Â»œfÎP÷£	?ðA÷æð¨7`OM7ó³‹ÏWi¾DX£	^¤ÎiæIg]FqDFÒýŒ¾eeªv†æ$‰’Deײ´Y"l¦J2Ro¥þeþ›ìÝÛìöǰٙ¯3C…´k•RVnU¾•†pDšf|ݐZº–*ÏÕ.+W´ZàŠÔWÜ3S,¢D•KZf¹üÕ»êÑUíiˆ¬á‹Â?Y&z¿±°cÌNéÔÐúK¾Ö£nÜT'§L*Ù=3yã\m-œÂñóio§á>©åÓ×ۏç¯qy$ª+ðkwŠvbïòÎRÆq¹ç¬wk $5)M¥²$¨B8l§‡\ð"Ó¸oh+ò,
§#š–’/8lëDQŸ]k¹É÷@r©tá+¶Ñj×)×`Ûº­ÂÒ±rÑ*Á›÷®ʅéœ=W‘"<©5âNT*£àluE™£Ö OÙ5ðè1#p’ßpQ³U¥}\xÀÔXŠÄⅰ„
w¨–Â0_f¢XÚeyŽgð+­ŒÛ¥´P«Ê4­?<æ<2ÏE-ee]é¥ÈrD¦ÐŸÏ҅æ°vÅiy~]*D‡ŽÁÿ„.‘çV²å¯	x¸¢ÀÆiDßÀ
+€L†ìuÈ-ç¹J¾“ªP‘%|áF"µh¡²*Ì,ôRáº7;XX+‹eôQ‡¬–¦Ê-÷<jbÓ°lÚÕ}„D¸þ=©iËxªÀJ-T“ßå(.#¼„Né±Ì^H$‰ªJ_t¦
;fÆÁtxÔÊ7
¬°³àà¬n´Ü¢£²Ø“'+ÈTžJY’g8æ³9®SZô+`?¢{ñ]¾	¨XbÓtñÀÑTœãü·Zèt*êP÷›*ø?ˆà1…7Drú}¥Uµaùsℸ
€¿äÄï[5_ë†ú@ï^CTË$×½FãüÝ94sU\TÔ÷¼eéܓ5|Ç8]À)ðA U˜C>.–«,˜FC<ľÅ%Q
+&
Dø&Žxî~©‚ºî2P±Á¢‡y»îPGÂ—cn}0ÊÐ9Ë^¿ü¬¡RJÌ'<~V0Ύ›·Å¬ˆæÜÙa˜wBÍ=}Œ‘Ø3ºµ
+Oß²ýœÊ°Ús37ÔÑ¥X!°°"
èÜf§¶ <ÍÏ
tñ9	kAwMbŠCÐ÷GcjÁ=?Dý _ì{BspD_²²z!³7Ð*’/˜
+¶^.ƒùaQpI©«	ãøéáúþuŸévz}÷àÞzÍ°ö¤7âéö'Q|uÄñ¿Ö;¦§gU-X±Ìd+&oÅc¿L<ÁëR¬Qü…äQs”vh"±ó¬Þän?Õ·½’¶þ¼®z· ’!S%k^3Œ´–¹éÄèV³–ážõ¾&Xyëí±æȅ´É…/©?So˜‚&è}»¯›“åqcߏw·®ÕjxÀ`
cL=gƒÂ‡ÖDŸaž`Å°òfk?×+êðŠ¼À–ÜpŠµx›Éûø°Õ»ûîV²ÔÎ6¼ý>ý6ŸB« S	¯Æ¡yŽ{zc<
"ú¶§ÃŒúÉõ<,c'Ôá½>•Æ3/ØÄÀ"ŒoLÛЍ<±/-¹À¨’n”»Ï2!Újµãƒ ña]9ƒpúáÏ$•Á oû&_ÝVµYÖû…ÛhU‰uñ¶ª¾àüaˆ¸M9©ó<»¿!¿œöѱ“@Ðx„¯l“
®À×´3»¾¿¹¦¯Z¹õðV%n`¹5ŽƒèÖǻ㾚Ÿý~5£ñh‚olpÚ±íOó³?Îþ
ËnŒ”endstream
+endobj
+1166 0 obj<</Type/Page/Parent 1099 0 R/Contents 1167 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>>>endobj
+1167 0 obj<</Filter/FlateDecode/Length 1200      >>stream
+x
VÛnÛF|÷WØ}p”HE—´)àÄNúKnÍ (â¢X‘+“	¹«p—’õ÷½P–d«—Ø°-˜Üs™33g¿ô©‡ï>bJ†”Õ'½°GƒIŽi0ásŒŸ†ÓÂ>H£çÄÉ ŒŸ;1š<=ð&=‰Þ
¨ß§täÃñˆÒœ¸×£4;O‹RQÍu!s*ÅJV+®ˆåy©K)H.H¨GV•\—âž–¬ax›7Š´´ÏT=3)´(+þêÇôÒõhâ²ñ  ßùÙ-+ÎG{Þt‡oY=gtsù–~}Jg”l‰àT1ó»dâõ(è÷И£MÁ
+â™-q!ª%@˹fe¥N|¾¯äœUü›üY³Yjô¥ÔZ6¹¢×ô?Ò½­xÖ6¥Þà¥VñæHÌ\Ö¥Wò^ŠŽ÷1A³[ªøŠWì$¡®tÙðLÖ59Ϗ¤’ÊŸ}£þ¸
VŸ§Wé‡ÙûÙôXïK¦t)YóuÁ•"2SŒÔFi^ÉÙp–“•Aaã Ú%XÛìpbˆf>vfžd 
€þJŒ>Šò\*bY&[¡IpŽà9§™4ÏmβÂbþ‚˜¢5¯*ó×Ä6OºJȝ_ßÒ§Rär­hšF±az·JÁCJ÷è¬tÓfº{,ÜßÚ²áyhÂEï&[Íñر8	_†IØé#¦oIrй{íÂVºíIL£€
-¹*sŽÖ@N9’eZ6R…l«|§çÃ:?”¢ÝbeHÁD¾%©ï$½Y–³T2ºEŒç¦=ƒ”Åӈ¤óxûVŸêµcü™m~@¢h‚Ì™*(È)2=D§Fe~JAMÝçn^³¡¬Èò{èJõßxI¾¢Ÿ—ë_|Ў܏Aá?>nÀ¾?ôÁ¸
‹Ü°ãöèD׎Itá{œ`ìÎL¥áŽXN5ë‚rÆÒ
¿ÜP™‘·
x©nŒ½5!ýþÄ+xeà¼#íöصÁï˜ì‚U(،6ç«H´ÐØ©×Í_®zw÷C—ñØlƒÿsfot†@{ÙL*;,,³¹‚Än’$†ôVŠ¬jVÔ3øœÿ9ˆ½æÀ‹Š?”óŠcÝ13LF.y‹
þah
ÃV†u*¾ÕYÀ*)8æ+2 ©$µäY	•1·0Ec[˜£„èŒÛA`ˆîükÏTH;AM‡Ùn~~.‡h:K·v!¸¶ŽiŠ-¤Ì¸zaÛ0röþb
m·
«œéú²]Änx>š‡êGê¹óVcób
Àækö•Û`Öïým`Gîĺ(á΀¡’Æ|Ð:p8H¶sÈ4£43Û;rõy²fÞqÜ{ú”LÜïâáÈÞ½Ö>^ÆîRp!$š„Ñ7©íºöÒªy=‡¬±ö“á.”ŸÍÔ
™Xo(~„¥±ÒÎ¦)u¹/Ý%DíÔü_Ҏ=ýdŽ'	
ã‰#ãíÅõ›ºiä¬º”Y‹{ÃÐÄ
úC\Ç	£Ø¶âÌËèdQޛàÔ`Œ=´˜ÐØöåf`ÂFƒp4Cl@#™]¥'¿ü
ï¯$yendstream
+endobj
+1168 0 obj<</Type/Page/Parent 1099 0 R/Contents 1169 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1169 0 obj<</Filter/FlateDecode/Length 1451      >>stream
+x
•W]oÛ6}ϯ¸@6ÌZù#n’ØCÚµO+Ð!Þ[€Œ–h‹‹DºüˆãþúKJ–¬¨[¦ICñ~œÃs量Íi†sºZÐÅ%åõهÕÙôó;ZÌhµÁ›Ë«kZ4Ëf3¬ä“¥Øyii™ÑG£7j¬Ò[úzó…6ÆR¡œ·j¼,?_­þ>›Ñ›Å>&¹Ôފª:P-´Øb‡¾Ä¢Ê…WFóf=¿J¡ß\,³.³yF·¢^ºàXië’æófëâ*»ä­7¤C½F~fCjõDî༬ÝMäö=ÝM·¦V¹»W¯I8Ú˪âßH„žð|¸ý6¢VȒcý®txzMÚì)xU©ï’w6°æ)¿¯UØnź’tsˆ¾˜"T’ƒ#ç»WpœÃ‡?7´³æQ’@Ȁä7ƪ˜‡•Î›#甚Šœ´*—.£¯VáàŸ
)~[„œÙeFœS!såx	ۂC
+YàP5â=`2NÌÑN8·7¶`.„k
ã»I:ˆ(Æd*}>VÑfú¹=¦	؛Pdå· l¤2ñ³A‚½4\Ô³¦¶Và})ü‘7'sHÏyuL܆¼ؼ4`¦	¬ô£©1’?àƒ
+÷>
|Û¤ÊlU£Ö#¶×ÃM£<ۅìö£®P5­¼ÀgÖ \\f±”¸Ü
9`¬e^
+­\(BBZæ>ê‡Ô’ÕÁÚXû%]H[PÄ&O‹szªI¥7V Ô¡­`%d‡„”#„-
µ-¼C‰¥5a[’Ñ’6
+%’xª¥ÎØ4½k9íQp7éU-ô½>,”çΣt¡PHATÑ£
uU}™(ýàC…y^ ©*³¡Àµ&ù$êÝ¿)¦cú8R“jš©ÈhU‚³Ö_)Ð!w³ãru´–2*£GCй©ktLFåø0×h;´'BŽ­Lyr^äŽûì3UÉ%ztl9	”Ž¦á6¡Â.Õ4ŠX&GdƒŒ>9Ǎ;vsNº$Gkɓ€ÂàbÖÌ!|Õd‚ì\î|”`87s*ïwûb¹fO+‘I<°éç½kÁ2UÈùϐä›y6k±Ì2d“s.£\[­v;ƒý+¢ý¥m«Cƒ¿¹2¨÷4Ý­h—8ûX€ÒûCÁ5½Ä\›˜Ñsãó8+ÚHÔv֓ØŽ)ìþÛ6	uÔ<œw-TõÜò%)7çEºÆô¬‹·ڐzž› }.Ò攗½ð^Õr$ü‰Ý8èž\z\;ˆ—_ûŒÕ¸å9Äз#«BGÄ9=Oøü8ESà±°¹EÉVŠ5ŽSôöðëŀ°v¿ ù
ëÝ‹xQ↍²3{¯˜½Vî*‘Ç&R§{7(Ã÷ƒG¨ ¾u‚\êÍý@é¼
+…l†äóBü‰¦k¥§(ð)ÐMÛIô[}9po
~<,¾gÕ¶pÓZ¥jåÛM±¯÷Ž—t¾»g}FK^°ÀàÝé&WjÌKÿ4b.[Œ±~6ì¹Âe76ò˜ä¢®lDÖo:PìÅs=.x)¤îÞ³…r.pY´ÌðZS¨Í҈—´`®±b‹~Kb³˜Kª·{9ö’Ö¢Ó|2Š¹<”¦Æ|¶1ÚX.©—w®Ä5üxª)—€ë{rċԏÝ{Ž[¢DQm|ÑíñbE¡B:òR¯¹ÒŽF¼Æ¹°>#^ö¥”Ü(#¤Î¢Õa‡è>ݱuÄ.ã6N¹–ݽ°ºõÚ®Å\šfÔ¸©ožrÝÍ¥½cð'¸ã4ç‹uSùøNáWüA€nÀÿåy¶6{†ÕkŽ]Ð	¥†AûRáêÑU2¿î>Ò..ÓGÚÿû†¤—|7.¯–ÙÕå5>X1ã×úÓê쏳%œ’Ëendstream
+endobj
+1170 0 obj<</Type/Page/Parent 1099 0 R/Contents 1171 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 524 0 R>>endobj
+1171 0 obj<</Filter/FlateDecode/Length 1651      >>stream
+x
ÕXmoÛ6þž_qÀ0Ôb9vœ8)°)²–¡[¼o6Z¢,¶’¨’”ï×ï9R²d9)¼¶	ëx¼—çîžÓç³)]à{J‹]^S\œ]DøwzÍi~³Àß3üI)?€(ÿšò¯_<›_GSºšC  éÕEtþÉéñìÍòlòvE´L¡ÿúfAËğ¾ e<²;ëdA•°v«MB‰pb%¬¤£ï–q”mࣣ‰tñÄË%áI«ttNωÚL$z{’èÚèºH~øŽ¶Êeä2I…Nê\^rAãée4ƒ3£J¿ÛbŶEVôÐ6SqFµ•ÖëzÅJtn†§±.PexP±ÑV§Žîç$ËØì*'“}Œø‚Þ홰™´-3e;½øÛ:mpL•$áˆ4GQª­™ä:ùIJQ“ʨprÒø²=Šó‹ð¹	J^<LÚ°-‡:BVýÉ(yùbJd%ËD•kÒeÆA$TQ岐¥SKqáN׆~+ÕÓä'UÖOàÆÁ’CK¾œÅ
BX+£7*A`W;
+ÉÜHcqáÀšY4CQÀ†15½s‹’V’b]T*l%c•îØ3ä(窅<ÇŒÁqÏ´ ±‡>éŠ}µ@™,ÉÔeɚ¼Y¯lm¨À-UëÚ4÷uÚllTå"z³ 	C‹Ï&ò‡ZûàÚbvNVJŸ³DÇu—`aïñ36Zd.–(ø}m
Õ'ÊÈߑN;LP8H‰²Î¨UÍá‰Z›oCÏæèj¨Üo¾}÷0Fc
ÐEtã?÷Á3ä*„ªÒæqËé\¯Uù
+Š},û**EfÒû2òs
’ö£ž£h"TêDæb7TǺ.]{íø+” 1\ÿ™’}ÃnԜnIŒg×n®ÆTç¹Þ2zQcÞ/D_ §â:†Ž;‘©¨s”›FË𭀻o‹v´ïj›¬Ž{÷¿„ßî¾71žäj5±2®r;_&Tֈä§Aæ ‰±xN'êöZZÕm=\¨íy÷ u¢žÆÅ"¹
+InÊ1ì]Æä“àaÚ:°/LR´gôÑB$x¤yh{‰ýLëæ«Ü@Ž'ȊŠÉ§´GC¸â1ŒTì{GD5xF{J9OHä¨v'+dìšÃ£fmDA¢Lhë¥]V[A¥°ÜàÂÎÌ6„¨$¯<ÎD¹F¯©m3h7ü¿€ÞøyR›<Aÿ-\;HøˆGÑ÷Ó
+|)âO_@ýÏÚÉ×¾zÄ0#ñ'Fæ!:©Œe0I0ô`ÌJcV¬¸P´‡Ì!!X1i•ž&öØSw]†Þ0'—d¯Á§µGx)Ÿ\뙶
ß[Ñû\ò`d
+Úڜ8d¨”
ú=Õëͅf³x†&vçê×ÂxRÉ×&†ZŽE%V*ÇäeG¤xy•Ÿ!=Oe¹QF—ÌiPÞºÍ0â;÷D§d ÞӐ¯–ô
+Å©9ž@mˆ\&\¨{_þ×¹lj¾%y~Ä¥DÆ0ֈœRP™—yðKÖH—鄸QZvÌw‡†¶
І(½̸eìÜ(y²Ãµ÷…R­f‘
+„qž²ÑH-Ä^Ž¶F2…\¥Ü“Jç„&ìïý{”B|â•Ë —ušZðPÍû:펶,Š‡ð»ßÂ(­
 a(“y•Ö°££ÃM˼¥)ZÞlǗ
©œƒøÓ}K?ÑuïAH~D-¢=ÖÕNöcmB`¤È՟àIF°¸
%#ûÄJ•
IOÿÖ^s¬é600èJŽV?žA‡²½:0vWƇ~°Àƒ÷ó‡ƒ×fM#ʜ«^O&þ`ä‡g¤Ízr(ßŃýà#‰F±Ê•Í¸Ì|;kïàR`ڝw;À:1ÙMx™pðÒÁ£“·´v*CÎ/zBîFrý:T9Œ[©™Ò(LŒiQUy3ñ›ÜûÔ½,Æð,övóM™Øð¼oé,̯PMpJ$€ŽX¿0â&.N93´¦îUÁ]ìÝ·;QÈÆM³IN¯ñç撮o§añy¼{xsGïþˆŠîû‹Ÿ·Ƌ^Ó$£0=_Ì£Åõ
*
ò³[VóÃò엳¿ê~¿¤endstream
+endobj
+1172 0 obj<</Type/Page/Parent 1099 0 R/Contents 1173 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 529 0 R>>endobj
+1173 0 obj<</Filter/FlateDecode/Length 775       >>stream
+x
TMÛ6½ûWÌ­^ R¬•¼)zðf›ž¶Hk
¹ì…–FŠtIj]ÿû>JvVë
ŠÀ° j¾Þ¼yÃ	­ðK¨L)+¨î«xEEYÄ)åëï)þ–©
¸†Gÿ±HŠ,ΩHs¸ô”À½8ŸmósOéê.ÎfÖùÖbßÍ­E—t›çñ™³UŠ:Ó)džŸa½ž¹uv†™_YggXËòUæà›¯Ó·ÍßW‹÷ŸrJªZðU¬Kªš‘UõrËöYÖLOËÍÃö醤&g¨–„{ÍP{i4™–Ž²a–iöGc¿‘|ÇÚËZŒ>ފ¶•u|S}EÉ;JP)”Œ²P«f™ÇYLŸ7ôÑèVî;Ņ’ý.®ñq
+}A¥a2­:Æ(¥#
,‡±Ü,Œj¡7!újÖvOK2;>ÑAôèÇy+ǎÜkç1,8DŽRÔ¥ÌQê}(ÙZÓ:%£#%5SÇꋏrÊCQ’z}
·ý²©~«P”_ÀmE¿Pg’‡®LÞk±S<Rä†ÃÁX¹È˜cšˆ€Ç1.£è(}¡§ÉpalùtónD…v­èÙ³Åܔ
+e¼5êçöØ1ú²„V´ñg`®3ƒj&Ò0¬_Ày]›A{pߐcç‚ z¡Åž{ŒŸiœ>³›Èk¸ƒò´ãN<Kc¯Š¢i´:¸©Ï@c­zóü/J¼–”Ñê4–E„Ükš„Æ—3 ľÅӟƃÎNø«ÊñBÅɝӹ‘ìâª2ÔF^à4£.¤,Öµ=<Øv+Ñ8úNüÿÚÂ9hx1lGošA1¤!t˜ÊE	#œ.]ïù=¤|0à®p÷\wBK×cK¹á&,tˆ< h¿7ó¢ØíãýwüPàØ&<®1–÷"݇iª&ÁÝ^”øãå
ÚLžë³gRàN^g”¦áZn7÷úlÍWh‡L=-Bˆ‹.îQ™âžúÙ»#/ó¸,Ö¸t’­B¦ß«Å_‹ÿ]®ÌFendstream
+endobj
+1174 0 obj<</Type/Page/Parent 1099 0 R/Contents 1175 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F1 4 0 R/F2 5 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 536 0 R>>endobj
+1175 0 obj<</Filter/FlateDecode/Length 1435      >>stream
+x
­W]ÚF}çW\)%x1ß)•v“Òä!ªÚ¥ŠªÒ‡±=À$ö±!üûž;cp’ª+••@öܹßçÜ»÷bá/¦Å˜&sJ‹Þ(á
ÅüõÛÏü†f³8šSAÓI4­rzê]=Çq4»:/&QLÓÅW
+šŒæí_½~Æét-jÙpºŒ–4ÝGc¾;]BGxò§WÏ8]Æ7§ëÞÝêžÆ#ZoÛ|±¤uæC›´ÿf/¥´4‹èq¥Ò;ôA¥Ö8³-é­r¥UIUʌV*—/ןz#Ž§PÒ:»RTZ)ÉhzE"X€íŋ`o8™ÂiÏ¢8¢÷ꪴTF» 9E¢jÉñI…äz/¿²Kµ­MßXz»u›—t°æ¨2éào!…vd¶ääAXá£(¡%7;•ŠœŽJžøx‹ ¯3ʔ•ii¬’Þ„O‚Ÿå^”T9i´IÚZƒ¡K¤eU‡ýÙy¹Iaq°b8IV:SÙ&
¾£ey2ö3â.Iä¹99ÚÂÿ½Úí¥­SÙØG¡r‘¨\•ç
¹Âh°äà¤ØI’_ˆöˆJd”ˆ\è”Ë%Ë4¢ÔÆJR
+ï‰ÄT(áÖ
àÚÊJãÞö´Ý¡-Úð/¥ÏLZR—^×í=ÜëGuã9zΗN9j.²Ï¹PÈÐޜ`?y`‡Úžô»V_¨é^iI›>çCqˆ&Í<€¸¡Ä"}u¯¢î$Ï·ÞWÎ’Z$¹¤§ÃD8ôðÛՓ/¿0 Ôè­ÚUœ·’NªÜû²±ò»Õ¸îÌþpÈ'ÃÂeÛNÓöɸ"úE§’’Jåå¶H¸J,:ꈤBS"p†–ò©¨’3ú­l[w—”˜cr47ÝæßsòådHnëㅷšZÝ­¨õ‰ARH†½
+"Éy,ö]‘Dœšðº¹w)¢?LE ÚiQr4nÏ5ŒH®±E‡jù¬†Ó\åsÂòyU·)ø×°"zh=ð×.ýÝÿÜ2–Ïœóò¹ÒŸ]“Ƒç”s‘˜\¥N=?ŒÒ%we
R_[`(¿ˆâKôAÇ´»Vä+z·jSþ©Òž‡?úˆ_Õ¸7Ÿ·ø¶ýÆɐÔKP`)¤€aE
µ
6¶ù¸—š:8%ýà#)ˆ,(j”øX÷™¸ÒVÃÀRÁ&¶jÈ€ö¦º,›ÚàÓ
tó²ñµ!ŽƒgŒ§U-bV
x­~#+ôŽ¹Ñ³÷G¥3¦Þû»9F]洛?ð`eùâ…YÐXê~næ\oÀ•íuq!ï›16
\ø‚Öœ‘J~ö¼j:b„qºü3 ü¯Îkª?‰2Ž4ÀJ¯ééáÃãÃwD=µ¬DÏíXó¦Â¦²­ûžƒñ½¦;ðµ±å$ºß±t
äÅ΅[À“yî} –ŽÖvòžé„ìH0ā05	V„u`՝¦ìØ9°Ø4
+{ý"œÆ5•M°HÍ0ߐ4ûV„Eà û_µa¦é@qoÝ{®ÖÂd´˜ÍþOWsMCG7´òà‘Çtýà“^¯m
=Ïéý­úAɛö…7—„5ƒ¥kŽçŠÛ›*Ϛan9H[(Ç+PXá,i{…öñØUgý"{áA?‹\•ò€Ç~gt~f®FZ;ȲzûãIZ‰Ñ6À”Ë1.É/Y™Úž=Ù$ø©€“;CÚ@È×ó‡.Éæ>èªc[¡´L‡øÛS®
+v.¶oĀÍI±Åð~Mâhø֞}„`?Î
ßÇ2S$
+£Øg—vbåó֗š­–—­{2ap<ó߀fo(±]x¦‹i´˜/â&~jý´îýÚûþ
+=endstream
+endobj
+1176 0 obj<</Type/Page/Parent 1099 0 R/Contents 1177 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>>>endobj
+1177 0 obj<</Filter/FlateDecode/Length 683       >>stream
+x
u”AoÛ0…ïù¼-j7¶³Ø=¶ërÛ°¡vÉE‘˜Zm,y’\Ãÿ~O¶ÓmA— €a‰äãÇÇüZd´Â7£2§bC²Y¬Òmò"]Óº*ñœã瘎ãÁÇ,Oó˃ûÝâf»¦,£Ý¹6UI;EȳZÑN.·ÚˆÓi ρº–BÍä‡æ`OZÒI›OÁRkµ	ñ!½u/äkáØÓ`;ê…	×$Œ"„ô(šƒH¯vϋ%ùjwjùóód
=}"z“<i6Á“†Œíéàlïy¬‚KsˆUǔPé^ّ´ÇÇÇ2û½:ú”î¤dïµyšTϵ³@P;v"Ⱥñð@ûe_kY“h[HçIiÇ2X§ÑÑÜç$nEA¼àm7ʟî×|	œm
Ü& “à
3´‘ÉÍö–2 ‰ãHŠl¢ó1Íð¥¯6°±f†Á'yÚò§6
+€Þ°f…8X„*ÒGÔ:~Õ¶óÐÙØÎÄ÷ƚ &‘¤=5B1®Æw¡Ϋ–|¡´½]Ô
ä{1Ä`…#œUŒI÷sâ聼HÃ/Û9ýܸœ}˜”i•Ñy:û|SÒ¿MçoÖùÔ9£Dì5;þàQÞNË GÞpDãÇþ†&›Œh04_ÛN¶g'…çwÕ`Ôò¿RÎZ·àäYvN‡Úεֳ¿žz=4€,8¾Š&¼ÇñùálëYY-^añÞs­Û¸BhÙ5ƶÝ`G}\Btk
h(öúÉÀ{j¶g\¤Æ*}I]n²žVéìõá]çFÿ"QÍSˊ*­nʪ"­"­Ç»/÷wôÍÙg,=XÙ5“ˆ3‰m$ÙÿQUAI™t/M¾.×i¹©°HVä1æónñ}ñÆ⊇endstream
+endobj
+1178 0 obj<</Type/Page/Parent 1099 0 R/Contents 1179 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F5 8 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 539 0 R>>endobj
+1179 0 obj<</Filter/FlateDecode/Length 1723      >>stream
+x
•WMoÛ8½ûWrrDñ×ÚéÞÒ é(Ònã¶{ȅ–h‹[ŠTI)^ÿû}CJ–¬$,Š±EÍç{o†¿FSšàߔV3š/)-F“d‚_øcÊ_?ŽfËUòžï§É’
+š]­’UóMÓã¨ÿ½ ùt‘L{Oûßñt¹<Zâwá†Ë+Ø]Àê„føï$mÃù
|X.ïÞÓlBë-â^®®h…pñK:¾ÉEYIG˄¾=ÜÿE_¤+”÷Êú *OÂdôC™Ìî==¬ß­ÿMèb¶€ñušJïéƚÊYMŸ”¯<`wÓUtw1_$3>¼L¦	}Wr¯Ì.Msavü%¸-n=՞®rÙs8I‚K/ÓÚ©ê@™ÚîwšNw³JwrOÊ#¢Ø.L8©¥ð’”ÄFi¶¶µ®—$¥ZIƒÜ+‹X$ŸTŽŒ¨Ô³¤c^Vâ! $ÓyÌ3Fû¿þŒ„C¶…ÍÔöœÖ&“N^K=i뻌é>؊݋
+¹
¦ÂÉm­ÉX<³”Ú¢tÑvAÚmpJœ[_Q,¸ÚÁšó ¯”֍û6»‘xÕ:Ù*-©ë,hÉeDt¢±+²BÀÀ‰
+M…A$Õ0©{ӜŽ-a€‰Ei¹ã™ÜŠZWô,t-©	¿N’Q<¥›ÛÑåݬAÀ˜¢I5ùº,­«NÏŽ†ó-bƔO)
<ʌ¶¨#¿vy>·°j+²ÚËø´3úŸ¾0®\=<uNÞR!Œ*k
$^H®«¦¬Ax¶
Âc%Bõ†Œ
+\X&³„þ°û#ÎBƒŽø„•¶->ZN£f7T¹C€ÈFÈG?Â:´¼À×ô'íU•‡þ8µË+*,óbSWç
Gbx ë™r2EûÌ¿6¼`*™q}®8f”‘ÐZ¼úíá†JQå	ýÈÑÆC!MM¥-ýE]žslñ(æ³<6þ‹³(g¥ä@Æ.#š@"mtÑ"‹Í·øl{¼fªms›ê2Da¬+„Ž)‚gŸF„˜ëç\ŒX¥¾ÜÖîA,À™
+2ƒJlÀ)%nP‘Ê–‰ûKuy×¥÷Ø(ßiÇ	Ýt5AÜÁ8u°5c/™XŸ±]þüEá:éqôºÎ‹Þð+ÈÐì网Îçª~Yî­|ÃM¸W*‚¸v€^éT` ‰¤k(ý¯Zz`ŽJ Øį¨ëe.uÆc|E´ƒBeš¢,¥p¤¢~ÂþŽoó[ Êu_êν¢ÅÃ>WiÎÇ0±Ï˜¡PQPž¼ždC^ˆ¦Ì!	Ð	(ÓHD¢Â ÜEـ–½^B
ÓÍh
+y˜‹mmRÖ!1TýÀõ–¸A:"wð^¥
+‰q½X£<yEl³÷Øîߎ¼¼Žé]Þu‚ÙGè#73Ý!E˜kªDC4…Ûß‚͸6ÿ¥ónۈÊô:{:ˆGâkyœ
}6@t‹ËN3ŽPk€ÔšÍJæ–ìÞÄî ~&t”ñä)¾Hdä܌Cl+ý~ZgΣYÎo¿~¿ýúôPû4þÄRÃvžÞ
"ï½ÁÅm‡i44̖qÀÕ‡ûϏÁrYÔ>téYºó¡5ç
[!Ґja	¿îó!5õã¾Æåe÷IÎo¸Ì¤O*ãNW±Ú“ÊBliü7gØÔ/Š?À¹Å˚­’­öäâãí
J±U¬,ýJáýÞºŒ2
eÆæùôîD±_°åFۗFÃZ7%4!Ò¹•Ó¶û÷Q±NW¦Þ‚ôr?ê3f±±1ÅbÙÚhüúâÓNéŽaG¬ú}j¥zÙu¿•†^ùÎn
˜ƒ5rÐñ0;Ð$ÖÓZü”ôùuv[j¥&
+S9ƕ/ô:p§UlêrÂ!œu^ê-=ÃúÑ(„Š»e·ø™ò¥бv°ðr®〫f	àâ8°šõð¨åðX¶nG¶iÖÊM(@¯v
•+ÔøëßgÂî¸
+ÇËÛ<ɵ)Øó»I	cljk*¶8¾>„] çV<¥Å†w>ž1Ü؛niqֆ2õ!Ɖ't+/.M5C°
ÌÃdçË&Ø
‹2ÞqøÂo	§¸Ø6ŽSm&K¤rS[Låam»=KÂ6oÔ³Ð1®$¦_3r®º«Áœ/ã¸qÞü¯‹4½uy^¬Éjy…›:lÎçœÛízôçè_+Óéendstream
+endobj
+1180 0 obj<</Type/Page/Parent 1099 0 R/Contents 1181 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F5 8 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1181 0 obj<</Filter/FlateDecode/Length 1807      >>stream
+x
•XßSÛ8~ç¯ØÉîLÒ@ïå(ÜpÓR®äÚ{àE±e¢b[>I&¤ý}+ÙñÐÞݔ2’W»ß~ûí*ïMéÿ¦tzL'sŠó½£ÉÍOæ“9ÍÎNñ|ŒÿFRêfG'øøÊÂôí»ÉÙpáb±wx=£é”)™ŸÒ"!ptD‹8Z¬$+K¢ ÛÅ+½.(Öy.Š„ÜJ8Z«,£µ6Oxr+ºùR`wB"ËôšUVš°vžäªPÖá´¡Ò¨g•ÉGùfñm'“cœź(dì$ìk¼"ÂɌ`éƄ%£µãõx%ŠG	O$Á3iìJ•¤SJaْ.h©á” LÇ"C×÷aicÌI›ÁÙFæÚIÊuU°~?\
>$pXNh±ŒÈ³P™Xf’ý)…q|.a“‡×ó҈îeœ©eøktÄ`ZWF¹
aÙ³¡5>9	Ÿ7·~Gò
g™²ˆ)œS{µ"wœIÎ=¹PE½'u%Yåä$xñŽ¦È2§ûàdX
ú|2›Ð%תxô
J”A"4<+¥É•µJ¶LŸ‚‡0
ªà\eZVÎÁM`´…ãíŽÑ]kkÔ7ÕoNè2Sñ»3°iiiðÉRU"—‰™~Df_°Z;8Ñõy6u<÷¬Äúóöæ¯@—J¦K/bNsM)Ž#Q¶ÌÄ”¦l"Õ&§_‚ûMlŒpd,F÷WŸ¿\}~xðäˆ>hÄRˆ\>¼ÄÜy髯µ`ó¸Á+â ¥[é.n>Ý{ËM(«¡RÆ4°ÆîüÀ–÷”]ly”Bñ®4¿ÔAµæ“ë©ö¡Ü'õbþÁ‘‰´±Q¥CYTó­Y8•nø™q®ñ+7ôdÜ+œ’0ðé·«K@‘*™%½Ja-ô)¡D8±9ðuÐAþÆ.1âwP˜A0…#gd«²Ôƽ•^Â
+¤Ú«i”ŠÌÖrÐ>¢ª)ä9Ç¢4t	¼¼BN8t(D›®Ç]A7ºFE[žw¹ïeº{̏®+h÷¥.œÑÙhÊ>t-d{Ő¨4…4ÎgÆiõÇ7Ò¡¤“Õt³“B¾á‡·È&CÐ9cQÖÓV^ªŒu­‚¡Î‚‚M[›NèšMÞµÓO眜+ëÀ[
bl™~øhtU‚-àY²¸ûF'ÑôŒ‘¶ÔEÂÜ)’јF¬Ù’ää?‰'XDç@\¹(KÈÉrSK´*|·s+#%ÉLæ@•)p~ù!4OÆlßìi_ìÕþË>-•³-oÛ(ö‡ÉàAæ|ü!èÎZ×ÍÆ4=fzé)y¨º¯³áfþhŒæ± DÎ!¡£ùÆÙ;¸Þ‘
¹ñ¾u|õ­Þc°õ¢#N=S=
+¡²üÓw;êÔY[§
+sˆ?âÕ7Â<±=½¡"ò/2UÐ;¡l¾4^y§žÛ¥-CÛ ‡åzÎ<(6akkS’èbß1O <5a€Ct྅°Å’êÖÞd3ªI>Lá¼Q˜ÁvT(W‡×{)ôf5Pöê38…%¢@^*¯úA’Ýêeidª^Z2±ÌïFqL`d ó8–ÖîøYwt€Qkçäދ
+£.O+.\t?z†—°ˆU螋~ú…gÌaáÇCW™¨	íۚgO¡ô¨Ê~€Ð¯tƒ‘Ï$è,ÌõOñ
+‹»h,
¹†4+ïa#F»È´Hšî²“Ç…xjǧf¦ÞAuI8(†=IÑz¥À¡ˆ\ŠÂwóÂÓñáwÊHîž(Aæ_5H[?˜Aø€v%ž›yàv±ãö§ß ŠLûzT_Ãî-Ð`pŽue,:F5<áfãp5ÐOH9>ú.Sã>xÓaá„>jVépðw
¦i®ñœŒt¬”oè˜Mó}„ð
+RøóFv<¡÷Ûáûî_»Y³ݖ'æpWÛ^vȆÛ`Dàk
ž×m;ˆP酵@¾Ùò2cÖYÅ0<@„ƒf2ø½a²išÿðZ™¥cÐ(à§)趫7ó47÷íyhìZ„S¯‡
p'÷Ÿ¿’ßi(hë6YscûID£›ó}¯ÓI¾ˆ˜çŽÏòXÌ‹¯sEÿÃè2ÞÎ;¸/Q}¡k÷¨:ºÆþPt8¸%bæh i¡í&¥.;D‘mÉ[›ö£»7ˆ
‹êm
+H¿’Ò¤UÛ	FdxÔc‡¿qò²ØÀÊ_xw|ì͝r­+LYµÝºÎêÑy:Ç×g'õ×ÑýùNjsº3úz*½×qÅã‘p¨3vô Ù~pzŒo-þïmvv:›œÎÏpÆ«'3¶xµØûcïf…~dendstream
+endobj
+1182 0 obj<</Type/Page/Parent 1099 0 R/Contents 1183 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1183 0 obj<</Filter/FlateDecode/Length 1511      >>stream
+x
•WÁrã6½ç+0>yg'¶;í-Û4ӝí&mãN{ȅ–(‹‰Ô’Rÿ}(ÚR¨äÐىGk‘Àððÿ8™ÓþÍi½ åŠ’òäbvA«ÕŸ—×k|.ðg%eþÅb9Ÿ]Æ/>oNÎï.i>§M[«ë5mR‚‹Ú$ÓGQn¹½®s锓ŽøA’Ò¹´ª–)UҖÊ9e´£ÌXºßÐv§ucµÒ;Ž„æoo~ù/Óß÷_þÜ¢Ò¤òÓæûɝ͗³ÜOë\Ô$H˖2UHJ¬ì†;@FÔrärðZÓ)\&R½ÈÛ:¿û‰æˆ„C:[^"lX]Í®fôͤ*Û30o€S…›µ±û
(×éór¶XÏVl$º/tú¾
:„îTY!<%¹Ð;öË9H•«
+±Ò§8*~)
+³£­y=òÂޒB%ÏÁN‡ò*ToJ_ßâžÒ¶©k£gô›i勴§ì㬪Tµ¨}áBÂ'-².S”ÙÐçZ>i²SÔ0%Q8!Rº–V$•VÕ¹ÀÕ8.lªÕS„Jយ)žªŠÃ0Ý><’¨k«€Ö3Õg‚}Iä¶ÏRƒ„| IL£k_v{±êŠý%óH*aE)‘ºÌ,¹Ò XRkªÊØ:NSKÖì¿{ƒ&ó
2̀ǃé›fʎ4bÚs²¬ü=¾îdÒ IÞ‹ZU”	UD!ùä	ÝùëK:¹IéÝJ­d:‰–x'véÑo@£LY(¹çŠ!mj´-÷/²ÄcGéØ|GŸ3„¶Fk
+¶Q:fŒC!B¥¡7HÿÓTÕݝ™‰B•Ö¢ïtXAaøV–Œ¸²&‘i&"$Ä`¥*å H¾"͵ŒSóôiFֈR
+H“{o˜Ñdt±0•B«ª) 3œBá¬G8¾ó5MuÞ•é¹ì|fÔ¶Á1Ú¢
æ=ôɂô?è%µ²ˆ+q€Kˆ*÷;gxoyð^76sáÞ¡¼\#4kÏÓT¢/Ñ
Ë)ù`N	ð
=}bRp²_JfMé!ê;7Ä	)ï*Ê ëßÕÔòžFu}øW)c¨,¸ÌéÜaù©ª¬gùœh3ˆÍM$ÔgÅ©TÎ-G¨< …I‚§¡;"ÙFå1|§‚–ðýûÍ8¦QHY!vLG©t	DM¦&±E²$)
+Ó:îÕ.}Ë°­Hžý÷ïL+£éïåMv¨ P–]Eä5Ð!1ee4"ŒésãºÑ$Ñu4ä¨'vrJ“vâÛnò:¡­ªñ:Ãÿƒzœ‘Áy¿µo ì®Irä%Â5¹•š…€tÃW	O|˜óuÕ'ÔN‹7žd‚2„mEZŒº8¼ØT¹f=Òw}X8`€7PÖpD9<iëx
h¿"I×5Ô6֗Tf¢)0t¥ýhà ÀzãÀ4–ii>"ñ„ö[šƒ…®å×L”V@™ø¡l ÂNrÉ4y§áþ’X3’xzBôòbÎYñ`FtöÖÑܝ;ö?Æ2>heØHÆ­1j÷¸(]Ë"~‡ÅÁcæo’îUIŒµøHåŽ&>#bOAîrµËü§Ý`Áìoò$ñ
|?ÖÅQJº±èEÔ¯	 Loqx
÷méÙTÉ+Ý(=,1Q/<´ó4WÕÈe_3z¿>vÝt~7XFwAÉc2dêkðÁ‚¼éúÎó’óBÑB×íã~™
,xîc=>î[oÐ÷<Ö=ÕýÊÓõ,/Wì
+|b
ÈLÛhK½A&Ú²¶¦ÀAôÄ`÷d1=LП»D6½ÁVtÔ$ÞBÀþ&CNûý’ÃFylÌÁ©ì¼w6X<¿»Ëä|…Ÿh×Kü`»š]sòo¾}¾¡?¬ùñ£[“4%TůèŒöìpál½À³ÿÿƒær}9[¯®ñ›——Wló×Íɟ'ÿ
뤈Cendstream
+endobj
+1184 0 obj<</Type/Page/Parent 1099 0 R/Contents 1185 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F5 8 0 R/F6 9 0 R/F8 11 0 R>>/XObject<<>>>>/Annots 552 0 R>>endobj
+1185 0 obj<</Filter/FlateDecode/Length 1494      >>stream
+x
½XMoÜ6½ûWrñpäý”6zpФŠ4m³Ç\¸åe"‰ŠÈõzûë;3¤$.½vœ¢((æ÷Ìã{3Ãýv1ƒ)þ›A6‡E
+y}1M¦ØCŸ}þúõb9Ç¿ ÍæÉjXfüßµ*øDó!]½NR›§ÉÒ7hh¾^&3X­§Ø[Ãb¾H2ߢѰ£«ôtt5O°šg¼ñb½Z¼6h£IË%­å¹4¶ÉàìdÔYµ\®U³mt-Þ9h£UéÏ
Fƒ6Ž¾NOF	ŠY6Kæè-¢•úmûfsqýn	³lJÄ;]g°)æ)lòÉÇ&— `ody¥ò¯æåæ®Xùxññ·®¯ßeVƒhÛêv'¡•]­ŒQº1ðIÔ[
µh
ݪ;ٜLP
­åó®o;½o¯º«
+:`
+¯ftaSLºëÃõ=ØNµ•#툦 8¨ª‚|'ó¯|B¾Í­,NÎ(u‡G”
+׊[¡cyêVYC›j¸Ígžr®»…ëwóÞu#ó}§ì12®æëéZ&-¯!jE'jie—ÀMs>Üƒì$:àÌ恍¶l¢s9»t&*Ã.@“*YZ•ndï9™\Gâ‡Xë[cdc•¨ªãü-;íÌ
+ð8ã=Þ¦ów¤Ñ„ûðƒ~I¼&),^0ˆ:á«ËÞ]鈥<©—LÃ	¹K¶…[¢Uú€ÛX9ä°r ×J‚Ãî´¡ïp
+bÓïáŽx_HËûù®,³øjlx´·Ák„;Qí‘MŽÕlßSÄÉ‘
8¦ÇøyŒ(t`Ûé;UÄWšëºVmU…lD؝Ú<¡wإ쎜´è
€Rä~Zêët±Ïe‘ÀuHpõê€{­UiҀq(Ùà,ºñŠ»rб-½ȱi†Á0¢ãïòÞzGXÐÝ^£+þ+Eã>îz]zè .󡒃¨4ˆñû’Îu×IÓjŠZ^ežR«›só9èÅp¨÷\0Äûˆ£¡Þož¡cYÖDÊtQÍíi@„A˜;ŠÕA]aÔ¸ÔÍeìáÿ£N‡M¯ÑgP`„á*ñŠ…gj4L—?*Ñ}$Ö¿’¨ d(¦ØÜræfz>”ít_Òc"Y°mԙTA™;šÿ#ìDê`p£jCqràXäb:ðm>¸d(8£rÕ]Ù׃֧Àw\ª“¹ÕÝч.*0à aõô5ö`Ø¥º\H“wjK‰n«ïd“ä}.[‹¹Ž¤€´.jTZ„Œv<	!•0R”X£žZæ2f´ÀA?œY:nçeq>`<nÏ3n6¾‘3|Ìãʹ"dÄu{Äë)žB.A†âÏùäPw8*Bâéó|5ßFn`ý“p>i}d׃B$ð%>¾Ooç/ÃǏƮȖ1C/’ù…½ßS
Ž…)ÁP6l¼«‚}OB”+–±Ò(jÕ(Œ]%¹hh¬:©qï³Ã˜AKU&Ž
+ÆÒ‚+R+=|ðÔ!”i‚ó9ÍRÁÅ52VïA1‘1{õj¸v$›ö-•Äd
:Œ«ùXã-÷ô’ÑT’UÂÆlzÎt»UÇïHMüfꙬ$B¡¥i.-Å)zâáõbU¾¯Dçës¬L¸Òàd|Eû;(éüRSqH
2£ú‘&ñm%?Ö¹¦Å7¨e9Sot±ü<Y}~yºîa©5qo¶j‡›ie®J•“˜(ÃO´ÍÈzø=­Æè…i~æš3bžcœˆº¤‰Ñ¬Êc àïlynI°ù(ÁÀޛ ©\¶Ž½®¨§;÷^¯=ij4K¦ëþòÁ§Ý§›onàNA˜àïk|êqö"ç^õ^es|÷“4Y%ð+|ºc~,£˜F7Fðãm™á/éAÀŋ”ö|»¹øóâ-l¡endstream
+endobj
+1186 0 obj<</Type/Page/Parent 1099 0 R/Contents 1187 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F2 5 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1187 0 obj<</Filter/FlateDecode/Length 827       >>stream
+x
•OÓ0Åïý£žºÒ6ýKÓ=î²TB´Ep؋븍ÙÄ.¶³U¿=Ïv҇EU¥¦¶gÞüæós0£)>3Jç´X/ÓdJoÒi²¢å:Åï9¾FÐ>,,æ7ɺ¿p·L6sšÍh»G¬Õ:¥mFˆ3Ò–¸Ì	*™}¾ÚþLi<_%Klíµá‚šu‰Þz&àN›ó¿w¶Ôç'›e+¥Ít(¡²"#©¬,#½'—:2ÃJᄱ”IË+ë÷ä؝x-“Í
ÍP/k¼XFÕ«$Mè½ÂƝԊNÒå!˜uLeÌdôÈÊ£½,1çŒÜU®­m£”ìx”ê³t§ 61vY²ºÞû‡Çß!i'¥§‘­xNÌÒ¤Q™*Îç+TêtõõÓûït¦”ÖB¯õ±¢º„¶¹´5õÙ"™ûÌ¥`Ø8@ƙ¢Š ®Õ¾Üáɝ„P^3*±Âыd‘…à•‘î¬¬Ð™¿éåövç°ñ’x…¶t,ô ˜?!mPks}¢êHx”M™”ŽÒ@FŒsa-Á€!—>)aH:´²(¨	qI<{b½ږ_Ê?¶ÛÁJ±ú„¾*är•Â$µÚ„†@°!Z'ðÀœÇí¬—j”½ô!!
+dµo–ÏاóÍÇjÑøÆz.!àø´±rž3u1[×(0+
+ÅÖҊâ{ºü*ûŞ4{ÙükâðÎs0Údó¦Ï
>ýÉß#;"¤<x0þì{-ãv– ”íj¶×µÔ+²`j=…žìؑkŸTѧmí¨ñ*Bƒ»p‰ÈØ&–‰t-"ûÎ
€IvÁ_ð+úö'¶˜ÿé*Ž%5ƒˆ²=®Ât8¼«ÂÏU Û^&¯æÛÁZ{ò¬«ÌDUdp†ÍR.º‹^¾eŠ‹â~†:ý”±0>GþÞ~¡l…«'p„C;þ…×I¿cd–	ü>Ù¬kGÍVxa­´Hoâ%ûxûñî–>ýïº×¼*ËßÚ¾¾qs`œÎñªÊFÿyµ7—“¹L—IºZㅁx‹Ôÿõn;ø2øLŽS\endstream
+endobj
+1188 0 obj<</Type/Page/Parent 1099 0 R/Contents 1189 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F5 8 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 560 0 R>>endobj
+1189 0 obj<</Filter/FlateDecode/Length 1795      >>stream
+x
•WÉrÛ8½ë+úƒ\e‘¢$kÉÍqâ™Ì؎)•Ã8ˆ„DdH‚!HÉÎ×ÏkÐf'5)/%‘D/¯_¿n~ïDÔÇOD“

Çç~ÐÇþñ¿Ot&Q0¡‹þ,SNƒþ4ºoÍ;ÑhŒë£é0ðÝñ,ˆÜ7¾;4¸˜S¾‡gfîÛîÞh†'FÓ	?‡¿JÒª3ŠÆø8ÁRN£ñ§í>ôfÑ	¯a¥O‹âO¦´Hl¸¸w¯RQÖ²¢I@÷•*jU¬iޔ¥®jRÍE¾p4Ï߬¥hÒZêÁŶº“ 
+è}QW:iâZé¢}rDQäžL1ž|#ת(ØÅVÕ)Õ©´¦9‹L
+#ϝ?Ó`ì…¨ÕFÒU$zkènA¥4—q*
+erC*/3™Ë¢–	»ïS/b€át£ÝÎ{Ÿî¯è¡«X«óûnæs*D.*U)ιQº1´‘•A&†ôÊŤ‹ì‰\`8q#Š[QìB9ñ‹,3»8#dtE’(†Hd´j
+‹–ÈTýCz£^>µYË-ùWÔ#ΚDš×lÜëy˾`+]@*2-FÙ…â&¬h¥2	LõËÙE8›†w‹pÐqãL
?CM©Jd.ŠÄ¦^Ç®”½I0eú#™‡ÁxBGxímoî`ÿ\ú(áq €5áêõ2IZ"Ð/ꇨ”ëòþËÃ!+~ø}nÍp:##kvß;¨ôC·’+¯µEþ¸-«5u)­ëòu‚,L!ÝT±lk­Á}7ÛO|Ìh3=ÆÁì§P¼TNÄ1ڑ҆ÂÕ²¤
Å┄¡y-ªú­Žï9RYÓ»¢ÉÿÒKó€xÎIÖq€h.%£c3ޓþvþöTˆn	4**,^ûô¬X¢’›¤rWÚèUÄ:qÜ
BL´\C{Tyë>\M‡ƒŸ5Æåýû‡³—ÀôXýÌ!«)ˆwÈuhÁeKcèJ³þdt£â\Ý0q\ƒ‚zùMƵyÉõÿã3³OoР¾[;XÿÞÈF:F•MÖ¢Q§•nÖ­È5F²@/l-¹ûQ‹%$ÏX,M	J?S®ozyðK±ÿ‚ƒ½Á4ˆfÔóÀ-R‰‚¥ ÖRʂŒÎ¹|P#DëbÕ°à‘Xꦦm*j‚†¡ ÊP.”r€ë%š¿¸
ùþÞ¨ÊÊ/§cY³ç¢©U!+@Kvmjx ìՉlª;ºJlïÀÞ5ɪÒùN6œbtIËf}âV>‚04ÅúHA¡Ár‘ªÏ±ºt<P`J·SÐȊU´Ôeã´7îÓiã¥Öi–Ë= ‰ß•z<)²Ðê"ÆxXUœïò;Uæb.qL™†^œ¤¹´trز¨ƒŽÃ("Ï^¸M
+°U™}œìÂ`6‚,©ÀL¬H>¦j©ÑåӉ_/ã³G?DPFÈ`¤1Sv“=Ñ`<SÇ¥d|„¨“(žh+05Ò¶±]g´³ËOTÏúE*ŸH€ÕM­2õ¡Aí@DLj7F=C\À^ep@e™Þ2F·súû
ìÔ*ÎiŽ@P4¬í‘Tf%©=éÆúJ$ʎSFŸùáµã9¼»¡Ù¥?õÖϤ}WÌ;ÓÚºÓôåàUJVÂîLÞC6gsm?‚1}ŠnÔ9µ:Ñuw5üwº´Mø1šÎÂ(ì_—óûcG^øy‘<\ÿìZ3ÁrÈú»R릲ÚLJÃë—ÿÛc?B`X\1 áÿX¶½úJPûEV¯¾¶Çü6a;ÖÚñùÅbVIL*Œ9^ž a¨x—2+ÚÝnïÀ±›/ƒf"ñ/„Ð*
+ènSÞ×ÇuÄ+,ÕF¡7ãJŠ–ý»’ìùÎÊÈ2æNYó6ˆ$8|Úßn¥ÄN£ƒýEd ¿DcÝݙÚÐ*—[
DW$=»•ŠvòRU s„1[(sçTG9ÇÍÉÇãTËïŽÏVW0XBûέòø¡±[¹Ý~Áí„ð\Dô¢ÌüfÑV¡-îÀ÷ĉc³ß|§CВV¾ì¸(a¸-2†(d÷M)cµj·go›˜•Ì«²]€Ž•­¥{
Ì»€¬Â"t	±â‰÷[ù3¹ËbÖ.÷ÂÍR„•È€[9¾8,CÝ»g$0Ð7ΕϴҶØ÷ý"•Õ]¸æ<à×võë"ðëÁ³È}Ï­ö-%›Id‰¦³òR`RÝd	«:Ÿ>೯ˆXàuÆM%[h4þ5xòò‰zò{ÝZÌ¢ëìûݞ“·Žžé`—nÕz/AûUw¯_Sÿ&ãUixDý!KÌï½	&£`2ž¶/CÃ)ônÑùØùð÷Jendstream
+endobj
+1190 0 obj<</Type/Page/Parent 1099 0 R/Contents 1191 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 572 0 R>>endobj
+1191 0 obj<</Filter/FlateDecode/Length 1873      >>stream
+x
XYoÛF~÷¯
¬-RwÍÑyHzØEZÄyX‘+‰6ÉUvI+úãûÍ,/)JQ9V´ÚÝ9¾ùæ ¿\„4ÂOHóˆÆ3Šó‹Q0Â7üòÛ¿\DQÑl1	f”ÓtLêEF·|šfóq0¦ÉbŽÏ~­¦õE¸–4ÆÕ1_ŠÚ_ê-sZLöÂ0‚‚ñh„¸ÎÐêW|³¿Æîrñ½ÝÞ:§(‹Þî‚EE‹(˜³àpŠM¿Á½5vÇ#¨ïíöÖ¼» ýÝnÝé¬ÕÒ'ÑF†óúršÀ÷E½’ÝÞ»³	¬ógyW§KA~ÂrýBnvK<å{r÷z˜æsÚíõ–0vÁÑnóÕÝiü톮ßâ~Hwkb{F!Â?
¦³Ý%B”Ýŧã25Å󻇞¡$Ȭ©Ü¦ŽW¹.ʀ^¿]R8aÁÃZòpxÆ$æ
LèµÕªL‹
}ÚÙ´(Ÿ}ö‹F¸:çãï
+26іJC®ÚíŒ-¡QSµËŒJXL8“Øô	ÿ­ÓL»+:˜ŠòʕX[¼Ç¦X§›
+,Vr‚ÜVaQ¨\'­b?”ƒcbíTñ‰ÖQ	ãr™	.§ݪ|¥.>–Ú*säŒØ)—qv(ÍÙ~U”t?ðn¶Ø§íSk¹Ó^9H_ècZ$fïèÝwUŽk‹«_˜§4„œµ±§xànÁhÝ?o܋fàÐý¹­©²„r“¤ëCkŒ¶ðÆ嫀aóxA™J9±ÉÌJe´SØÀcGªÀŽ¡˜ÃªåÌÚd™Ùs„8'žyï^l*ëôk`֝`zRYÅÁtU¼%åèr§Êí%qä”]¥¥UÀ••×n¬4êÔ.S1Û§åöD¯Ú
/@ÏFzÑĀ*–\Zêûç?z"ŽhÉfN<VŸ¼ÓBTfÈ		¯Êu¾b$@™R%9h±±¦ÚõLS«‰£û5¶žÀM§Ë6l´¶eª]ãÏÑmkLÉL¿²4NË)N,¤ƒ˜ryæâÑ
zA?Õf×G£…	ö3ôÄq.^WÎ^g&VÙµãD¸®%Ÿ³vƒp–dqíp֝•Õ5#õÝ# YB¦€›ßrƒh1°´9ۖ€„©ÔJ¹b¾´GÜ´NÎuÃpî-øAYêÊˀèõVǏžç`7¹ƒ+uNRž:‡‚)¹™«Ç–øG
s\†Ä6ƒÿ(±*	»ƒ$‹\–²À%
+ÚÞù2{Ö4vP— sˆ
+S…µàÚ·´lXˆÚdH…g¥
—ÿC„ áÍ+f©]gáüq!…Çcˆ´¡¨nCƒNêñѦßtrLw)ì5Os¸eÑWž(ý¤3>‚ðª[…=¯_kÇ%»ë0Õ.Aeh€©{€´ÐM¢-\
+èVK‘;6S+i‹Má¼LïŸSŽØîÔÆËmýoœHÊ
‘(F9ì‡2ükèÚÔPOdwZÄZ«¿T©Õ܂YÜy»®ßN¤éL~cYîDït‘óÛî¶dr$Ku0Wu‡ò›e„z¼©Ð&P‰P‘Ks‚­„ð4iP£,íj\YóWrŠ<Á‘b•®GÆ¥f҈æͤñ²*·†ÛØãcÚùÃelŒfS®oŒ§Hõ
Y¡œ®™WÞÍ^ÿõ®qû9r‹ýTÐüÓ’¶¥Øé!ë¬Åݼ¼4]Ma€Ê˜èûHÝß}S…ô}!ò–³3ãºu€B”,´°”Ûª{#bN@~mŠÒ¢CeŸì™Ù0Ü~N鹈`:“¡ÖØ{ª4Ùâ€U‰BɹƒÞЯm?Q]ŠöÆ>ú.¨‹§ÔšB(ºßj ÈÚh{‰`ƒÈu¥ƒH7kœjÅKfN´µI.ÀŽ+”ëCíAKÏ.…%éúž„aèG¯]ÁŠCk†ÑÕæG“çý|Ê`>×´Wð‚^¡_ý‰¨Ëi*@ÇK”5_fšaLù›ûÕ^gY@ïÑS0
ÕðUfc‡‘Óά•<iÇ2°ªk±5÷Võ
ó3úã†Ð#ÕfÐpø 
²xðm.½kŠ$OKê{)®™C™üÍàɪ0õÇskó*+Óâg)GÀé’DÙx‹Ž—ð L•a¾ž0]µJPðâÒXLEB”:¡Î³Ï’D˜©
LŠÙ1…´Cõ’9U+|凵µµýH)oÆ̞¨ü<à€=ÜsÐQx¾ÀèŒVÓD¨–׌ØôWt÷n,n¬Æ¨mÑDVš{ƒÕŒYõ¸Â@‹•}ý’2ûÔm{H×uðÌÀZ1äWãeoáÉõŸáÇqô×bƟë×
ýÐ+_³øîõ[<ÞÊÃb8Ãc<-.‚ñR#n_¾õ’~³æ

¡7õ³ ô1¾‹Zë¯ç*ÿûp2dz2BåàxÉ÷¾»øýâ_%èendstream
+endobj
+1192 0 obj<</Type/Page/Parent 1099 0 R/Contents 1193 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F5 8 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 575 0 R>>endobj
+1193 0 obj<</Filter/FlateDecode/Length 1936      >>stream
+x
¥XïâFýÎ_Q‡"-+
LîCÄÌ@‚4Ã`“;ݜ"c7ÐÛMÜö°DùãïUwIVJnW;¶»~¼zõª¼¿Ô:ÔÆß
|êö)Ljm¯+ü£Ã?ßÖºƒ;¯K·ß»¥„zþ->í·˜–µêwÜíßzÊ]¢^Oö†üîã_&hS»_ÕZ“6ÝÑjÿý!~‰ŒÛ6­Â¹?¿5œÎzíò+þ“ê?Ê4RMw·­»aýãêçZ›š¶7„êÑ®?zš7:®­hïwÁO£Í¿háy:_žTÃ¢×n·¿xz>8¾:=W‘ÍÌùÖä–:ÆÂ÷=¿Ý¡¦?ðz]Ÿ­VãÙjú2û-Æßš.Ə4/ž§Ë%..9ýÖ¤çŽ7‰¾×îßòÑiJ*‹DF¹¢°È2‘æñ‘‚(¢€Rq (“ïöîQ´’u@;¥óR© µ¡ü€ƒ*d.Uª))tŽâˆò¬_³k¦é÷½»[ía¨Š4§B<eN§"Ìù×·Ï>œ±àg¨»kÓkCzÂÕL©¼4öúÑ&–I¼!ó._ýþ€.!07›®gÐû1­9¢D$k@à löpÕٖZßEÔØg2Íñ|%2½|ڜ3O—EjP,uîý•¤šþÐëܝ¡~Ù .E¦Å‰5b”
y‰¿)•ÎeÓ^i-´æ[üJ062æ秋u$3XP™ÄÕµHEïLà“ƒò?&ɯþëÑB8xò]€*Á[#½2œÆÒ”üC&T6h}¤Hl‚"¶™7+LZ¦¿¤¡ fâŽYâ,gÄñeâ—ñETÆÙ»ÄãAŠœµV¡4_&rCZ&{P>V[DQåàUnlå+´L·%û^*sÜúó:Ÿ[¯ñúñ„þ&S	̔B­èyí–ÿFa,ф½ìEJõ™@ƒeoW±Ì„ÜîÖ¨îN©¨Ž¦úó‘ܳ4”±n_gA¨)a”ÎÍXÆ*<aiS½¹ršïr‹gÊF­Ï-£µçyuxˆ!#ýÅÑ;U@
´`ðI¦Ð† 6ŒfìÐ0®@.fGä᎙†Ë.±D¹Šä)J¬Ræ@V͆ŸlMa•hv;VqäÒ£¥ÈsvþhôL@ƟÑc|±LÄ){FüA)Z_JB¦WØ~Ð'“:p›Ò¦
+\e¦NaÁP¹åäru•5`I<º?õÆ
u©sjm8—ºê4HíÚËfÔ/5ˆf/4_Lg«ñ‚Óð1úa4}Ý?iò² ÕwS3.xF¸žvÏ_bÓðè	TÈ-¡ð‡» ݚ^D0, 4ûôôD:I¶æB«ƒ

+V6™v1 6®èˆ_ƒŒk|ÃlÕò1L]hFy.’½) ü½KL«*ƒö™Ú‹,g±bö'À;îP&g§°¬Ã•wS?H´‰ágG"Ë`7`[;éZ“iæŽyÂ¨äŽCÕiŠÁ…I½ƒ£ˆ<ZÁž#BÙªz/B¹‘€´d
+‚å“2Õ9UD<ƒ¡\z¯T,²«€+é›Ø/ý=*£¢‡sà9“&-Fªß\Ö¼’ÓC,Ã7ˆ“ª_‚¡Ï¡£¬¸,Ò¥ã=€ƒ¦!•ƒÌwV¥ƒÙÙ,‡àˆ¸®R²¥A%]ˆ†epð]À¾…¢ºu|bÂ
a¨éÁ)€Ñ¬u‘çВ
+vé)mZ?€Ù€Ûšüíb)b^nNAÝç`öj_ì(²"žŠê’¿§V7QaÃS^Nˆ2ñÿ×z0ݸiä̀ËÔmë؉DÜNi7}Ôh=MŠÁFtùÓƍAöyدߜ	
+]UpM–X	Ðuʃu¹L•QTHl©eR®q¤uujk¼Ùà´ç®]®‰•¨‚X+nÂ`µ$Q‘Ü]>à\áõªù=<a•
×£«·;‚UÛkõùw¡ÓlceŠP%	ZÄnNjÐÊ
+µGËk³¢IŽ„½XL¸fÙáZ(;d\Úð}ç6γª3çn~Ÿf”FÞÍXf̆4ٕ!RÐQ¾œoÜL,œfzš Ëñd¦$ÇÌæ8•\Œ·2l­ÃZp`Çü/ÇûfØ)˜³òX³$$؊ÞAÍKQC'k;îÆ^.gxãw¨#&­ÙŅÿZF&eÁ8›¤²•Yò#[eÒ/i»|¾?鲉醠&„aëÐø«„m•ì͍
™O¸¦.°Šk~Ïrûæ󲹘?°6"D€g7{^k 4<ÿ‘Sî×Ávæ!WÁk~™Þ±—oaƒ…UËD¢°ãßfƒæéë®nT¹™	EH$¼ù]¹.Ç(ïô•”8ïÒmñjɱCëT±Ç™[c¬G¼lÖé â¸ù†Á”Ò6SÅÞÔ¶5:
+túøïƒa—úw=oÐåÅm9z¾æêg–àG¬4‡†Ùå¯ÁöDsà›WÅ¿º+öðÔÚ÷Ì^›!¯jß×þ,Žf†endstream
+endobj
+1194 0 obj<</Type/Page/Parent 1099 0 R/Contents 1195 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 588 0 R>>endobj
+1195 0 obj<</Filter/FlateDecode/Length 1805      >>stream
+x
µXmOÛHþί¡;]*c'Á	Hœ½æÔGÒrRÒ‹½!nm¯Ïë¸_Ïìz'*•Z*¢nfw癷gfùg/ ÿêw¨R”íùžOáàØëQoÐÇÿ;ø-%ÍY€­üðÇÍ{Ax!…A›3ê]¯S¯Rï5א
¼ )m¬3êú}¯Û2ˆnpŒÏݐ!ùVc؁b»`…eFƒ7hÈˌ‚ãÞl®!…ÙÍ£Í5ìða}ãls
i§¿©;¼c
+úœÉ¨‡³ýzŀ›kHzÞQCÊ>°@µvÁƒ€ÝutŒ/÷(„³0²Í’ÑCãZÖXBmdAg§t;F_ÐÀ³0wn–ÖHÞÈ2v@½„6 rNv6Ù;|û{4™#ːƒ2‰Mù4‰Z}¯ãu=/‹B•	JEy/)_fw²$5§¢LòJ–úÍä®êQثڝ>.j]å’­—’ª…¨h!4‰2Ñ2§x‰“÷øZR,dªŠLæØ"ùâ±Èî’»ƒófW.eL•"]c‰Ëä
bµÊS%bƒÀ§¶Irhž«’ßÿM7QzôQ;­·IŽ³š.'4¼¾e-ZerÅ0ÅêëJ”V›x2ÚÓDWæ”)ŒÉI咭n謝
%-׊´È`£A{Àw™CÛµZÞÓá[ä–q^‹Ê"ŠÒîz-«ÚÒHe™Èãíã¦ÞÍqçûEwÇj‡ÉʘP_#´VQ"*ioÚxl•TÂÑ$וHS¶'<š Hs•¦jÅ΃§ä£ÈŠÔÄi¡V¸ßEj™Æ¬WD@ZÀaŸØ¼ðéØ¥3Â󱤵¶”
+u¯¨ý‘J¥ª_µŒJ nG´/‘k‡Þ7¦°o²´u®2‘ä§ÓËáÍåhø™®Æ§Óyòø™Æ²DnœN×Iäùm‘"·ºŸë;:Ì0À1m¤Áã tb§âÚ¦7ÛdåsE1ŠÃ^ã þ©w\"Ø'4}wMï‘È埰¢çƒ(‘š®ÇNƒð#4tè?WCoœâ÷ÃßÏXð]¡t|ñ#c¹‡y*îõÉÔÀí¾ïܽµ'ç Mgø¹¾úãj6[mƒëÙͱÔQ™U¢ò“©Ý¿{îàòŠÎoFŸ.nhøi8z?<{Ao¯nhòn4¦ë›ÑåäâæàÙÛ¹¨Qè'S'uyñ*¯Îf;%ñ»-+S9æpöÑl¶ÿrfBø3¢2^F‘Ôz¾LÓ'f3Z£
™Ûʦ—Ayl`³Gµ» ÉØ4¦žGÃ8fJº”+ªIÓC"ß5*oïq$‰êµ
êì	íg.–iuP·5Ÿ£ŸÐ57Ò0ºæIZLrãå÷èÿ–±uvçE*Ÿo+iñNnpû›çyṳ̂±,=Õ
+LŠÆbX5w¡ä)
Rµ{]lZÇÎbºMþån•åjîg«€5´ÊáûÄÀÃÙ„™×q(—º
÷‹’5‰;0»i´ÀÉG-+{NW…Ìkƒ.g-.#œßÎÞ@+÷8Kr˜UŠ
+-šÍjo7ɇ$•÷p謕xÒ3”Oh×Ö{˜£¬SMI’¹ndz³7ubDõî6f€\óŸu¾¹Î´GóafbÓ(sbíã'
¯:µ+ëÕSz’v¶X·ìçzîñâIƤÒè0QÅ­5´Í´ÔÆdoÂ2ÂlQ"E8ÜOëx >&›8º»áaàb
RQg³Œ™;¾éVÃüd|õì‘-5y€½®—‘.fζ¢T÷¥Èh¡ÔW2{u“ûÑņðR?éJfuºØLp¥×H¬CYE‡æd$Š|áô´CŽÑ‡æÈ@|Å<õêZž
+L&Ê'“|Ì!u!Ý.0Ñn&>ŽÐ¼T|`縟±„;Ï&Å¯`‚E)䪲\p`‘o†Ap‹™Ô6ùÒ²ÅíJ’=d¹Ìæ@ò7
ç86Ù¼ýPÊB”œcÖéöJççÖKǹV!:†LE©ŠØ½)';­ÆP3>›p2‚iv ‚AY숚h˜mdY"vxì
ѹÌï3SaF\–ÌÈ5dël.•Á€Iþyß8\;ê䴆»N
çy×°827u	óÀ›•|¬+Ù¦Ñc†K—ä+,Ëñl¼Ì«Ýü™,¤ñ'ÏΒgäÙ·K6–©„±Îэðn¨ï9¾âçQ)3õÀ½ÊÌtjr–­y¶aÕÞr9ÌۏVý.0[×|ùêm2
[üºwÃFx¡Å±}6‹Ú™Q)ÂAÝ‚'àÏ~¥ƒƒÇÃgC´OõÎU´4þæO¶Ýv¿c8û»^Á½~Ïë‡<§¡©ð…“½¿öþbüŒendstream
+endobj
+1196 0 obj<</Type/Page/Parent 1099 0 R/Contents 1197 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1197 0 obj<</Filter/FlateDecode/Length 1119      >>stream
+x
­VaOÛHýž_1œ6Õ;vB‚
+¨è€æÀÒ©ºx7—-ö®»»&DºßÙµ8§-\¹ b{=óæíÌdç}m…ÐÇ¿ÆFd­¾Ãȏ`8ã}„ÿŠÁ¢u·‚S|B¼@—Ñd14ï÷!Nº
3I+.LBr?•	IßÅ_ÐeX¹tᦛ,‰ø›YFÂÊ^ײÁ½yDPŒe
+%4H¹` ðöX
+öy²®1£°ÊèÃn8@¶1íš%C+™2ȕL˜Ö.†Tw~ɤû%÷Ýhè­ÇÎoÁ-^VHQèÜ:\'ŠçŽ$š)ƒ|[!0n)`¨5à½,—þµgK©ïOPM±~/ìmPÉX
+»!HéS¦]`~ÏÀ¾Ývz —+²í\“³olzàœ‹âab€$néû
†= 
+㫼ß끭®áRTÜm¨’ü=O02Ç
+`ÝìREi›Ã¨+.ö6X•É¦[.䎁.pç+fsæðk&ø€­tÅè¼àKíöﺰ怹]èêüêì2~?›OнO*y<‹O¦Ÿ)1~ï|êdºÛùйè\n`žÏ§iÞX»:¹ŽgWñ´­är”æ¶Óµ!Ê´+ÛÍÎáÆrì·DæëN’ƒWs~¼ó=K®aº3JŸÖÀþ6Î
c–,%´Ûð_?‡‡Ï@zÑ?^xpƒŸ—ƒ?
+p é4¸'*й”i€Ù¼è§a^š=LûYŠ_zùS°:M/
MóiPh¸^4Én‰cî~·ççJ<&ç;ucYà
Ø~­
˜,/cB©ïy¾	UÇ¢¯xçóÿ´f™ÝQ®`«8[¡3IaŒ£ãy˚äs–;®‹½ÐnÿYj0ª¼£Wy^å=|•÷Þ«¼G¿æíU'Û¯yïÀ¥4å™Îí¼Àᾙïò”Í¿Õû)¿
tvë'R,;ÍgøT)
{–2OÙ{’8„og@25#'N¸Œ¡‚x2
šàå
j…J}œ×
+€= Fßr	N÷QYU
+d€2ŠvÇ~äïùpmO§~敾˜ã|vÃêQ?aôÈJ®î_\P¹Òp‘_î$
;Y˜BݤµL¸S¤œò+n–ÀÕ0ö!^2œŸBªŒ¤éŒ¬vZã Ïìä>ŸÇáA¯Î_¥®Þ¼ÀE8=;?Áª=߯™g…F”j‰µÌ´°hX“„¡†B@»ö„Åُ¤`¹]ŽÖv<“"5="Ý̽*6浶uX=§M(´ËÌ=ÍZ¹=pá¤Àz­
Ëj¢T¢2°VÌí¼J EÅcdcӎ`Á
)ÀJbôþZpÅ2TvwuA’”ãJÙ+Áé¤Ò½áeôd£Ñž­Þõìâhs%¿°ÄÀ±L
+ã䔍½[›ïŽ#ÔÕ/i‘áxèGÔäh>Œ,ÊIÜú³õ
öegendstream
+endobj
+1198 0 obj<</Type/Page/Parent 1099 0 R/Contents 1199 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 595 0 R>>endobj
+1199 0 obj<</Filter/FlateDecode/Length 1625      >>stream
+x
¥W]sÓ8}ϯ¸ÃS˜%Nã¤Iº/;|:,¥fº}Ql%ؒ±ä–ðë÷\ÉJ´ð°%Ø’îÕ9çž{ûm0¡ü›Ð"¥éœòjp’œà	Løãã›Átq–Ìh>›ã³¢Ùt™,»o%}âõ4ŸN“”ßÍñ+|Ù¿J§Ø6[.°,ÅÿFÒz¦§8ãôt‰âžbIø·¦¬8ÚÆ¡¦g‹‡çù“4™?¶#Ì¾x‘
Æç3šL([ãþó傲Â_û„²|xiœ$·Ž>‰j%¨0Ғ6Žl[צqx')7:—µ#³¦'WÒN6teL©ôæ	ù¯Z”厤Âê&¡l«,áçn+5	*ÍFå¢|š}œÐhÂfÅ°îÂ:a­ÚhY3Tµ¥Su)‰£ó+°6MÅÁK#
+Z‰Rè¡É4´ª$s‹ Ýé)s‡Ó/Ö´3-HøÖ*0áoxtôJR!׊ã"YSI¬ÖègħÏ¡ÛÐV« ¬Ããˆæ9Z+ùIú%Õlh|žÆC¤n+©.ÕDnªJèâp¿×¥ßín«ò-åBRomÀ+\ðP~/ ‚êÆlQ…Ko¤–p>ÅRYç[wè¦Ç•p|~F„•2šÎ”‹dʔJº¨<g–2po¥;D;Òôð;,&¬æ´nUáù|yñ/15·¢”Ú‹uv­taî,]fô¼((JíZýM‘Ð9XX‡“G*ÍN1yX ,s¹†N!)>zŸû\‘U½ðù{œý‡7
 >¤­sõŸã±ê®›XÓ6¹D€L´tãǙ²VïdYòo„<Ê°0y[á®>GM^¶¼CÉøc4萣Q
®µjùJ]EY™ó7ìA£Qp¤ qÕ(éåÙ«0TfcŠ6lêpXKáÚ$ œ"&÷Ô£tõ“{ê'	]³? NㆿaÞ]×4¨*Ë.ccØPhÁYXˆÌÌƼ0>yó(Vð•—¯ÂQ®²‰ŠSÎ4; ¸g7/í)%Eg§ã³%P
+–U4
+NAµÈ¿Š´áyWž£E²ä
ùÞ¤óEç±øü˽uݧÆ7Ó2‡d†¼(‡‘øR;ÐÞOéðÿ½L`J[
+ËKŕ<#(få„BÁ—nå2`Aˊ[Bèіî]»ð,lGm7€Õ>z‹èq=Há0^f£t™LÎh4ã¦ÔÙf҄^Fäbõ¿
+¬]°yñ¦-ÕÀ°´÷øÿrVóJî°`†lnjÉûw®Xªt3Ü{H”~â¾;‚`ÍQy?,讟öÊØ+£2hG=ñÞ<MèB“Ý¢Ý=c‘èP®œ± ÍU×2ôŠ{RœhÐKîÓLq¬¬î€µ*¥}b¡8ÎÅå9uX
+\§ì¥HZJ¶¥Õ.˜ÒCEýÚ,Ž;EÐÆOì"ëûrXÉ·„x˜À,"œX±“wïB;nßZ	Ç+èV¡9\@o³ìŠ*™o…V¶²	½ùöˆ¨(vvÏ}¤-ϨkM®<\Ÿ?þíyc™ˆÜµp!ô(Í£ãì5ƒa%¨3DŒßŽ"³²ÔFq‰îЂüÀÃé¿Ñí՛®Pš;êJ­™
+øob—gIø”p çgôq×ñúmxi¸è½¸:l!>¶öÀÐ<Ž*<
’6-<¨HÍòð	ùZAOjåv”oeþ•™Aã«R¿ʬ)ú{é-ë0î¾ÀßÕ
ò‰¦ÏWß_ì1dœn1)r^!JðzM34
+ٌÞ~¸Î>$u‡Pôa¨–‡U¯bìÚxÇã»tãéôKX£I3kw†õ5óý	ácªb³$a—t%Œ[y£j÷ªÌÞýY›§L“5FO(ß÷ѵÀxҍ¡ëÿ:v‚>8ar3+ƒÉró4Î?쌕Ú[?;Ã.Z`dó—p“)±Ia~Ì·¼“çdö«F¥ï›de
+Y’LLoԋ¡H4†ƒËêNÜë¯G‘÷ݶ?Àx§:ê®Ë®B'sü™¹œâϹSî~Ÿž¿ñó²ù‚‹^õGMŽ4ŠËG‹ÔO8¿ég‹Y²˜/Ã,4›ò
¯³Á?ƒÿ˅Åýendstream
+endobj
+1200 0 obj<</Type/Page/Parent 1099 0 R/Contents 1201 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 598 0 R>>endobj
+1201 0 obj<</Filter/FlateDecode/Length 1858      >>stream
+x
•W]oã¶}ϯ˜î“Ċ¿â})²Ý
Ú½ÝÛøbû   %ÚâFU’Š\ô¿ß3$e;ŠÜf³q‰äœ9gΌþ¼ÓÿÆ´˜ÐtNYu1JF4Ž’9͖ü>Á#iË7ð(ÿóß>]L§‹dEËQ2£Šf‹Er.Jº¿x·¾¸þiFã1­·8`¾\Ð:÷ËG´ÎëBÒFX•‘ª­e)œÒ55FgÒZRø®i«[CÖɃ¨sj¤))Ó¹äÛ{#šFæ$ŒnëürýÇÝÄãd«MV*Y»p£‹cÀûôŸ5MvöÙ$<8¢U€0œÌt¶ÚH‘”lÛ4Ú8FV('3×r®´!A;õ(kÊ
>Lzɛh8%KÞ㿽kâ¯qBtˆæ-}’Žò F7F	'©mJ-rʕÁYÚ<Ó¹}x/$“×Yi,³Ò ŠsÏNpæ![oé?a^"§­*¥=·rú2Ú;k[ÉDÑmž5ªvÒ|àé%}¹þöõ}oŸ¿âõd¹!+³3[¾ÜñãSz܍œ&”C>Ͻ9hvƂìq<üЩ*‡쯵$½êM)+K²Î ,¬
¹ûDªªÁ
HJÕ;ÿè]åwµˆB—È°£½ÀN«E…”7"c¥ú¬l¤ÛKYwAN“	Ã}FéÖÒQFAˆõQM6¡Ÿ 'ù$8€+ú¦ê\ï-ýkÉÊ6ç¤wdñÉ9½¹mðhï°_DðÍ@¤†îî°üwz¼'Ë7¾¶º]W7”!(?g	’±\•>7¨¹¨ˆ°=½ÞðM<r2…²ö™÷	å’-ôž{¨ñ¹/„£ˆ6l‹û⦀4E•I¨¤È^B·€j]RAm {U–=œP¼¬6¸çø¦£Ã†ŒE]âSÃMœBîr%J½C½”ÏDŽòøt
mÄó;üœdÄÒ;÷ÏVeTjýÀÖÕ;wµÏ°²
+‘ï”u¨\Í	~Mr‰ûüó/_ÒôÞ/HÓ÷­1ÐÝ{];£Ë{éð§ð{šz@iú±~TF×,O«§ñ°)ç
+§?JQ†ÜœäE”{ñl©µH‡ŽTE²ØuÁŽl	à ñ׍|ãXluQå`¡” ­Ÿ“êz•dÖ`CJè³Þ#lsE÷¢Ú@ëÕÚÁ Ü1N¨€Þk6ˆ„Öªœ¢ˆXŠ¬êY·úfR[¯YÀå£DɊ{òŒ-Kæ?Ɠ;ÞpLà™Æ*&ZWìpJU)Ú®P1Î@B¤ƒ£ô'y;€ŽOí
+Ž¹ü`Ëì k®n®W˞„C?õrdA€Áõu±®hŒæÍ]|8-p‘ÌüÍ
}Q;@
ÑÖè*’„±!yb”“d’<½å"8þ'ß$}$=Е¨Ù“X€„¬õŽöô5°Vø¯~”9š
+Ç®#EÙɚ“öŠª.À^²|¬€|B92Ipð¶‰{qluYB'–µ‡ši„+`Ɵ!"tì+ÚZ…†A6“5»¹õ–u8ó-Š¹êPÙw[¯¹\{UA"¨¯¾ZîO™óÉèj0ö‡+^Sp¨µ”¹—Ðm7‚|:$= 00,”
†&müi–-,’Eû.’嘺¢M'ó…Ÿ-ŽVâï÷ìŠ,;ñ€¬ä¸k\VÑƒ6­CÔ>
Ýò°‰ÕSÄÍ{X y€gNÀՕ‡žÑ6øF‡?ÆÝùê †a“\næã<ÈÓMB߸Ác
+Â8éàÑ
z0•:ãùAÐ!¢^4Üøàgôýõ‡w¾§n…òÔw)`Ò
`ïÑ4<§›"Nƒƒ¸yÎe+ÖêŒ'>?®OìôHgzé=-@:ξ¨ø#n{±ŸV|/¥eª„µ
æñìa/”•é
+jWU*Ï_~Á¦o8<]¢¹þ3OŽ*ñýXg5v3	3ðßjlX*ѓ@C×vt¼x䅟›h@…FËI14ŸÎ9ÈI/Y9ê0ÔÆ>¥jðY/óp½¦Ñ„2™c„À
Ãt…‘x‰7+y×#)]¦Híj´6¬àÚþ1~žù:%46Z¯6L[`50ú²0»ó·I›®‚£Æ´õ+ëÔéÂþÿw}€^®ð×¥—…Á$ÌNV—-¿Ãñæ'r
­®ë±…0‡Û¯ß¸:zyûC/êú“<–œ×!ܵáz63ª9S¾°¾cEÞocõÿ“·Aºéå¡KÇЃbºÉÝÓÛ{U6;Pá\óöúš»òi©f<ŽìdRKwíóvxÅö;`Ý©PØn<þMà¬J:œ¨¤KÃð&Y-W4œ£wOýëÇmV¸¶Þý²²Œ}`<›%Ëå„æ*<xûåÝ-ÏÌßñÒItÖr[ö¸yípŒ=GË)
¼ÜçžþÁ`0[̒Å|‰ù‚_
g¼åÇõÅ¿/þV=endstream
+endobj
+1202 0 obj<</Type/Page/Parent 1099 0 R/Contents 1203 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F8 11 0 R/Fc 13 0 R>>/XObject<<>>>>>>endobj
+1203 0 obj<</Filter/FlateDecode/Length 560       >>stream
+x
­SM›0½ó+æHxù†7êÇi«VAꅋÁ&ñÖØÔvÂî¿ïÈ*›½ôP¡ˆhð›yóÞóŸ Ÿª²ú1ˆIEžòºÂÿ)þ‡!Ø7ÁÃ×’š
Ҕ¤qe]¢¬¡a€¸8†¦›žÖRêY¨#ìšg„á„Ú±#½VÃZ¾va¢†ŽÜqcâ4<bã†3p:ŒO†÷Ôa*³Ò—
õkVkEà³¥oC”d$E^áÙrp'>‚P øŒ/먔Ô	œ±ÒH7v(@”–$÷°É…t€qÁ× $‡6üÖîVH¿A¢ŠÔ^BD´iYmë^.ߘܵlÃÃì&5ªƒ+!Él{?*b’}Jpu¤›-šyOôÂQb®Àͨ+*wëc^Ï;Š	ÁÇû4hƒçe³çiÒƁÞÅä:Úÿž©a‹ð7&õt¢Â½"ÿ÷¦„LXÚ¡úvÒZÚͲ+ù°Ý-ð£ÏÖÎ!aÓÚnþY@e~	Åôlá{óú¬öRpåìlj™»­G·f+¿öڝü®4Œ›ž–p-IfÜöFt˜QÔ?Ãz„Ú°@ò#U(ì‘/[øèoë2è^ïH0>гtd_o	LJ¼¥uþ]—…Oâáñiÿ?Œ~æ½Ã[џG\t‰‡ÇFWHT¥Kr+’xG³&È;iôøÎ8¬y›_<>¯rRá¥_°yáK_šàgðsc<»endstream
+endobj
+1204 0 obj<</Type/Page/Parent 1099 0 R/Contents 1205 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1205 0 obj<</Filter/FlateDecode/Length 1387      >>stream
+x
¥W]o7|÷¯X0šöIrIéФ1š‡¢.¢"Ixw<‰6<“<É÷ï;KždéÇ
ê8¶t"w‡3ËÙõÝɄÆø7¡ù%½šQQŸŒ³1½~-hº˜ãå%þ;IÕÉÛåÉèê
]ŽiYaÇl¾ eIX=ƓâÅ»µh‚t´Èèw™·«•2+ºvʄôÂæZÖþåò&F™ÌS”‹WÓìq^,²IFLp¶l‹ ¬I+§4™ô+/çٌW.×ʾùµuJé§ÞC¶¢µÝR°x
+Ôìò7.姭
+kú(ê\d#¥í¹ôG;9û˜.&¯ºãíû¨•³5p|üó-ZI83ÞsxòÒm¤;'cñx-É⇣­èH8ۚ2£+ëâ'Nb¡—Ø!ùý ·¼u£¥íӖÊÉ"X×eýÒËY6ejþº='o©³-ò$4qÓcX¡c¡£ëwÌVÎ3R–‹#)KÞ¨@„)™õ°a0·´ Ï*ŠÐ
+­;*Á…é4PÁK]“
+tÓ"BE²Ve‰ê†r¶RÀÈv´rr~4ÈüQ÷ñ}›ûÎYg½`Iª
`1ý•ÒøÁ‚ñ;„Æ/CðþpAÔOÞ£ÐtÙ$-l
¤åiFŸÀEJOýÃH\)ÁTÛ0{@=T‰ÉÞ®-àD²c1–K_kPÞzVÀƂÆg†|gø¼J2ÕÔ9©å†Þ-ûòb»VÅ:æǵhuIÚÚÛ
t@B<>ÿ.&1éXÉ//Q–òGÞ0ºӛݥ›¦Ê¢øõy¥m.ô¿»°c¸Ê.}H*øéj҉Ä~$×7Gß+9¡›»=—)ì­d ¸‹îZÙ{¡NÂ7ôQWG¸[µÝH ¸±ùW¡Ž:£ÊŸ<™€küB£p£e¤›räùž'Æ}ªw)Tµ[VԒQ·tkàP"·mx†mJçmÔ®À"§Á68Mšà"é–Gz¾zÀ>”“¾­bAž `¡ßŠ5ºzt¶÷ɑž…ŸP퐃¾Ö»Q®Èstï볆ΞVò°ŽvßÅÚzf÷aíÆ`1î¾ù[ÇÄ÷!|Â_¤JüïPà‰"êIºÏ×ÀIá­h¥hp•h5´J]5RÊ·-ºGï É)t<§¼
ì½Ê›ŒU(·±L}—Ÿ²yïÎÒ·½Ö°xè«ìúÑ[Ö	E—·ì$HË´-à—p©Rq#öÉ«zé=wj¶$¡ÑþÐh9HÕ¢GòùFªR0ÁΈZúsîɱÊnÕÅ“`ÀÇ
+ë¸ÒõoË?h#t+ýÐn?±ÏsCë­&À'HÜâE.û›TÆÖ´UZ#Ï-ûzIcpò4OÌ_rÐ}†7íP«8µÌ
üÁ\€ Ž6ú"š)\-ѤS¶T ³ÐR‹H<ö÷%™=ŠÝCù¨
+§ØãðQ#z2@ð_ñ„¯%ªä'úPíßP%”ŽL'²jµZØ6€jYø§‹&;ú–§=
(gü{—D€¿aÒÀ9Ýʔpke¸QJ:eáL[çҝ¢(¼Z1GÁÒÆÉ!9oÈ»T=©ëkc‰¸g¿jèçèÒ§µ(œõ§‰\n=e‡Bì•q²Ñ¢@Ú8FŠs!R‰ ûÚC_G±
-y­\bÌC’
Æ3ÏMÍC—Ãp|H®y®3~z^œ[¢Ò‰¬0²0ç¼
+úíXƒÜ¼'Ò#]*®³›§1žæÜhäޏQ,ª´A¡ršÑÕâa^ŸÍÒ¼þýLçÓl>[àÓG|¿<ùûä?%Ìendstream
+endobj
+1206 0 obj<</Type/Page/Parent 1099 0 R/Contents 1207 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1207 0 obj<</Filter/FlateDecode/Length 1241      >>stream
+x
VmOãFþί˜êŽ†“'NLBʼn;é*UÐ&UU
Öö$^b{Íîš@_þ{gví"
„øeÞç™göþ „!ý†0ÁxIq0†0ŠNè4›ò5}4Âʽ˜DÁ¤ûüóò`ðõÂ),Wdj2a™™a™͂Q×ëµ,×PiYZÔô­âóiyGꄤÅêýє\,Ó£Ëa+žÀ*HYÛkz^¤á·Æ
+m!~¢(«\$,a34‰*
+Q¦°•6“ažƒI´¬,©e’|¢tʹÇÁˆ]½®,IŽÕé=™¢ ùZ¹{—¬dŽ
œƒ‘E•#à£pßN†bÛHÒö7åÚ@!×ʼn§>å!œ´GAÄn¡ùñÆÛèç0°E50â
ý‹Ã
+]Ù¸X¡/k~øaËò»`›Ô0˜µÖ?À¡SSO]è‰p×ÚEXÔoèj£™B¿‚3E¸¨ÞPpÎt]6ô½à‚r*î!j­4hŒXc›Rø"^ßS/ÞVÄõ“»¢"¢"$QÂFÉړª5˜'c±x#¦]y¥¡OWCø8‚ÑÙُ¯z‰K‡Êe†%ûðhá0àa¢…z`JÀ_$U€WWjŽÙ÷ð¾Æ¡DL„cjˆUU…)È”4 Œlì"“-x]B½­=@W_¢;ï…WÂ?Ñè?8L2™lš˜ÉN¥¼ä˜%M'¹$èÃ`«Dä™2vo£ŽŠHS<öJ$²šS#ù7‚8ƶ·£ãc(a6sº
+ÚÏ°cîJ³¥:œBçŅ*„,ç×ç‹åùïË[¸\̯ÿ(åã-,P? ž_/Df­`zÛQ¦dNáææ¬i‚kø«ä«ÚZn!·=*”0T®~8=Gpsʼnææݘ5Á—	¯y¸Ï«k\çe8ŒNÜ؏›áw_­¯Žð.þD”	æÀÊ‘/n¤üûœÓ D898%K)̎Â;lþҚhÌbºÏÆ[îࣴ¬øöTAχף	HeBãÜ°4Cž“ØR<ÒÓh½30‰ùY†ü4H%êKKŒkr)—A1
I´‘7LÏ3JYŠ‰ôVjiFՖ°Ð®€Ò]äJm€V;|É/~haËë…e4š:ç=¢qŸëûZ&›¼¡	ò	²]1nËñ’s„çˆÍ±çã.€Ëí%¨PñʘXÛÅêµ(¹có&é
Údà,%¢òqqV¨©^Fª’¶\	BKEóŒ¯|õžïúþ¸Y]³`ÀŸœµ“Gm UðÍEôóë¦7+¾­>mW­5ÝVº4=Îb­EÁ,˜d˜l:ü^Š(EŽŽy…Õ†+Cõâž.åßÄHGÝꥌ›}ý“3À( 8ö²'Ïe^›$¼¨äë4ÝÆð|Äæ×HÍ%0ìJ/KÚX…°TsXiU´ë„bkn›2øeÂ6,mÖJå¹Úr¾
äèaÛÞv{bÁG«EbIï¼¾/۾؟pç²«Ð3Þ¿îØ@#½Ë¼çk5kN}á„š³1L¢c>©,Îý|WZÝabáB%î0æÊÄzýV¼?Ñ	3}Ï	3šFÁt2£ó%ÉGS6óeyðÛÁÿó—Yéendstream
+endobj
+1208 0 obj<</Type/Page/Parent 1099 0 R/Contents 1209 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1209 0 obj<</Filter/FlateDecode/Length 1547      >>stream
+x
•WïoÚHýž¿b¾‘JàBFê‡Tm®­Ú*×PÝUŠtZì6µ½Î®‚Ô?þÞÌÚÆ8ÑU§(!˜Ýùñæ͛áþdLgøÓ|Bç3Š³“³èŒ&óWє¦‹9ÿ_§i}òvyòòê5ç´\ãÊl1¦eB8~vFËøtM#ºÑeiò
UÎäe¬
+Ryސ×îA;ÿbyKSÃ[MæÑ¶N؊2µ§\ë„J‹ó%[ò6Ó­9Okëho+G7*[)ò{_ꌏW^Gô±$ãɗÎæ›tÈc›e:OØâV•|“ýÃëø<š°W\ÃGÈPÅ&5¥ÑÎìƒá+«½|$¹/¬MµëDv_é
+ÇÛ9]“#ÀL•ÆæQíi2šðvú¾2×´[GªÍ\oœ’|àuø¸kš–[äقÜùˆ¶ÊsÔ½4CT
ü3zÝ`?
±å*Ó¿Tj”‡—IE¶àLÞ<¨´Òxîw‹'¥»Bè*ͬ/ñ’†¸˜¡:~x€	
ØՀ²
+§WšP¡Âz msTÌ®a¡Øª¼Ê´31cR¡|ÎÇ4ü3èåo•Sq‰ 3¥v	+Þr0vGÛ}±Õ¹§ÛÓÁhpû‚ÐN§iD—9N cæŒâÿa'Gí´À!\cnÎÚ
¹Ô=ÿrMìPNÓ*Ö`
a"ؕ°?EƒÀÄr@je«²‹H„j(Î^A 
+Ð#ƒ=S›MÜޒ*{þ9<ð›qKMŽcèýXò£6ræ%gUZš"Õá`Ÿ4ðUø•~ӏ*ÃQÏv[–­
ž… £†Ö…£;.e
’ ÇAŽÐà†ät¿ÇÛ¶é
+8vtIIêqt}òìõ/{ºf‰i¯L+”H
+Úà^ƒ~dðü9ƒ~{
|Ñ£@;‹ÄÙ*µM“78Q¿?²é{š!üÎÜs¶^[£É«čr¨DZûP‘nßïÀqZ‡RøR¹R'Ã5+Tõ'úMµAEÁÍ#ftlHŸæœJG Å8±rqm¹©ÐÝO˜ n|‰Ö¶^Zéä6Û1ÇÀ*|
+孃
+ðùú[«ólb1„Üi•<i~ˆ;«/È-Á/¬fæ5òÞ!_CØgÂm§ çCÒeáï£AÒl~« 
+4T×.3ÞC¡:K|ð$ò†’G¼ÕñOä2ZXô~y‡÷Mä?PË‚æ·¶JH§èæã¾_“7›\¥Œ{óيðÄåG’$)à('ڶO·n”ÃØRž×#cªŸìŠÃ(‡ˆ‹ kE%õì|—‘
+px2*Ö´rÐ[T½c[±Áƒˆ8Y^$tö!ïìjHHʬM3ÓÙÓ}íÁ0»‡½
+Ô˄¢Sꩳ,b³S”
²Ö
i„ŒeãmŠ´v3ÇjÑë‹é·áìFÅEz¹
;ƒ#þöþòóç<}6õæTWϙͶVÔÀʶ•¹{*ψ)z{óó±—h ¢ÄÕôÝPD ƨªTX§œÁPñ¥ÅXhr`‹èJDJÂ_âó>Œsi_­2SBSZLö˜xiÚsž[é
èÏw¯ÿcåàÆ]×J<lî˜;²^|eÎKÈ:¤ÆðIë³êAíY&îÖŒº×˜Ä¢4ÂÀÜÕ¾°aVsðݽÜD°\àäìke°`¨ÄS}·Ýד?@!…Šc]:Y'$zæwm½ií¯Ú¡NÌùbºÛ8•/°ÂÍzA8¤qä=
$è/^Dø˜‚BaäØG‚ÞÖ»Q//•d&ÇA4bX­¥òFïÄJ[yá†ôœ4Í)ÔpHŠ÷,@4ꏪ0]k\9üžk-;‘2ýX°°rÊȤ©²Za[	ëPpɜäbszß¿~ü›ܧªJlî÷uðWzŽë‹c%À™°Ö¼¼ZÔ_KÆ3|ùYœÓìõ¸^Þ/¿¼½ÄÊaï8Îw6Æ~š—²ç³íQsa4Ÿˆvþ¿ïCÓù4šÏa_š.Øâûåɟ'ÿZÙg‰endstream
+endobj
+1210 0 obj<</Type/Page/Parent 1099 0 R/Contents 1211 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1211 0 obj<</Filter/FlateDecode/Length 1422      >>stream
+x
VÛnÛF}÷WN™ºX•d¿9q
´@.MTŒ+r%mLî2Ü¥þøž™%%ZQƒ:1@ï’s9sæÌ|=ÓÿÆ4ŸÐåŒÒâl”Œh6ž'Sš.æxžà·Ò´–‹Éì*Yœº/Ƨ¿˜ŸøàÍòlx7¢+Z®á{¶ÀCFð;Ñ2}EøI3>ªjèKçòa^fò26è
+w/IN)3•Nƒ«rk’kúâVþõòËو.Æ#ºÌÄZîÙæ韗´66ã/ñëSŸó9eë›Ñh\4[ç»ÞMi<Ž\Lfìê/W“ߺ:ϨPš|
ÜÂVj\]Å‘¯ËÒUÁãÊxZ»ªÀ>õÞôº •Æ*…,i«<ëƒÊs‘êÒ¼L&ìû<€P
Òy´µ3yN©³º
+8A
9‘àHu^UYV_ª€KøèǙÄ,¯h<o³¼œ¢ÄðµHf	ýÀ¼¶a@ Ýhru(ëØÌAçƒM5;@"‹Ì%lc7¹J•å›
+1ï\U5¸$µ‚q•ÿ0¡­¶5©Î‰ŸÌbtKX.P$d^Îâ]·Ê&°Öß*•j£=s&|M+e-êÏQˆU®ìCû'Jáj›ûùu-!+Ôx£CàÈú†”nuú@
+ä:b”¼SU’+ƒA”_ŽG{‚xQ»µÙ€EÙQµ¹VÖµþ|Bm,‚,äVí
B‡üg×~K÷¯˜|•öž¶Zeì¬êG}ÿºõžÐÌG¾÷å[»<w;©ˆ=Ŝ}ƒ_LZâ Û$¯)I)’ì»Vê'$I´ 0šŒ¸ÌíÓ¸#Y¼¬SÓ¡.éV1ù¾oE³o÷¶6LPRL˜)º¦ U‡65)º¯éƒs\ێ\ÆC§¼31¶¯½®:B[ßK.Víkv
ÅýZCßø€Íô>Cׅº$ïÖaÇPs\ª3ðċ¸äÎVͳ
+eëµJ^Ú;î:¦h‚­½&9ôHˤT´m1¬EGÚÖò´3a) :*’6àÈL¿I:hõÍú9­LD¿P¹mçTE4H_š(«DpÌÀ¼3iå>J‘º
	ÝÁµþ¦Š2ת-ýOc¯~>òŒ;¦D~]G:žbîÇ8üSû@ïU¡Ÿî_}2›m ·¹Iî_„šBlÆkÈÊKVO7Ù#ó/{ú²/Qu·ó")Pètëœ‰× ñÛPå·B貄¡¸¬áà?»„„7Bw`Ò q¿Ò8Ê܀07Dejâü„8l¸†°øŒç@è6úû–ý1ÐpΜàG®3¢ƒÃs¦ªÅSÉÓ¡š¤¸ÎƒAØL¡š#穪‘&XW†…På"¼êýhÍú¤v=—­¼ˆ\>Ðí:`Ս
¿×x‘´©AÎVT+®l;Ÿ1íbÛ8ÄYÇÛyç—[¥{°Åø‰kž
Q [iıÁøáWdÖ±€É%Ó[šêY+x–7(4¬X‡–‰Ûőã~UXÙQ	²:2I[–':¿é4ŽÛ‡w’[)+²:çNë{ýQQ	u„'镖r'ëñÞaóèt™xügÒV0äèýnL*l<kZ”C‰Åð…(#8 †ìE,Ï~̊í8;Bƒ§ˆ8ñ[
ÒÇ6E'Ý:®n´ R¨Ý^õòè¬Üô{=þénTËJõÌ1ö@X>rýÄé¥T?bבíàÀŒ6ô¶©„¡)¡óÝÂ"+…ÁþèÍ?Ü;ȅ­ÈqØ#§ýOBlõx·h÷×ñkþâ’f“«¸A}¾y÷æµs_Xƒo]ZPU
š_t\Ì'XØÿÇ>8O“ùl]oO¯ØÈ/˳ßÏþ
êÉendstream
+endobj
+1212 0 obj<</Type/Page/Parent 1099 0 R/Contents 1213 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1213 0 obj<</Filter/FlateDecode/Length 269       >>stream
+x
uËNÃ0E÷ùŠ»£H­§!v–­‰Pÿ@“4Uc—ÄAäD–%KsÎÜñ|F1	•`—¡ê£XÄȒ\¤HµâwÂw 4ÑÁDÛçRÁ4¬dZÂÔ`<Žaª•¹ÀÔTNmÛÙöޜYI!™Ê&Q"ciõÒÀŸEé¾hÁá»ëˆÚÙ;]®ëXôÅ\f7ÁÕðåÀÑÙßœƒv²ãã<zêᇢâºÀ‘(¤s¦Ü‰$dš[ÉûEï8¯¨òn˜Å2ª¾*3þ¹ÞAåB÷¸=ìñ6¸3ãxtÕԓõ…ïœ
âæß¨„wQÿ·‹T¥Beš7ÁÌCÔ'½G?ˆTnendstream
+endobj
+1214 0 obj<</Type/Page/Parent 1099 0 R/Contents 1215 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 605 0 R>>endobj
+1215 0 obj<</Filter/FlateDecode/Length 1828      >>stream
+x
…WMoÛF½ûWt‰Ø´%K¶\ ‡¤NZ£pÜÆrˆŠbE.%Æ$—Ý]Zß7³$EÓn‹ ‚)îÎǛ7oFMèÿ&t5¥‹KŠ‹£óèßðDŽ?>ÿÂßÐ|ÁŸÍ.¢ióÓÃÑÅ|Á/ç³ðr1&Í¿Ìa‚æÓ«èW§³y´hžø-œ],ðn¶¸ÂßSü·šÒ£÷Ë£³×4=§eŠØ.¯´L$$|ÞªÊkK×=踶™ßS®Ÿtßäæä*Ü<½˜!Úe2¾Ž&ݖޚ¤Ž}fÊprF“IsRbÄÉU¬¹ºªŒõŽü
™<7»¬Ü©ø.¾5òb“›µÊÉë(6eJ•²ªÐ-X?§ëÖø,šq_Í?ù½ ,³ÝÐÙÇiwcr¨pÃ5	>³8¦·ôÕm•Õ?j§íjœèTÕ¹_ÿHL¡²ò‡JÜÀ‰x'ý¤/ÙÇï¹VNú 6©u9ªD^FÁRíø¯¬Ä߅b(H•I{%1q]èÒ¿žÜ˜nîïÞÝ~úëîÃÝûŸ£­/òç'ÛÏétÂ$Cdì3­-Š`i­âǍ55&Ú«,wÿ!_*L¢©Å*¢%ªö%+³s`Hü›¶kmkÏ·GåbˆãàuÕ¡œäê˜2ÜÔ.¶ÙZ'ȟ«ÿ<ø¶†czwópúëý—åý¤8Žä6N/1îS!”Z›'}B£.¼·HÊ>i;¢B+&ÞVy
+µºa¨¡8π{ó6ó­­Ë’‹XGÌItDë:”琬Š}­ò|";§išžIÕȱôYêlõßµvìàæF*Ò7ÂdäÙ9gÆÀ•$3E
QFìzglÒ$KoG!ÑÊd’Vè6«Ñkƒ°nË¿ XIÇ÷¨µÖ]MËÐÆá0ñëŽBŸ–Md'R¥\±ú”š³ÇñJ­s
äH—±ÝC›A“SjêܺÑ)?K\_¨D!®£iDw2›¢Ê!&
ñDyØGǍ¾äõ{šÅ½óŽîÞ·ˆz£_Pµ†+¸œWÖ×í˜SʉÙ=£‘tb‚âß™NG"BA|GƒTYC‚ň¾l³xË) è
êEdu¬
(H“¦:n¤w§öý38ŽÞ³N1
Ýx`uæÎSH¾GÇã4K	({,8 ÕX¸¼§
ˆãI÷à;zcjý>£†Xjá‡mz,ÍÇÁøLFO^Î[UnÐËè8Æ2ED܌»Ìo{“ª*kT@eãY%åÃT³{xàNæûh%/ÙÅÈÁ<Ës<®÷ð¸žÈY~n\1»M	˜½PàE=A\…Ñ\ÂÝV㲕V–ÉɁ@ ÌN'C»}‹­NbXàšÔþÀÙ4³Î#$ä<\Æ·’ík§Y7˜v
)æªs<|œ‡¼Cß`faHÊÍíʶ€±7±É©ÔÃHÂH#Y&'R“¸KÌq
®•&逄¼5ÊÊ Å±®<kˆÕß@6x³856xÖãÞ^g, ìÿ“A“ËAœ6¡31f9â¦f[VÊ­¤Lh;e£íޢܘ¦,%*sBæ<KݏÑÊíw£ÀYˆ~ÄV•
ÿ‚æ#Îò'v]±›^|õE’|èëV¶dŒí‹ŸñØÍv¾T€òYÙdߋDÌúԚâ™%È£<Oçÿ·az6`…‚Ú½ˆŠÓ”ñÝ
+¡þ^µ1¢ù,ä@ªÀžá9w
+خƵãpûîµùÈ[ÍR-¸¢š#è·¸A×;ÎÒ½\ëæHRç“Ù!üq˜›Ùf‹¶®ó’_füdÝb2ì]*‚ÊÁ€Ê ‘8e^´T	ò—N+°RfhСA™ï¼°¤7h6ØcèW¦L¸½i#j¼„m…û¸ÎLzÃÜády[8H:78ú@B{½BO6æXÖxõå.¦6òçuîy¨¾è²ô«þjŒÅñæFT®ÄPP,Q<´8ºªÊۅHB’‰ÀWWǍ«n¡{<AÇî$úސ°á‹hÞk/¤[ˆh`†…™¼9A¼÷b\óÔCmÛ]³¯¯šø¨Ü€É2ˆäòƒ™tÁêX8ۍQ d<Hƒ@n	<®¦Òˆ¸ÛnA“‡FxÞ!L!¿3qv‡P%¬“CìùºÂd€Ú5˅ˆQ#ì½½ÙÉO;ÖR¸ÀröHܦ²þtA÷DÓb1¸Ç2¶Ð_ÜdGÉsš³é!ÃZ~EüT5)<œ´E^øýÛmg„5Šˆ¸°hvû8vâÀÀm[Gü"i'œ$Ø—CñžOÞ°ˆT¢;©É2û>ì<ou!{öqqø•|ŸËÉÿüŸ]Í¢«ËEþù„Ãÿ°<úãèËb©endstream
+endobj
+1216 0 obj<</Type/Page/Parent 1099 0 R/Contents 1217 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F8 11 0 R>>/XObject<<>>>>>>endobj
+1217 0 obj<</Filter/FlateDecode/Length 1048      >>stream
+x
…VMoã6½ûWtʉâ¯ÚΡ‡MÛ{Ð"Š{¡%ÊâF"U’Š×ÿ¾oFŽ•EàÀÉyoÞ¼êßقæø[ÐvI«
eõlžÎiõð€ÿëÝÿ—øxMÅìq?»ZÓbAûG6»-ísÂöùœöÙÍ©ÔØf"™@ŠÚ ½Uµ¾oT'çsŠ¥êÖÚXjM¦¢ÎoɺˆíI(•¿lNÒ/û³9Ý-7é(7Ïʞ)«
+ÚærF‡`œÅïØ6	é7mÉÒxäß´g*ë›*¬WXÈZoâ9¥}©Ï@÷µªªóóMU&ﱫtÉØC*th#АQJ/ª>(ˆ“!¿\À›«¨2!’+(i¨*=®‡$¥¿¡ƒ°í›À²J”;Íj&ÑkM™³Vg)'¬³ª‚#•3²ëÀŽÓgåW¤ìñíLÑãã†8üõ;gW´ÎOðK‡¹AvÑy£Ã÷/¤Xw‚“’œÎY`†Iø!ýšP¨)˜X·Zdãz`¯¥¬ÔÙk¶õv‚¬ŽÊX‡­
?Õî[
Yj³’ƒ®5	Í\:=ňïÍFŠááB¦:uؓ±b„¤·ŽØٌ~ùÆFW];‰a)ˆúu¯çáS)ËȦó¿´$c
+“´¯ÃvÊõ™Hfƒµí‘T®CæÍ
‚jåÑ$¾;|E*ªWX	&¨Lä“F}'#·LȵQ×M—YåŽ\yv×hèòN‚„]K{$ýSe-ö/1‘Ž
…wµ@tJ¤„‹’½Ö]‡‹÷®õëg™¾Ò	ƒ
++åS—Ý㬹ôk
+4˜ÄDÈë¢C	°ªCDO/Ϗ½]&z‹?QlêÇ\‹ÁåÚ
+²s£#®î2‡YsÌ7h•—	ZxjÂ-us˜wôE]UáÞM'îÁØý\”¹=¡jìí8g>Á Å™Ð6×µÍü¹áÙ$%’ØUÔí÷Á˜×4L,ÑÄÎrõ:‘h¯úŒ1¹G*s#irÅäÀ¯¡2é{h̳:%±ToŽ§^ÝLà®Ö'€O0/)¶
+ÃÅ
Š¸Th[¯oÅ\çwÁkL¬ˆò	ºQwB!2ŒËˆl‹	jˆg,^ˆù@G¢„;zՔ¸3ù®2õ8¹ÿ `¨Pz¥µæ'lñ.(_‘Ø÷?Ð؅´ªËK6®L¾6_…2ž/I ƒl­¬:êw1LòeE»Ÿ@OR<±Úì܃¦W4à$eÈÎ6Çß?íú7ŠÅo»­óîÞ}ùúüø•þôî® úÝe-C*ö¼Üm—x
Éo~+UÑz¸˜û©Ý™;ðöõvn7;¼¸`ë/K~ôÇ~ö×ì?ˆ	öendstream
+endobj
+1218 0 obj<</Type/Page/Parent 1099 0 R/Contents 1219 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F1 4 0 R/F2 5 0 R/F3 6 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 612 0 R>>endobj
+1219 0 obj<</Filter/FlateDecode/Length 1449      >>stream
+x
•WïoÛ6ýî¿â€a€
+IJe;vR´’¦2 éV{û2ï%іIôH*Žÿû½#%ÿ`E'É»wïÞÝ1ÿö"â'¢ÙˆÆSJÊÞ0â
Eüõõ×^4™†3šD³pD%¢QxÝ<4ïfWᘢá0œ`u|9ĪâÕëYÑt^a-š\cÍ=ðÒÑ#Ö¦ãv#¯Ý.zƒûk
i±¼é슩C…7Ið)+5ü„ddRëÜîè#¥ªyEøÌE…¯ïߜ¥hæ-õÇD±HBúMåU^­ITô´ ;~›Ûloaä-L(Š£Y8e7ÆÔ¥¤ª)/’ÄþÌ+@éàs–=I{ûðeN•À~µ"o;“Áüó׿¢S7
¥$´¤o'›Q2=53¤~4ö±Ý}y옻 m–'€àüýîÓÿ„KØÜ1æ°Ù­¢X$Ïõ¦¥=Q•Õ
+À´ñ֛°ùô8&Át)€ŸÛ»Oß%á4ÊÀïìd% °ñ2šB†HÎCEJ§HUŽB²™l€^Ð*׃±jC ²I[*d©*Ðâu]¹‰*K<¿?ŀ`Z7Z)û“_štŽ/ÃÙ%4¦Œ7˜mJýoàÔ×ü‹éïÿéO¡r¼nÒR4V«ôÏîð›Zñõ½í½w$sÝ©ä¥óDZð+ö¸R #¶M×2àU;*E’å•ôË,‘-
 
-oïº[åt?
-Ym0k7ƒ`	¡vµßœÞz!N.8ØE¿P·e?÷;‹ô„×8lýÖ|nõá-ÛE¿5›Y}A0ƒ-»è·ÂÐâ¦!D삷¾_ü·€Ð*EèËZ%Öÿ)­âñ*S†¶*ϯ(ÚQ"SÑäõ©ÒÔ"Çù»÷ßßaE/WŸ °zÆ~c*?×±È}#ŠH´ÛÎÌØ£{)©Î$‡[-‰Ž›B–µ¨•.I¥´Ó
Ÿ›Òބ€5ފ²¦Z™7ºÛL"­27Ò£wµEL"7š¢Få‰5µUe¤Ê$!ùYÆM-¢\’(ÊUT‰JIãµ(oû`LÂ%¢»Á›{ÀàѺLÕº­V8p—ÆlUg^‰CEck†½í ìM¶‚..ð4äÅ¤{`TJ™Hx¡©jJv¦=7wƝâäPߘ!³Î*ݬ3r ­BVIŠõFµº¡WU´©ôFV¬hxN%§Å\‘Ñ­—ë
èJëúÙ1´xCž×VotSÅÒw0|xˆÏvañ.þêЉþwmJSÝ mª†±4FT;v¥mI¥:Ï5T®ÉìŠHç*F$ËÇ×_;/ib,œ(O¿ö‹Èïʄ›ÆÖa,Œ$Ò=RitŽÒ3ÿ›í1¡¶ýÎmyÁafÁTwƒÎGѝ͟
š8Ù¾/›Ù#8Ìï±ùð:ð–ÓðKæ÷êN*Æ"sjN‘™¿œ¡z{EÂǀ™§o™ Òƒ6öe÷U<èx×Èc.Hð£ÞRcdeûÜø©¦ë½'eÓPZéâ´­ý縫ű7Óö·Gïw_1U°œkýˆö°­¦i
¸ì2ú§¯ÊÛv6L0Š,9Q÷³ ½äµ]±6ž–c&£ç¡ˆºrò&‰Þå/ÚXµrt¢x8®À—Ùójȹò,cÚM­pFT¾ã´`~€TJ$î¿æ	ÓºZÇ?1ˆšÍ”òsí¼é¦U­
-É¥TˆL-\<"T84jjæ/<Ø©èa̓ˆË.Ñåf¶Žî퉇—Ý8Ä.Ÿ+DÙ0ì>Anz÷ããl'ûóÏw®Ðä‰þ¦u%7ì×
# e~5ÇUv؎ÇÑOBåvÎ"ª®„m3È8ӆ"?’ „!ÿ¿8ƒgÃlŠèL÷
&ƽ|’•Èi#*QHD%ŽÙÝÍӎ[jŒ¹®+Û¼F2OJW`ìÖ½/Ý
ÀöÄ`Rº‹Œ3y±U&1b"M\©ÈÖ$Ú~S#œnŠ¸p>Œ—(T|\ãòsÊ—lÙþß
-ÃTSèD¥Ý@•qÞ$ÇcÕqX¾ß×¹ŽDþó¡¯ÊcÚp‚Îà¾ñ<ï»sÏ –³W#$hXØäNaV-‘QTUÑ‹W/®Z{óñýÝ»¯Ü6+oöDÔÍ©Ôöš3¦oéKN†¢–³ž±!jT‚FeŠ¦øá
-ÁcR”EŠ-ÚHu8sPÀúِÕ0±ÇÿÍäú?˜´$yÑ&4|…ÍvVÉp„šï߸ ôðÙ·ý»h’ÛÌX	öv'íÇÁ(p:­ìރð¹,¬ÕÓþòlC
Ú¨$Ûd|þ0Ö%Xܵuʝ»#4.JW楬IÄ|U|xÉ1¦´¼É¹¸2<"Õ„ÏkhËÚþÆþøџ³\¤}&ØH˜Œ¿ðßâ%hŸCÁ5ޓËWüpÃ@l<?WúZ†Þ>|r,ð¨ÄÉÍMÔ¿?h%
f«¬\úØؑs½Xz‹yw‰
-¦3VñãjôËèµ[°endstream
-endobj
-1592 0 obj<</Type/Page/Parent 1369 0 R/Contents 1593 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F1 4 0 R/F2 5 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1593 0 obj<</Filter/FlateDecode/Length 1089      >>stream
-x
­VÛnã6|ÏWœnâb-Y’/qòRd“l‘»I-}¤$Úf"‰*IÙ5ЏrQœ‹qÃÏefÎýuS„¿˜Nš.(¯Ž¢0¢Åò4œÑly‚ï	þ§•;˜Ï’0|J&ŸO)Ž)]!Öâ$—”„HQDi>Šá<œ†³~—¢&³átwþåÓ9i®¶\‘‘î·ÛË*dÅDýKz³ÇA²@=i1ºª}
V²,åNÔkÊeU±º°Q*öÀ_‡¿ï“>%ÓnÃѕO”t‰F—7_ί¿¾Ì>"¡]̚UÜEÄS €räŠö²Uô]ԅÜé®z²Õ"Ÿ•¨…6Š©$`ýݘ 8I¦‰=Ý[N[Qò5×äa”ãÁ}xÚòˆž’ÒüìOç}Ë4iµš”2gåD³*c“LԓšRMNºàŽ,rÁ7z§ Ò“”‚žFɍ(®Ykâ)î¹ÒٖeüŒ>XMpЇ[¾!vYùðƒZžpù¸dyí0{q,½â:íÎCº3LjW)”œŠ‚
-Æ+Y;Ê
׆„ùÉ#|H½[^›–•å~luC;Q–´cµqڕ…Xí½žt•‘¶éMçJ4î	ÖL‡ ªÜC
[Ù©}PÌ M(ÝϜĊ„Õåv#hӌ)kméVêÔZd¥§Ìv$qtßâ‹e¨K…§”è{%”6!¥Ò×x†Ù=PnÔEÎõ˜€Á›3Í[‘žyÿ“„{PÞdãú¸"VîØ=3Åj)
-Gc),¬™è.á¤éy@Š;üU[×°Ÿ0üÁyk4ŒÓ?´V¼éñ,Þ¬2Ý å`l0\E›sËLr|ÁxnLb5,ÖWّÒOè4Jæô+Eљû¼¨âÙ •;´«õ–k'+ò1µ·­aZVbÄCV›v2«‹™õ2H­ö¢†‡ü´bìV’‚ö}Ä:ƒá9œ4cù1ÀdżTõ½³îWµ†ô}ó¿YՔ|L×®YÛÕãæé@í—Aïuâ=õû0HfÞJ.®n>¾rP»M"·/Gö<kUÁ˲ýìä·ÈøýÞÌÉgéAef}èBª¯íÂ⿁Ÿ0ÚÍv“m…lµuªk¬",k“UûÞ¤Qî±üæ£<îÑÞ%4·“uxã<v“óLoÂsV#ƒ“Ö‡¼`º`Ílì®ï4·VÎø\t+%+w	*{“€gû/&ÇÎ4
5xG)F×à®ÛÚ÷ùK»õ‚¶K÷Úâ÷£>@Rwn
çØQüÎù…¬0ïµQx5:üИ·m†QÀ*p™&Ÿ—Ý«@¼ÀëÞrŠ—¿8\XHü‚¸Uòžç†.eÞVðn7ä¶Å ¿œD³è_ó(…P-Y°®z­é¦u*œ-–ábžx´ãhfC\¥GýV£!;endstream
-endobj
-1594 0 obj<</Type/Page/Parent 1369 0 R/Contents 1595 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1595 0 obj<</Filter/FlateDecode/Length 1121      >>stream
-x
½VkoÛ6ýî_q‘‹Å’_qœŐçV¬y¬6Ë>Ð"±‘H‡¤âëþûî%¥Äq¬¶ë)RDâ%yî=ç\Ý»Vzø¯{Ž!-Z½¨£ýI4†Ñdÿà¯0k&­ø´ûÌpÇx‚pÀè^’´strñíUš‰‚Á
/¤²/“÷­tû½h‚~ýD9aæFZÑó½Ñå.u.Ó%Áœ6p±PÂøãÓôû
Bw0¦““ѕ*uR+ؾN(·
)S ô¦J+88
¸¥’3‰¹´Î‚žÁT»r²˜âpy|DñÆú§c#HÌ\&ꔆр.žé<שn ÕE»_QÕha4¢P£µû&¬îV«ƒPaά]ð°ø$¹°õW]‚Ít™sŸóÐ
s[ßZ|¾°Ô¥§×wbáÒxÓépFÀÅ˜úì€ë‚IU¥¿XÌYPbA'™Uæ¥ävnüÿ™.piDŠLI
-ÇŌ•¹Cà"ÏmTmŒCJĘe¸Íe¾zHÒĵB"‘íPu¨ÔÕ}š¢©ûTqýYaçþ
--“¤?Žv£a4ŽàT~ lA*é"Ö1ãP‡65rî*åí×ÚïFkûû¼•ªünzÂb%Ñ°òH>êf*_㽜‰u¬„à–Dë‘Ba34a\?ÉÓg§ ×ÃԆ°pR†7¥RÈŠ]KQÑsôI@>X¹bß1{»CŠó(	d¡¹œ­UŽ,æµi—Ö‰OÏÄÒßGžs(>Ôq€ZÛ&è6craµ®i)¢7+j|'øx
-Ù÷S'±bʞŸÇb*™Š*ª)Æy­9OT÷-F•¨éA›ZæFυYƒcÅ])T*"8[®	)<Z¤3y”ÃwÖc60¸CY¯Ç5Ikftáa‡
õ.­‰}ŒÑ•S£0CH]ô•b×N_VžÏ—žSØöÄo?vâªDÁA«­ŠêøÐ)«¯Éƒ£ü)םë—ðA ‹«T??¾9?~½uuv¸Õ ÒLCWA{ëŠ\L¦M›Ûú½L…}M[+óÅ
-BJäÐÆ{/.“7çW
׿;I~>xûºý]Ã:ÁkX
-©ÿ祝° ÷~QjƒÛ/¡ë5Õÿ?¢nÕ~UZ¿A;l‡®¸Ã±¨Ëêƒgo†Õ›ßáÅì3ešA|ϼõnc[N±E’ÊàãG¸¾nš X¿!ÂWT[ú“žf(t°ž¯8cøaÀFhŒ°s­8	ç…𳔕¿Ø‹ÐkgùLS	TcÉg¼®çÿšÕ·ºÇô¥~¿•yŽ=<…ºý6ªã«Äñwüüyüñ餚`úcÌ'CœÁÇa¸¾:8;<€K£ßãÇ:-dŠÑDL„wë
ݽMíjîDX_´„æ0¥£ðѧÿÝ
ª™B{»ôî$iýÔúÊódZendstream
-endobj
-1596 0 obj<</Type/Page/Parent 1369 0 R/Contents 1597 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1597 0 obj<</Filter/FlateDecode/Length 930       >>stream
-x
•VkoÛ6ýî_qjSDO;ŠÛ"8
Š­í6ۇ¸Ce‰ŠÙH¢"Rñ‚mÿ}—”äú1u©
?HÞǹs©‡ž—ÞÎ}ŒDYϵ]œ»v€ñäœþûô)’ÞÕ¼çܸxyBÁ„þÄ i×Å<¢yÝó4-J!ϖñÉüKυå¹ö„„72¿^Ï»üÉ¿8ú¡C€E+Ñqôã»Ӌþï<_ò<îwi}X9Žú³U¥Ïï‹5­µ6$+yÄätéo‚X×~¾Ȩ;[ÕÁÂb”5+l7üƒQ³ó	/_¢Ì`%pÃÒIEtïÈj)Ÿ¤#³å·BîwT2U•
fÏÄ?zíܼnKkù®–ØgöÈlßÆL¤aÉe-8†çÕMÐH~Ì!kS<‰
-9c1”@&bž<A­jMj4£9t˜Šžseǎ³eh뢰r×ÁR…¥ª
-Ȩ䅲ñN¡’U˜¦O9}™sK·ÙÈö5pJRŒ0MbY)ȕ¨RZ‹u­¶®„RÕÄÀ^…
xN–Ó”Âàù.ô-?N%Mu´ŽÁ¡–ÜàÔŸð”!2"‘«¬SÂ2¦Vº3S~ÏHŒË7­§†b–?¶Ç: Á@Ÿli0¨qnemç´÷=b1éó·x
+†L0ñiÏ"Õ(o)¼ý;0*”9EÕ¬rź¨ÀþäjÏfÂ÷p´´Z'øk׍>3ÉÊÌҮG“r1drq²g·U,x|ñ¹È)$ñwȝì]É
-XkyÏT‰¬Kçà•ã7+Øzñ¹Ãé-úG²è÷aˆmâÔ»{:†„TĶfÌtï;R‰¢Í“4‰*^šD”M¯~eΖzJFÞ½~ÓÀ[Gdž4Çi=h2\Ç\隐©”çä8-+Ú#’—-GBÅEŽÅ°ÕJžb-Êû»RTÅ)VBªÿõbFµ	Usaöþjº—ªÜMBªÉ–Äbq¨óµà4?7%%›(˜4òm²wA|x>}Ééw€¨‡úF~Ù³6·¦!˄9TÞ­KöÀ*1ÞiGÞaªÞ¾ÝKuˆ(„RÚ2¸ãvßëâ:Ú–Wu97“æîðz*™Œè
¤™Ž³Ë÷W—ø¹_X¤0Q•1²º-5«U°Î]ýÈÒÞk˜3ižæz
-K|¬Ìü;8óé®Ö¢n M\Ï{¿ôþCy‡endstream
-endobj
-1598 0 obj<</Type/Page/Parent 1369 0 R/Contents 1599 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1599 0 obj<</Filter/FlateDecode/Length 1552      >>stream
-x
¥WÛnÛF}÷WÒ°HI¶%9AP$MH´QQ0P¬È•´ÉUvI+BÛH$­¦MÇ wçræ̜ᗋ1ðwL³	]O)+/FɈ¦·3ü¼™óÏ	þI+÷âönœÜœ{q};Næý¯éýˆîh±‚é¿äû£-²
Él£éÙ¯V¬åsJe¥ªRu’§V”K‘Xi¥¡?ÉÖÂÔôþ×;úûÙåâóň†ã\.r6ôâE"ãGéý]ô?œLùôxšÜ&×Éÿèé,«jíÏÞÐxìƒ
‡ß®è äï#¨7Ò¼
dËeÞ½<¸êŸ©Îœ!Q…{'[{U-U•÷íQ.d©+K¢¦z£,í´ªê+™Ýè¦Èi)I,Iµ¦LW•ÌpRã°—¡ºN&œ¼Ã•®)×¥P•²\êύ­	ϕÏ{/QyA…ÎDA
®%>µ»Nsâë,¡tµRë7óùpªôñÕû.Lˆj2õwÊñ(©¹$]	ãÓÜVzt@ÄÈõé¸Úk³E‘õZ"m“P0º•ÃѳÿÁµ3úQÁ¯hp·ªU&j¥+ZiCš­9ÄT&ím¥Ü"‡·„I;Q2è.çpOÒR%eÎƗ}Ç¢¨kN€Ý•ÓÖr—ÐÃàÊÛB5p¹[IK‘m›%íª‚˜ŒZ«
+†“DÅQœÌo)VÄÂÈå;ÊM_H÷èG?bÀ6ØA¡Ö¨cW1ˆ¢ƒ ¥Ç…ÚRUWöHäl¢’Œ_èmtþ’r‰4m#æàœ7_W!=¬ðø˜Ú…¿ª‹Žs.ømÝɔI‚žXË·U²×Á{×pdÚæbpÂÜ·)>Ò‡+$MjHCpZ¥jÒÜûu°N›µ^S@{oËàjùît—ëëntM v–
+J¥yaº•„Db„ÈWȓ›e*_d¡6¥ã‰J©Ü¦ÐYšþÄ}OՖû"ɉ–’rtµjÓ5ª°MrסšuK(Wf
‹
+8œK—€Lm$òÇPëЋ¸dŒ
Ž–…„.)Ö¢J24W/Eq¡³êJÖ
+m¦U½ÎNà¶@÷ÚK€	üm´²*QÅï®|éx	WrKËÎÁJ“ˆCnkî̬¯S ò3¬™$yÅÊEçB|y4<MÒ\ËcÇo}Gb÷p:¤nU]¤Ì †ûT)]¢îèm	j£…ÂàÀo,\RÈ(Ûþ®zCx¾:rWхRφŠü™‘›ÆmÛ(ŽjàOå/7Oôtóøùïn?9›âi<gs?}Ÿ@ÐÙ	ðþ&fH½;˜Â³ý(°zµÊ1ã-2k|ý4’>O&ò…‚Uœ®eù*Ê
R(bõ"¤Ð>'~²¿îî¾p숶#òGìjrÊáÞK¨TËM!$¿¹¡,în!Õ·I4š»CGwÇ8gi—Ü»´´&´i|JhðÝúòÊEõºF€»
F“ÚV°ïˆÇ¨{ þĞԕ2ÖDµ#½kªQhѶÏrwÚ¿ûw&Fs4­ö÷C.,×PÍÎXY^8‡}ÊWƒm
#Fªï+àKÉú.º%F9f²£²ã“Ú^4­
+è!
íZ%ש×d{½àéQrã“in=ø¬‘î÷2G9‡¸]­–Áå[
ýPƒO56¹¿ÜÀ•´CN…¸@kÛ·[®ºÑá¾Í­n€BŒOLzGä[À÷õØÚ£§[Û1tŒºàʄ)û{]¨XÿðåÞæèæ¸4ûÔ5LpÞY$M¡\6WŒ£8¸n‚cƒû«ÃN\¦ÜUñÇþ™˜Ì&álzå/x—c¶úyÑû£÷C‡÷aendstream
+endobj
+1220 0 obj<</Type/Page/Parent 1099 0 R/Contents 1221 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 621 0 R>>endobj
+1221 0 obj<</Filter/FlateDecode/Length 1714      >>stream
+x
µW]oÛ6}ϯ¸ËKÝ!Qlù3Š!ËP`I»ÅE1,{ %Úf#‰*IÅÑ¿ß¹¤äØrÖîehêD&y?Î=÷ðêëрúø7 iLÃ	%ùQ?êãþðÇ¿MGQL“Ù$êSNƒQû”ÑýÑî3VÇÃhÔìõ«ã8šÒ¤?‰f|ö|7O~uç9§x2Ú_Lpv<™ÂÎNΣqóäÏî<ãì`¼ÝË«»ÏXÙo°Ä«ÈŽ†Ã!>G³)>cü7’–~alg!îÅp„0¦áÁûzyäµóýµí#Ö¦çÑðåÜåüèìfDƒ
͗(Ád6¥yê‘ïÓ<éÝÉgGÉZ+In-éíüK·6fEg7qc¡GmWFW%½Ûßì«é7·îz”©B’*¼é¿V™^ˆìo²2qJãK
<Dú›9»oc<'(ï<íí¸¢ë·a_k¼OÛ}²„Ρ¹$½ô§:ð¿‘$€ý­
+U¬"øËù?uEye‰ÌjZ‹§€E),9i¾Š,S—ŽJa-¢Ní÷¡±Ò1!)´/P¯–þèKÉz,"Š¥6TëÊPe¥AªšD…|§ád“Ó€)ì°ÊXÜÍéãõU7áUˆ,«OH¤)=ô`7שZÖoI|?Ù6IÒ<!®ÿ™
H‹]^_
šßqÀò‚Ì×Ò0&¥Q¹05‰"¥…HAå†&‰.œÑYÆðދ|!h£²Œ„s2Gu)ï‰{)Ê·«à+íÚrp¼cGŠdÝp@Aä¦ä'>¢ä”‹š6¢ð! gŒiŒÏˆÛ8$-¹ÇHW8‹ÜwÃ-˜i¬‰\«W è²æ"C/©'ÉÜQKšË拴!$Ž		zQÊ͓³°k(Úò:´ä.ÖH1Á;	ì‡{²ÅÂ7·¼_Húw9äϏߠ
+¬¢ë×:=¡ÍZ¡<è‹bb¤U"SÆ:p‚MÐCY¦7-_šLä3H8oËr”KYes|%\'K4iª¥hÎ)ç$Z”(ÖY¨£dÑ¢ŸßßÝS*œXÀÖŸ°T õ+lvºãsY°b‘´®[ð­Li0.¨OH>´A0𷂔1Ëj/QI¦ I^Ÿr…à*Ímƒ‚øWF¹ú‡PsàBâ›é÷žWý
®þ¶eØúg¤ÄÇ}
+<ä«`MXönEQS)u™É äÂ>¢fF®„I9_½ä®ó©¼A•!&¢úª’w v`}è¾Å©Õږ1ß@b
×0Ä*
âÔ3_ XÂkÇfS-]JƒÎAˆp›«gD‚‡vcy–­×övœƒˆ„©@R´Ó@£§Òm¤wn¢LRå(^‘€8L=@ñµR8(èØ{9öÆ9Íø‘ ©9t÷
+ö«p‘Ñi›êZCmÁ^Èn”KֈÙ‡@ƒ±ˆ.^3~@K^h“Bʔ;kÙ¢Ý!+:ϙ»|noÛ\ÁpD—,9KQe]ù’ðÜ/ˆºu,í¶*KmRºË÷î=wóßnŸžÙ;=Ã@£”x•ÔÔRÞr%Pô–3çύ	ÂL×rzíǕî}íU¢©MîûǓ§µüX¸Ë¥WAÖÉ҆`SÏw±«˜|ñ˜š
6MAx2ÚbéƒÓAŒy<`B¶6
+jÉ6á&̶  h(°|Ndé‡>”ÜӐ߇
M+VÒÓÒèœG–zׂbࠑe&Xvu‡ÞÂFIŒk×`tâ4îÖO]_鼬p
Ùcº½½Â˜s«£­^:
+fì*¬Î$&Ÿ2« VÔ³›×uiÑçuæL$‚Nãéù<Ôz]£wM§ÿnwi4êª2®ùm*°=ª6òŠû x〈”þÖóÐ`4õ†9z…Ê4nZúT¨ç—¡ˆA¯97 ÔÁÌÏ#<Ï`ìh,ù‰2Tv{
	»¯:²	‘Ov‡UŒ_ˆ0ÝOµ×8`Åñã‹i´yv¢
+)‡N8j’%ÁŸ‡Ðˆnž‹—Ý\¡m>H`ÈÔð ,U&m¦È›Ü
lMVå*¨dšuÆãvUSW–`÷þ›+^xz‡Åßßؾõx¢àä‚鍮²Ô¿2 `¼Q­ÖxÀrÖ¼ðbڟ
ñÞ6æëíþâöò‚>ýtÇeqG¡qmè‚ϝ¶ÛO§1^ïÒÞ½KGxûžNf¸†qh<b[¿Ì~?úe9Íæendstream
+endobj
+1222 0 obj<</Type/Page/Parent 1099 0 R/Contents 1223 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F5 8 0 R/F6 9 0 R/F8 11 0 R>>/XObject<<>>>>/Annots 628 0 R>>endobj
+1223 0 obj<</Filter/FlateDecode/Length 1331      >>stream
+x
}VMoã6½ûWÌÑù3¶S ‡d½)t³éƋôÐ-Q67©%);é¯ïR¶e)‚Ø–HÎǛ7oø³7¦þÆ´˜ÐtNiÙ%#¼á1|û½·¸IÆ4ŸÍ“•4žŒðŸ
+z±:[$×­Õé|žŒh:¹Iæ8;›La)>ñYx¡é8ڝðÁøÀK­Gœ›&‹ÖZ뱤å8¹i­µÍx¿g£ÁßhŽw³å¾'ø·’òÞݺ7¼Ÿa?­s 1_.hF´Nû¢ö;©½J…WFãÈÏZ:Oސ ¥3spô¸&'í^ZRš°œ(%Ä;	×ÚvsMƞÝ,›C¿¬ôFt5ž&xîL]dIórÂáåS!…“ðžÃ	|ÃIØqY/»¥>Ûß .ªD%íå¦PÙ°)G J㳌i!3AîÝyY†Ôjox%EÁI8µÕôýñá/ªU†”`~Ë?¼éßBd€£2Í	kêÊ%´Þ)G©É$á[ì…*ĦÀƒ¦LîeaªxÓÆ
+î¤#£9 \KÃkƒŽÓMí頊‚6¼c/3NÁÊÙɎ3Fwa]æÈöB{±•|*A_ʓÖVùwŽÓïš:|à¨?:S
8ŠVt¢n¦oOŸ(Ý	­á6å›H=ò¾ SˆAèÝWà€”op-¥ÐŽžE¹A=']ǯ6p⸪>âKåm
f¸À	·S•û0–å»ÿ»¯™èÝԔ"B‘e1†Žï&"X
ýc¥3µMeaàÕNìQ	®Ëeã5`‚¨¹5%ØÚ=ü´ú¨«;>Ešš„Še"lë²à!¬¸¿ ’ß±…áýu£	ý3~kµìY4úºØ÷õLÈQƎŠª°ƒ áW)+žT9
jb*	jœÛù¬íìõ¶qKܶ°U¼b›LÊÆ_!œ?5JYî>²åïˆw"ù¢RkœÉ}²SqCERÃ8P[#3´›É[{v€^þ¿X…ðQtûڙc8
övBŠY²nðиšÃ;>ˆDt-p–Î	Ԇùv&TdKÓ ¤˜1S±ÿŽçsv]B`+Ԁ9w^?QÒuvÁ̕f5…CÔg›ê„QQrã‡Ò^´w+b>Á9—±É£¸ÐÌ\ÿ†Þ>‚[Y±æD[ h+=sI­&•ñ¸Ë¯=%\î"Ï«h¯PP“w ¶AôÏÖ7x½åvôiB·ÐmÏ¡í(¨9ЂTÅH‘:Ä]¾y©3¨eƒ]^û3<ªIÇwɆ“j†
+O!ȹErÐUl$ªªP˜2<52™t DÂOÒ}†}ô]«·fŒ§Ì‰W>Ï1â°u+QVÙhãbvãۉ7*·ékÔ9ÞÀ,;0CES¡®¤·ê,³
•â•é".«uGâUQc…¯®'À1®G©÷ÊÍC,<ÊÍMPá‰ÝÉô4R‡÷óÓêêxgyüºþü+Ÿh+å¦P$+yÔ3þFù3“Öað l¹²àSUoÀ«Ý¹Þ/rƒä¶â¥?¼þü¡týöbl‘…`O¤óÝ''æÀâ;­ûØʄÞCž‡ t¨ïÆCãï—
ã9®šË)ÍF\<q{¾ýrwKOÖüÀ U“s˜·lñêxàj1Áí3ëGÉ$iêÈU;Þ¯&#\ÏWal2̳d1_âþŠC××lëóº÷gï_@»œendstream
+endobj
+1224 0 obj<</Type/Page/Parent 1099 0 R/Contents 1225 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>>>endobj
+1225 0 obj<</Filter/FlateDecode/Length 1616      >>stream
+x
¥WMoÛF½ûWzrÐX±dYrzK‚0Ð8n­ =ä²"—âÖä.Ã%Ũ¿¾ïí’M-ÚÂ6l“»óñæ͛Ñ׳¹\âk.ë…\­$)Ï.g—r=¿ž-ey³ÆßüÔZ²ðbq¹˜­¦/ÞnÎ^½-‹KÙd°µZßÈ&عēäü]®ªF×2ŸÏä“5™Ñ©üâvÎzÙê¦ÓÚÊgcS×y¹Û¼Øüqv)‹%Lœ+›Ê§»ÛߥõÆîxj‹ƒ<Bóuôwqµœ-xàâÍÖ7µJšxl	·ý±Å¡ãØ­mô®VqV\ÐÓ“Ôλ¬…#M^»v—‹’¶½`è’+FÐäaR]#)%?ä®8Œ›â‡>“ùUÎàŽn§­v­ÇŲjæ¥íÞÔΖÚ6^2WÃPáð¼1¥žÉg-U­=^ƌV}Fçҍñ=‰ë´í,®0Á&×ò Ê­šDä[Óh¨T­J/ÈI‰wÂBŠWŸæ³ÛB—+:Gi4o…2™²Â;¸Àx<!üÛý;ITQø—r_´»‚QyÓ"Tۘ$^ÿàÒ¶Ð8Áâ0‰;U"]ïM‚ߝi’œAŒëF5›8M]©>â¬}8^UZ
cu•4óîiÆ3H½Ï§TIn,j°É—JḤÚ'µÙ"i†4*
X;ÔÚ|£Ë—¢¿U|³Æ<œµ6!²ª0ÍALCà÷àȒ
Àø”™]>ÅÄû7«½P·Æýâ0‹dxÚ¡iЋ™€ä5ðþâс 쮡‚ÇN…<Zסä¹jþ¡!rµ×’š,åÁ¯Ò¥ºˆ¬­uÏSæK¸‰ñ¤;tS…4Àò2V™uÀá‘ÉF'¹uh3ÙGZõ@‚}¡ º<4b©RMø–IÚ¢A'Ž‰›^‡J4“X$bJÒ#O{®>H©¬Õu@˜`­ …V³¯JÐãØ"‘Wð–ªÃIÀɤÖô…â>£`bÁސ*pIײÙakë°ì|Žú,Hã„®–ç}ŒzjIfÐX¼SՀ@PvÏIyihÉøžÒDÐ2YíJAdš¸»Nïu
’¢ýӔ¥¡°AQ‹ý6$è5³Ímè(ú–TŽI’ÜaØÐR¨Q­RÞ£RœÇÛZm
7`«]n ‰²Rh…›,®M ÜÖüYÖË֓¼'žüJ2Fœ]‰!„tHȐÛÙÀètjØњßUÍp9ø9•Pfk­Å—hltÍëO3ùÄÀmÓ«É@Š»Í±Ñ0u&­Åë¯Þ'ý¸¸XÏn8ëÁä/‹ÕZâÛAÂË£~…uxóÿÝð}_GIrewäáü?ö/7³ùëF·©¦<rG_ª‚u¤r@[O†y¸t®-Ò^œ+¡”jë`á8R=D¿É]ÆñHôÓ¶*†ÑNŽ5´9vø±òäxo)ÊEh!tRÒ(Å'>¼ÉHäG.UZbºp݁n¡°ŽpÖ
,‰-H?An4bÇ¢9êèq†õÏåàP÷Ay¿#ãhò¢œŒv…‰<‚
+@0úïvÃߎ°+lFàw>¹ïGåSڎfÙp0ºê:s±«×]
+¼Ú…EE¶¡Î®àG
Þºo”¨P@!k‹b|©Ë-PDv
+;«Äc&-“†»¾S,`§²ÓhgÀ(€ú¶ħÚ@FMë F+Ɖ;ñ;ÚRNWÁun@̀Xã‰IP R¹²åºD*qŠ3ÿã»Û‡1ON’ ¸K¿ÎbŠwÕ©’La[å†Å`ž¼ä¨@¶²‹»&'c‹!&	ϧq/cB‘§Ì¤pî«öpÌ°I” T?ÎؗÁÄ×Vc’Ä·œ`êžåöÏ¡‚¾c_
+ò{ì8hGü°Òo"®Œ6F6“·:QîHÙ‡•-îÑϒò\ô;­½.äËùÞ¨ûÝÃCØbØaŸ$Œ­‹«1ËÊÞIa¶µª_^ààŽáˆ
–?bÇ3'ZŒrÅQ6+F¶Fm¡#ÖW˜°¶é{óæôéiy=ãǺ÷i.¼'-AÙ,×ËÙzu'ÒõŠ~ޜýzö´Ìùendstream
+endobj
+1226 0 obj<</Type/Page/Parent 1099 0 R/Contents 1227 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1227 0 obj<</Filter/FlateDecode/Length 1671      >>stream
+x
…WÁrÛ6½û+vrRflY’eY=*q3ÍÁŽ+“|
	ˆDL@ŠU¾¾o
’’iw:Iœ„"°»oß{»úu6§~ÍéfAW+J˳ÙtF×Wsü\®oðs?NÑ.|pµžMo}°X]O—o}°^¿>ða{vùiIó9mw¾ZßÐVÏf´M'ß¼rž¬¡:Wôíþó*Ešk£(á¡¡Æ+ºßò_Ž„‘”9ÛTdD©<	ÏÔÚ¦áÍwFÔz¯ÞÅËÂ[Ó÷۟g3º˜_!½­œlù_Ÿæ¶5´Ónò7‰:^'>R’’ǖ¶:dÂÉ:R{e¨°žÕ|n”:gé3
++bJ?.¾k#mK^y¯Q9j§út+ Ó@Łl²×¶ñ„ã:E•
5¤Œû<#í)QÚdŒCø_(èMÜjñ¬BÞ;ëÊQž·_î6ŸïŸž†ƒýƒü”¶9á·Q)*îÀèšDQØÖÙ©jåJnfÈÄ)©Jcâ–Ä(nrjMílQ ÛÒ
+S£¤	*áj6…pß>ƒŒt›ë4§Ú5žßìn°pj§œ2©’c\7RjÎy·´+g÷Z2µÐ™­5Á
÷:íŠÉ‘·¢ëÿCÑd™H
+E›‡F5ÞYÙ0۞&›»§÷äHºduqÇ1÷Z ð#ñ¦0ÂiR†ãIUUt)ú؝QÐTT"х®`y±Gxf,âxIv‡,Lš;kôofO%¼o­“̦ºU`zÌÑÀ‘û|òKÅ×½¯zŠ0)láÓ¤“ú«f?½ý¹üôÍA{öŠ8SPÀ|>½šÎQ›p™ªé”Ã%žúÊł}er"…:¼ÌøԐl&P]h#WG¹Ø£Cêík.'‚…Ó3Èìœð UZ7¨1tº£ücq«=(ˆ.6H]>ûºò2wàtӁg­ŒA2Ü
XÜ(GVOUØC¸níôòV×¹EXÄe 	öªšýJ ,4#jTš¦¶15Ê8­ªs攨a0^— ÒNG†Œ‚
+	%+\%‹rr%$ó'fÊÑ_×pŽèž–ùJ‘Æèšw*¶¥&VD¾UèW`D¹‰/Xi
+É:Áuèü.惩Ø÷¡û™°a…O"=z9òp.S9dÚ‡,ÝéÔYowuǵpc(´Y;À‹0ғ|G°ö¼%œ!XŠÊd(Ù³T‡´#ùQ$éQ2`”ÌrÌrJaÌô’øιqð‘l¦«~È´ÝéL	
+ԏA™«”ð^F:ã1fu~@!SÚ@çà&Ÿ
b¨ënòO€J˜Ròe
+’B•(µµ”		žŒj|ЍÍN•Þ¦Ï°€VÀº‹ç‚S¿%ôD8r2­YRÃ'lR™2Š¥f:Cxÿø:/õ$É#@²Mò˜Ã1Ïq0
x^ôô9ÑÀ!7–·ð=—LV”*q¬¯˜¡{ʧN'xÔƔº1>
}×ìGÖ}nPö'(Ù¢>"³·:Ìýý¹.ð4Q頄óç¤vÀà?LØíÑhåXvØ}ö…•ãQ”‰ -8J¥*ÞÙPœT©•ªi¢ð,T¬K‘Ãÿ“7&âÝãׇÃLì¬éÈŀ(÷»´¨ Û(¦SEè°­¸ÕPÐq†AXº<Û|·a²ÔÒ¢‘Ì#±,…Yh×9w;Nja΄Eìl¡²¶À=Ð@Ánœå¸eªuÞc >°’²¼aŠkð,2(þÁ钷ªÛ¸t~ö¡Qh췌׮1a§aƒP¡Y缒ålˆVۃV…Ý%Vb“ÜQè\tU^…{e€£	W«,&í˜ê½Ÿß·žBï°Sƒ€\œ2MÄÖS3ê),‘ñŸxÑ&aPE	9 2@1ªV$<äxõÅzÖÀÞã•H7Þ8¥/€Ó½Èä´0†üØÌð¢³”cnµMsa²0^Üqå™Ò‡ÅM݅'¸SH°ÓŠ¡-Á˜øâà!ñFo_Ûù२ƞ¼i{:±ûcø€2ŒÝ}üžsùiÝYî|…¯të+Z-ðÝKN7w6ì?y~ÞÚ-šÀ*áª/ú×/n3~ÿ?–®åÍrz³Zc=Ã;×7|ôÏíÙßgÿawdžendstream
+endobj
+1228 0 obj<</Type/Page/Parent 1099 0 R/Contents 1229 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1229 0 obj<</Filter/FlateDecode/Length 1832      >>stream
+x
•XMoÛF½ûW|r
›¶dÅvrsœÈÁ®[)hoŊ\JŒ—\fwiUýõ}3»”(ÊAPAjw>ß¼yÔ÷“	]áτn§t}Cy}r•]Ñôæ:›Ñìî–?ã¯ÓTž|\œ\~~O“-J\¹¹Ã‡‚püêŠùÙd’ͲiFOªÖ4×îµÊñï¦
+ùú—Å7\Ñd¯^Loqõl±Öo>'ëèi>?§Ê“¢R«Ð!€°VŸ´N{ÝàcCµj¶ôõéË_d[íT¨šù­ºö}	¤Œ±ÏÞ¯èbrMÙk<€ë¥u5î؆|—¯IyZ[„ïÏaº2¸_)¯DSPçµ;¸,-5*ã­yÕ•ÎÖTTe©¢û´Ë5‚úŒÔô?ªn>Gn>À´2¶Ñ1u/x&AÕjÛ[OI¸° ]…mI¥Qc·eeðÖ!@äPpcseH¾‘JetOì‡Æ
”•ó¨c@IÛ@H9åûFD£”%¾3¤‹*"‚†rÛøÎÀ,=}™S¡‚Z¢Ì„~WÏ}zšs¢¯èêÛ4ò8èh–¾šÞÆ=ÒæsRmkª<Ö·uvåT]3hª&hW*6B†6U³¬8^»Ç[ðڔT]úÉUhúq$´áŒcÕؓ •±$8“š¬œíZ`ãÏäßz
+P߅‹7HpäÐ.ƒªš…ŠM@>=-úºuž½?Îÿx~ ÀÀ§f_«I
›AR*Ïm‡ÓMWË\Ù¦¯h?E_Å^į+bZ¦Z:å¶Ñ>¦¨ÎU³³Â#¬¥Ãq¢bތKï×*_#r]Ó ÚQŽ}KF^K§Ž€ªÜPk:öµ¥à:ÐBÑ?GÃÚv«5‡´¥
f6
·fÌì15é
\µ®ª%kÛgãh	LAaÌW|åò3(VÈïìR‡ü²ñ^ˆ1Ã(”ñ@ώgC&ÕdˆØZ½0
Mß;±vT¢Ââ[cíK×J­¨o	?d<ýïh$å¾lÖxœ™¯¡ZÀÅ4¶­7-…ª‹s1”¨O‚;mªPœAÁÐ׀›ÁË@ŠOib¤U–ɪk3Zðœp«1^$dßêœù1†^1ïÖ gaaMÙ*Ì-œ†&LÁ´Àª…L'j¶áÍc]¡¶J)ÁÇؓc©Î¨•ÿûún°õÅË"	÷ëàØW=w	eòä컹©㌩ÙX…8©¶Egx܌AÜÑÖr@Á%þuñg^³_ÉgèïJÜ]bXà,<44X¢l®7™šzl”»sv±EÁÁÆlcðSÏL
+¯Xѯ@[c€ÙãÃÉÀZCØ]“óºD‹+pfÜq½P\
Ö§–0™Ño
Cwÿ„§u·Ïùù®âGÞ96æ¼ËØþ7מ1û>
+R…vË&ñ/Ï4vۖ´ò #ì}Þrý:€å5¦——Aô1Ö:Øà€ƒ¹Ñº`fÅ@ÌÆÈ6Ú.Œ’À‘(ö¸“o1# âcG]\´¬(è4™:aÇs{@þŒ¡8F)¤â:ºUAƒÙ±­ß˜ÄÀV°—-Â(;>”"*ۋkHY–
"i¯3z6Ýj¥–°ûŽÍ‡^C<ÊØɾØÏ®è۟]ÃV7ÞÒKc7¨š§çûǤy“Fe¨¥N
ãXßêÐ;òU‰XWýNÐùº±Æ®À€,/D.;éÙ¢ŠzÚz_qn€†Ðe¹ÝëرËZÃ
 †ÈF®wÒ·—†ƒQˆÃi»µzåDàÊéÜÖ-*ƒƒ?<ŽŠ#J Uꃞ•øîÈåŽÎ¥6Ô*‡ÆtF9j-d^£ƒ’pÑÀ€,d`Ņ†VƆÛB•€Ÿ"»åÉâÕ"j.+(@d.£j§³Eé+TÕ!\OKT`o8©—ã$E?ÔÄ#ß(Üò0ZÖÂ<IºÉ¦'Dij¼9©•¬BaØ]˜ƒç҂UÁ5«Q(æ GQÁW/6c!„©’~‰HN{Zêé‡ê4^Øç…O#1Èú»dÃkz­Ç¯)x‘«ð2î<'Qö)êÀ‡¨Íoð…À-:fy*ËתY	+ ‡…	šÆÒq<a0cё®@”‘Æk_06@upһ֏£H%ìwC‚{Ô1xٕ5·cÏwÒ2®Ft>:³Xll¬0[UgÅ?3¡öm/½"GŒËkùŒ W§¨Û!õ¢•©Þ) #¸¸ƒ.†+'š[|¦äa„%,y…ˆzUd,—z?sG¡ñº†‰eI
+i6X÷"‡øDZLJ1B·æ/x¸ç«±rwI¢Mnð{ÇÝ5~ÙxÏì?¿üx$ÙoÜÛO6ÇËP’Ž|ï¢?~q;Å i[üøÙí,»½¹Ã/'8ûîŽMüº8ùýä?ÒùÎôendstream
+endobj
+1230 0 obj<</Type/Page/Parent 1099 0 R/Contents 1231 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 631 0 R>>endobj
+1231 0 obj<</Filter/FlateDecode/Length 1810      >>stream
+x
WMsÛ6½ûWìÍΌE[’-ɧ6‰ëÄmóÑX™ô™DB"`
Ò²þ}ß.H‰¦ÝiÇÓ&1Ý}»oß.þ>Ó9~Æ4ŸÐtFiytžœÓl:Kft±˜ãïüç5­åÃÅåUrñ҇édœ,^øãÉ9ìóÿ¾¼;O.“+šÌ®`¾¤Ét‘ŒÛt'Ƌóç®ß,În.h<¦åÑÎsZfbùœ–é‰ó™ö	-sÈØZûµJ5•ê‡¤²ÌØ
)²zKª©smk“ªÚ8KAûƒ“kç雱+c3zÐ~GZ…Ý)©¢ :W5®ê,Píh¥_-ïÎi4ž&„p’9«	^ål?»
`	õ¤Rå_Ûh9	.~ìpœP鲦û©«ŒÎØÅÀÀYaVgA§7õîlh@!`öúùõJ­½+hm
+À$>ÜÕëB?([w¨‘”µ©2UGπ랥èÁ(êНÖ{w™K›¹Œ™ä–Î?K®•)Bã¾¢ñE,àh:¿1þÄ}E)ˆÑ¼ó®©èöš^#šX¦§ hÂÕ?ù†J¢¬
߄÷\D)R¯QcA
+.k涁>.¹L¦æ¢²]@%€Àƒ^Èj‘1?ÖW¿Ÿ|¹½þþ*òjLØ
+…Ùäu±£Ì¬×Úã—ïëÇÛ?i››4§\!Åä•Ýhrkv¶Ò¾¥Š¤>ļ·.w%€vmQƒ*u¼>tn[ð·¿,øCB·5mKvèÞ­8.°Ì®	„ɧÉöQ±Séœ
+*!ÎîÀmk“ÍÃÚÚlH)~±Aî,U
+•))¤8ð*nHö¡žj+ם2ÏüJ6!Ô`X¿¢l9†Ù=ú5<ôj¨opÅÂe¢rxkã
+fJ}!Àh§­~¬#"€Y{WŠ
)-ÓC“Ôªò.Õ

UUaböcébü„GÏŸ]‚·“+°±„)f*þ=Շ½ç]›îÞ7ð#v·Í,öNj|4Eb±P?v$2‰Kš3ª[jð7h5ËmÙ„j¨•
+šr]€܉u¶¢î×ÿÒ6ڐ¦í
¡"7B‹²ëf¨ËÚh«vÿ!"—	}PôV¥9°prûC£•×5•V; +)°¶ÚC€¢pBaIåžYd¹ç~4zléÀ¬
¥#9ê­ó?Ð`Td
+a{µëKnuT	¾%T
+i®á€š›½ƒ¦ýw£-üDñ Ðµ2ZíXÑ2WªgíÒ΁åkuõ Žô/£b{]7ÞÂL)ú|ýVúñÄ_u\T…Ãôܚ:Ç©A8úª"p^fG
^fwÆB¬yˆDŸ=Šo!?šûDÙ¨‹{‰85=HÌc5Æ$…²p~a0ÔYõcePºSÉðGä9á E¯Ë95 ÂÀoêJ¨Ω
JÀRÂ*0(W+…ý($°Î“,¸‡ò¤¹Ä'4º€¨3R…Ñ@1?ÑJ<֑àCÁŸ Ë…”{/f\(vvvƒ1
Ë{ÖhŠá܎iô×-pBŠ"ØÓÛvÈoâån¹‘1Eƒú×’ý!“çW—[Zz4‹.¯†‡%Ñoè„î±Éð÷ŸƒUoiXïñ§ÇåŽgQ‡ø>Yõ8»ï?}[~jÅÀ±@ñÂ'Ÿ(!¾Å£™©7+teŽ%ùÛèzß­
öÄÀ©eܾ±–ÕÇÚnƒ¦DéÇ×ޒ‰ýŠG”Ä}XÑà;×xúÝØæ‘Vî§Äïúnï2îÏßЅ…7¯±”óOk·'ìPS@’N|åÎÊs*¢1Ò§Œ°ÃmK]8«1ìä/íåú’Wã‘d*©kö{Ö“.Žn)¾i 
<cL@ÖS¦Û
Ýï|åDweî±õ@Å6ÆËdÌdG Á\קñõ˜xò–—Ù!ƒ:“I„úÈÚÝ/÷ Ê(W¹ÃpÉÞã)0ǃ%Ž!ê6KQF+µÂbþ?Ðòe†ð3¤ãÓ¸ÓÀk‘öH4–Û
ØBõ‡d’;“ßDÂÙ±כU?ë#mO17°BþÐR¼Æ恫+ìšX5jÁ#³ºK¼¹ö½ÂBºÒØ÷¶x”`Aˆ"¢è8æh”²ÞšôXV§-bÀ²ºfâÇw‡0^Añr¨<7V
óto”Šå:N$ž…å
×"@qð}˯5œYc+åXb«õOëîM2k_jxûî¤oùŽBî,6·l­Æ»ò§È±´=>š'~9ƒeß'³yÛG‹öëïÚÅՔfs~-ãLLígïî‘
ºî?Øîh<ÃK{1¥Ñ|"6ÿï³èb~‘Ìg‹ÈåÛúeyôÇÑ?y<endstream
+endobj
+1232 0 obj<</Type/Page/Parent 1099 0 R/Contents 1233 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F1 4 0 R/F2 5 0 R/F4 7 0 R/F5 8 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 634 0 R>>endobj
+1233 0 obj<</Filter/FlateDecode/Length 2016      >>stream
+x
¥XMoÛF½ûWLÑC@¢DI‘dôP8i܁c7Q‘‹/+r%nLrÕ]Òªþ}ß̒4Í:Š"ˆm™û1óޛ7CÿyÓÿbZÏi±¢¤¸˜E3z³žE+ZnÖøyŽÿNӞ`)‰ùËç_/֗QLËÙ"šSA1¾_6ŸrúrÑÿŒ§Ë7Ѻÿ´÷OW«hÓÚûŒ§—³hÑ{Ê.fâ…qÔ"Z¼Ý^L¯—Ç´Ýsš«Íš¶©$3£m2ÚfƓÊs{òTeš¾\ݼ½"•¦4¾rª²Ž*ò3ÙR–¨ËÊ$ª2øU¡“LaqáÛŸ¶Ó¯¦œ|½ýv1£IÌ(mÓÑÝ/ïhÏÇášÁvO©-”áӊv>¢öª=>Si)·åA;*µN9¤L=jòú¨¤æ«&½»T’غ¬ºBZ8éQ»ˆO¯W
(½]_3K>³užÒN#g•šò€x
Qj“º@Ö?‡Í-¢|ç|ؑŸ@ùÛí×í-ñíÍ¡D¨œ²?ûJÏaEŽöt¶5)ˆÌÇ\ó|cˆØ*ڛ\’ëE² U¦t2>c,îG{e(Òʛü|ÿšLYé#Cú/ɧÝ;[ðõŽ˜[â03ଏÛ8 ÑeȉaDÛLUä•IÇôTÁ\}ÚžÞ]Ýàú£v՘¼•\uFN]
nÚ骻ØÅ9à§V"&fØH¢™öš*å|ÃaÒp8YG›˜V+¦á~¾ZS`éÅǺŸÌ7Q|I“Ëu`*Ž£7Ñ<¢ÏúÏÚ8Ý?ç•iåB5‰Ø’,vŠ[îÍ¡º¬fȂ–ˤvL‚ŽÚø((nDo¯Þ}¤[úãî‡ç÷ŽM<I&gž`¡&<£;»[)h§’ªÌdƒÁ¼h4ÕU2=ª"J‡›R` ÐϜY…Èýw¢’š+_U0‰Š
+•¢–igmE©ñÿˆçæêãûA췟ÞÓ§Û¯ƒ+zut£=ÃqW7AÐ/`î)Qðõ€â©à
+Šõ2²Ø½cJØ1(þ‰u^¨$3¥z}åé”
aeOª¬x@5ÇHz‚,ª*œ…{å0>žƒÅ}ìSTXòvÚQ-7L {ˆÿƒ‰ÖL}¸p!c`9˜Råä+.jüêL'ÍÆQ’	6rÐí]-®
ßéà“BBæ=6,k’~šÜ¿n®z20M9N÷Á&=‹Æ,à~ÔþjŽÊ™“‚µîœîäûËýë1*ÿ„€’¼†û±yÕeÂ5‚§§Ü¡îSJ•.l)%Ñ3µ»eϞ»Š!g‰îyçu
zä¢:éÔq®Õ-•N-K­ƒH1–³†	±(É-ʧjŽ(ŒsìШ²£™Ö6w
©=•¹mûúL4ԙê6£Mx÷Uú%t¶ÐǘKµ3¹©ZwƒÚ›P|~€äæânjòIç9?Z®Lƒ#шq
+BF73‰çê!ytöѤÀîò
P5‚‹)ߏŽy}8ˆÀ­
+®q7ZH
)qx]ÁQp,Œœ//åØ
0]q}€h\Hdçî¨[þ¹Bø|á¢m¶Á]+b
 øš’ÏÍÎ)g€PAF¨Ë—ïÝ5¢kÐ'ㅟuú7%é»ýqÅãŽ_U&šå*®]hUúa‰Âr&³h½œÌçœèÓ5
+×ìX@«Î+¤ÿ1C2÷uÎZV9šë
+äIv©~Ô¹=r»‡|“(Øs!‡«:Ÿà dé÷B	ëÛ.
,â^ƒ[Àé&F.ÿÛºzž
»®´¹·ÚՕr¼¡I‰IßA$gȀ‰±ô`‚ÝïYڒJÆCøF[Û ¬.¥è¾Dª¼èc³£èI‡…¸Þ´I¾Ø5}ªsǦ¹<­)_XÃÕ3<«µžç¹8;”·Ò <ö…Ø
žeO—6ˊ‡‚‘sÛ¤ïø˜ñÞA>¼Z4ÍR¦eª\*…×°ÍÄTŠR;e&ÉÈ×G:NÛ½;-»w‡
+únÛ½ƒq!&Aª‡o°dB[[MJC@’b,7uâÑ:¦6(Õ¡ëpî꾋⣢OAÖÞM1)î8iWöb›òžB‰ÑöʌPRûŒn¯Ü@hW›œ}I\½ëèMn¡dÚºaü~óT€:mº}/‘¹½%¦ë^|Z†ÑN&f,ï
+EÐÚÚ`Š‰ïCëه¤Üa3c*Î
Ï‘4ïâÛÁЇXòá/; ?@žWÿ›UÐ绶ñ ‚é5œC&¶Í3çˆ#z×L¹ažis–zÎ/ïî^¸ö§cVJئån Ààpt ñŒqʲ
+LC})
+ÐVà4W>z´ý3æf~d	Ë÷^a|MõQ—òÎVa=§LƒEy§à]UâÞGckϾ&bb®¿Èh…IˍL¯gtÉïœá2àã0êþòÃÃÅOfü®€Nj9û–Ù;‘ç“x†×|¬ù·ýâ)	š`SÍíÿá×ÊQ‚ùT€ê’øÇDӖDM“	’ø"Õ÷Rû?{[é†36nãÅ2Zm´ºä‘è†ntçì7¼Ð`ð
+ïì¢<Þ9‰Wø»6LÖsaì{/‚Ëõ2Z¯6ÖՌ÷¾ß^ü~ñ7¤&åendstream
+endobj
+1234 0 obj<</Type/Page/Parent 1099 0 R/Contents 1235 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F1 4 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 651 0 R>>endobj
+1235 0 obj<</Filter/FlateDecode/Length 1526      >>stream
+x
¥WmoÛ6þž_q@QÔEcɒ¿ۀt]‡~h»-Þ§e(‰²ÙH¢'Jq
ìÇï9J”å·uÙRÔ	MÞÝsoϑ^4¿€f!§çW#oDÓ韓ùŸ!þ—’R»Þ,În@‡7‚þøåÇ«p<ñÆŽFޜr
+7iWÝ]…¬67›A0Ç¡fµß-¼’ó)»èöjê¶ìßÝÎt
+½9áÂvÑmÝÜX}A¸€°]t[ã±Õcز‹n+-þ`âˆ]ð֛å•ÿ°Z¦Ýt>£ebýÑ2,×ÊÐVeÙ5E;Jd*ꬺ&U˜Jd¿ýðæ+z¹ü=„Õ3ðkSú™ŽEæ‘G¢ÙvfÝIIÕZR. ÜhIt\粨D¥tA*¥®YnDCxÖ`+ŠŠ*}dÞè\n×i•™‘½¯,b™ÑÕ*K¬©­*"U$	É/2®+e’D‘P¦¢R”J¯A¹è‚1çˆ"ìwã
ƒGßë"U«¶šÃó¸0f«ªxíÅ8q¨h`Í°·-„½É栋<
¹F`q‰Ó0*¤L$¼ÐTÖ;ÓÈÝ8ãNqr¨o@‰9‚Y­K]¯Öä@Z…¬.’ëjtC¯*iSê,YQ/ðœJN‹¹&£#.×=Ð¥ÖÕ³chñ†<¯©ß躌¥ï`øðÿцÅCºø«C'zúß7)Mu´©
+^ÄÒQîؕ\<4%•ê,ÓP¹"³Ë#©‘,^?
vVÐÐX8Pž~í…‘ß	7­ÃXI:¥;¤Òè¥gþ6Ûc*:BMûÛò‚Ã0Œƒ°Ü¢;›?º³];^6³Gp˜ßcóá$ðæ£ðkæ÷êN*Æ"sjN‘™¿œ¡z{MÂǀ™§k™ Òƒ6ðewUÜëx×È.Hð£ÞRmdiû…Üø©¦í½GeÓPZêü´­{ý縫Á±7Óô·GvO‡˜*Xδ~@{ØÖ
Ӌ´\výÓU墙
CŒ"KNÔþlH/ymW¬'…åX†Éèy(¢®Üy³‰ÞöÏ_8hc՜£Åýq¾¼È–˜W}Îm©gӞ¨+ƒÓ0¢²§ó¤R qgø5K˜ÖÕê8þ±ˆAÔl¦_*çM;­*•K.¥Dd*™ã⡺À¡Q]1!à©ÀNI÷žD\v‰.^0³µto%î_¶ã»,—‹¢fØ]‚ÜôîÆÇÙNö
æŸï\¡á#ýE«RnúY;
+®F@ÊüjŽ«ì°£#…ÊìœET]	ÛfñZŠDü@‚BüÆøÿÕ<îÏ`“Ggº¯71îä£,EFQŠ\"Ò(qÌîvž¶„ì´ØRcÈuUêÌæ5’kñ¨t	ÆnÜûêÐí
l$z“Ò]dœÉãˆ-×Á!&ÒÄ¥ŠlMR®í7ÂÙN´—ÔýMµ\Ñ ‹òý`~ÿòð=i¡~‘®J§¼q	™e‹­0VçþF–ëD¥íýAqV'ÇCØ1^ìßV™ŽDö;󍢫ác’qÁ>—|ãyÞwç6žA-çºBÑÞ°É}Å\ ÿˆNµ¦¯^\7”÷öӇÛ÷_¹íÃpÙÛ?ÂÎöDÖÖ°3¢í5i@ßÒ«CYêa_زà3CµJÐúLúÁ?\sx^à…ÖgTM´ùræ¾V	*ƒ±:‡VáÓ`­þ,KÍOÀÿW3Ee§
ÒÊ/\:§9FûéúX¬Ðօ•á¨íd#~šm{vïwÿp—šÊøJ=î¯þ6­ ½R‚–ÌZbÝtäH)eÞÙh­$³BV$b¾è7ô¹
+ŘÙd\þk<ŠÕ¨Ïkq+*ÿù[ÿù¯¶2ö¾vr’˘Ï#f}¾ŽüwxëÚ_0Aæcš.¦ÍK­yÒýTêÏhszÛÚ±®a0ųÃYh¯ží‹–ÒðՃðî,V†>Õv¨Nfo67×Ä©½Âþ°¼úùêo߈‘endstream
+endobj
+1236 0 obj<</Type/Page/Parent 1099 0 R/Contents 1237 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F1 4 0 R/F2 5 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1237 0 obj<</Filter/FlateDecode/Length 1086      >>stream
+x
­VÛnã6}ÏWL·v±–,Ë×ä¥ÈæR¸ÀnR¬‹>Rm3‘H•¤ìèÇw†”Gq,ZÄ
SœË9gÎ诋Dø7‚yãdåEF0[\†˜,æø=ÆÍa妓8Œ»Ÿ’‹áý%ŒF¬0Öl>
+ä€‘¢’¬?…ÓpNBø]		vÃáëõçO×`¸Þr
V¹ßoo W%ò—ä	CN!ƒx†õ$yÿNZz¬TQ¨kÈTY2™S”’=ó·áŸÚ¤/	°ÛpìÊ'Š›DýۇÏ×Ë/¯³÷AS²’ÓQÁhŒ(`9j{Ukø.d®v¦©¨šNäë¼R«™UúDÖÞ­,NÁ†`/·Ä–C¥ÅV|Í
x;åxðBIm9 §•²?ûÓiÛ2k£‡…ÊX14¬LÙ0r(¹]eà rÁ78Ó¢Ò’” =•V6¢¹©”4HŠ§¸åÊlT]äò+ø@šàHÞò
t±;ÉʇdxêÀåãñÚ`ö"â ^xÅ5ڝ†ðÕ2m¡®\¥¨<Ä)Ï!g¼TÒQn¹± ìOáSêÝrikVû
év¢(`ǤuÚU¹Xí½žL™‚¡t˜ÍdZTî	V[œ+ªb
+تFíb:m¢ÒýÌ)„XC…a
 r›¤4Hk*¤^)cDZxʨ#…GO5~!†šTø”¶û^	ml‰òõ"<Ýì(7ê"ãfˆÁ»3Œš'‘^yÿ“„[PÞecÙ+;¶Çž™fR‰ÜÑX‚µ1S£K8izž Íþº–í'pÞ*
ãð¬5¯Z<ów«L6˜²368\yqb¦Br|ÁøÜĪ[¬¯²!¥ÐqOáWˆ¢+÷yUÅÑ Q;l­Ö[.5$ò
X½'ˆÖhF•ň‘6iRRaF^†R“^Ôè!ÿ­8v+A}±Æ`x†Nš²ìÂDb^uªúÞX÷›ZC¸Ç¾ù߬¬
+>€¥k–º:lžÔv´^wï¥ß‡A<ñVrs÷ðñƒÒ6‰Ü¾ìÓyZëœEúèä·‘?ñû“
˜“O'Ò³NíúԅÄ,iÑâ¿!?'`¤Íön…ª
9ÕW.²ÉÊ}kÒ=,·çóQ{´u	Ãi²No¼ÞǞ›œ#½ý‰ž˜1‰œ|pq”š.²f7´ëÍ­µBg<ÝJ«Ò]B•½KÀÑþcg#5øŽ’÷O®Á]#¶µï/ò—wëm·îµÅïGs‚¤æœ?sì(>s~£Jœ÷³!n”´_N?tÃÌÇ:ÅQÀUà2
ïÍ«Àh†¯{‹1Ì.ãpFøñ¨ÕÏ,ܪ¬.ѻݐS‹A{!˜ÇÂfUB‚B%²ÐºäÚÀCíT8™OÂùláўÅá.¹øãâ_è‹!endstream
+endobj
+1238 0 obj<</Type/Page/Parent 1099 0 R/Contents 1239 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1239 0 obj<</Filter/FlateDecode/Length 1123      >>stream
+x
½VmoÛ6þî_qȌÆÅbÉoµŐ4ÉV¬yY#l–} E:b#‘IÅ5Öý÷ݑRâ8VÛu/)RDâñøÜ=Ïsâm«=üׇɆcH‹V/êÁha4àßü5æ­Ã¤Ÿô`’9îOñÝëA’v^Ÿ{™f¢`pÀ©ìóä}«Ý~/šb _?VN˜…‘V4Ç|ot¹€Ët¯`N8_*a|Æødý~€ÐŒ)s’!ºR¥Nj»×Â	åv!e
+”^ÂL@i§
— Tr.ñ1—ÖYÐs˜i—A®S–S.Ž^S¼±þéšÀس—‰º¤a4 ƒç:ÏõRªkHuQàî—@=ZC(Ôhí¾	«/ªÕáA¨°`Ö.yX|T\Øú«.ÁfºÌ¹/€y舆9„­o,>ßXéÒÀãã;±pi¼-{'äø±3_p]0©ªò—û‚5KJ,)3‘YU^Jn÷àÚÿŸéB—F¤È”¡q\ÌY™;.òÜFÕöÁ8”DŒY†Û\滇T!M\+$Ù]‡AÝÝÇÕ!š:ݧšës…ûk´L~?z
£q'òURIq°Ž‡:´©‘W)o¿Ö~w0ÚØߏà­Tå‡pÒ#+‰†•òQ73©øïàL¨c%·$Z
+›£yãf&[̞dA1n†©-aá0¤
nJ¥
»–¢¢è’€¼·ržcöfçQÈBs9"ÚèYÌkÓ®¬fÏÄʟGžs(>Ôq€ZÛ&è6cqaµîi)¢7kj|'ø˜…ìû©L¬˜±§¹àHÌ$SQE5UÃ8¯5ç)êN£Å¨5=hRËÂè…0p¬¸-…JE§«
!…G‹t rØBâÞfÌ÷¨ê͸&i͍.<ì°á¡ß¥5±1ºrÆbf©›¾ÖìÚé«ÊóùÊs
+»žø݇I\µ(8h}TQï'eõ5¹w”ÏrÕ¹z:¸ú€@õó㛳£W;—§‡;

"Í4t´w.ÉÅ4aÚ´	p¬ßÉTؗдµ2_¼¥!¤Dm<÷èü"ys~vÙpü»ãä烷¯Úß5¬¼†¥PÚÙÿ^	Úxî•6øµý¦^Sÿÿ#êÖ
±EQ±áW•õ´ÃvèŠ[¼uYýbðäÍ°zó;<{†s¦L3ˆï˜·ÞMlËŽHR|üWW
ATë7DáJƒêaAÒsÃ
+¬kÎ~p#ìB+NFÂû
+]…𳔕¿ØË0kgùL·¨®%Ÿñº^ükVG<ÞêӗúýFæ9ÎðêñÛ¨Ž¯ÇßñóçñÇ'ÓêÓãÅ|:„ñþ$\®/NàÂè÷xƒ#–2ÅèFL„wë
ÝÉ/ë¼SÝ{ Ö7-¡{˜…óÒQøh2Š&ã)ªCÇCzuœ´~jýdendstream
+endobj
+1240 0 obj<</Type/Page/Parent 1099 0 R/Contents 1241 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1241 0 obj<</Filter/FlateDecode/Length 931       >>stream
+x
•VkoÚHýί8Ԑ*¶±!@ZE«D$RµÛv[P÷CèªÆ‡ilã‡¶ýï{glSu7ñ˜™û8÷qîø¾å¢Oocƒ‚¤Õ·û8÷톓1ý÷è“3D­Ëy˹îãóˆ4Fú‚¤û}̃ª×ã,
ÒdÏ¿´ú°Ü¾=!áÌ‡«ùNj?¼óîo
,X‰†£ß_¿ž·ÿâ钧a»AHëÃJÑmÏV…R<½E(Ö´Öڐ,à
“/Ѥ¿	b]úùy ƒæ@nÐ-ƒ…Åî)k–_ox;ƒjçž?GžÀŠà<ø¹‹àΑÅR>JG&˟…Ün
+(gªÈ)þ̞‰ozí\ŸÕ¥µ¼‘®–ëÚ§öÀٞ™ˆýœËRp×-› ’|—B–'xRÆB(D„<z„Z1”šÔhF³ç08<åÊé'KßÖEaù®ƒ¤òsUdAÎ3eãµB!?Ž!Rú2ç–n³íià”¤~šIJP+QÄ´ëRu]	¥ «‘½òð”,Ç1…ÁÓ]è[~œBšêøqƒC-¹À‰	>â1C` "U>Y§„%L­tgÆüŽ‘—/kOÅ,ohu@Ž>Ù"R§SâÜÊÚÎi%î¹ÄbÒçnðV™`âӞEªQZSxû·cT(sŠªY¤Š5QýÃ՞͈ïá¨iµè-Žñï®}f’•ú	¥]&å¢ÇäâxÏn­˜ñðüs‘“Iâ¾6ȝìmÎ2XktÝ'*H‚D֏¤ó7ðÂqŽªl½øÜàôí.lãÙ9Úmb›8õ!!±®Y3ÝûŽT"«³Á$Mâû‚ç„&yիߙ³¥ø’‘w·]5ðÖё!ÍÑAZšW!Wº&d*æ)y'N˂öˆäyÍ_q‘bÑË|µ’'X‹üî6Ev‚•ê½˜QmBÕ\˜½¹œî%†*÷#¢éQH5™Â’X,u¾œæ熡¤d£J¾Nö.ˆ·O¡/9"þåP¿ÕÈ"{ÀêöÃÔg‰0#‡Ê»uÉX%Æ;õÈ;LÕ«W{é ÙaƒPJk7Üî›c]œCG›ã_Àò¢ì çzRÝJ&ŒÎNËé8»xsy?sñ…
+S	£!«ÛRC°jkìѓÊæ^ÜIód0×SXâ]aæ×p<´Ç£	ÝÕ$:jWóÖûÖ¥yPendstream
+endobj
+1242 0 obj<</Type/Page/Parent 1099 0 R/Contents 1243 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1243 0 obj<</Filter/FlateDecode/Length 1552      >>stream
+x
¥WÛnÛF}÷WÒ°HI¶%9AP$MH´QQ0P¬È•´ÉUvI+BÛH$­¦MÇ wçræ̜ᗋ1ðwL³	]O)+/FɈ¦·3ü¼™óÏ	þI+÷âönœÜœ{q};Næý¯éýˆîh±‚é¿äû£-²
Él£éÙ¯V¬åsJe¥ªRu’§V”K‘Xi¥¡?ÉÖÂÔôþ×;úûÙåâóň†ã\.r6ôâE"ãGéý]ô?œLùôxœÜ&×Éÿèé,«jíÏÞÐxìƒ
‡ß®è äï#¨7Ò¼
dËeÞ½<¸êŸ©Îœ!Q…{'[{U-U•÷íQ.d©+K¢¦z£,í´ªê+™Ýè¦Èi)I,Iµ¦LW•ÌpRã°—¡ºN&œ¼Ã•®)×¥P•²\êύ­	ϕÏ{/QyA…ÎDA
®%>µ»Nsâë,¡tµRë7óùpªôñÕû.Lˆj2õwÊñ(©¹$]	ãÓÜVzt@ÄÈõé¸Úk³E‘õZ"m“P0º•ÃѳÿÁµ3úQÁ¯hp·ªU&j¥+ZiCš­9ÄT&ím¥Ü"‡·„I;Q2è.çpOÒR%eÎƗ}Ç¢¨kN€Ý•ÓÖr—ÐÃàÊÛB5p¹[IK‘m›%íª‚˜ŒZ«
 %ñˆ¢}k®ƒNò„A+Žè{ƤÒ`N®
q œ<\†‡±2¿ƒü{U>ár-uÞxª
ÓS=öªÞ0ã𬋣҆kÎèšér‡ 
 ¡­b&­*%Ijuc2™VÖÂG¶ñIÇVP®ø®Í–`ú¨=Pø(mÖ²³3Z×ßys§&tˆG_)Ðü#%±ºëºÅà•Ñ%'߯È1úîÍVОCþuqð-¯âbÒ©ñ3½Sži÷ª#ï‘,xjØ~T¦¬•YcT}…±	}À8`&æ?¡Ïì
´,¯<C÷	g²KµL£odßt!ŒBÿ°¸ïÄ`xârC¢EzФ5ßò&T„²U£³ÕÎvÄ5b¹éó¬W{:ãµ­-½18N蝪š¯é½‘òõ§7C»“™Z©Œ'aw^t‘sóD]<¥Ó©Á}Èݛ¹æá£ëÖ¢l#ªµÌ1ýˆ/ä*ŽX‰>&«°Ï#ØA²‡“ŸFÈ,Êò¥A»åü;ÿé`âƒPf[´J™/=‘†l­3ƒn‹,Ó
¦óÿ7šÞÇqÐA¯;‡@=ðú-Suð#ŠÂ	‹duãùEµ±êë
ë&T€œ,2‘+mJQÄ´‚ÆÙ |Â`5Úõa-„Á_ºÉm¥µ˜‡Kt„,*Y£qq

Âb¹ªw?”ÆL‚ÈÊ˼³!ëö
Æ5ÀK)˜jeÈSÀ‰3
 $9Ó]¼ƒ}Uˆ'*".‡È¶äøó¬þm,Æàá’w,7Ofɘ1¶=°ŠrOÑ'V<Ód5¶‡«£>fµá¤Î¤RÀ÷&’zˆ{Á1ÒÝlZºN‹A¥ûfˆ’ôïóЏú

 õé^;´/Žûñ±ÙŽw®3ì¾›Z$ÁtÖnâMf'Mqðk“[Q #t*
*¹U«¦ÂÚÓ`‘ˆʬେË6CÍô«&
 ހð¹G²3!%66h±m£K;Š4TeWˆÚíª‚Ö²’¦Xˍ‚Ã»gðZeqÁ8É%2t(6	Œ/UÐ/5ævÀ§ƒ[zr†Ÿ´.ôÞ¹!¾N§Eà('€ø»u8¡qÕô#rñÔkk\Ÿ£ËxÈ!Ìg.£Iqq‘1'1-¸úÛ=öQU**ŸçR9ýêAÅ[BBïO”[
 Œ¯¬Šå¾Q¡õ–
-…E”×Õ ó°tŽ§øHœ_Ótv—¸ï«O¯Þ¿~EþÌ_!ot֔€×í$á0^ÎFü=¿Çho,®–ÅjméCãԛé<™ÞNðùÈGG36ñãââ狵Ÿyeendstream
-endobj
-1600 0 obj<</Type/Page/Parent 1369 0 R/Contents 1601 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1601 0 obj<</Filter/FlateDecode/Length 1193      >>stream
-x
µWÛnã6}÷W6}p€XÇqì
êmÀA·¿Ðes#‘^’ŠWýúÎèfYNêl.	bÄ9×sΌ¾÷Bð7„Ë!œ§½À`ÞF“KüˆF@Üû¼èù×
Laãñÿ‰O
,xŸen
åß3iDT|ó¹ô­à™‘.÷7,½O¤u±L„g5H'Ò«Ì
-V(+®"¡r ‡W¾p܏݆ZÐJse3΅ˆNßz
ÂÀ›`mÏ6‹cÉ¥P}zÞJµ”*BÇϛ8¼uŒ?PäÖ£äâÊæsPú¯7ºIbŸ‹s¹À«3ۙx¿Ì¬°VjEý}£QÿzaX"j0S;k
TIÂZù¨_`
¡ãE~¢WR•ë›ý0À™‚¥¾fj…ØS‚™$‡Ö,KlYîÁ܁Ò[H´~°ÈÏ¥ýµvWA{0y£²ŽåIÎåO4qGŒW7ñÅ&2%:‘5÷±4ÖÝo˜µ¯æG ]颉OTj‡ÕWWjgâXÇ^ž•p«
éÙû}?µ¤°eToR”%DÒ'¤keu¡ÁûdBc%
çªàÒʊ3˜‹"dÒ©<Qs
-áoõë˜ìî(ßG
-*aY$n¬
úYfX‚~ÆåzŽ£	u¢i͔bÀ´ø×v–úQà¤9§!’–%	j€ÑÚ¡ šàtyÄ
DJ¡„ÃF? P´£`ݔwÙÖ̪b:ÌýyB¶C¤:‹]F×ÝþØ:¸‡Y­„##Ð10¥t.Õ
-"-“¢[­¢mŒN7ÎVjX[¯t8­G;" Ô¿pì]xçÞ¥7ôàV'ÌH;°Á%Y@År•F8+-Ԋ܀ˆ´¼oº€‘¥F줚ª]«6Éq)çˆ
·fÒþÐ)“Š4
7
’ylNŸ¥Æ#Ñû™#†:­ØâH%d9‘`W=Š$ÖÔyª
ņú]ºÅCäi)‹„÷Î
-'<³N§òßò$MŸ"
ZNÈî{•ëÌtÜV¨Lq±g„fÌÓâh Ö¸µ¶;ŸKÁ¦˜…‚¸³®`B¶£OCà’(·Œj¨u\Êt£qc³‹º"®«†6»Z3ÐNê«Õêt"qáÂ]éÓowý“»Ó&I€ÐG¤Ó©Lýp·7óOÝÛÝïð»ÞäF®ÖîúüîÂét<ÀéÜf
-n$7ºLÅ¢¦(^Jð¬ãæý•,Xø*hÇÑÁ¡·_f7‡pl›=¸1Ɋ™K^ ¯ØJPÓº';ßÁÀ²¢×(
-lfÍ!ù÷‰Û
-èåf~™ßΊ­¹/gòÖl/v¥·™Ž$Kî)#ÉGíw!dª\ÆÀÏUäåfšŠ¤“³»À;­Ú³ø¿­j,>WãŽån	"WÖà%Ø3ó¡
[¾ªGqSš#ÅF)F=¬x±?ˋ=3Z‚˜U«â>÷ýëIµÙ„c|ûœã‹nõ6p;»ù<ƒ/FÜáPâ	F3þõ…Áe@¯ÆýjzÂBXGCg±ÆOe…ÈŒÆo|1Ä7i:Lc.z÷þ7Xêoendstream
-endobj
-1602 0 obj<</Type/Page/Parent 1369 0 R/Contents 1603 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>>>endobj
-1603 0 obj<</Filter/FlateDecode/Length 1233      >>stream
-x
µWÛnÛ8}÷WÅ"jÙ²ãÛ¾¥í¶	²kïå!@@K´ÄFU’Šë¿ïJr%M²€›‹ˆä̙33‡£¯½†øi6¢ñ”¢¼7†4šÎðy2çÏ~¤_˜,‚y÷ù‡Uop6¤­6°4ãŸ˜`e8¤Ut|ônõ¥7¤~8ÄÉU|œéDD$¢HW…#[m6*Rÿú¯AeÍ S끕Qe”Û
J‘ßlU±VEXýŠ9#¿VÊ*'kkôÔÜ/çËSoÓèLZXBz‹Q#ãÆæKF«B}{Öf—‡ØÕLˆ‡®¹ƒðð¬Ñó ]*
ˆ=]sááY£æሖÒZ¥ÊE!™£#:eÙ-¡–múXëJX»Õ&~;®£XÙí4ùÓ¦|±ÇŸ˜ëúÔܾÇ؎±kY•K!p
¦î-¶^I2Y•¥6Ž6ÚÐÒ¬¥Ñ–þ™»BZU$'úú¸*"s¦Éiª¬Üï¾~÷šÓÈ£×%ÛÚèü·f=©¥É™ÝÍFën8C]OB{^k¹Õ“FG‚‡¦T~‚å.öæúÚôâ»L·hh«­êCàÚ·ïÿ2FO«kpvBaXÏýєǀs™Õ$âM':g(S…$±q¸Ð1tû×+h–D:2*&½!Qz§Š„b]­3I¥Ñyé,w_Kø8±Ó6 4£ip—z	°N iwº2´ùZЯŒ‹"]2rìÁ¥FWIZïe™µ­ìRáOòæJ*–Œ9ÒðSïsp¶ pÖ01>©½‡Ó`Ðg•+ç…ÁwäcÎfgíßz¢TXVT9¤…)Èîϲ[…è1<#3),àÜIã¯u+)Õ¥dÙÑX€
-I>¸© wXk,Øßø9fDd°ÆÝ¢Q{oَtq'T&8,ÌÂgUTß TÒ D0iwÖÉü=ªÀ¥žRLëñ`;‚jwvÀÔç=FÒH'û+5®N¸èþl¥xÔØ[àå÷„¸©÷¨>‚¹µH2Hd˜¨TVÇçKƒšQÚFâùÐ¥{KiîT„¿[åà^1]eU’xNÿ…Ž+̞7Mh
­R0ŠŸµD^˜¬\s´¸)pi ó—Ëemÿô‚°#°!¡¿/ÏÿC¶‹X›ºÐgQÓ~ýY0i¼¨«éc¾}ïkͯ÷'£zV_!¸e–BÂc½€ýuþÉgË;S±Ç[h‡í1:7K4F÷4G{d\ #–% ÁŒïŠNè/sD²MÈ«
-öŠšÅ•hpÄP‚¾+ë¬[)Zïö¢@çìu¶(Vü.Qeþ:5`¥Íiíx{kÒلÑFKª.‡B	£y¹ÌêþçÌ(꼾¹ôµ1Ué€8cˆˆÑ;7Ýþ˜ø¶q~H|›™uó‚:®¯Fþè
-ùÎ}é@ê¤%æۉ[î\„ÐÐm/†¶[Hš58¸×™|•wù`å3
-
-§䔕¬ásÍT[(-wñƒäû´<aØ(íƒçMí…ãy0_Œi:šÔj¼<½øpJWFºÒ'U<	y¼œ°~È/¡ó1õgC~¥<~V&O¦ó`:áœw|ò÷UïÏÞwӊ·endstream
-endobj
-1604 0 obj<</Type/Page/Parent 1369 0 R/Contents 1605 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1605 0 obj<</Filter/FlateDecode/Length 398       >>stream
-x
mQ]o›0}çWœÇVJ(ÈcÚmÒe+ÓöêÚ7àìÌaû÷»NZMª&„mÁ9>÷WV¢à§DSaUCNY‘¨‹¯ë¶áµâ׎ÙC—Ý}Ú lЙR·%:†:ySÖy“ãÑ9F¯­¹í^¿FÉ°„_VM^3㦳6ÏÚ(ø?>д@œýÀ;!z‚=^Ž{1žÈµä}ÖAÆØ÷ây$l#ãMÐRÄΪ8’_@•ÔY³\åUÒ§“³'§E ì´tÖÛcÀ×Ã#¤GAœ	|²3)6€`Á„³VObâ[=´	Ô»«ûûwÍwNbg}÷NUÙIh“96(ðmÿùÇkè©G>Ž
ÚóÏޑüEEyÉÃÔԇP“6ڇ$Í.¥õ!õã¢1Úơ̂ôozø"Ä=°)
-³u?óëDÚ׉”5O·]as­èi»{ØâàìɀVƉ»½ÄMÄå~Ù›Téÿæ½®Û¼¾¯xÚ	P‰ø±Ë¾d
Ȅ¼»endstream
-endobj
-1606 0 obj<</Type/Page/Parent 1369 0 R/Contents 1607 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1607 0 obj<</Filter/FlateDecode/Length 1316      >>stream
-x
WûkãFþ=Å
-v –Iœ”rÉ]¨!
¹ÆG磬Þ[KZÝî*9ÿ÷ýf%ǏHI8…`!Í|;óÍ7³«ïcáoLg:žRŒ¼NO½s:9?Ãýÿ:¢øàj~0¼¹ Éˆæ1\¦gç4	æ#<	úש(m¤i|æѽ0&ôéÏÕÃç[*³*‘Åáü?ç>>«ÝÇ'Þ}؏=ºªdÊ"©ÍNh<nÌ&gޔÍæŠ|¶!›F
äéªÁ=mú”‹eD¾,†eèÿ›¯Ì÷Ì3jµO²p0õcdïëUé î‡RGUzE*&#r_P(ÕÒ¯¬T…Çö#L¦Þ	zý°G¨rEÛ!U$Še*ìF+Uѓ(¬G3š*’l¢•çQ"DcE–’–þõþ¯O7³†™ôIéfÑñqMâ°2šß]|M
-¨Å†lȞxt­ŠX&•~•ïTš†gÊD°4dTQ¢TH¡
-*i]"G¨‹¥4‚FàáŒLª4Ç«Ë=r>„!	Ç}¬²L=qz 5­YßÔ±¬%äciÐQ¿]Ë¢OBKágXÒ©©6ؔ2÷½Yîù¹p†7#ºX«ë¤.Úîjô}UˆIjíšo
—Ãuù†Ví(ìR† Dư练SŠ4t¼åˆ‚üÈI„µ^X ™\FG$dƒ'ø…B™¢g!1È#ŒèIÚÔQºA3,U—A8ìK¦~ídV‘óØè•f±[ߔQ ãåUfe	¾7&F2Ö®(Bo—Áޑs¬Š(rõCæk¹¢ä•‰ÐFqÝÐÊ3{ææk«Ÿ É
#2R%ßj¸Jäcč¬+—¾ijN±¬…Á“âk’)_dßÈ ‡×ÝÚ¦€M—njPªŒ¥¶kP¿*DŽÒ„Q,Àa÷XûõšÆ#ŒQ̄àÌ֓Òϼtف%Ý
vWvmÿ檡°Â ~ÿú)´’›¼íÚE;>M»é@@(Vç5 ;ÐÌjæbÖÆèk+dÁ-Âô˜ŽþbG§jöD¯T9”ã?ƔCZôg½G´\FacAvUÂË¢ˆ'Œ³
-O*`Kmìâ°slU:S	Ƽ•ˆ¿^~'Ë
b±‹þÅⰛFˆ‘z;Ä{–2XvC¼•Š
½`"û"”w#pË©(Tq'w#äbhƒx…¶­„fÂ~h½èONO‡xPò‡“{uW(T9¤ØŽÚŠ{7Çüv>®µyh#åv*ž/'
Æã+á·ÄŽ5ÖݑÇU–u0ÒykræhEïNù˜€3S;)-Ø_˜jöb§RØ´›-B±ß
-¾íŠøñùäV;18-úQrI½?.{oµ^A&вt;-¦ÇVûn¯ÔæJØ ­·l8˜š?È$ïnSžRlVèhœ…¼ëN²ÔÊí`.Ú“£eé{Nui»‘Eàø™àMúš¤¸–®g3jDE¼‡t¯€=m‰sk³M»¡û:mo;¸–àIьN…b)Mw_no)Æ
Îïլ*–…zBÕêóÓu-Äí:tg•W˜[8öJœAöP‘]ðïÝX•|Þk¶˜Yßnf`]c8NfÁ<_Ë>ùàD«ª6œ_ÃvA@Å-Ù·°VËÃìc7õâ]°-´µö©Q‡7ç[߉õIþŸ¡'Ósoz:Á7,~ŽÇá§ùÁçƒÿ
ۜ„Ÿendstream
-endobj
-1608 0 obj<</Type/Page/Parent 1369 0 R/Contents 1609 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1609 0 obj<</Filter/FlateDecode/Length 896       >>stream
-x
VÛnÚ@}ç+æÍDÂÆnÉK•¤¥ª”ÞúP	©ÚØkìf½K½kþ¾3‹iŒ¹D*a³»gΜ93øO/ß
LCˆ&=ßóa]{#ͦxâ§äÚ…h6ÆÛá(òf݅»Eo8÷á)ƘÌð"
Ä÷}XÄý<áÒäiÎËÁdÁ$¬™Ö+QZ/6¬Œ3V.ûáx¼¼¸ŒËíÚðZGkU&W‹ß=ÜÀG6‹¤CšsøêbŒæh}
}-X.
9äúáËÔYÔEšR‰c}\ÀÈËþµ©Vš—0ÃÎkQÉg©j	Ñ1šÕ¢Øl=%ÔJIHòÍ©Ò¡®-¬wçQ2U•—o3º€²Ïkü6ʛyí±°)ŽI~iåÕÂÎG;ûá„<øaƒ>¯˜Û
lU19½2À¥[öo°t,5X6“q¬à Rà,Κب³ï4Ê$ÐkçéÖînÈÕ‹Î÷G^HÁë%µ+¹\Ù†=	îÁφ	Zý”Êd´ï‰ãW²ÇGŽ.]Kû9ÒRöÛ	Õ¹€‡;ÁŸxC*ñhe8¿†`Úhp Á`êEüÐö¸'4¨²Õì4 ö­r¨ôÔ³ZM"Wb‹ŽÔ1šŠ­¸%Š]A¢ž1€LÕ|ÃË×òÐfL¸¸i
-';²ŸR[ÁÚVAäϸuÇÍ'a57à\œr0”¹½çpJ9A1šóåÇæ©sƒn06¹?•2\“‹:p‡¼79ĺí4ºn|DS'Yc–NøC4*„¶…ŁÛQˆ4yÑû²é
&®ó!l›äÅd=Xd¹îP̵…OxÊ*a.ÚnäÁGn¥*•t
ím›…Bœv›
Œ·VZçØS¤jÆ6ØÀ
-›ÂBå¯]óÄPªPÁž)ªVØè*®
“ÆéJ9'ë¿°b-ø«3»žJ+!ìÀØÑ·¥µ®ÎÇÍ êÃý×/÷·‹ež—Úü¢íœÁcUڛåÕq†á¿bStCbݟ‘±É‘x»XGaÉ©g‘ù®/?o¿?@¢âªÀ1iQ!ÅÌ…ø羪¨ƒ­He›á†óY“\0Ág”Y£q3Oo?ßÝ·Rýæø§ù¾K\Üý
wêÓãÈÿϟÑdæMÆ!>ØJú‡Eï{ï/ràwendstream
-endobj
-1610 0 obj<</Type/Page/Parent 1369 0 R/Contents 1611 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1611 0 obj<</Filter/FlateDecode/Length 474       >>stream
-x
SËnÛ0¼û+æ¨1õ°,)>¦hO-Ð*ÚC€‚)‹­^áIþ¾KInl·@A„ Ý™]>nbDôÄÈì2Ôý&böùi‘әЫ%š9f)K®÷å&üp‡$BÙP­,/P
-PˆþÔÁ»–OVjÄÃgnŒ¨ðýÓGL;ªá¦ü9'Çù’¼Ýù¥3Ü;Õ	5XŠ8^aIÎ2+[eЏÂu’X>:¥¥A§ªç¾K`GTj0–wÌW‰°M2–ιöõ1‰ê%ÜB»á°´Ú¯­ôü—D¥†pE13^²	¨l+!¨ymGý‚@¶Ît3:]Ëð*m¦ã;×>#í	ÃWÏò2Ǔÿ#\ÂyÆæ$äŤ¥µ/0Vsulm3ê'®C9B>O£¶Üò[ʕI%…R(‹íܖšÅ»eˬ¡3:$sCÃûŠŸrhT'Þ_Ñ
ð<µÒoÏ÷½Uë‰ûo󣚜]l$~déÍ×~9.Õ¿UZ÷ë
œI.j§µì–¸t<À7/`¥ròãŸrH‚–\¼jhô؃â¼úI(¹¬†uŠ×µNó½ßÌÿ^™4+X¶Oè¶ù«ï<¿÷åæËæ7ˆCÂendstream
-endobj
-1612 0 obj<</Type/Page/Parent 1369 0 R/Contents 1613 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 948 0 R>>endobj
-1613 0 obj<</Filter/FlateDecode/Length 1995      >>stream
-x
W]sÚF}çWÜñKñ$ÀàÎôÁ›Ö3IãÆ´é/‹´‚­%­º+™ðï{î®d’vÚN&¤ý¸_çžsõç ¦)þÅ´LhvCi9˜FS¼9ýùøãàv-h‘,¢„JJâYtÛ=ô4ˆ1?ÇI4Åê,^œžxu>nh¾ZàoI«)nð¼Ö{,)žÁdoq1‹bšÇ·î`|»€þÉÙ\Æђæӛhî<ZD³î‰Wù¢Ùj†µùj‰ß왑”bx³¢Ù,vÄ«&ü“»´÷Œ06}^í?cu¶z½Ú{ÆêÍîžÏ~¿LÞÞR2¥uŽ\ß,W´Î\Šñ&¾Ù‹º‘†,=5Ú¨jGO¢ÜŠo,ýj¥™¼é^UòzýÇ`JãdŽÓû4ÕmՐªrmJÑ(]á7‰ŠÞÝß=Ò½22Å]G>ÄÆã¥7>žÍ=.€µ8¢ÇÖÔÚº«'oçÇÝ®d‰ø°k½W–2¶¥„±LÚÔ¨­´´×j4µVžLfÁ$Á#²ý@xŸ!ñ¥Ë]H€”ó©1"SŠ(Š£»BfU³—dËm-¬=d›ábsM¹*dDH€%¼†¶‰Æí5Rdl°àGÚì¡­°*¥¶ÂŠmD•qšu~áK^ª«TÖ
UYwø Í38‰ˆ^z6T…K‹Bf½Eø¥âúµAyøîs ²
*Õ$•Í…Â)iGTR ÃF氄tsr]úÀ¾Xœ´߈Æ'Ü¨Ø‡ZV.Š1훦þv29‘ÆÛ"u¤ÍnÂG&oÓ®Úãe´bÀÙMr³$¿°àÇ¡@걕lN^éɧádLÕnG„]6µŒR]NNYû/–ÇÉ*Šoρý¬éKüᛏR1BÛm¡,zcÇ05BªíZ•a»öíÀˆ|:ÚF–t—•ªRPBqh¯Ò}Wdv½’;‰>1髐	Ø×9IaœmYJ3BSOWîÌ®ëƒ&‘$û^F­nMŠ2{“¥8Rmô‹sr+i/‹:oÆuc¿¤k”ÝÂøñþ͘‹;þéçõ*…ªüö·GzØU"UšÞ趖¢u^ý¿2³ÁŸ×Tª²ÄÌÂmÏ
‘]ÒÃýwï~÷¥€·´CF¸û4ü©ÄNºn÷hÞøÂl[dY\dÖÇäÀz¯9¸^5Üф¹ÚµÞ¯Æ
-ÔCmเyGc »lÁ—gmÊ!½F9/0^ŸƒF(–¬N¾0Юd•šcݐc#m2KßÑQÚ+3ж¿²êøtîBTŽlÎ4;t$6zEŽê3ˆO¡uÛ+Qʽ{?A•‚â½c
¦I8Fé^T(G£J~Íì(8/Ä$.€¾­”.=Ä3wŸ‰÷ËXz<ü:>¢ˆ€à‚±a%HRàM+²
´îÐ
ŽÊ˜¸ktÄÍ+ÓT³'œ9R!Ì.h^(uՖ[Ð7·!KŠ¥ÍÐÉàÙÛf¯[‹Píæځ沏rög¶pb
ƦBë綶T¶X@#ÖÒ°¤âJ+ÿl!{ŠÕ(¢Õ 4¦‹ÏEðYA€%H¡9苆Ëq)dÔa¼Ð;tÔf¨+&s¨U¬àÌYËͤT×w®m˜2`º„1F HX2϶2	7Ö!0Pl®Gp¡r¦CXÒF[Ý4…„‘gç
2-ƒœÐ'Qœ¨¤Ì8­ÜȀv&?{f÷€rª_À&v£.N³A—’Û)Ô%Íxºú'ÅY$ÕÜ BJ2fËm
‡_¼K&×< `
-q\dd]¨”9[œg×qŽ©XŸqKE(ç±–ëbXu`(2Çdáçù¹Å„‚g]؎٬o„Eèx2öX¥›a¼¹ö+AO‡Ü‡—›­ÝÿÝV:Ö½àÔå…3À/û¢ãç¯ÒdP¥Mg¼¸‡ZÜ!ǹr³‰+݈‰fëó—/áLHãi<#tw¯¹EšŒ†fèt;gMƒ©²åö@˜0Ky·0V“ŸkÕÉ3ۈ–aÑÿ(èšà!ã¾ÍÕb¾~|¸ï¨á“ÿ¨ '
•wÜQPô¶h˜‹,ŒiÆ´TAÜì&üÌ2¯”RTŽ¶Â\ì'âsà®m âÈcF¬b*0¶e®¨½Ä±8ß=>tcŒBÿáNŠÑÂ1«¿ÙÏÚ®÷1•º=¹9²kXà[Qf[”Î˜a3¬|Q€Xá>zv•°g©›sÝq.
-Îï/ÍÈjb:Mïo~{¢ÆHÉ´îf¢ª<
1sO´m]kÓxZ¼À‹÷t+Òg	œn†2ÚEݬš„®Y>Æ<èbûeã
'þÕåþ&Û~¹ßü:Aĺ¬ñ½á”48ÊPóÉ
-¼‘Cyâ8¦U¥EË£(²ýuóã®hÍC隵`䡱:·V§
-äÆT‚³¤ý2e¬ãN÷½½š4óçâi@wÅÁWS¡šãY=œãS
-<}AasNG݆™µd-@֜¤·ÖIWŸ(øQ©²vØÄô
^ˆäʼróáÉA7f±l#Ÿ>«®ú°Ž/§*ÿö‹šþËWôü·/ÿ¥Çs¶þÃzðËà/GnUÐendstream
-endobj
-1614 0 obj<</Type/Page/Parent 1369 0 R/Contents 1615 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 957 0 R>>endobj
-1615 0 obj<</Filter/FlateDecode/Length 1946      >>stream
-x
•Wßsâ8~Ï_ÑSRdŸŽ
“ÙÜ%Ù\ µwU¼[MlËgÉaøïïkÉÃfçê&‰-©ûë__·þs1 >~4	i8¦(»è}¼9|½~»a0¤›ñ$)£aÜÖO)-x?݌FXM'ø;ħ””\„ã>ŽnÂ`ÄǦc,ø'>6ꏂñau4ÓÖ*BÞq*tp{MaŸµdN¦îŸ,C'éôԯˋÞýˆZ&°v<Ð2vFöiubU™Ì­°JçÁÕòûEŸºá¢—qg¹•0Gð‡¹£B«Ü²šŒ-¥1$Öº²´Û
-Kv+‰÷îÃZY§ÛÝ)»í¦±(ŒÈübƒ¤C±–†rm©(õ‡Še@PGóÙ™ª(tik4ƒ!ÌšR&²,eÌúUîÚ­2Ô2á(VåQZÅò–‚ðŒšQ&EnH'ˆ•-•üPù†*#KQ¤«ÜBz¢Ë̹„’Rg$rúCå±Þx92‹¬ú4W¥Œ¬.÷„Ó²tþëÝGµº“`Ê9ì«p<©ÝÓxÀ-vãNP©ˆTOÚ¨Wcvñÿ%ºNƒÁíÑdv¬‘‘ÎcRVfÁž5‚
-s³"Uf§®÷ð
+ux^,`tL/³'Êt\¥Òôøíå‘`¦Aª8ÿ!æFžE)UëRÀ«¦Ñ¢×V¨œ'_fóGZèÄî8­V­µÅ/½Þn·
-§
õVW
ý¦wª®]˜c	©S	#µ©J =SìÀP!¢w±v¿–{¶+d"]HŽùIÊÔ^½¥
ª‚Ë£;ùÔÜÀ>
Þyeá¢lXq»¦ºáÕêë¥N`‘ÅkŠt,9SÀId+ɜb–Mì<l¥±øÓûž‘þ^ÈÜiã:÷yå6F©Bž}𶯔™ôjÍVW)¢Š(¯SÉ%³Óå;qAÒ³´&…¼4­ö¶µ4ÑbþcÎôƕ“‰<}wN…œ;FS"|ÐjâAp4#álSƒ*Ö%"„…uµAb-9¨†Ì”€Í[Qºs‰úÐCr¦¯+a(ä:çüº¦"•rpØTP¥(c䝦ÈA¿†›Ö¢[¿ø›{
-t¹qˆ¾Ýþøî§2B†@f&ÜÉW™:Ê0[U°æëý…Ãþ¤†ö}vÚ¨3Ï6¼ôi6-e<5™
=„æ2ù
-¦¯=a¯ÂÖÓÜAæyÙèqŽý;ò‡@½KÓãüêy»½ˆSg5ª¡a§UçY[xÔ=8·­øØ 
-•($3x$âÝõB–Ê5˜´¡uDLY…ì]ìÀÑ %_%!—>²¡vW£Þ!­ÝEzý¤¥ E’
ˆ8'nTŽé{÷}º­k9¬k¹}bÕ¡
*{Üà3Âg2ß >ñCϳ§¯tÙVvI‹·IJ Åòõínùö:{l°õѵQóÄÿæ_wtéVã¼ülßÓÛb	Ò£JÅô…J|¯®>Ý7û7ñ¾(Ƕ4{á ‘Ç_(·­‡b?
-cÒò6½Ñù¾¦/Ÿ‰t8ÉíJ¿ÞUô®Ov'ò»­È7Ax|ªŒ=<£[ØûTlÌOåÇÊ {ퟙˆ¾ÉÖ¿i÷׿æ%7M¼JUÀPԔšÓ×?ýx,ý1ôœâvýÍøÁ˜ He¨‰o¥®Š‡9^Ä:Cぇ½OkìÀ×í* WH‡|öC³óymy¶ýýa
-åF£wÜàÐB9ç},¥à¹!nLª‡4
SE[ÎÜTnDÊD
ÂB;ÈQEµöí˜)˜äl‰Y¼âË©.;>ˆO	æ‹†ÏԚj)?¤«´E€%<C2 3¬e5Sáߑ„l+ìçï:X•a¸bsw?ïDŽÚn«`8Ïv©dF`•Gø5påÖ<՚{üJ33uçÊý5͙Ðìð0gž2…CÓ
é Úí}{~ø—ðÙÜÐÌ·‰FˆS˜-~<e‡c¦uN؊›•mÆ"ç&¾Xaú­j:tÀâf¬<¶_~_wTÃsL›Æni
Yud°	˜_VWµÃ5¶§¢ð™Â>j7Ÿ|˜å]'e6Fãâ¾Å‰ËñɍT›?]r5az>»-ö3¿‚՜߹ù»B
N¨c\³¯ÙMPyìs
¼ë,ì®z›±Ì¿2j0¬Uîï:ÇI̅Ԙbðí'V‡Éçç™RoÀ'w…%Ü)°RóÜqG~@Û#ê)Ø:<i‹].²UguuMÒPßú`6Wg³¿Téöäç"ª”¹JL‘W[
fe'ºÉ‘§÷F±Ê&MA잤ÊquÑ9k‘Æm*²é¾2'"öèΔ¶«8ïìK\Û´1ªž-}±sÜ=>ôŠ?]¤à~w™Ï֎f~æË
±GÏtþ…ˆç‡ç5´°6—֍µðš#JÌÞ6$®¬9‡À€²¬"‹É°žé¦5Ýp»ïO‡4×óÂböôëŒ^J̓ÍÛ×KÙmt'}ŒqçÝFãi0¾	ýMp0¸a!_—ÿ¼ø/kå"Õendstream
-endobj
-1616 0 obj<</Type/Page/Parent 1369 0 R/Contents 1617 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 960 0 R>>endobj
-1617 0 obj<</Filter/FlateDecode/Length 1136      >>stream
-x
V]oÚH}çW\)!R0ˆÇ¤ÝT‘vÓnþ!Uc{Óµ=ŽÇ.áß﹞±1Nж%
-²™;÷ãÜs?^>MðçÓbJ³€¢t0ñðêϽ€æËž§ø/$mù¢í××OƒYÀç7§”næÞÊ>'ô48¾¥¬¼Ùñän=߯È_ÐzÃÁÒ§u\«Ð:ú+ïÆ£:ÛªçªPÙ3=‰4´WåŽþüxûåjýÝ*˜[£Ù®®c{Ó÷ès.3¤È)¥Ò™½6GdîÚÄõ&•EIK2Užë¢¤­.¨ÜáíÞF‘®²’tø]F%dIdG±*ð«.ddñC×´U…)a9?°6:¡‘?ó¦l¬Öè™h'S
ÉDR©É$"/Í©·Ôjö¬ãœ’ÆqÆÚ
-­Ë{zãN‡åÖïÆÊX–ÑX‘$ùؚ¿Å©|”¯åuƒpjý$‚S-Cê_áø<ÎEï‚Gë3(C¸*3Tî5‰²,TX•ÒðýšûŠvKS•ëŒ4<.¨ƒ¯±6.+_‘2¸¶U™Œ9¡=#mpâð빌äÇïäõ2V&OÄáQ¤ò¼wà„!°ç9—…Ñٓ̏îé-7’Ò
-$e“©¸‡L(Áaë×óײmՐmnÉvqA=*¤i™ú¶!ÙÍm†œiøèùR¡nb
-œQ%å檉`â-™ÛMMÒñÓ3_Ѹ£Úi踑IÃ×s·–ÛTLÅ_t÷\¾CU·—¼
½Ê"¦«Ü
ò†Imé +Úþ}ǵ;fÉ×ûÓÙd\=><m®\{@!±ý´¼›“L™•;Ìððaãûn®{÷Z+3ÃzÍY+w¢¬ýMÑ	¸Ñ)3>V‘4„j¯ßmIPªQ•‘Û*IŽ…n®ù¿|©®…­N½ÇHismY¾Š4OäuJÒ › ¡‹3”
-Ì6÷vD‰0"›!÷…\£ÂäÀêµ8陫?F„¡½L’ÍÕùº£1RÖ@Ñ(tìCbº5ÕÎ?îž$Г¯n–ÕΣ¼ä‹êTNÍ<üö,KDžï3‘n†ïÔ)+D{=Ö)å…4×­Ö¦D¸-8Æåq£6ù¾PñYÅ8ë(nuv<í;£#¹@û3h­¼?œKǽNFP2…BJeÚ1ܤªèŅ…<ViˆéßÖÑcðVìùçÄ¢¬õym©d‹ÿ8Œ¬Ñzµj7#^­ì^4}g§âXNkÑ®Dhm©P.
-LµŠTñC¨D„X]¸"Ó°ì(оÞЬÎi³ŒFü눗°èÔà­ˆ®·¯¸¾Þ ë
-Ý Wè]n¬‹;ê¨Þ8«%c«7rFG;%–Éx¸™7ߗîԟ-½åjÆ{§WO·ÝÝҗB×ÞGUÜ7۝qäX‚—3-&ŠÎÿ[PçÁÒn¦ÖßØÃ?փ¿ÿ
ÎîfÂendstream
-endobj
-1618 0 obj<</Type/Page/Parent 1369 0 R/Contents 1619 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 973 0 R>>endobj
-1619 0 obj<</Filter/FlateDecode/Length 1487      >>stream
-x
¥WßsÚH~ç¯Ð„¹ƒÌ€Á@ÜLèäÒö¦Éå
-oÇ=,ö;±½¾Ýu)ÿýIZ›_C;×i˜ë]IŸ¤OÒòoˇ!¾|˜Ž`@˜·†ÞŸÞ>¿ooÁŒÞs¸›xóz‘Á²u²Ìa6ñ‚“='7y³ƒ/ŽrõÞìÎApØ;Yæ0Ÿ‘½ÃžÓy7GC
^uÖ{³±7à°çä&
>läxq”«÷¦sχà°çäÆcØÈñâ(WïMïÈÞaÏ÷9NÀ÷§>iåIbxa„'F0™Mé;þk	qëݪ5xœ€ïÃ*¦|³)¬"NÇVa7‹D	Fê/Rß®^ñlXŸíO½¥ru×£`
-n·Ñě}Ÿ¼À¬DDyZ@Tü¤SÅqúõ'•ÄifÚ¡Riû#8ú£™çÏ¡?"N`TV‰4¦!’&ÔéFF€²‰“o¼Pñº{·¾…\PŠ-ž-"0
-vi–A¡,l$&±”¢d"µôàƒÚILU‘—™$€C8d¢Q
L¿ÒP!†]jTŸ/¥Z†Vé=„ªÊ"%ZÐ Œóus¢
-êMœí6*£™
-E6@³1ÈÒÍ ±Õ@"3Ñí¿·™ÚˆìŸ‹Ç@F†•Níî	3ŽÀג|D¡Þ—bÌNéÈàÙ½dp„ÉÇ:E#|´v“*…È%žZ-–V¿¿ÿóšaÔô¶Õª*ñÜóâóóÇE}êLa˜ÉZfòRhԌDºj½iÓBrBžÁ*ëD°I‹(-¶ôŒÒ}¹«´Fߙãm@ÂÜæÜÙ$5€ªñè`0kŽCMè=€Ï-hH™ª—ÁlC^摑ø±G„«ƒòßú»º²G.ï]L‘–¶ÜQ|5ºr…í“C×"Üfèe¢®¡9ë2ž6LH„û1æˆÜœµŒø"²êä‹°„‰(¶ÒôPÑ𢮉
Ah\)è£w
ڙ-$ÀMXÜ/‰Æð$
-¬;ÝSÕ})–S/
-ï™áôEéíÍuš€)e˜Æ{ö…«Ê%¶c QÆ2!×]䇨2k m­o¿‰Ð©@|"Qxá:‚‡#÷–ËO J›ªvD>l,Vø5þ]³Ý†u·£â¸ÓC^X¡-ØÌà{GGÜ­ýXß~¼ÉùAþ:蓂¡æJq¡öT³¥Ž£1äÉÁ*G/ÀÉE¾]ÇïÈd*n¾ƒ’­ÞÃx6¿ð4­"òE]ì”a‘=-ëk°˜tn˜å~”a[YH-²ÌQ¬Î€kO¶&ê
ê퀺™ÕǺûëº[¥Ñý/¦²«6¯È’0Ã>ë(¿q ÈÐõ-Ó~ð8o<Æ<Ò|¼&yP4<¯ÞSW54ð’rYÔ#³¹(PϞºž½0ÜôQÌÂ/8 q¢+.'&~mN@ö`¯*0	­\ET~ôD~M
‘½‰A}'áëîhÁ•a•Ê˜J‘™ˆg†„µ8¡++MÓBš1þ$(ãò°y´R?Óvû•Zp–¾É÷O¦yj±sTå…Xä ~ԝßb9‚…#p¸Ä1Þ
-,'-%¨˜…¸˜¨™R„ò·ÓØaÉ]"vº<RÛ+3‘¯Š{!µÀà	êÒN"/‡–ùmóƃ?0Féþ“n+¤:©áy¹d>½,ž˜ š(Ò)k**„^Ó'҆*/¾BQ»c=.ÏtïYß^æðc
Knø8Ú%ÕõÈycš(Ò9uÂ_0{ceN…E- ìF¥2é×Ú}ç4îå’nk6¶V‹·Ë¸V†nu˜²Ã:8ʧ¬öàm¡vƒªÏ«>3†#Þ :ÖFÅݲ(dqåkZµŽÄàqVßêýÌÆøû‡ïjËÅÓ»¼hE­TXQs$Ik¿9ޟñVuÿoýO‚™܍ÜÏߟ’²ßW­¿Zÿ
ûm€endstream
-endobj
-1620 0 obj<</Type/Page/Parent 1369 0 R/Contents 1621 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 976 0 R>>endobj
-1621 0 obj<</Filter/FlateDecode/Length 1734      >>stream
-x
½X]sÛ8|÷¯˜ò¾(W#Z¶$§Ê^gs»UŽ“‹´•\î
"A			((EÿþzRÌf+[{•$v,Â4fº§þ|‘ÒSš\ÑhLYu1L†4žÞ&×t=àç+|YI?ÀÒ÷wÿKoFi2¦ŠÆ·É„â‹’f'/+J‡×Éôä!‡
yóNˆŸçÏ_ÝR:¡y
Tãñ
>7ÏCÔ!ͳ^Š(	ÍdV[å÷$tNNTKqŸe¦ÖþÙü#6¸¦4®&7Ï{óµÄ¾üΐª6Æz¡=mŒÒޑ78b%«¥´´[KM¹rYíœÒ+òkI®
hŠ³x$µ·J:Rš×qø!
ÒQrÅAseeæÝ'׸Á…<®ÆH0Ö<É­´ç°{À»n
±Ëê­pnglNƒö‡WÂcÕ²ö’¶¢¬
Â`+¤„j-uf÷/sz|yÿðq£Yc0I¦\} X\'t2<<åaŠ²4;ÒFD^!µ“6är«äî¯aÿ.hm]WÓ$½=æÅu’6m–ÖÂáP쬔’—_<ÉϵBžP0<m2$j)sÎå%ÞhtrÖù,´S~mjO¹´jÛp¡SccÕJiQÒI(‡ºè•Kè
-VNéÂØJxðäÒU¢h=¾~þ4ïâïƒ0–w¢þòôðîßo翽y¢l-PhËûð¶3VÃà×7ïço¦,AÀ¶ò`f˺yä{¾Ÿ)”uþÈqå\-ûáÉe™‹
9W^’«–Ift
œVT’Cæ²uÙÊùe‰ih¢%_ûøE/2í¦áa¯
BwHN|֖º·x†R´2lBµÖóÇPR+€y“6r=‡²EBïYÔq# |³‘š…Ñ
Ɲ.~ Oʓrá,KPÂ0#BNÚÿg^X?œE‰bRçà’
b¡cO M)2ʌˆ³„~G<i,C63áõ½©sÁ!£Wå>t"S[±Š<Ec
ÐðméOSZ_å4Èí„O&Ð^øpBN͌6Öx“™’óË
Z´‘s§+ÄÄnNj·#:dãëD$ô«Ùq›ëwòÍ|mKA¥ZZa÷ä¼*K¾U9TìêM¨6ô°™b$ðomktãЙQ÷ÌTU­@²È–Òï$Jž•Šß	l#0Ãu31&ìiØXÚ¦Î^‡}‘P
ol±í±õ)”Ñ±¹o8*¬©h-À=ຽ‰Ÿw0q2¼MhÎõmzTn4oܲ»€¬ÍŽ_Ý?<r=byaâÁõz®›<h5>8héE»ð¶uÇëhB?ýD±—3ˆ¨ùØÑs}I"Ë`}‚Ó€zO\Ê=C’¥;4¦a0ê^\Ì9bwrwGóꝫ=yóâ?K0]ß]fú.t0ºgGé›ún#ͦ”ý<»ƒ”þhÂÏÆ®.i‡  Ýì\œððt Œ‚ébŠ˜&5nd¦úðÁMQ=pítªôùÖXq¶’Ìò#:nV‹X7 %Zw…؝¥;†;T%–ït88f¯[ɨÓû§×÷OGr¥ãÁr!³
BG0žœNÆaÑ!ËBvànãE‰¶Íв–_ ¼LUð´hdA"Ï_
íŒs29´Œ“Ck5çe?f±÷"œ¡k|Ôâ»ñÓ	âÎYþø7»üQ8?“áø¹W`|”+$Ö«Š_4½}Kitýôv2ŒÅʊElÓÔûfuÃ|ÒYü­4žøȑR´ãi$dW÷¯~P´UŠUG8~Ì.SÌ=PŒ[¶µÆÙ¡j÷¹æ±Í=û$1+üç¿GrÃþ<¹SÑÆ89‘«³53øwZô¸±.žõéý¢‡Yø“‹æw>,z=¹ÿ䗍ŠÌ¹Õ¿\`¶™/žý½l”feôµŽå9¶VØz$B˜Å	÷•Á¿k
äy\~.¡îäÝã|òæˆEñCC~RÙ§2{úa-ôêÇåA_×Îÿà¨kSɗ¸P|}NÇfTð}2L¼†Jé¹qÃQwk9à‡
-39/øýé
´÷èõÍç‚àÂög7ÏEqËÊO÷­p~¾·hÆV¾°Ð凰ÙpwþÀ~ÆQ@£ÅÍ"¨„Þ5W¦ûà$,î2h'F¿îöÑÄkï‹Þ
fþ
-Sú3oðâîê%Üú͉!M›‰(M“éíˆÆ7i¼˜Ïî_ÿ|Oo­a³¦—&««ÖòtŒßMLG4˜1*åßó[‡ëñ4ß\ÅëtšNyŸ_æÿºø¾ÛPendstream
-endobj
-1622 0 obj<</Type/Page/Parent 1369 0 R/Contents 1623 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 979 0 R>>endobj
-1623 0 obj<</Filter/FlateDecode/Length 1645      >>stream
-x
µXmOÛHþί!U—JĵçUâCHBA*G¯¤jO—û°±7‰Áñæ¼vÿþžÙµ“`h÷"{wfö™gžóבG.¾=êúÔêP¸>rwvŸÞó
-z=|®És§[þ•Ðyæ÷[N€{]¬ðñ“IZMÞÃ°GÓ[îôº4Œa—¦aC‡Y¼É?Š|õvz‹¥A¹´1 éJÒþ1m2µ‘Yþ@z#ÃxKM9Vl°•ÔÂ\Zf¿hJÔR¥åÖrFWc|N¾NNHeìÅ¥¦×r|ÄÑpΆSZĉt¬»<‹Ó%…"¥¹¤´H{ß8‰5Ž”ˆ<þ&)WÆa*óÒÙJd°ñI.dV=<>Œã¸æx#2±–9VÇ©1¥×s'TébÖhÏÞÒlĪŒÖ
-PÆ).×ð®RÇB–P5»NÏ#¿ðq¢™ßé’]PÁnž7[}§Ã€#øYÈ÷Ð
-lyÎØr+c0¾‰¤V EÚxBIEBb®URäòÉéógë>ÿ:2®ž?ÆóׁUóöŸA‡]¨µ9̦®ð`g2ÌUöð²òŠv;8ÑÌg†Ú®v‹l·¥æ傌ی)‰Œh™“H£ƒ
-™‡‰ÌÁµ»|çS¯T‘DLu“öØ<(ÿ€ÿëBçv-h¿UÙÝ.wUý1Ci†/œá›Ìð›Ëb6۝òYæÔÊG+yô<'øȯçÄO¨ªïPÛwz\@œ¡/8¾ÎM5røØâÐ"äÒ.sVJ‘e2͓*R˜ˆž­bhâJ¸R­,ŽžxeîÄi.—ð›ÉM&5œ™«ì”E¼Ó°8Â
-ҌfO—ãÙÛÒ&‹×"{xŸ©bs9~6º8®B,­Ð’ÍT7MEX‹%¯VÕ;š~ÏñúÔ¬$‘ÉZܪ,F÷°­Bsã(EEHJ*åÌ /´]ɔnÄz.¸¦In	Wôq<âý(*µÐíY#;|ñ zŒ…&¶4/®¿L¯’G2q¢á•¸åFÁ’/`=Z?L[7#•æ™JTÔÛç¤agjËQ.T
MÍ!ÂsˆîÁÁ4T‰£Y2S4o†ªHs
 Y±í¡†¬vgªÒf$¢Hr+özÀgDßAûH_–ۍ**ïük2ü؆é³û~öOÂØÉèk¢x†gàÕÿ¿CçO&y/֛D¢åj] £L‡7ÓÉûkZJ)H6— óŽfўÉÜ)ò•Èí‘ÛÕàUŽO¦=5óa6{SØeU5h+4ß:`<¸§`*#ÎumiTNݎ¾¾pÑ	Óý(ÅdÑñ\†wÇ6ÌzvⲕwbHl-ùUàvÜâ¸ë.JŽë
Ëû
@€/ç¶Ua7›ß¡Ášj±}ŸZ’÷±ÆËÙÍP
Œã"ŽN™Uœn¤â$Eá©©<¾PÙò˜Ï±›¤paú]¨­Dû<±%ÉTU4„U*Ô,``HkŽ9`ÛqÊ©øÅ0í‘uÏHa™ÉM"BL·V¡¶1ú³QË-£0üí´žm²jí¦€JpìowÀ£FædLÁ&OC‚Ùz¥A³†t–ŽÉÔÕõÙïe–vm«OÞ-xi¶;{}§ïÐĖ}_žÓbÇï<o‰G:hqª+~×NÌSÄ°×XÎñøÑ“;UÓ0)4&ôªum”Žï+™Uó[L‡a‚B5:ÊïEý2`¿8JÄÄYRç>FäCê 
qz«Àž
-^׎%)Þ¢´F`рzÝÞ¸çzAÇíŒÆC¿ßév‡A09z­vë|Ô­mÝl£+w#¾”ò½ ôZàɺGM~@žïz5SÉzE»í÷]ßmyg“ñ¤ïÃqë,hµÏÚ^à“Im+¢ø t~#sXvñÝí{~P[dŠ|¯¦[{dñ|Ÿ$–eª
-øÈ\³p‡wj±°æ¿‹‚Ãü<K= ?>¥êëϚ1Žô§¶0Éá°}×íÔvŒ‘H«Œ˜£î‡Læ¦y—{ÊÌÔRÒ¶tæ8øžÎQR¦–5~îߣ¨|
IC‘™·ŠŸ±ôÝy¯i¯ƒÿôZø7€Ï“îÍðêlH3ŕq'D+§VÆ£Y-ov]TJÔxu=žÓiûÐÞíõÙêdzôÛÑ߃í!endstream
-endobj
-1624 0 obj<</Type/Page/Parent 1369 0 R/Contents 1625 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 982 0 R>>endobj
-1625 0 obj<</Filter/FlateDecode/Length 635       >>stream
-x
…Tێ›@}ÏWøqû2·pÉS	$ÛJÝK7T­ÔöaB:JÓªÿ^“MºM» ÈÇ>ö±=ßFÞ<܅´‡€p™ã‚ð=üfø›Þ€Ð?¯‡ëãÄñ@P⨀“ÀñO%¬Ž8†Ã@ód4Y Ù µëãGvL I¯Jë:)*5ò*ٍŒ‘ÀGÌUV´M)·²7^+#Ë"i¬2`YÝ˶Ýk“Í`:e
a„Óù"^‹eÆ|.øt>¥‚ˆÅbàژ¢’æpmt×¼g@¡ˆ^ïTj£)fÐè¶ø¦©îjû?\+«µ¼Œ“ij—¥Ì1ÚçŸà|}„ëZežËú™šCc͛¦vþÃã”mèP`ùyzI ®Èn»j­ÌB†:§õò꼨W[U–3˜¬‹z²–ív@Þ·q³yê#£Â>w…7åÏiп²x,ÒǗC4ûìlíJYìÁÛp,<¦W‚^¨t«+Û©Í
‹éÿ'«±*דËÚ!c$ëh+ëüŒ¢õ¦kíÙüÏÒkûÜKßócŸPá7ŠC¸ž
-£Jù”/££j“eÔ{Z™1ý:ÐÀÁ̀HW•ªmÛ×<Y
- ô„b.1âîK%[•,Je	éÉ
×:—&+êì¶háÍÝÇ䬆2æðú8±Ž6¹IoÎtÚ‰`/[Àé·Ð5™´*CŸ³àÜa=¥Q›EŸ
-Výäã1ÂŽŒÇ\œ/tú”®J—ºxÖøøy×WáÍ<„{£û]ƒøÄ-m¡ëÞs|v{¤??.‰!\ßq§ϘÞΎC±HFïG¿
à^èendstream
-endobj
-1626 0 obj<</Type/Page/Parent 1369 0 R/Contents 1627 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F1 4 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 989 0 R>>endobj
-1627 0 obj<</Filter/FlateDecode/Length 1464      >>stream
-x
V]oÛ6}÷¯¸ÈKS –mÙq>ž¶uK[ h·Æm0 /4EY¬%Q#)«þ÷;—”W
°!pl‰äý8çÜ{ùÏdAsü-è:¥åšd5™'s¼9ýûôf’ޤɒ®–7Ɋ*Z¥7ÉuÿTÒï§+¼[Óêæ¿S|¬¢<,¬Vó$/¬—É--aîæÒÅ;âÓ`n™ÞÂÈÈÜrqizÿÅÇâûm3™ÝßR:§MŽ|Ö×7´ÉBx#/_¢ñÊb=¡·7éW)•sô ª­ gZ+I“©—›o“9MÓÎ_´ ×_ø[_\GëÓå
-αs‹„ÞÕޚ¬•^›:n]ÑbÑo
ñbkt¤eê JÓ¨ŒtM¢&ü¬IÕmM]©Ú'ô{¿Ã:jâèëåkSËÖZl /Ê:¸ÒõŽŽÎ«êëKò¦|±Œ¡]ÈBɽ®/pV”Îо6:º¦ª´¿À©Zuç¹'ŽŽÂjÓºà{kE
cŽ$¢Ý*
9ÄtFNEmêc5l‡è…L· À]Æü}
Dd$'鍁Ùþ†×2#[F…ð[Pe2kv! “ÿl?7m‘ðTxßÜÍfŽ)NŒÝÅ_3ypIá«2Rõ#«Á1XM“z/oèd$žz†à
ò¬„,t­žv“mk¼i·¥–å±OoËÈ«UqÚ{¤ÜØ~d†¬ÎTɉ:ÈŠ6:ðܹ;å^
dY¶C‚}EÖk	‰eôM{¨ÛîB˜¨Nï†;qtì ;pƲsÊÂ'™ñh7"»0ÎÎBi9.¼érÙ ¢8zûJêÔö¹”þ6mXâ§üùüUJ¹8àK{E´µ¦Cœ¤,ñÈûÂ3KÒÔ"â,GIè:ӝµ¢¤¢t\”¬Ø3bÀPA°Y³giÅ-ÍuHp䍱¶°o ›4>°wʚ+T¸}T
Aå9•0Ëdl•ïz„¨³^û°?u°>TÐgtŽôó§÷t÷s9ȝžnuÍqâåð,“(ˆ3&qâ¿h	ÅË!œk™¹T[
u˜"YêÐø‰;}
ÌaÕÊ%©2֔dX¼„V4"23Ôi_<OÞ¹,B_4­§®0¨Â>0o¼2ƒ{¥¶RQ‹oC™€Ö8䧀G®™sœt½
-!Dθ±*WhØUÊ&{ª0ÒyH‚‹Pœæ
ªÞkãé[ë<¤p,ËAâ½ÓÛ
"CC/È‚»aâÃy†õ+jŒF÷fv°4è÷Ut]—È#ˆ	ҙ%!~ÜCf£|9»oMÇèìTðùj­÷±i"ÿh"ŒÜwœ#Ú1hãSo>|¦7¾ç‘„Jë§ïח	}0Ù±²|žïw;+šBKÃ
**ǁK
­4Ö –Ô§]È^Ù\`º#ZŽÁð¡+°]!0n8|DÆ­.u838܍0Ì÷óܚj(²á×%¸Ûqãí;T¨‡Óädyìs¬¹áŽZºW
v!Á­˜ÔwQ5pªãdtS’…¹>:
ÒÇÓYšæÈ*(Œï=ƒmEëö\DOÍP~W(V×nÑ«|Här…î¥ɦŸTT‹*ܲpݜj~‡º7˜ÃA÷C¬@+œ•UØsÄ­…/<V‡]œÑS#!45a
õ).b¸
f—EO£óSh_¿¼<»¿:»ºõ¶<Í讉ãðÏ¿œîwÜ>­AÙ¢çëP*³ûáz0å›doå±@]èò±½…Op®3ÜBœÝ/ú.a:F5¼<%u•âúÌWЧ¼Ök~ñLV'–qóìþ¦÷0M¯0²ç¸Rãäÿ¿$‡~ˆ²áàVkÜý¯ÒåtÁïþØLþšüáËåæendstream
-endobj
-1628 0 obj<</Type/Page/Parent 1369 0 R/Contents 1629 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F2 5 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R>>/XObject<<>>>>>>endobj
-1629 0 obj<</Filter/FlateDecode/Length 610       >>stream
-x
TMOã0¼÷WŒ8•CB’¦iéieÅe«FË	¹ŽÓ%v±Vüû}vR(e«ªR>žç½™7“·QŒˆ~1f	&x;ŠÂÓ(
3¤ó]'ô×åè&]ýœ"Ž‘—®6›Ï ú(BÎÇ|oXìŒÐ{¡tÿðvÃB¥·‹+ºÕJYpÿô2%¼tÀ"I¦„8ΫÚàP7
¸Ì
-0µÜ*ýΚF=aIËjYË-l%ÐP±±Ã;£:Í•Ïã:¡¯¹¿[®\kêOÂÄõ³l»%H7ÿF3É«çË~Þi-¤m¨­¢+³S²0°Ê#MH˜BìE£v-Áj!B}ÊåöÏzŠ†Ôp
‰€Ú¸ù©ùæ9òè¥IiƁþªÕLÔºì™3
HÖÃ%ššPåÐô;S_hŽýKÕ”’žÐÅê“ÍvlKó•þ_bS[߆«¶¥cZ¼uNrZ˜UgÍznþü°˜„ôÖ¢Ìô{9ª¬º†(”_•(UÓ¨ƒÓÅ5$Ú^àOž¸æÿíh¬—¿n–/ÉKò//žXã©’DÑxWÌmY¡š¤©{ÑjÞf¼brK{óã·éQjՒµm՟>S¬—ùÃë‹~íÇȝqív…Ë%.xì?²D\S€ÉÛiˆþå|pSœR çÄSŸ5/µz¥|a¥xç¼Ìl­¤;Ä}¨<˜E×ï¶b;Kz$Qˆû‡§ü
K΅1X»¤ã4tûšìï`Òlfӄ>4'‰{v—~þz”_Üendstream
-endobj
-1630 0 obj<</Type/Page/Parent 1369 0 R/Contents 1631 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1631 0 obj<</Filter/FlateDecode/Length 1413      >>stream
-x
•WÛnÛF}÷WLó"h™¾Æ/EÇmÑÔiA
¿¬È•¸6Éew—–õ÷=³—ˆ"Ü4…aÃ"wvfÎ9sÑßG§´ÀÏ)]åtvIEs´Èðq±Èr:¿¾Âÿ9~¤õяˣ“»·”/h¹†ÉåÕ5-KÂñžÓw•èœ4”Ÿfô“Ñ}Gè:Õnè珟——0?§ÓÓ`>ϯábYN?9aÛ*WÑ'ѬÁ§¨»JP>#A­ÜÒæàÊußN閔%ñ,T-VµÌhYI*zcd먑®Ò%=Lkõ$ë9Í!,h~z•h7òáoj+6’ì½#ë/öŽÝàmI…¨kY†4.bS²ÍÊÈR¹Ã§Yô—_fçœ(·VÆ:RMƒóÂI+,²@½¸ÿÞ	úýö݌ãq•pâ8†R7Bá`Ù௏f	éuxfü	$º?Sö×jÀ®[+>v€
-Š·Âr¼%ǽQÏ!ðZY‡Gxn,ÕpňŒÚTΧYIe"*ÉÿV›'ë“i3úÅùË­n$0ب‚¬ë×됺UM"ÙŽV½£R•íđ…3IÏÒ६kZkC ­«åYéúΎ¹ø Y $_ºš¡«©‚kŽ…½_ž|Νq~•ðù!ÿÏZ”’ÄVì2ú\I°EôuÍVl/FIr0=ÃA4
Ñ€Jtà¤%Ÿw@%¤˜Ñ½vÐ7$ãÉL3°6Âic'᪄σ;r¼nü]ÁAgÔ³ªå¹6üµb¥jå¸J(ԅZ²Fùf§€PÅë'„E»ãài-*Œá®5Xë‡ãQ¦o[F'ð•Ñˆ¢RAYã”&^B¡þÙ¬“f
ŒÏ¦îª~œùDµ•4ÊM¾bŒ$ßÅ6yÔrB ¦ô¬$hÎ ªQ¶‡ô|a'ÜZ¡nä‹(\äÒ¢ž(–^lǚõrIeAÆéQJ_Œ‚B/˜QÙÝS>jeÞ›ÛÐ+^QÄy”º'£,ƒg"ñ4(éŒÞû²¡¶"“¯‡1ò${Hcj&_Sm¹0k½Ùt7*úIù/ݓÀˆã~·Õm	Ñ:î	{#P!¾.ûN÷†ÀFÃ*õõÜF¹Œ
ÿ³J¸‰å	PC˜;O8†ð<ÔÅõ­z	…ŽjëmïMзØÉÉ]êêÓ銓×ÀÃñŒjÉîxŠq«c”
ÛÏ10ÀË)æ6ÆÇ/#R”^V®‚ÊÌ~HÛK«é1ÎV’ÓËè-
JçLÊㆾŽ¡Œâš=ê
-M¥f7áäÆøF+ÿùaw@ZµÖO¾£Ý$\Þò®1ÇÌÏÏÃiß¼Ü\,ò›̌	&iþ1(gWÙ%ã’ïq¹X„k~J „û6Üj¿:}‹ÚoAÓh¸ÚQꒌoÜ8bi×à,â&1\:h^ÐAUÛ74ïüîÝqR銳Ô<¿ ùEžñ*7ELP˜˜3Oþ˜ò%Âù‚Hg0ƒè»HbºüCš*·ƒn4ã"‚[Ðßù9"ÌJašñ?÷2GåñŒ¹_ˆ2BpÞJÔ6åH8|z`Ÿ:a2ræ't씩™§vú0Edi”^¨v,5èc#—‰³­jWª-¹È8·­îë2NÖ¸‰ÂOJNŠ
-icX*#Œp?sƒ[áhØO™ñ6*óÞíUW‹ØòÃ̔Ch¯´oUWh>á¾¹‹ûo*“&?¼úû,ŒÒ}dû´_ÿ˜tÿ›…Xa,¥
DÅÒøOµ?‡B½l²5Ôû
ß?Î/¯³Ë‹<¶»üŒ¯z¿<úãè@ê)ˆendstream
-endobj
-1632 0 obj<</Type/Page/Parent 1369 0 R/Contents 1633 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1633 0 obj<</Filter/FlateDecode/Length 1531      >>stream
-x
WÑnÛ6}ÏWܗ¡)«¶ã&é€=¬ÅRØÒ1—¼\I”Í…"U’²æ¿ß¹¤Ûê0E×"/Ï=çÜCåûłæø³ Û%]ßPÕ^̋9­–óâ†Vw·ø¼Ä_¯¨I‹Ûb5}ðq}ñîþ-ç´nPëæöŽÖ5¡ÎßT—Ÿ¶ÜEåi¹,è‘Û’©S¾q¾e[)Ò!ô*¼]ÿ•j,nsÙõªX¢Ê%6-
+…E”×Õ ó°tŽ§øHœ_Óôn”¸ï«O¯Þ¿~EþÌ_!ot֔€×í$á0^Î&ø<~ÑßX\=,‹ÕÚ҇Æ-¨7³›d6ãóG§·láÇÅÅÏÿGyendstream
+endobj
+1244 0 obj<</Type/Page/Parent 1099 0 R/Contents 1245 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1245 0 obj<</Filter/FlateDecode/Length 1194      >>stream
+x
µWÛnã6}÷W6}p€XÇñ¥@€zÛðCÐíÚ/4EÙÜH¤—¤âU¿¾3’,ËrRgsI#†È¹ž9gô½B€¿!Œúp9žv/€Ax}ŒGøÿŒ€¸óyÑño˜À"ÆÃ1þ
žXð.ËÜÊ#¾g҈¨øæ'ré[Á3#]îoXzŸHëb™ÏjN¤×™¬PV\GBå@¯}ḻ
=´ •0æÚfœ/¾u腁7ÆšžmǒK¡ú>ö¼•j)U„ŽŸ7q"xë È1¬GÉŵÍ-æУô_ot-’Ä>ç:+rWg¶7ñ~™Ya­ÔŠúûF£þÍ°DT¯?¤v.Ö¨’„µòQ·ÀBNjüD¯¤*ïnvÀg
+–øš©bO	f’Z³,°e¹3Jo!ÑúÁB">—öם»
+Ú½þÀ´u*O¸p.¢‰ûÁxu_l"Sò¡§æ>–ƺû
³öõÀü´+]4ñ‰Jí±úêJíMœêØËS£nµ!>{?£ï7C
*lÕ‡#ÊÒ'¨keuÁÁ‡Ã„ÆÊ1œ©b6p¬¬¸€°(©Âq*Ï_íf
+âoôëíîG¾‹#¨„fqpcmÐÏ2sÀð3î(×K”&䉺¤)…À4æ¯é„-õ£@¥¹§!’–%	r€ÑÚ! › º<¢S(á°ÑHÍ(X;å}¶»Éªb:Îýùl†Hu»2Œ¶»CÙ:º‡Y­„##Ð10¥t.Õ
+"-“¢[¢mŒN7ÎVv°¶^ép²“vD@Éaè]y—ÞÈë{0×	3ÒöìFp‰"ˆ X®2Ãg¥…#× ".¯É›.`…Ed©{ª¦jïX›è¸¤sĀ[3iè”IEœ†›Ñ<¶
Õg©qãH4Ç~戡V+¶(©„,'ìªG‘Äš:Oµa¸ÐP¿K·xˆ<Í e‘ðþÑYá„gÖéTþ[ž$õ) å„ìn°W¹ÎLËm…ÊW{AhÆ<-JµÆ­µÝû\
+Î0%ÀÌ(ĝuÅ´!Ta+1úD0.9r˨D­åR¦zŒÍ.ꊸ®Zïjµ í®V«Ó™Ä…w¥O¿ÝuÏîÎë$
B/sL&~0ñÃ!ÌogŸÚ·Ûßáw½É\­ÜuùÝ9„“É°‡“˜g
+n%7ºLÅ"§(^JðÜÅSÌû+Y°ðUЎ%¢£CGn¿LoáØ4{tcŠŠŠ™K^ ¯ØJPÓÚ'[ßÂÀ²¤W3lfÍñðn# —›ùe6Ÿ[sE$^Îä
m/v¥·™Ž$Kî)#”ä“öÛ2U.G2ðsy¹™º"ÇÉÙ}à­VXüßVÕŸ«qËr»‘+kðƘùЀ-_ÕN£¸.͉b##Vs±—ÇŸ‹3Z‚3˜V«âáìû7ãj³	‡øö;¾„áäªTÃùôöó¾ýMp‡¢Ä3"ŒZþz»½Q߈£n¥ž°֑è,Öøiᯬ ™Áhà†c|“Æ£Ã!AìÏEçïÎ&Žê8endstream
+endobj
+1246 0 obj<</Type/Page/Parent 1099 0 R/Contents 1247 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>>>endobj
+1247 0 obj<</Filter/FlateDecode/Length 1233      >>stream
+x
µWÛNãH}ç+Jbµb¤‰'!	ûÆÌ,Ú
±›ìå
	uìN܃íöô…Lþ~Nµí†
VÊp	ÈÝ]uêTÕéò׃˜øŽi:¤Ñ„’â`
h8™âs<ãÏ!~¤UX8>‰fÝçý³
ÐbK“þI	VZ$G‡ï_ԋ8¹Hr½V%‰$Ѿtdýj¥%ñoøê{kú¹Zö­L¼QnÛ¯Dq³QåR•idõ+æŒüê•UNÖÖ詹_Îç§Á¦Ñ¹´°Åô£F¦Í—ŒúR}{Öf—‡ÔÕL쉇®¹½ðð¬Ñ=ó ]&
ˆÝ]s{ááY£{æáæÒZ¥K*D)Ö²@Gtʲ[B-,Û±î֕°v£Múv\‡-°ª=Úiò§Mùb?1×	ô©¹]ÿ°Sײ&¼Ë p
¦î-¶^I2é«JG+mèi–ÒhKÿ»BZU"'úúȗ‰.8Óä4y+w»¯ß½æÄ4òÁèuÅöDŽ6z
ÿ­Y×ÒäÌöf¥Œu7œ¡®§F¡/ûµÜêI££?ÁCS*?Ár{s}ízñ]¦[´{´ÕVõ>píÚ÷£§ÕÕ?S×óAo8á1àœDn5‰4EӉÎÊU)I¬ntÝßþõ
+še-•’^‘(K½UåšR헹¤Êè¢r–»¯%|
Ùiš…á$óÂ¥Þ@¬hÚ­ö†æ¢X
+ú•qQ¢ËR&Ž=¸Ìh¿Îê=¢ªò¶•]&ÂIÞ¼RkÏR‚1‡ÁCÚ"~|öÏN(ž6LŒÆµ÷8Ž&}V…rABG>ælÖþ­Ç ʄi¥/ -LA~–Ý*DáÉ°°™Ka
çNšp½¨I™®$ˎÆTHòÁ•w€Þa­±`ã瘑Áw‹Fí¼å[Ò%>ĝP¹àd°2ŸUé¿A¨¤Aˆ`Òn­“Å{TË¥,˜6àÁvÕî쀩Ï!zŒ¤‰4N(öWi\pÑüYŸdxÔØ[àå÷„¸©¨>‚¹¥H2Hd˜¨TVÇçKƒšQÚFâùÐ¥{siîT‚¿åà^”)]å~½,œ>þz̞7Mh-20ŠŸ¥D^˜¬Bs´¸)pi ó—óymÿô‚Ö `F`Úþ¾<ÿÙ.SmêBïŸ%Mûõ¦Ñ,¦ÑI]M×óÃè{_ka½w<¬gõ‚+PæÀ`™!$<ÕXÐ_çŸB¶‚3•¼¥v؞¢sóµÆèžhœË
d¤²$˜	]Ñ	ãrŽH6™y¾d¯¨Y\‰G­ÑwUu+eIËíN蜽nÁ¥Šß%|®SöPڜ֎·‡!±† Mm´¤êrX)”0š—ˬîÎL‰¢.ê+œK_ã+´À™BDŒÞÊ´éöÇÄ·óCâÛÌ|¬›Ôq}5òGWÈwJR'-1ßNÜrç"„v€n{0´ÝBÒ¨ÁÀ½Îä«¢Ë+ŸQP8]"§¬d
ŸK¦ÚBi¹‹$?¤åÙãFiD8kj/Í¢ÙɈ&£I­ÆóӋ§teô¨+}҉çI(àå„õb~	¨7âM2=zV&ÇÓq4Ìð≓)ü}qðçÁw
¶çendstream
+endobj
+1248 0 obj<</Type/Page/Parent 1099 0 R/Contents 1249 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1249 0 obj<</Filter/FlateDecode/Length 397       >>stream
+x
mQMÓ0¼çWÌq‘Ú§UŽÝ$­
+W¯ýšxIìâþ=Ïí"¤Šb[ɌçÍÌÏB âG ­±i æ¢*+4Ն×m×òZóë	§â¾/Þ~|Ñ¢?1¥éz
†Wzu'DٖxpVM)gßôόßB0,ã×u[6̸ëGÂb쓱áwˆ4¯GïÒ0òNHàN×ãA΄Gò£x_LTã
+Ç)
ƒ|š»Äx’‘±w:MVVguÖ›²Îšò|öî썌„½QÞwŠør|€’Ó0ʁOn!Í :0áb4!œùÖc#
þ&Åóý»æ;qKÀ¡¥ªÝ,Í†|(ñõðéû‹é9O!M&ðÏÁ“ŒüE'uõÃԜ‡Ô³±&Ä,ÍS*bÎÇ'k˜7›_ôÚðUˆsà¡`).Îÿ(ot/ˆ†Ûí6UsËèq·¿ßáèÝ3©ˆ÷N¥™Ã½úÍÌõ_º­¹pýß·í¶l›Žëf@Óeއ¾ø\ü
±“¼´endstream
+endobj
+1250 0 obj<</Type/Page/Parent 1099 0 R/Contents 1251 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 660 0 R>>endobj
+1251 0 obj<</Filter/FlateDecode/Length 1739      >>stream
+x
¥WÛnÛF}×WòR°h‘º÷͗¸1š8N¬4}0P¬È•¸	Ée—”ý}Ï̒º9šAdQ»³3sö̙῝úøÒ$¢Á˜â¼Óúø…?BþøøGgÆÃ`J9…£
þú§Œî;Ñ Âíj4W÷žs„“`¶g/4ð9œNðá¿Ó´ìDã0Ñ°?Á'ÌÆcÞ"Oìr0žC̆Á«ÃhŒ›'^ÝÆêpŒ]~¯¬î=cu<C¸»Õ‹yçìzFQŸæK 2žLižø%î^¦ª¬µ£0
+è}¢ÚÒ¥-–fµFÔ÷*_(¤‘ªHÌ¿túԋ†8 {çL®Ü†®l®LÁ6µ³Y¦ïb‡áÄ;ì
†°‡<„
Ý9íô¿kS™ZÓG­S¬¼ÉÂ°1‰&H&ziÆÆ®)†S¬5À‚Ó:5Å>S*3­*M¹úª©âèëTÕb«ðÛgÕj‘iz2uÊJ–ðOU™¸I/øp—&ÓUÚ=š_à®Ê
[‘*J=Vºù•ä¦0ƒYªªz².!]ÄnSÖÆ|€ÀÐ<ÕN¬Ÿ,Ð.M\yöá>§Äg©Iv’Ø­èì„̺mlÝÑÃÉáná½ìnT+-™Ô©>4A—^ïÂo`>ÜÙÝ%»ô·ñæýçù{°
Lˆ9í€
Žé @¹]9».¿qÜ$aµ‚l³ ?úœ¯ëÔºß*ºµµþÝïÞ%4g*$6^纨	ßßøÂJÀGxWêÑ$ðW¶À)¯vܾ»º$‰ûã!R¯¥A³ïvÞ2ýúüÃ+ÄmA¡Ö¼aÕºÔ®Ò	nm±ñhØB½m:“`êÓù{OÅÈùPJg¬ãúsÚ3™ë.U	.Ë­HF±*ÕÂd¦6LK*®¥0é³)ûhæ4„¬ÖæQB»J¥‡.R8	`l¶€ýSz7S‰«IÄ`[±F¸KƒtK¡ªŽü÷ªz“yNípL¼NdvÅI/Í¬„‹m"Q2g—YqÁð…ºÚÄ(^»®3S0)0¯uYQ¡Q¡«‚9Jw¿Ì}†,e„ĺ¦ì¬
iª‘9¡x¿²0x
®êö‚L­a¢ñ§¹],fžÂmmài)B$§–AË2û¦ì’hò⒗³žU{—>ÝÞüýÏÍíýüüíÛ ­óìpã¶_У¡ªNô
©±Ž¶ªŸà«s(ßlC/À A¬5Ku@çˆ?…ÉÊÚT­p
+h!jü¢Ž¨‹ru´{½TúL[sìñb¸€¥*µë,‘ëâP1¢èú½hŒ†ŠrD¼gl=;àctv7*ÔC¹ò0c¢ñDdøìºUY܆Yf*æՖ׳o
…9´5HD™~Ô¨¯hñ󾜮ÑÞ]†žÃ*Â@mt"T”…™j8Ì"~·6ûvv;?Hý¢±ÉC×Y…¸z8ñق5ÒDþä6Z¯k^W¨Ú ês*m!ÒÒ<ÿïõ¢iÎvÜ8¤ViXGÊC’±rњ"ÎÖ,ïžì25ZýŒuû‘£OȌT»uUÿP¼‡»?‡‚+‘¶oj2Æì;‚ô?Ç*¨¼	t^z1c"ȸ²åÂíœoh¯â.°uƒAø*åGŠc”Û}±4Ú<OX:‚>%ª÷‰â* Nšˆýð9‡âr
²¾·°Hq?¥ÅäOíÚY_5lñ¿2¬}Öm¾ŸôKbpL­;ßÃÁ›fm#Úª¼6Ä10·ê±ýTËw+™|ßkØ·kˆß‘KçU›{j°¶±Íá¶eïBiJª!hӜ¥p‹«5Z@b–KŒ¢˜ªDOnçÃ#¶3µR\ÁBëb;,à˜Æ7ª‡“ªlXLîÇ#~©hÔúf¿µîS6FӐ1]eҗæ9)FÈZDˆOâç
Ad¿`äَúʶ8“&h¹T¼œð3·š~	ð…S¹ŠS$%Œ¹+Æ0T{Ú|±˜úA»fZa‘e•wå9íò…LßU¡Ÿ€'ѵ2Þ>ÖqÊ|–æÑÊé鱞’®ã ÷74wÊ
àM¨¥W;à˜LZÎ^¡W¥Ž
æ9™ðv°°Ë¼q£6r”NÕ<±ìšd¹Ðxñ³ˆX—~^ƒÍ“É2°€3Þó(SÆâ„lÁ÷ˆ6¶Ä_FA®íìzº÷8
+&ƒwßxK=š~ÞL‡“a0OýgÝëyçCç?,xÞendstream
+endobj
+1252 0 obj<</Type/Page/Parent 1099 0 R/Contents 1253 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 707 0 R>>endobj
+1253 0 obj<</Filter/FlateDecode/Length 1502      >>stream
+x
•WKsÚH¾ûWôek‰+$a	6•ÚrÞ9¬í¹lÅ9ÒJôŠ4˜xý~Ý£A€¬íT€V¿ß­ï'>ñϧ8 0¢¤8{cŠ¦3oB“iŒß
þ7š–Œ)øüñéýI8½3Š‚	H
+šŒg^ÜA9]ŸìÃÀž…ž¿Ýƒ'Þt+Føc<+(à¯Hø^Dgá4ðeÄ (({
	°ÃMfgxXPÄê,Ð㦑鏧ðg"PŒC:ó™Q€b¨3 Ç…cj
+°Ã…3VTï‡ ±PŒÎz…¡=.ŋ˜IB
v¸`ƱCd$²@‹g=_ @#ËÇ
Øáü™upÂj-Ðã¦\ ]´}
z\ì÷ú|
z\`·2èq~lù8ƒ¾=nÌvþùìpH.'~ÆÜò›1â
+/‘†DŒ
F½šŸŒÞÍȏi¾DDˆò”æ©ù˜æÉÀ¼Ð£×U¹ÌV›&+Wd֚®U±Pô¦*TV2Ò4UžëæÙü+ÄM`°7”Ò›§ƒ9x–YÓj®	LI£•aqŠ¶UóY¡Wo^S֒©hS¦,ªLEg­UhƒGTêD·­jîXR[,¼öyô‘¶Yž³c¢¢x2(+CÊ]Ԇ…6z¨Ô9Û͎ì	]kô¸‚æµ¾#…ßE…³VàOõ÷2:¿£¤º]
+Å¢çp 4+ˆXgÊÒõöÔj¥Y‘Ì°zô®j ¡¼Õe¦ËD?¿g£ºÕ´Ðº¤<+¿ÁŒmfÖB¤³Qù.”ê6i²ÚdUéu	¸l‘ì(B¬JÒ?TQ皘bôcM7pæÛÇ.ŸZÂ<(’´Ÿ«?ëÌ¥œG´|^åÕBå_:å2¼ð˜ð÷‚^©6K¨Õ
‚‰/Ã"[¡¼PvCÇ^j³È*TJéô²3õÎ®.ß_Û丹ÒVMµ©f½8ÿtññüÐ—ŽŽ(ZƒäsçÏVS»®6yÊá銈RÛ\¿y• 9…Bõ7´hª-\?Ô#Epè.<Íõ­–šfW£‰p¡šx#@}Ýè¥n¸ ­pç؝¶áì);kþlßÒca»Ü¸ <‹V'æn—Wº´þNãa‡})ðͳDŽÁ19ƒXÒ!ß/-B+5wµAjÕ¶(‚ÅË͎ið}“5ºÐ¥±ÅÍ%}(ùáÄt"{Î4øGÆjS×Uc\©äÕª*Õ]6{®Ž§éÞÊÀÃHl
:ÉNÝTË,×ퟏ‰(GÌÚ9ƒ¿ß.nnœ@›CI¿Ì“µˆ'“Xó{KëªÐ”"C	lÄTF+Y¢®Û2#âû*·ãeÁÃ{Srƕy‚/i“ÝîÆÊm¼Iº^³þ²Iûþ2lÙ½mkdK8E+]êóÐ*°sۖcžK$Ž{ÙziÖ•D«Ñ9–)VÃéé›ËëÓSI
+o;^qŸ13EòÌ(”ýaB.ï}Kœ³òÌKŠôPÀO2úboI‹Zq¨+[¬¸½‹a/Ľ­‡J¶r¿ôF›¶Éðµ|œŒòl1rž‹°>‘8=RªÊüιæ§'Ùb‚i,ÙV
+ìþ–)J‹ãÀ…âg»â…M€D‚›Ž÷èAÛÙùÙõ‘]¢»‘òˆhàÆÁ\a‘JӉ9’~/
+euD!7ZIµß\¤ÆÑx|DÕ·ç
aÜî¬î£ã
+·>"Þd8y$ËXN°¢q•TKª«¬4r
â€[ãjø§‹=ÝÔ§_Kr™¢þ»KïpCwê¼}`òË.„ХZä:µG—Üz©6*Ë[”ϖû'åÊÚçXX³x"¾ï\r‰Ø;7ß^¼þôÏÕüã具6…=Fwô.9ÉFï’îàÆÞÔ'w±ÞQÜ5ӎÀÇËÞtR„÷Ùû×ç½:§«¦úŠÑˆC<Ùð“ °‰C?‹ë4¤aàŒOŸ~ÆóëhMñNîXrþv~ò÷ɲ
+
Dendstream
+endobj
+1254 0 obj<</Type/Page/Parent 1099 0 R/Contents 1255 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F3 6 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 712 0 R>>endobj
+1255 0 obj<</Filter/FlateDecode/Length 1744      >>stream
+x
WÛnÛF}÷WÜ•
‹ºX–ä¾ÙNÓ¦ˆ“4Qчº(VäÊbBî*»KËê×÷Ì^taä¤(’8æeçrfæÌáç“
õñg@“!]Œ)¯OúYwøǀ¼ÿùd4fC÷Çٔj]N³~¼ªè¿O—WÙφ“ì2^ð£½Ëš./³«½gþØô&GÓ	LñÏHZx{ƒ«É—nf'½—#h¶àXÇÓ	Í
+jŸfyg¶”d¥y”†êÆ:²Íj¥£B×¢TTé­,	U ³ÙGCŠÞXçO%þWx¼tÈ.…‘áfßî"6FmVtî‡ãI´•Žø‡ÝÁÃí˜æ’Œ!ÕÂ:D;7zÀ	AjSà—…6ôG©
+ܦ¼*¥rä4ȅçcšépl}Ú:|q›Ñ»J
++æ¶p=>
+SêÆÒéÖÚ|¢öYª„’75<Wj…òª)dAëÒ-q°´T”Ö™rÞø爬尐N”•ÍŽa4g£g`ê§ÙàŠº—C@][ú ê¹@“´¤´#½àåº^Uɗüÿ.\½ £›ÕbµâlæHOJµEïÍ,¼àëފüwU>¥§÷Ÿ+Ò5RTՆ>7%Üy¿%Ã^0òiUq+á¯@gpsٕÈåýÙ9mt÷šª8Þû<œ(ó@Ø
­ˆDQôÏèðœGÎÖó,×jA+aD
HB·”
+•©C

JŽ,ãqú"4ÿ5[¶§dݦ’$ò\7Ê¥¢]ѓ´@Kw/F¡bƒa6Êè6™¹ù²T’f†ë:÷³ô«.{ºõ}jcFÃ~°»/DÁÏvoà‡±/>ê8ï ÆG(‡ˆm‘n¹¥p|¿±¡$¢Aw+çkč¦%™»ïç˜‚¥àšá”¹?C)[Àó„„ö“•Ñ«]
c€§Á›ó0ðÿIé5,r€§·èΆ+ÉN
+±ÿg0¿Öbò
+ô4Τó¹ƒAëÖO
BC-güڀ!ѓu£8aØ8§’vï±Á­VÎ誒&£³GÔ*݆è6‰*­Œ|dž
LbPµ)ÿ
Ä)Э‹®c¹yõö)¾X]·ðü›‚q\Ǽû€áá^A1¥Eš:=äºôÂ$ÇBÛl†ùð°mêëËßr™=@Ԟˆkkéêik ÐL0ý"U.ÏQ‘Ä·Ûw+P˜`TR-ë9®ô¢åY¤,æ2ȄJÞ9‘ÁVÚZÎõ™’Ã3RsK0ó…W:,œmÝ·°[žA©¼ñIbÜëm>ï^ÜbêµA<C¶-è
NÌh\«Â{ùÀ¬¿Éè:Î̜ÓR¯óh°Í7̯ÑdÂ8”‰.ДX@?²	¬òî.î0†±¢§"Åç›ÏïAî}ØáÆ¡×BÝñxIðývÐèYßw06½]mØÛnëïÍ	XÕ+Âi—wîÏxn7Ä (Ö¶Ù%B°¤v#Øàè^LêàYù°ƒ#׈ݮ´*xpüÊÚbã6+Ðo+_`ÒaŠžtyïhj€yÙøñ7Ò2©*‚AùXF¥Áæº{@)h×/ٖQÏ{#àoJi³û³ᡘú
+ I(\\…]r€± ÊB†Öbãy$Æsœ¾è2tK#ª¸%µÊèF{µ³-4Êú<ðÞypXÐ|ƒÁUÅÑ2ÿ7‰xúVuÑ9ÝEµ9Ýi×vG“òLÞ8lwÞ}Ü{Å‚j\zíºW@W‚±q;mJ“u¨*ßDã»*4­ŠÝâãwŒä%$Eh¥.PW®íž³¯`X‹
ÄÚ6hlœ½Tà¸ö%ª6GMã±7?Ð0š0Iԕü

]é…Ì £Xò[¯hÀØÂwGEMhÏÄHfÈ_^È/JßN®˜R„±f¼Öž#Wߢ‡ïÇ"|1Ý-åÀ_lûÉòü¬ÅUŸƒp¡¡Û–úÁÀeúæ¡Çrµ>̶ƒïÂ(€S…§6óƒaKé¥XirǁùX·BŽ£¨äú€®°ÐÑ ‘ø™ËXŠ(HjÁ’ÞA¯KÕ<Ñ_/Łó|ÀÜ©ŒÖî»vf½Æšž—
+¿HÙthùÐ-¨WÈǞj@tÝ<bz‘ 9M£yõ‰µr½—;̺–zlw!*?Óé½¾fþf­Ø¾שŒÜ_Q$Í$P7u«v¨ßv1Y
Æø¼ž^Ðx̟Vhå×w7×ôÎè2wЍ{ß\7èN†žÁþ÷·<¦‹4MFÙd<
ϓ
»ûivòÛÉ¿aå"Xendstream
+endobj
+1256 0 obj<</Type/Page/Parent 1099 0 R/Contents 1257 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F3 6 0 R/F4 7 0 R/F5 8 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 717 0 R>>endobj
+1257 0 obj<</Filter/FlateDecode/Length 1648      >>stream
+x
¥WkoÛFüî_±uRX
,J¢dIvÚvR·)ꤍUE]'ò$]BÞ)<Ò²úë;{½ŠÀvÈ{ìîìììòÓQºø×£QJý!eåQ7éâ
ÿêñ¯÷?ð:ë
“1•4&ÃðPЭ[ê§çɈ㶥ø©$͎úƒ1?¦ã¤S}wÌ?ñ±Ýg¬âè(ìu«;Ï%
zƒä|g•½é¥Ý¤whòjrÔ¹P¯G“BŽG4É]$]šd­ÉBҋÉìÁy·§Õ‘uÖY
+kW¹_‰§[$u]­i¥Š‚
+ekªqºÙBiIZ”Kõ‚??&±\JËü”VFŸÔ´÷KîbSñk¾†ß²•.µ{ý$…o-AºÁŠ]Hü:'mhapy®*™Õ¦Z'tm*’¢\|ç®9äf¹\ŸÀlSäÁ¬þÏAî8â£-ÔG‰@•½ˆ8{(Ûé °ÃÎÞ󋇋³î~zacJnc+x÷·VÙGiïšÖE'—÷Žø¢3Uº3…
["îp)²¡Ë©¹—§!”4æëó÷ÇÃ-ʄ¦)`ÒkÊ¥Í*µ¬Ráò5ŽœÄ¬Pˆö”T"“SºV–x~eÊeSË*ñ.G‹;mloâÚÚSk
+/ÖT6 |`Soe}õæÝ­·of;æ©6¼éƒ
r~àí¹)…Ò	MðÐê€+ñâH¶xêFñ­(§ÂóO›¥™™¹Vÿø4“°;”ª+¸~`Td™itíPq¹ñ4xkVðXøªÈLUI»4:WzN¿iõ@ái¦Ô”URÔ\ §–5ÙZ.IYŽÂ/º%ïn<Ž”øÃÇ})3º\l“ß®PBíÚ¬4áe­D±©ØƧX•Œ3ìÊäuÝØp›³º/ƒÕœ:×gqٔ°-§^@îZã»ûˆºƒ[ªd¦,¹ÒŒ]°·YÉM½EíBx¤+cêg|ëÖx‹66©-¨]†*é?ª’GLÝIáŠí>Y_N¶\®€s(ƒ»ÇnOÚ÷o^S ¹–«¸uƒ<ОK-+fÂA^g•)]Û^ñ4¯B‘Æl¤i’v{PŽQ2î;]ý	uå®\Ù+0Re)s/ŠµG6f‡«}˜t‡g¬@7B7¢@E;z21¶ê»Ï¨HÄWÊzaòˆ•üÔ¨{Q@^–§î9€"’ßhü]éܬ€õ„~yýjKP:¾•Õ½¬^Š¹¬ŽÑ'"„µBAm®*[8â•ÊØ
+e¥ÄÜà±H¡N‘{/P®Qe¡çÒ¿ŽuJkÓTq×#c÷MÁɟ¢!Pj…Ûä‚-0À»Ç=¨bt×pÙ
v°ï’á9Ni¦¸®‘B—/ÎN9••Ý	Ç5hː’ij-D5GÀr^I¼š
yø©4©µBn‚m²ÅM™MèÓø~ìäo%*èüW¼¹s}N=ôÒøxÛO#o{i2H҄Žßé6"m_ëczÅÚÉ&áÆM˜@&¬ÕtéÕÙeuwòA%0ƒ'Œjs×bÍaõ÷yT¹{A+±Þ£e¨lV,ZË\¶
+ÓPD֊ÂI¿ÅAöH¤w%½d¥ÓRÂ&‰VÀÌÂ՟í€
Ô¨·Jg’$BV?ë)¢C¹¡!{OKÇ)Ê)¢©Ñtk•q¥æÒáÚË^[ƒßõâ`›åEþqáõÆ >SóZ2‡°ÝýºJ‹Dž{~ù‰e[ì!-2fÀ¥yÃvˆÝQÐ6ì7DUk…N·Õ&?	8´Ð’Ñ…$¤äåPCé€,×ÜÔTÃù¹eÑÕ$‡³Â•dÊT|œcôô^æ?B§†˜…Vºy »ÆTPuïú™’[V>ÿœf*Š¿¢á.>H@s"zFß$IRIžŸXPP)KQA&0ÑY¬|÷øÈ
èô-u[u,¦\ì¼ÞÎi3²R{N=|µ-m‡WjßÐ×M袱®±§Ï‹¼åª¹Ÿw£8¦¼rÓgÜ×nâÛO¼)ßee2™7üE¶FÁ÷®	Bv/*úotIµ}¡h‡aRÀ÷ÞfЈ&ív»Þ¡,ìj£­òG""ºK‡£í8¬öúãd|ާ᨟à6Ý^Þ\A+ó
Ÿ0ôÚd
Ø®øb´X|(ŽûÔ¥îÒÿ!zƒÑ 
ÇÞ¹QÊ×?9úõè_ύendstream
+endobj
+1258 0 obj<</Type/Page/Parent 1099 0 R/Contents 1259 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>>>endobj
+1259 0 obj<</Filter/FlateDecode/Length 1770      >>stream
+x
­WÛnÛF}÷WLf
+‹ºØ–äha+q!ÝXQ@/+r)mLr™]Ҋþ¾gvI™bœ4É
/;3gÎ93ü|4¤
~i2¢³1EÙÑ ÐùÙ4Óùt‚ŸGøk$%G׋£þÍ9
‡´HøÙñtB‹˜ðü`@‹(xØȜʍ¤ÊJC2•Qi©ÔôI+=J•ÌK¾$(֙Pù)=¨<Ö[K…ÑYçmHä$¢HWxVä1ÂÚ­6ñëŧ£
õ†gáqƒr#JRü¦zR©\Ëø ˜Ò݋l%Hęʕ-(ՓÜX*”á)2ª«»Ó7Âv‚­Ë爖´¯Ì¿‹²Ÿ¤Y¾¦¬²%­$¡Zi×ÿþæ Ñ…äðÚV¥)%B¥¤®ª\˜C¯µAÕ®‘|Ò07¸8ÌÊ
n6Ïٍ®Ò˜3°²Á[%	²¤û×P¢Ë¾ÌZ)Q"o¾Ó¿
;\˃¾,£¾{Ýõâ™
Wjv§.+£Ê¨rÒ«sò)=4n4Ϲqœ»•Ö2
+rG:qÐ|·M‚¹$ð'G¨Èì
+‡!¿Í„A•¥Ê×|L§˜}±uLD•K*
·¨ÆËÃùâ-ß&¡†Dç=Dé%)ªÕ¦­*b÷:ªpzŠwâÉ/ ‡¡3®Ál¹‘Àû…Ç»‘X³¹Çè9˜&¿Lä•H]vžšó½Q‰Š<ífhúZZÊd^y~¾€š×å"“§´ªJ¨•r?ÚÈèÑ5k¥¿ÐñÌaéÌ Ý
+T§«Z=µàß:‘‡Ç4ç\@ÐHXœøu›DÜÁ—ěð”C}ïŸÔ.¡ZîuCª}6œ
++úVozl`?	6öQ`ÔáÀ¬Í”=4’2öBYi¸‹£¡×ˆmº±»®¼KÙª(Òݳý¸d'Tc/[6zoØ2^¾vïßD5³{“p:ÄÏÓpÊj_ŽÆ“ÚH.iˆ‰‘À	¦áðN~Q[ùp^„Ì¢–pgô*•k=¦wÆhãLøY:=½Ñó	§ÏA©œ©©ò(­bø:¼:ÁÿðCæqc#­–]ÑIûA÷î2(wÁͽ*Ä;&Áa å¦ÎJ…Ìc‡tc¤¼¾Ë'³Ê›‘¶¸f–Âm²;[‰?ÄVç'`£87b[G{Á)ã4ëŠm•¸àaáQ偩s4¼V(.¯ÈöòÊÄ#ÌÏ׆®óHȪ…£a
+?bàJ“`¶§»îõ>¥n-û5üƒOä¾py¸á½hæ
+=©bë¯5
+Xš2FÌV2"ƈt.χ…tkšèüÐv£Ó:ozsj`33?U(ÈÕj+ì6|
i¡MU®>W’>ò3K¿ø¬©}9òs¬ÅìÆÕõ{ÃÁEÃε›¿˜ÅÇÿ"F36‚7ŠtžHžƒ¨–k¨
3ᙐîñ̓ÛmPÞáœ{rÙÎÖEê´Ñ搴‚Yâô$UºæˆÁÉsˆ
ĸäNƎQ|ñY/‡³ñ°/¬—6ŽÓ–wK—²§i£¬ƒ#)Á®çÊmn«Òʔ· ¸oµ¯Ø2á:D¡©˜bì€*AlAv#ÐÓeçw³W¸Ì]¿aܽùŸè4Õ[®=‚óppÞÉ:!ÌØHa”Ë’àƒµšgßxŒ‡ha4{³\>Ìß¿_,—¿û‡žIãé~¥~gjpSdn ¾ÃÐc¥­x^&³(N¥k£«âUû™«·ìFΒ°.ðO¨N½ÜE†¯6€q%bR±À‘oº½Õњz†=N¬%ÌÛíî\ÉÅ÷ÑЫ3‰ù¤eŠ "5V¶ñL”¼Gl‘÷)ÈÖmìæh
3K¬ñÉðò´9¿ðßÖäÅ´µ}:_åÑႦzíJM–Ácr0¼¼Æ\Ã/ߴƕZ™;„x'Ù#I¶Š"à‘T˜nm	S°Xï\LÏ\nq
+n
>X~#	6'®sɶ²k¬OéxÁíü¡Né.ÅÎ/yB²UZrÕ؞ÝI¦´>—´©½‚{ƒ4î#š
+Ô´ïF{Q]0+t„Oë
¦…Ï=Ֆš¿ˆ†‡¶MÀŸqXžû·þúóÃíÇ»ÂðôŠÑx†¢ùEdEú£˜§µp9|‚ÏC&‘?íY6[u”¨J,­¥þµ‘±ÖÐ5؈~kWX#v÷a4Vk1³ûV¹ñaþwfLëñ7Ä·öôòŒ..Ç~jÜ_ý}}ÅkÐ'Œ„¨Â²^ºõî
Çø,ŸžQo2ÂwwüÈöt>9'ã)¾ôñÂäŒÏy·8úçè?òéeendstream
+endobj
+1260 0 obj<</Type/Page/Parent 1099 0 R/Contents 1261 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F5 8 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 720 0 R>>endobj
+1261 0 obj<</Filter/FlateDecode/Length 1815      >>stream
+x
WmO9þž_1ªZ5•`“MÒ¼ôˉpE¡©ÐIH•w×!.»ëtí%äßß3¶—lÒR•ªÇö¼<3óÌøG'¦>þÅ4ÐpLiÑéGXNfшFÓ	>𿒴ä
å_1ÿºþ§3žDSŠû}ü.(¢aXåtÓi¯±;žíï¶Ö؅¦Yûnk]Ð`ð>zßÚm¯±;?[ÁzÛkìNãhÒ¾ÛZcw6‹âönk]Ð0~[»Þùˆâ˜Kk<Ð"sôi‘vi7R–ô(+£tiºhrD‹ù?$ʌìJÒ§³“SJ*Q¦+Ju&é®[j€S]²Ìdv÷.¢Nê2ßÒFlÉêw‹ï>ÇÃh…ÝTW8o¼u¥“\¤ÎAŒ±ÁbMºR÷ª9eºª¤›‹S|‡#…~ô'ÂFš+YZZVºà‹ÊÂ!¶¿’ßµ*#>Ð;0‡–]lu!ҕ*!¿ª%‘¦ºfÙPlW°^®k++’
+ª*Ø&
1òIá<Žá¯qS£à[Ð×à}ƒ1’8Ü®öT1FĶ9ǃÅt/=F$‰{I¯Úþ‘iXüÞÐWÝ®„}khSéòþ¯p¹±vÁþ·Â•ŠÚȌܾœþíü^‰GUޓ S++àþ¯èbI[]“@´kÃW ÅGfðsdD–áð6i¥Ö֟kíR!íJ#?5¥•V6qCN1Ä.r]ç©2S)Ÿ°ð””¥•ðñÚèêAf.V­Œ8+Mұɣ¬@˜¼-[c}æòe¸ÐÜn;ɑ)¥°êQ¢ÔÎag¥ƒ)äò·RȤB”µÈq8Ø-·0Ù΁K¸4½òЕP¾u:[&_Š	ðÕp‘1v"8H¬fÛÜ
IýB€€™"Yc6-©]z¤Ô(ÁÑßE4	°MB|EI2S(oªv¹ ðÕsì[Új«re·G€ãᰜwžµ5”¢ŽBZ<—öãÅÕ
¹½
ÊIùöõ[ëµã)N$À]—T䋴…bSçßøök
+œP¦…¾Á‡&pJ4„÷¤M{
®†,÷
ŒèFÃ̵ÔëüÐ-¢J®uexœœe
+«0¹™:)Á…0ê=O3”Hû™¤ç
+¤èäúJ=œ+ŠPÎd
$ø[60	:WƒlöÒ+—†Â=F[EWšM™äîã	ù‚m(×mâØ·ƒ@ƒÂ¢šÖ`<M¹óóü;õ-ÀQ¼ ùbÔ»|&.;cQ_º<2]
+p'K‘è€mÜnh3‘\™2ÌQ¾îw½‘ë©)â—iir‰¦’ƒOÀƒõ=׌Ç â։6Êt%ô„S8Á{qDW\ƙ-з&+¤Y]î	™"b¸ç@!‹„IÑEß°pN‰ÀT®eaîÑy®7pö@—¬*îV%3DI
öÄ)œ%Èä‚?Eé|úP»ëÆÓ»wì÷ú:ÿ<¿ºÓÙõõÕµ#“¯0äÁš7L•o—
¦'訪ò…$Åjԓëì_
+:эP», wŽ!Êõìn‹,Ž%ítìBØ=@ßµãªp¤šéRØ·áÁ$ÙtŽ²¡­gfm¬¾(Ñß3&.íRõá€©®Ý}€ûG\9Kuß´ï@ÓÚºÁ9ÿí®‘áŽ­tNË\p6ùmÌ«‡“J ›"Êz†	øPŽãkt6|ã‚Ò;ïӌ'?N@(üsÌ?jU!OÃÇ~-«BÙȸ)n0¤¸Á%ZùF€¨€
&4ž×‘>lDŽ
+©dUâH8“ÝpùđìиÙýRDUñ€"roN»ñ­µŸ·XÃKR7Yò“#]7®‚ê˜î34*‰ãÛuÎ^X—êég0Ò_.¥Ì84m39[Ž¸´w‰ÏÂ9덒Àd̄fpÒKŸ_Ñ_Òì`4> Y<D0×/åiÏøOßG;Dc4!?¶|ѹJyæ`ÿRiV`öóˆe‚B|YcÞw¶ Ï–è…£]*a-øÖO°ª@cÃ#ÀþRǵv“áW”ö³>æŸÀñ¬
+›7B 1T#ƒŒA|ø3#÷¡gUÌâ8
Ý…âˆPÐ-f=½1àJá	èFôjݬ¿bVtái©ee›¤€‘øΨýgcuO]ºh<eõ
xÉVx¶oÁ¾,÷u²Ä£P¹c>×Þ.UZi£—ÖE›C^Ÿd;G1+n|ü>’š"oš,ÞwÏWy¬'ß[6¹ØҙÊÜ´ß;ßoáxî5p<–ÅÃi4
i<Á2ëޜ\~<a¾ó«îT§5'Kvú8Æ;»?Òñdà$þYŽ&£h2ž‚® b2bIg‹Î¿ÿ
Çöç>endstream
+endobj
+1262 0 obj<</Type/Page/Parent 1099 0 R/Contents 1263 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 725 0 R>>endobj
+1263 0 obj<</Filter/FlateDecode/Length 1871      >>stream
+x
¥XÛrÛ8}÷Wô›4[6e],ÉyÙÊÅÞumìd"e2»¥ˆ„$ŒI@C–õ÷{ºAR“šš©Iʲ%€ÝÓ§O7ôûŐ®ñH³§g×Ñ5>á—!¿|ù×Åh8ŽF4M¢kÊh2ãwx—Òâbx3æ4œO¢	¯ŽÇÍ;^…!Î&є&ó?‡Ÿ\ÓæâÝòbp?¡á–ö<Ïh™ˆãkZÆý¥£8תÐär҉)è§åoxæ䑾-bg7fí]–jk}:º’²ÒTzMÅNÓӒ:Ñ9}v©‰t‹.¿ÞÔ6	¶ØW¤_u×æagâϟ_]ӕ€²LúÆÆi™è„¦Øµ­Ë"˜˜6Ö­+xÃ7—?ûBÆَ“ˆ–;
xŒ'u)9‹ž–O0L€{`¯/M¡Ö)l ±Ûn\¦Œ
Œ–rяè¾Ì
Z~I*-v®ÜîÃoÆ&þoo:¡ÅÊÒZð:ƒGL¦Dn;ç„l\òA&Mù(t.
ŠÈ„‰,ǪNc®·Æù‘žõ1©ïŽ¯ž×­yYs:9مÎö)¨ä#ú·;hÐàR–7&…ƒMî2y{"‰„”—–vj¿7鑴8	’³ÖA9'ýŒ³§
X7,mê’b—eÎF*É:y‡Õïž<k‹ìèA’ö¿hk´-¨p´)øÄÅÁ±íV|ÿ`ŽŠ¤wâ‹ß¬Vâiµ2vÓ
«æ<„–ì`m¬B¡Ô¹g!2*-Ðô&EÎñI~0^Ghž*Z¥Þ!ZÅ!ã%1¹ŽQGætog’DÛ^ýàh
+]A™-á»f Ue–‹Dçza›çµÈá2ÏL¬é³ŠŸiL«>#Í\ÈW?Iè'›H¡vݽ¹Š´
ÂÒ7u’
¼ìáĪLÓൃ$ˆéHŽÛ«êíôôS1ñû©ÂŽ×<*QVˆ=ÐT‰N°‹¶AòW”!a¬”÷.6Ào«Š©x³ê‹™‡ ¿kM:@ƒÍÊÓA§iEÌŒ’—½óÞ°*©Ð›:ŊÉN;%Z9dõú´Ù s·3)Ž-ŠZ¡€öGr›öƒ
5[jQ~=
a½rœºX—©"B;ÿ§sGo“ÌXV•°þ(’zQ&mT´8Å£‰sçݦ—ƒûZÝ[÷zZA'׈ì?ÏÁ‰«©ý`E*åTÛܕû”2“âŒ|•J7 ö´vB&#úÈŁâƒñæ9½ÿ€‚nk=jE¹ZÎ¥~µÊµ6Åjeu
¥0vµªDë<bô…:Ðsס5…øâTi}ì° q%Ò…åøõÓU!1¯Ñ÷ÄÛ"ç¡
ð–{s¡ÜƒQÌ“AƙÅ^£wnªãïáË©N(çÁGôÕÞ¢´à=„¾Øq_…³1ÍgáÄwc•…LÅ;ƒE½Ð›|HFǑ0›SƒÕR“ñM'}ì¦Wu@v˜ë=‚òäËíV{ü
þg·Ü'R¤«>¤äôM¬¡:´T«r:ø«HC
+òsYlsµ^£*¥tÄ\Åó¸šb®fÑ|ˆ¿yèƒ,¯FÓY•ÍºdÆ£¯£ßr<ð
¨÷:FÊª­Î{’±tëCŽø4‹´Šd
m×°€’VË	*0ӚºÀyë—´kûeÐÎ|KE…)È÷dè Õ
Kª·M£h^ƒ™Œ)H8ŠÇXWiŸ\c‡IÈê×ó7¬PòAr°¿ÉÌ
ù£‡úúš2µ¢-q†`Œç›ªÑI+ÁðÜHÉ9š
Ì&sCôã1¦}ÉÛÍu•·zl®–›Á¶¬6`Ïꆖ‚~1ú …žƒû?ß. ·`[à{V
+“É©¯H‰¨úÂdƈ'¹=¿Õä[êӦؿðe¨cD, î©Yï>Þ-Ow¿~]Dw¿Þ[’K,µxÁYªs‰)…oLç”øþ°ˆ'Ú¦±ÿv˗R=qñÅ(>”Tðy¨r•ûk‡^|ùeùéÓÇ?8w+uApìŠÂ-n|ûÍ£á-~
oq—
‡£hÑ7žÿB«ÞétB±A+:í’!žá‰
1C‚ŸLÙ#yWæ1j}ÍÃåY¨©2|*Œà%ބ›OÊBʪç/éËýû^艋Ëܔç›
Žë
+Ä4$ѧ)«l­N:ÀåÙ¼à.%=cë\‚i	7ô¬J¬[mu®pC~|‡²F«b­ÇýRII·¼®sܹp%õȶ‹^@”›ǕµµÎl2ƃÀ*w(”‰^—¡$ᘺ-"Þç($°R±AË*p€šfUzšÒ
ùç¯	D[šž€/ä¶>£_܎i:¹
ãüâíã»·ô9w¿aô§mì…äÃ)¾-˜éj6½ú3t™à{†ÙtnvÃvî–?_üZ(}endstream
+endobj
+1264 0 obj<</Type/Page/Parent 1099 0 R/Contents 1265 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F6 9 0 R/F8 11 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 730 0 R>>endobj
+1265 0 obj<</Filter/FlateDecode/Length 1973      >>stream
+x
ÝX]oÛF}÷¯¸/…œB¢>-Ù}Y8qÜ56Nº•Ú €^F䐚˜œa9C+Æîþ÷=w†”(º‹EÛ§],~ÜÏsν£_/¦4Á¿)­f4_R\\L¢	®ðǔ?~üþb¶ZEZ,®ñYÐüz~ü–Óúb~5‹®h1¿Šf¸»X.¢eóï¾Ý\Œï4Ò&eËëmoB›øò“–dRr{I;i%JdÚX§brÆä–RSQ"wu–)QY™].KÊÒZ;AÊY™§ýbjŠ…¦ÚJom”)2úÍæËńFÓ9âÛ$—logܞl±KHè„4ÿáÙRÆ*}¡Ã^8xŸ”Ëg™{ïù±ªÖ­eðRÀc)2iÉhoqÈîFÞ:»¿(6:õ¦’¤4‚)ɯŸ²Ûˆ6(K'Ÿ`%t&)­LAÓ^nÛK®c"SQçnû†£Nh{9E{uÖL•Ø훨12[¢­(ЭFudE{™—iS!ÝÞ ˜i'@T¶cS”*—d}#jË
«lo|Õôü’²8¦Q®¶H¸¤4'S•ç(Fœ×‰¹S½|·PJ°(-*…ºsiEž›½
ˆJ8'Щ,Ùñ7.:¦96ßñqè7€K‹?ô
‚ª ûW†Ðhÿ~ó¢¯'®}ÜêødoãRU
řtÞsç[,ē‡M¯m@…–1à ¢*DÅÁÆ®ÊG"w£DæÒIŸgføNb¨AH-1…@Evæ+3ÂÖiªb%µCӁÙ\
+놌­¦-Ê†@*¤/ܘö!‹
<™Ô²ìœ¬x¯ëbSÕÖÉäÎûµÑJŠÔÉjØO¹—&GêðŸ{nJ
µ‰}~Œ;	 ú"áÓcǹŸ×¾m(’´¶.î„ëùc<ìųÔG
„@óü…ìÞT¸Ä´W	ðËE05fm†"”È$â+»ÍÊ O¾!Z»ší±Û.ãÝKÉÁ"¨ jC_g–(†fƒRF/ªà”®eŸˆkƒÞ@Θ„b '
cÀž!™*ôtö‡
µ<v¸WŠJôOb¹áûãû¸¡åh
+uŸÏ!ý üvv5¡p¿%hsû(›¨Vœ{d>Ðxü-ÝNKZ Hhƒ•Õ³¬þõûœŒf‹èf¹:‰ó­¦õã[’Z@å‚EëÅ".“º(åâY¨œð"È{#«Êè’öΕߍLJÃ!ò©²ñùÓþ=~:¢÷{"çÖzýóOž"Ë4°ñ€dµJShKêOZ}õØý¬ô|F{Œ.;ô:
Ü2Ss#¤Âz}îÜO×~¨ÐZP@䘽ÇO±6‘µ}¾G®q`
>ý,‚zTqe¬I!8Äb¡VCúpC±èÑhåð.Hô$"BC£Á³
+ÿ¦tœìÞñx•«£ÕwwäÏÞO>1-À+dRÿî®e;º½Æ×Au½’wº‚ƒYˆšÝ«’gÀo{íoÖ„«Úd4ú…³ŸW5„Ê"gùÖneÞQr5|‘ X²JEÌڗBÙ¸6µ£‰Ùé'ô1Р 	¯f)ëåg4´È‡k¾<¸Ô:GWYϱUQ#ú¹‰EΓ‡eŸdW
d1´þØzÿHϟ­w°Ñ[êAx‘E9[à‡ÝBŠ°*ÙoÊœcKáRŒ{ëuj|¿l•¤3TþŠ1œz8¶zðñmF@ÿù46	0GÀÜ|åÄþÂџVG8i
ÿ`ÄÅj<Úäž5£bÿkÂA/Ðøº„\°L9Y6{Ujxk`+\ærƒO\êUI Côóq4_Ü›m$…}Å'^ã¯ù!ü꙾›ó¢àµ€¯våÀܪst—* AÂ¶vÄ`z¬#j<f^"t¿÷¼ùáª%ºê×áÿ$-–
v¥Wîvñü‘þ8{ÄÏK?OÞ
êVúh¡?0Äo±‹8ôH1È0âöHί;¿70½v³~„,OI‹?ßaÞV&§„–9¾·凪g…µo“„íýñ¹Æ¦‡-ð¿§å׀\ÅOLÁ§¿
ŽýÑiýÎÛbCÍòwLò,ù?ép(îo‹=ƒ¡í+ÿ°÷ûNБßé÷õšÀN1§J,­ÁÃP¯O¼ß1OäW…Uº‰ó¬?„^~³þe½yÿøã§O›o¶Ûõ4¡˜Ï¶[&àöÛèÛðF»a=Ø_ë®yÓ ÌƟC‚7
99¶ˆžO,b¨•Ýn{–BÒlÆ\KœpÕÝ}ø0£ßg©
+÷™Òl¨£¼ÍjÂ;RØN{
Ä¢t5ÔðU¾gê
+5nN@mÿ<傆CùQp;ôû­çu8[xm鰛­´TàèºÅ|l–‘†æþtËÏwìwÐäcþß z“ÐÿÁ»=ùÓ,ÍgÑjµ¢ùdŽßüY‚Þ놱Óùut}3Ç/O7á'ŠõíãÛ[•Í–Ø;צƒ?{`M—«hr=§ÑjæÏ7Søˆè3o§ß6üÂóÀGu¿j,V‹hµ¼¢Õ’í¼ß\üýâߝóendstream
+endobj
+1266 0 obj<</Type/Page/Parent 1099 0 R/Contents 1267 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F5 8 0 R/F6 9 0 R/F8 11 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 747 0 R>>endobj
+1267 0 obj<</Filter/FlateDecode/Length 2259      >>stream
+x
­XMsÛF½ëWt)Ñ)	ü?”Ë–,ŎªV¶×dÖåZîa‰‰€ˆâö·ïë€)ËI6.UIf¦§ûu÷ënüvÒ§~ú4ÐpLIqҋzxÿúüëãۓþ¸h4žD*h0Gýæ)§ÙÉdõhÔ¿ˆ.xqrÁ‹òċýÞ$šÐÅtŠ=¼Ú‹†Í¯ú=ì¾À™)V‡½1ï•'9;¾Äµ¸|Ì«¸¶}’³½?_LåÞáå„%ɓ¬NÇPvx9
+gÇ=Üždu0Æ©áh,Z
G²*O¼úz~Ò}sAý>͗ŒÉx:¡y*ôhžtÞ¹
%n½¥*Ó´4¹ö´,]!ïæ4Óåƒ.ÉXú~öy6ÿéîãû÷óï‹ÙÖWº««ÂÙÅâ‡èªÜ«ù¯'=:ï¡ð<íü‘CÎÊeŸ\yï+U<+›’×­uYïñʓò´u5¥ZG—¨õºtëÒ¨
+¸’·•äM¥#úŒ“çdµNI¥…±ÆW%nyÐTšUVyj±{„	TÖûÙª¨¹I†9s$ $¾“
|XÑ'cS·ñtù("Ú-Œ(äl`A˜© ›Zi[í~ròúæȬEg±ãʹÜïÐ~Ñ<Ó¥&`¨ÔؼG¹K€C
+««Lp
–PZÂä²ñpcòõ
™%Ãut³€e,°,‚?°?Cœ›ÔA¨ñ]!f±­Æ®Zt$Dˆ`yþ$6`ܕçnÃ'ĐÎa•2¯—uN¿|ü;ìC08`YRnì½ÿ‘•E Ÿ·NùÙÁv·¤™*b%~s¿\Q‡²ªZÿØízÞ¹ru¸OX‚÷EôIS¦!Š
+S–p›ÕJ⊾ã3Ý7I“Pç}ÐÊpÎAt,£…õ6ášå]>Àæ°aÜèЍ~й[ˆ‹Ã³€Ôü¾
Ñ`aPÉC5„/ñ:§Œ=ò ÎuÑ풼;##"Ÿ`ޞQœsª’IƒºԈ¨Ö…i*qÚssÛôþŠÅ­wfX"vf‰«*ºÓeÉéèMQçˆSŽÞ×7×kàm8?‚ÆϜ÷ĆƋ›Í&ò÷f½ÞFñ.b£~ìú">Çm•‹²ªÈÏ}
Øû7à|ìÃ?aÔU^e®^e„j
–ÏÀM*/‚7S)`ó”ª-3–¢7×gtãRz­¬ªÂG÷Z¯ý 
»DÙ=s®Á8ÿ»XŽóLÑЄóu¤Ó:Ruˆñ징ãŒcªDÆfà|Úêoàê;㓐£Ì×·of`ˉ*#Õø‹IÙMÌÒww·®{‰4ñÀî7®P $±ûk¯x¦6ç\%q?J\Ñýo~Ÿä][¥øÿðì_WïÍüƒ0—(çòd7»{M~­“@xû0Þ+º6Ãï¨0Ié¼[BY(×$tÙMËU—Ýðª{>D“É„ú£P̓ñ¤!¸–¿&Ñ´ p[
+ü™ŽqK+Tofñ}©c<9ì˜ãýßÀ}_‚ìnù"”5&"E¶.b ±ãöR3g¤t *¢·¨I¡ñxF»<ù=Î?£$7É=3­0)¾ö’}OkVS¸$¡"ÙÝ¡`ÎhGê³z½v¥ß[ّRöõsRþhç!bãÖä
²ù·*K³$m$b¨ówo‘÷¿”Ð*kq^ÙÉ‚§C·ÌvÔ
J-wÃ7RVž·©³§èç˜"÷ZªØÕUÐïœõƒ²@‡Ýk	]šVE£¼Ä̱Ũq¸'ÈD¡Öރ2Y†³Ò°(9Hë\+w±P¥Ü±o<VµIy£Ý>ë-®òÚz˜Wh	ŗŠæƒËk[iÔÐ3îG[‹ˆ¿	—-Úô`Â{¢_ÕªT|–UG
Oë„c­ÊÊ$(’èÙ´ªjNˆêð}e
+´¸W½;þkLà‹OcÄ
­
þ”o{Á¬Ë88
+Wê*|›Ž_©ðÃːó
Fm#²á¾fr×Ω+™'žbÕjϳ²Ï¡ÃGwˆW^
+©è¿-^áT[°bèè=Šož2X±Šó­xY¼Š°×ÃC

+H>£17Ú¥4Àg%DŽ4@ǹu8Š ü×*Çù¿!œÁ_.!–+:ùß¼[Ìij¤…k¿ÁÝ[pWH¤VHä£èúŸ³]ãÇažòè³aBâŒÈaرQI¦“{È0h&ëoPëç%b^,Ô=º¸Ú´'r³Ì‹qiôò#	OYKüµ+𬳜-Ìãí/å"…óðöÈí±FÜh“
+é\i¸Çúu}G-Üô‘¶‰K!½aO‹Nƒd‚¶×ã81q9”>ººt=æ?˜¬ 4Ë[¼ú^žäÁrGNèÛȚeµ¥ÓÛӂOærƒ¾ÑŸÂZÄ¿ß{”3G‰ÎޞÙú©ÏñmVX;aeýô°^ò©çÔŸè~àÜqxa_ÌK<â2—£›L2žå8*……d¤cfcêÇ_Ž²“ôÏ0ºkÎ4˜LjđMí±”¨ä\:° 'Ô)dÖ$*èN×Ú!BH
0Â
WÖ%_Ç>)MÌ\{ts!v"BØC¢5«Ê}·íÛ*kÎâ@j¨SmÉÙ æe‘&Ætü~YiË7<¥^A•…ËÀ’öU‹¯b§ËðŒÝÁAÏXW<˜j•ã-Ïô0H1ëòL$فlÙ¨2$º•vÙùBøôõÁu,mÝg°JMò:}6ÄJµR2p=íwr‡1C¾)mJC :×°TÇ5Až;å3‡æÙ¡ƒ¿ƒ^DBÅþRDx-Xiäyeà3¾#Fèi+d­Øïì%$D¥ÁxKyÄìÉn
+^ó/`ò,Ú.xˆxƓ.xÚ4|ýá4š^ipÉ×:³«»×Wô¡t¿2ÕÜ4S¼|‘˜èããco:¤óÉ@æ—>úl$טð¡C:gf+i¤¥Yæ/‰“ñ4|i˜LXÎOó“œüäø:Üendstream
+endobj
+1268 0 obj<</Type/Page/Parent 1099 0 R/Contents 1269 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 752 0 R>>endobj
+1269 0 obj<</Filter/FlateDecode/Length 2169      >>stream
+x
•XÑrÛ¸}÷W܇ÎTéÈ´$ے¼í´cgÔ3µãµÔfô‘ ˆ˜$”¢¿ï¹(ÓÜô¡ÙlÆ	àÞsÏ9÷BßϦ4ÁSZÌèrNiu6I&ø„ÿ™ò?/ŸÏæ“dI×ËIrEM¯¯O¿•´:›]^%—t=_$3<]ϓIüŸbºž.°âj¹ÀÏ3üo$ågw볋OW4Ò:ç³çË­3î„Öéh3zÖÖªmyÜ| ‡œŽº¥Bì%	JuՔÒIª¥«tMΈTÒfD¹Ñ¹B’nd­êéÜÿÚ¨F’ÓþgiŒ6´ùðaýíì|BçÓKĽÎF¼*j²²Îü‹I>Þ>S®Jié Ë2á5ŸÒôùø\^R·Ãfv=¡ðJ—W|ã|6t8乔Â"”BÕ¯8Íȼ-Ë#me®
ŠpN¤x´CŽ™NÛJ֎ÃFT²ªL裮­Ê¤¡FXÇ/r²F–r/jÇG÷j„q–TóÞêìØáQIkÅN&´Ær+ª­ ޟ7,•Åª°Â¹T´; ÜV[	,©
üÁ
ÑCGe‰’È̗¨ñ§
UC¶Ú&©®sÃ
+3¥L™:mŽÿø9²l=dçø³«äf¾ ó˛dÎÐþS=ÐN:Ä
+ÿ.«xHW@Õí¿ÖZ>ÚZTŒi¥÷ÈÄ3Jü£qĈ%5%“Ytˆe‚>–š”óÔéÓí3#ì+ö^mfG#*œk~¹¸ðµH|}mvïßöå·Ç”–*}%!Ä/Á+ë¨Ržé"й>½ ¾Ž8ŽhÕ66ž=o‚t^ÿk]h+O °P8 öòpV‡ø(¡/ ®4…h,„&ßgäÝ&ä/ÍàY—m¯hQK™®ÿì¨Ñœq µí¤ÎøA»¯^(*ëÊ:uRàë·ïø'9œ
ñG¹ˆ-êïã{³‘e@ÖÂiÚºä\!p´Ñ)ÿ’CAXŽ[
>Ä1I’à3=πNéfì`3ƒF74…ÿåàä2™ÞàLpsɼžÎ’eB¿jàZ³þÑ%Á.諪3}°tóãâñþ=гY2›L±×
Ê»=×e©†…êøQ:lk©jÓ¢3mÔNÕ¢¤_¿<Þ><%î‡.عWºµ0,U§e›!ۃryx†÷XñØÛ²3ŒÂ–ÊÒ˜1Yž×JÏ£ôkȤ“9èÙȔ—ÞgŠcÓ¿-§àÏ|Ÿ5”°=ҋJa2~Ô×Û
+62ÈðŠๅux€™õ‚Ú¼îŒn‚”Hþ©CÒ'©³}９ISYÆ
ˆ×ÐÖ "xœ5S9H%kø÷dW¥5jÛ:±å>ÓâŒÚ©Tøòds¿Àja­¬09wŽx칀‚¶ˆ´Ô¨‰ÔóÑx,¡ÛÒêññA$a	*_Àý¹
B;ƒ¦‚ó°Qk¥A/ñ¦z$Ûú×CïêŌvL'ì×ቈPj¬ÞK38}3zZÇ'Þl4rG¯8Z'
ê‰&o/Ù`TRÙ1÷äLK㈛ªŒ õÓgªõaó¡ããÉ㡀ÕãÛ û3V˜В¸ÓÅúؖÛí°Î…*øºIď†BôÙÄfÖ-´…nKpÈ4ÃN|"N+–Ÿª¡ch?'ô4 åmíU*Jå|/
!r|à@ÇPT³Àšr1¿‰ÇȦD]PJ°ãîåË×ÕÃÓgÖuBŽbä(x­Qîq jÇdÏ\íÐÚƒq×jf±´¡(C´¬mQœ®)àu/åyXÙi¦Ò™,½Ð †´µlˆ“«ÜU‹À•gî²õۂÝÆ1ÀÔ¨Æ1aó˜
›§:86\ôqu2Rþµ‡+¿ß{zó{´Ùžz—00èý0r¦9Æ7ïï҈
wӟ
+±3Ûz´dùv”:([ ÊÔ
+Êh‘¥Ìv#¿`ˆ•£]1<3ƒùäÊà5]óà;ÊÈÕÄl¦$é›Þtö <g*<ˆi
ƒÆBa»f ËÂ`keäš¿È*…0ˆcšÃ,e'²)€B2óŒCaѯy¶ç©æG^]ÖµÊ0í#ãÔH×Ãސõ%ì;#Xè3€ïRyÜP	F^dŒI•mæí%°8•=D–!&§|êXRYYî
ìçj•ªº
] +㮆™g$‘<€Áê3êÐ,}oRíšš-ßb•´Ô8–»í^ãôèüцŠm¡¢_äýÀú1‡Ý¼¯~65Ñþ,#®rßÓ0Ž¥ì•ð|%
¨ý5,íˆnZðsPÛ­p ¿¿'˜Ðà°c”}'HVF–º‰ù5œŒ™"¶HÔ'“öÕi4]¼¾žèêv˜è]¸,•þq<‡ïj×ë஀½õʵwìd¨³+ V¯ÔšC´_•“øq*Â4È“+6Xû…ŸãÎüv€šb9)•ÇÅßÃsOÀÝ0¯¨¶Ý¦¦ª¡Á-á_¾F±‚!A\¸²ú{" å5w_Väo1a‚ûÛ4ý;·ÉþãR¥	FN
¶GÞ
5àîp
+’¸µI°ç;͑ý#|1»hÅ¡q
ˆ8x<;%·@¢6ø³ºùÏý‹/9®×Ô9å4ñc2>9Ý÷ÖoXãT?ËÖг÷Kß²Ç\*8q2„yÁû-2µ~ó;
ºýd‹aÞÏÿŒ†/Þ‚w;¤}NAwßÌBП–ñ®5½Â·ËKš/–É|~ÍÓýêöñþ†Ø1å‡K¿'0ù|Š¯UxÉùb†oEþŸÛÀÕâ*Y̗øjËKÞí~}öÛÙ
ºÉGendstream
+endobj
+1270 0 obj<</Type/Page/Parent 1099 0 R/Contents 1271 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>>>endobj
+1271 0 obj<</Filter/FlateDecode/Length 1905      >>stream
+x
XkoÛÊýî_1uQÔ
lÚzXEaÇö­k;”¦ôeE.͍I®.—Œ¢ß3³\J¦Ý¦m‚8ó<ç̬;Ðþh:¤Ñ„ââè"º ËÑ?dz)~ñ¯Ò”ʍù4õ¯_/ÎïÆ4Ð2e“Ù”–	ÁÎÅ-ã“e¦)΍.kª3]Rbµ#EºþúâjõÅéêWûlKxù­Ñ®>¥mfâ_ëÊèïx¯Q©
+M6•Ï
^ù££œßú°üvtAgƒQ4„×WfSG|õ…Ë£ˆø®œ
'јŸì‡Û²Ôq
oVœ >–ËòWeBN«*ÎPj+<c®š”LMø’Ú_ùR¬JZkd ’Ó^€x.$æŸÕ?tÜÔ:¡õNüúREt•ÖÚ{9=¸N‰q]¤ie‹wb}“ýøçÙ;]&mW¸!¿èú¾LmhI¨	î|×âá;¾;â¿mHfÑ#)WÛ÷¹ãɄ_÷¥”Bn*›š\»ˆ¦Œµ¬´ÛØÒáK׌÷Â(•¶&”¤V¦¤¢‰³žÓ¢{Œ w‚®%Ž¯¦œÿ£Eª£‡/‹%’t&ÑÃÁIŽ‰©[íºRT]îK=šG“ÿhoâzk]ømÈÀ‡cØÕMU:²MÝÇÙÎ6C·Ñ±I=´ÞñÄ=—Ž	¿»UgÝ
áú‡*6¹>¥þøÖ¯Vi¥“Õ*ê¸O¹ÞgäRu…eê/Ä;âН¼©ßäçõ{—
oR;•*¢M?¥u?þÜÚOñOw÷¿DŸž~õÜØÜĆù¼FtÏj>ꟶ:À´÷ÊðN¢A‘¦>Ñó»9
 G)„é’ÎÆc™Á0šEƒˆ>Ú25ÏM¥j¼/]]51vb
ÝÚê…D¥g±—a´cÈ*,*W03“¦ºÒL°5^ÔbEŸn>J ŠþÄnÍxYA™êL¬ƒi©š}Aè;)ý¤œC(	Á|µÛH¬x”‰Éš²$°ëF`p~·CälÍx.!þÕp2éÞç&7;Áß~þpÛ±7±â}cÓÎQ¡â̔ªq5©8†R×îòz6DCæûœ1>*9z(Z¨bí«¹5yN*w^à‰éµðUi[ï—mÎÃa4¼àñ„ôF~”a.T¦ÞQa¡ALÍB9ž	ë
+ÒU¯åBÁIt1¹lûÎC‹ÿQª·ècÁŒ“éV¨Ñ4tŒ'Ö@^6äX¾~È.Oƒˆ$GʐŚñÂâJ‰^«“à`ôxoœkdLo3
¨2Â0ðÒ¾°·)ݖMŠtc¥À{]Ù<ǛÀ¬;¬TŽ-öÙ
+<–-@°ÆÈròeqûù5N$²e¾{mµÝ5¤m¨0*A\g¥‰U+Î1Ó½ÝÎÕâ¯WŸo{¾¤a|í 8!•ÀúÎÀÍÓÃÕýcßw»ïéöóßߤ屌s|5G’ßèô]UÆkäcñp-CrlUyW
"F»]ÅuÃ6Xó`зÕqxÀ> #s-é Q¢˜¯ºîiQp(؆äQßfä^‰ZX‹R •[ñ\YfK²Í2X>{VÝ|Œèkfl
+…n!:xcê›5n¿BœêùlUtîՉ’­éŸzš‰?4#ñËʉR€W_^ÆQ\ÃeÐךÒWX¢WÂD`dõ]?[‹Ý1ъ#t6¢bb»Ì6y‚&ºX39¡¶R8µÔ±ÒÏð)w4yìü~°æYp}ÿ´-™¡nD§2È
1a)ëfP&¿rŠ6ä6fzó£Ráv,„'Z]õy?7ÆeÝ4Á+½â¶ÃEl=\ûB åéŠ%ÙÑÖøeo/üšÛñÑßÀLë$ õÑni­bQ~¥S `I:¸·„b#}¨¢¨ªH
+W¹¤ãŽE–ˀoµ½—Yf
iT4øð\»h5ës­$@Î:½ý®r“p™yka#|ðà
ߞ€œ¬%ÝóË,¤”'‹CÛûF¸
+e»¬NøÛñ&hÒñê½”<îe9Vkì>©^éùõ}à¬#šÏÿÎaµ)0þ¤¥>ŠPø‚ÜZ=ˆ;uXOh™Dž]=§Ò Ð¿€wšpŒ=µÂ‘©ÆiÔşO‹
åËÕêDN˜=*çÅm'óîN©2ÏYý—Õ~© ¸«@‡‡C̭폠XíÔj‰´08Åá/Ñ©)à€G®ß'¸ãîözÁÊ	â…kç´ßExíoEDå[µ;À¨£c
+Õj2HÕi®­]Mö›i»›Œ°•úÝDöÓáÞOº¹†€¶ªàš|a¼jÏ{œÑùݤÚóËh6DMgÑØ»x|ZÞþÎ?~¹pÒêήÙll%d<P`P]ÇiŽç(>=.۔f­·é NF4ÁÿӉl[‹«‡ë+Ží¸H76nx_’Ù)ýLðːوΦCYLÿ¿
}<ÃáÌï¶Ó9[¾]ýíè_Š{ endstream
+endobj
+1272 0 obj<</Type/Page/Parent 1099 0 R/Contents 1273 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1273 0 obj<</Filter/FlateDecode/Length 1483      >>stream
+x
¥WkoÛFüî_±
`Ä$F¢=ôCœ6­ÔMmÁ‘<Š“<…wãßÙ;R”)·)Ú
$ò»³3³«ÏgSšàoJːfŠ‹³I0¡§ËI° ùj‰Ï!þW’R÷b¶^Oz1]†¿˜ONŸ_mΞ¼œÓtJ›—/VKÚ$„‹'ÚÄW2Õ¸1Q&®QåŽ2ݐÕë2U»ï*-
+~±¯tªriF¤,)Cµ‘ióZ#¥Ûö»*א(§›
Ź’¥5—›OgOgAˆ»/T±Ïed3i­÷˜ ].‚9¯ó§µgà+èFÚwFV?I{]¦`}®¥ÁIšâꋬøÛNºã9Èê±9ÄN¹Ž…UºègÝH,ñÆA„f¯K„–hi¨Ô–2ñ…Ð
.„aä^TÂÊӃ)U2OF¤ËüÎÅÔFéñe¢’
m2ÀWHQ¬vp»Ï»C›°i[©Øʄs‹$—C•'Ç'ª’±ÕÕÝPöå8‚òíó_^é.éÍë–#j2gL+B,Dyç³âҗq^'|ÿ.eFf	—¤œtzo—Þ	dêý^WÖ
Ý­bº%*MeÅ´á¨æ~òr}àù8\yMÃ`„Á4à-‰n
‰-¹8èc‰Œ;nÀì6ìí
d\.ïw¹ŽDþ
ˆÆL*ÎÑQÀÚÁ3ÏÀTç¹n±íG.¿
+Àöò™¿xBk/Íq8÷!ç®${a3úž¶ø×ÁàØÝe2¾ñòíöüÝv[@Ðí~ø@z¬®
j“ÈTÔ¹Ô2'õÞ¥O|íù?°=lD¥($XÍïŒ("áå¶Ý2ÅùÝ!®ªtënÎù€Q}QñPg¸'® ~ÐZÔV(G,rÜyé¼gц×íè:¥;];IÔά@BÄ­€ð_&]ØÈ-ÿXÔÆ~p³·Ò­uš$³—±“®¶GEˆ*ÐFŠ(—Žfa„“)Ãe°š9G{ŸßÆ9…QïÖS;dÃ`WÕðΏcÂ	ԅ2vö‹BSNrX•-§¼µ
¢? Ãà#i)KÈmÍzüï/bèæ×
']y׏$û£KÙÅÇöN̙àƒgM§§ñ!çu—s««°×¬ÿ¿è
+ÛZ|µ\œËç‘/óà"«@2+«€Þºªg‚ݹAòÈ<U_‘ŠáF ,=*åÐWqæïituk42ÏG®i)‹f õNˆÆ5x•ÿMmE:³¸º–¬ræ_u´ÏîÔÍ÷µµ¼Ï;ZÇ܎†,-ô/×=Nì½ë¨Wµ¥F(ûˎù€ÄˆÆ­ã?sçäsêLÿàgÐ[՛3ä¾åBõ¾uþÊHÐeåYÕO#°Zö"@Vr¤­w¢hTžSR[…9®¤]Uu„a ý:: Ã캱­Èd ¢CXpf›ÕÜénÛ
+”©$‘åörØJo0
´½]€/bz®1ÀŽ]ÉE-r0‘9†%2xË¡‰nØáÈ]ÁQ¾°	
¶OÅØ:M!ëÔwQ†Ú†:ÈŽÍ.HÜË3Æa2âÙÌ÷X7mX.ÊOu¹ÖE®`@qpwo‘®9¸Ú:Ç=È7ñÌƽ1ñ߹Ɵ0~frג;N¹"fét2~r7
åÈÜ:Æã8f—0H™½ðÈwà«/ûþ?uÀñ$X1ÿzM/œ.?–‡Õ(O±m¶v
hîеï7<©Æ™Œoa„
—µc&µÔtó,l
³ÚPy¸;,QD c[ÉU;RM§‹ œÏi±XášD\`z¼zN¯+ý	­Š~ÐqÍSýa¦O±t²šÑxâ·FrѶŒû]‚®K̶µ›ŸÌ3zÛªÞӛöwÇ;X ßâ~|0óå<X.Vø5ƒCW~ôãæì·³¿LRendstream
+endobj
+1274 0 obj<</Type/Page/Parent 1099 0 R/Contents 1275 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1275 0 obj<</Filter/FlateDecode/Length 1925      >>stream
+x
XïoÛFýî¿b /r‰±GvÇIÑ ±ã»(×+ª X‘+ic’Ëî.#èof¹”ʤÅáùArgæ͛7oýûɌÎðkF—çôlNyuòjqòôÇ4›Ñb'ó«KZt–Ñ"?gWÙyv‘Ñ/¦.ìÎӋÿн³kSjú CÛ<Y|Á	ý	Óóyv3NÙêšµ^;Zç•vãÉÔdë£Ó&¶/à<~5{}½ ã)wZ]LHyR/زÐÎÓèCP.Э®ÛфcŸÑtö,;爣×Ú?ی&4BŽ§*?"U4ºÓakm1Êh±Õ^SaœÎƒuFãx¼€Œ£ÜÖA×ÁÓΔ%­4UÚmt†­¤YÚ\•ƒ¨_‘–±µ'óð2
+Ì_.—»ˆ×rÙD´ürÉõÕªÒ€oW^ÿÞ"Ãbjԃ©7§²€òãµ³i•o3úÕ¶ƒà’h­6XÆO¾þmSڕ*?‘m‚d6jŠv_5å
+ïü@{í$¿µÀò{#jò¶×µ7ÁàãÁk;’v:t†ãWÊÔ
¿¥1A•Tê¸iø/	•·ÀÿPõžìZríÐIýͺ‰DèցBîb mhS‡Q{®b­®sí3z»¦½mÑ7¾YÒõÚº\ƒ^Ž|ôò8KS„ƒ
+{FJè±Ën¯ïÀK°¦Ð(ßU´s&àüÑ=G[p˜?’‚0jýX¼¯%ë~œž¶|kj=¡
¾³tƒ-é^Õº¤?ð§÷;ëŠHT¯KWŽøˆÂÓ,"¨Ze˜H~:(‚Arà(_ %_q* pVUL·#(2œÆù¿ÿyB«6PaésmÃg†Úî$fn«¦EO9Q§WÖ)p
+ýHS8ˈÀÿüÿ5c\Qòª¿)utkrg½]ê{úƒ#M$XÑ ñ;»á‘CÊwzm™¦c‚zjøò¶*‚zïL¥Üžð
>ALJ¸~›N= e'ƒ‘ÿŸ L¬?NϟÓô9˜ÅícÍSv ÍäÐzÖGhs]ZU Å"Üô?ÕÒÅVa”¿y”wT8ÝY°¦ìq‹hG"'y“€”±¶åÎ4¡Ñaj˜L—NüÀªäÒÔ'
+uãû—™Ò8á mún:I‡ ˆ„§™£é hE+HmXa"! 7¹F5ِluFù¬ŠTEê"Ô:bPcxÖX–}K&”qee‰ÂýÆò3¡¦€	šÌÜý	õA«‚súÒúá¼>ûªïͺË]÷ªZ±2îÍx$‰.O1e¢ÍxÑ¥GH_†G?¢2¬´r8pôä¨FN¾ç€jqdLÎKý_ŒG—
KÏ¥!eâk™Òøþ tG<©
+»µi°Ø°jÂòÉDD,cpZ¼.:P‡M{nN’þîc¥ác|+Ò¾nËrO_UiŠèNÑÄŽ”Dz
oJ‘$>^àåþXë·5°ÙÀ­4¾Ôc)pËË×ÒNóiŒSAåûG·hŒ=?þË
+òΣÊBÝá‡Úùw†§ˆŽj"`‡·eÁ¾H­`× §ú‘—H¬7O`%`—מ|£s³6¨´cä(6¯Qa;°T`[͚—m§ÓÇ^ïï,áý÷}`ò$#-îç.4
–)ÙϤ*9v6*1
#x» ëcôm#¡Û`~(G©c»¦åi×ON (R1Ä_Uزª˜ÚAVâ5jz9]>/ivP™.P¬¤u8¼óϘp±bSöb,ãž1õAÓ¤ZñÀRAòj}§Æ´gLÿ0Ò Ítï¸÷X…\SÚ÷<uòÈ×z§!É©åC!“ÌoØ·Q¥¥Õ³“z*6ÍáÜ5óX(»}=%á6R;gámûm»{ñ|_g옑âœ4ÿ­…œAYxÓÀ W
¤
+Ãt:î(~›‰ãtea.;ô3z¥<tBÔï®l›e¼ËÐiVC°5ˆhڍó	ó±6ñÖhW/5œô.~krf³E²B]FƒÈ‡IOT˜¤Ž!ý»&á`LÕÝÙ¥Êðtñ@[nD®j@Æ>Md="ש^Ay5¨‚%¶Òð±)p2rO¿.ApXMµ~쯫Òû}¿É	ã؀Ìð^h)v÷†õlá–|⍗­ßH_
ŽÖ÷ѧ­<®e°À{¿0
+ÀˆM×÷¬è:Øã¾^œ™ïTŸk£þ8íbB¦…K|;ŽJUZû€Ü_v}Lö姟ßüúùÝû›ëwŸo¯o~z{÷f¹ìVÆryÓ:\›Â¿ãÝw¹¼—Üwp|ç“ÎéÌìÓ¯ºŸÌ.㳫g4ŸÏ³9'ýáúöÕ5ÛÙ/|µymó¶Âيï®ñ°ù¥|0½<EÆJðMim6­“7é-L‘ks¹ñ¾äŸM!NCÿên:ِt‰ŠÙ½¸¼È.çW¹«Çz³8ùçÉ
º³íendstream
+endobj
+1276 0 obj<</Type/Page/Parent 1099 0 R/Contents 1277 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1277 0 obj<</Filter/FlateDecode/Length 2012      >>stream
+x
X]oÛF|÷¯8(ê-ɶ>Ü'§nZáÖ*Œ"
+‚y/"yÌÝQŠþ}g÷H‰¢óÐN…¼Ý™Ý󷋑â÷HLÇâz"âüb
Åõ|Ž?ofSü9ƗUb}ñ~qqõáFŒFb±¦g'³©X$χb_L%ö:ËÄZ‰…P…·‡¾X+”ŒSQ9eû¬ų5k©géÓH<¯„O•ˆMáñŠ£'|ªØªƒX^fz«²ƒðF¬Ô»Å׋ÁPF×ѱ/ã»århfï–Ë2œŠï(P!sµ|ק“‘¨LÕQèÐV|Ύ¢[õ­ÒV%œeDg<‰n(Χ߾kÏIZµÑe	•hoìg~òê䆥•ÛëýßOO¿ÓI'Ø.ÅerÒÅæµã?‘JŒó"C8d¥~®ùò’QP]ˆZYü„¤ÛÒٹЄ;àIåN¿ƒÐyi¬—…¥™rÂ!#äb8mQ‚ÛzS
+¬‹²†œ„'œ—Ö‹\UÔ&áœêv¹çærKI±’ñ¶*)CʋIRR°ÈJ%*Y¾ë²¸ Q±B¹Bb]­×À™´*7»†ŽÌÄ2ƒö¬’ÉÀ_ª“Br°‘säå» •‡ûE͎¶djEžØì‰zSü¨WÙë‹^¡|jLBߞÀë¡ìDôpÞÆÊÜõ Ú,QÖq…tätâ:”>ÌÇA»NI‹æ£.¤ˆÔ?;=¿þ)JéÜÞØd£=©vB´‘ZK9g ‘º´?Ƈ
$—7§à
+2³
¸¬+ ύ*æ·"Î4:ýüíÛ·oÇ©ŠY›oP¢A¶„…€'§”è!”IŸôH™±Õ+ˆU®ÌŽ€lùáw¦ËÿÏÇû§€F·¾ø ã8VÓÔ>	
Æ·bp=&Ñ#öUæ _©3×Ü1d†;™¯$¨IÔªÚ@øR;<¬ÏïôwÍB
!$”sEg«
R¢A,ÊʘÑ!tÔè*Ȁt—I•s×Bl¹)"õ]…3c¶¬ê2e-¯È‚ÒZŽˆBÈïƒUırœ&Lÿi!€ìŽœr+¢uyþµF椳š>wª™0pÿàtÇsז£}”[¸ÓYÁ*1ßéì0JèûRn£â(êNàD¨æ ”NÚ§’]¾\¢áV¨R¿ðëì;™Aʁ¼?'|õa~	ãYhÅÑ8šEãJ­{
I¼»E§{Âo¢!Å>͋⯄¦äþ­A`Ž»ÕàóŸÈ$4p£ä£êá„$;Œ–H,`5#Êɞ8±Ì®à¬f/\©b½Ö€Ñ§ÖT›”må¬ûJ	õaàZ†b<ŽÆCÒxÍ®ylʶq&FCYmæSLD
àè@¨Ä7̝¡¿Ä/îŒAÕr™š\Æ}`/Ñ.FŸÓtòDÈ
Ö©h¥b	”
+@¡xVp.uáñ¼CªÀp ^ñý‰C.e¤
•¨âKaü¸šq¼¢´ÔŠÕ¤ ŽV*40@½ Ñ©ƒp>wÒÛbúó¸Øô¡OT€ò(#:Ž6N•5µbmMþ6ó°´Þò!à|MíUSðÄgĽÜÁ³ä
+E¶H86­ô\/_w'VïTÄ…w]jª,!‘ Ú^z×ëäŒy¶£,lôvݘÇw!óµ*3Ç^,Ô¾	M,õN4Ò,s¨2¬¦Ç™ˆ.Dç5=ør\Á¾ tHh8†fÁó©Êà 7uÝ´ãTˆ˜ˆ<ÌN™„næLÓ}
@‰yüðÃìpJCäé4”!hf)aUpTÖËÞj¬µ¥²¹vôA¸gÖ×U–uÂ×ùœ4EHGaŸ89Ûy:XuÞ¶ìš[§î6lïä&”B½œÑ	ØGD¹3UøM%Rh§
U岨0'ÌPëîÀlKȉV(šð¥NŒQP¡\•C5«*ÀÓ	O,zEÛ4¹bpzA5$P](ueq«P,ö¯8&'¤¿ŸßöERaÚg@Âd‹F]p`z脗›cÉêïPtÿŽs„hïÇÈ!<
f,6XÉH헆çóCk·¦Æc˜¦
íG
+ú4ÿBNät©WJ‚¦ÀŽ‰G| w_–™®gÁƒô2,¤†z+Ìi©íÔÜ{7ÚfŸN‹íß
+>âVP/¶p°Øž
#àíT¶&Ìë›ð
}ØeM{7kËʲÄæËk	ùN¸ºà’;Ë»…µ
‚‰²²%<œ"ƕÅÈ÷Ð`Ulá}E§±‘±þÐX$¤3_ÂÕàWÜb­Éij,TÆÂ6å
Y‡M¿á
ÑÐæÁVïKõZþèxËrë{tY²B!,Zdز(›Ø }ÜlŽ¼®ü‡Y’¢±ÍáÆÄ»@“ßȬ:ÁÏ­(…¥®µ] ¸ú_´GûÊÂ1S‚W¢K¸xôL"ùŽE3ºWfõÒ4šàG³küŒá&šLniu~¹ÿøþž®î_©®£×1­És(¿AóÊ`:æÛH½l	²Ö›Êwz,p{¯xv¸;ñR/íïz5ý‡4¢/—7ӛh:™á‡$Hb6¦X¿-.þºødŽ¨mendstream
+endobj
+1278 0 obj<</Type/Page/Parent 1099 0 R/Contents 1279 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1279 0 obj<</Filter/FlateDecode/Length 1736      >>stream
+x
}WïoÛ6ýž¿â``[Číøg€~H›°8Yã¡æ! %:æ,‘ªHÅñ¿w¤äjZ׶\›âݽ÷îÝùëِø;¤Ùˆ.§”äg1 É`(f4žÏð~„W©h¾bò½/†ƒ©¸ì~ñ~uvñiLÃ!­¶4‰ÅhDÓùDL¦sZ¥„Hƒ
­’7fû$£á@VϋõI“±^'ŠüNzZ®è‹-÷ÎK¯­!¯²ÌQ^©=iG©=˜ÌÊT›g’T”v«3¤\ڜäÛÕßgê/ÅA߸Ì(Óf/è°S~§JDÁø'_É,;âE‰têœlÙ:¥Ž9‹à‰5[ý\•1'í\…ÓÒÑQyØoE¬ÌÞ ¿óXM.÷ÊukzB
+fÿOptN0¤D!_kBdI¹ôž3¶´QÂJålö¢Ò¿D“Àh*Æ\r„wt‚Wnù'ó¤T?+çQN‰çkRe®
+‡S[[™•™/à
+¥—¹JÏ;¶jð4xy3£ÒšŽ:.î~Áõ•É”sÔs*©Jíô.„í…€=äR‹hÏB:w°eêpø¨\Öoœb9€q¦ýãòÃç?V·÷Ká_ýú-“ØC×!šË(~Ú©èéBÈ46NÝŠ£­Êåêt
”RAu€Æn9
§È¬UGeMAsœ¤ŒÌ)w‚T™$ô409Vö¯×KÀÈgWCX›
+Ü9¢ù­|xžÙk„Ðh_ÿ¢Lè#cË<¨½T_+]â¦Í±“ Ø/)ɔ,û^½úo¡¢ÆÀIGb“¦ƒsh›çæ`‰Ò&É
§•\…\¹×€nxß4ïS”º{:ɹ©‚Ñ	D?å•óO¬°…àú劫7×+p~²ç–1©ô¶<6Aϛsw×ËXÈŧEmRýÚ¥ú£…˜_ÃŽÄ\ŒÄTÐm`4¡yƒ|ßoׂc[	Ë-Ãԁ[çmAйB%z{^e•ô;T£ã/3½Gu€«ÌlýØpe¨1ÄÀIt+ìh)±U–6‘âí|a. C:Ì9UþKkÁó$òŠÍþx÷¾n`o™e‡e…"_|×	‹¹«]U¶ñßQi óàÚ<ÚT
ôLÐãN–ÏC4rŠýA)C_“à‘0ƒHŤ¦q8˜`¶Lq÷¬¡ñÁz~P<DIpõ%i¼/ñì­ªÄ
ÀÏ
ëþÃîp*Ó	;ê-`‡>MtùÆ>WèÁ
¾“/ŠG¥*SG{
—ú¬–†ò
+µ~Ë
úßIÌâÉ­¬2	<ƒ¢ Œž5þü´ÄëwÁ]Ô‹Ñi0ò`))ê
¹)z;aýw¸êñeÁeú‘¶õš5fd®ÄÃÍcô¶-WÔʂ<eüà†^ð¢ðÌrÕ	ü;¢Ð]ô±®Œ£a̸eb§:îõ*ó"n?
+¼^×ï„je´¦ÇÿàôƒZNWXà²;ðÈÃ9˜7,¯ȶ‚{cÔå6Öxa|†Òrt'PôèeééN™Š.èF¹=[›9>´÷÷qéµøx×AùÿÙ=ÕÓ£/^AÍ;«Ñºi)™ìÝÖ±(&ø7¹;ácy3Êõªº›@„ˆw¨na©¬L\XFÉÕz}ÐÆxðèpN{’©ˆ]uú?#m7/ÚV8ca8
®^5Vv°Ní0êŤo
Îï¬óÿ™Vëá¤f%tj¨Û)OU¡ÄgÇì[ø>L°ØöâZFïD­‰Ã#	ÐaAE…ÖZ‰äN…¡L°–Žçm£ª·µÓ(ÅuÐ
+ë%,žaՌÆ…/
+¥½
cZ´Fì9»þFn¢HSÛI'ÈÌë\]°%b, É0]t4±°þ¡¢°†Ÿ†+1*¬oEí£±êÖnCaÉäXíU˜¡Ùê¬qÄxoÜà[èØô|†_Ö^•N“ëzQ&Hc%õ¥äk-Ð2Ýã8öô”Zå°f—Ò¸-\蔇²kª°µò"Ìü·6ƒÿ|é7L]Nš‘‚µtsw}»|úp¿\}¾ÿ•WNºj¯
+76—Hñ§h³:3üŒ
+«ùÏôÈk8zñ©™^£‘
†ÐÄBâò`ÓÌà}3¹îêaŸœ7so<ó9ÿȚŠé"¬/×wï¯y’þ²èÆ&ïda­àgûCl<ƒù%õg#üKßÔS˜ómýÀ¹5ΗU–Ú+zTÞó|F¿|¶2ç·ÁÔ%t
_<žÅ¿óÂ¥óKþèãêì·³üÀ¯Éendstream
+endobj
+1280 0 obj<</Type/Page/Parent 1099 0 R/Contents 1281 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F6 9 0 R/F8 11 0 R>>/XObject<<>>>>>>endobj
+1281 0 obj<</Filter/FlateDecode/Length 1775      >>stream
+x
W]OÜH|çW´"EÙH¬a² N‚@î¸; Ç¡“öeÖã	¶Ç™³ñýú«žñc8]Äëéîêªêö÷íãoFGs:XPRîœÅ;{_i6£8£ù<šïÏhqü)ú´8¦8¥ýhŸâdçʒ¨kY¥êm„%mԃªDQ´$—k#SZ·ô»Î+úbijëŒ ‘Ë%-E¹¸*JUJ8LUIѤx)—FR¦ÍÇøÛÎtŸ¦³ƒhŽØ“Z['rmÄwö¾,º,§]šÓùQt|ཾ‰/è$<¶-fB1âℒޝëR¨Š>ëÊ]Ò¼óY k+ÉÈB8äá4)‡_™4ü¿®$ÙZ&*S	•Ϧ\×*+§ᔮ8ä e—G‰¨¨©Ri™Š–Wg”úø½ÊÃRm”öñîU•ê¥ë˜–Ò<!‰ƒhFÇêÂcû$ðpcGA]Ö¢Rý
²kaQ‹®øà'ÔEò‡“•E®–«â^üyzMW¢ˆ1GŒÚh§]D4ÈA1Ti“ÈtîJ%F[¹iÎF´àCF©BËÕºqªzð‘‹/£T8ÁIF(SÒùÍÕéåuä~8¦’e] Âæzӑˆñ­…ATÍ¢±x31’<£mŸ¡°¹`vþG"d“\–àx¾ìhåK@³<½ò”ÄcóEtÈ\Þ
Íã,לœuÐG·$G AuÁtÌT!}ÏЪʰ⮯&÷7·üz{s÷•6Ú<â}fj!ž_}äêq¸ØàI8ˆ¥6b‚àAìr-Í.}5ª¦Ý>—ôJy÷L$MýúÉÕÇÈKΊuƒm¦ñº¦›åޜ;bïÒ9¬°ÐWár_£‡ÁãOV•ªãbÁQÑÙ]šÌµM®’ÜkmPê•ŠBƒŒ ?`÷¸}±¦RT-ÕRƒ}Üoø[‡õÐG’5¼Þ…©îز¤’B
+(ÂʌO¾@KÛAd²-\­D^ö¶kº™û^ùÀbjr‰¡¿Ì
‡À)蔵Ï]$•6}=@F9%
+õO`“ª ·2üÏÂcT™P*ÁY«	W#¿7p
ï»
+¾.d	#A–žd¦©<²à^EHBVOÊèªÄQ"}¢šoÖø‘&NÑY-pÏÜBFëف|ËEMÛJ”xƒÇR¡E*Öèg¡ÖÖ١ĹWɳŒšZW]BŒ"q»|ë0Ƌ
Õ±
Kî´Ëƒõa€OáW)Zªd0l™CïÒ b fˆj=ÎüàȘJñ07öŽžœ…Æ4
+®Ï, _ŠIÌõrrx—`{ʾ_֜(f_[ã^7A± øu`àoŸOV«ûËëëxµú…Þ&p}CַZ»÷«Uøq0_­X6ê¡ëÑÖ,¹
%ˆÇšïÓð\-àê5³%¢ŸÎuœ©Lrý"Ó7òBOԓôóŏ´ÐšN‹žô­n`-v ­„¾2P®P0
o3LQ~mÛ"vÿÐ&M
Š…æîŽx»%7îw+’•IÓo?ƒV€«¢[(†(îR?˜‡›‡—XØ|°q¼œF>K:çÌ1àFé1G–Ÿïn/㿻 \;+x{<ca›e.€(Æ!†{â K•†Šß«Ǎ$húÝß,)ȉ™Ððlï¢ò°Q©SY„-ï'}²Oñ+Ó¨ÔÞËŠì¾«¥•Å”·–pM¥õ
Å1¥²¼mQuy4Ÿ3êv.&Õp±W†
ì[h<µRý(yß!Ù~BÀÃÑ#-ðµ[@†üeïjÜ}xËwÐϾÊkۇ±¿õe„öeŠ×†\cÖÃdâ´iwéÁh¬a©°¹ª1¯‘Ì£Ó5»
+\B¢ðݑþ~nVb<nüh@ÿýƄi´Q ¡§™rí¦êMüÅN»ôϏóĉ¢[ԗ[2u1 ¿n‡
¤
+mã“÷vW´Š{
³Žg¦ë›xÄ3΢Àó“ˆÇlÖ Œ~6öAB¯à²xðY>ïþy3{X)»
+ÇÈÆhêK®€<$y*Ácè÷՞&Øìö
øö©pïð*’ú}ÅÏlÕ6P
KaÐ2¿k¼ø„b*úq8eŠøÀ£×Wás
²Á‡ÔÞ£¾ÝX8úޗãnlÍGÑþñ
>cçÑbñ‰×sÚÙ)v\ý
DÅæš4¼‹ô_pÓí+Ó£9¾vÓÉlGóˆ?1¾ö¤Kìòl8ü-u‚]ÖùïðýVc`´zˆÅ;?'uxtáKÚz|ȗ.❿vþ\³9Kendstream
+endobj
+1282 0 obj<</Type/Page/Parent 1099 0 R/Contents 1283 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F8 11 0 R>>/XObject<<>>>>>>endobj
+1283 0 obj<</Filter/FlateDecode/Length 709       >>stream
+x
mT]Oã0|ï¯Ø·+¤M)Màò!ñp…£9¡“xq’Mkˆã`;ôúïoì´GÕ;5•{wggvìALcübJ&t>£B
Æј.â$Jiš&xŸào˜ªÁ<Œî§ǔUH™¥	e%!|<¦¬ŠÂIݐ Î²¡µ°ÈúèØ:.IZjÙ(éüÇFºµlÈ­™j‰5KºÂ—p!óBü”5¯Ø¾žD'ÙÛ`Lg“Y4Ü0CÖR¨\c¡óɈ×eW 2°¬¥Ûöå
+ÑPÙ©6@½È¦ÔK‹Œ–×ßI6N“Uy+¬Ý”Ti£„»"˼ŒÏ£‰¼[Ü<ÿzÊ‘ûí| rûpOÏWє4j»|d}‡£vв՝¡†…»ö•4µPéÐë²£Q¶†t•(zVx‡¸UWSÞ9½F;ʙXXYoý^I %U[³âP`j¸­e!Âp°Ù‹g·˜‹²ÇêîEò,_´y_ݵö”öë—§äIî¿!¦³.”·aoÉ操õíQ+Œ“…l…c¨Fâˆê­V˖‹Îø©õ]õÃ×B7Î身|{ˆ	ƒˆ`š`œ¹A¼1\8(ÌJ®:Ãåžá~œ×µÒ˜
#Ke¿‘uÝ;éqqGOF*Í]s7û&½Ÿno`IzpÞÑ%[iD^sß0‹b}Xñˆkh¯1,Û0ÍEñÞµÿřœ]…C룁 2¬·õ?N;+˜ NäÂ2Y}ÐíEÙ¬Žšþ;?xéK%}ÃK¨Ú—/´jA)D…ÃíOµá•´ÎlÃF÷éîæˆg¸UÒsŠ/ãþH£¿ù5d×oä(:ïÝà(ßÎÙ>á,™à¢)‡ñ$J£ID˜Lroí‡X]¸ƒì-Ù9Ðñ}>k¡üëO-
¥ÂÕb}ái2’YŠ«EÓ¿t—
~þW­ªêendstream
+endobj
+1284 0 obj<</Type/Page/Parent 1099 0 R/Contents 1285 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 755 0 R>>endobj
+1285 0 obj<</Filter/FlateDecode/Length 1526      >>stream
+x
WMoÛ8½ûW°—°Ûqm§@Qä£ÙöÐ6[Èm´DÛÜH¢BRuýï÷
IÙ²’]A‚XrfÞ¼y3~êhˆŸÍÆt1¥´è
“!žðŸÿùúgot1O&ôz6O†TÐxò:™ÇO9-؞^Oçɘ&óþã×HZû£Ëi2}éÅ|„K:®—½ó»Ki¹FLÓٜ–™OÒ³›­¨œ44ºHèƒÞ‘Ót•:–]‹ô±®èVB•¯–ÿô†4OpüìF—Îè<ÇAUÂò¾62ßÓB+A‡—Yë(Ç0š…$†kàt”н‘F>ÕÊ*'é«™*7ìíünB£Q<2ž!e¹–k
 öº¦A¨²–ÆŸáPÜVYJCN}ªr)¬¤B<J²¯…óg>¤ºÀ]N¬rI;å¶|áZmjÿ$b¾чR»¿½ah2iS£V2.¥·=­°ÙÐYÀc€Cƒ_–_NÍ<Ø,	ɞâãafç‰/ÃÆèºÌ‚á¨<p^È\Dď50ïèc|Uˆt«Ês⨷(í…ÌõF—Àò©–ÖYZ]ÐN›Gë„Sº´¾Ò>4¨<¨2Ó;KŸ—ÑqB[Yʟ¸OPmõ|”ýPËüáxseAŽ¸¥LŸê¸ll%ˆø3åÑÒV!â­ÄmÆ_ÉþKQHoQ	ká#;¼!·¯B™2ÚxLh‰PNߤz`µ
FU®¤
¤Α^#G°©ðX
Z]»ƒ§>á
É_¢!ýÓ*)RF á3Gj©2z­`¡l'gëÀù,àL×už“Ï
ž>~œÐžúhƒô‘­\-6§L€ühp±ÕƒT ¥=ËÐéM⋫Ož¡ÜüSHš !pî!·ÓôXFàyi¼8À݄›­6L¹`ö†®Ðùªfÿü`'ÿïgè¡ï¯|54VjQÂÒ÷³k>êÉ]Ëb
¥V!,k^ª«=Ç͏ZY6‰˜ßÓ­FB^Ê
@k¥dô°†÷LG”4²Ž!fšù£ÍE+IÒé$‹&d‡õüÏC·Ÿ´4«tÈQxIèšÜMƯØ“
+*5)¾çd;ªà{­F|ÞT@¯Q甕6ÎÁ•è
+ñS¨œe&¡Û «ŒB'_§Ð¡e«G¸
œVik™6-eiFxmKƒŽèõ	l&Рã}.ÕÏks“»|—ìU¢W¡h*ˆA<ŽcN¯×*Uð±Çl©*L?*hPð”cHkˆKéòwõ(í£Ó¼nÆ]«å±+0äß3“ª“¿x8Ûº€þpÀÑ# ›X2¦òõìý£ƒÈ7C¼êw±¨„Ái´…z¾úÛ&×+‘ÿX(#ç[Å«„G%hÌ0z7Vº7|ëùݐ.›‘=	jÁÊÎó«¢·!¶ÆýÛ
+Ô$¦›ò-íå"§ž‹·D‹ÓÁ¯="'x`”[Êæ¿ o[äi„yAßJéü…?Èn™h"·Ê°g ‘>kì
~1ÀGl¸‰+ÊÐD¥n‰;nÛiöG™a²q}L6r§XÀÑ#ð–jÝ,(r¦SÔ·tÿ»`_óSÿ©¹Zó8zaø7í€\¹
+ïB‰^X Þ#‚=²ïlϕùA¬š'[#hFn”WVÆè³t׿,(”ž©ÙËýc”ŒùÈÃÇÏ`o#v´W¨‡Ñ"ƒ¼`ÊiÌ5ŜŽï؄໣ã°.–›C`~|Æ V/îöv¼,УU6Ìyî{#}°YJÇß)±‘Ææ%ÂêÌúƒG
+XÀ<åNÊt\*Ê}x†µ*‹¥‹ÐQvь}ZÅ
ã“J¶zí:Þoƒ)^:˜Ma3ñ›6ân‹Gì¼`ì舵åý©áÏ?”‰G;;¿›ôËqXÐo~÷Ek^óbò;_"&³I2›Îñ5²1Ÿr¿zÿ֝LÓendstream
+endobj
+1286 0 obj<</Type/Page/Parent 1099 0 R/Contents 1287 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>>>endobj
+1287 0 obj<</Filter/FlateDecode/Length 1691      >>stream
+x
WËnÛH¼û+ØCÀ¢%Y/çø#>ÄÉÂZø2"GcrFጬ(_¿U3¤LÓvv±ŒHâL?ª««›?ÒÇ¿L‡r<‘´<è'}ÏúÉPF³)>ñWiY†£“q2zéÁñxôüÆÙüàèòD#™/ád2ÇLà ß—yúvpœ'ƒD>Ù­dV;QòÍV÷Î+Ÿ[#ËÜd’{‡g¥Ê¤ÖøÊ…®>¼›‡å‘Ñro8…å·§r=—mËnù•nܜ~>;ÅÊËVVRØT²qºoe¡EmpÁø<U^g²RŽ¿‡H
Ñ{_zH¯qÉÒV¼$råcN~•;Yìð%7wðx­ýÙ՗1ªÔòc£«]¸Eëw•Ý¬ãƒ`äAJ;wʹM	°BZ¥+±Ëe‰Ï¹Á“Ü˝Fz•Þ˲²exL_9Ÿ2ïgŠØ©2øßmFaï¬éx®4l8ï™[1֋]k#N§›*÷;YÙæÖ¯‚¿vhœ:]è”ÀÞ¾¹øò>”
ñÙŹ¤+ë´¹}×ñûB°­*IÄ&ªDN—ž¥d‰i³,gÑËýÆIZ錥V…C<,kÒñÍÈ׀–²Ûw$í>‹èP”»gÉµ^WöA	mµ w<@÷€2ùÃD¾k,m~F#¤ì5zó´~@~*26’!¥+eî´0…&ÖCØÄךÀ vftUí*ÔpÏkøæ…nòmøê}…¾5_Ä
ô$ÁÍIa{üÅTKåX¦Ô®w¸k*Ãì}¦RðºNá0r­Üø*ŠÝ“Ö
t湏#`B$Ká 6õŽGûҌ9G'ܨr¡‚&È:	­y…èü·B”LXáo9ÚµrT²a2<DÃĔÔíAS©%”u]Plx¬ñ6µ ãJá;l§="I–¦˜—ëB— ­Î‚±z1â¹V%IÅê±°¼1Bñ s!êjc)–
+@5Î
ë†ÝS[b(£ãüÉÝ
+íLÖ·’
èÓá$bJ4¯¨I¡t°xI]G±•œö[‚‚ÿ kê*4¿ÒÊ!~Úq¼‡ՃʵÈ(Ärى°¦J½OMI0•ÒeÅ“߃¢_¢EÉÑ]P‹‡<ÕQQ°(‚²mº>:^Ùʁh[ó[¢›ÙtjªŽ°¼$‘\7T
Ì-ÉÜÕlA u—¿g4˜å{ø‰f­X7W-M :Žs7H5RX¤
¹„zóÎ[ˆ¦Ôcu™ÝÌ×Uþ€ÉyôùôüÓÕõÇþj+<LPH%(o¯ÊìJ—àˀ^IƂz#Gm¯ŠÂÞ
øÚnU¦vQ
+Z©ÁþóAíÊ]a.&>[$rC>í‚5-ÐzÞñ·¢¬,  X$nEfÄ^£öíŸlí¦È@yƒBy¬ö­ý@eAò›¬ãÇ¢®Užé`¦•WhÐ’4C϶¾ÜtÙ܂œ3ÚÁ[÷ŸÄÏ	dæÎ3sZcÑpÜêê¶Ð8ÄiLyß­öƒ&©ÖiX7òìMÃ#r‡Á]¦õŠÖ›&³œ£Ü'S‰š.<ï
úãÈð9âÿËä?ã Ë”Wå0áâ>ÆöܙtUY“ÿ¢ü4;ÎÓòÔÌ+5v ‚ YN:°iŸ…I‘(Â÷¸%Žäo¤ú_rª{±ã¨T&Ϊ½xÄÑ
C”*Ӈ¤~Ӌ¤s”!ä­äúêgÂè¤&q@Ý.òHÇ/¸‚³$ž ”³(l5…ƒåRÃ=O§è6C:“½QõE»¹[=gwÇY}Z-ÐçL¥©vÜEƒ€T²¯!7yÖ2¨?¶„‚oªf$?eÌx˜Ì8N_eÌ$L[Ò%ÊÇ~Þ·ý¢ ?{%(u¹õûòv’%ã:¢FXÐ6è¼ô~w|cûýÓãKÊÑþb74ï¯æÖ4ö©ÙA>|XÉÅ­H•ÿ6»»´ÅJ°(ò°“Õž•p…2¹´ÊרFžfžH¶m¯L؋øÊÄÅ[Ìyìâq¨y׀ÝñöØÂaýy£‚0ê
gÉàDz
E.sÃÂDí£¥Åė0†ÓZj恶³Á)t•‘á]ÎjLð2<;–É	_tAÉ°òÊ×Ê~G±¦x+ÂÊróf¯¹Ð›ñ¶[ïüÿûmw4%ÓÉ›*Lͦôðq~ðçÁ?õøìendstream
+endobj
+1288 0 obj<</Type/Page/Parent 1099 0 R/Contents 1289 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1289 0 obj<</Filter/FlateDecode/Length 786       >>stream
+x
TËnÛH¼ë+؃`E“’"ɇ °óÀú¬Èa‘ÈlŠ“3ôÌÐZþýV)Ŗ}Zâkº«»ª÷“ŒRü2ZÍh¾¤¼™¤IJo.3\ë®3üS‹4™\o&ŸRº¤M	¨å
&Mi“Ÿï­ûµs¶ké-yÕlÕ«ÍÏIJÓ,MÖ0</l£´¡FùÀ6ƾlP۝5={±¸ø´ ,bNgKL¨˜þÙÕv«êSÏyÐ֐-ãwßl“Üšòð~ýá}B›J{ÿÅ>ÚàYS÷ ¼Ó1#A4ªaº»ú|}õG–қC	ÝëPE×ï7_îȳ{`7ÂÙXjÝÖܐ"<Á"˜(úÂáúæï;dŠ¡RAV&P8j2Ýò1A.hÛScQ#8¬aðÉ+mXÒ`j•Cú"îÙs­Ï¨´.DÞX	wD?!;j°¥}¥óJ()ꌾïøH"¦ÌG-
+	õ¹uºQ®§CÁß[œ­k¨5”ó’²ÅXÎy–à±8Ïæɛ$Kè/»§ÂÒ
@ÛZç*W&´UÞïC×üîyW¬äÛèó´9ŠÎž×A?@³›@•ÔÊT.DÎ}ņQVÊ!ðNIJ1>Ô ÝUp$!m=Vè#ì{ê Á™G	¥uÅ 
#ðØ°Oy2Å£Ž”‹CØØ·w§-q°Óf÷‚8Ó±e`#Ñ
£æÕ8¤=[Š_
Mz’¦&`HA¤–Y
üoø͉ï;ý j6ÁÿI:PÓù€¾"d
h6¹ëۀVµ"£Ôn¯Ý3ͤ[·ï½ê…¬g8·Ê|䈡.m"Ò-Fv,ˆL/Øá
ÂÇÃ.èZŒ³ïMž7ʕ9ék1÷~lèà”ñ­u!‰ßtð\—â40Š9!„Êsn½–uñzDŽ®%(ÊV°]@ÃBw¨‰´C̵où$ut‡õ¸Ý²%¶ðzN³¥ìÕó8tëìO,7ÌRÞ5ÐXɞÄéÁ|ºšaýþŸZ¬Éj¹Æ*‡ûz-¨7“¯“ÿ´Ðõ8endstream
+endobj
+1290 0 obj<</Type/Page/Parent 1099 0 R/Contents 1291 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 768 0 R>>endobj
+1291 0 obj<</Filter/FlateDecode/Length 2061      >>stream
+x
¥XÛrÛF}×Wté%T	¼ˆÔVíƒÖŠU9±b1ñ>ðeɉ2ˆæßçt@@”ì¥RQ	šKßNŸÓã?.b㿘šÞP’_Œ£1þÂ?bþñ釋ÛE4§ùdM(§I<n›¯Œž.âyÌßñ$cuÏO_¼:G74[Îñ3§å7„^ë}æOa²·8ŸF1Íâ[9ßÎáAø›‹8ZÐl|ÍÄ£y4m¾x•/š.§X›-ø=sš¶1¼YÒtK ñ2†‰ð%—ö¾æ„Mw«ýo¬N—¯W{ßX½ÃÝîì¿V×ïoi2¦Õ¹¾Y,i•JŠñ—dðn¯ÊJ;Šg=U֙bGO*ߨï<ýêµ»þI%{Sè«ÕïcMf8=¸K[™bk]®*cüNª ÷wtoœNpב±ñxŒ¦3D`-Žè±v¥õrõõûÅq³k²@|صÚO©Mê\ÃXª}âÌF{ÚÛU–j¯O&ÓÖ$Á#òý@xŸ#õÖå&$@J|ªœJ
‡¢²ì(W蔣ªöš|¾)•÷‡t=˜¯¯hk2Ñà	†)¶©Jö:­R6˜ñ/GÚ+졍ò&¡ºÀŠ¯T‘ršíöÌI^b‹D—isø`Ý3è‚DD/=¦À¥Y¦ÓˆÞ#üÜqýÚ <|÷™9åPÙ
+•ª’ÊæÚÂí‡TfZ!ÃNoa	éæ<lm–ÙûâqÒG|#w4áf@Å>–º(Fbëu3»
h_Uå?®¯‡Cd±9KUY·»~½_û¯ß'
,F‹hÉl
#ëÉ͂xYµ•4™*tu
+çHO!_ç•)å`„Ã>Q¥Ž›_Ÿ²þÿ¹8š,£ø¶KÕ϶Òš××
+íI¦>~÷I†âc½ÉŒGî^om“4`¶A©íj“ârڑ;âéè+Ó]š›Âx@‚C{“ìqè…NŝRét@Aªà­Ý’VŽ›£Îsí† •ñD0ÀÌÐ@`u°¤Ò¶“—DÞÖ.
̂É\©töEœÜhÚë¬ÜÖ)'lЇÔj¸ç+Xž=Þ¿1æF?~ü¼úø­åÊþG§nŽô°+Tb,½³u©U-1üoXƒ{ôóŠr³CN™™¤¸}·Î毝éJûpÿý݇¿^íª)L‚LÐÙff±”«Bí´0YèԝƒçÌN¾F_5BÚ™‘N¼·:"-*‡îE/ƒa¶fW¿z{M¯ÓZoa<k8L>
òåipؗ®3-÷	v$èâäËpwɺÔEâŽeEÂÀÖ¥žþIGí/¿•?DÛ*XðÄHË4Ž–.„w;ÂçÃW:!wwùì“iȸ—í…Êõ>üt
´îq?í…@Y1à/%{U z•ÉùÏL´­m3µƒž)4ÂFkI]¯Š,c½¥'Ia±ÕÐQD'`ÄPòz¡2HˆWé‹B+ìЌÂê¬a%š:ē™¦ÚÎ)Sn×ÊŒ¢Î7P2fVWOëL·ÕÞÖ¡úõ•@쬥‘r!W@{–Qfís]zÊk,€JíxºÀ•^ÿQc0,Ìý`^œVn›ø$‚/³ˆ?U{VÀör\Š‰B:"³;´ëz`Ö56<Ìd0ç=w2R@¥©¥Ë˜½`:‡1–@аäžÏl¥n,1Ma¶Z_
á.BåL·a)¨<mlUeFžÅdZ·ÊJŸyžÀ‰Bë”ÓÊ}†Oõ—@Òýv?Õ¯Å&v£.2¾€¹¦F¬ÏInʃæ_iê|‚©Uf1R’2qo2ˆ	Œ„❋ŠåY
™P—Óef–ՍQÒqBl<ªà–‚PÎc?,ébX•YçÀPÎôCVýôäþmæ"ô¡æmǓóÇ"YâõUXéZà<ßìýþ[[éàX°€ÓæCbÄ?ü¿Jª­@öHµu&Œ/m-îã­‘1”ƒÄå2m£Ùú<”Eèhi<Mª„ŽáîÕ  È’³6g˜qÐ=’éiµª*Ø5·$…a;×Ý䉱°e5ý¥4æ1³
ñ`ž?>ébˆ&xH¹o·æÍ\±|z¸o¨á“‘¨V}ZTÞqGa¸¨³Š¹ÉÂĚbbMTCÆXÆa`–y%תÚjŸáqÐ.mƒ	
yLé€Ù=ELFÕTŠÚK+ÿÝãC3ÑÀ(†¸“`Êf
7‡g‡ô>†ÉÜ '©›ö€.±WyºAy
é­3¬¥Ó/ËäÕ³+Tž%2òËq.
+ÎÝ /‚
+ä-±F2ï~{¢ÊiÍ´ÕnƳ	4|:b&Mîë²´®
+´x†—àéF%Ï8]t´‹ši|ÒvÝhÄò1âáÛÏ8	:ß_¥›·ÛñÜràÐ	"¶y‰§—(iëd[–5ŸÃXÁ9”'~Ë2e˜"ÉjžŠ‘í¯›ÿ†»ª®,
dKւa€Æz :î½Mȍ©,gHûyÊXÇE÷ƒ½š4îå|zkHqð€ÌLuìÔCô¯2(8ðô˜Äæ-mݎÏ=° chy(²&’^{‘®>QðkQ™¼lâ!^žˆä2¼”iòäॸ
„!Ÿ!Ë¦ú°Ž§Ž¨ÊúôßüƒÂl1‹7Ëð\Þ²ñïW¿\ü	ßb‹®endstream
+endobj
+1292 0 obj<</Type/Page/Parent 1099 0 R/Contents 1293 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 777 0 R>>endobj
+1293 0 obj<</Filter/FlateDecode/Length 1979      >>stream
+x
•X]sÚF}÷¯¸™1™1ܧR§nm×5xÒÎð²Hl,iUíʄßsw%ÄIÚ8`ÄîÞÏsϽëÎzÔÅOF!õ‡¥gÝ ‹oø­ÇoOÏÂ^ôér8
+BJ©ßWÕSB3ÞO—ƒ
Öã>‡x’VgᰋcƒË0ð±ñþ‰
ºƒ`¸_ŒûÁ¸±ÊBƒwí]]ASØe-)…£1„û§Ú–¾“t|ê—ùYçf@½ÍWðv8Ñ<vNviµb•©Ì¬°JgÁûùç³.µÃ!DÏãÖ|#áŽà­ä–r­2kÈj2¶ÆXêÒÒv#,ٍ$>Þ¹	+e­v{«ì¦Ä"7"õ‹µ%-Šµ4”iKy¡_U,‚:º›Nɔy®[YÓëÃmXSȕ,
+³~•9…v£5\8ˆUY””±ü‰¥ ½{§&”J‘Ò+äÊJ¾ªlM¥‘‰(Òef!}¥‹Ô…„V…NIdôIe±ÞDȘDV½JšªBFV;ÂéWY¸øun¢*íQ0fŒÁöE8Uá©#àÛµsGV剈بŽ´Q'Ælãÿ%ºŽƒÞÕÁe¬‘‘ÎbRV¦ÁŸ%’
+wÓ<Qfƒ .wˆ
+ux˜ÍàtL“{Ju\&Òt÷ññŽà¦
T\üs#O²”¨e!USkÑK+T
.’“éÍôÊnV‹–;}\vŚZkóŸ:ívä"NÚ9Þêʔ·.Þô«ÞJvá@K(Lœpy¥Öe
¿NÌt¦S.¢±†­lÌRî8BX!é\2BŽVåàŠz¨!.¦và¥7ú
Í<l᪋áÌa°âf¶ÃjÛWWw‘ÆKŠt,×aÀ”³Ɍb8–ÀšØåÃJcñÑgŠ-ý#—™ÓƬàQè6F‰BUŸ8½Ï¯5¥ôjÍF—	0L,ɶÕÅqù҃´&¹<7
¼{ßšh6ýý‡½qédÕ/.¨p‚‘f4­„OZE3 ΀fK›
+Æ æuaaY®
Ã9£Ž*“™@°y#
+wn¥¾t»:Ñ¿Ó¥Ë02+0/(O¤€6%ÔC)Š¨D “È°ôàk'ëk„¢·íjßÏî)ЅÇÙ~û¥lÿ·$}†‹»Jø.ú@ìM…‹Ó“Ly™ÊÙ1ÊÓÍ5…ýî¨
+MØõÈ͵Q_&ž÷xéM¤ÎØÕ
+˜­"2šÉm@0
zí+ÎâxŒK ÚËFcu}¨%¿04ÆnÇϋ86¢å¼F¥Õ<¹h=h‹lù–öo*Þ
(K­
+ŒñnÀèK.åZ]R7 AY…tï.Ð-@¾C¦ ­
+W­ÞYZ…‹ôò3è?J@ÐKÖh	qËt=§sÓ¥«Š'Š'š'-Lý \â5ÀkÔ^¢öñC“ûtÞTvN³çGä2§Ùüéùzþü4¹«mëb~Ÿÿ›~˜]Ó¹OXeçù[ûîŸgsÐ/•*¦wTà}ñþÍ}“¿‰÷E¶%é#7#yG™m<äÛøN;“–·éµÎæˆ5½{K¤³“Ü®ÕÊo£½èý¤]‹ìz#²5dïKc÷Ïè[ö&kó]ù±2裻&¹wdÒå¯Ú}Úà×´àöo£Båð45…føú§ïK]§xpø²4~„‚M¤RÔÄÇB—ùí_Ä:ED„}ŒklßšU@®öxöã3ÿimy&ÿãv
+zæ&¦·ÜjÑÌós)x‚ñôs¨$4SFFn"×"a¢¢Õd¨‡¼\úÁ€é”˜@m©	¼âË©*;1ˆ›Mg5Ã֑¬¦8S.SåÇÅC•6Èf	ϾßáÞÿʍAö7À‡ ™ƒ$ø‘ÊÇÙ{ƒQŽ[°6§w»Qˆ£‰dê`Û8á6»Å%^ZcTó+õ˜×"œ+vèv'‘€fg“ë1¥8‹#˜´Wíö>?ÜþåxkT
hâ›R-
+ı™
"=¦‘$[G´ÆÓ֓œ‹3d¬0°—o:Ãâz>Ìü}ÕÖ
g@(9‰Ý@Ô0dђÁ:`"Z¼¯®±=¹‡Ǩ٥ŽìÃõõs¦mt8np\ðÿQ¨Uµþê^s›8ÿ>éÜò9±oÅôçâΈ«(Ø	ul×ÞíT"DC ï:I»+ó:E,ó[Îaú€ŒAK•ùëÙaΈ¹â`5F)¼û!ÛÙäñy¢Ô;ðÆõæU	w
+ô•Å<ü\“ŸwÈz‚)ºJÏZÚ|›‰tyû‚¤
0%¾GÂm® F³¿žèö,„à"«”ºJL€«sÝøÊŽZ±Ê`M’€S8<«2ÃmKg<1FÀÈ&»*ÉD¾`ª<QÚ¬âT¼p,qÓÔƨjÀõÅÎy÷ö¡©|u÷CøÙ¸ž¶
+49ßgˆ#z¢ó"ngŒkž«ám&­›­5Ǩ@¼onÙ%r
:jQFãi5ü+ºéáÝqŸ†£K?ÆÍ&÷¿Lè±Ð<‘дy#f#Ûõö(t÷Ñ]X£A0ŽýåõªË2>ÌÏþ<ûoFäendstream
+endobj
+1294 0 obj<</Type/Page/Parent 1099 0 R/Contents 1295 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 780 0 R>>endobj
+1295 0 obj<</Filter/FlateDecode/Length 1148      >>stream
+x
VMoÛ8½ûWC –-ÙñÇ1i7EÝ´Ûxo”DÛìJ¢"Ruüï÷(ɲmĐLòÍ̛7Ãyø4ÁŸO‹€¦sŠÒÁÄë?óæ4[.ð࿐´ålå/Ÿ¿¾}Lç¼>÷f”ÒÝÌ[¹ç„ž§·”æ+ozZyXƏ+ò´ÞÂð|éÓ:®`'´Ž†0|çѝmÕ®,T¶£g‘†‚ÊîéϏ÷_oÖßÀÌ
Œ¦¸ºŽÝIߣ/¹Ìx#E5ˆ°JgîØ‘ÕÇ8ךT%e,ɔy®K[]ÝãíÞG‘.3K:ü.#‹½$²“…XøUG2²ø!‹[ÚªÂXXΏŒÁF'4ò§^ÀÆ*DÏD{™
+ìL$YM&y|mν¥ÙsŽsJǙo ZÛ+·zW¯)ʝߍ•±´ÑXƒ‘$ùؙ¿å¢†|’¯ö¶%„I8·~Á9ÊЂúG8>sÑ;àÑúËØl…Êك&am¡ÂÒJÃç;lö*ÚS,\Le®3Ò𸠿ÆÙ¸.U|}"epl«2sB{þFÚ`¥æ¯ç2’¿“×ëX™<Ç'‘ÊËvÞ¡† ž].£³&Y'= 6Ò[6n$¥%DÊ&Sq™PBÃׯç¯UÛªÛ̉íêŠzR:K+Òø®±³›
Ú#8ÓèÔò¥DÝÄ9
¢Lì榉`â-YÛMMÒéÓ3_Ѹ]#tÜȤŒa†ë¹[Ë¿mª§–â/º{)ß¿
Õí%oC/³H§©Dã²{PžÀ0©-uIÁ¿¢ïÔíŽUòíñC0,«§Ïϛ›:=¢Ø~ZÞÍI¦LGÊexø0æø±Û†«Þý­••á¼æ¬Ù½°•¿):
w2:eÅÇ*’†PíÕ»+	J5
+¢4r[&É©ÐÍ-"ÿUµ°ÕI¢¸RšÀê¶,_Eš'ò¶b%‡hÐMÐÐE
Jî6÷ö:ˆa¶l†ÜrmŒ
+“#?¨×æâÀJÏ\µü©Ð0"d’ln.×}®#FÊ*ÀZ}HL·¦Úûwo'ؓ¯õ]V9ò’/õ¦Nå4ÚÈÃwÒ"òü‰t3|§NíõT§”Òܶ¨M‰p[¨—Ç
l(òC¡â‹ÀX뷘O»BçÎX‹\ ý´Vž.¥ãÄ^'#(™B!¥µdÚk¸IUÐ«+G)x*Ó·ZGOÁ»m»ŸÛe¨/£¥’-þSsäŒV£U;ñhåæ¢à™Šc9¯E7¡!´¥B¹(p«YÜPĤŠB%"Ä虆ÕŎò€ì«	ÍaÍ<2ñ¯#> ¢sƒC´"&ºš¾âêxÃn]˜è¹BïªgÀªHzCh±ã©uTÍ ˆ•
‘1IԎ«Õì?Fµc£…‡¹g<ÜóE=,ëUºô–«)×ÀÝiÏ÷=ÜÓ×BWCàG•Ü[Û¹räÏ1(/§4ZæO
±³ÅÌ[̗΋•Ï.ÿ±ü=øROm¨endstream
+endobj
+1296 0 obj<</Type/Page/Parent 1099 0 R/Contents 1297 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 793 0 R>>endobj
+1297 0 obj<</Filter/FlateDecode/Length 1522      >>stream
+x
½WmsâFþίЄiCfÀ` :“Üär/sIӃo¥{
Nl¯»»>Ž_Ik›—r7mgzɄ°Þ•ôHz$­ÿlù0À_&Cf­7À'ôáÓÇçw­Qà
 ˜Òg·coV-RX´Ž–LÇ^p´çä&CoÚÈñâ WíMo½!ÍÞÑ2ƒÙ”ì5{Nçí
ÕXxqÐYíMGÞ‚fÏɍ|XËñâ WíMfžA³çäF#XËñâ WíMnÉ^³çû§AÀÎûŸ´òŠ$1¼0ÄCO'ôÿ´„¸õfy½þÃ|–1e(˜N`q‚°;i$
+0R‘úfùr$Í)d鰒îM¼)¥{uVÃ`§ç9Û'ÖøxÏ'ßQ„
‰(KrˆòSÑÿŔ)ã8ùúÅIjHð
+¥íñçÿÞpêù3è
‰Ç˜“åV	©Iêd-#ÀüØ­<µSç¶&[{¡ÊãUçvusz¨Îb2‘C!6¨9À(Ø%i
+¹²°–HÓB
+‹v¶RKÞ«DêuA€Y‘:Ãশe$¸ÒP"â]b·¨>Ýϟ!J´­Ò{U™F 
+´ A‚×ÀŒ¨?@¯ÇÎëvú¥ÑýT…"í£Ùµè§Éº_Ûb·Âkƒôû&Uk‘þqöèÇȰԉÝÃártä#2õ¾°cvJGÏî%ƒ#L>v"4ÂGsi׉2‹Lâ©å|ñ~ùöݯ—£¦×VeçžæŸŸ>Ì«S'
+ÛÀU§eÊ!/„FÍH֋ÖÛH‚8É%¥îŸÀ*ë­ÌaäQ’oèíBî:G­¯{Ó¤Wã6çÎnCªñ“è`0kŽquè=€Ï-hHÕςن¬4Ì##ñ߬k”çøFÐÛq_ê?]Þ;˜"-m±£ø4lè\“+l¿aûßL‘Æb«Î¥uÏFk&$ÂýsD®NÚÛ|iÙ$ù,,áVäiº(ˆ¨yQU‰Ä€ 4®ôÑ»”ü[H€«0¿[áQäXwº«Ê»B*,§nÞ1Ãé‹Ò›«Ë4
SÈ0‰÷ìW•K쵁­2–	¹ê ?D™ZC©xh«êgÁc„Nâ[±ö…‡.#¸?po±øª°‰ÊaGäÃ~“c…_âߥè´aÕ¹Vq|ÝE^X¡-ØÔà{ǵʯq·òcuó=ð&EäüeÐGC͙âBí©bKGcȓÆ*G/ÀIL¾]ÆïÈdÊ¯¾ƒ’­ÞÁh:»ð8­k"òY]ì”á–#{\֗`¹”òP%Êý[†md.µHSG±*®=9TPؚ¨7¨×KªfVC«ÎÏ«N™Dw?•˜ÊŽZ¿ K«ÖQ~â@ȑ¡«¦}ÿa>Þ~xŒxâ*ð :hx^½£®jh†a%e2ç>t¡Ô³'®gÏ
7}s†ðNR'ˆE¼Õ%—¿2
G »°W%˜-­LET~ôD~M‘½ŽAuâ«îhÁ•a•J™J‘©ˆ'†„µ8ÏK+MÝBê¡ÿ((ãò°y´R?Ñvû…Zpš¼Ê3÷¦yb±s”Å™Xä þ«:¿ÅrGàp‰c¼äXNZJP1q1Q2…å/DZÒ;3Dìty¤¶W¤"É_÷Bj
à	êÒN"ÏMËü¶yãÁGŒÁ™Qº%›)€NjxZ,˜OÏóG&ˆ¦
ŠôGʚ’
+¡[÷‰¾´aŸÊ‹oVÔîXË3Ý{V7ç9üÃ‚>ŽvIu=ô†Þˆ&ŠtNñÌÞX™QaQˆ»Q¡LòµrßÃ9{™¤ÛšÝ
+[©ÎÄëy\KC·:ÌÙaåcV{ð€6W;ƒÁ@Õ¹‚§eÃ¯j£ânY²³¸ò5­ÂZE¢ÿ0­ÞIüߦ#|­Á[^ÔYÌßÌáY+jp¯Â’*˜#IZ{õñÞdÈï1ÿ´þǓ±7	¦îåg6$]o—­ßZ
?ÖLeendstream
+endobj
+1298 0 obj<</Type/Page/Parent 1099 0 R/Contents 1299 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 796 0 R>>endobj
+1299 0 obj<</Filter/FlateDecode/Length 1748      >>stream
+x
½X]“Ó6}ß_qgû:‰Éǒd™Ù‡íRÚÎ,%a ÓôA±åD`KA’òï{®dçÃ@‡N;»$‘¬ûuÎ=Wùx1 >þh2¤Ñ˜Òò¢Ÿôi<½N®èj:Áë!~¬¤œ°•
ø×ë_ÂÖ'£A2¦’Æ×Ʉ⛂f'oKô¯’éÉ"›õù𖉟揟_Ó`Bó^ÇOðÜ<Vû4O;ƒ«d’ÐL¦•U~OBgäD¹·ij*íÍßã€+â
½áÎͳÎ|-ƒÀßRåÆX/´§QÚ;ò!–²\JK»µÔ”)—VÎ)½"¿–äƒ&?³GR{«¤#¥y›ïSo0J†l4SV¦ÞØ}ý×~!Ͻá	ƞ¹•öÜí|áS·p¶‹ò•pnglFƒö‡wÂcײò’¶¢¨à„ÁQH	UZêÔî7^ftÿìöÜG(F×n¤µ½I2åêËÅp<¡s'Ãâ!”/º)ŠÂìHÝY‰TNڐ˭’»çû7¹ÖÔµ7œ&ƒëcQ\'iÓdi->ÅN),yùɓüX)ä	Ã`“"QKÉ>g\~@Î-NÎ:ÇB;åצò”I«¶5Z56V­”˜r¨‹^¹„ž£`¥
è”΍-…GÿØ@&½PŠ–Óý‹Çó¶ÿ]  ‡ð
ۃÕsþÙjw(ÐÏw¯ÿx5ÿíå¥kÒP)^á‘dû3¦Mïחoç/{w¦(€Ô"8¶ç<#ۇgre?’A9WÉnX¹,2±!çŠKrå2IÎ¥„'ˆ5UÑð…`.j§Ai
ÐVnÉ'5`;ºAãZƒ‰ÎâjÖðµ6z[Ï
A¹Àk8æ"­y}`(‚²`OBo™ýñ xør#53¨å·Äø@—”'å`[ÀŽa脜4ÿϼ°~~?‹\¥Î:ÀEDÄæA›B¤2à
g	ýB<©±‘ÍT8d}oªq€ÍèU±-ËTV¬" ÑÁDph
÷ýëSšçŸå4ðò&ðCø!§fFk¼IMÁyÈä=$ʸ%æbԀãÍÛ²ñy"úÕì¸v[ùf¼6¥ B-­°{r^ߪtwÕ&TD¾™¬%àomk´íÐÂQ÷Ԕe¥œd6.¥ßI”<-·†–á /
®‰9|™†¨Q‡{ÎE.|°Å±Ç©P.Fkçã(·¦¤µöœk71^oùÄÉ8à6¡9×·nf™Ñ|pƒî´6;~w{wÏõˆå…~yì¸Bl²ÀÕ¸pàÒÓfãu#£WQ­~øbÓg'"çcëÏô%‰4…Ît	’è=q)÷ì’,ÜAûAÑ;q3çˆeÌÝU®{”¸&òúâ?K ]ß\¦ú&t0ºeééšêf#ͦÝ,½
‘”~oÂkcW—´Ã°Ðv 9ìG.NX<<z£ Î7¦I­¡™*†}]TX;?|¾6œí$³|Ž›-æ
@‰Â]!vçcéŽæU‰å;"ŽÙkW2òôöáÅíÃ\ƒqo¹‘Y)Á#(TF‘±tX´GÇ2‘°[‹VN¢©F=ݬå'/U%Ä/*^ ÈãççóE3Œ
ãˆÑHÍyُYì<
1´’š ¾Ù:ñ¸Ëÿáÿf—Ýçg²5…Âî˜3å
+‰õªä7uï@ßR]p=éG…bfÅ"6iê|µºaimþZOtä)ÚñX²ªûÿV?0Ú?/ĪE„³ËÐrã–m-¦vC°Ú}¬x>GsO?HÌ
+þu!÷0œÏ#>卍“ˆ\•®ÁohÑáƺxÔ¥·‹†æ."˜?y·èhôäfN”Ÿ6**0/r«¶ÀÌd3[<úoÙ(ÌÊè9jËsl­õ„0´.2,ƒ~Wžgqû9…Ú#zŒó-æùw5ùA¥¾·MÐìN軵Ыï—[}Q9ÿ­®M)ŸáæñyœŽÅ(ç‹g˜xÒsㆢîÖ
+tÀ‹39oxópØ{ôúú¹@¸püÙõ„Qܲ²ÓsKÄϦãõØÊ7º|÷2.ÙïXÏØjíP­hñ°èTB¯ë»
ýwb–Ÿ»܉Ö/áws‹¨í5÷‹Eç	fþSú3oÐâö]ë‹nôæD¦õD4M“éõß;ã
~vûâ§[ze
‹5=3iU6’<Œñ%ÆtD½É0ô¾ž¸šà+Œñ4Þ»¯G|ÌÏó‹ß/þ[1X…endstream
+endobj
+1300 0 obj<</Type/Page/Parent 1099 0 R/Contents 1301 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 799 0 R>>endobj
+1301 0 obj<</Filter/FlateDecode/Length 1657      >>stream
+x
µXmOÛHþί!U—Jĵ÷H|I(Håè•Tíér6ö&18ޜ×nàßß3»v^LÚ½€Æޝ™}æ™gÆüu⑋o:>5Ú¬N\ÇÅþðøãÓ{¾CÍnŸ+òܦÓ)þŠéÎ<ó{
§‰{¬ðñ“JšŸ\LNÞ]†G“9[nw;4	a—&AMi´Î>Šlùvr¥Íbi­O“¥¤ÝcZ§j-Óì‰ôZÑ<’š2¬Xc+©¹¹ÎµLÑ«…JŠ­gäoFøŸ‘JًKu¯áøˆ£æ\&4béXwY%
+DB3IIÇö¾qi)YôMR¦ŒÃDf…³¥Ha㓜˴|xºÇiÅñZ¤b%3¬ŽcJ¯fN ’ù´Öš¾¥"X‹T)­ Œ\®à]%Ž…*( ªwœ®G~àãDS¿Ý!» „Ý<¯7zN›G>ðQÈwÐ
+lqÎØb+c0¾‰8—%V EÚxFIDLb¦UœgòÙé³%gë>ÿ:4®ŽƒÇÀŸâùëÀªxûÏ CŽ®ÔÊæS—x0ŠRd*}z	Yy…Ûœhæ3CmHW9„E¶„ÛRózNÆmʔDF´ÌH$á^…
+ÍÃXfàڙ]¾õ©—*C¦ºÉ{¬ïƒ¿ÇÿU®3»´ß¨ôa›»²þ˜¡4ÅÎðM¦øÍe1nOy”9•ƒòÑ
+çùõœøi
•õñÝjùN—ˆ3ôÇי©Fÿ€

-.í"gE¡äi*“,~¢<‰ðhCPÂ¥j¥QøÌ+s'J2¹€ßT®S©áÌXf§(⭆E!V°¦4­}ºMßþ‹Öi´éÓûTåëëÑÑè~à¸±°B6SÞ4a-J^¬²wÔý®ãõ¨^J"7’•¸Wi„îa[…æÆQˆŠ&”T™A^h³”	݉ÕLpM!“Ü®èãhÈûQTj% ÛÓZº'øb¥k¦4Õm³16ë0R¿ºý2¹=\ovb}ÍH~(3ÅQ¡d7ÜQ¸7D‹‘ÚÐl@uÙx†*ÉRÇ(½·Ç4dŽgjÃǙ«â›A­gPç=4ä‹1ˆÐU™RšqÊ“ŒÀh[d›­aµÝ™¨¤ʹÈãÌvÝçáÝosp /K£m[%çw“Àk¨phÃ4ä]ãû'alõö5Q!$ø?ÂïÐå³QG>ŠÕ:–èÍZçh=“ÁÝÕdüþ–– R’Í$x¿¥Y¸£<·”l)2{äV9¡s–écçFöß|˜NßävYYŒ5ÚÍ·ö
+
\‰°%eº2­ÔÊI¨jǎi_¸:…i“”`„
+ét&ƒ‡§S†B;šÙ=3$¶–ü2p;—qÜU…`GՀåã ÀŒs+±›No‡Ð‰MµØ
a—Z’‘Æ‹!ÏPŒÓ<
+ύ™3•Ÿ¯¥â$…Á¹©<¾Péâ”ϱ¹pa]©DŸ=³%ÉbUV4
+U(Ô,``H*Ž9`ۚŠñùÅ0m¥“Òhf‘Éu,ŒÁV¡6¹‘Õ
”33üí´žm²*mDžRpì¤owÀ£FædLÁ&M˜–Ùz©AӚtŽÉÔÍíÅïE–¶ý­G^Bæ,͍¦š½¦ÓshlK„>Œ®/i±ã—ÌāZœJ‚Ê߱£õ1ì4–óA<'q¤ÆäVU£$ˆsQ¾ìqk¥£ÇRfÕìcd£PŽòT¯Ø/“>1q¹Ô™YzŸ:HC”Ü+C#°§„×µóK‚×-­Xاn§;êº^³í¶‡£ßkw:ƒfs|9ð­Æå°Sٺބ7˜‡|!ûä{ÍN³Ûh7Ÿ­;˜úäù®W1¯vQ´Z~Ïõ݆w1{ð>5.šÖEËkºÍñ¸²Q|:»“,»øîô<¿YYdŠ|­¦[ydñ|Ÿ%–eª
+øöÉ\±ðj>·æ¿‹‚‚ì2ݧ?>¥òëϊ1Žô§¶0òá°=×mWvŒ¡Hʌ˜£î¦Qæ¦yé{ÎÌÄRÒ¶tæ8øžÎPR¦–?w€ïQT¾€¤HÍëÇÏXúî²[ˆ´×Æ¿º
j÷<ß
n.ô1U\wt°b¼e<êåòzÇ7Sá«ëDv:í.4
Þz†LãÉÉo'Íâ)endstream
+endobj
+1302 0 obj<</Type/Page/Parent 1099 0 R/Contents 1303 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 802 0 R>>endobj
+1303 0 obj<</Filter/FlateDecode/Length 651       >>stream
+x
…TKoÓ@¾çW̱âì+~äDž‰Òҁ6öÆqj{Íz­ÿY'¡Âê•-¯æ›÷|óu@à¡0à>$å€x„Ï<Dà?Ã×(Ø:
B݇ºÏýõ€qâ (ñ”ÀI䅧[
ëÎG¢ohF+Ä[tí‡ø“v†	ÄÉU¡3]Åy©&@^Äû
!:s•æM]ÈÃ[é„×ÊÈ"…¹4V™°(ïdÓ<j“N`<fa„ÓÙr±Œ–«étÁg‚gc*ˆX.{ªµÉKi×F·õëÅ(#´ћ½Jì¼@¨u“›&‰n+û?\#ˍ¼Œ“IbW…ÌÐÚ§÷áü|é™kežÒú‘˜CmÎê¦öáýÃw,[_!Çô³äRÚ<}ۖe&Ò¯sR=S^åÕz§Šb£M^6²Ùõœ»6n·Ç>2*r_=Pöý+Š‡<yxÞDý˜¾‘]+‹½"x‚DzçǸJЙît©¹ÁvjsÀdÜ}d1«2=º\;ô8—Õ|'«ìŒ¢ô¦mìYüÏÔ+ûÔË0!¡Â'þ|1e‘S!pT)óÕ¼«Úh

Ž”ráè@…‡Ì€¹.KUÙÆå<Z	 ô„b
’qw…’‚RæÈ¢€ä¤€´Î¤Ió*»Ëxuû!¾{£?Én2¸‚½2æð²dO›¬«ñoX·̃ØKuÒvaÁ£l¹b¡­SiUzö€¼æs
µ-°…‚µã	.æqŒ¯‹ÜûLÇÇäÂSrÔÇÍràŒ7Ãzz3›ÂÑŽ™°8ù–6וÓž†
Ã%s±t8¢^à‡¸‘Pu—ñàÝàAthendstream
+endobj
+1304 0 obj<</Type/Page/Parent 1099 0 R/Contents 1305 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1305 0 obj<</Filter/FlateDecode/Length 1018      >>stream
+x
•U]oÛF|ׯX •Š&©OèƒcÙµ‘4N%E

ʼn<’W‘w̑”àßÙ#)EŽR´°ÙäÞîìÌìޗA@>~š‡4žQT|ϧÉ<ð¦4YÌñwˆ•”¸ãÙÄ/½>w~âÍzpýpC¡OëEfó­cB
O¢á]&ÊZZ
+¦}ª”N©ÅVЙªÎè6ªÕ^.••QmìËÕúïO£p‚,ê)Kck~vý0¡ hkŒÂâý:SáWÐçû՟´zþôë#¥Š%Ն*Y×\°)©Î$EµR×´¾7{Yl
*ôý`sE¥•#‘—™ ½´•2šLB{˜¢`ÜÖt wÒâ¼Aå©u­"Qó9‘
+¥«€þP:6‡
+|z»¼óh
¥5‘Œ++ÊUU˘2	Ú>¹ÚÉü…aG™Ð)V¯
+»Z‹å^榬¼ž«™çØú d„Ì/¦!-‘{+ƒÌüÿV¦JÿÌñ7‡àwî-ð
P™
¤YÐ§fž?›:)z:ÈXÊT
+àß1ÄߞÖt¤§ƒZ0ï¹ÚZan†ʃæJä9%ÖN#±…4T™Ær'¨ÔT`‚JíD*7W-™TE,rng¯ôʜ
+’jSÓÁØÝe˜Ï¥Ôz6Ï!º3lë`Ζu¬§=k°sàÑS‹ŸMÆ­[ù¥ãoE€–r«„f°çž{3&öYw'á`‚žN›˜<7.ÒñP]Výïìv:é3Nò¹ Ó¶8þµ±ð?6¶’ñ£¸0œ§ÆÚpƒ-¤Ð­9«Ì49¬/ µ€/¤¨êË9Ô¬!lâæk3dFwJ«zsu¹I°Àã¸\i„¦nÏ|/Ü9ñ[	6OÏcdŠR!Aښ³µd›¤wÃi†&?Ž•ƒñX4 Ö±°ñ™¿¤Þ+k4{­weØ
ï{Scieà§ÙôÀÀ>æáíB¡;~"ÔpˆñÒÎ<ª§Òå(°Äº[†¯¼ŒOڅ
=ºsÊvá}צO	÷ýæ;MCe€WŽxsÓíDô£1E»r
T9Š"£•b’)™º^ÏnюF¼jGì_–O«×„Ý&|­°\¶Ñ«ÏUˆØ笎M¥£¼‰åuàeYó’fw¸=Œp6¨sàõƒO7ý%Ó±ôC,„Òãíçû¿Þ®ÞL)è‘ú_vó·T\Äù¸»a‹ª¦ØÈJÿèTúy¬b'9ª9UA6zÿjoÂÒNƒ<åé±GïŒÙ±]¹Á:2ÔrÛ
+º8ݝc¬tÞjñÿ¾šÁêñ:žÌ'Þ|¶À…D73®r¿ü>ølN•6endstream
+endobj
+1306 0 obj<</Type/Page/Parent 1099 0 R/Contents 1307 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1307 0 obj<</Filter/FlateDecode/Length 1381      >>stream
+x
VkoÛ6ýž_q‘/K‹X~į0·q±¢M›Ù.†bÙJb,Ö©’T\cØß¹¤œ¤N:4AŒÈ"ïóœsï×£>õðۧɀÎƔUG½¤G£^ŸÃéŸüYI·áE:LÆϽ8'ƒÃï_­Žºo†ÔïÓê>ÆÓ	­r‚ý^Vىi<m‹	Ó­úFÊ'/V_ŽzÔŒ“!Žž¬
+©)3U­JŽ)í¼(KZŠ*$5®eBŸMCUã<žqÐS)|°MYš­Òk:#S{e´#¥ÉUi’}{Á»oztcì†Ñ5!gQVô+}þøi‘¼›/^Í—Éb>{ՆÙï%S“H䎜´wÒâÂÎ46ÙH›Jk\¿~rÃɬ±Êïp~v¹|òZêÌîjOµpnk,Ìît1ڇ’¢RÀÒ[•ùrG®–bƒdO9ʄ&S©Xˆ˜ŽU¬äþ}(˜¦·×È!·Ò9T̆Ê=ä”Ð[¯P×L8¹õ
gß¡[…®ˆÆ›N.½Ì‚K'ûÉmÊ
½ÔÆ¿$-eN‚;’d”ò”DéÓ¬À¶Fÿâù†Ð;*„­"nCv…¸“d´ä`u‹ˆFz¢H
o薡“ŠlÃÚØJ”÷Fûچpþ¦ÌÑʬTR{‡ôI~«cV(ÃJ¤Þ­üÚ(‹4öÈbÿõÉ
+¡×’œ1hG¤[Iké)•ÞÇȼ‚¥f2oìàôrm#5”¯ûæœú 3¨sÖ¢³?J†	-¥oê7êJŸu76T?…ɬ„¢Jiř3üÕº‰®B×ïï“rÿC
+?@¹¿÷éÞsžcàûÏ3'ÙÒ&Ï~–4Dÿ>M-&&Áw&^›¥;à†i/茘>-狳«ùoÂÇ
JU`¹LìI‡2 ?™¬½Ì÷Á·¨‡y†ÁŸJXÍÞ]¾>Äú‡«ù­p(2/ÈS*©©ki™G‡˜¢t&
+™Ô߸ÌD€5¨TîòÒJc6@ÅÁ<â°	±!.šÁèi8Áì?H$dídº7Ü­Dí˜'!n©àÀ³ÑŒô©2Ž‚˜À;GèæDÉ$<Æùðv‹‹ zQ	¥|ïEVÈüæshø/­þï$í9QÒÁº¶	¡¾‡ÕäÂc(ÆÅV [†Ú’¢Å€1iµ.<÷ï!€¨o`ÇïpÁƒ(DÍ@úq‰qù 3…ÛúQ• !Q´ò hÌÿGîaYIòÅ/
ÚÒd ©´ÖØã(8„P¿Ú! gs‡/V:>¿:¤·G€z]‹ïÂŒ
+ǖbܷQ59oE(
œ9/k¡‹[HÿÆ3ía
Â
S
®à7íú‘´zÄ|DÏÿ&Jefí¹Ô×ŠÎ ·K¦G$;Ø
êò6À³š]ðsƒÉf.’jeYØT!UTuOzÎ,”6"úx–³`r= ÏÇAhmÌ¡ d…Q™¼y‘0åâ§î·p-	䯔sP÷½Ÿ8@k«î8ã‡Aps–TÙãÁÛèV•GíNu ãåã~X&ÌlRqvôãfƒÙ1Jú	]„Á“1`¬]-Æ÷ÛÊÊã8®¸  ¡¼‹U¼®a€cb4:?þ¾Ø ;ýV"£ê)-Tyºt°Ël°Âñt£Åõ×`!óßÑ!·Î*‡öã­nãlw nªô)ÆèÃ^mا9mÃîŸaožaÕä5•·“ÙÕ«][ó…Ç÷¥Éš
+¬þ9òNŒ:“
vÒüä'ëp2L&ã)Æ1ΟOØÌ|uôÇÑÖó…’endstream
+endobj
+1308 0 obj<</Type/Page/Parent 1099 0 R/Contents 1309 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F5 8 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1309 0 obj<</Filter/FlateDecode/Length 815       >>stream
+x
…UaÚFýίåK¹*¸s6ù݉ԗ¦:ªªÒiYñ{×Ù]‡Þ¿ÏÛµ¹‰T`ð̛7ïÍ,_')ÍñL©XP–“l'ódNy–'9-W®xY¦*Þ¸]®’ÅÏn,‹q?ÉȊ4Y^߸ßL~û¸¤4¥MÊ櫂6%¡ô|N9õ5S'|M½öª¡ÓScö¤4‰½Àûvj,™Žñ4ɳm•ÍöæfóÐù=ö,Í@ySNßÜ­ŸÈõ]g¬'m<IÓvªá¸o†¼3J¯iO¢Ý	j{çiÇPB]©}o‘·ZnÍ7Rø-‘BÖ¼½!¡Ë8Âo§­8 ¨a
ÂMƒzÎã3DV Nh7ԟÍÿ#{`»ck5jç"`Í¢d‹k˜1p™¼ßQ
+
+ŠýfKŽ~ÓÛ$Ohà 
-9¶ßP̱ï»ËvQwQÀp$ý$ý[éÒ-‚²Q¬=yû2$ݎÚN¡¼§Þ1ýJ[<x|Ö`x‰?MèXèjÓ7ePfî£îtTpùµÙðÍô>dŸi¡™K¥÷ä
´9‚`'œ;[&ô{õ”£J¨Æ!5Ù^_3=4
+*x%ìÝÜÖªŒ#¶G?bŒ¢
+Æphë=­
;R×Ôj
÷á*kiŽ/“©hýáiöpÿ0{\ßÒû¡âÉ$tvfQ1Xú‹Z¸v7(~IóÒ¢èç0˜£«°'èa±¸ˆ&FÿÆ´ócVïBÝגqÎNfÄÑ:sá/8}é`}/š·´ë=¹Ž¥ªÀ‚ÍØL¯L¤!kcwÂ$Ñ‹`„WÓ{)Ì*¡OÆó•]g:„‘Šk)k¡÷°¡ÄŸ­ðhö4"$<añ`¿ÑAqáÖ§zĒ–…çÈÞª}í/íŒBÝ|Ø«ãâ@%¦Aÿ‚Æ™Û+„çS³És_vQÒç¦]òìe‡²¡Œ²Tr%úÆ;Z©v2¡Gñ‚å¨Ô¿q7œé|Tè òàƑZ»˜æ8©WeY‘¬Â?Ý=ÞßÑgk¾°ô˜]Ù·=Š`g§„Y±ÀûÿgŲX&E¾Â?‚ß­ƇÍäÏÉwæLæendstream
+endobj
+1310 0 obj<</Type/Page/Parent 1099 0 R/Contents 1311 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1311 0 obj<</Filter/FlateDecode/Length 1602      >>stream
+x
WMSãF½ó+º¸UF؆`vo°›­â°fS8•CH¥FÒȚ¬4£ÌHxýïóºGFì&)
+0h¦?^¿~ÝúûhAs|-hµ¤ËkÊê£y2§«›ëä?Wø¼Ä·×TȃÅ|•ÜLÜmŽ.>½£åœ6l]¯nh“ìÌñŸìôC©šV{Z\'t_7Þ=ëœRïvÁØ-KAÕ©:Ûü%V«håüò*YÂÎ)®-zxÖþÙè¹b¼¯\ÑbÑ_Y®5®<~¾#«Ûó_Ù»4¹¤¨ÖY©¬	5¥{ڕ&+)«Œ¶m LYRY¦Ÿ«LhÙU­²ÒX\E˜j°9#‰vNç‹Ëcp癪*äu,‰i1pœÐ¦4!˜m•±áÅd[ª– õZå{jÀ©0•&eó纱-Αə¶Ôž3?p?F¹3-Â%bå:„ßRî`Àº©dU—ë—@"ˆÄž´”uÚjO*Eˆ*w"kUø’‰ó
œ$MH¸ÔêÙÀB¸Ò°TUÄ5é¡N胳…Ùv^µÆYƙŸŽ”(U Tk˅C5NeT¸iÖÁ՚™;ìȇüÚ!3æ¹ËºyÑ.¯“+¦ÆÝÀ»APë‡
1KÈdÌy\ÕIT…w5­u{wÿð(þû/¤òÇÐ!-:›ñ¥	4™–°Lè× 9OE¿Ý¯<*³-Ž¹ñæ+ƒ_Àõ \‚yb‚?5q<†˜D(Ú
æj×jxß24C9„U)“sôÀXüÙî
²x®ê$„å6aØR=ñÙwY,¸Ý“c¢¢á8à'ðJ]X5û]*„~_&4Ö)tMã<³öP'¾×ôÂëvTt í/‚J}ɹzªŠð„áH$©­ÓœÛŽ	¬ªàˆ;Ö;éjpØ5Œ
Á$o®S¨ÓNjػO§A¿üïéô§§³§³)#q£è@DtDdè¥ZM Ò0G·ÞuÈUj*Óîå¹è'WqÀ*w5W³r[D<	—3™7
$™2^êY™Š»=¡Gþñáóíý:i¿µb½v¨C€	¯üKf£ÊúôúK}bR•·	ö’i#„ƒtI¯f(…{YšqwN2«ÞÂÇåâv‚nÔð¡ÙÆDÈç}41²Ãî6|fe®¢5 ¥ÞOÜ×
+Õ0Ìî@˦g¬¼øüª¿Y÷S´G$´”tï:?z„š½Š)Âkîb
÷(”®«riÊ Û^‘u~
û”Ob…WhÌ(Ê|œ}½¡B¬÷
+hLÆ·°Îˆ#ª;žžM¨1¶©TÀÎY=Ðf€GF‚Ï&¨z½U>¯x*CDv¥Fœ¾u½™õÙr“Œ’#º…ï\
+ý2À EêGëáß_ ]à>žÜã<· Ò±b>£´C©¥Ú<e­æUByì¡Ñ™)ï2‡Ê†k:׌&´ÞÜ>ÊjòÆ»PæÕY°Žù†èP+ÎPI¿‹4jûl¼³,ýQN&n‘[n̮ǹË%fŽ2eFG'áÕhËT%Êè ýõfeâ˜Î#I^ûOŸL#NI.òQ¶#‡ü1-éÆÑí1LÖKýœÕqîúΎ»Ð©*VUôg83d~<rö¸ogÃ8à¬'à0Ú¼Û8åù]QÔ(;WL£ãBæw«¬<˜sƒçØÖñP_x¸Œû¤iƒ®0šÐ$cò\q°”{)t)veԈ©;!Æْž‰£eMª@r±~ÒY
턚Î7Ò{x±ˑfÖá<3’iYÖng|qâTSu3£ã~gìGy}¯Xc±(ª­Ä~´Q\&ô%.“;û½øôUâ¾ ^.‘,d‚—<^Œ…,ˆÝRéwNS6
	ã覔ºjD[¯²¯0°‹+y¿ÎbÄAå:í¶“Ü+&ŠZЉ.V*ýkoÃh§[ž«(_?8Š~m¶y‘b@p@{ì:-æxN:Nöš¡œ¶¥¼|ôï2q&¹Š[ôŧ›—W­Ëy|óùÿ/wW««du}ƒD¬áïÞqâ?oŽ~9ú7ýÐÇendstream
+endobj
+1312 0 obj<</Type/Page/Parent 1099 0 R/Contents 1313 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1313 0 obj<</Filter/FlateDecode/Length 1740      >>stream
+x
­WÛnÛF}÷WŒ•Ie[²óRøÄq][m^+r)mLrîR‚|ÎI™bâ¦(Ê8/»;3gΜ}=h„
MÇt2¡0=
Gt6:Nèô|Šû1þšbù0>ýÁ‡«ÙÁñ‡S
+šÅ8kr>¥YD8g4¢YØ»·^“_)O&&ã)²Úe¿zÚØâ™b[Ð֖},Ðߑ[Ù2‰Èy“$´Ð¤	¶[òۜÑät±Öe*ÅGGs\O·Ý>’ÉŽf_F4N†cøЋM¢S•©%֋ìëÌãQeµ?×f#ãòDmÅPbœ'“Z+“ˆn¥
+통•ñdxÊVž,<ɵÍáhlpg²%ÅØèD¨J'Îo=ǾRë*˜eb*¡Ãe©aL…¡-3ˆ=Ǭh­5ïÃMx:ÕéBbºŒÍÝÃõ/Ú,Ó¡76Ã;|à8œ|®ü'ãØ
AOìö
¿*d -áŠxØؗUlk_Ÿ0.gq%V°«a
l´ÔÞ3(ã=r½¨@΋§Œ³·–­-åª@r‘%GƒFH)¾Dnci–.¢Ž?&Cþµ†?Òl…(}aÂgXfpˆ³àrjNŠßh¸Á¨Ù\Àbü¸3Oóž^¾§A4ÆÑÎk±íADãùQ¿c^6¿ZásW‚ëà¾6à†t¯7ò:ä±Uqƒ“Ù
ØRPjñ˜g‹¸‹©ÄƒõQtì‚k*
+“î)+E ªë“³p§â;!n8`’i˜i騛ÂC‚uRµ¤&Au&…Œ(3‹V½ºÐ˜…©rτê¾{ ÚNĦ° À¼çršØèn7Ư$	‡†Ë4æ\6	B$.]H‚çGŒÃñ‡
+ 6,;ƒ“Óª”吮šTaa#W.à”«v½ŠÕ`<…Ò¡ˆ?7†h ÅÙyRéBQ0¼ÓyO%ùJ³ZصžÕVP¡s©Ì#å5Hd!2"<¸2Ïm!pu²Wè<1¡úÁ çŸvÏqZ@"Uȏ°(´҈”WäuUÁŠ€»rB…+£EhÌN´íúpµLDڅ…Y€+ð=fýá
+Šµò%(YæÌ£Èıu</àbÞ۔ÿŒ÷êý@„*(»Œf×ÇàCÐÀèaÃY¤Hså1€Ð†Â–"²¹Í\!;²uô…Šc")ÜDDÂ8øÍ
+ˆŒBŽ ŸïîŸ`ˆ;kÄÞ ΰãn°Š[Ó½öWw¿?I³qߕ|’Ø
+Z{£×¢<ÜÊ\R%_ÐÏDy`dy«¦\áôµÔŖI‡šêzi„¶­¾†ÄÈ1k£v'¶?o ^á3â†n
+傓){Ô92jdŸ!(€Ös¼ªmõÚ™‹ž}×±*Gþ—Ñ7>cû.‡àWaSñNâgD×:¦…¯©šX/êeÒ!8±§hÃSK}kr€Ú¤î·<5ˆò¶÷+l`¹«ÎèfEÑ;ª|µT/mÈßôã¾`)Å,{öˆÓ!½Óö
+ÆÆ¡>»w¶ô³	º8ëïîïg]"k•NU¬v÷wF‹‹ ×~~—fÍPè‘r^Aü×¨O©>«7^¢ñ–*é ÂMÖ,K”+ó“þ^œ‰&áŽ"
+$ÿª6[WÿCas]x(YŸ iÀDQAóyVÇnçȦÈ('}LZƲª%­–é#ԍÇOjg¤+N”8ñϳhÜ ®[mäu¢S<T2ŽŒTê>Ï`^™LJ1<¦vÍÏ9¿ãdVÏÈÁ'ÃÙØwÂuïóáV+CȆ()‘)„Zä¹,àLMªj¢«x‘¨%÷'Ô{ęp<­¢ÿ+ø<Ø@eãWÓ,Uëƒ@HKì×Dc3*—þJ½
%ó
IˎìÝa㓐a¨¦€~•nC,K¬£÷UNFtQ'v\÷zúù5ïÝ|ºªÆVÐÑ𜳹·ï>øû²z»«æî¯ë{ÜÞ´^ß6Pýè0ziVRû¶}ßZA/ož5øoכçí¹SËeðêëÞÝÛ^½ƒWïöÖ¾ù Kßtçå1&Òæñûó»«þ2Ƈ—Çñ?àô¿y´Ðwþt^¼SãËÞ·®úíÉë+9æøÃyýë9˜à'÷ù	M.¦õoËËOW—ÉüÂC
Ë㗨.#;h6¦cü؎z?~O'çÃÉÙ3¯ø”ÛÙÁß­¬Ôõendstream
+endobj
+1314 0 obj<</Type/Page/Parent 1099 0 R/Contents 1315 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R>>/XObject<<>>>>>>endobj
+1315 0 obj<</Filter/FlateDecode/Length 1765      >>stream
+x
}X]Oã8}çWÜ7@j3ý`;ÌjµRÃ
+íRX`4/H#7q©‡4fl‡.«ýñ{®í¤©)¤´Mìûyî½Çü8ÒCú8¢ñ„òõÁìþàÃŀ>Ñý/&§øRÐ tŸõß½(\ï¾ï¼8¾ÿ~0 þpB<¤þç÷vïñQŠð²ûeûˆŸ¦2ç£oS"Ügþ~†5øqŽæšy.|Á¢øúOÏ)•Ú¼ì|>}½œß=óÒ'4†ØõGvîLWVY§ªGÒK“­•t–Ž†=õhüpL¹®*™;YÐâ•ÜF“ѵ“†ÝbÕíkúäVÒJ*4UÚѳ°–F‹"Öٌî¼\6³«_	K¿ÐZä+UIKº"åzÑ¿>i_·/ÆɋŒ¦ÖÖkIKmØZ뵬¾
+G¢,ƒm‰êV©0’]\ªÇÚÀG§i!IU^ºÑæé>?ÃaÖ`Õú¹T¹r
+&[ñ$Ž3º
+>Ð|øíŒýv•MwtÁ½s½Pv…0IC3£7ŸGJfˆmÌÏuY
+'½E*VP‰¤ÙÖßÖÂK€§Dµ²]O¡±APø¢*š`‘FMxz"#a
Ö`¡24—nvy}Gâea´[¥š]ŸŒ&Ù	§~jmpg'­lõsd	à)`Ô»ºA
+!þ|p@Ï¥È%‡]"
ŒdF[);"¾[ÄxˆDí!wmöB•&Q/_…É«1õ¥0&õñ©Ò›ŠR碄ÿ>˜­gȈì³0Nåu)€;_CY0“KC@Bñ"*'±‰V˜Uq]c!GcŸ¢®Ÿ¼€D¬t>ÿÞÎ4‘×{¢Nh"JÛÛ¦6Tã›bÓË%`dW°±ŒE•{
øˆGè ð¥7^'™^oqnDdtÿ·=Pb‘z™Kõâ‹Éj5s”z’
Itc‡6Eƒ¶¥ÈcÇáh7B8[óDã[†\ü;ÈAôC¢¹‘á—ft¡Mb‚c9h±p-°Ûó+àÃ{aoÂmµ¯Æ¶}HÐQìN0#QÎö§`€‰¡#z~û{ØóÆƕì>Z£U…ä6|(j·ÒF9ᐕC_ÿ±•Ç.£\bOÌ ¥%"ÜÛ4ƐCÇBæ¢F†EdEV~´½–÷Fb¢|]#™Û€ùÁÑxö³
+dt¹Uí³/èÐȑšGÝ!Ú²Z*±(#­®M.›ˆã½êÏж›ÚƒÜP4{kø“ ƒ,0Íi³Bœ‰•„ÞÓ
ŸÅÈ}I›)Oú¯Pˆ½+_C(.Ðàڃ¹ã¬Vºêïf¶ñ§\EÈÓ³V~„7à‹#¯Ôú‰[Ó3““2T=+鞥W]cr×eÁFñ<ÇÓô¥$y•T«…6+­RK¿—ÁblDWDˆn+n2k°Ïñl0xYf‡œöG'aÐÝê³åd³0ÂãÈ'úuÔ9g`£Û-»ÄÏyA²'èn7y*²ýÉscŠi6ü6ó÷3?÷÷ÏQÖh˜yZd¶›SÝùͲÀ_ýeméÆ®”qg“ÖÎÅ;Apý¥`Eäª:+ö¨n!Òt…ÐÌC¯³s”©‡Ü´uŽ¾ÔEn4詨^›.·¦Pœë
ÉÄÜ´ás#fd5ÂfÀ“M”Ópo¯„OÆˆf®†©ß¤1Ös(:+MöµÊWFWê_t¯SžcetéÀ¸1-}ŀÿ¨¥y¼CîŽ8? ê‘YÐåM¢WZÂb­ÎbWxÞ§y‡ÞÑ×ëÛ?ÿ¸½þróûpö[ì«Ìûhƒ@4¼0œÐP…HtíÒÔ0CÆ1qô
+wxé6Þ#+	1ÍÖu
+èqÊä*ÌÒÆ©È#ŸIÔCª“eééo™
+·’½™DügxpZAü­¬
+¿ˆ„~ZUº†]þ8ò,ò'P+8 èËù
:œq4Ÿ¢±ðŸMèÅÙa›÷@¦¹-RêS A²&$çÎ3øÏU½
”eÌJðŠ]ÙKä<Ä`0Ko‹(œÇsÊÄa?12òñfáE8Â$Qm§1/¹òüv_4 Ãæ+YÔ%`œ2¬m ÀPrFà˜³¨
–ÊÑwôÉEOhÂ8]òÁda؉¤
…F=óþN=¥‡4?fJ…£Å¯ìý‡‹ÓxrN>fƒÓ1M>ùs7½šMéÆèï€sŽc(ø8[ËûúÍòþÇþEQ
qúÉÂ1Ïg/´¢ØxÇÉä4›ü2Â7xõÀ˜?ßü}ð?†ðcRendstream
+endobj
+1316 0 obj<</Type/Page/Parent 1099 0 R/Contents 1317 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R>>/XObject<<>>>>>>endobj
+1317 0 obj<</Filter/FlateDecode/Length 913       >>stream
+x
íWKoÛ0¾çWð˜±ëGçd»åў¶bÃìR P¥ÖšH›$'è~ýHɎR#ÃÚî2`u™VLò£D}¤ôRHð—Â(ƒ¼€rכ.z×	¼ƒÅÿ(Æ(¬!‰“$EÙÿR¯$·®©VÃá#3–kœþ Œ,¾õˆÒ$£r?rWP
?ь8ORGÇûIƒÒMºœ…'|žiœºqæƹ¯†Ð±vªxV¾É–“Ûþ›Û
È–Ó Î‚8wbc9Kã‚bó8³`”ÔÃâDËÞ¨	g¶œ?FÛ"Áƒxė.=>´Ÿ.¯~5ànòå<<!ÔÜAÍݒæK‚Šotæzϵƒ°0pŽ€mhómÅwÀ4©dÄj[)-,³b3lÇML¦.®/!M}rE™[ÉEUaà»ÒBmÈüV©{!ï@H2+4`Ö”¾Ç»¸«VJWJ­AI0.!
f°Ò!¬íçÀðŽš({¼øêJÙjØ®|g´ÞÛÑäKv”Ü>8cC‘:´Þ]`˜ðY_’ÑùňQ÷GÍeÉAm€ï¹´11ª,kÍ×°AÌ.a¤:øIãæÈßV•l;®Vî”é0ä@nû´Y·ƒ¾V\‚°`dYi%ÅOnÀ€-žÎfïÈÇZí®pÇ	š¢t‘;Žïӝ,fÇ3†¥º‹˜É5j(d†0Å0q‰â¯bæâÚgzž9å½(YD™ÆÈsÇå£h(U0°{Þäב»¢ìÒïÇOZǬoùôԟ•‰
+Z’A>â‘o(و0›ùïø°-ng—ïtҝ¥¦´<™ºŸ¿a/.`ÿ2Ÿ·l|žÏ‘â;¼`j¹BÂ6Eä„zžB롔{eCXÕk™…¼Kð×B¢ó‡¡#ųDMÌîíaQBB¥¦bЀ@^vGÄëŠèˆxv<ciS³«sš—ˊC±ÆPÁôõRŽ¡
+‘cUä\Ø©±56¬Í±‰
‰5 ¬„D§®ùNí±>QU}ìçÿj³ÁXö#vŽdïioN:ÉW6ƾÏi›µ¯l>N)ó¬ü—%é¥}ï+Ï·}û¸éÛÓb'ãŠQÑ|M>N'ðI«o¼´0We½CúÁÆ_IÊô¨UˆF~C®û)¶É1L©¥%Æb¥V{AßȓÆe1Ž‹·~~ÒÛIFsW‹ÞçÞ/ø`¿µendstream
+endobj
+1318 0 obj<</Type/Page/Parent 1099 0 R/Contents 1319 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1319 0 obj<</Filter/FlateDecode/Length 1573      >>stream
+x
WMoÛF½ëW|‰˜´$[²S4œ&|ˆâÖB‹¢èaE.ÅMH.»»´«þú¾YîJí¢AaX¶Hî|¼™÷føçdFSüÌèjNKÊêÉ4Òâb†ÏËë+|Îñk$“÷ëÉùÝ%Íf´.pdy}EëœðøtJëìôq×d¥Ñú[8¥K鞥lȕ’r]ÕP-¬“†6F?[üMN•ÎD5ºaéYUeºqªé$9M:Ë:sF›Î}·þ2™R2»HçðêJeɖº«rx$Að òþ'É*×ùpÒpl¾L/ùØ}AR!2CFwÓÏ3ÒøœS!Te}Ѕ®*ý¬šmŽá{¶ ’hh%jiIˆ¶nÙ¾4$EVÂy.ù ‘eÒZµ©$5@F›¯T±­eãB¾ŸQrø•9GØQ¶•F4Âr©j@ã¤=ƒiï!m¤Ú–ݙRkÀ«¬³>ù…‹ ÍRbø²ÏãÖ9Y·`øFfŽÿEìvý!Q_%Æ˦ÂÃáo4ÚqEŒ¬õçctÍN“£âÀø–¸ç/ãF!u³‡ù€(º"ëà/¼gܯ÷«GBã=I´’r¡¬MµóÃ•AÆ}Âc¾˜Ê½,7­í6¹ï¨³Ü&ý…DY]¡ùЏF‹<CÏÓJº÷÷Ÿ©
<@tL’”Öè
Y@ےͬªU%Uޕ‚³
_¼«%ÇKöYí»ó¢ìüî-Í@×õ^P²œ¦×L‚Ù2]¤ô(h¶¥®…­
DÀðÉü*]ò±=q=Šz#гY‰Žeúà¼jr›VkØe ÷·káa¶ÒyOHwèHh`îpÕ[e} _OòA˜´ÓÕ@yîË|à­nåÐÇdëMŠÖFC(”š¯|++€bEžáƒ
ôú}[鍨ì8‘y«Ñ]…ä{¬{qÜÓ
+ò
yêÚVGïh'}+Ã$éh‡NT¹G¶5òIéÎsr–¾MQÂRpŽhîVô+W.ÑUž­0ŸÁ”â	rØìHW9žB)¢õ¶½/ÀSf¯M «ƒ¢oAÛm·Қ{Û]»5â†r„¸¸øðüÌ·
‚
´p¹£Jrÿseqiäù½iô.Š€òãQ¨N¨H/_¨HlêO}ñjº’NŽ±?ý/ÄOOzÞ•’ž’yÅn‡,µ é÷¤AÎÞ‚ªÏ ž,Ð`1ʆiÈ¢}de<w~Ce´
+LЬ?ŸWá„[œ&¥šVŸ×·ÿ“dè} Zkô£a¥Ý?x
÷"΁‘½.¼à5#0d°oŒF-3äÆ]°§ªÊ$%¸#ûF[­G¡ä:ëxúyí‘Ì%fa…–^iÌr¯€}ñ†{‘Ö#;#ÛJe<öŸÀ
@êQÛ~Ž3#¯>i	ƒôÂOôJþddó¤À1¥[KŸTf´Õ…ƒã¢C¿ÂBÌ!tpŒ´¹mv:ÓØ4ú
+ ~ž—Xrì£#À
§2Õr:½ÁÃÀÝS´Õa«BUt®ëë
Eyõ¾’›Þ¥Ço`‘bL ž—jo"~Ãx.6Ì2ÐrØNÇ3`ä.‹[Y@õEË`¤ì™ÀÃ|ؔ‘-^θŸN^ÜKÀ@²ºÇcÞ,šG‰ï%bÛð¶ÊBm`¯t~°ÈÆ …NDa‰h˜(Ø	üv‡qþ½í¨(<´°ø
Òëúž.ÒD)7!R¨òhòžñ@«âèÁ9Ž³íþaï/tËɃQµ€NØt{ëtX]O~Änt5²ù Y%7P;Î6¹yˆÜ¬|HnŽæJTzk9ÆÈà·ñÛjí7'‘È«]fúu‚7H#Ä8@í•5€'4³“φ9~ãAûãr0ʒWK~'8¿û×ùއöŽnü~‡´þÀ_÷ÏÐ&ùê®qx;áy°ô†ûw‰a²±²ð‰5uà×·ýùÝuXIfK¼Ë]_ÐòjÑï~·ŸÞߊö…7ýCí刓x ¹šãõî[vÅËåuº\ÌñjȏO/ØÌÇõä§É?Ƥëendstream
+endobj
+1320 0 obj<</Type/Page/Parent 1099 0 R/Contents 1321 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1321 0 obj<</Filter/FlateDecode/Length 1416      >>stream
+x
ÍWËnÛFÝë+.¼©È´$Û²\4ìæ
£ˆ“Æ²hº‘C‰	9£ÌQõ÷=w”ÄH)²jmøəû<çÜË/ƒ1ð9¦ë	]L)«£dDW³‹dF—³kü>Á—‘TîÒÁùËK)-pe:»¦4'(ÍNt#©YŠßJKU©$½~ÿ˜Ò۔î^Ð㋔J…‡’l=O2­
+*ÊJ’.Ü?E=d¥ù*
‰¬)Ղ„u>Ü?<†'OÒOƒ/’	¼Ÿ–•U‘Ð}AÝâLCsÝ,Ý­>{þò*D|º.•%Û®VÚ4ôŒ6Òú1¥ÓÒ«¦ÔŠ„Ê¿cÁGøŒ~U¢–¿³<©zž÷"^—UE…(+j4ÙF˜&	'&Óä’sJ—õøj֚VÚÚrŽ2ÙL*aJm©Ð†3ujW”AbsÅÙ½¶(]B0ƒúÛP.øÑÃwz
Fą Ø\kó™Ð.Qܔ¥Êá„n®†ä›ÆõŠÿ}H©ÙÝçÞ

œˆÒ
[(ÊEkdŽ¶ö|®PƁØ5ó\×ðè±×óˤ˞c‘‡(Bü=¿Ö{±®	ç/ohT3¼Ï..};ÆÓdšÐã¶vw¡ÄŒfüæÝï¯Þ½yÿ–MïòãlrL]?ÑgtæX§ŽÖ¹+#üà2à2—=ŸCWY¡Ž¥åH¡$JÎ`óAhðrkÞ0óÒׂ^ۀƒ.OüüxŠöíRì~
+R?íye”`Ö
+zkÊZ˜M´ùðctUI3$Q5KÝ.–.E]眅:­*±±žÑ¸,íÇ'=ÇüÈ£'$Pû’‘âEŽ¼—‡ô8‘Ð(ۀNF×TéLT@®Ë<\´®5 «ËÌñ«\‡ð¥øŠ¤#ì‰Á\fåJ8‚Éc-ŒnW	 ÎéïhDLt°•;ì‡xzéÆ´$hi¿Öm•3>„BºšÍ©ó9¤V	Ö‡>´‰ž}Žøª‰Ryž60ÓóËUXi¥²¡Ü{Q†¢ÏúZ|†”¦­¤±‰m˜}!¼g%ÞŒ¤úZ­j©xÆÈý"uîë’Ç•ØC9PçEjäNhUmz	â÷äpV+T§+(±ôŠ©öy´3ìùdRr.Щ1¡qÜü¹¨ô\T½‰µ0-÷GèÏlu;ê ^q˜ìq`êíœMÖÔ°À—¨,’‘…4xÚp™9øCäqS
+ã™ôZma…øMŽJ6ºW4r»Ã±¢Ø¸@üPUFt$}$ÂǑâð~1ÂþƒYOîeØUñÀÁP°/hÉ÷c–WHºÂ62½ò-ŒËˆkKØŽ ²]öDóÛ¥iH¥ßŒüҖFö‰ö ÿn†~òÅ1¨ÑÌo'3u^ã6À:̝ÍÀW¬nÿ{5‹¢Ê÷:ÏꈕÐ-´h»CP@ó9X®H@hKn™Š›ÇÍUÆbfuCö¡WTýMb¸ûŒœkÌ74L#e]à䐀ó²ùɺñj[謠…Ö9•¹¬¢-›dÃn"i8þÜW\Ù­@/ëXÿ
+êª#àÿéϵ+wè¯Ó× ²ÑßZ …;p]á†l<$Öb1À‹†4¿W¬—%šùíhs»Žíµ,Ž”>]Rœ;Ùíí	Ï|Lޚë¸
³Hù.Ü6C'}Ñ8¡Laý
Ìo>p(c´EÉ*Î(-¿Q`[ì^a¢ÆìÆÐÅ—%ö0©Ü:Ð;—M¬„OnuèûËó,¼i§xoœ]à
ñ‚ìñöõÝ-öAý	abÌZžà؎´Û[Ïâñ³ë	^$óÓY¸/§³dz5Á¾ÎG—ø‹tðÇà˜„ɝendstream
+endobj
+1322 0 obj<</Type/Page/Parent 1099 0 R/Contents 1323 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1323 0 obj<</Filter/FlateDecode/Length 1349      >>stream
+x
½WMSãF½ó+:>AÕZkËøƒT6U6	Y+Å!ä0’FX i„×ÿ>¯gFF°E.lk¦?ß{Ýüs4¤
¾‡4õi4¡(?xŸ¼S:MñÚÇO))1üÑôõƒEpôùò”†C
+ؚ̦Ä;ƒ
ÑñUB;UÓZ<K-ÊE´NIª j-I×a!+¼•9¹Mõš*E¡43‰wt%K
+KµÕø‹{…9Ádœjfò$x<P8ò|p¼y(()UK‘ÊÓ⁽i-ܑ–UÅ'8 De™Úò;µ©RUhJm¤=d*Ùß8ñR	_è8ÖyèEªH(I3I?óÓϗ:³åéû§(!â#÷«\À¾Kðª±7ðf탡ÿàܦ”‰,KÀ¦Ò”Ég™ÑØ@Ïhˆþq#û#çpâM=Z¹úÔZp¸:ˆZÐכëùÕÒÞ}
AߟzÞu_B"Žù–íšø,KÍ}t—1l26¾Újìû›×ºBI*nÁ¹8¸OB“hÊåú~XO;Še"ê¬útèñ¶LsQîÏ窨J KTÉ	ڈ
+‘KJá.Óꍦ»S˜²ƒk¾
¿÷¤Øá3TBÓ6Í2@ZŠ'J“nj¥|Hó¨0iíwRíx[Êjqu³"êý±í̯ÃÅ/÷'pU­éîj¹B×`UÄ»tûõÜsfý‰Eæ%¢¶¤Ô¤àÜä` @[`»b¹—Y«y°eH™C(î×a·Ñ.ƒâækôJGeÊØ£@¡hOÀρ1¼= D£Œë=w\¿CiúŸH¼“º	¨Ãö7Xüþá'c6Øä¾ßfb£®VKš¤k[=™9…3¸q‚
48Åf.8ÙfmoúÍuï©}FŽF`z´%®±ˆƒóÐW¼0O´å¦²xÃØ"ËzUllR•1Ck÷qNYö°´Ë¡
+ƒµ±•uÁöˆ±ž+|K€:s)"
+-­óFê{—7ßί–¿Ñj~½˜SpC‹‹¦u.Ñà÷ºž¯‚‹o=Œ¤Ø%V{¶hs˜‡—Ë<dæÛùBNÒP}
ÁpÔ´rÂÅâºÆ/“—¥˜È¶b§y º¼ùä«ùé°`&f%ž¸èYÅ2ߐ«(
+)ÃàÀDÞÏ֎Ó7Ùٚ´ï”þ%Çû½0·òåªÕ¨‡JÁ£“Þ >mñè­qhíc Îp".‘6kÆ˺bݾ栛‡wk^l³V×{‡Þã(Êû
+&8ê&4eGÔ*’ZSmæ/º"â‹(tj®Ó‰ˆž ŠN·Ñ;*jÆÃkÏJL£u
+{çx…uŠd,‹HÒýq˜
+Y"h­0•õZÕYl;» uü6a·‡¯Y­‘¿ hÇZÐvÃȪÖ5O
+>Ô1«Â#o"T5~;F2ÓòšmEQ9whö¹¶-Æ¿±ÖÌè–Õ£Ù-Ï-ÿý0€$•Dñl
ßÍÖyU¡‚fÍ0
<úÓô
+»Ô֔ˌ²´2ñ0›_òSL'æÔÎM]½Ã¤ÎQwù=’›ªù”
ש´=©º?q.ÌY›¼Ðn¿E(Ñã»ä«1ÊM:¢åå•kÌWÍÍßFƒDn=2=4މfä7Ui â¹øžæuþÂ1 Ý»i5s4Nð?ÇlD“)ÖeìðFkoKõˆq„(ªs‰åƒwoöÙoŽ÷§>þ׈?¼«žNfÞdìcËå[ÅEpôÇÑ¿Âz%endstream
+endobj
+1324 0 obj<</Type/Page/Parent 1099 0 R/Contents 1325 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1325 0 obj<</Filter/FlateDecode/Length 1593      >>stream
+x
WMoÛF½ûWt©HŒ$˲] mÓÂ*Œ¹¬È•Ä„Üe¹¤ýû¾™]ÊäJ.Ú"‰cQÜùzoÞÌþu1£)þÌèfNWKJˋi2¥ÅÝ,YÐâö¿Ïñ¯Ö´ñ_,“eüüauññӂf3Zm`jy{C«Œ`f:¥Uzù¸¡ƒmi¯LCN•kE¥­SMʐ.tÚäÖþºFÕM[©Ùi|Ò
ÿB£ªÖ]×:£R¹F×#Úv­
+²•œÌñn¹NRk60ýaõíbJ“ÙU2G—£ƒv£„žÅñ>/
+o|§^áž\‘ow
©ìÑ©­&ûªk²p[Semš~¼[Z×vïtí`AájblCÇè"ÇÑ¡„þp'sG•ªU©‘íófG),I9Ê}¡$´foig]ãèëå~§% ü8ˆÛ}n2„Bw×dkzZEžñLêüõ•Kˆš
+›"×®
+»FŽRa	áL‰‘”.€Qé:·Yb0¡ÚMnZþ¹—0¥Ò§ *[gÈæ×:µ‹ãó¡
+–³ó%˜ ÏÒhÍ Ž2[*Xž…Èó†P󚝕Úd`‘ÀǔT…³R„·ü£\¼É‡ª¨U$=“%MfAHFÑÙX˜î’è~gL€®é×û'”#rù‚‡`‚›MK”êlß±{ÃìTYŠAº¶P
õXŸR
+RYçò5‚AjÜ9ù¶¡™v>3­®[RM£Ë
+Í8ÀìýD»"tŽ»V\
éM^#BoÜÁ$pÔVh4'eBœ5žÐ=ÞðÍ9RŽ¾…U´G´³vI#Ó]S	B7Ú%„H>ž
ZÍÇ©€ËBß33KµVفÎüžwÆÍã»Cå»bE¨íkž¡ªmÀå&OAج5™2éaLngۂÃД¶BéÀvä7èmØ
÷ñÓÍ Ê¬Î“«…ï§Ù2¹Kè³úž›mHŠœîKûd~ùG3®â7}¹ÊÏ*&|jðÍ³a9‹: l‹&¯@@ÏRGèEéLy‘O¥6EÆq~ºÙk"e€ëOô2¿\ªï]cªÃJeDëw¼DéÆOÄ£‚r¹ëfKBÊôF!pnÏ^ïC„uë˜ßi×F‰OŽe'Àùôe%âóÜÍijÜçB*ÚÛúû¶¶è)Ñ.¤.bñ<PqàO+úY”1çEÆ«¸ùNkÄå§CA=æÌ¢üYxCc[“j¬L¬Req3 øí³Ã÷,0€CÃaPmj[ž•8p,@4è<·Œ<02ƒh|(¡N1n“îjkr¨uŸ|q5Þ,\
ªìÇÐ#âØn5Tl0Bøí‘uT ÁbD;ì¤QüÝô̄ÂF1
+Œ;nA‹ŠÏ«ÏÛL
+UîO!˜Üâ¯Eø,Þ]§â|ßȈáÍI ²Aì¿^æ&-Úì(	@F†}‘²¹ jëøE/OÏá8çYkÌû¤›‡Ç/ÏQ¶ÌT´«/8ô!XåMÊpÃV~‰rœØ¾£NÏ+ìTfë|;Š\üÈn±ËNºö“ÏíáçcT†¢øQ?w«Ÿ_ÓBëKÈ8ZXËå6¯þÒ%@L°&wq–ŸÂ“c¨˜ü*†vªª4ÈÀÆꐱpv±Mö}f{î(”ͦ¡àiªB6Ê p“ÞŽ,šÂ]=>öø $ªÌñ€¬WDãõ›êIvsŸÝd~¡sççÆãfŒ ö,㰃Š1É¥>'ÎpÌÃþŸ
æe5ŀ±p+–ÉŒ$Á°ºÖzË*ǗÉPÖ±âˆN½È„­žkÕkŽ±Oï	=s± ê#!ü€Ë@ÅÞú(©,€_Be‡Ò|Aè¨ß£X‡
®ædÁ/³Ã[üÿ´ò•êx‡/ãò= zÒñÏ$ãì;´ŽÔC§¸›~\¬
kåÊÃnd|@â§Ò>-š S§ÃçKÙI•Õ?~º
·àÙ·æÛ+Z^-ý5ôùþóÃ=ýVÛo¸îb,§-ÏJlGÖH¡fK\µq`r3Ç¥9»ü·ÛÙby›,¯çXìøÐtÉÆ~Y]ü~ñ7»–?6endstream
+endobj
+1326 0 obj<</Type/Page/Parent 1099 0 R/Contents 1327 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1327 0 obj<</Filter/FlateDecode/Length 482       >>stream
+x
RËnÛ0¼û+¾Ä9XeYr	Ú=¤ha
¹øBI+›±Hª$U5ßeÇ­… ¸;3;³ßg)_e†UFÏÒ$E!Š$C¾)ù;ãÛº—ƒu.ø÷êྚ½ûô¢DÕ1V±¨Z0Nš¢jŒ%Ò_l Èڎ
µ³²m¤mëÈ{ò·ÕƒäÜA–Y™³øÜáَ†ÂdÝ#CbžÎQKOíß`Ø-:ë@?¥z‚ê È´Êpgº»E8‰°˜TßçŽ0¯XñäÌ;8[÷¤}‚GeZ;yDÐG–°wv<ZËBŒ
ðDÁÃ`τôÆÿ.Ë´®+ëþ£²®xٛÉ+³‡äs#5¡·ö	'kn?Ý19¹u±|¹Ê“<ªŽ^‹cÔËð&ëdóƒ·Rג™ÎxhÙ”áñ&Ðg°sê
4Á)äº^
+þtújTCǑÆ:Ì/}sØ!(kbd^×IcMKã[íGÞGnÐ	¶Doç»Åš£)µ¤êý«M›×¥¯ófQlNoïîïðÕÙ'j>ØfÔd‚Œ¼QéòÜ°,3^䓹ÿµÈ93ëŒ×8v¥eDûX;Í~
œÁendstream
+endobj
+1328 0 obj<</Type/Page/Parent 1099 0 R/Contents 1329 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1329 0 obj<</Filter/FlateDecode/Length 1531      >>stream
+x
WÑnÛ6}ÏWܗ¡)«¶ã&é€=¬ÅRØÒ1—¼\I”Í…"U’²æ¿ß¹¤Ûê0E×"/Ï=çÜCåûłæø³ Û%]ßPÕ^̋9­–óâ†Vw·ø¼Ä_¯¨I‹Ûb5}ðq}ñîþ-ç´nPëæöŽÖ5¡ÎßT—Ÿ¶ÜEå	[é‘Û’©S¾q¾e[)Ò!ô*¼]ÿ•j,nsÙõªX¢Ê%6-
 úäڎ½Ύ+W´XŒ+—·€Š•ë­Ëåw8¯*ÐúÓ7ŠŽ"›—ô‹*£•­·} ÝÐÞõÄè0ú½¶Yp5¤ã
i A“V†­ëM-xç4[\g”^±1{ªLìR¥ónã¹
·
>(
 Ü*y]匀PÔºA1×5xÇÚpiÒ¢¼\Q£ñMôlC£üäô×úÒ¬tÒĎ°‡­Ã‰>qPrP5=þñÍ	;ÅXcy=ÁޗÌÃÀ6a
 xÃÚâgp­Š[áÆèELk)ÿÔ<mÆjҙMô<my°ŽjR' ‡Ê>& ÎNÐ+@âŸQ©=‚¤¯òlÐàNTjyŸ…(ø@Œc -x«uf ì+¹ô|újKèAÅRõúù-8™j—EKÞJ€4Bý]OYú¬¬òé8“­il5>sw  [Hé
\ˆ&°çáUF
-RuA_@qrÕÁnô½×DO˜*᫆ƒÌ$·ôpÿxEl"ön¶øJ‚²{j¥ëZuÊց\Ҍ6ô¨°ƒ
v–„«…ljqPÐ7·éÁí0W‚ 9Aۇ5ú°É*TÁk!¯žt0>œ(r—0ÙiKɦ2'Šçfó…ìT0£,ԛ²á*ÂèSDÊpvàþÌ5Æ.“Ù°qrú–}=È|Hµ×h=È\ÖB’œ³CÆ8„Bæ*ôkÐTÖìŒûóÉ£f•òs•ËéB¢Š:¢Š´™ä¦
~?C’(’ §é—¦é‡ÐüÚW½3$gg×Ò9#SJ~EC;­iûÝýYDʲ±LÎ:¡Ӕ¢CR!‡b J¡×"–5Xi¼k1dc¢ÂÆ@’£Ž+”H©ä *G¬aˆ‘Ãê	ùˆ2¨'8
í`:]×9{«CԕT~Á€B‡,FF$b7yŒ³W”N˜1
+RuA_@qrÕÁnô½×DO˜*᫆ƒÌ$·ôpÿxEl"ön¶øJ‚²{j¥ëZuÊց\Ҍ6ô¨°ƒ
v–„«…ljqPÐ7·éÁí0W‚ 9Aۇ5ú°É*TÁk!¯žt0>œ(r—0ÙiKɦ2'Šçfó…ìT0£,ԛ²á*ÂèSDÊpvàþÌ5Æ.“Ù°qrú–}=È|Hµ×h=È\ÖB’œ³CÆ8„Bæ*ôkÐTÖìŒûóÉ£f•òs•ËéB¢Š:¢Š´™ä¦
~?C’(’ §é—¦é·,èkg\õrÌH<’œ]KHçŒ\JJ~EC;­iûÝýYDʲ±LÎ:¡Ӕ¢CR!‡b J¡×"–5Xi¼k1dc¢ÂÆ@’£Ž+”H©ä *G¬aˆ‘Ãê	ùˆ2¨'8
í`:]×9{«CԕT~Á€B‡,FF$b7yŒ³W”N˜1
 x"¢9¡^,ËU¥€Z"|„6 ²c_Š(ÞxY#¶½Ô¹ '‘(»*cûŽ–²#*I"ŒŽ=Ýì»Ê¸0µÁ)Ak™Ò
 ,lÄÊâǝވ%B¦Ñ1Û2":¡^…#׌3°(>‹;D#æbÀèzÉAc¡Oƒñ)ѐ*!{oó”HQÕpoâÕ¿0' ‘‹‡åM#S±1jFå~–>.E© b<ˆËמ×ÏٜïOîïñʶôݳÉž›x\÷$`²ZÄ[ö‚d1
Ÿ‡@¶uƒd|÷`7˜­¶-{¼
  Np©‹Î¸>Ê÷¬Z±™(3í¿Ãý·n9Š_˜®ç?‘nñÝN
¬x6ÜШ9GŠ…(ÉÙ
öVB/®=›Éy§µ
Kl–Èw¾–Ì‚ð-o¬Ž}­F,4š_(Çyƒ¼sœÖ«Z‹+r|Ö˦wÁ7¯v)þÀAN¸ÑW(ƒÐ@$ӛ†ñ
-0òüdðÇNó“Ð_@Õ$j¨x‘™4Zrõ‚HÆ=•.œ¨KmtÜËې¼ì¥ ×ñMŠéœûƒô‰NÐ3®Î_åæô¸?ûº"šcçÎÔ¨Šck=½ógŒN‚÷5Rùu(/¢÷wxÈ,Ïø‡`Mƒ™ÃËrñ4Y…9äŽÇvfà"z¾”÷<döȺƒ]10ã¨bŸ/O®t¡Z–ÞF®ÜO–fbß$xhË¢rV,b©ÏÉûc­pI™ðüZaàG—Œ¨8ÉǑ>Ÿh ýáìÿœð»ã„¯®3©ÿ÷ÕÍ]qó~‰+·Öb¹’–[_üyñ['Nendstream
+0òüdðÇNó“Ð_@Õ$j¨x‘™4Zrõ‚HÆ=•.œ¨KmtÜËې¼ì¥ ×ñMŠéœûƒô‰NÐ3®Î_åæô¸?ûº"šcçÎÔ¨Šck=½ógŒN‚÷5Rùu(/¢÷wxÈ,Ïø‡`Mƒ™ÃËrñ4Y…9äŽÇvfà"z¾”÷<döȺƒ]10ã¨bŸ/O®t¡Z–ÞF®ÜO–fbß$xhË¢rV,b©ÏÉûc­pI™ðüZaàG—Œ¨8ÉǑ>Ÿh ýáìÿœð»ã„¯®3©ÿ÷ÕÍ]qó~‰+N.·ù´üÛúâϋ«§'hendstream
 endobj
-1634 0 obj<</Type/Page/Parent 1369 0 R/Contents 1635 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1635 0 obj<</Filter/FlateDecode/Length 1595      >>stream
+1330 0 obj<</Type/Page/Parent 1099 0 R/Contents 1331 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1331 0 obj<</Filter/FlateDecode/Length 1595      >>stream
 x
•WMoÛF½ûWt‰H´¾,+‡ìÄ)‚ÖuZ됊%¹7"¹ìîҊúëûfHÉ­ŠÀˆ@jgÞ¼yófõ÷ńÆø7¡›)Í””ãhL‹é,šÓ|yƒÏSü9M™¼˜/¯£å¹Óé™w«‹«Ï×4™Ð*C’Åò†V)!ÁxL«ä²Ð/º˜’­›l<ýDÁ5úýê;͇FÓ ¬ÒKŸÛ¦HÉ×Z§”Ø*iœÓU •$Ú{
 –2Sh|Èqe¾W–¶*v´u&]ákCòM’“ò¤êº0‰
-ÆVäµ{1՚|Ž£žAŒi4™ESNý|itÔ½jã#P¦êâStÿí¾K?z
O&qÖÛ,Ðc–™D·!žßsrEa·ž’ ® —Öi•ŽTÎÿQ¢’\#]mP¢Í€B{4…+ŽZÊ>Ð<1Ï£Ù¤¥l:¦Ñ,¢Gðö.S½çú>HÙ#Juí4HÐé[æ¹]—OªŒòWÀëAòQ˜!Å;Z;U¦NuÑi›ë
-­uxÒֆzÑßÌ:²ˆ\åõ£pèlQ Ÿç(ªG/ã_ËöxÇé}Éhgt/ÐÉ+ˆi§ý€#Vò
DÐEÑ¥Ù± ¥Úõ2«5tà
ºëÈG,!œR”Tƒ˜®Ú€ø½Vï+Kª>ëLbqBcE–­ÜÌtŸ—´©ì–¶†3°~cÝ	deΖÌdWD8„EÁ”Zê–^ã4ÅfMµvhC©*ˆÑ”µ³/ºä!ÂàᎫq2þÀ­æZ@7­S
Ï˹9AãAsÙÁÔ8²6È}Å¿o@;¬ÂÏ&îyäø,»5š+”'Ö¹Ftû*yH´•üü yþ	†‚S-\™æSK¹‰,í•àei(ªš2†d1Zþä0@
™à؀V¨,ÓIö˜NœT´úø•båÑ$6Ä+̦¯i(©àH1€r6q;}ÇÔ3N=H;brîSÆ&§ª¹ ‰­Á~:zìê²¼àUxؓÊaº¸ç
N¹ "¾Ñ: £
-ªÕZÃQ|âLÄ9$_æéDrø£\c¦úB
ºB›aÆoÆégT½×Í)"rf·í)٘Z•§-Âr€È‘Ó䎅×j«j³Äv°°4¹GPªán)F%°Ó}o<fËCàIÎ.ÆÌcAÜl{„¶ïØVQN7Z‚KU:l­Ûœ#û¤2VÒ_¿=~ºÿõöOöJî(¼¨ó\ÊƓšùf{­Žm“wD»ni}èUÖáÀ˜?ðÜ×[XØjë¸Y¼BӔ9ïIÆz„l@©mà->YTG#ÑK)Òê9uAK!tHÿ¨Uµ›øåꅕçfðb<Â@ç¯[H®¾|%T²a’<ö)”ÞËëÑQORÓíÇ_Žöåó˜Gôï[oþ‘iù/ßØ[á@Šæo:cèzªf?Ißˆåû+q:ßÎhׁ“7bºÜOUچm§±lzÅZÊÁÞõ¹ƒÙ`º=o\¬›Ì§‡»½/xz¾ì.Kp/¼Ãço2–xÎ¥ÄNmqA1ý	-”[ÃΠ6pý¢Š†åÈw*îì.ÖkS¡@8º`ıîX£•2G93£!€TNnsåÕh!lBVâõ*î¸:r2+üÅáʜöXI²'»ÃÁK˜Q6F³Ú¸þ^bÁÃ
|;°àۓ›\s©<ÕjæûOK
-ßUåº&`÷Ûén­âé¦4 wȺçH⮫ EË®é:Ï$°3îcXS¯­I¨Ô½ÅÏF)ìꮕ8?Y̖óÖO@üÀPãB+¯˜ÿ°”óîØÝ-‚!iɈ‰åÍ[B¢’a?óGEBގФø
úZeÉÅåEÁJ¥ ¹…-·Éï|`ÿƒomÕ.¢Û®î-®¯ñ3¡kk*0èûBæä;QتrGz¾Šó%˜J]Zälª
-õ^9S섻«ÏËî7ÉdŸEË-n>´×ˆ§Û‡»[úêìwÞŸlÒ¸âÊGû£›ñ¾vüÿkù|±Œ×SÜíq|2½æ°÷«‹ß/þW,€iendstream
-endobj
-1636 0 obj<</Type/Page/Parent 1369 0 R/Contents 1637 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1637 0 obj<</Filter/FlateDecode/Length 1474      >>stream
-x
uWÑnÛ8|ÏW,ürNQ«¶+Î
}h®-Pàšë!wð-QJTIʎûõ7KJ±£¸H$–¸;;;;Ëü¸˜Ñ_3º™ÓUJYu1M¦”.o“kº^Þà÷9~¬¤"<XL—IzîÁÕrzþÁ,&ós'–¤¸[]¼û|K³Z@•¦‹dI«œ€i:¥U6žÏ“EB_Å=UÊ_®¾ãýkšÍâû“ù
@¬òñOÎëۆ|))ÓJ֞D““v'-Õrk¼^’ Q%žTÕVä­¨ŽȩŸò-íK••¤>r!L¦Àiaõ„ÖôðõŽQLi2»BÈ™ªB&—п¦¥LÔÈéÃñ>OãKáéATA{…@GD­Sõ6`d¡PzO#2W¦&Uºj“d¦.º7((ö¥r„o®þEZ d4ôG+Ãz‰Bd™lü[Ú´žjóö0+sÑå’ô&Rü&Ö£$´:r߃°2“j'ÃÐqc¼é˜Øâ“~†©KS›ÖrqړtoÌSÈ=øâ)—…h57ÎPºX@ۛƒ—ŽÖãN֗±TåKcœSݕåLÕ+ǁÃ5ÒÆV´‘ÞCB{åKh®‚(ð°—µµò ¸§;¡Á:+HKÇø!ŽùôzÉɵz”ÐÐf¢u HB§’k€¨r¯*¬©2h`&"rI]Á}×7ÜÞ(™pöt®&Wב'ŒSšÐŸ&{<.åì4ÝžƒGÁæ9YªjŽ[è¼U™'Ct*†ÇJ‘¿Û[]f<.ë±Ð¾4í¶$pž«rFr§Lë\¢~Á»õeB_
-:`šd-¸?ƒdëq™Ñàó÷tn´¾dzêpžÛX(Ø@.GtmQ _¢ã{¡k¹¨3I%£¬ wpþLSXïÃ#a¸¹‹@~€vhNX?ˆuÿù
]lk/sÀ‚&bبÉÌ´:ç?Z¦¯Tàš¨qp€¤
2Ýc”ɯZ}“ÐC) ªÊä2°}¶Ý,üF´ö„,ÓȚ5p²ÈО9mö<çøߦðÀ·‘QÁ9ëräŽ9G”!5¼Næ(ٛA!E«ÁÑQTAÖ&qŒ€Þ£cGoEÕAÁBð^'gÞC¬£fèÇV¼rQƒ€~!jPÜË#Ó&r,œ1„¨$†7Èh=Ɖè<ŒQo{I{Sÿæ	¾
±È`Ô9a¾í t%·ìœ>pÇ9ÃMLÍÌDFe1Û¥ç<âx—ÇlÆ,¡ÏÆ®j¬§¦Ñ*¼4‚×`ÞGUÐÞþŒ†Øð}äùfؕ`§‹rD	±HäÄa	³ýüƒa2{÷2W.)§RŠjý…•ï
™3c±<0ëÈ øÛÁX-¼ªXуŽšÀ7±žgEË{>¾×"¨™z4tÐB	ÚA#ct&w#³WÖ5rúYr›à‚b¥–h7Z«1:8®‹kßûOÅä#(úÚ½ôw²†9~ûƒÂ/•ˆxc4¬.T^›=àÞ²ëKÀºìÏ32ÜUt¸›¼š­¾S÷«!÷­>ýN_bua©ð’†§÷Ì+fG]°4Úï®#kXW<n9U²2°…„[P³ó4Çü|àóØ\™‚“Tâ1ì4ŠÍۂ©BÀo-ìKòr–¸>Ê0¬ÊT
E·XÀ¡Â_¹à’ÞJÙIÍR<ëÝ¾éonº?˜3ôˆþÔ‘Œr¹i»h¼jئyÿ‡ÕÎX‹çyÕ C[ìkkš×—¹“õqôÕÞQ¹ôî[è֕Ýægt

ÿµqñÂlýþËQHpmù„
u¸†uD-»ô,ŅyEi—}øðõî}³æ;&“>š¬åeâ2u“þÀäfzË÷®××óëÿ0,æ¸Ìãñlžò±O«‹¿/þjñóendstream
-endobj
-1638 0 obj<</Type/Page/Parent 1369 0 R/Contents 1639 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1639 0 obj<</Filter/FlateDecode/Length 1226      >>stream
-x
½VÁnã6½ç+¾48ªe»vrÈ!A[`Ù¶‰E\h‰¶¸¦D…¤¬ª_ß7¤œh•lö°@$ !ç͛7oøt–Ò?)­ç´XQVžÍ’­ÒU2§ååÿÏñk%í‡åò2Y½õa1Ÿ½ý!Í^_u»9ûù÷+J×´Ù!ûê2¥MNÈ<›Ñ&;ŸÏ“«„>«\’V•t6_¿¤a1_#Ù&?ß’&mwp2µW¦"å¨2-ÉJlµÌiÛQ.w¢Ñ~JÛƓÚQgʕãï¤<=žïŒ¥­ô^Zr2k¬òÝãò…¬Bl):FÜéõ ·kv;ª¥ÅáRT™¤w©
-|9£ªÚÓNi (¥KˆÁcµqŽ‘j霬³‡Uˆ#ªÚKß攉§®G©;é&Sj•§R
ôTcéz¡÷b±L–¼¦³„î¥ÈɊö}ZmŤJ+N¼æÒ©=£õ|‘¨ç¥r2Ÿ’6í…^VY*Hõ|>¡k í5ŸYaŒ“|me<¹¦®™hYaZ‰3	’åô Ê­ÀñƒtÏAÜ»É/ƒ)†<€r/^ä0â³G ŽÕµŠt}¬È™R¢	É2­dåå¦úÉS
,Î +vÔJ­L‘ùFhÝúÈ´ äaïǀ€Ìã"VÙX]|,qg3S‘<T5âԍQ?˜(Xµ/Y¥؞±Ò5(ž˜NJèHp=u-+GŒ†¥
-ò3öÐGOe¼Š‹˜B7h5ptiD£À@d>ž›ÐˆðÒy.:CÁèsãÁÖûjMaEù}¹¶§°Òk¼åÿìWˆßUìˆç;{Ý{ȵ„g°kòŒa
-13“A*ÅtW±mi
-_§ì[ÑRXï'Óù‚‡2ƒP÷ÐR¡‚Œ0zîû}œ÷®S[™«Œ‹ý¦ùÄ
g•ä&jýåË3Œ¤ÙñÐÐÃÝ-f£„÷æ0Ø{6›Ap)J}ïlp
ÌôˆQù·‚rágà›µp>Z†4X¸ÁÀ·B³åp\…£CL•°Ve.aa#Ô­('jTvÀ4´÷|gÈiåSƒ±éo|5ê4ƒ@¿È†‹.¡¿±á8}t½à‚]o)Ñ	L]¯”±š>^ /€Ä#§á™nàúÌo¹ži˜ì
^‚/áŽo¾uʦÑ蝰^ewR×iæ½à;ÆɄ±~±ü„£Égü	5Uý´ÁҎ*†z´_›Ý¨ÙÁ¨„¯Àày"”0†¥Ø"sØI¡Q0vncÔËÉÀI”¦©°¸j™©âu»Évê_€ìG…MUèVt."
Œ)@kz ­6þâê\X…gDœ›o,÷EBwØ:Ì~]Ãmcô/§XZ¿e#6çØȣ†ýêÖeÉFŽFðJ|ööƒ ³=$Çz—Øb•c·™Qaƒ¥0eÙÜj¡`¬˜°Ïyñ犟UxAà6f	[œ×>¢Câہ¶¼AÄàž˜Ëþ‘˜®ðv½\ÐjÝ?×nînoèOk¾ðŽúÕdM‰ž5Œòâtàb=»êßJ¯Þ Ë^¿¿ÌñÅc*¯ùào›³¿ÎþÛ˜Ðendstream
-endobj
-1640 0 obj<</Type/Page/Parent 1369 0 R/Contents 1641 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1641 0 obj<</Filter/FlateDecode/Length 1551      >>stream
-x
…VïoÚHýž¿bė¦Rq0BNꚐ
-)$\ Šz—Ói±×؍íõí®1Ü_oÖv~Ц§@dÖ»3³oÞ¼™Ž|êáϧ³>
FdG=¯G#¿çõi8>Ãs_-)r/†ãþ;/z¼÷àėÕÑÉՐ|ŸVœŒÆg´
-	z=ZÇ+E2ëTÒ^•î‹­$«à/PY‘àÍRdkAUbc²±¤îåýrú÷|>Y*l¢r‡_\]O¾.)MrI*╏«ïG=êúÄ»
-çâIF0è5ëý‘7äõeá1–2™)½§LE’o(10î©42d'|K…Ìñ[KÁ‹éþ‰<ä½¹²õÖõÞÅÓq[´¨:À‚¹G«¸4îڙØÃ>ýb’$£H6
6I䄉q¸½xsŽúy>øÍUÇÝýäêœ|äÒkú}Ïz´LUEi"skøøëäuûgވ»ĸƒ
&±0€¢PÚ¢‘Örœ’B+«•rB/n曆ëû%áî±Ô¼9§ëÉÍ|rÓ§
g]P¨Ed‚ƒÀM!a=É`n+3„FÇ‘Vù½§ÃÆýS~züx˜Û™§[Ç#M‹‹çã‘Ùù#Zd÷ñ#U(óÄ¡GJ“C=Vԁ"ä=ªLC
-bYyôbYI²$ú§Q×gÖH…f´ð¼J˜Óq$êdbG»,±ô™ú½á¸ó‰’ÜXÇ´~E¾9D¶½pKòk…‹´›j&ùWv(K6±%‘E±L‹_á´!µ‚Ã÷yàȒº=$¾4S†Tbo(,]!;c*¥vƒØ&™ôèÞ1–w€vG-Àò@¤Ô)Ú3©ÜÊô°†ª$M[F C¸±
Re=ú%©Qw·mô…tî¯.(ÐûÂvZíHjíx£
ïÖÇÈkJƒl™ÃåûY™#žš¸ -.£„,îÈÅ¢·¤ÀÕ+AûÌä
åNdäï
ª *ãHù ôÓF«²ÕÙÜ
ã”sË.J–(¶²F5¢ØV®X¬d"~À¥t¬›h(TAí0”V$©
Ýs*„FjJýØït:–IÕe¦J:d
å;=D›`GžW"Œ@f7—·ËÙSGz¬,§_çӛ•[bœmdSè
ô.+À	Öß_\`¼†7BnTÆ
-¥?g,R%´õ>]ÊH”©½¶5Â(5üŸó%Bú…
-&ÂëO{ÉòÛr5{³›™ë
-ë@ÙÝyôÐJ7kæä:A'y‘.VŽPå,=åÚ*Þ·%Üö£ùžT•#ÿ¸/t8T¡õýnøŒ6­«â6Ù¯pªÛfåV¤¨ÉÇc4¹£k¼5D”n‘EýÀ·/ò½«9‚ëúºÌ¹Jaq¬3Lº‡Åç–qàŝ¿t¶dB­
-F^P„äƒÇxô€6ƒ`÷×
Ԁ|ìŸ÷ÿÚ+ŒZ£qî)”häa£L/L lÑa-«»:“Ùî7P âw´V»—)¥a»r`ÁVCAž“º×èB±@‚»&H ÉÕBùX²C­h(¡+b^åé£~ׂ©Pó›@åAŠ¦¯ró[ƒjË¡چ€Bºjì£ç”…'wáx rÀUUåeI •jxpÀ„öˆ*°,Ðú°ȳ	¸3*x"ÅŽ¨´IšØDÖw' bÃ÷_Uì…Ê£dS¢k4ÎOY¥fa“‹9¬i•®Ás5½áw­c(&Lg 	ÒºÁðQLSpl¾º_.¦ÓKA!ª㚊ܠH¹DßXó0…ïVè¼¥:³ÏW­ó€%"-%h$¶HžÄœÇm³¯}º;ðm×®Õ½Èq=p8ß.‘˜Â»m&çb‡ðé£éÖM´]ÌҘÃcß#v‡ŸÏ#î´õg[Q¼õäjÜLâþ3ýx€y¼Ž—“ù—	-´úÎÃÒ¥
-Jž³Ü”Ê'»þÃ=tÏzçìüqq8{£Ó~`Ìg§«£ßþ§ñ¥endstream
-endobj
-1642 0 obj<</Type/Page/Parent 1369 0 R/Contents 1643 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1643 0 obj<</Filter/FlateDecode/Length 1505      >>stream
-x
…VÛrÛ6}÷WlŸìL-šÝì7_M£DÔI:u ”‘€–Õ¯ïYr&3M&˜^»çœ=‹¯'…øÑ$¦dLiy!%£Ë`HÃéëÿŒ¤üäfurñ0¤(¢Uαãé„V!>i•žÍW^7Nß)›ê'i±.ä›Õ—“
6!&;KâŸñã J‚˜?aÛM!ÒÝ[]È;édê~ºsøãΕ*%­4½SO’î+¾,ûî¶ÑÿìÐÛ‹%%ñw»Æ?îz7£[‘n%-Õ¿’Âïâ'mü Ñ 75#g”ÌèI׈¢8þ#“ÃÊÉÒR)+§t… UùϙNþH¢Êü]a"h¿Ué–J‘I”©<—FV©$§q
-ç~ƒs/¬ßluº“Žt͗؀fŽ\cø:Ý8šÇ­¥s Jç9í•Ûò/Duø…ÿt§¾Ôƒ¥AÖ(Éåjl-ù4ÔdDe‘Ó9¸—²¢'a”n,N­.G”
-eY_— »Ïñ`<¦8œß•†•Â—“è’Q×z³¾R]ÖÂ)PìÑEF³»{Êsÿxö»Dik5HÂÇ7
­€ó1/2Â
Dl¤°Ú…rm(
-i-¬\½jfŸç÷þˆ\m#‘º‘W´>¿
ÓE„üÛ¢(¹Õ%¥ÂdW4ŒÃÁpîn.,Âp0ŠÛõ"âü=¯Â{Õ&—ص†XºõÝçá`r„°㊒I8H¦mt’`=òë^3_×’ÒBà±c‹Ü^S®
-®Ž†Át8ùìü§Žªèø‘ÃZL
FS0—¦:u8?3•U™4ªÚôjb­o
ÍèÑR”kA
-4U…X¤Â¢<åۙjÈ;ݪJþD|ÌeSg ±×5‘Ï3¦µÑÍfëä¥ÿR!ón)7 èKÃÕ³ØÀ†§]g5¤Sg_×TÉý‘6¤-h‘$	W[Á¢|k|Äis&œ%à³Ù6럨¯ËÂmqÒÝK­³«^Ãxï²QµonjÆaø«Ïß6Òõ}§õŽñŽ¬ƒup"«ð¨à”óoàZ+ÄI mŽX458Ê,7ΌlSך³åD‘p©}Â?Œ„:ﲞÝÚh§S]À»Êát¬A¯"oώöù~„q´iJª¥Éu)ØÒö>|-ék›äŠ6¯-_öÅÃ%E˜:9¦É ¶^ÇAžèc+N†õÛ¤Bd<	ÆìÊK滖º†‹ìœj¥d[(¨jʵ4–+‚ɽ¸P;FBÙs¨…<"ÀvnÐ3Èöƒö™Ží3«ÃwyÖ£à?åŸ6”˜}Þï¸;ø§5¹´¾P5ךî¼QoaU³ôÊäx*À4×ì¸F”¯—óÛޕ÷ÀDcš-¯Á…%ÉdV uÚêÓOŸ“k|CÎNQKÆóœ{d0‰e.ÐïÓ§OªÊô¾ã»wÝßóåêvñ°LyÚp†ö`1åU)>*'SpPÔ9¾o( –='<Ž½SUóì+Ã
^•Ü»•
„âé¥Ü¶º¿tƒ:ÑÞ ¶|¹7?
-V>‹2°˜ÓÙF^@õëL 
†®Ô½û2ee£Ä~μÂaÜ;x
€¢2ߔ4clŸ-é©®¨¯F½7Êq(ë
m„—G´î\³­燜›ËXyΡFz+-´kû¬ñHؖÂìøE<bèfåÑp“Ÿn]»:Ú`˜Z:>øF|½]Pÿr/OÏØ!ôQϜ`õ~unŽhí‚ò¸¬5Ï¢öýÐJÝÛGÛ=­:sS­ëQÐMQÐÐÇ3â¥||ʵåºûõQMàATš±¡‚…Ek
qÍÅ
ö2;Å
"ãáÈ^wk¾Áy,dâ@AЙδ{ôFc<ˆ§	ð<öo×åõüæšFñÏÖÎ4ðNÑgŽl7&á%ÐO­j8žãQÜ>£ø’wÞ¯Nþ8ùÏ•êendstream
-endobj
-1644 0 obj<</Type/Page/Parent 1369 0 R/Contents 1645 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F6 9 0 R/F7 10 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 1032 0 R>>endobj
-1645 0 obj<</Filter/FlateDecode/Length 2112      >>stream
-x
}˜ËnÛV†÷~ŠÙ5
jš÷˪Hœ¦5Ð6n¬Ô]dCK”ÍF"U’Š“·ï?3$ÏPŠF~}œ9s97òߋ€|ü()Ji½¿ð=¿Ì>þrD^Ni”x)í)½p;º»Hrϧ4½¬ð½`Žùö”^B©fFî)ð/3Pœ&E
-×0Lá[Åì4ÉC„„
cf"˜	§*4ÐjÐ<G<ÎTrLÒBrŒeHìÖHäÏ¡êƒÌŒD8Á‚‰
ƒ¾¡Õ qÒ9ªH8@?ãLDñ˜V³)wÄQ5#©zVpD"ØÒHv[x‘/‹Ð{4LPâD”j´ŠÊ;Š &
šøK[£A)¡³5zOaèscfj5hœqBŽ
šg\EG-¸»†½§(tp¾Vƒ&ÁÂÖj¦Å"_«A³ë<Ge5hî/=½§­·]°4ŒæªsÌVƒ¦Ë˜Çþ)<Îýeú;Qí§£FÏýuTû;Ùj?5zîïLÇþŽ¶cÕþN4I¼‚G†çL–­£F£ÎºÌÔjPŒãÏVƒ¦)/1gk4w0ä9é¨Ñ ÈÝwÔhô(xÆÎÔjîoºðl5÷7^Tcì¯a>q}¦¢´¿NƒbOCFŽ
ªž5Û<椣F£A±×jÐXv•ÙÖjî ¬G-Â¥g£QçH6ßÙÖjÐ8XÄl5(òC­Ñ ™l¿Ž
š'¼_9j4÷7_ÖYöØ“]öTUn
Î4*àÙP£¹ƒ¼5š;b^j4w0Áø†:#*kk5÷(@FÎÖjT#àÓÃQ«Aá9µÔhPì"6*«¹Î֑ó,Ç\,­@B>/#URH£A±¼2KÍøzcmùäťǠR”¶ÈiØÆ9{vÔhPLDå¨Ñ($J…tgj5hq{5š› Sc¦ºôcن1.žET¢$f£A±i"*GŦ‰ì5Gæ³ш
-‡Ú;ÛZ­1/<ëRˆøZϸÁV”Äl4G%=rÔhxÆ"CT3µ4å…£c­ä¸‡ç7þX”ö×iÐ4ç.8j4(Žjdä¨Ñ7,¸¿3Õ	‹ýžoÃã„%Ãꄝ(†bÌTL£‚¯Ú“©*g:SÙR5šó	àÃP£9¾˜j4hÁ3ÒPnI”Çø‹[1×XÇd$.ð	RvL“Á."mø<ˆD±¡Bü•×	¾©D"˜á}`’ˆFÖ°ƒjˆ=«+ï!‘1äוl˜q3TÃ(”Úb„*bq’0Äa¨†˜zr›ÂþˆbËÀh“«d¨Ñì8âøœ­Ñ ¨%šâ¨Ñ OWG5(¼Nqq±«§‰˜¸a|ˆrmS¾Wª`f¤”/3LŽ÷ÉNߢœ¡Õ'	QG%Þ¬dÎK¯Uñ˜
-q•’Y~ÆX«¬„;®nÎ×ÜP„$";GˆãP/:UBQ¾I#"\RKÕVz	ªÏŠ2¶U[GÕ¯Š’ŽÚŠ2¶U[GÕ֟^®$FQÆv¢jë¨Øx֋;Ûªr¶3[CÕû¥«囹TYóW=ÕÊPµÅ„ÓˊŒ+ʌ;Q×QµÅµÚÕ*el'ª¶Žªm4À2®(c;QµuT^˜øò«µâå©JmF¾qˆ:ª¶ø«µ’gEۉªíLe2Ë÷‡=eüiAþÏvNaDÙÒgd$ÎacÆ›+Ž
\||âý©«h{ñvuqõ¾ Ð§ÕnÒ,§ÕF¾×à—õ«›¿<zs8TͦþVõ¯Wÿàéãêӗ!_GW›W«òaWQ»¥ë¶ªfŸD5¦'eæâIÌrºm»¡|¨wõð=â;Ñ¥ÁG¿Þ~ú›É¥¿ ¡Gw×èSScº„ðûî1[‚Ø£Õæ×r ßêæø
bÿЕÍf¸¼¹‘Aããé»rÿPž vxª:º¾yGë]=åuò<âý½\×ÍÐöOÓc?Æ‡o*}¸éZü0>qƒ{ oŸi]6tCë¶Ù֏GôèÃÝUH÷ewàâ6Õz ¶3?ÆTöTŽÓLâ—õãÄÿÑçWM;LC}~ý£…kƏ`£€ÿÐûv2Ž-8ƒ^¼Aä\½
-…ü>²îûcÕÓóSÕ¨×ϯ~­º¾n›Ï¯©îéØW›Ñù<Ð%ÎcÓ¢RÕ@‡õG«6]
oøý¹Ùµå†žÛîKÝ<J¸RDZêõ¤ˆú¾n`ÛËó÷°}ìÚãA&ó‹gÑ­O}E»r¨úV×·W7·Ôåúm»vO¿×ë®íÛí slY!ìø˜­Õ®*òÏ;ÚÖ;¦Ür‡²ï÷†ÖOeóX½œIØ¿<nÐ8?î·÷Î&›2>;(ªv]"æé!^°Óh’äåI–0˜*òC‘\ýPä/£IÜ3¡O½wU÷µ^Wt˕%Ž…W<ÿ±:`ྼ=>¾¬.Þ'<ºi†®Ý×fƋdp-ó藪©ºrGu³mOÃÂ7.ðÃñ‘vÕ×j'ƒØà…Uƨº.ª®k»3Ï Ö7Zúı-–Ywl‡®]Wý“Û[9¬Ÿt³\ì]]>6mÏ.¾·ÇŽzÙkzÔ¬ê8‰E©Òs…°Yàz‰±ªö®Ó‹pR.Ã
-óSȉoÜRpZ>¶ƒg¶Ô.•	(0:g‰Ê
-ŒÏA”T`r¢@Ós0avæ#|1A9•b„Å9K¼6렁ÏE’*6¹Þ
õn‡5õU&	6…½l0WïqYPÌä«ŽÀ—gjŒ÷À4	qþ‘òóêâϋÿIN‘{endstream
-endobj
-1646 0 obj<</Type/Page/Parent 1369 0 R/Contents 1647 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1647 0 obj<</Filter/FlateDecode/Length 1452      >>stream
-x
}VïoÛ6ýž¿â€}ˆ8ŠÅv¶O]Ò.ÚÆC,è<´DÙ\$R%©¸þï÷Ž”âDíÚ"€%‘wïÞ½{äד!
ðH³§”–'ƒd@ÓÑE2§É|†ß#üYIyø0ž]âñFÓI2ê~ø}urþþ’FZåH2Íi•ð&í]íD奥Ñ8¡¥±^lT¡üáÍê_l›Ðp·æ½Êzw¢ÜÚûèÈhÂO•I²Bo%™œªBøÜØÒѦöäw’”Fø\¤’DQ„7Ç5•5O¼]9ÒÆcÁ^§ÐÙp¦¦¬„W›B&´ÚaeÚ NöBi÷œóÌU2U¹J‘“1`#Ü á((LoIèŒjÇ¿—’ÄJ/i8k*O’	W
-F†	Ý,ï¾'c–LyÉÍòԑ*«B–`B>àêª}e´µ¦®°ÌõIÚ>
-ÕgÎ…°­{J»ƒG*š,œÑný†‹•h¹ÀŸß›)!&媐ˆz.}zßpqá±0[”È™œ;NQR)€ä~qíÈÒu¹‘Ö5lp¯˜5ƈÞu*­|,dÝ[¿a˜b`ú
ì	}4ÎS“Ed%÷e¿3ô¨Í>¬³¦’J4áñ%dé î¤^÷vLUؗéô©úc´-_(ǐóu¥2®lkXv†˜A¦²ƒ~¯ DVD
ýÊ!ä ^®'فp0õ)úÀ‹u-í—*<)–™v4HEö
ºÇ;žD
X‹ë>–©tG¥`ªä¥‘ŸNοI‚N}ùøöáÞÉbhžy^Ö½¶‚KtcŠYPZ[žË›åÙýC30••iQg ÿlä?½¸Oúœ¹“³v54xªÍÆd‡SúB	óqMãT,r$ujjžl´Zö!°G	ý³h™f߶VÀÂÖs.â(‚£Ng@™­1³,Jf®Ðˆý<T{åw
æ+:a4f/³èJÝ‚‡rfҚ§ë“Þ,
_3•Ø‚­Z£“ää³ðGàš'¬Îí³uom5ðZzn™úû‡ÀQYc$PmӔ Õ&Ç[H¤ñ#œ2çVÊçW‘'ÈB}¡—­Gòî%AÉJh(À¥B³—FÓüú§&7Jèîê–îµúƁ_»~ctM×Co4™"£'´‡ív×îæu¬\HK0˳(1eÅG®®–ç‹%ôéõñÇ+ùPù®4h:…¦ú­f'gÃöþsª£Scm]yʄäq*¹üèpG¿¡g¦?„Ñhˆãþöz<¿ +£5Òs×VqÉt÷á.¡Jr$ž c
Ý£¦4ÀÏ}•¸Ô$à¿O™bôƆãôř† ýèÞT›™Dò94¯}*¼M>7êâÓûG‡ìëO‹ÿ?œøc0'юg”-kù6jæçm|j„`qnx¥ÑžVæ­ü®UXӜhӁölZ…Ì='K…›p]ÁÏ7Vàxä¸bo¬¼;PïÃà€íx26jÙ(“¹¨´Zæ
*‡.Ej
}ºýònqÝNuHçš.‚ÒÑ“]cá.Óѝ˜%ŽÙX‡]*vÜSBÑìùÀ–5CE?ÖÃî¼Å‘çù´Ù›çc˪íÎwË\èáÛ«„H\I;g¿m§	Î#K–CË
_epC ¼ÖAªèZ„®Ibf`a"¥”ÇNméØpŽYì*Q0fòh/f¦
-cˆºãä{EïÀ-6Ü{ª’p;zJï×vÝe{±l®[ÔüK¶Î¢/M„ñ—a\¹Ú×!Tó¾Ý^š'ù¿LfýlÐÙüb2`Ñp0苟¬Š¡†ýlaÏ_\ˆ§ñø“ôd:O¦#ܺ
|81Þ­Nþ<ù&gÂ8endstream
-endobj
-1648 0 obj<</Type/Page/Parent 1369 0 R/Contents 1649 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1649 0 obj<</Filter/FlateDecode/Length 893       >>stream
-x
ÝVMoÛ8½ûW’\ V$ٕ=$›k é~ć.P  )*fB‘.IÕ뿏”ä:Nì¹lKÔðÍÇ{3Ò·QF)ŽŒæ9Mâõ(MpyµH
-š-æ8Ïñµ‚ªxc:Mf§ë7«Ñ凔®hU
©Xà¤$ ¤)­ø˜ºOm¾«p:û2vÛ/¯/Xözõ8Ji’¥É;†Þ²m0<¿0Xsî‚AöjÀ౎ąµÆže¯Þž¬¬ðáÊÆËtÀÀzî\~˜Q–µÙNò"ľm<ùt$5þQ,©µ¶(f´;áE#ËäcÃ9*à$Ÿ¡ÆGI”Y#²¯ÂItýòPZ(¼ø†ôÎgó‹ÁÔzvγ4½`C8@¥å}=Ò/É3«¼°Ä­`^ê‡H5[£¾‘pG{ӄ5MÌ9Q¯¡
\ÕÔ8·jxs¬œ–fæè™4ÐyñìÖÃKÕù
óä6¦Q%m­)Ýv!
ˆÐ´ë½ÇÄtù3Á×'¶Ï\#א´¢$oˆ•øÛ‡L¬ÎÇåÍý)©Eß·Ÿ–Ÿ‘0÷Òh2U´ºgõšÑ{¡qúÇ4–~lí?MòÐ;©TئIóDÎÔ½:”|
-©K7ØR-æ»Xð˜Ú¡ô†&J?/JL48D8}£[+B#ÄÈCfƒÞÎKäƒÌ?ýñõýòv¼²¦ŽP§…iíãCj®šR¸dÓÞ¸¢lÞÍ i70rç„þåïPÄG©›qQ¯-¸õ“åòesyäw³'DÊåûÍÇÛ¨ll¨®ÔÎ3¥ |¢4CB{»d_
-Ï/7Æy,;ªŒRf7ÌCœ·øÉr<apdÊíšñ': šÕâ,9+MͤŽ/ƒ¡¯ÂÐå¬qÂQ«"Ä°(‚Ýéð/5:¸b*[aP[áBډmÔBTL*,⦮-9ó"ø‡ ²NƒÜX
«=í¤ßDþvÆ¢CA$VTÆRÍöÀZ¬~‡ÆK`ÒncZצ.Œ–µEÙ”ì<mŒ*±ÄçCÛlÒöóã·6J	±^dž{K·Bá9n¹kGB&$Pþà¡{’ÅÖñ6¼_-‹nšeh\L©(fí³üþúîæšþ´æE¢[ÛÞ¢tÂÎI¿a2OÃÛÂø(wVà•äMŽ7ØgÓ<à¼_þýqŸmendstream
-endobj
-1650 0 obj<</Type/Page/Parent 1369 0 R/Contents 1651 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 1043 0 R>>endobj
-1651 0 obj<</Filter/FlateDecode/Length 1656      >>stream
-x
¥WÛn7}÷WôbVÖź䥰]»_)q
-(¸+JbÌ%7K®½ôÛ{†\I¶
-C‚–KrfΜ93þzÔ¡3üuhإހ²üè,9£AoŒïþhˆï.>¥¤¿ÀÖÝׇߎ:ãdLç£A2¢œÎÇI¯~Ð4
×ô#Ω7Ä«øÀ¯ÎGÉ°~ÌiÔÅéý;¶Þïw’
Žups§~Ú]Ùëðþ·žuÏ{8ÐëñU9õ‡Ýä¼~ÚƒsßÅs9;jߌ©{F³ G4›‡±’\­DáeIÝ~BS‘§‚„™“õ+¬]Mn¦”i%w§³/¸§ON¼§Õ%]Üt2[)GY}KfÊ`!œj¹Bfj¡2RfaË\xeM¯SgX_Õë'}¾
->tº™2ÞºÕÖô/ßÛøKº„f«ªt醌]ÓJ¼HÑñ«àµi*ËD“	­åœ~½øtM-rRòµgÔê¢õÙJnÈKçIyKÃÓ£2s»v4>oî~ßÍF. …°(³yÐR¥•ßr®b¿.<
Eò*—d´.•WfÙ¬­vz¾àÎZ8žà¥@ÔIÎ8~ž‘·qªb.¼„	/Bi‘j„‹Z”R<5ڊ9žlŒo±YËôÀ®S¸çé„=D’€\\ XÊJ:`é(•Òв”Âë
I³&“óf'Q/Ÿ´Z¶êŽ(“éj.çO§!ɯÀ½Ð ™
H/ØÖâÐêÃ~m£ó*/´ÌAµ@Çþ\Xš	ýLŒ²“ÀGhz†—áõÇ»ÉgÊE¶2ÒŸC¬ä¶£\–™ÂûºNRQÚy•y@¨5ø³±ƒ]V`[ê¨.sQ%x¹_ŠÑoï\áø¶V~~’˜ÏAkà„«ŠÂ–šóµR%ãoBÆvgcþwð€boà
ðVï$ X1=W	=®ÀªXÕv±€+t;ÝѸö
ydDö,–4ìcàPº
ð
?.`øx`óíáf´x¯Lõ
ÛË	竕
-‡`ÝÆy™»§ÓWu¸­ˆ•÷Å»v{½^'àK¹¶æËþF®ÿ^+“¬|®ÙÖµ‰H7¡ûi—¢ì6BbX[½³(P›.—ÙïÈ{&MÀ³PË
-l¹Ÿ¶»ô(ʂ®¬12óö‹ýPt[,¸1@Œ¢äªÈ$[¼ï"Ê¢¡%ŠP·FÕ
rÏRúâÁ	>¥èH¶bA6T㒉Òê0¸¤z‰Ñí´”Õºô¨½†Ó
 Ã
-¼N±nšå†kÞ¯X6ØÔDþ‡„þøZ醁³øø_ËêÓÉñäò–¤,ŸN#ÈYÝZÃdÄ
Á>uCŠo·½#¼lm³=»zhOÀ“ã‰a‰¨°XÿïZèZq9¹Ÿ’eù†4/¡A%ÄÊåõÇÉOÚáÆ×ï!š MVH{¨ß…*Ñ6¸l½]JÉXýøEÌ}²TŒ;A]œZA©æy»Èo…FBŽTÔ&ã–puëȅ©„Nh²ˆTeÁb=ßDáæš^ícÚAöµ€Œnõëà6p_ÛÒ
-·"üM‚@𻫍©Ô(€HuèòÀº¾ A6ýÂ%S{ޘ†bGöUÑÀf&sÈÎ(cà¦
Ðëi.]VªtOÄ"ÐôK…¤ÐGHsí‚5ÈÏa s›U»~ƒáÇÈñíÃlš\¾nòð‘=srîÿxõЀÔñþâaÚw[\,˜Ý]Ïï?]ؾ?”ÖÛÌjwÌràØOnïÀÝ@'^¸H-_Ue‰e5
-ÖCÄ™˜ì†ÎóÑÃébïæ<³”dª<•etÝdA’1¡4 âHn£­"{‡9ï˜Õ±¿p§”åÓ	kz$`‡~Z’¶ÐÐ*É¢ø°ÜÚ"vBd	m‘ 
Fäu§ÅB)íˆm¸ÃÜEk€‰E“+=}¯œo4Yªã܉›éqr7
=;ÖüVàò1“„óÆ÷áæ
-#`™+cµ]nösÌV®¸¾é<1äÓgÐS»ŸÁb=­ñð²Kö9…’.v@ÄþCº%iŒ+šËJ‡s(5ïÅ(W SSm)x’Ó¾íôÁ8ö¥Ÿ™ðù?”Áy7jw§×c_ώþ<ú¦5endstream
-endobj
-1652 0 obj<</Type/Page/Parent 1369 0 R/Contents 1653 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 1052 0 R>>endobj
-1653 0 obj<</Filter/FlateDecode/Length 1607      >>stream
-x
­WQoÛ6~ϯ8äe)àP–ìØI`HÚdMѸYì5–a %ÚV+‘š(ÅõË~û¾#©ØqQtkZÕÉ»ï¾ûîxùû ¦>~b'4QZôEož÷¿ð%#<KJ†c‘„oM’Ñ©=¯G#1ÞYû±ˆé¤?Àœ=‹ÅIøÆgÙîðl Nix:ÆçÿjE‹ƒxx
-'Ãøϒ'c1ߺcƒñ~yŒíÅI_{—³ƒèúŒâ!ÍvtŠ™‹±O³ô(Š?ôά)•šn(5z‘/[€ù8zuEz<Ò¦¡7Fk•6¯z~1Ib 4õ«Ùçƒ>Ç#„4ˎñ•¦¦©,çòg^Œ®‡ÇÅq2æM¿›Ö9m­¢f…èk¥è6OkcÍ¢¡º•Z.U
~’”޹ҍ³ë°-jSv~à&Mõ:ŠðegG¤¦Œ.[;ÝØÈ[°Lß^LÄÇi	šÂëªqSY›B¬smEû$….¢
-¥ÚuTH]J-VMY°ÿ=¯¥
]¹ÆB)›ÜhÂßmÞÚFI‘3·”º@Ýh’¤ÛÆ®TQôHeyã‰ÈE€÷éê&ÜËژfÏo–×H‡©7dn£eŽTɺÉö,³Ì­¹VöµOGŸÎºl«âˆöþ$ýs«š¶ê«ê<÷}~÷v¶jÕ¬¿ Xa7ö?í~ʲnïq‚†æ
-„*Ú@%‹¬’Ž¼‹ÂšeFÿÔf9iÑf*£ÉUÒG-guþõÌU*™|Ðöçír¹4mlÏoíAº“é®	ÖmՕføî”UµóÈØ$âðMý%ÒYn#XÉLxª·õw<ˆ=×®ð‚.!Pà)5ÒȁѶÊÒz¥´¯³Ç#^D$âz|ÅA ¤Õ’ì€Ò<;ß«¸6Ʉfʛ\ÍèÓÍÕÊ÷™ÁÃkÖkæ®ÎQl¾bè^YÓÖ©¢ËÚ¬­ª{¤¯nÂW†F–%µtˆ•³+½eŽ
-Ï¿ö|ç•lÒJ´þ¨ø,7‘g]ý!sȚ?¾ÎQZ°Ûå}Ï5*GR!pÈãBq=	Åא„„&ðˆÆ×V|ªÚÌUÚÙHÁuU+Ž5×K*P¥eRµçÛÌ?£6a©Íj¹\"p-kî
J©
-	>§\úÜ(øµCøüt†¾g#7´T¨wÎâŠÏÌZFfĚdÀ܌]wð±ßSÈu^Û¦Gi­@X±+ Eþ?îîo&³·÷Ÿþ\éŠ	ö‹ì»3	¶®ˆjÃ
-ÞfÊzšXæó{Œ1âêâ/Ç«¥²µ
Ù&dØ*t4@B6ŒS°K½V@òºÄÔù2ײxnÎqÏé™/°”ÑAŠ¡Ÿ¨lB—U‰mŽ0´³F•ª1¸^yú:ƒžÌ:Ú̞ãÚñ’⫁‚»°C_“-çhzá*¡†ˆ¼¡‘t¦JYÑ9Ë®“íÅw÷\žßÐݬG‡«pgpød+•æ‹ÜÞK‹G„÷ìôˆÝsl¬ïîvÙÆéÞÑ2I|œoÿ€.Ðèv¡n¦(Ð5½s²¦#}f÷ȹãápçÕ¡8ÌÔSŽza›‡ß Ub)^Ó»;ú Q¡ïQ'èÄôêþýÕL¼\	h;ïݲ’O
-ª+šœû€÷ʪuŽP42&ì-,œ".6l³8ùìD±Õ!3»PÏQíÅ#¨­Â`ФC»íî*Û#ځL›õ¹y¹?(Þú‘b§öɝj¸ïðU°5Î÷
-W‰|’yáËù£Ÿ=¬‚V÷‹% íñµêLr¯a
ŒcŠ{½ÍË
-иåg7¢½Ð»ÖÇ4c-¸­W9zî®á½È1a±¥œm[&ÆKžva²Ám‹»ö!× ”õX»¼¬Ñòݬ²;"ú£y†åC± ß09ð%‚Êž½¹‹nîЕdúÅwóçqõ¥&áÛϸ|˜~×ÀóœJ¹—÷²]¤ÌªGâ;
ð›Ãé€Føß
ž^Ü^^àÞ6|óÐ[“¶%æe7‘2:çþÀñ¸ÑÏøÿÿÏ÷Çý!ÿrt’ 	p†àjvðëÁ¿Ð?
-endstream
-endobj
-1654 0 obj<</Type/Page/Parent 1369 0 R/Contents 1655 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 1055 0 R>>endobj
-1655 0 obj<</Filter/FlateDecode/Length 1676      >>stream
-x
W]OÛH}çW\õ¥¬DòI¨´4	*„lâ6]	i5±ÇÎÛãõŒIòï÷ܱ¨Åj¥UU°=s¿Ï=÷ò÷Y.ñ¯GW}Œ)HÏ.½K]_áçpÂ?ûø_HŠÜÁp8öúï†“w Ü»¬¬¾œõ EýÉØRJý˾w]¿%´vúã
ÎZ¦?ûgÝÛ!õzäGðv<¹"?tš/ÉÎý$)ŠäHþtÙ½[’±"x6´!%ÚÒmËØx¿ù?Ï.©Ógó~xþ ‚BYÜ42‘ÂȐDF*
-™Ê̊„Ê<.D(Éj²;©ŠÆÈ ßù¬,}?Ì(,ԋ,ŒGìI"¬4¶QG
Ômem¹7@–`9Òe’Îj‘ÍÉ(+IX³—6ŽyN/C!¼¢n.›£éîUê½éæå6QA׹ʻûho}O¤óuS¦eî”y}ž=ÀšJÙNâ¦ÝÁz(MP¨­4ü‘òBo™òÎö|+Rz´{'k8UI‰ôlîëÇéWovÑ2éÏïsߛÿ˜_ÐÆ]LÆô}ñÙ÷ÜÓfÂUþêf:_՗!µöoê‘…-½oŽ]i»·×ÔCe#A¯*rè!éÍP^dØË÷Ií¹ˆ¬,(ÆìuR°Yì
-õk>cí|mb
-5ò"PŽÒé§ÞÒ^ÙÝI
Êͨ«Ë–ŠðZé¤ôxºÅE—ƒeÎp™©mõtõ¾œ¶bäKFDŒ(»SYÌ05ÊꪘøΛ¸þR„BUÈÀêâXÁs9ÅI’•'wÅV—–2m[–9gº&æM°°Ñ#––4pOÊ^H
‹1uÉ®¡wê3@¥Ir»ï"w?ÔÙG`±†TßäÒeŸ2Ý¢ÍР!•¦Æ¨N“ú’/Ý[iµ|„ZÁéL¶}y2r¦\ŒV£ûÁ)*Î4€/NVœƒ1:ž•s‘b‘è˜ëø8x4ÕY¤âaêU'À&Èûùþ|×¢HÜ(4)± "LрQÌ-_ó	`	•y¦§s÷kòôS ƒbs»¡"uFZ€hÊÀ˜Ð†xì1o“ÕüÇòf1£›OOO7³‡»Åôözù/šâº~ö¸Yÿr2gDZŠJ@%¼¡üE	çŇ%bi«&"±,>аËzYɐEÐMÈd@1(¶…Nh§÷..—B ¢
RIT€ÄZ¶–M×OEàÚJÚÀy	\¹¶®ê0ªgÎ9”…²Gú¡WTÇÿF7C”£c¥**gÿäU%ú:͆©øÜ9±ÑÅs\è27àj0~e5#7~o%r
-jU“råÜ|—=éÑ7f–“Ñ÷Çëí@fÃÙîtïàûNÏ®P&ÝbeÑÓùRl¦Â*TTgí5¶(A&¿FyÎޙ\*:Ҟ‡	˜±
8¢=ŸŒH·‚\A÷ÚâȒ§$@È
-Ø?ôÊk³£+ÒžH5ØÔ)ýx=ê~¼žüêï
WÞؑ;+-
³W#r=¢Çù­W}—‡H7ôVÍNô!’^Õ)¶„³ŽáËÚ9Än%kR†fšÑ¿t[-ý9T#ܖà`俞Ž}DµÕè,p3€j¬ï®o%Ü®[÷ÕN³ÜTŒÁn¦”F&«ñ4Ä+ª	ÿÙ}þõV‘E²(ð¹Õ릴‘ÛjUá–F?rR‘Ê&:4I
 Mñ"T÷jZs8EïLKћ¼»|a=mi_e‘É„¾¹¥å}]-î¿-g¼M°í¸K`xÞóˆßñzrfÉ5¸U‡O´¼[|yO{A[h…
ÙØÂóÊO<ޖ«WÏFôûÝò=A ²-¸’Í„>Ùý¾š­Þ“Uҝþè5=7‰Ñ<ò*?¬é±´÷Z?»édx£S…«jÙ=cîñ~^ÛÀ¤=ÔL‹'7{ÕyU­Ôd›?£B§Lo1§ØA
kÍ
”{
Œ¥´k	þnÁÆ)žÝ̀p|£å1hU¤°/[†ˆ˜Sõ\®ùEHãz5“‹Û3¦»Šw[]ì4Œ2ýA_µëwo'5÷Æø[f2ÀŸ½ªç×7Ÿosè'·ÙL¥[÷¹Øj§è\]^3¼þÇ9O¼ñ¨_Ãs0b½sÿ쏳¨M+bendstream
-endobj
-1656 0 obj<</Type/Page/Parent 1369 0 R/Contents 1657 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 1058 0 R>>endobj
-1657 0 obj<</Filter/FlateDecode/Length 1190      >>stream
-x
VMSãF½ûWtqYSedYزÙ*/	Uم]»*‡8‡±4F³Œf!¿>o>d@–಍%u÷ô{¯ßÌ_ƒ	ÅxMhžÐiJY9ˆ£˜ÒÅY4¥ébŽÿ¼kN{{>¾ý2˜&“(¥Ùt-¨¤é|ŽoÿKÒÚ%JN<ÑKt±Œ¯Îh2§ÍµÓt†¸MîrǴɆÉ4šEô»P¹~4”Ĩ»æõƒÈ8ݲ잒ãÍw¤˜ÒdâSœ$s”ÙäÃMÁ±V†·á¼f’˜Rú‰©ŒzMÑËz›Dt£8é=="+H+ùD¬ª8«PpE­êŽ­Y¹c¶pL'“Ó(±åVÅkj4Ú4x?ªZï…D9\}ÝÂmB™\5†„BÆîn®K&TD›BbÆ´¥.Xãk’½Ú+\òr‡ZXvSpò	F´k÷KØI^¢a)IŠ{Žžt–µ5‰=‰Æ&Tº‰BÎ$×hæZ‘®sßNhìЋi3 hö­DªŸ5¶:Аžt ÛÕåöxôŸ0–-À+Ø÷¼Î¯CR
±L’i«J×
cÙþ‘Žú!±<ç¹]’ÂO¦°ü{:
N,˜œjÍJ»˜®§ˆ®-zÀÂÃ
õpF rÑW^Œ&=ę.+	
-‰í4(°Íï¸k4ص1‡žKÊÓv¸ôW\	žo{•™Ê)«9k8•­lD…L™®º
ë Q+ʅ¹G¢ÕÍçåõ—ȪÓ9ÑëɈx“EQ´=Ž0GXÐ0å.Ê´Úo‡³J—LQÅ©Ô3ç
•-€KWÐPìRmÛµ9!W$þ9ƒ}ò*V³’7ÐÜ#3¶\ɬÀÝI½c²ÉóӀºæ’3ËmU, »
…]ÙWˆì¤½±ÚÐRêGË
-`-TëäàUóÑ/0¦³ÎW¦~6(üýèû³[Zì¬kØÝï¾+«9§1ÿÛ
-w¢Þ	êèf`õœâ4Žß	ÈEͳF×OT†˜ù»1oŒ”5µ7zsï‹?Î’ÎxA	3PˆUSÉ®uXwÒ°~—ÜÓúyx‚ž9ìI4OšÉjQ¡«ˆ(r#ÝA†4•q¯ï]­¯W#øîÒñ>i¯[³Å<97ÆX•V°	Üt…×ËÏËíÖY:rôÊ¢U)þAˆwÓ\ì÷Øx€í¡Y˜‰õrq§¼=ù™ô	#ú•cG²óò4NGÁ*rç
-G½²Ø³/ïÀ&ÛI«n$µQã«·lÔß}vÐÃXsöžf8€³ô¬¨Ök*­Œ³µPêņøµåõÓ:p¹z¦²©™2Øþ0ÞÁ™3vpæ#l8Ø3X-/ëk l’á‰:öy¡2ÙBC¯!p2õ“ü’:ºÂ†F—ÐP­¥{|•¾8U„ñËÍæ}ôû³u®Á¼Ûâܦúâ˜ÙáØbí(L3øÔ­ÝòwòàRî¸`eåö~wr0ŽÖñÕ",`’âøµ8¥)ÎGnƜ$é¶Öß1õˆÌpP€ú­ÛvOº€“yÿÊÿß1jš.¢t–à†ˆÉij3}Ú¾þRO†endstream
-endobj
-1658 0 obj<</Type/Page/Parent 1369 0 R/Contents 1659 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 1067 0 R>>endobj
-1659 0 obj<</Filter/FlateDecode/Length 1662      >>stream
-x
}WێÛ6}߯(º
6òý²
‚¶iš´@ÚÄ@ /´4²˜¥D•¤Öë¿ïRòz•m¬­9<sæÌ!ýïՌ¦ø7£ÍœkÊë«i6œóÇÇWóÅm¶¥õl•Í©¦Å|-ú;CŸ®VËlIëé<›âål»–¡ñN^no³-§Ëôòv‹™éN^bZÜ.u¹ÝàZB8¦òj6[È+DYJÌÕÓÒÝ0m¾’£iowW“÷·4ŸÒ®DNë͖vELOòë_+Õv4_eô‘[ë‚nô¶;ø—»¯qæl“f¾Z¨]q¡³Œþh‚³E—m›4tI³Y?t¾ÉÖ2tW1q­´!UŽ½§Ò:Úw¤$k¥{ÔÞ0Vž=iO^Õ{õsü̬;d‚èÉeÚJ§€)½C¡¯lg
-:X
-6…z8¯+s´Ÿ…Ò-ì_qy
-êŽ)xÐ5>,QU©
sÏȁéd;òݾցÔEFýb¼½¡6ó̤K JyÊ+Õ¸@ˆpdŽ´] ò¿!=2Õꄑi’E0=R'Oj$¥íkR¼¸Àœ=Ÿ—.*¬¯»¼’oÉ!W|;Ϧ”l+6-§ò;>6ê}’’HmPÏ&àO9!ù‚¸Uáàlג-©e:èXYº·¦kCpÈFãxoÈßic<©¦ .Ánðý#‚ÈYßCûÊQ-œ'%ím„р܅'d0Z¹µÞë½
¸ÆÙa
s­¢©”~¥`9JKÃ#…b?HébÈ:¤ß³±-»Ñ’¥ÓdN/.J$†Ì19ÆHƇq…ÞYj,tä}'5”YýÊÈDM…Guä2·u›µÎ›[ã3_ï©á£ïéŽÌF¦D!FÇù¢Ž`y;j[´sŸiç[Î#·!ʂ°š³–ÂGŒ1¿=* ¤)õ¡sJ<à<)&@çâ-҄ Ô̎HBIYRÜ
rl
¼BÍþ¾\ KB>_^Òj
-?¶2Ô²ó‰ísÂ}ûDktbŽ¹ÿŒ¡±=Œ–Þ·d¬½C<ÛªH¹(±	OYU.¯ Naké'#÷Ü@	Aėçp<èòŠ}4J=¥}ä=µêÛCŽUíëÉäì{éj1‹‹_zqô,xñ<£Ü°S†tSF~'ïŸñâ·É·’gE—¿ô-4£åÅ	úºF«öÌ‰Ø9ëГ
--:ù8:DCLn÷÷ÚBå5R–lF¹ÆÚ6&öS¼ÃR?¢kíÁPÄÄ`µP®˜ëÀûÐ*WKYäú)D1dÙRrëP#˜à	Öô0®ñïÒ÷X/¬àK}]­õÚÿD;1xü¿gw"]Ëo:µoÝä¦+…s!zǙ
4Y¨ÆG¯
5â徃HˆjÐK°Li‰8T.š9JïR؏8,¬ð’¤D¹•‰f¤ƒ’Fÿ¼$¯°ëv$
¿«£EFïX0±¸~ûFG @âÊHÙÓTsJCZØ]b6IÙ{†ß
-d°•Ê#M!.ŠŽÍhëØoŽËÎË8D€³Â†£®ÐåBۈYúQyâhÑxÐåq³ŒÕƒ#”‘t­¸ mð2CÄ<¥zývL‹(ºÙ”p~8bÚ3Ksiñ u¥ÄÆOýž’Äâ¶U0¶KsÊÄBNâXÈÕ¦}¨ÐþŽ|«òoöíØfªoñX™-À&ïWýyëú"›7éÕP¶ës·¦ç8ÓÆ#Ú56LÚn4<£Ï—vXêäډP©ÏHJӔg˜ž
iɯšÕ6²kÃ(ñ-ò¼cn}#êG”äŒ!øŒ8”O\Xùõýv8\ÊÙçµ3zC³édŠ£vÿ2×ÞФónb,Î~½½Çý!û¡MÚúæ¤õŸºl<ïŠ`)ǦŠä’Ši@ßÿ,˜sàžª4籈Ǹ¾èß¾›’>hNÐ/®‡DúpïÑH´ÇFEBrlÇp¸F䦕m¼9Ñ°>l´®Q¦t2<Âÿn¢»Âjœà¬gd÷êR{Œ@%¡¼â´q»UÆØcZù
Ç*œakÑE
-]–0-ÜzÎ;§€ž|à[.Ú.z³"¹8ã ¹„tûøƒd±Išùþϝåz›­WsüL‚‚f‹„ùmwõ÷ÕUÝåendstream
-endobj
-1660 0 obj<</Type/Page/Parent 1369 0 R/Contents 1661 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1661 0 obj<</Filter/FlateDecode/Length 1668      >>stream
-x
•WMo7½ûWLu©IJ¾,;zpP0Ф©£àw—»bÄ%U’kYÿ¾ofw-wmŠ @Â%93oޛGýs2£)þÌèrN‹åõÉt2¥‹«Å䊖W—ø÷ƒ¦R>̳Éò­³ùÇ·O,ß8ði}r~»¤ÙŒÖ%‚¯®.i]O§´ÎǵÊ7ÆéÉéúÇɔÎæ+„\ãõF/ß"_9:Žu6ɽ+ÛåþÆ1i—¡]¼è÷’õYý¨-ý:Üo"ŃóîPû&ÒÞ¤
%D{óšBgMõÎ=i£mT¤LkGMÔGÞ:pH3[Læ\Ì£ÑxɗôMՙ"尙OW
ð¤AA¥”©|»W¡ˆ”ûz§’ÉŒ5éÀG{¨4VÇ!bבËø8<*Ûhθ<hÅù|@¬EJ¹)Š¦r¦4¹rÉúœt
-²ˆ*^2ÔHÙ»>¹[TVû˜^ìö;do”°µ:ó‰œFˆ«Sâ;7¦Úè€Ê”£Å„¾h‡BŠh0Âr¦) Æç©
öýEÈt6ý€S‰ì‚Þ©ÐA®èï›ûïdU¨4=zÛԚáf
-*)©åüö#ÍÀ\¦ðÙbْt~1YNèÎ%œ²¤Cð!þ—nLéËɊYpWJ¡•F’4ºû²¾¹ÿrý;ÝÜßÿq?¢ZǨB‚D—>“Iø¨À!\˟
-H¡ôÆ駝Î
-áF);(~¿
S(4Î
Kdš¸Ý»à3•1Š@¹ªÁ{i•ª±|+`´Ò«\&&v¶ñcÎ	¶9<ŒJûq7êC„ï;@!¡¡
i€îbÒ5E_&^z8íÎõªD,Å‹\¡eð8QgrŒ†0ô¹
-tSå¢g€CÆuõ þ|Ρ+ò@“c$ûíó§çà½6í5sBë(¤ôòF
-óõ^6–Ñò1W¿Çÿ?çf¥NÚYVÖ "g›½F?ºv3²à¤©—NÉwh2n|c¹/ÑwÕÐÆï)y>|ÑäÐÀ1ð2%í|ŒiLè«ä@µÚò.”Áj÷N8Ðb£‹·¢²$%di@
-aŸÂTb`Z©ÝjV¨
„æBØÅ&+ L@AIœÚqaAk‘ÂV띰}€O”Éúk']Û	Šìù6ágׂ何Ñùº@ôÜ,›Ç[áƒ_8äùmo/œ§*²–n\P»«÷š»TQpˁAð»`TB×UÚ ;ߞf	Vh_ɓªÃQאb;
-ï~f\xJc>hTdO#&Ÿvlد˜t)›S…éÈåñTPsܑ@<â\*°™…ž0 …©2ÚÚ𑞪>ϛ€fò8rÂ
-oz²ÖÓ0]A[Ç"P̉Q×<f¬rUã
ñã²&âû¨'Gð
¦½¦÷ó¢‡18m»Õ«oMPë¯iIN¡çø.‘ÃA˜¹éáT&c´ö>l	¹~R9Þë„@ÀL^ CïnÖû­°!I"ô‚ä¾€oQ9òo	È-gœŽI˜
-œé°æ‘Ó6ú8]é쯂tä=Ÿº˜Ðu	ÀŠ+U½+0rLñ×Lïlë/võÔ8P€D‘Ü8ó¤#·Äõ!™¼y¶ßx‚ºDָ扶0Fm#@Æl–b~5õás¸0“Š[~N
K„óWhUc
-lº¸Aᑂä‡S¹È¡Ï¡Mi3Á:Óaìs£]³•àÁ`pøÎ$Ñ;p 0Æmô<¾Þý6êÈÁ÷²§céÙ« ·ÔÄV¿¢ÎQ.jÄó<Ç«‹UÚ¥‘+3Ë		@V\Ö¬
¸rïQý9ä*Áëx×ÑÈÑ2+¤kyŒø¬ó¶ßo?jVð¾M¿ÏŠ5âdºå#GÅ(!f1ŒÎê":^š§Ÿú¹5Àë3“Ãt6ÉPµyõsyß(K:kÚå~yÞã¥Ùiê÷67_ŽÇfÇΊّ>Dao02ߍ–/á&ô™ÍÂã
-­‹°©!9Uá‘$Ài­<øµßÍ6¾éŨˆxÛÁ¬¹ÿ¤˜dç
Šê~.HãcëÍç·Wݏ›Ù
-¿Ô®´ºXáW–ß®?º¦¯Áÿ€åÒo>Ƕ{Ôqô³þÀÙåô#ï÷Ùº\]MVs<q±k¶¸âÓ7ë“?Oþ§“	endstream
-endobj
-1662 0 obj<</Type/Page/Parent 1369 0 R/Contents 1663 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1663 0 obj<</Filter/FlateDecode/Length 1323      >>stream
-x
•VÛnÜ6}÷Wö¥.h¯õ
ÈÃÚ^'Ø»®%7
Š>p%Êb-‰
-Iy³ß3¤”:ªûPlq8—3gÎðëє&ø™ÒéŒæ'”VG“hB‹óóèŒg§ø{†_#)÷ÓÓI4{ë`~¿_&Gã›sšM(ÉãäôŒ’Œà‚/éñU!'
ÍN"ºVâ©ÖVÕOtЭ!+ª +͋4?'y?ÓÓàçý|’짭kgtÖ¦Né:˜.h:íLg§H¦I¡,媔”êÚ	U[T*ëHçä¤u–ãR*jj¤Éµ©Èiz¥Ê„“!§øUNëH”VãrY†ËûB8r…„ßgY8—	½ŸÎC²©h­ôÑ`ѽ+eEHJå¤åBÁ‹¨¤ëÞ
-æÖÉÆ"–·i„µFeÉQpòÆß5»€/v+våöÚ<ËA
-¹ªeÔ}v檶…nˌ2MËÛ[_÷üŽTíÿÓ&C›`µ¯#ú,©/n”̤T™·%¢¦…ÖœVÊ€L	äL—¤®ÿъFìT©œBahµÊÙiV
-SªÞÃ0o@Â
³²Î^AÖñ¦šL%n0£J’¿àðÀ_G+ÓÒÖ?9Ô™÷æ«5Ú¡ËRï¹>ðf€"cÃH§2k1~ŸJ@‘¯ïйÖ4FY¸À™éàvƒæFf¾Ž×¤ö
Acf-­m«†)íÏoÞàôºö\`ƒR J[…СY‚^“°—%Ž/×ãÕÃo«€ û«þdyu»^mÚiWÊGs˜]OF·
%«8ùø°}¼¶'	$ï0BÝVUªÈ‚Snë¡Aӑ}Š.×Î]¬=¥ýŒ½®ç¹Ö{_p-*?)h¯xA{A|À^€L º­væ=ÇÑ^an‚#ßÕÞÔv5ʹªEô¥‘eÿ±»ÈCN»á„IÅ-¬ñÿiêc_°ãñ̈́Î{IZ„Éûþì£N ·˜F¨SU
ú€~V6¼lYZ6Â0ÃËðÈHÁC‰ü@ù‚$~ZÅ+ßÁ˜–qüx·"P!^o74x	lèv™€ÛJ>­(^Þ].)~\'«ˆâ-쯶wwËÍuÜ'ÐI]üiûyC×ëkÚlZý¾ŽZohµ|«ú(ý­^‰îK) 	¦Î
Ÿõ…‘•Æ€7•´V<4<nF¦R½H/Ž¬›?˜ààaökrà‚ß%¬’;‰
RnëzVgÀŒwŠ˜+ƒYO™>÷Dë{òÔ3Òê²õYÂiª
2r¸o¥£¶‰H>]НI aƒbŽ¥KÇÞˋgiØOV.ÜG	+°+e…PËo¶áÄ,± ÚAaÄRä%ízw»”DšE?†Ã*šÐ€Wå2ô(Ç
¯p…‘TÑó<drÚécG–,tòÓ°Ö¦îv¬ž{ô˜7G,ˢŀ‚Ð#–±F`ýö~Gￔr§¼¼¿Û@Bù©ñ~>	{äšó#­hÌ~Rž:)Wš)î ÆıÆ*-ð©{
ô9ùZߑiÃEZ^!o$ßï`ê?Ï[î/¶x j'ZüRÉÕSk„瘼¦\àðõíä«ötßߨ5ÖQ©Slc^­^IXÂ#éØÓп·~„瘶æMû֚1û+ÇþÖ¸T»póìŸw×â<ˆÜÿyã-Nð†üe†ö¡'Óù9;]%G¿ý
ú)VÜendstream
-endobj
-1664 0 obj<</Type/Page/Parent 1369 0 R/Contents 1665 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1665 0 obj<</Filter/FlateDecode/Length 1622      >>stream
-x
½W[OÛH~çWùeA"!	4ÐJ}JWH,˖h¥J¼Œí1™bϤ36‰ÿý~çŒ
‰a·o[{n绝ÉϽ)Mð5¥ÓÏ)«ö&ã	}˜Lñóäì?gøöšŠ½‹ÅÞÑ׏4=¡E)ó3ü’†O&´Èögóññx6¦…5Í?0ú„¦Ó8z4;Åèýo¥z©)sU¥lNÉÊØGº¸þýþêÛßWß*¼«dÄÝ%½8¿¼¹¾º]l½n¬ÙPê6cº.¨u
åÎþVÓ£®yç	¦8ï¨èY•&G	aålм¸åž—wG×w\Q¯J4¬«q6ïuV—-jU–:w‹¢F.zÿÖÕ¼ªeëµ)K²ZçT;Â_“¢$wV¨fU'´66wkr±x”†Ppõõ»zP	V©têQSP-•,ÀåC®±yBÎS0•)•ßªëËíýkQq¤ëìˆg*LÙ×9Àéµê ëf\kdåB0)&u'ªJ꩗®©‰wÒ¶öFciìÄÔퟵò²Òàí!¥zM*„¦ÒYƒÝ—ê™E!À¿YÑëJ
@,ê
-ނI„ȹs³Ä(¯UÔëe+Se—@L™’+2¢O%þ–±-Œ×k°ýݘ¾CW;äz]ª
ap|ߔ@•`ÍD–×Î?AµÁQðègƒ#ã÷CZi¿T«@iKØÎA¤²LGõ«®ŒÐ¤Ë=ìccޘÏ›CùšžôͪX«¼bå=zUxô¶oGÇÓ(b1ìqgØã8ì׆
Ui¥ÑͶq;m¿ú’ÁPI™³+¡åÒ@»`P=ƒ	Ś
-KØnXNª²§!³;žÐÞCj½32gk¨ƒAõAŒl”•Ó
-Š°	ވç–[·$‚Ӑ±Huâ`+†‘§ä0ú/P®m+ÞKb¶4Ð|HP ˆÕ.ÀiŒ³‡ìQyòÈ
-`¦a]ñûXÓåRgOƒ½×]¾xz3³	R$»`¥|•ˆÛj]­œWÞ <XÆÁQʶý™EjƒPì?ظ+çNŒ}SáÛ퐓 f‹ôdÕ{]`)À¿›½BS•æ}RTª•HKuïŗP	`2ì«Á9
wÈï¬sSs"3ˆ1õzŠËöýõx¦\
91°¥ŒI‰+ðöC¡vÁq£îu,ׇ“¥Æ…Qy‡†ÀƵXÿæú~quË]¤£ƒùo©ä?…ŸdDVÒD"ñy¬1{;àù9BµçCªF!è%Ø½#ŽßꀈSÍBklˆ·y	ÕË^­äÅJ©Îx–`[õ¢é›¼ø:U•®aé’à_œ¡úþ5ظPè¼²G©+é7R
Œ^¼.Û¬8N`´|Lçepab6¶žáPGÌ<ì÷f|86ZdƆ$H‚,>Ø=8‹EÄ`>Ã]®A Wdµ“¾·F„pƒæ¾ø¤5‚Ñ)BœÒAB|Š@zƒ¼Ù|ûPd›*M.v°ØS×K“-¥Jb§Dn9Tr FâÂ]] Òq֊¯
-L
äìŠA(Œ(W"&¸p¤:#¶XÀÔ·¦»ˆe×í?ñzG_'ô±¿ÞÄ¦BÝ¿xÝà ¤Ït~sÓï?Ÿñjw˜dÆm6›ñÖ÷QÛþË´×
œj*'
-@æ}¦ï±™ìÞ;ç¼ßuìÉ*E*"mb¢+›it´bþP©×\àÀ©9€¢e
Èe@5µ«Ð×3»¥Ú+Jv3Ú?`íOÜ]?KçVÜÑHåjÅàÿqh:Ãå_S°…[£ð ý}ŚϖÊâæ™b¢Ù8ÿîr¼Èñö•@°üâèöÏÂKGÉ{d$h¾ßqcƒÀ•¢ßµ	K†ªŸÓ·ê®ê
ˆ ٔ¦n%1:¿½\C¤}t—ïîÓqF ÜfJ-²‡Û+iMxďã@~ÞølHÝkr†12äwþO’¿¬8ׅɘYۏԍ÷Htü(ö­Å)œ(Y=²0ôµàœ}849úzÖ}̚Ρ©³cšŸ~Œ~îÏÿ¸8§;ï~ ®è‹Ëp
Gô1ñ¨Ÿ0:ÀÈù;ŸáNægãù‡>ïáõôdÂÓ®{íýw]¢Îendstream
-endobj
-1666 0 obj<</Type/Page/Parent 1369 0 R/Contents 1667 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1667 0 obj<</Filter/FlateDecode/Length 1406      >>stream
-x
…V]OãF}çWÜò[“/ô-°l…Ôݦ`Uª„„Æö8™eìIgƤüûž;3	Y/»hµû~œ{ι÷߃
ñoDçcšÌ¨l†ÙÎ.ÏñszÁ?Çøo%Õá‹ét–ßúb2eo}1;˦ýϯòƒÓOS(¯‘|vqNyEH<R^Ï[ãWÒRišÆ´TŠÎI25áCüâ7†¤µÆ:RŽVâYµKr¦‘~Å¿	m¥¨^ÈvmË#ÀÚXO£Éå	¹®\‘pt/šB|È¿i0š £¼:~8Vò7rMQqÜíëµ5
©Vújùá»—P«'IÕRy¡-„_mŒ}r]¯dùD/¦³1BVš¶¦ZiÙK]ÈÚbo_¸boÈy’C-¨VP%$8!åFKâÙ(ÔCÚxÆ¥¶óVxeÚ_Räñ¨£©y[ыô$¤kãœ*´L "-ÕBéÙ(¿¹ÏiÂíoV²e¼Xæ©î	A*:åækDU
-‡¸Ue¥s½~œô rÄUmi¬•¥Ïh¡¥Àˀ‹_	R >†½´µ(%Ý.h#ßÕ.Ùëg÷±ªÏ¨êg©SâPxHæÎ8p+Ô¤_ÈÈ*qKŦµYfmS„QeœàôÓ%(³u0Elñ$›f”K1½’z0fRßu1$s™ñ;D\mÌS·¦Á]Ýþ~s÷÷Í=>ÞÏ?_Í3úÇtäV¦Ó-=
ˆ$¨yNL©^ß±3'í3„Sˆò)ԍj·L¸
¯QeÚ£²%T¨¾ÀP-¨§µ¬~Ä^Ã@LÆ Öª<a^lGÚ«-²w_UŒ„VÎË Q¾«Ö[™ž÷+ÿ³e¢¬­
y!Hs
R®™Õ©š5¾‘­:À€EhT@œá©µ°!a°Æt;ÝÖ½ªa'Áa£L[ü3‚»x	í™VøMr¥Uk†t†À½†!¾U˕§½¼Ü5}5–wv–vö†Åˆ»vâSgÉ\yʯ|›_ÿq{ó%§£_¾–,ã
ö-®Ý>½ópŸP
)­0Øcí7¬þ„õâ3ãìÖC{§Ç@¤ølpAY…O8ÕvÇ9Z2íBà5í²OT·m¶22¤†Qý,éY	úøåžCµÄ«…c~+°½N’%ˆÂàU©¿3®Y×ì{€ß2„ŸŒ«¢ñO•3A½ro ÇÁ渑µ•ÏÊtøƒªèàÚ¯CȇØótȑ_«d-:¶þۛXò£ŒæÔvM
ہ3}‘¾PƝæ× º2Îï䶵ùäl˜ÆÚ´®Ð^·\Å¥±K†~=ïj­{i‘„«‹¯;	‰F5#,Vf€=EsÁÞc³“’™CVã”Wh Ò¿´8BANRƒ&–²¿Õ‚b„Á
-[{ƒtÁ5¶Œ[r
-AN5JËЄï·cAOÁ‘“V£v¢à=À5ïLøبø¢ó¦%–èª\‰V¹^ǐ<Xá2ˆ8ÍDþ·–„‚€·º8ÜmewHfÍ7ï͇J¼mÐ̶ÃÔ^ØkµäËÚµ{;y¥TØÌ Ÿo€^„ÂÙ8ÓjuÙF’­š§% È6±QZS+y©c±$}cÙ¦êñ!î“@¢wŒJ~xÇVöërd‰…xU‰8ð}EqmâlìS»
-v띵‰“ð¥£éáøNÖPêN÷_,}rzøŠ:ýt‘ì4Ã1¡ÙdŒëçH82haÍWdôєÝneòLÛçÃK~þûg:»ÈfgcBøz4ñk7ùÁ_ÿ:Fïendstream
-endobj
-1668 0 obj<</Type/Page/Parent 1369 0 R/Contents 1669 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
-1669 0 obj<</Filter/FlateDecode/Length 1712      >>stream
-x
}WïoÛ6ýž¿â `˜Ôvì$Ž[tš®¬mÖd
-ä-Q‰TIɎÿû½#)Yvš%àXäýx÷îÝéÇɌNñ;£Ë9-(­NN'§tv>Ÿ,è|y‰ÏsüYIùÉÕÝÉôã+šÓ]Ž+‹%>d„㧧t—Žæ‹ÉÙärBwÒ5tùâî;NŸÓlNç—8=úÚjj
-I©©*¡³pê"ž‘«Vi©¤nh:½ºþãöÃ×>|Þ}º947šÐ7Ӓ+L[flOÓJRmMU72£ÜXTç¶Æfþ,ß?¥ñìl2ç0âÍÖIMw”LîÿijZ±ƒÜK³^îҍñÏ[­iei«šbB×¹?¹¸Â'~BBgœwÖ}Ü"ó	ÐøozhQÉ7dêF€<JuÁEè¨TZNH®_?â‘ßét¥ÖNڍ´Ó¦ªáò»)tfd00¬Õbµ}6|M×
)GµqN­JfÈÕ2Uùî;Q½ys…­åLH8¤,ÍÖ=)Ê}ÛQä}¤¿8™ZÙ<ðJ_PHÚÃø¸˜±îk‰B!Æ|{›DâôǔþÕ?×(¼y KkÁ«J:'Öþ:?
-R5äÄÎQ¢ôF”*#-ð„ýêsÂLPƒ„‘IÐÖÊ´)wädÓÖ §a¹!&©Ñù$:C“ùʀr½¿•Èz²ü”êAÂ^*P	Ç4öð£ÇǝF¤	XDf¶ÞÆÑý™:ƒâyþöÖÉí\#«û´jÊTÆ@µ/²këÚØÆ7 ò­ðÝHÈÇ7ýºÐ5ãlB|
-ß#³”™H.«uk…oÀ¦t/³=¨P6šïuöû4Uê}œ
-ô}ßó!OF‚ó‘Z€æ¡+“þT)7²Lº®%j]¥'µi×ùÃ]X]gûȺxÖJñ[âûكKÎÔèsœÐûB¦\t¯,¬1µ°UçÄç~¾÷Ð9åÜ»„ú\¤Ní.ÈË°ŽVŠ&èáí§+Üò‡D/G™^‡ãùžt¾Q,
:ã2»ÍȲ€tµ̱ÕéÇýȔ%nÒº=êõÉ&ŌÙÕQµöw
-YÖô6Z|,vš6bJòWƒ ´kl›2ÜÁ<‘^ÞDÉÍãAoŠ(
¢òc
S"·R¢
Ü´P ™‘âVsÅ"'iËíÎÉ7OBĀ<õ>³ã³Yhy?_—q¾.¯Ád˜¯_‚Æܼ÷~½ÈED…=\P'Ú(¹¥{üô³öÐlœ³[U–P3î	C$$šcÚz.¢ï%™Áˆð8aƒ·
-3f{€0—v%@g
ÖcXP±ªôô€YÏ>Ht˜W?‘?ƖíÀ÷Ph½šæ(S†f…ˆ©
-f-ñöŒÓ+…hýp‚'S¶¤°³d+½Μ¥òÔdÓº60ƒe5£Õ
 oðšÕŽ4ô
W
LY Yk
-¬*Ïh¨jX3ÂX„3.§c4(q>1-Œhí/C„Ÿèy®1:5ḱzÁds½F·Ó‰n
¹¾!|*(@N=-º5$A1]¬Iâ7 äÌE¶˜½`HZOU§X¬áÍ{_¿ÞÿO4:høÄ\yZ›ôûç[FøÀÖ
_»èÐùAÆíf|*`©¬
-ã°›'Ú3áG™=P½¸FBþ|“ᬤLlÇëŠÈ㺮Á¬NHwǓ¶›©G¼à
&nÌã?aŠWO±ù° h(·mTÚ¢
^R%ÐM-¶YŸhò?̶›={õº9èC-fÖÒÝ¿ˆ®»áõ®tæ%3š»†éî—%¯•¹Hyg‚jzd;ÜV £¯–•?Zê“ã¹Î£b°ë†•ˆ$¯,Ò
֐>Lw#…‰]ùÆöSr[¨´ð*7xüÏÿßÈ´J¤…_¤¿¡
;c¬Ž<zä|J¤Ûàå#ÔËK•·y;<ŒiÆ@>2¾¸a!ÆÂÑÍÔÿ¶$lÙ
-M!Á$ÄBEb´±*Jµá|;(Ä’Ã’5Ýa_èØ~‚qÕ£•£Q‡qz	ævC/ù`UÅxÛÀc^¨ _-Ûjí±Ç­s±¯½Ä»(Çɂ‚ÿ°P4v;˜}O?.ã{ßl÷Ìå-.—¼ÂݾûtõŽn¬ù^Ðï&m+ÜÈX<>¾<}åW¾'/žç‹ådq1áì|Îî>ܝüuòÒC¾endstream
-endobj
-1670 0 obj<</Type/Page/Parent 1369 0 R/Contents 1671 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 1072 0 R>>endobj
-1671 0 obj<</Filter/FlateDecode/Length 1576      >>stream
-x
WÛnÛF}÷WLõˆiQ’%9€Ñ:møÁ®k3
ŠºVäRbBî²\Ҋþ¾gf©í^D¡HîÜΙ3£¿ŽBàoHÓ!&Gƒ`@“é$Òx6Åõÿ*M©<ÏNƒÙkFãÙë'†á ˜¼r^ƒAûñp}t6Äñp|ŠÏ‚Âé^ü·œÂIˆ ‡RÐp2	¦í7~ú!::¹SR”"•ÉlJQ"ÖÅý¥uµTžÛ¥YŽLlEkÛTç™65=õqÃ5s£ëw¤ë8xzû6ú
-›gÁÛ<…
.“þpŒ‚³€"íj:ó¯í\Ùuÿ¡1T/5Ŷ(”Iü[§m€}‚jœ¦ïïé	>Ü\?^>üvùðôÝÞšìô»mÈ-m“'4×TV¶(kHŠJåÜÊV	»3œTû*[Ðq8B9ÐõÚx8®2×lÅ5q¬K›<_÷¨À¥Zè€nR2¶Þ­èþgr6­W
-DÈe&¶U¥ã:_ãÚÕ(.ŒÙªãVŠìŠy[“œ¨Pß4ÜÞ¼Õ”HPêŠF)
"œÌ”gF³[ÚZãHÚ ‚Ö-°Œnê7–œ¥Ò:—Í
y½T’9]=³YeÞԄÊ}#Ûà‚’ŠŒ*ð¶e¿ùII•ÞG‘{
-S\ÇÅa4`½è¤­ÁC‚¦ž˜=§OÀøîâö²ÇÖùìuQþ	£qYC6Ý¥¶Bâšz»­7¶ÄñuÜI\iM’™ÅÆú–̉z]êDPåoi†êJiöUÅ¥Y8É´Pk°Pr€w€ª,ñJÇ­-9𗵧"[,A7®?˖b¶‚uÛvր=N›Ä‘6qµZo ’Ã]ªgÉøäj×Aíû[ú;:ïDg,ßØÉBŸÉãoAHD)ú.uÞØMe(«i®bð½lQ´ï’ê?‹dΫB884ˆ>ü²PÌsk¿5%ßRtù]?üò©« *“cûxÃDá-HÄåfZ/*C\sfO
-GUÌÕ¦¸ÐŸÁ	»rèsÐr+D:Ж©{¸¹'¼‚\0qùN¡\ö™W°‚ÿ!±¿ÿ6²´IëÄr[ž×O·Ý>c™¥
-6V@Hm¦©¥eÛþÄ]ôË×ú<×ÜŽ…ßÛ¬Ö¤*3ÒY·4®Îò\ìƒ})§³‘
CŒµ"I²eß¾u˜¦¨(œïD* Û}•{•Êe¥S
-•)±‡S[ÐsZkwȧ>óQÑN	PÚV
-©/5FB…,WuSþmÃ
mÃC7[Ú^aäøÁ‰a†ñ€² ŽˆÁƒ-ð{YÂ`”]­*.³¥=™g	Næ6Vy‡4[¾øÍG­‘‰A®Ôq–fЪ½‚?½=à,äG‰ú[JlÃWž¶¥aj¯g:~}:"A~tn"uKÌŒHÖ¦v®fæYåY²•£
QìèU?”‘|̓‹ç"[wÜV1Ì+tã]$Þ=™A‘Æñƒ]Ñ·Ý+à¾0LŠ®ŒBzK5Ïò¬óÑç ÊÅÊÞqëgó4j*~·°	¯
ŒŽˆ~ëå¸ZÚf_·§Î[IaÛûÒ{q÷ÑßÚ)øFçÛ/ô»¤/wї[cBµ3`³k‰žo6*.}‡%eÔ_VÃÑÅUtù ûj‚‚2wš²´UWxG|ÍÀS_ú•‘`6róN	âù±2bä5ôx4Þ®Œã€E\ ‚#Ôtt?VJZË26¶ˆ[
-¨ŸðÄ~¢WN´]2ò–fh´Ê©Æá9“¥^›Û-}Îý“¦YœáUߥ­}ŽcO|Äv$à°/Ñf¬(ÜØ?Ég`«ò`­x‡*,ˆ­æ|éM3ߖ,½ˆ¥™»¸Êxðuû7·KÍ-
-3œ¿7µÒs4×ökZÖuùþäd…¿jج€¼}ìk¶ß&K°åGQ©#†ð@à7‡¬á?|f#š†ÃNjÛt_Ù¯¼~´qSà—ƒâ
ˆOoOg¯ÿLOfÁätbÝp<âc—ÑѯG;endstream
-endobj
-1672 0 obj<</Count 36/First 1673 0 R/Last 1922 0 R>>endobj
-1673 0 obj<</Parent 1672 0 R/Title(Table of Contents)/Dest[1372 0 R/XYZ 0 756 0]/Next 1674 0 R>>endobj
-1674 0 obj<</Parent 1672 0 R/Count -1/First 1675 0 R/Last 1675 0 R/Title(SAMBA Project Documentation)/Dest[1386 0 R/XYZ 0 786 0]/Prev 1673 0 R/Next 1676 0 R>>endobj
-1675 0 obj<</Parent 1674 0 R/Title(SAMBA Team)/Dest[1386 0 R/XYZ 0 762 0]>>endobj
-1676 0 obj<</Parent 1672 0 R/Title(Abstract)/Dest[1388 0 R/XYZ 0 786 0]/Prev 1674 0 R/Next 1677 0 R>>endobj
-1677 0 obj<</Parent 1672 0 R/Title(I. General installation)/Dest[1396 0 R/XYZ 0 786 0]/Prev 1676 0 R/Next 1678 0 R>>endobj
-1678 0 obj<</Parent 1672 0 R/Title(Introduction)/Dest[1398 0 R/XYZ 0 786 0]/Prev 1677 0 R/Next 1679 0 R>>endobj
-1679 0 obj<</Parent 1672 0 R/Count -10/First 1680 0 R/Last 1691 0 R/Title(Chapter 1. How to Install and Test SAMBA)/Dest[1402 0 R/XYZ 0 786 0]/Prev 1678 0 R/Next 1698 0 R>>endobj
-1680 0 obj<</Parent 1679 0 R/Title(1.1. Read the man pages)/Dest[1402 0 R/XYZ 0 762 0]/Next 1681 0 R>>endobj
-1681 0 obj<</Parent 1679 0 R/Title(1.2. Building the Binaries)/Dest[1402 0 R/XYZ 0 621 0]/Prev 1680 0 R/Next 1682 0 R>>endobj
-1682 0 obj<</Parent 1679 0 R/Title(1.3. The all important step)/Dest[1402 0 R/XYZ 0 216 0]/Prev 1681 0 R/Next 1683 0 R>>endobj
-1683 0 obj<</Parent 1679 0 R/Title(1.4. Create the smb configuration file.)/Dest[1404 0 R/XYZ 0 786 0]/Prev 1682 0 R/Next 1684 0 R>>endobj
-1684 0 obj<</Parent 1679 0 R/Title(1.5. Test your config file with testparm)/Dest[1404 0 R/XYZ 0 437 0]/Prev 1683 0 R/Next 1685 0 R>>endobj
-1685 0 obj<</Parent 1679 0 R/Count -2/First 1686 0 R/Last 1687 0 R/Title(1.6. Starting the smbd and nmbd)/Dest[1404 0 R/XYZ 0 309 0]/Prev 1684 0 R/Next 1688 0 R>>endobj
-1686 0 obj<</Parent 1685 0 R/Title(1.6.1. Starting from inetd.conf)/Dest[1406 0 R/XYZ 0 786 0]/Next 1687 0 R>>endobj
-1687 0 obj<</Parent 1685 0 R/Title(1.6.2. Alternative: starting it as a daemon)/Dest[1406 0 R/XYZ 0 299 0]/Prev 1686 0 R>>endobj
-1688 0 obj<</Parent 1679 0 R/Title(1.7. Try listing the shares available on your server)/Dest[1408 0 R/XYZ 0 718 0]/Prev 1685 0 R/Next 1689 0 R>>endobj
-1689 0 obj<</Parent 1679 0 R/Title(1.8. Try connecting with the unix client)/Dest[1408 0 R/XYZ 0 551 0]/Prev 1688 0 R/Next 1690 0 R>>endobj
-1690 0 obj<</Parent 1679 0 R/Title(1.9. Try connecting from a DOS, WfWg, Win9x, WinNT, Win2k, OS/2, etc... client)/Dest[1408 0 R/XYZ 0 383 0]/Prev 1689 0 R/Next 1691 0 R>>endobj
-1691 0 obj<</Parent 1679 0 R/Count -6/First 1692 0 R/Last 1697 0 R/Title(1.10. What If Things Don't Work?)/Dest[1410 0 R/XYZ 0 786 0]/Prev 1690 0 R>>endobj
-1692 0 obj<</Parent 1691 0 R/Title(1.10.1. Diagnosing Problems)/Dest[1410 0 R/XYZ 0 605 0]/Next 1693 0 R>>endobj
-1693 0 obj<</Parent 1691 0 R/Title(1.10.2. Scope IDs)/Dest[1410 0 R/XYZ 0 547 0]/Prev 1692 0 R/Next 1694 0 R>>endobj
-1694 0 obj<</Parent 1691 0 R/Title(1.10.3. Choosing the Protocol Level)/Dest[1410 0 R/XYZ 0 462 0]/Prev 1693 0 R/Next 1695 0 R>>endobj
-1695 0 obj<</Parent 1691 0 R/Title(1.10.4. Printing from UNIX to a Client PC)/Dest[1412 0 R/XYZ 0 786 0]/Prev 1694 0 R/Next 1696 0 R>>endobj
-1696 0 obj<</Parent 1691 0 R/Title(1.10.5. Locking)/Dest[1412 0 R/XYZ 0 635 0]/Prev 1695 0 R/Next 1697 0 R>>endobj
-1697 0 obj<</Parent 1691 0 R/Title(1.10.6. Mapping Usernames)/Dest[1412 0 R/XYZ 0 181 0]/Prev 1696 0 R>>endobj
-1698 0 obj<</Parent 1672 0 R/Count -11/First 1699 0 R/Last 1710 0 R/Title(Chapter 2. Improved browsing in samba)/Dest[1416 0 R/XYZ 0 786 0]/Prev 1679 0 R/Next 1711 0 R>>endobj
-1699 0 obj<</Parent 1698 0 R/Title(2.1. Overview of browsing)/Dest[1416 0 R/XYZ 0 762 0]/Next 1700 0 R>>endobj
-1700 0 obj<</Parent 1698 0 R/Title(2.2. Browsing support in samba)/Dest[1416 0 R/XYZ 0 568 0]/Prev 1699 0 R/Next 1701 0 R>>endobj
-1701 0 obj<</Parent 1698 0 R/Title(2.3. Problem resolution)/Dest[1416 0 R/XYZ 0 189 0]/Prev 1700 0 R/Next 1702 0 R>>endobj
-1702 0 obj<</Parent 1698 0 R/Count -1/First 1703 0 R/Last 1703 0 R/Title(2.4. Browsing across subnets)/Dest[1418 0 R/XYZ 0 586 0]/Prev 1701 0 R/Next 1704 0 R>>endobj
-1703 0 obj<</Parent 1702 0 R/Title(2.4.1. How does cross subnet browsing work ?)/Dest[1418 0 R/XYZ 0 326 0]>>endobj
-1704 0 obj<</Parent 1698 0 R/Title(2.5. Setting up a WINS server)/Dest[1424 0 R/XYZ 0 613 0]/Prev 1702 0 R/Next 1705 0 R>>endobj
-1705 0 obj<</Parent 1698 0 R/Title(2.6. Setting up Browsing in a WORKGROUP)/Dest[1426 0 R/XYZ 0 665 0]/Prev 1704 0 R/Next 1706 0 R>>endobj
-1706 0 obj<</Parent 1698 0 R/Title(2.7. Setting up Browsing in a DOMAIN)/Dest[1428 0 R/XYZ 0 675 0]/Prev 1705 0 R/Next 1707 0 R>>endobj
-1707 0 obj<</Parent 1698 0 R/Title(2.8. Forcing samba to be the master)/Dest[1428 0 R/XYZ 0 319 0]/Prev 1706 0 R/Next 1708 0 R>>endobj
-1708 0 obj<</Parent 1698 0 R/Title(2.9. Making samba the domain master)/Dest[1430 0 R/XYZ 0 573 0]/Prev 1707 0 R/Next 1709 0 R>>endobj
-1709 0 obj<</Parent 1698 0 R/Title(2.10. Note about broadcast addresses)/Dest[1432 0 R/XYZ 0 786 0]/Prev 1708 0 R/Next 1710 0 R>>endobj
-1710 0 obj<</Parent 1698 0 R/Title(2.11. Multiple interfaces)/Dest[1432 0 R/XYZ 0 698 0]/Prev 1709 0 R>>endobj
-1711 0 obj<</Parent 1672 0 R/Count -1/First 1712 0 R/Last 1712 0 R/Title(Chapter 3. Oplocks)/Dest[1434 0 R/XYZ 0 786 0]/Prev 1698 0 R/Next 1713 0 R>>endobj
-1712 0 obj<</Parent 1711 0 R/Title(3.1. What are oplocks?)/Dest[1434 0 R/XYZ 0 762 0]>>endobj
-1713 0 obj<</Parent 1672 0 R/Count -6/First 1714 0 R/Last 1719 0 R/Title(Chapter 4. Quick Cross Subnet Browsing / Cross Workgroup Browsing guide)/Dest[1436 0 R/XYZ 0 786 0]/Prev 1711 0 R/Next 1720 0 R>>endobj
-1714 0 obj<</Parent 1713 0 R/Title(4.1. Discussion)/Dest[1436 0 R/XYZ 0 657 0]/Next 1715 0 R>>endobj
-1715 0 obj<</Parent 1713 0 R/Title(4.2. Use of the "Remote Announce" parameter)/Dest[1436 0 R/XYZ 0 212 0]/Prev 1714 0 R/Next 1716 0 R>>endobj
-1716 0 obj<</Parent 1713 0 R/Title(4.3. Use of the "Remote Browse Sync" parameter)/Dest[1438 0 R/XYZ 0 536 0]/Prev 1715 0 R/Next 1717 0 R>>endobj
-1717 0 obj<</Parent 1713 0 R/Title(4.4. Use of WINS)/Dest[1438 0 R/XYZ 0 357 0]/Prev 1716 0 R/Next 1718 0 R>>endobj
-1718 0 obj<</Parent 1713 0 R/Title(4.5. Do NOT use more than one \(1\) protocol on MS Windows machines)/Dest[1440 0 R/XYZ 0 520 0]/Prev 1717 0 R/Next 1719 0 R>>endobj
-1719 0 obj<</Parent 1713 0 R/Title(4.6. Name Resolution Order)/Dest[1440 0 R/XYZ 0 240 0]/Prev 1718 0 R>>endobj
-1720 0 obj<</Parent 1672 0 R/Count -3/First 1721 0 R/Last 1725 0 R/Title(Chapter 5. LanMan and NT Password Encryption in Samba)/Dest[1444 0 R/XYZ 0 786 0]/Prev 1713 0 R/Next 1726 0 R>>endobj
-1721 0 obj<</Parent 1720 0 R/Title(5.1. Introduction)/Dest[1444 0 R/XYZ 0 738 0]/Next 1722 0 R>>endobj
-1722 0 obj<</Parent 1720 0 R/Count -2/First 1723 0 R/Last 1724 0 R/Title(5.2. Important Notes About Security)/Dest[1444 0 R/XYZ 0 584 0]/Prev 1721 0 R/Next 1725 0 R>>endobj
-1723 0 obj<</Parent 1722 0 R/Title(5.2.1. Advantages of SMB Encryption)/Dest[1446 0 R/XYZ 0 786 0]/Next 1724 0 R>>endobj
-1724 0 obj<</Parent 1722 0 R/Title(5.2.2. Advantages of non-encrypted passwords)/Dest[1446 0 R/XYZ 0 662 0]/Prev 1723 0 R>>endobj
-1725 0 obj<</Parent 1720 0 R/Title(5.3. The smbpasswd Command)/Dest[1446 0 R/XYZ 0 564 0]/Prev 1722 0 R>>endobj
-1726 0 obj<</Parent 1672 0 R/Title(II. Type of installation)/Dest[1450 0 R/XYZ 0 786 0]/Prev 1720 0 R/Next 1727 0 R>>endobj
-1727 0 obj<</Parent 1672 0 R/Title(Introduction)/Dest[1452 0 R/XYZ 0 786 0]/Prev 1726 0 R/Next 1728 0 R>>endobj
-1728 0 obj<</Parent 1672 0 R/Count -9/First 1729 0 R/Last 1742 0 R/Title(Chapter 6. How to Configure Samba as a NT4 Primary Domain Controller)/Dest[1454 0 R/XYZ 0 786 0]/Prev 1727 0 R/Next 1743 0 R>>endobj
-1729 0 obj<</Parent 1728 0 R/Title(6.1. Prerequisite Reading)/Dest[1454 0 R/XYZ 0 738 0]/Next 1730 0 R>>endobj
-1730 0 obj<</Parent 1728 0 R/Title(6.2. Background)/Dest[1454 0 R/XYZ 0 637 0]/Prev 1729 0 R/Next 1731 0 R>>endobj
-1731 0 obj<</Parent 1728 0 R/Title(6.3. Configuring the Samba Domain Controller)/Dest[1456 0 R/XYZ 0 771 0]/Prev 1730 0 R/Next 1732 0 R>>endobj
-1732 0 obj<</Parent 1728 0 R/Count -3/First 1733 0 R/Last 1735 0 R/Title(6.4. Creating Machine Trust Accounts and Joining Clients to the Domain)/Dest[1458 0 R/XYZ 0 665 0]/Prev 1731 0 R/Next 1736 0 R>>endobj
-1733 0 obj<</Parent 1732 0 R/Title(6.4.1. Manual Creation of Machine Trust Accounts)/Dest[1458 0 R/XYZ 0 279 0]/Next 1734 0 R>>endobj
-1734 0 obj<</Parent 1732 0 R/Title(6.4.2. "On-the-Fly" Creation of Machine Trust Accounts)/Dest[1460 0 R/XYZ 0 372 0]/Prev 1733 0 R/Next 1735 0 R>>endobj
-1735 0 obj<</Parent 1732 0 R/Title(6.4.3. Joining the Client to the Domain)/Dest[1462 0 R/XYZ 0 786 0]/Prev 1734 0 R>>endobj
-1736 0 obj<</Parent 1728 0 R/Title(6.5. Common Problems and Errors)/Dest[1462 0 R/XYZ 0 437 0]/Prev 1732 0 R/Next 1737 0 R>>endobj
-1737 0 obj<</Parent 1728 0 R/Title(6.6. System Policies and Profiles)/Dest[1464 0 R/XYZ 0 182 0]/Prev 1736 0 R/Next 1738 0 R>>endobj
-1738 0 obj<</Parent 1728 0 R/Title(6.7. What other help can I get?)/Dest[1466 0 R/XYZ 0 177 0]/Prev 1737 0 R/Next 1739 0 R>>endobj
-1739 0 obj<</Parent 1728 0 R/Count -2/First 1740 0 R/Last 1741 0 R/Title(6.8. Domain Control for Windows 9x/ME)/Dest[1472 0 R/XYZ 0 560 0]/Prev 1738 0 R/Next 1742 0 R>>endobj
-1740 0 obj<</Parent 1739 0 R/Title(6.8.1. Configuration Instructions: Network Logons)/Dest[1474 0 R/XYZ 0 573 0]/Next 1741 0 R>>endobj
-1741 0 obj<</Parent 1739 0 R/Title(6.8.2. Configuration Instructions: Setting up Roaming User Profiles)/Dest[1476 0 R/XYZ 0 786 0]/Prev 1740 0 R>>endobj
-1742 0 obj<</Parent 1728 0 R/Title(6.9. DOMAIN_CONTROL.txt : Windows NT Domain Control & Samba)/Dest[1484 0 R/XYZ 0 786 0]/Prev 1739 0 R>>endobj
-1743 0 obj<</Parent 1672 0 R/Count -5/First 1744 0 R/Last 1750 0 R/Title(Chapter 7. How to Act as a Backup Domain Controller in a Purely Samba Controlled Domain)/Dest[1488 0 R/XYZ 0 786 0]/Prev 1728 0 R/Next 1752 0 R>>endobj
-1744 0 obj<</Parent 1743 0 R/Title(7.1. Prerequisite Reading)/Dest[1488 0 R/XYZ 0 738 0]/Next 1745 0 R>>endobj
-1745 0 obj<</Parent 1743 0 R/Title(7.2. Background)/Dest[1488 0 R/XYZ 0 650 0]/Prev 1744 0 R/Next 1746 0 R>>endobj
-1746 0 obj<</Parent 1743 0 R/Count -2/First 1747 0 R/Last 1748 0 R/Title(7.3. What qualifies a Domain Controller on the network?)/Dest[1488 0 R/XYZ 0 278 0]/Prev 1745 0 R/Next 1749 0 R>>endobj
-1747 0 obj<</Parent 1746 0 R/Title(7.3.1. How does a Workstation find its domain controller?)/Dest[1490 0 R/XYZ 0 786 0]/Next 1748 0 R>>endobj
-1748 0 obj<</Parent 1746 0 R/Title(7.3.2. When is the PDC needed?)/Dest[1490 0 R/XYZ 0 662 0]/Prev 1747 0 R>>endobj
-1749 0 obj<</Parent 1743 0 R/Title(7.4. Can Samba be a Backup Domain Controller?)/Dest[1490 0 R/XYZ 0 577 0]/Prev 1746 0 R/Next 1750 0 R>>endobj
-1750 0 obj<</Parent 1743 0 R/Count -1/First 1751 0 R/Last 1751 0 R/Title(7.5. How do I set up a Samba BDC?)/Dest[1490 0 R/XYZ 0 436 0]/Prev 1749 0 R>>endobj
-1751 0 obj<</Parent 1750 0 R/Title(7.5.1. How do I replicate the smbpasswd file?)/Dest[1492 0 R/XYZ 0 673 0]>>endobj
-1752 0 obj<</Parent 1672 0 R/Count -8/First 1753 0 R/Last 1761 0 R/Title(Chapter 8. Samba as a ADS domain member)/Dest[1494 0 R/XYZ 0 786 0]/Prev 1743 0 R/Next 1762 0 R>>endobj
-1753 0 obj<</Parent 1752 0 R/Title(8.1. Installing the required packages for Debian)/Dest[1494 0 R/XYZ 0 577 0]/Next 1754 0 R>>endobj
-1754 0 obj<</Parent 1752 0 R/Title(8.2. Installing the required packages for RedHat)/Dest[1494 0 R/XYZ 0 470 0]/Prev 1753 0 R/Next 1755 0 R>>endobj
-1755 0 obj<</Parent 1752 0 R/Title(8.3. Compile Samba)/Dest[1494 0 R/XYZ 0 294 0]/Prev 1754 0 R/Next 1756 0 R>>endobj
-1756 0 obj<</Parent 1752 0 R/Title(8.4. Setup your /etc/krb5.conf)/Dest[1496 0 R/XYZ 0 609 0]/Prev 1755 0 R/Next 1757 0 R>>endobj
-1757 0 obj<</Parent 1752 0 R/Count -1/First 1758 0 R/Last 1758 0 R/Title(8.5. Create the computer account)/Dest[1496 0 R/XYZ 0 293 0]/Prev 1756 0 R/Next 1759 0 R>>endobj
-1758 0 obj<</Parent 1757 0 R/Title(8.5.1. Possible errors)/Dest[1496 0 R/XYZ 0 204 0]>>endobj
-1759 0 obj<</Parent 1752 0 R/Title(8.6. Test your server setup)/Dest[1498 0 R/XYZ 0 745 0]/Prev 1757 0 R/Next 1760 0 R>>endobj
-1760 0 obj<</Parent 1752 0 R/Title(8.7. Testing with smbclient)/Dest[1498 0 R/XYZ 0 656 0]/Prev 1759 0 R/Next 1761 0 R>>endobj
-1761 0 obj<</Parent 1752 0 R/Title(8.8. Notes)/Dest[1498 0 R/XYZ 0 581 0]/Prev 1760 0 R>>endobj
-1762 0 obj<</Parent 1672 0 R/Count -3/First 1763 0 R/Last 1765 0 R/Title(Chapter 9. Samba as a NT4 domain member)/Dest[1500 0 R/XYZ 0 786 0]/Prev 1752 0 R/Next 1766 0 R>>endobj
-1763 0 obj<</Parent 1762 0 R/Title(9.1. Joining an NT Domain with Samba 2.2)/Dest[1500 0 R/XYZ 0 762 0]/Next 1764 0 R>>endobj
-1764 0 obj<</Parent 1762 0 R/Title(9.2. Samba and Windows 2000 Domains)/Dest[1502 0 R/XYZ 0 415 0]/Prev 1763 0 R/Next 1765 0 R>>endobj
-1765 0 obj<</Parent 1762 0 R/Title(9.3. Why is this better than security = server?)/Dest[1502 0 R/XYZ 0 207 0]/Prev 1764 0 R>>endobj
-1766 0 obj<</Parent 1672 0 R/Title(III. Optional configuration)/Dest[1506 0 R/XYZ 0 786 0]/Prev 1762 0 R/Next 1767 0 R>>endobj
-1767 0 obj<</Parent 1672 0 R/Title(Introduction)/Dest[1508 0 R/XYZ 0 786 0]/Prev 1766 0 R/Next 1768 0 R>>endobj
-1768 0 obj<</Parent 1672 0 R/Count -6/First 1769 0 R/Last 1786 0 R/Title(Chapter 10. Integrating MS Windows networks with Samba)/Dest[1514 0 R/XYZ 0 786 0]/Prev 1767 0 R/Next 1787 0 R>>endobj
-1769 0 obj<</Parent 1768 0 R/Title(10.1. Agenda)/Dest[1514 0 R/XYZ 0 738 0]/Next 1770 0 R>>endobj
-1770 0 obj<</Parent 1768 0 R/Count -4/First 1771 0 R/Last 1774 0 R/Title(10.2. Name Resolution in a pure Unix/Linux world)/Dest[1514 0 R/XYZ 0 491 0]/Prev 1769 0 R/Next 1775 0 R>>endobj
-1771 0 obj<</Parent 1770 0 R/Title(10.2.1. /etc/hosts)/Dest[1514 0 R/XYZ 0 363 0]/Next 1772 0 R>>endobj
-1772 0 obj<</Parent 1770 0 R/Title(10.2.2. /etc/resolv.conf)/Dest[1516 0 R/XYZ 0 494 0]/Prev 1771 0 R/Next 1773 0 R>>endobj
-1773 0 obj<</Parent 1770 0 R/Title(10.2.3. /etc/host.conf)/Dest[1516 0 R/XYZ 0 356 0]/Prev 1772 0 R/Next 1774 0 R>>endobj
-1774 0 obj<</Parent 1770 0 R/Title(10.2.4. /etc/nsswitch.conf)/Dest[1516 0 R/XYZ 0 210 0]/Prev 1773 0 R>>endobj
-1775 0 obj<</Parent 1768 0 R/Count -5/First 1776 0 R/Last 1780 0 R/Title(10.3. Name resolution as used within MS Windows networking)/Dest[1518 0 R/XYZ 0 392 0]/Prev 1770 0 R/Next 1781 0 R>>endobj
-1776 0 obj<</Parent 1775 0 R/Title(10.3.1. The NetBIOS Name Cache)/Dest[1520 0 R/XYZ 0 319 0]/Next 1777 0 R>>endobj
-1777 0 obj<</Parent 1775 0 R/Title(10.3.2. The LMHOSTS file)/Dest[1522 0 R/XYZ 0 786 0]/Prev 1776 0 R/Next 1778 0 R>>endobj
-1778 0 obj<</Parent 1775 0 R/Title(10.3.3. HOSTS file)/Dest[1524 0 R/XYZ 0 512 0]/Prev 1777 0 R/Next 1779 0 R>>endobj
-1779 0 obj<</Parent 1775 0 R/Title(10.3.4. DNS Lookup)/Dest[1524 0 R/XYZ 0 414 0]/Prev 1778 0 R/Next 1780 0 R>>endobj
-1780 0 obj<</Parent 1775 0 R/Title(10.3.5. WINS Lookup)/Dest[1524 0 R/XYZ 0 276 0]/Prev 1779 0 R>>endobj
-1781 0 obj<</Parent 1768 0 R/Title(10.4. How browsing functions and how to deploy stable and dependable browsing using Samba)/Dest[1526 0 R/XYZ 0 723 0]/Prev 1775 0 R/Next 1782 0 R>>endobj
-1782 0 obj<</Parent 1768 0 R/Count -3/First 1783 0 R/Last 1785 0 R/Title(10.5. MS Windows security options and how to configure Samba for seemless integration)/Dest[1526 0 R/XYZ 0 179 0]/Prev 1781 0 R/Next 1786 0 R>>endobj
-1783 0 obj<</Parent 1782 0 R/Title(10.5.1. Use MS Windows NT as an authentication server)/Dest[1530 0 R/XYZ 0 786 0]/Next 1784 0 R>>endobj
-1784 0 obj<</Parent 1782 0 R/Title(10.5.2. Make Samba a member of an MS Windows NT security domain)/Dest[1530 0 R/XYZ 0 537 0]/Prev 1783 0 R/Next 1785 0 R>>endobj
-1785 0 obj<</Parent 1782 0 R/Title(10.5.3. Configure Samba as an authentication server)/Dest[1530 0 R/XYZ 0 185 0]/Prev 1784 0 R>>endobj
-1786 0 obj<</Parent 1768 0 R/Title(10.6. Conclusions)/Dest[1532 0 R/XYZ 0 316 0]/Prev 1782 0 R>>endobj
-1787 0 obj<</Parent 1672 0 R/Count -7/First 1788 0 R/Last 1796 0 R/Title(Chapter 11. UNIX Permission Bits and Windows NT Access Control Lists)/Dest[1534 0 R/XYZ 0 786 0]/Prev 1768 0 R/Next 1797 0 R>>endobj
-1788 0 obj<</Parent 1787 0 R/Title(11.1. Viewing and changing UNIX permissions using the NT security dialogs)/Dest[1534 0 R/XYZ 0 738 0]/Next 1789 0 R>>endobj
-1789 0 obj<</Parent 1787 0 R/Title(11.2. How to view file security on a Samba share)/Dest[1534 0 R/XYZ 0 550 0]/Prev 1788 0 R/Next 1790 0 R>>endobj
-1790 0 obj<</Parent 1787 0 R/Title(11.3. Viewing file ownership)/Dest[1534 0 R/XYZ 0 383 0]/Prev 1789 0 R/Next 1791 0 R>>endobj
-1791 0 obj<</Parent 1787 0 R/Count -2/First 1792 0 R/Last 1793 0 R/Title(11.4. Viewing file or directory permissions)/Dest[1536 0 R/XYZ 0 718 0]/Prev 1790 0 R/Next 1794 0 R>>endobj
-1792 0 obj<</Parent 1791 0 R/Title(11.4.1. File Permissions)/Dest[1536 0 R/XYZ 0 485 0]/Next 1793 0 R>>endobj
-1793 0 obj<</Parent 1791 0 R/Title(11.4.2. Directory Permissions)/Dest[1536 0 R/XYZ 0 241 0]/Prev 1792 0 R>>endobj
-1794 0 obj<</Parent 1787 0 R/Title(11.5. Modifying file or directory permissions)/Dest[1538 0 R/XYZ 0 745 0]/Prev 1791 0 R/Next 1795 0 R>>endobj
-1795 0 obj<</Parent 1787 0 R/Title(11.6. Interaction with the standard Samba create mask parameters)/Dest[1538 0 R/XYZ 0 313 0]/Prev 1794 0 R/Next 1796 0 R>>endobj
-1796 0 obj<</Parent 1787 0 R/Title(11.7. Interaction with the standard Samba file attribute mapping)/Dest[1542 0 R/XYZ 0 652 0]/Prev 1795 0 R>>endobj
-1797 0 obj<</Parent 1672 0 R/Count -3/First 1798 0 R/Last 1800 0 R/Title(Chapter 12. Configuring PAM for distributed but centrally managed authentication)/Dest[1544 0 R/XYZ 0 786 0]/Prev 1787 0 R/Next 1801 0 R>>endobj
-1798 0 obj<</Parent 1797 0 R/Title(12.1. Samba and PAM)/Dest[1544 0 R/XYZ 0 738 0]/Next 1799 0 R>>endobj
-1799 0 obj<</Parent 1797 0 R/Title(12.2. Distributed Authentication)/Dest[1546 0 R/XYZ 0 201 0]/Prev 1798 0 R/Next 1800 0 R>>endobj
-1800 0 obj<</Parent 1797 0 R/Title(12.3. PAM Configuration in smb.conf)/Dest[1548 0 R/XYZ 0 758 0]/Prev 1799 0 R>>endobj
-1801 0 obj<</Parent 1672 0 R/Count -1/First 1802 0 R/Last 1802 0 R/Title(Chapter 13. Hosting a Microsoft Distributed File System tree on Samba)/Dest[1550 0 R/XYZ 0 786 0]/Prev 1797 0 R/Next 1804 0 R>>endobj
-1802 0 obj<</Parent 1801 0 R/Count -1/First 1803 0 R/Last 1803 0 R/Title(13.1. Instructions)/Dest[1550 0 R/XYZ 0 738 0]>>endobj
-1803 0 obj<</Parent 1802 0 R/Title(13.1.1. Notes)/Dest[1552 0 R/XYZ 0 705 0]>>endobj
-1804 0 obj<</Parent 1672 0 R/Count -4/First 1805 0 R/Last 1817 0 R/Title(Chapter 14. Printing Support)/Dest[1554 0 R/XYZ 0 786 0]/Prev 1801 0 R/Next 1827 0 R>>endobj
-1805 0 obj<</Parent 1804 0 R/Title(14.1. Introduction)/Dest[1554 0 R/XYZ 0 762 0]/Next 1806 0 R>>endobj
-1806 0 obj<</Parent 1804 0 R/Count -5/First 1807 0 R/Last 1811 0 R/Title(14.2. Configuration)/Dest[1554 0 R/XYZ 0 370 0]/Prev 1805 0 R/Next 1812 0 R>>endobj
-1807 0 obj<</Parent 1806 0 R/Title(14.2.1. Creating [print$])/Dest[1554 0 R/XYZ 0 184 0]/Next 1808 0 R>>endobj
-1808 0 obj<</Parent 1806 0 R/Title(14.2.2. Setting Drivers for Existing Printers)/Dest[1558 0 R/XYZ 0 623 0]/Prev 1807 0 R/Next 1809 0 R>>endobj
-1809 0 obj<</Parent 1806 0 R/Title(14.2.3. Support a large number of printers)/Dest[1558 0 R/XYZ 0 208 0]/Prev 1808 0 R/Next 1810 0 R>>endobj
-1810 0 obj<</Parent 1806 0 R/Title(14.2.4. Adding New Printers via the Windows NT APW)/Dest[1560 0 R/XYZ 0 512 0]/Prev 1809 0 R/Next 1811 0 R>>endobj
-1811 0 obj<</Parent 1806 0 R/Title(14.2.5. Samba and Printer Ports)/Dest[1562 0 R/XYZ 0 339 0]/Prev 1810 0 R>>endobj
-1812 0 obj<</Parent 1804 0 R/Count -4/First 1813 0 R/Last 1816 0 R/Title(14.3. The Imprints Toolset)/Dest[1564 0 R/XYZ 0 786 0]/Prev 1806 0 R/Next 1817 0 R>>endobj
-1813 0 obj<</Parent 1812 0 R/Title(14.3.1. What is Imprints?)/Dest[1564 0 R/XYZ 0 685 0]/Next 1814 0 R>>endobj
-1814 0 obj<</Parent 1812 0 R/Title(14.3.2. Creating Printer Driver Packages)/Dest[1564 0 R/XYZ 0 560 0]/Prev 1813 0 R/Next 1815 0 R>>endobj
-1815 0 obj<</Parent 1812 0 R/Title(14.3.3. The Imprints server)/Dest[1564 0 R/XYZ 0 475 0]/Prev 1814 0 R/Next 1816 0 R>>endobj
-1816 0 obj<</Parent 1812 0 R/Title(14.3.4. The Installation Client)/Dest[1564 0 R/XYZ 0 377 0]/Prev 1815 0 R>>endobj
-1817 0 obj<</Parent 1804 0 R/Count -9/First 1818 0 R/Last 1826 0 R/Title(14.4. Diagnosis)/Dest[1566 0 R/XYZ 0 493 0]/Prev 1812 0 R>>endobj
-1818 0 obj<</Parent 1817 0 R/Title(14.4.1. Introduction)/Dest[1566 0 R/XYZ 0 472 0]/Next 1819 0 R>>endobj
-1819 0 obj<</Parent 1817 0 R/Title(14.4.2. Debugging printer problems)/Dest[1568 0 R/XYZ 0 532 0]/Prev 1818 0 R/Next 1820 0 R>>endobj
-1820 0 obj<</Parent 1817 0 R/Title(14.4.3. What printers do I have?)/Dest[1570 0 R/XYZ 0 745 0]/Prev 1819 0 R/Next 1821 0 R>>endobj
-1821 0 obj<</Parent 1817 0 R/Title(14.4.4. Setting up printcap and print servers)/Dest[1570 0 R/XYZ 0 564 0]/Prev 1820 0 R/Next 1822 0 R>>endobj
-1822 0 obj<</Parent 1817 0 R/Title(14.4.5. Job sent, no output)/Dest[1572 0 R/XYZ 0 786 0]/Prev 1821 0 R/Next 1823 0 R>>endobj
-1823 0 obj<</Parent 1817 0 R/Title(14.4.6. Job sent, strange output)/Dest[1572 0 R/XYZ 0 447 0]/Prev 1822 0 R/Next 1824 0 R>>endobj
-1824 0 obj<</Parent 1817 0 R/Title(14.4.7. Raw PostScript printed)/Dest[1574 0 R/XYZ 0 771 0]/Prev 1823 0 R/Next 1825 0 R>>endobj
-1825 0 obj<</Parent 1817 0 R/Title(14.4.8. Advanced Printing)/Dest[1574 0 R/XYZ 0 686 0]/Prev 1824 0 R/Next 1826 0 R>>endobj
-1826 0 obj<</Parent 1817 0 R/Title(14.4.9. Real debugging)/Dest[1574 0 R/XYZ 0 588 0]/Prev 1825 0 R>>endobj
-1827 0 obj<</Parent 1672 0 R/Count -2/First 1828 0 R/Last 1829 0 R/Title(Chapter 15. Security levels)/Dest[1576 0 R/XYZ 0 786 0]/Prev 1804 0 R/Next 1830 0 R>>endobj
-1828 0 obj<</Parent 1827 0 R/Title(15.1. Introduction)/Dest[1576 0 R/XYZ 0 762 0]/Next 1829 0 R>>endobj
-1829 0 obj<</Parent 1827 0 R/Title(15.2. More complete description of security levels)/Dest[1576 0 R/XYZ 0 520 0]/Prev 1828 0 R>>endobj
-1830 0 obj<</Parent 1672 0 R/Count -7/First 1831 0 R/Last 1846 0 R/Title(Chapter 16. Unified Logons between Windows NT and UNIX using Winbind)/Dest[1580 0 R/XYZ 0 786 0]/Prev 1827 0 R/Next 1847 0 R>>endobj
-1831 0 obj<</Parent 1830 0 R/Title(16.1. Abstract)/Dest[1580 0 R/XYZ 0 738 0]/Next 1832 0 R>>endobj
-1832 0 obj<</Parent 1830 0 R/Title(16.2. Introduction)/Dest[1580 0 R/XYZ 0 597 0]/Prev 1831 0 R/Next 1833 0 R>>endobj
-1833 0 obj<</Parent 1830 0 R/Count -1/First 1834 0 R/Last 1834 0 R/Title(16.3. What Winbind Provides)/Dest[1580 0 R/XYZ 0 284 0]/Prev 1832 0 R/Next 1835 0 R>>endobj
-1834 0 obj<</Parent 1833 0 R/Title(16.3.1. Target Uses)/Dest[1582 0 R/XYZ 0 613 0]>>endobj
-1835 0 obj<</Parent 1830 0 R/Count -5/First 1836 0 R/Last 1840 0 R/Title(16.4. How Winbind Works)/Dest[1582 0 R/XYZ 0 462 0]/Prev 1833 0 R/Next 1841 0 R>>endobj
-1836 0 obj<</Parent 1835 0 R/Title(16.4.1. Microsoft Remote Procedure Calls)/Dest[1582 0 R/XYZ 0 347 0]/Next 1837 0 R>>endobj
-1837 0 obj<</Parent 1835 0 R/Title(16.4.2. Name Service Switch)/Dest[1584 0 R/XYZ 0 786 0]/Prev 1836 0 R/Next 1838 0 R>>endobj
-1838 0 obj<</Parent 1835 0 R/Title(16.4.3. Pluggable Authentication Modules)/Dest[1584 0 R/XYZ 0 345 0]/Prev 1837 0 R/Next 1839 0 R>>endobj
-1839 0 obj<</Parent 1835 0 R/Title(16.4.4. User and Group ID Allocation)/Dest[1586 0 R/XYZ 0 718 0]/Prev 1838 0 R/Next 1840 0 R>>endobj
-1840 0 obj<</Parent 1835 0 R/Title(16.4.5. Result Caching)/Dest[1586 0 R/XYZ 0 541 0]/Prev 1839 0 R>>endobj
-1841 0 obj<</Parent 1830 0 R/Count -3/First 1842 0 R/Last 1844 0 R/Title(16.5. Installation and Configuration)/Dest[1586 0 R/XYZ 0 403 0]/Prev 1835 0 R/Next 1845 0 R>>endobj
-1842 0 obj<</Parent 1841 0 R/Title(16.5.1. Introduction)/Dest[1586 0 R/XYZ 0 262 0]/Next 1843 0 R>>endobj
-1843 0 obj<</Parent 1841 0 R/Title(16.5.2. Requirements)/Dest[1588 0 R/XYZ 0 652 0]/Prev 1842 0 R/Next 1844 0 R>>endobj
-1844 0 obj<</Parent 1841 0 R/Title(16.5.3. Testing Things Out)/Dest[1588 0 R/XYZ 0 383 0]/Prev 1843 0 R>>endobj
-1845 0 obj<</Parent 1830 0 R/Title(16.6. Limitations)/Dest[1602 0 R/XYZ 0 349 0]/Prev 1841 0 R/Next 1846 0 R>>endobj
-1846 0 obj<</Parent 1830 0 R/Title(16.7. Conclusion)/Dest[1604 0 R/XYZ 0 786 0]/Prev 1845 0 R>>endobj
-1847 0 obj<</Parent 1672 0 R/Count -4/First 1848 0 R/Last 1851 0 R/Title(Chapter 17. Passdb MySQL plugin)/Dest[1606 0 R/XYZ 0 786 0]/Prev 1830 0 R/Next 1852 0 R>>endobj
-1848 0 obj<</Parent 1847 0 R/Title(17.1. Building)/Dest[1606 0 R/XYZ 0 762 0]/Next 1849 0 R>>endobj
-1849 0 obj<</Parent 1847 0 R/Title(17.2. Configuring)/Dest[1606 0 R/XYZ 0 647 0]/Prev 1848 0 R/Next 1850 0 R>>endobj
-1850 0 obj<</Parent 1847 0 R/Title(17.3. Using plaintext passwords or encrypted password)/Dest[1608 0 R/XYZ 0 621 0]/Prev 1849 0 R/Next 1851 0 R>>endobj
-1851 0 obj<</Parent 1847 0 R/Title(17.4. Getting non-column data from the table)/Dest[1608 0 R/XYZ 0 467 0]/Prev 1850 0 R>>endobj
-1852 0 obj<</Parent 1672 0 R/Count -2/First 1853 0 R/Last 1854 0 R/Title(Chapter 18. Passdb XML plugin)/Dest[1610 0 R/XYZ 0 786 0]/Prev 1847 0 R/Next 1855 0 R>>endobj
-1853 0 obj<</Parent 1852 0 R/Title(18.1. Building)/Dest[1610 0 R/XYZ 0 762 0]/Next 1854 0 R>>endobj
-1854 0 obj<</Parent 1852 0 R/Title(18.2. Usage)/Dest[1610 0 R/XYZ 0 661 0]/Prev 1853 0 R>>endobj
-1855 0 obj<</Parent 1672 0 R/Count -10/First 1856 0 R/Last 1867 0 R/Title(Chapter 19. Storing Samba's User/Machine Account information in an LDAP Directory)/Dest[1612 0 R/XYZ 0 786 0]/Prev 1852 0 R/Next 1868 0 R>>endobj
-1856 0 obj<</Parent 1855 0 R/Title(19.1. Purpose)/Dest[1612 0 R/XYZ 0 738 0]/Next 1857 0 R>>endobj
-1857 0 obj<</Parent 1855 0 R/Title(19.2. Introduction)/Dest[1612 0 R/XYZ 0 465 0]/Prev 1856 0 R/Next 1858 0 R>>endobj
-1858 0 obj<</Parent 1855 0 R/Title(19.3. Supported LDAP Servers)/Dest[1614 0 R/XYZ 0 626 0]/Prev 1857 0 R/Next 1859 0 R>>endobj
-1859 0 obj<</Parent 1855 0 R/Title(19.4. Schema and Relationship to the RFC 2307 posixAccount)/Dest[1614 0 R/XYZ 0 524 0]/Prev 1858 0 R/Next 1860 0 R>>endobj
-1860 0 obj<</Parent 1855 0 R/Count -2/First 1861 0 R/Last 1862 0 R/Title(19.5. Configuring Samba with LDAP)/Dest[1616 0 R/XYZ 0 786 0]/Prev 1859 0 R/Next 1863 0 R>>endobj
-1861 0 obj<</Parent 1860 0 R/Title(19.5.1. OpenLDAP configuration)/Dest[1616 0 R/XYZ 0 766 0]/Next 1862 0 R>>endobj
-1862 0 obj<</Parent 1860 0 R/Title(19.5.2. Configuring Samba)/Dest[1616 0 R/XYZ 0 196 0]/Prev 1861 0 R>>endobj
-1863 0 obj<</Parent 1855 0 R/Title(19.6. Accounts and Groups management)/Dest[1618 0 R/XYZ 0 296 0]/Prev 1860 0 R/Next 1864 0 R>>endobj
-1864 0 obj<</Parent 1855 0 R/Title(19.7. Security and sambaAccount)/Dest[1620 0 R/XYZ 0 771 0]/Prev 1863 0 R/Next 1865 0 R>>endobj
-1865 0 obj<</Parent 1855 0 R/Title(19.8. LDAP specials attributes for sambaAccounts)/Dest[1620 0 R/XYZ 0 389 0]/Prev 1864 0 R/Next 1866 0 R>>endobj
-1866 0 obj<</Parent 1855 0 R/Title(19.9. Example LDIF Entries for a sambaAccount)/Dest[1622 0 R/XYZ 0 375 0]/Prev 1865 0 R/Next 1867 0 R>>endobj
-1867 0 obj<</Parent 1855 0 R/Title(19.10. Comments)/Dest[1624 0 R/XYZ 0 544 0]/Prev 1866 0 R>>endobj
-1868 0 obj<</Parent 1672 0 R/Count -2/First 1869 0 R/Last 1870 0 R/Title(Chapter 20. HOWTO Access Samba source code via CVS)/Dest[1626 0 R/XYZ 0 786 0]/Prev 1855 0 R/Next 1873 0 R>>endobj
-1869 0 obj<</Parent 1868 0 R/Title(20.1. Introduction)/Dest[1626 0 R/XYZ 0 738 0]/Next 1870 0 R>>endobj
-1870 0 obj<</Parent 1868 0 R/Count -2/First 1871 0 R/Last 1872 0 R/Title(20.2. CVS Access to samba.org)/Dest[1626 0 R/XYZ 0 610 0]/Prev 1869 0 R>>endobj
-1871 0 obj<</Parent 1870 0 R/Title(20.2.1. Access via CVSweb)/Dest[1626 0 R/XYZ 0 522 0]/Next 1872 0 R>>endobj
-1872 0 obj<</Parent 1870 0 R/Title(20.2.2. Access via cvs)/Dest[1626 0 R/XYZ 0 411 0]/Prev 1871 0 R>>endobj
-1873 0 obj<</Parent 1672 0 R/Title(Chapter 21. Group mapping HOWTO)/Dest[1630 0 R/XYZ 0 786 0]/Prev 1868 0 R/Next 1874 0 R>>endobj
-1874 0 obj<</Parent 1672 0 R/Count -17/First 1875 0 R/Last 1894 0 R/Title(Chapter 22. Samba performance issues)/Dest[1632 0 R/XYZ 0 786 0]/Prev 1873 0 R/Next 1895 0 R>>endobj
-1875 0 obj<</Parent 1874 0 R/Title(22.1. Comparisons)/Dest[1632 0 R/XYZ 0 762 0]/Next 1876 0 R>>endobj
-1876 0 obj<</Parent 1874 0 R/Count -3/First 1877 0 R/Last 1879 0 R/Title(22.2. Oplocks)/Dest[1632 0 R/XYZ 0 502 0]/Prev 1875 0 R/Next 1880 0 R>>endobj
-1877 0 obj<</Parent 1876 0 R/Title(22.2.1. Overview)/Dest[1632 0 R/XYZ 0 482 0]/Next 1878 0 R>>endobj
-1878 0 obj<</Parent 1876 0 R/Title(22.2.2. Level2 Oplocks)/Dest[1632 0 R/XYZ 0 199 0]/Prev 1877 0 R/Next 1879 0 R>>endobj
-1879 0 obj<</Parent 1876 0 R/Title(22.2.3. Old 'fake oplocks' option - deprecated)/Dest[1634 0 R/XYZ 0 705 0]/Prev 1878 0 R>>endobj
-1880 0 obj<</Parent 1874 0 R/Title(22.3. Socket options)/Dest[1634 0 R/XYZ 0 567 0]/Prev 1876 0 R/Next 1881 0 R>>endobj
-1881 0 obj<</Parent 1874 0 R/Title(22.4. Read size)/Dest[1634 0 R/XYZ 0 307 0]/Prev 1880 0 R/Next 1882 0 R>>endobj
-1882 0 obj<</Parent 1874 0 R/Title(22.5. Max xmit)/Dest[1636 0 R/XYZ 0 771 0]/Prev 1881 0 R/Next 1883 0 R>>endobj
-1883 0 obj<</Parent 1874 0 R/Title(22.6. Locking)/Dest[1636 0 R/XYZ 0 590 0]/Prev 1882 0 R/Next 1884 0 R>>endobj
-1884 0 obj<</Parent 1874 0 R/Title(22.7. Share modes)/Dest[1636 0 R/XYZ 0 462 0]/Prev 1883 0 R/Next 1885 0 R>>endobj
-1885 0 obj<</Parent 1874 0 R/Title(22.8. Log level)/Dest[1636 0 R/XYZ 0 242 0]/Prev 1884 0 R/Next 1886 0 R>>endobj
-1886 0 obj<</Parent 1874 0 R/Title(22.9. Wide lines)/Dest[1638 0 R/XYZ 0 786 0]/Prev 1885 0 R/Next 1887 0 R>>endobj
-1887 0 obj<</Parent 1874 0 R/Title(22.10. Read raw)/Dest[1638 0 R/XYZ 0 698 0]/Prev 1886 0 R/Next 1888 0 R>>endobj
-1888 0 obj<</Parent 1874 0 R/Title(22.11. Write raw)/Dest[1638 0 R/XYZ 0 530 0]/Prev 1887 0 R/Next 1889 0 R>>endobj
-1889 0 obj<</Parent 1874 0 R/Title(22.12. Read prediction)/Dest[1638 0 R/XYZ 0 402 0]/Prev 1888 0 R/Next 1890 0 R>>endobj
-1890 0 obj<</Parent 1874 0 R/Title(22.13. Memory mapping)/Dest[1638 0 R/XYZ 0 182 0]/Prev 1889 0 R/Next 1891 0 R>>endobj
-1891 0 obj<</Parent 1874 0 R/Title(22.14. Slow Clients)/Dest[1640 0 R/XYZ 0 692 0]/Prev 1890 0 R/Next 1892 0 R>>endobj
-1892 0 obj<</Parent 1874 0 R/Title(22.15. Slow Logins)/Dest[1640 0 R/XYZ 0 564 0]/Prev 1891 0 R/Next 1893 0 R>>endobj
-1893 0 obj<</Parent 1874 0 R/Title(22.16. Client tuning)/Dest[1640 0 R/XYZ 0 489 0]/Prev 1892 0 R/Next 1894 0 R>>endobj
-1894 0 obj<</Parent 1874 0 R/Title(22.17. My Results)/Dest[1642 0 R/XYZ 0 441 0]/Prev 1893 0 R>>endobj
-1895 0 obj<</Parent 1672 0 R/Title(IV. Appendixes)/Dest[1644 0 R/XYZ 0 786 0]/Prev 1874 0 R/Next 1896 0 R>>endobj
-1896 0 obj<</Parent 1672 0 R/Count -4/First 1897 0 R/Last 1900 0 R/Title(Chapter 23. Portability)/Dest[1646 0 R/XYZ 0 786 0]/Prev 1895 0 R/Next 1901 0 R>>endobj
-1897 0 obj<</Parent 1896 0 R/Title(23.1. HPUX)/Dest[1646 0 R/XYZ 0 707 0]/Next 1898 0 R>>endobj
-1898 0 obj<</Parent 1896 0 R/Title(23.2. SCO Unix)/Dest[1646 0 R/XYZ 0 461 0]/Prev 1897 0 R/Next 1899 0 R>>endobj
-1899 0 obj<</Parent 1896 0 R/Title(23.3. DNIX)/Dest[1646 0 R/XYZ 0 346 0]/Prev 1898 0 R/Next 1900 0 R>>endobj
-1900 0 obj<</Parent 1896 0 R/Title(23.4. RedHat Linux Rembrandt-II)/Dest[1648 0 R/XYZ 0 280 0]/Prev 1899 0 R>>endobj
-1901 0 obj<</Parent 1672 0 R/Count -5/First 1902 0 R/Last 1914 0 R/Title(Chapter 24. Samba and other CIFS clients)/Dest[1650 0 R/XYZ 0 786 0]/Prev 1896 0 R/Next 1915 0 R>>endobj
-1902 0 obj<</Parent 1901 0 R/Title(24.1. Macintosh clients?)/Dest[1650 0 R/XYZ 0 721 0]/Next 1903 0 R>>endobj
-1903 0 obj<</Parent 1901 0 R/Count -4/First 1904 0 R/Last 1907 0 R/Title(24.2. OS2 Client)/Dest[1650 0 R/XYZ 0 513 0]/Prev 1902 0 R/Next 1908 0 R>>endobj
-1904 0 obj<</Parent 1903 0 R/Title(24.2.1. How can I configure OS/2 Warp Connect or OS/2 Warp 4 as a client for Samba?)/Dest[1650 0 R/XYZ 0 493 0]/Next 1905 0 R>>endobj
-1905 0 obj<</Parent 1903 0 R/Title(24.2.2. How can I configure OS/2 Warp 3 \(not Connect\), OS/2 1.2, 1.3 or 2.x for Samba?)/Dest[1652 0 R/XYZ 0 786 0]/Prev 1904 0 R/Next 1906 0 R>>endobj
-1906 0 obj<</Parent 1903 0 R/Title(24.2.3. Are there any other issues when OS/2 \(any version\) is used as a client?)/Dest[1652 0 R/XYZ 0 575 0]/Prev 1905 0 R/Next 1907 0 R>>endobj
-1907 0 obj<</Parent 1903 0 R/Title(24.2.4. How do I get printer driver download working for OS/2 clients?)/Dest[1652 0 R/XYZ 0 461 0]/Prev 1906 0 R>>endobj
-1908 0 obj<</Parent 1901 0 R/Count -4/First 1909 0 R/Last 1912 0 R/Title(24.3. Windows for Workgroups)/Dest[1652 0 R/XYZ 0 204 0]/Prev 1903 0 R/Next 1913 0 R>>endobj
-1909 0 obj<</Parent 1908 0 R/Title(24.3.1. Use latest TCP/IP stack from Microsoft)/Dest[1652 0 R/XYZ 0 184 0]/Next 1910 0 R>>endobj
-1910 0 obj<</Parent 1908 0 R/Title(24.3.2. Delete .pwl files after password change)/Dest[1654 0 R/XYZ 0 679 0]/Prev 1909 0 R/Next 1911 0 R>>endobj
-1911 0 obj<</Parent 1908 0 R/Title(24.3.3. Configure WfW password handling)/Dest[1654 0 R/XYZ 0 528 0]/Prev 1910 0 R/Next 1912 0 R>>endobj
-1912 0 obj<</Parent 1908 0 R/Title(24.3.4. Case handling of passwords)/Dest[1654 0 R/XYZ 0 430 0]/Prev 1911 0 R>>endobj
-1913 0 obj<</Parent 1901 0 R/Title(24.4. Windows '95/'98)/Dest[1654 0 R/XYZ 0 345 0]/Prev 1908 0 R/Next 1914 0 R>>endobj
-1914 0 obj<</Parent 1901 0 R/Title(24.5. Windows 2000 Service Pack 2)/Dest[1656 0 R/XYZ 0 771 0]/Prev 1913 0 R>>endobj
-1915 0 obj<</Parent 1672 0 R/Count -6/First 1916 0 R/Last 1921 0 R/Title(Chapter 25. Reporting Bugs)/Dest[1658 0 R/XYZ 0 786 0]/Prev 1901 0 R/Next 1922 0 R>>endobj
-1916 0 obj<</Parent 1915 0 R/Title(25.1. Introduction)/Dest[1658 0 R/XYZ 0 762 0]/Next 1917 0 R>>endobj
-1917 0 obj<</Parent 1915 0 R/Title(25.2. General info)/Dest[1658 0 R/XYZ 0 476 0]/Prev 1916 0 R/Next 1918 0 R>>endobj
-1918 0 obj<</Parent 1915 0 R/Title(25.3. Debug levels)/Dest[1658 0 R/XYZ 0 335 0]/Prev 1917 0 R/Next 1919 0 R>>endobj
-1919 0 obj<</Parent 1915 0 R/Title(25.4. Internal errors)/Dest[1660 0 R/XYZ 0 665 0]/Prev 1918 0 R/Next 1920 0 R>>endobj
-1920 0 obj<</Parent 1915 0 R/Title(25.5. Attaching to a running process)/Dest[1660 0 R/XYZ 0 313 0]/Prev 1919 0 R/Next 1921 0 R>>endobj
-1921 0 obj<</Parent 1915 0 R/Title(25.6. Patches)/Dest[1660 0 R/XYZ 0 211 0]/Prev 1920 0 R>>endobj
-1922 0 obj<</Parent 1672 0 R/Count -4/First 1923 0 R/Last 1937 0 R/Title(Chapter 26. Diagnosing your samba server)/Dest[1662 0 R/XYZ 0 786 0]/Prev 1915 0 R>>endobj
-1923 0 obj<</Parent 1922 0 R/Title(26.1. Introduction)/Dest[1662 0 R/XYZ 0 762 0]/Next 1924 0 R>>endobj
-1924 0 obj<</Parent 1922 0 R/Title(26.2. Assumptions)/Dest[1662 0 R/XYZ 0 581 0]/Prev 1923 0 R/Next 1925 0 R>>endobj
-1925 0 obj<</Parent 1922 0 R/Count -11/First 1926 0 R/Last 1936 0 R/Title(26.3. Tests)/Dest[1662 0 R/XYZ 0 252 0]/Prev 1924 0 R/Next 1937 0 R>>endobj
-1926 0 obj<</Parent 1925 0 R/Title(26.3.1. Test 1)/Dest[1662 0 R/XYZ 0 231 0]/Next 1927 0 R>>endobj
-1927 0 obj<</Parent 1925 0 R/Title(26.3.2. Test 2)/Dest[1664 0 R/XYZ 0 786 0]/Prev 1926 0 R/Next 1928 0 R>>endobj
-1928 0 obj<</Parent 1925 0 R/Title(26.3.3. Test 3)/Dest[1664 0 R/XYZ 0 583 0]/Prev 1927 0 R/Next 1929 0 R>>endobj
-1929 0 obj<</Parent 1925 0 R/Title(26.3.4. Test 4)/Dest[1666 0 R/XYZ 0 679 0]/Prev 1928 0 R/Next 1930 0 R>>endobj
-1930 0 obj<</Parent 1925 0 R/Title(26.3.5. Test 5)/Dest[1666 0 R/XYZ 0 528 0]/Prev 1929 0 R/Next 1931 0 R>>endobj
-1931 0 obj<</Parent 1925 0 R/Title(26.3.6. Test 6)/Dest[1666 0 R/XYZ 0 403 0]/Prev 1930 0 R/Next 1932 0 R>>endobj
-1932 0 obj<</Parent 1925 0 R/Title(26.3.7. Test 7)/Dest[1668 0 R/XYZ 0 786 0]/Prev 1931 0 R/Next 1933 0 R>>endobj
-1933 0 obj<</Parent 1925 0 R/Title(26.3.8. Test 8)/Dest[1668 0 R/XYZ 0 424 0]/Prev 1932 0 R/Next 1934 0 R>>endobj
-1934 0 obj<</Parent 1925 0 R/Title(26.3.9. Test 9)/Dest[1670 0 R/XYZ 0 758 0]/Prev 1933 0 R/Next 1935 0 R>>endobj
-1935 0 obj<</Parent 1925 0 R/Title(26.3.10. Test 10)/Dest[1670 0 R/XYZ 0 567 0]/Prev 1934 0 R/Next 1936 0 R>>endobj
-1936 0 obj<</Parent 1925 0 R/Title(26.3.11. Test 11)/Dest[1670 0 R/XYZ 0 430 0]/Prev 1935 0 R>>endobj
-1937 0 obj<</Parent 1922 0 R/Title(26.4. Still having troubles?)/Dest[1670 0 R/XYZ 0 292 0]/Prev 1925 0 R>>endobj
-1938 0 obj<</Type/Catalog/Pages 1369 0 R/PageLayout/SinglePage/Outlines 1672 0 R/OpenAction[1386 0 R/XYZ null null 0]/PageMode/UseOutlines/PageLabels<</Nums[0<</P(title)>>1<</S/r>>8<</S/D/St 1/P()>>9<</S/D/St 2/P()>>13<</S/D/St 6/P()>>14<</S/D/St 7/P()>>16<</S/D/St 9/P()>>23<</S/D/St 16/P()>>32<</S/D/St 25/P()>>33<</S/D/St 26/P()>>37<</S/D/St 30/P()>>40<</S/D/St 33/P()>>41<</S/D/St 34/P()>>42<</S/D/St 35/P()>>59<</S/D/St 52/P()>>62<</S/D/St 55/P()>>65<</S/D/St 58/P()>>68<</S/D/St 61/P()>>69<</S/D/St 62/P()>>72<</S/D/St 65/P()>>82<</S/D/St 75/P()>>87<</S/D/St 80/P()>>90<</S/D/St 83/P()>>92<</S/D/St 85/P()>>103<</S/D/St 96/P()>>105<</S/D/St 98/P()>>118<</S/D/St 111/P()>>120<</S/D/St 113/P()>>121<</S/D/St 114/P()>>128<</S/D/St 121/P()>>130<</S/D/St 123/P()>>131<</S/D/St 124/P()>>137<</S/D/St 130/P()>>138<</S/D/St 131/P()>>140<</S/D/St 133/P()>>144<</S/D/St 137/P()>>146<</S/D/St 139/P()>>]>>>>endobj
+ÆVäµ{1՚|Ž£žAŒi4™ESNý|itÔ½jã#P¦êâStÿí¾K?z
O&qÖÛ,Ðc–™D·!žßsrEa·ž’ ® —Öi•ŽTÎÿQ¢’\#]mP¢Í€B{4…+ŽZÊ>Ð<1Ï£Ù¤¥lrM£YDàí]¦6zÏõ;|²G”êÚi Ó·Ìs».ŸT+䯀׃ä£0CŠw´vª
+Lê¢Ó6×Zëð¤­
õ¢¿™ud+¹Ê
êGá ÑÙ¢@?ÏPT_ƾ–íñŽÓ"ú’ÑÎ6è^ “WÓNû
G¬ä,ˆ ‹¢K³&bA+JµëeVkèÀ(tבXB8¥*(©
0]µ-ñ{­ÞW*–T}֙Äã„ÆŠ,[¹˜é>	 .iSÙ-m
g`ýƺ:Èʜ-™É®ˆ>p‹‚)µÔ-¼ÆiŠÍšjíІRU£)kg_tÉC„	ÀÃWãd ü[͵€<nZ§ž—ss‚ƃæ²)‚©qd/lûŠ߀vX…	žMÜ-ò
+ÈðYvk4W(O¬sèöUòh+ùùAòü§Z¸2ͧ–r-XÚ+ÁËÒPT5eÉb´üÉa€2Á
°
­PY¦“ì18©hõñ+ÅÊ£Il(ˆW˜M_Ó2PRÁ‘bålâvú©gœzvÄ6äÜ5¦ŒMNU)rA[ƒütôØÕ?dyÁ«ð°'•Ãtq3Î!œr1@þD|£u :@þFT«µ†£øęˆsH¾ÌӉäð+F¹ÆLõ
„t…6ÌߌÓϨz¯›SDäÌ:oÛS²1µ*O
Z„å‘#=¦É®ÕVÕ>f‰í`a?hr TÃÝRŒJ`§ûÞx̖‡À“œ]Œ™Ç‚¸-Øömß±­¢œn´
–ªtØZ·9GöIe¬¤¿~{ütÿëíŸì•ÜQyQ#湔'5ó+ÌöZÛ(&ïˆvÝÒúЫ¬Ã1๯5¶°†1ÕÖq³x…¦)sޓŒõـRÛÀZ|²¨ŽF¢—R¤Õsê ‚–Bè$þQªj7ñÊÕ+ÎÍàÅx„Î!^·*\}ùJ>¨dÃ$yìS(½—×£¢ž¤¦Û¿íË3æ1èÞ·Þü#Óò_¾±·ÂÍßtÆÐõ
+*(TÍ~’¿Ë÷Wât¾Ñ®'oÄt¹Ÿª´
Û2NcÙô
+Šµ”ƒ½ë!s³Át{Þ¸X7™Ow{_ðô|Ù]–à^x!(†‡Oßd,ñœK‰Úâ‚búZ(·†Al$àúE
ˑïTÜÙ]¬×¦BptÁˆ7bݱF+eŽrfFC©œÜæÊ«ÑB؄¬6ÄëUÜquädVø	Š=Â=”9í!°’dOv‡ƒ—0£lŒ(fµqý½Ä‚‡øv`Á
¶'7¹æRyª9ÔÌ÷Ÿ–¾«ÊuM4Àî·ÒÝZÅÓMi@ïuϑÄ?
+\WA‹–]ÓuŸI`g6&ÜÇ°¦^[’P©{‹Ÿ:SØÕ]+q~²˜-ç­=ž€ø¡Æ…W^1ÿa)çݱ»[CҒ7˛·„E%Ã~æ
ŽŠ„¼¡Iñ>&ôµÊ’‹Ë‹‚•JAr
+[n“ßùÀþßÚª]D·]
Ü
Z\_ãgB×ÖT`Ð÷…ÌÉ%v¢°UåŽô|çK0•º´ÈÙT4ê½r¦Ø	wWŸ—Ýo’É?‹–3Z|·×ˆ§Û‡»[úêìwÞŸlÒ¸âÊGû£›)~÷¤—ÿÿZ>_,£Åõw{>>þÀaïW¿_ü¸¨€mendstream
+endobj
+1332 0 obj<</Type/Page/Parent 1099 0 R/Contents 1333 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1333 0 obj<</Filter/FlateDecode/Length 1474      >>stream
+x
uW]oÛ8|ϯXø圢VmÇ_= ͵
+\r=ÄÀá~¡%ÊbC‰*IÙqý͒Rì(.’‰%îÎÎÎÎ2?®&4Æׄ–SºYPZ^“1-Vï“ÍVKü>ŏ•”‡óñ*Y\zp³_~0YŒ“饫9÷RÜ®¯Þ}yO“%­s Z,æɊÖ
ÓxLët8Y&ó„îÄ=•Ê_¯¿ãýM&ñýÑt	ëløѓóÂú¦&_HJµ’•'Qeä¤ÝKK•Ü¯„—$hPŠ'U6%y+*‡°rê§|K‡B¥i…\ˆÃ“ÉqZX}$¡5=ÜÝ2Š1&7¨¹SS–Èäú×4”Š
+9}8Þå	a|!<=ˆr+è 脨qªÚ…Œ,Jh@¦öÊT¤ª^BWn“ÔTyB÷…À¾PŽðÍÕ¿Hô€Œ†þh¤cX/Qˆ4•µKÛÆSe^Àîge.Ú\’ÞDŠßÄZb”„Ö'î;V¦Ríe`˜
:nŒ7-Ûc@|Ö¯ÀP/ua*ÓX.
B{’öé²E¾zÊd.͍3´˜Ï¡ííÑKG›á'›ëXªòŒ¥6Ω­nËr¦ì”ãÀá‘jiscKÚJï!¡ƒò‰4WBxØI‰šJyaÜÓ½Ð`¤¥cüÇt<[qr­%4´©h’Щ¤Ú *Ý«
++*
˜
+‡ˆ\R[p×õ-·7J&œ=Ÿ«ÑÍ,ò„qZ$ô§I
K¹8M·ÇçàQ°™AN–‡*k€ã:oUêIÇPJá±RdïVA—)Ëf(´/L³+œg*ƒœQ£Ü+Ó¸—¨ßAðnsÐלŽ˜&Y	îO/ÙfGfÐûü¥l®™ž*œç6æ
+6„Ë]“çè—hùîAh[.ªTR
À(+ȝ¿ÐÖ{ÿHnî"¡ځÖbÝy@›ÊË° ‰6j25ÎøÀ†é+8ƒ&*ì¡éBƒL÷eò«V/z(DUšL¶/¶û…_KƒÖž‘ejY±†NÚs$§ÍçãÛäø¶2*2g]Ü)ç€R¤†×É%{Ó+$o48:‰*ÈÚÀ$NÐ{tìä­¨:H"xAÞiáì̈uÐÂý؉W.ÊbÐ/D
ŠÛbyc¤ÚCŽ…³1†¥Äðm†8݂‡1êb/é`ªß<Á7  Œ:#̷핲Dà–€Óî8g˜¡‘©˜™Èh®,f»àœGïò˜Â˜%ôÅXØU…õT×Z¥‚—Fð̛á¨
+Ú;\Ð{ž£<ß»ìtQŽ(!‰œ#,a¶Ÿ0Læà^æÊ$0eTH±W@
¡¿Ð@¯òƒ±!sj,–ƒÇ
fY`›"«…W+"zÐI˜áº6Öó¬h™cÏÇ÷:CµS
úºF¨³ A;hdŒÎäne`6ðʺÆCN?IÞ'¸ X©%ڍÖjÌ@ ŽëâZà÷þSy>ú
+ú¾v/ý­¬`Žßþ ðK)"Þ
«•W渷ì»Ò#°6ûóŒô†wî&¯f«ëÔýºOÄý_ëÏ¿Ó×X]X*¼¤áé
óŠÙQ썁öÛëä֏[F¥,
la¯áTo†<
ý1ø<õW¦à$¥x;
¤bó6`*ð[û’¼œ%.€2Ì«²U@Ñîp¨ðW.¸â…·ƒRöR³/z`»oº››î„æ=¢?A$ƒLn›6¯¶iÞÿaµ3ÖÓây^5èÐûښúõeîl}œ|µsT.½½ÀæºqE»ù]`CÀm\¼°F¿»ÆòE\[>a@®a-Q«ö=Y࿺¡Åtï²ïn?Ò7k¾c2é“I^ö!.S7ꌖS\ϳ×óÙÿ0̧¸Ìóãɘ}^_ý}õ?Ü0ûendstream
+endobj
+1334 0 obj<</Type/Page/Parent 1099 0 R/Contents 1335 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1335 0 obj<</Filter/FlateDecode/Length 1226      >>stream
+x
½VÁnã6½ç+¾48ªe»vöC‚¶À²m‹¹ÐmqM‰
+IYU¿¾oH9ÑÊÙôP Аóæ͛7|¾Hi†Ÿ”ÖsZ¬(+/fɌVé*™Óòzÿçøµ’váÃry¬Þú°˜ÏÞþÎfçWÝm.~üõ#¥kÚì}uÒ&'džÍh“]¦ëäcB_T.I«Jº›¯ˆ_RŠ0Ž¿š¯‘l“_n
+I“¶;¸	™Ú+S‘rT™–d%¶Zæ´í(—;Ñh?¥mãIí¨3
åÊñwRžž.wÆÒVz/-9™5VùîéùBV!¶£@îtzÛ5»‚ÕÒâp)ªLR»T¾œÑGUíi§4P”Ò%Ä`‡±Ú8ÇHµtNV€ÙÃ*ÄUí¥osÊD†S7£Ôt“)µ…ÊŠS©zª1‰t½Ò{µX&K†^ÓYBRädEû>­¶bR¥'^séԞÑz¾HTóR9™OI›öJ/«¬•ƒ¤z9ŸÐ-ȵGÐvÎgVã$_[O®©kcA&ZV˜VâL‚d9=Šr+pü ÝK÷n2ÄË`…Eʃ! Ü‹W9Œøìňcu­"]Ÿ*r¦”h‚C²L+YyG¹©~ðT¤3È
+„µRëSd¾Zw„>2-(yØûÆ1  ó¸ˆU6V‹AÜÙÌTG$U8ucԏ&
+VídV‡@©¶¬tŠ'
¦“:\O]Ëʆ£a©‚üŒ=$ôÉS¯â"¦Ð
ZM ]Ñ(0™çÅ&ô["¼tž‹ÎP0zÅÜx°õ¾ZSØFQþ»\ÛSØÒk¼åÿì7ˆßUìˆçW;;ï=äZÂ3Ø5yÆ0…˜™É •‹bº«Ø¶4…¯Sö­h)¬÷“éa„\ÁC™A¨{h©PÁŽF=÷ý>Î{ש­ÌUÆÅ~×|″JrµþzˆåFÒìxhèñþ³QÂ{sì›Í ¸”ŠF¥¾w
¶¸fzĨüË[A¹ð‚3ðÍZ8-C¬Ü`à[¡‚ŠÙr8®ÂÑ!¦JX«Ž2Œ—°°jƒV”ÆŽ“?7*;`ZŽ{¹3ä´ò¹ÁØô7žúÍàÐ/²á¢KèOl8N]/¸`×[Jt‚
S7Ä+e¬¦Ïƒè`ñÈix¦¸>3Æ[®g&
{€—àK8Ɓã›Fr…i4z'¬WY£…Å݅Ô5Ešy/8Ŏq2á'¬_,?áhò…BM•Ãc?o°´£Š¡mà×f7jv0jáë0xž%ŒaF)¶ÈvR(GŒÛõr2p¥i*,®Zfj§xÇnF²ú ûQaSº‹Fc
+Кh«M†¿¸:Váçæ;Ë}‘н¶³_×pÛýÆË)–ÖoÙƒÍ96ò¨°a¿¹‡uY²‘£¼_<†ý ÈlÉã1„ÞÁ%¶XåØmfTØ`)LY6·Z(+&ìs^ü¹âg^¸YÂ絏è8Äv -o1¸°'æº$¦+¼]¯xZ.ãsíñöþî–~·æ+﨟M֔بáYÃ(¯N®Ös¼AÃ[éì
º\áõûÓ/PHS>øËæ⏋_˜Üendstream
+endobj
+1336 0 obj<</Type/Page/Parent 1099 0 R/Contents 1337 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1337 0 obj<</Filter/FlateDecode/Length 1551      >>stream
+x
…VïOã8ýÎ_1ê—e¥mhÚRÊIû…²ªD¡G‹ÐÞq:¹‰ÓdIâœí4íýõ÷ÆIøQ`O´(uì™ñ›7o柟zøóé¤OƒÙAÏëÑÈïy}ŽOðÜÇWKŠÜ‹á¸ÿÁ‹ïÝ;ñmypt9$ߧe'£ñ	-C‚ƒ^–ÁáR‘ÌÅ*•´S¥ûÆb#É*øTV$x³ÙJP•Ø˜l,©{q·˜ü=›ÍI6Q9áÃ/.¯Î¾/(MrI*â•Ï˟=êúÄ»gâQF0è5ëý‘7äõkeá1–2™)½£LE’¯)10î¨42d'|K…Ìñ[KÁ‹éî‰<ä½¹²õÖÕÎÅÓq[´¨:{À‚¹G˸4îڙØÁ>½
1I’Q$››$rÂÄ8ܞ½À9Gý´@_÷üæªãî~tyJ>òÀ	é†5
+þ‰ç=Z¤ª¢ó4‘¹5|üeòºýoĈÝbÜÁ“X@Q(m‰ÑHk9NI¡•UJ9¡ç7·“ùÕ݂p÷XjޜÓÕÙõììºOkκ P‹È{›BÂz’ÁÜFf#­2ò{G†ûÇüôðy?·S2%N¶Ž-FšæçŸÎÆ#³õG´ÈîÃgª$Pæ‘C”&‡z(¬¨EÈ;
+T™†IJòèÙ² “dI*ô»Q×gVH…f´ð¼H˜Óq$êdbKÛ,±ô•ú½á¸ó…’ÜXÇ´~E¾ÞG¶½pKò+…‹´›j&ùWv(KÖ±%‘E±L‹_á¸!•‚ÏyàȒº=$¾4S†Tbg(,]!;c*¥vƒØ&™ôèÎ1–w€vG-Àò@¤Ô)Ú3©ÜÈt¿†ª$M[F C¸±
Re=ú
%©Qw·mô…tî.Ï)лÂvZíHjíx¥
ÖÇÈkJƒl™ÃåÇY™#žš¸ -.£„,îÈÅ¢·¤ÀÕ+AûÌä
åVdä猪*ãHy¯ôãZ«²ÕÙÜã”sË.J–(¶²B5¢Ø–çs®X¬d"ÞHàB:
ÖM4ª vJ+’Ô€î9B#5%ˆþìw:K¤ê2S¥F²†òî£ûu°#ÏF ÷Ó닛ûÅô‰#=V“ï³ÉõÒ-1HÎ6²)ôz—àëï/.pƼ†7BnTÆ
+¥?g,R%´õ•>]ÈH”©½
65Â(5üŸ³Bú…
+&Â뻽dñc±œÌ¼éõÔu‚u ìzh¥kˆ5sr• “<K+G¨òO–sHmïÚnûÑlGªÊ‘Ü:HªÐúކÛ>¥µDë*ƒ¸Möœê¶ÙB¹)jòáÐ
ÆÃ}îèo
¥dQ¿ðµÆ‹|çjŽ Çº¾®AsD®AX\ +À“î`ñ©eìùEqçϤ-™P«‚‘!ùà1ž= …Í XÅ=Àu5 û§ýÿ‡vÊ
+£Vhœ;
+%yبÓˆ[tXAËê®Îd¶»Â
¨ø-­ÔöyJiØ®X°ÕP…GÇý¤ÎÁ5:WA¬à®	HrDµP>–lÄP«
J芘WyºÀ(„ßµ`D*Ôü&Py¢é«ÜüÖ ÚrhŠ¶! ®ûè9eáÉ-F8¨pUUyYhe °¡=âƒ
+,´>ìòlîŒ
+	FñŸ#*m’&6‘ûõ]Å	ˆØðýW{®ò(Y—荃ÓcV©édX'ÆbkZ¥kð\M¯ø]ëŠ	Óh‚´®1<@ÓT†{›-ïóÉäÂAPGˆªÁ¸¦"7(R.Ñ7–à<Lá»:
o©ÎìÓUëü G‰HK	‰
’'1g`ÏqÛìkŸî|ەkuÏr\ηK$¦ðn›É™Ø"|ºÅhºqm³4fçðÐ÷ˆÝáçӈ{m}o+Jƒ·]Ž›IÜb¦ht:¬‡ãÅÙìÛ͵úÉÃ҅
+Jž³Ü”Ê'»þÃ=tOúµó÷ÇÅáh썎ûM€~ŸÏN–¿ü{:ñ©endstream
+endobj
+1338 0 obj<</Type/Page/Parent 1099 0 R/Contents 1339 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1339 0 obj<</Filter/FlateDecode/Length 1511      >>stream
+x
…V]sÛ6|÷¯¸>ٙZ4)êË~óg£i”¨‘:I§îH‚"’`вúë»RŽÃd¦Ž¡¨p·»·‡¯'…øÑtHñ„Òò$BŠÇ—ÁˆF³)ž‡ø3’rÿE_âcõÉÅÈ¢ˆÖ9o2™Mi6
+CZ§g‹õŸ×ÓwʦúIƒH
+ùfýåd€EˆÉÎâ€ø3>¢8ò+,»)Dº{«y'LÝOWŽ~\¹V¥¤µ¦wêIÒ}Ňeߝ6þŸ5zûa¹¢xøݪɏ«ÞßÍéV¤[I+õ¯¤ð»øi?Ži0œP5'g”ÌèI׈¢8þ#“ÃÊÉÒR)+§t… UùיN~I¢Êü]a"h¿Ué–J‘I”©<—FV©$§±ç~ƒs/¬_luº“Žt͇؀æŽ\cø8Ý8šÇ%Ò9¥óœöÊmùQ~áŸnחz¢4È%0¹\­%Œ¨,r:ç
÷RVô$ŒÒÅ®Õå˜ÒB¡,ëët÷y8˜Lh.nÈJÃJáÃIô
+I¨ë½¿²¾R]ÖÂ)Pì·ÑEFó»{Êsÿxö»Di‹8ˆÃÇ7
­ó1/2Â
Dl¤°Ú…rm(
+)V®ƒ^µóϋ{¿E®6‘HÝÈ+ZŸß€é2BþmQßê’Ra²+
ÃÁhîn.,Ãp0¶Ïˈó÷¼
+ïU_bqÔ.áyÜ=ß}
¦G;0®(ž†ƒxÖFÇ1žÇþ¹WÆÜWçµd†´xìØ"·×”«‚«£Q0N>;ÿª£*:¾ä°S€ÑÌ¥©NöÏÀLeU&ª6½šXë[@³z´e"Hƒ¦ª‹TX”§|:S
y§[Uɟˆ¹lê$öº&òy)1ºÙl‚¼ô_*dÞ-å}i¸zØð¡ë¬†têìkàš*¹?҆´-ã8æj+X”om—ØmÁ„³|6Û&ù‰úº,Ü;íѽ´Ñ:»êá5ƒ÷.;UûvÌh†¿úŒñn#]?ÑwZïOáÈ:X'ò°^	
+v9ÿ¾ D!®ÐHmsÄ¢©ÁQf¹qæd›ºÖ,˜-'Š„Kíþ‘`$Ôy—õìÖF;êF€ÜU§`
zy{v´'È÷#Œ£MSR-M®KÁ–¶÷ቤ¯
l’+Úl¼¶|Ù—aêä˜&ƒxÔzm4
ðK‹}lÅÉ°~›TˆNƒ	»òŠù®¥®á"{
§…Z)Ù
+ªš2‘ÆrE0Ù£jÇH({µG¸ÀÎ
byÃ~Ð>³‰}fuø.ïÑzü§üӆâ³ÏûwJÈ¥õ…ª¹Ötçz«ž¥W&ÇS
¦™°ãQ¾
+\-n{GÞoMh¾º–$“YÖi«O?]|N®ñ
9?E-Ïpî‘Á$–¹@¿LŸ>©*ÓûŽïÞq/VëÛå?À2åiÃڃŔT¥x«hÏ0ÀAQçø¾¡€Zöó08BôNUͳ¯L7pxUrïTDŠ§—rÛêþÒ
êD{ƒÚòåHt.Üü(Xù,JÈÀ^`Ngy
Õ'™2(@]?¨{çeÊ"ÊF‰ý&œ{…øwð Ee¾)iÆØ>[ÒS]P_=Š8zo”ãPÖÚW0ŽhݸfZÿÌ97—±òœCôVZh×ö+6HpIؖÂìøF<†Ð͏G_ÀI~ºuíêhƒajéøàñ5ÖvAýýX<I<W`‡ÐF=s‚§÷ësÿ˜ëæø‚6Ü*(ËJxµ÷‡VêÞ>Úîiՙìj]‚nŠ‚¾€<žñ/åãV¬-“î룚Àƒ¨4cC‹
q-Ä
ö2?Å"ãáÈ^wk¾Áy,dâ@AЙά»ôFܔg1§a{w]]/n®iiômíL÷]qæèÀvÁ`:ô×ߟZÕh2&ãa{AŽ¢˜WÞ¯Oþ8ù9mšÞendstream
+endobj
+1340 0 obj<</Type/Page/Parent 1099 0 R/Contents 1341 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F8 11 0 R/F9 12 0 R/Fc 13 0 R>>/XObject<<>>>>/Annots 813 0 R>>endobj
+1341 0 obj<</Filter/FlateDecode/Length 1703      >>stream
+x
¥WÛn7}÷WôbVÖź䥰]»šØn¤\
+(¸+JbÌ%7K®½ôÛ{†\I±œ
+Âvyž9sÎèËI—Îð×¥QúCÊò“³äŒ†ý	>ã>{ø/%-ySù£Ëï~;éN’	‡É˜r:Ÿ$ýúAÓ,l3Ž±8§þCñ‡ÎÇɨ~ÌiÜÃêß>t“!–u±s·~ÚoÙïòüç‘õÎûXÐïóV9
F½ä¼~Ú-Cp/îs9?éÜL¨wFó% ŽÆ4_„âMÖ¼Z‹ÂËQ$4y*H˜Y¿Æ»«é͌2­¤ñîÕü3öP·÷i÷ÆI;5çkå(«wɬñB¼«Ú®™ZªŒ”YÚ2^Y“Ä­&ÔÕ[õɀ·B݄ފLoÝzwô//Ï
,øKº°ÛQÎÊ5i¾®J—nyía8|ÃÆnh-ž$‰xÍ«0uh&Ë'Ü=ZËýzñášÚä¤Q»7Œ±Î×rK^:OʓXñ¥=}Tfa7Ž&ç­ý÷Ûy@Ôl
e6/Dª´ò[RÎU¸]xæäU.É.iS*¯ÌªUŸÚíG°C8áHxB”p2M6¾ž‘·ñUÅBx‰#H<	¥Eªq]<в”’©ÑV,ðdópx
mdzt®SØç¡É"¥À!.qYÊJ:`é(•ÒЪ”Âë-I³&“‹V¸>V¢ºþÓjÕ^ª¯X¢L¦«…\<¼ŠI<€{¡AIž0­ÍW«ûÁ«¼Ð21¥ÇsQàÕ\èGb”>BÓ#¢Ãïo§Ÿ(ÙÚHb:¾b½ ·89Êe™)l`1? ë$¥]T™„Zƒ?[[1Øee°u ŽÊ2—PQ‚ŇWñ6ÀÅÛ£ƒ|¯°
bÛ(¿&cI, 5ÂUEaK…úR©’ñ7!cûµ1ÿ{x@±gðøpêsmC!œQ{Ç­[	0
ßó‰ûŠ9`öb“&]]ÜÿDz„>®AÖ(-v¹Ä
éíl_õ•A†WdbüÂ<†÷ø7ÈgH«®~àóÅ­xV¤Ýeª¯ îAӘíT8`è¶ÎËÜ=¼Ú—÷‹›}ÏÚûâu§³ÙlÜ% HGóöƒTo”IÖ>×ßGø{j×KènÖ£¨=¼4L„²R·ûgQå ‹=®ðßA¹Lš‚žf©Vˆz7ëôè£(º²ÆÈÌ°:¼„zßáÅՌÚª$¤å{úÊó."è¬WZ¢þ…q<ÒâYó¿@·˜ž!¦Öi+vŽ˜H6©0¥Õ	ðrIõ$£;ÿh)«M'(dgƒ»üÉæ±T\
+§X«·­PŽ†ÅɯYß8n/¼ë5ÛÿV¼é†+–yq
+µÖÿ‡æéôò-ÝKYž>¼Š)ÉjÓk’1÷€æ¡7QÝYbÜÓüê¾3½óN§†µLB
+b
ÿ¿m!À
êåônF–}*Ô E	±,ù@¼¹¼~?ýÉsØÏ»“DSø`…¡YªþÆúâíJ²šG™Â7âj"[@nÙ²ê²b…”jawoÀùµÐ°JäHE
cêîèY{\.L%tBÓe$6;‹Ðp•Å6:[mpçÌÄÇ´£46zrÖÃ!lྱ%<aEø[Éá±£S3©Q>‘꫇
Öõ
²ég.°:òÆ,Èú_
LÖpÃcv^@Âk˜6@c¬§…tY©Ò<‹@ÓϐBÈá!uÖ ?ÇYجÚ#z:/àoïç³äúÓu‹{ªì‘“s÷Ç7
¨G­(o.îgpâ~jƒK‚Eå³Ûëy â݇ëw{""¶ÓûÒz›YíNٗp9Ž“ûàn *O\¤–N¯ª²D²v…Óƒ™cMÌfÃ9xéqtˆí«YI2UžÊ2†¶dA’ј…Ö¦îˆàHn®~†óŽsÞ1«£c±¥Ëò¡É.Q'	ØÁøKÒºZ¥ Yg[DËF–àß
0"¯[¼(¥sÁàøwœ»x`b‰åJKß(ç-öØNcgú8½…æ"ÖüN‚ò)“„óÆ÷îæ
+½j™+cµ]m
×ÎûÙaŸ¹·6¹ØRÔS{hqź­ä.ë –s
+%]1쀈㇢KÒè«4ÛÐwJ}À©ÕÈ=g
ï'¦.L)x’Ó¹~w'ÑÅ~æ‡ÿðž÷¢vw»æñõüäϓ
ЭB¶endstream
+endobj
+1342 0 obj<</Type/Page/Parent 1099 0 R/Contents 1343 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F2 5 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 822 0 R>>endobj
+1343 0 obj<</Filter/FlateDecode/Length 1648      >>stream
+x
­WÛnÛF}×WüR—"u³…“È­ƒØq-5FQŊ\ILÈ]–KZÑK¿½gvIë8yi–vwvæ̙3Ã:!õñÒ$¢Á˜â¼Ó}|ϐ÷¿ð74ŽÆxæ
'"j>e4ëDã31~^ŽÇb²·öCÒ¨?Àœ=ŨùÄgÙîð| Îhx6Áß~KEËN8<Ã%Ãp„gNƒÑDšOí±Áäœc{aᮣ…7óNpuNáæK;>É‹±Oó¸â6üЯfC±ÔtM±ÑËtUُ³ ¢Y4 Ç®6½5Z«¸z|Õ󋡈z€j@¦|5ÿÜéÓi8FH󤉯´4%Íd¾?óbp5¤0ô^œFÞô‡©Ý¥µUT­}©ݤqi¬YVôáò–n¤–+UŸ(¦·Yªtåì:ߖ¥Éݽ‡i+Wô4A\²¬Š×A€§È[Ë"6y𦶳­
¼MಛË[ñq‡&`²+h¦Ôášc	¯Ñºr×IJ4™Ø¤ÚŠúI
+ÿfJ՛ “:—Z¬«<;4ñlžÃrK;×sƒ,¤¹¬R£	ÿ×HTeð­­d–‘Ô	yøRK±ÃGе&Iº®ìZeYT’Vß4Sôøˆ?MïaÂ}YSݛ¤%²lÊ-™¥ÛãÐ^`#²¬Rçß,“Ä­g©Vö5[	®útÞ&y(˜l]:úõ/¬ªêB¨¯ODÜ÷´9ÚIتUµù‚`…ÝÚÖÏïî~J’vï
ç
5
+€*ڂ|-ŠL¾¼Ë̚%FÿT5Èrâ¬NTB·Ó¨aHÊô	¤\¨X2ø€è/êÕj+hØ؞ßÚzܐq;Û7ñ2…»´cnœ€éŽµE½ŒFŔ_¤ö%ºð”L„OÌNN¡ÏŒ«þ Kà
Ÿñ”Iç?‘­•¥ÍZi_ì]^DÜT||Å!#xÀ’lÃl öX¾Töl’áOxz;Ó§ëé4äï“+f*3ì®LQñ¾Hé^YS—±¢7¥ÙXUžôH/1„ìY.p«õ¨
~¾æú€À- 3éW¸½ØâòBVñºó’Žü¸°-\“ß«m°Œð—mR”-¼h9uä(ªRR&+d š‹ÐÉ(
+»"	zº€:´º.6øœ¥Yd*·=²5âBfŠR12©^QfðXX-ó&±Gw›ÅgÔ=ƒI)W+ÀÄØ8>?€nE&þŒe…Eˆiî<kÐÿ
ц¾Í ë×´RÐÎ-âlª)1™›æþá”ÇÓɾħ«´´UâR
6 b×@y„ÿÞÝ_ßÎßÝúîJW¨°Ÿ%§ØH %ÐՊ-ó±¹­q‡‘²¾*ÝXæóGˆ1bzù·ÃÕR^ۊlÕdØ*¨%\B6Œã»K½Vð
+àµMϔé*Õ2{#wqϱŸ{nÌށ¸V©äȅÖ]ζ9À ••ÊÛÀøâtøºéìôí¼…}Éè9¬>MRc5¼`…wޗdó4H/]ݔ ’×#¨Qk*—]°{ÁU´ëõύ¸¡žßÐݓöª¦qød§Ëԗé¡ÅnKá#;=âë96æwÛ¹vqºoÒ2H||oLh`t»P7K“eИ¦§vÑ´`B•ö\8Nö¾:'‰zJQ/lóäo•X‰×ôë}¨Ð÷¨‡ÑºÀÐ3›Þ¿ŸÎÅáJãm{{;9­å“ë²*e𷃆²(²Ç€}Å¥c¤ÑÙ¶
Ûw-GŸ½(v<dd÷ê9¨=yd¶˜1$½)b·ÝµÉ# ]ȸªQŸÛÃý
óµWöjŸÜ©Šu‡ÇÎ8w!®ù$Ó̗óG?×X®Kãi[¶3ÉZćw›æ\ã‘$,DG¡·ÒÇ0c-YÆ6ëš»oø(rLol鳝db"æ
ýtÐLMèÍèÌ©¤ÌǒXW%$ßÍAûSý頏É£–;
+úS	7Töüí]p}U’ñ¯æÏö!'q·Ëù0;ú¢çAšRO#Ö²}OUïißYS@á/;gOøÕ	Ï.oÞ\¢Ëî<ôÎÄuŽßM»ìÞ'üÓI„÷àÿó¾‚7Šã7”!¿Ï"$/
+GìÀtÞù­ó½;bendstream
+endobj
+1344 0 obj<</Type/Page/Parent 1099 0 R/Contents 1345 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 825 0 R>>endobj
+1345 0 obj<</Filter/FlateDecode/Length 1699      >>stream
+x
•WmoÚLýž_qÕ/M¥`ÂK©´R UԄ°à–g¥H«Á›ilÏ̸À¿ßsÇ6´VV«UU‚=sßÏ=÷ò÷E®ñ¯G·}Œ(Ê/®ƒkº¹»Åçp̟}ü7’0Ž‚þ{ƒáøÝ(®¡Ÿ?–_/z¿¥þx)§þõ€
ø§ŒVÞB4ÀYËô—ð¢û0¤^ÂގƷÆ^ó5…Ñe¸•$…ÉŽNÝÇY'¢7K[S¦%Ð¦Lmð)üyqM>›ãËgmuâpÓ"ÈL
++c©"22—…•»ÔˆX’Óä¶R™ÆÈ ßù¢ý8L)6ê—46 ö$NZר£ê6²¶Ü K°œè²ˆIµÆÄíÈ*'I8Â÷ o"_!†:cxEݝ4zg¶»WE¬÷¶»+7™Šº.Ú©]wŸìÝ ȃô¾ nʶLÝrC_à°¦2D¶•¸é¶°Kµ‘–_ÒÎèM&s~Àٞo%ê ã€ærïe-§*+‘žõã|õ2ùLŸž®Z&ÃÙÓ|³¿fW´ö—ãÑý˜	ÿm½B᪯áò~2[֗!µ
+ïëQÄ-½oŽ}i»wÔCe#A¯*ro é
MQ^d8Øí³Ús‘8ih'¬ÝkS´Eêõ;Ö:}ÆÚå:Y§käE ¥=ÒO½¡½rۓ”ÿšQWŸ-•à±ÒIùñt‹‹.!˜á²PÚèéêy1iÅȗ¬HQn«Š”ak”Õ©bâ;¿Å˜ð› +##§Í±‚çb‚“,# k—	Ü]:*´kYæP¼Aèb˜Ø+4PÀÂV#ŒT:ÒÀ=)wE"Ë4,¦tÔ%»†Þ©C,•&Éí|LüýX=n0Ærqü-—>ûܐùm†©´5FuŸÔ_‘ü%ѽ•VÇGèPAp¡œ.dۗÀ¡ oÊÇè4ºœ¢ÒBøâdÅ;˜¢ãY9')™N¹Žÿ‡ƒ€&ºHTZB#Lu|q†ü±Ÿïà/ô-ŠäÀ
£AH9ˆ…qŽLRnùšO@@K¬ì½^ú?ã×OLŠõÚ
ˆÔXé
+ ©cBâqÇ]›¬f-îçSºÿüúz?}~œO¾¢—ÿM¼@×O_Ö«?NfLƒHK\Qi¨$€7”ÿRÂ{ñaDުɳ(D*Íúvù@ϲ(²º	ك¬ ÅÎ茶zïãò)*°¡!•ä@H¬ekÑtýDD¾­¤‹¼—À•oëª7õ̹$+£Ò(w¤0ôLuüßèfˆ2c”`¬TEå쟼ªDÏÓ¬a˜ŠÏ½kmÞR£ËWƒñ#(«¹ñ{#‘SPƒ¬š”+ççÞôd@ߙYNFßC¬·˜=g·Õeº…ï[½q¡|ÒxtŸ‡¸I	ÉÈ7˜LEòzyóúéÏKþ¦¿¤
+x˜§P]TQŸóÙxFZ6û3'—‹ÝÉH%GÚóè
QÚÓ̊|#ÈÂqôº3G–<¥²ÀaÄÑ ³Î­	F¯FÄð4"P±u]€w7ݏwã?]â­á6ùQÀJKË\׈ÜÝÐËì™V˾‡w¢2¬&-º¥ë;EŒIÇðf坾7’µ
WqCJÍ¢°ð;	Í_ÂT#ÜÄ`lT«ž-ž«D’€ã=1é"òðk¬o®o$Ü®ýl§Y…бpˆÝÌV$LVÃ|i‰"Tþóí€þ¢®"K¤1x]Cð¼W­å¦Zl˜Ð½+Ôi¢CKèɊ_BeܧgӚÃ15TD¼ay,%¿åÝç‹ëi§û&M!3úîWœÏôm9ú¾˜òîÁ¶;`>¬Œñe/ ~Æãə×àA>Óâqþõ=!lm¡%Æicߗá{r`ý¶\½¨6¢?ï	•mÁ¥læùÉîåtùžôM%ÝéߜÓsŸY}ŲðóŠ^J÷¤õ›Ÿe–÷?e|PËf,0æ^žfµ
ÌåCÍËøæ'µuzWU+÷tÚfÛÄèœÉ0å{(`	:`Ür/€ß”ö-Á/ÁD¸Ó8œ¾Y\ç5E
ßhyŒe•(l׎!"ãrÇ©BŸ6àòÍ/¢HZß«…tXóÞ°¨t»Ñf«a”Éúª_݇qM÷½~ùŒ4ºëW=¿ºþrO˜Z?¹Í¦:*ýî¶Úi:·ý
+^ÿÿÒ9ƒÑM¿†goÄzgáÅ?/þX}4½endstream
+endobj
+1346 0 obj<</Type/Page/Parent 1099 0 R/Contents 1347 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F6 9 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 828 0 R>>endobj
+1347 0 obj<</Filter/FlateDecode/Length 1202      >>stream
+x
V]Sã6}ϯ¸³/
3à$&qÂÎðÈÒ2³»°MfúÐôA±¬Å–\ˆÒ_ßs%9€[J§dđîÇ9çé÷Á„ÆxMhÓiBi9GcJgє¦‹9þñ®%íù,å_þõóƒi<‰šM§Ñ‚JšÎçøë?´vâÓ+z.6ƒÑÕMæ´Ù#w’Ì°o“¹ØcÚ¤ÃÉ"šEô‹Ò™y´‘m-ë•Jºé=ÅG›ï1¥Éć8‰çH³É†›\¢V·•²	­Í“Щ´ô¨š¼õ6ŽèFK2{zÌUš“Ñʼnª’¢Æ†\jj­Òw$h-ʝàÄc:™œF1§³¨JÖÔʍm°ªÚìUtxúº…Û˜ÒBIÝXR»o3S
+¥#Úäʒ°¶-yw.Ÿ“øi/q)Ër¡ì&—äÓ®mÜg”°+d‰†‹‚
+u/ѓIÓ¶&µ'Õp@mš(Čpf®5™:óí„ƽØ6‚vßõom‡4„'S€Æ‡èvu¹=:þGËàåâAz^g×!é†DZm«ÊÔ
£l¿¤£~H"ËdÆ%1<ٜù÷tæœ0˜’j#J.¦ë)¢kFXx8€¢–Ç=œ±Q»ÝW^Œ&=Ä©)«’ØPÀÍï¤k4pm¡ç…ô´.ýÕÔJfÛ£^f¡3Jk)Ie[4ªB¤ÔT
+݀uh4eÊÞ#ÐêæËòúkÄêÃ`NŽéõƒø˜d“FQ´=Š0G((w@÷æ¹¾£!Ùr¥Fï·ÃY¨è0ôn9½)4U⸛šJÔ3ÙU DF
¸šªQÒ^Ö0.œºŒ®Þ¢ºÏr%jQÊâ|–Ó•‚•(è®0;Qô°{^
NjYHÁ"¨j…2Á†›dø¿ÂÎn6,"Sæ‘éC‚ …ln¼¼>úÇtÖÐÔ…Ÿ_Ï¿u¥Ç
»ï»¿•€'ÓHþÁ
+…]ïlêt!@ÿ9“ñø
™ªeژú‰Ê°gþîž7fé£¨5óú÷AŶ¸shP",ªq*ÙµëNlŒñ=­Ÿ§,²¯ÃÇTó©Ù´Vº
+ä"7û$Áª¡jHS{/ð
+ð&÷ƒ¥õõêEæ&—“xCåçìÊ<gۘ¿Ò
+~‚/]âõòËÅr»uޏ½´hµPb‹·ÝLí÷8¡€í¡Y¸›¾ºÓÞÇüðú€ý$qtñ¼¼M҇à)™³½´8A,³/ïÀ¦¬Ø¬nå]ÿcƒ‹{ó³Àqžµ•@½¶2Ú:ÿ©^XÇ·VÖOëÀåê™Ê¦ÚâœÄxOÅÁÂClŒ°•8 ½€7Òòòs_á4
+zèðz¥Ó¢…†^Càdê'ù%ôá
+']BCµ)Ø£«äÅõ#¡_o6Ÿè£?ÈYԙ
óî,t§ï‹ûüe‡û
ÛQ˜fðiZ¾8ï”Á¥Ü½‚eå.	îŠa­£«E(`’àž¶8Å,ñ· 'Iº­ÍwL=v¦¸Q@ýlÅÜîI·ád㾕ý·ûÖ4YDÉ,†ÿóŽÉœ#}Ú¾
þƒCÇendstream
+endobj
+1348 0 obj<</Type/Page/Parent 1099 0 R/Contents 1349 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F1 4 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 835 0 R>>endobj
+1349 0 obj<</Filter/FlateDecode/Length 1498      >>stream
+x
W]oÛ6}ϯ¸ÈK] –cÙqœ<m떶@ÐnÛ`@_hŠ²XK¢FRÖüïw.)َ`EaÇÉË{Ï9÷£ÿ\Lé
+ÿ¦t“ÒlA²º¸J®ð†¿¦üõùÝEºL“]ϖɜ*š§Ëä¦*é‘÷Ó5Þ-h¾¼Áï«(óùU’ž/,fÉ-Í`n	sétŠñi07KoaäÌÜlz‹;ÒôßìÅÇâûmu1¹¿¥ôŠV9âYÜ,i•…0ðFŽÞ¢ñÊlÐûOO«Oô«”Ê9zÕZ3­•Š¤ÉÔëÕ÷‹+§sœí´ ·_ù[ŸÞDëãÙ—cæ¦	}¨½5Y+½6uÜ:§é´ßüÅÖx‘v”©*M£2Ò5‰šð³&Uï´5u¥jŸÐïýë¨uŠ o£·¦–­µØ@_•u¸J×zÜ;¯ªo¯É›Þñé,ºv)%·º¾ÄYQ:CÛÚt¸ÐÑ¥4U¥ý%NÕª;=‰p¼r´V›Ö…»×VÔ0æHÂÛµ"ƒÿ@çìRQ›z_
[Ç.úB!Rçmˆ
ðB—1~_ÉIzc`6€¿âµÌȖQ!üT™L皯ŽÉ´Ÿ›¶ÎHø`í†FTxßÜM&Ž™OŒÝÄ_¹sIá«òù±8vNðô§IÀ¨W“7t0Ëv&÷/(a@*!]«ãn²mÍ6íºÔ²Ü÷(ëu`UcœöÆî)7¶_ë!üù2"ú±"BãA[±Qî
ؐe›17ÁÙ7dݾ–ÐbFßµGš¬ÛMBpi,ðñÃPk'öŽ/ˆ
+Èe}:eq'™þh×9Ü\ç¹
D Ç:žM#Í
DdQaŸrZ¿ çÜߦ
JŒNü?Ÿß#);üÑ^ÑÓÓ­­éà$‡ÅJ*K<ò>†ðĒ4µ‡Ú8ʳ téÎZQRõ:Î^–ö	1`H5Ø,ÙBƒý–æ„%\ä1	±o =7?$Àá!jNeá¶Q„tÈ©„Y&c­|§PLD½œõIûç®ևTû‚2ÃÁ|ùü@w!ðŸÉ¹Ñãµ®9szºŽ½ãYÞ¼H92ç„rØø?¾Cä±j³¯§¢gÒÕÆV ¦H–:”ÒÀöFïÀ“]µ²@¦™hkJ2,[^Bq;c<3Ôi_¼Ìò©~B¥5­§®0H×Þ1oneª·J5l¥¢
e¢d—Ÿ]ÍâÀI×ˊ别r…Q¥|a²c*’ÎCœ­âÐaP&p{m<}oÇ‚Žõ;äBé ‚<C‹(ÈÂu%ÜÄ1†óë7ԍzÌì`iúÏȧëºDîÁLå$øpÛ šQ\ç][¨÷ÆâÕ{Ó1–<|…$¨·±­ØÃéÜwŒÚ
HæSï>~¡w>pKD÷ÝÿÛë„>P⋘°">/—эM¡%`äºuæÀ¼†²kP"˜‚ã.`¥l.0]À[öÁ°§+h£‚cM :0þ€@Î+h<êpf¸002b‡f*¸MäÖTCs{Žòyºƒé
×ó¾ð…ì9tnæ›Çö57\(C§ðªïÑ{¸Â“úWT
.Õ±3;‡.Ͳ
‚œM€DΧiš=k6 p>w
¶¬ÛSÉk¬}!FŸ(m×®Q}HääF–È8üЩU˜ò0îŽíÀ€‚¦æpÇÁW :…ŽÊ*ìÙcjâᅻõ°‹#:–BQvPcÄŠQ1!–1ùsërŸí¼<¹¿>ûAˆ-3ºkb—½Ãó/‡1ãŽË¯5Hr´Rå8uŒy’í­<h
 Í#Ã0GP#œëŒwûF'÷ÓއLG¯†1ftê:ÅøŽ¸PƇ¸~ñBTfqóä~Ùß0N¯1	\a¤ÇɟÒCõDÚðÍóþïqö(O—üîÕÅ_ÿ
yÕendstream
+endobj
+1350 0 obj<</Type/Page/Parent 1099 0 R/Contents 1351 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F2 5 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R>>/XObject<<>>>>>>endobj
+1351 0 obj<</Filter/FlateDecode/Length 612       >>stream
+x
TËnâ@¼ó¥œÈÁ6ÆNK«\VÉ
+ks‰
ã6vdϐ™1(¿=¶IH²‡Bò£§º«ºÊ¯£þE˜Ç˜¦ÍhN0›$aŠd1çë˜ÿ†PŒ®²ÑÅÏ¢YákÓÅY®ŸLÉ±Ü[9–;KfOfÉ÷?¬h6"Ôf»¼à[£µƒÔ螞g/Œ—xÁAœ†	#Ž³²²8Tu
iH8‚@^’N›7HQה÷Œ¥œ¨T¥¶p%¡æbë†wV·F—䄧qRØÕÜÝ®n|kîMÃØ÷sb»eH?ÿÆ%˧óݲ5†”«¹­æ+»Ó*·pºCš²09í©Ö»†‹àQè¡O¹\ÿY d¡yH?
ÓPØôÆÏÏÍ7ohí‘G/M<H3Ìg­Æ*çÖEÏ\€	@‰†®PW¬€.†¦ß™v…öØ¿Ð-CiÕ:»ù`s†Øò|E÷¦[´­\×Fê¦ác†^[/9/Ìé/ÍznÝùa11ëm¨&aû½UÖmÍ
+r­è³…®k}ðºø†L»øÆ'®ùûëÕ¯«Õsüÿˋ'Öx,I±(oºÅAø-k4dXšªm ÖÙL–BmyÏ-óó~ü6=
+£¶¶+ûÓ_ëe~÷ú²_û1r_¸¶»Ügƒ<ô…ïYâˆN/9Àìí$Dÿr1¸)J8Ћ)¢tæßwBàÁèÎn´l½—…«´òç‚(åo—ó˜Cž¯K±s¬Gtâîþ1»ÇJJ²kŸtœ†n_	°ý=L’.Âtó‡†!¢èÒ?»ÍF¿G
{½_åendstream
+endobj
+1352 0 obj<</Type/Page/Parent 1099 0 R/Contents 1353 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>/Annots 838 0 R>>endobj
+1353 0 obj<</Filter/FlateDecode/Length 1601      >>stream
+x
}WïoÛ6ýž¿â`˜¤òÏ8ib[×µ°[k`(Ð/´t’ØP¢FRqüßï)9Žš‰e[:ïÞ½{Gÿ{±¤þ–t³¢õ–òæb‘-h³¸É6´¹½Áç^Ž©”0•ËR.?\,—k<\/¯³-5´¼¾ÉÖÃ7CŸ¢£Õv›­¦ŽÞî.æï_ÑjA»{ooniWDϸ“Ï~­UØáyF¹³.趢·}å_ì¾Æ•Ë›´òåzï»bÓeF´Á٢σ¶m2ÝÐr9˜®n$Lw57JREáØ{*­£}_!IÙ˓öäU³W?Çkf]%Îôrµ(pñ—a噂ºÃî‚np±p 
+ÜÀúR¦=Ã3ÓÑöäû}£©³}2úÅx{E]ræ™I—£ZyÊkÕV\ÀE80Çd°?ЎÙ:ŽküÁôÀÔ¨#,Ó"JbzLHî4,µoHòVÂEÌÙóy)ÄE…çMŸ×ò.9䪕wçٔ’mͦ£àT~ãC;îšÑ'
OPÊmÀK9"ù‚«ÀÅ°ï˜Oålߑ-©c8èP[º·¦oƒÈFãŠx¯Èßic<©¶ .nðýÃ>g}Ž*G`žê»·}DrœÁdçÎz¯÷ÁµþÀؘk­àM¥ôk]ÕCÌY¢„³dãP(öƒ”.֙Yé²à{6¶c7Ù²tFæxyV"‰0a‹£¿€d|˜V蝥ւGÞ÷RCY5ìŒL$ÑTxTG>æ¶é²ÎÙ`sk|æ›=µ|ðÜو”0Äè¸
Ô
(OŽÜÖ
M6dÚûŽóˆmˆ´ l´7ÜHácŒ1¿=* H[êªwJ:ódˆ[)€çÒñˆÛ‚R3;	@J̒âŽ!ÇÀ#Ô\áõe&88l	ú|yA×H•@ËÎHhŸÚG!ú¯QÌ)öŸÑbÛÃhé}KÆÚ;ø³}UGȅ‰mxŠªry
v¢]µ–~B @äž[0!ùò:‚^±&©§´¼§NUvA$Bè^Ïç'…JŸæ²P¤õ\ £dA W}à–2¤Û2Â;ÿŒ@¾M²•$+Jï¹l¡/B0”5ê§cŽÄÎY‡–üSPÑI.Qõ0	­Ýßk’7ÈX’™¤KؘØNñ¶úÝØh?Òz"¥qE\Ø؇N¹Fª"ŸŸ†(z,:Ÿ[‡AP¦‡i‰—¶Ç~Éa
YJeA>~®¢ZU­õ:eq2ˆ3R~¢Lüß³;’ndÀ¨ö›¶zJ·¹éF•]ˆBsÂê”Ñ£°áZ~߃QH[µh<è«ôO\À*‚D($/hO/¬ ˜xG¹J
+Á¤Ý’æF±=w$08{¹‡Åï±nÑ;–˜èá0ÁŸa ¿b)PµÇT^¤…Q³Im°gˆ³„´R1¥ƒDrÑހ›ÓqÙ{±ƒÈ04;²’ °M@­y*òU
+’'k¬ä£ì¤oÅh£ð©è"æ)Õf7­#E—òµ=`Ù3[F%êp£s¥Ä)†
”W¢$qÆŒÙj®™èÍQä
¹Ú4´
+íïÈw*ÿfÈïDcS}‹ÇÂÈj	lþþz82Íβy“e›z;Ýǁ0ž²f˜0™4éÄ<£ÏçÚYê$ñ	P©Ï” ¦)Î<ÒÀ_{´¶meÄCUñ.ô¼cîà}#쇗¤5“Ñ.#$&Åãv~=†þj<nÒáåbd‘Éu6rÏæ½wscseí5zïUöC3Y4¶õw֌ 
Ÿjr<²
+a)ÇFr‰Å4F?ÿl0'ÇTiÍcql^O/E¦¤Z…£ø‹Ïc"ùsP‡($Úcà
Q¡œ¼aՈçÞNf~{¤qˆnÓ Léy€þ]E-†:58ž¡Ý7¬Kí1	*±å¥³Yci3DÈ8ƒáðY‹*R貄há«ç¼w: УÜ`>£íâYi+␋2Žœ›ì<7ÈßíãOµüx[þÿ‡Ìf{›m¯Wø
Óå*Rí·ÝÅßÿ
SÑY+endstream
+endobj
+1354 0 obj<</Type/Page/Parent 1099 0 R/Contents 1355 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1355 0 obj<</Filter/FlateDecode/Length 1657      >>stream
+x
•WÁn7½û+¦ºT
bY’eÙ-ЃƒÚ€&Mµ@_¸»Ü#.©’\Ëúû¾îZ†lŠ @Â%93oÞ{Cý{2£)þÌèrNçK*ۓédJËÙt2§ÅÕ%þ=Çß ©–ó‹ËÉÕ[fË·O,ß8ðiurv» ÙŒV5‚/¯.iUO§´*Ç«µ¦«؃ÄdÏ8¶Å¤ô®ÎËÃÑ1i—Â>/^{Éú†¬~Ԗ~;Þo"Žónßú.ÒΤ5%D{óšJ]óÎ=i­­U¤BkG]ÔGÞV:pÈ)Î΁Ǫ?êw‘|MßT[(R›ù¤q
MÊ8¯} B•›
+U¤Ò·[•La¬I{>:@µ±:Nú óådÁA®#—ñ?pxT¶Óœ…qeЊóßû€X‹”J*RMãLmJå’Ý;9é
+²ˆ^2´HÙ»!¹
[TÖú˜^ìö[do”°­Ú“ó‰œFˆ«Sâ;צYë€Ê”£ó	}Ñ* …Ñ`„åBS
+@Ï%RGØ!ÓÙô#N%>°
z«B¹¢nU¡Ñôèm×j†›)T©¤¤–³Û_hŠ2WOÏòùt²˜ÐK:8eI‡àCÌè‰ÝóËɒtWK¡F’4ºû²º¹ÿrýÝÜßÿy?¢VǨB‚D—>“Iø¨À!\æO¤PzçôÓV—	…p£”=*~·S(tÎ
Kdš¸ÝÛàU0Š@¹iÁ{iÕª³|+`´Ò«R&&væøŠ1çsã΁‡Ò¾£¸kõ·àûöPH¨@h@ »˜tKÑ׉—>ôç"–â€E©Ð‰:xœh‹Š?9FCú\º©Jъ3À¡àº†P¹çP†y É1%ûíó§çà½6ùŽ9¡ÕZR{†y#ÈyÏz¯;Ëhù˜«•ßáȟs³R'm-+ë("g»
+½F?úv3²à¤iÎ€Éwh2®}g¹/Ñ÷ÕÐÚï(y>|ՕÐÀ!ðG25m}ŒiLè«ä@­Úð.”Áj÷N8±ÑÕ[QY’²6 …°OÁ•x0­Ôv5+ÔBó!ìˆbWTP&  $Ní°°ƒ µHa£õVØ~„Odýe§ËM Èžo~ö-HÞ[±Î׍ªè çf1Ølo•~åg·ÃÀ`™ö>ÚTE¦”w½s¿KU·¿
F%t]¥5²óù4ëH°BËøJvªGÝBŠÙ*ï~æ!¹ð&”Æ|ÚÓ¨*žFL>펰áyŤcHy85pG. ‚–ãŽâçҀÍ,ôƒ¦Šµå𑁪¾,»€f²	9Â
+o²¶Ó1aú‚6ŽE ˜£nÙf¬rMÇֆxŽñY*ñ}4#øn¯éý¼èaN›ÄÓê•Ç[SԆkr 	Á)dp1%JLfnzø ŽÇ˜­B.¤ŸTÉïuB `!¯óÝz¿6$iC’¾sBÒWPàÍ#*Gþ™€ÜrÆé‘$WèäL5[NnôÁŽºÒ¿,éÈ{sêbB×	$w®T
SPÂÅ_3½[óTOÅ
Hô°äΙ'¹%¬ɔ†gþÆêYãº'Ú`0j
2¼AX
+ÿêÚ-Â|¸0“Š~N—ˆÉß U©0ºLƒÊ#1ä‡"r‘ÃðžC›"Òf‚õC‡±/ÅFûf+ÁƒÁàðý<ŠÞƒ…1n£goøz÷û¨'ßË3Kϳ
+rK]ÌúuŽJQ#ž¯à9^]¬Ò>R
˜£°œ$`åà²f
À•{êï‡C©fï:r´Ì
+é2aÏ:Ïý~ûQ³ÄÌàÛôû¬X!N¡ñ P>pT%Ä,£u¯ÍÓOƒïE
ðú†gr˜~L2T9¯Á—ǘuM§]^ŒxÌ~—f¯©wÞÛÜ|9»-OVxGúH…e¾­\…›Ðgž¶®§5$§<’€8A+Ï~í÷ÞÆ7½°Šˆ·†5÷߂4“8ÁÁoPTÿsA‡ól>»½êÜÌðsjzuNËÅ,?C¿]þtM_ƒÿ‘K¿ûØþQÇÑO‡§—sü¶ªÆï>[Ë«ÉòbŽ'.vÍæ3>}³:ùëä?endstream
+endobj
+1356 0 obj<</Type/Page/Parent 1099 0 R/Contents 1357 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1357 0 obj<</Filter/FlateDecode/Length 1410      >>stream
+x
•WÛnÛF}÷WLó"h™¾Æ/EÇmÑÔiA
¿¬È•¸6Éew—–õ÷=³—ˆ"Ü4…aÃ"wvfÎ9sÑßG§´ÀÏ)]åtvIEs´Èðq±Èr:¿¾Âÿ9~¤õяˣ“»·”/h¹†ÉåÕ5-KÂñžÓw•èœ4”Ÿfô“Ñ}Gè:Õnè珟——0?§ÓÓ`>ϯábYN?9aÛ*WÑ'ѬÁ§¨»JP>#A­ÜÒæàÊußN閔%ñ,T-VµÌhYI*zcd먑®Ò%=Lkõ$ë9Í!,h~z•h7òáoj+6’ì½#ë/öŽÝàmI…¨kY†4.bS²ÍÊÈR¹Ã§Yô—_fçœ(·VÆ:RMƒóÂI+,²@½¸ÿÞ	úýö݌ãq•pâ8†R7Bá`Ù௏f	éuxfü	$º?Sö×jÀ®[+>v€
+Š·Âr¼%ǽQÏ!ðZY‡Gxn,ÕpňŒÚTΧYIe"*ÉÿV›'ë“i3úÅùË­n$0ب‚¬ë×됺UM"ÙŽV½£R•íđ…3IÏÒ६kZkC ­«åYéúΎ¹ø Y $_ºš¡«©‚kŽ…½_ž|Νq~•ðù!ÿÏZ”’ÄVì2ú\I°EôuÍVl/FIr0=ÃA4
Ñ€Jtà¤%Ÿw@%¤˜Ñ½vÐ7$ãÉL3°6Âic'᪄σ;r¼nü]ÁAgÔ³ªå¹6üµb¥jå¸J(ԅZ²Fùf§€PÅë'„E»ãài-*Œá®5Xë‡ãQ¦o[F'ð•Ñˆ¢RAYã”&^B¡þÙ¬“f
ŒÏ¦îª~œùDµ•4ÊM¾bŒ$ßÅ6yÔrB ¦ô¬$hÎ ªQ¶‡ô|a'ÜZ¡nä‹(\äÒ¢ž(–^lǚõrIeAÆéQJ_Œ‚B/˜QÙÝS>jeÞ›ÛÐ+^QÄy”º'£,ƒg"ñ4(éŒÞû²¡¶"“¯‡1ò${Hcj&_Sm¹0k½Ùt7*úIù/ݓÀˆã~·Õm	Ñ:î	{#P!¾.ûN÷†ÀFÃ*õõÜF¹Œ
ÿ³J¸‰å	PC˜;O8†ð<ÔÅõ­z	…ŽjëmïMзØÉÉ]êêÓ銓×ÀÃñŒjÉîxŠq«c”
ÛÏ10ÀË)æ6ÆÇ/#R”^V®‚ÊÌ~HÛK«é1ÎV’ÓËè-
JçLÊㆾŽ¡Œâš=ê
+M¥f7áäÆøF+ÿùaw@ZµÖO¾£Ý$\Þ¦]ã<ŒàõÍËÍÅ"¿I±Ì8Ž`‘Æcrv•]2,ù–‹E¸æ7Ñ¡²€I¸/AÝö«ÃÙw¨ý4†«¥&Éðƅ#&‘V
,.I݃æµ}Có~@ïÞ'•®8IÍóš_äorS”ÁU€9ó<áπ(_!œ/hr#ˆ¾‹¦Ë?¤¡r;h6Q@3®!¨°û#¬†ÿs¯r˜ûe€(#ç­DmCMŽtçö©&óg~@ÇF™zyê¦SD–æ¸Aå…bÇNƒ66r™8Ûªv¥Ú’kŒsÛê¾.ã`ë‘(ü ä¤¨Æ1†¥2²À÷#w0÷·N†ý/¡1NámЍPtµˆ?ÁH9āöJûVu…Þ¸þ¦2h2ñÃ[ Ÿ·ÏÂ(ÝGÖ±NûíI÷_	°Xˆ¦RZ@T,ÿTûs(ÔëÁ"YC½ßðõãüò:»¼Èc·Ës¾êýò菣¦)Zendstream
+endobj
+1358 0 obj<</Type/Page/Parent 1099 0 R/Contents 1359 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F8 11 0 R/F9 12 0 R>>/XObject<<>>>>>>endobj
+1359 0 obj<</Filter/FlateDecode/Length 1421      >>stream
+x
…VaoÛ6ýž_qÀÄ
E’ÇÙ>mI»X[q°¢óPÐe³‘H•¤âúßï%'©Ú¬-Xґ÷îÝ»G~>J)Áÿ”.2O)¯’8¡ivÏh2»ÀïVR>LÒY<ýއq2þvÅïË£³×—”%´,‘dz1£eAHàM>ºÚŠÆKKYÓÂX/ÖªR~²ü„eJÓnÙi6‹3,݊z-hgì½#£	?U!É
+½‘dJj*áKckGë֓ßJRۗ"—$ª*¼yŠi¬yàåʑ6
;±wœ:¡ÓtÜ%ÌMݯ֕Œi¹EdÞ#΍öBi÷˜óÔ52W¥Ê‘“1`#\ á]P˜ÞÐµŽ9.%î*½¤ô¢¯t<‰'\)IcºYܽÿ–Œ4!7‹cGªn*YK€	ù@‚k›Ã+»§5mƒ0‘´
+է΅°­FJÛ½G*š,œÑnuÂÅJ´\àÏï̀”°'•ª’ØõLúü¬{ÃŅÇÊlP"gþ5pî8EMµ’»ùµ#oH·õZZ׳Á½bÖ#z7H¨´ò]!«Ñê„aØKÐo`éqžú,¢¨¹/»­¡{mv!ΚF:ÔhÂýsÈ2@<H½m™ª°®0ÒécôÇh|¡Cη*¸²aÙb™Ê
ú‚YôCª„ƒx¹ž®È
„½iÑÖC´´\ªð¤XfÚAÐ Ù×è¯x`ͯ#„©|Kµ`ªäЎŸAÎ’8F§>¾ùíý¿¼’ÅÐ?ó¼¬Fs,—èƳœPÞZV{žË›ÅéÝû~`+óª-@ÿiä?=?O"Î<ÈÙº<ÖfmŠý1ý
¡„ùÀ8fÓn*æ%
’:7-O6ƒÀZƒ
­#ì^Bÿ,Z¦„Å·p„ð†õ\ŠnÁÑ 3 Ì¶˜Y%³W@D„~ªòÛó+:a4f'‹Î•†
äÂä-O-â°'½Y¾f±
[­F'ÉÉGágàš'¬ÎíŠÕhm1<ö×ïÙ,õöêÝiõ¥{…ô|†ª5™ª ÎÆ#9¬fx:ð^‹=i	̬r	ÍÕ
›¶ö´¼ZœÍÀæó-Àópt^H¶ë
¹Zr¨%¦¿A"{dh/S=µ™ãÛÆS!¼ ¿wå“w<9é3¥,¹÷¼]Ø-€íwï®Ç³sº2Z#=×ym—L·ÞÆ4GIŽÄ" (*­©
pJßÄ.717¢B1zcÃAõì´À&Qç‹Ôš™Dü!ôìðTyøAßÆ1]¿¿lûü1Œ½8§ „©ÈVA½NøyÓ=;wP7ˆVýá9`NÐÊoZé›ó=+F›ö´c;¨déYø,n^Àu§\[ƒ‡÷u¦FÒp¨á5>‡áí>÷jY祖¥h+´Z–
*o]‹Üzûîã«ùõa^B:×w”îl&ÞöÆn	Ý	0€â={Óàí@׊g7€P4»)”P
+ÛiV)ª¨«‡}oƒÃijïÌã`Õfë‡e.
ôð嫄HÜH£d';LfZÖ,9†V¶¾$à쥲ÕAªèZ]“D¿a¢¥ÔÇAØÚÒS/Àu8À°ªFÁ˜É0œC°MCÔÝ[ŸðÔyî‡á.6êU‡‹ÒÓmôË!îòpeë/2Ôÿ‹7\šèc¿Ã
q‚K#.3‡×a©þýaymäg<ü4¹ˆŠd°øY2 (M’HüOT·Uévš¬F®YDâ¥@˜QR^¾°Ó:Ϥ?¿ð©P.­5–ƒÎ^Ϟ]}ÇLÏÿ\”'S\ÈÏ3Ü®—fcÞáÕò诣ÿ¤Û«endstream
+endobj
+1360 0 obj<</Type/Page/Parent 1099 0 R/Contents 1361 0 R/MediaBox[0 0 595 792]/Resources<</ProcSet[/PDF/Text]/Font<</F0 3 0 R/F4 7 0 R/F5 8 0 R/F8 11 0 R>>/XObject<<>>>>>>endobj
+1361 0 obj<</Filter/FlateDecode/Length 584       >>stream
+x
µT]oÚ0}çW\‰>¤	NH´‡2Š„4ºNð°I•*'1`pbj;›úïwíéò8xHbŸ{Îýð[/‚ÿÆŒȊÞtÝÎ	ÜÃzƒÉ_r 
!֙Þ|º]ï{üÜòàô˄ö5'e´ÝÎcÚݏKq¬˜×ÀK|2ØpÁ Æ¢4‡õ43¬âyÐâðœœÁ~ñ¥®`+dŠÊ^O-uÍr—­Bþboh«Öä¼÷CB´+
g*2È֌S¡aŠ_<}|¹Ð. Qôhõï;˜Ò,ÓÞtö…#€Œ)%Uô_êL7†)È£†—[Wjšb~]Á5¼ËÊ®•@µfEŠ=€_TÁVÞp~wÙ9u™©†«ÖÀΌ’«­íÇ®¹™5 w²9•Ì«Ì…=IªÃ~hBY¯7ì
-ó5¬
ÝÂ^…F¯ÖtÉXFÍñ±cH—¯‹éj	‚—¬ÙÓâÎ—%ȍC­h‘RXÒ³ƒÀOY)ø{´©ì(ˆì\üæBØc%) eÁpö°‚¬u®;GªæüìS/ÁåuRœQå4	va³ƒà”[gÑú9úAçOß^³ò’…£j'¦ÆŸ+ÇËLT9ÓÁ®Þ˜œ:)LÆ
™Œ Ƨ»6VËé<+¹Ç$ÃLfUÁJƒ
+?¿9à#¼sïˎmWGQÏRšrÁÍ»'“ ¹‹ðE\ÅvíqÝûÞûǘqéendstream
+endobj
+1362 0 obj<</Count 25/First 1363 0 R/Last 1594 0 R>>endobj
+1363 0 obj<</Parent 1362 0 R/Title(Table of Contents)/Dest[1102 0 R/XYZ 0 756 0]/Next 1364 0 R>>endobj
+1364 0 obj<</Parent 1362 0 R/Count -1/First 1365 0 R/Last 1365 0 R/Title(SAMBA Project Documentation)/Dest[1114 0 R/XYZ 0 786 0]/Prev 1363 0 R/Next 1366 0 R>>endobj
+1365 0 obj<</Parent 1364 0 R/Title(SAMBA Team)/Dest[1114 0 R/XYZ 0 762 0]>>endobj
+1366 0 obj<</Parent 1362 0 R/Title(Abstract)/Dest[1116 0 R/XYZ 0 786 0]/Prev 1364 0 R/Next 1367 0 R>>endobj
+1367 0 obj<</Parent 1362 0 R/Count -10/First 1368 0 R/Last 1379 0 R/Title(Chapter 1. How to Install and Test SAMBA)/Dest[1126 0 R/XYZ 0 786 0]/Prev 1366 0 R/Next 1386 0 R>>endobj
+1368 0 obj<</Parent 1367 0 R/Title(1.1. Step 0: Read the man pages)/Dest[1126 0 R/XYZ 0 762 0]/Next 1369 0 R>>endobj
+1369 0 obj<</Parent 1367 0 R/Title(1.2. Step 1: Building the Binaries)/Dest[1126 0 R/XYZ 0 621 0]/Prev 1368 0 R/Next 1370 0 R>>endobj
+1370 0 obj<</Parent 1367 0 R/Title(1.3. Step 2: The all important step)/Dest[1126 0 R/XYZ 0 216 0]/Prev 1369 0 R/Next 1371 0 R>>endobj
+1371 0 obj<</Parent 1367 0 R/Title(1.4. Step 3: Create the smb configuration file.)/Dest[1128 0 R/XYZ 0 786 0]/Prev 1370 0 R/Next 1372 0 R>>endobj
+1372 0 obj<</Parent 1367 0 R/Title(1.5. Step 4: Test your config file with testparm)/Dest[1128 0 R/XYZ 0 437 0]/Prev 1371 0 R/Next 1373 0 R>>endobj
+1373 0 obj<</Parent 1367 0 R/Count -2/First 1374 0 R/Last 1375 0 R/Title(1.6. Step 5: Starting the smbd and nmbd)/Dest[1128 0 R/XYZ 0 336 0]/Prev 1372 0 R/Next 1376 0 R>>endobj
+1374 0 obj<</Parent 1373 0 R/Title(1.6.1. Step 5a: Starting from inetd.conf)/Dest[1128 0 R/XYZ 0 181 0]/Next 1375 0 R>>endobj
+1375 0 obj<</Parent 1373 0 R/Title(1.6.2. Step 5b. Alternative: starting it as a daemon)/Dest[1130 0 R/XYZ 0 356 0]/Prev 1374 0 R>>endobj
+1376 0 obj<</Parent 1367 0 R/Title(1.7. Step 6: Try listing the shares available on your server)/Dest[1132 0 R/XYZ 0 771 0]/Prev 1373 0 R/Next 1377 0 R>>endobj
+1377 0 obj<</Parent 1367 0 R/Title(1.8. Step 7: Try connecting with the unix client)/Dest[1132 0 R/XYZ 0 603 0]/Prev 1376 0 R/Next 1378 0 R>>endobj
+1378 0 obj<</Parent 1367 0 R/Title(1.9. Step 8: Try connecting from a DOS, WfWg, Win9x, WinNT, Win2k, OS/2, etc... client)/Dest[1132 0 R/XYZ 0 436 0]/Prev 1377 0 R/Next 1379 0 R>>endobj
+1379 0 obj<</Parent 1367 0 R/Count -6/First 1380 0 R/Last 1385 0 R/Title(1.10. What If Things Don't Work?)/Dest[1132 0 R/XYZ 0 221 0]/Prev 1378 0 R>>endobj
+1380 0 obj<</Parent 1379 0 R/Title(1.10.1. Diagnosing Problems)/Dest[1134 0 R/XYZ 0 705 0]/Next 1381 0 R>>endobj
+1381 0 obj<</Parent 1379 0 R/Title(1.10.2. Scope IDs)/Dest[1134 0 R/XYZ 0 647 0]/Prev 1380 0 R/Next 1382 0 R>>endobj
+1382 0 obj<</Parent 1379 0 R/Title(1.10.3. Choosing the Protocol Level)/Dest[1134 0 R/XYZ 0 562 0]/Prev 1381 0 R/Next 1383 0 R>>endobj
+1383 0 obj<</Parent 1379 0 R/Title(1.10.4. Printing from UNIX to a Client PC)/Dest[1134 0 R/XYZ 0 253 0]/Prev 1382 0 R/Next 1384 0 R>>endobj
+1384 0 obj<</Parent 1379 0 R/Title(1.10.5. Locking)/Dest[1136 0 R/XYZ 0 771 0]/Prev 1383 0 R/Next 1385 0 R>>endobj
+1385 0 obj<</Parent 1379 0 R/Title(1.10.6. Mapping Usernames)/Dest[1136 0 R/XYZ 0 317 0]/Prev 1384 0 R>>endobj
+1386 0 obj<</Parent 1362 0 R/Count -4/First 1387 0 R/Last 1401 0 R/Title(Chapter 2. Diagnosing your samba server)/Dest[1138 0 R/XYZ 0 786 0]/Prev 1367 0 R/Next 1402 0 R>>endobj
+1387 0 obj<</Parent 1386 0 R/Title(2.1. Introduction)/Dest[1138 0 R/XYZ 0 762 0]/Next 1388 0 R>>endobj
+1388 0 obj<</Parent 1386 0 R/Title(2.2. Assumptions)/Dest[1138 0 R/XYZ 0 581 0]/Prev 1387 0 R/Next 1389 0 R>>endobj
+1389 0 obj<</Parent 1386 0 R/Count -11/First 1390 0 R/Last 1400 0 R/Title(2.3. Tests)/Dest[1138 0 R/XYZ 0 225 0]/Prev 1388 0 R/Next 1401 0 R>>endobj
+1390 0 obj<</Parent 1389 0 R/Title(2.3.1. Test 1)/Dest[1138 0 R/XYZ 0 205 0]/Next 1391 0 R>>endobj
+1391 0 obj<</Parent 1389 0 R/Title(2.3.2. Test 2)/Dest[1140 0 R/XYZ 0 758 0]/Prev 1390 0 R/Next 1392 0 R>>endobj
+1392 0 obj<</Parent 1389 0 R/Title(2.3.3. Test 3)/Dest[1140 0 R/XYZ 0 554 0]/Prev 1391 0 R/Next 1393 0 R>>endobj
+1393 0 obj<</Parent 1389 0 R/Title(2.3.4. Test 4)/Dest[1142 0 R/XYZ 0 639 0]/Prev 1392 0 R/Next 1394 0 R>>endobj
+1394 0 obj<</Parent 1389 0 R/Title(2.3.5. Test 5)/Dest[1142 0 R/XYZ 0 488 0]/Prev 1393 0 R/Next 1395 0 R>>endobj
+1395 0 obj<</Parent 1389 0 R/Title(2.3.6. Test 6)/Dest[1142 0 R/XYZ 0 364 0]/Prev 1394 0 R/Next 1396 0 R>>endobj
+1396 0 obj<</Parent 1389 0 R/Title(2.3.7. Test 7)/Dest[1144 0 R/XYZ 0 771 0]/Prev 1395 0 R/Next 1397 0 R>>endobj
+1397 0 obj<</Parent 1389 0 R/Title(2.3.8. Test 8)/Dest[1144 0 R/XYZ 0 409 0]/Prev 1396 0 R/Next 1398 0 R>>endobj
+1398 0 obj<</Parent 1389 0 R/Title(2.3.9. Test 9)/Dest[1146 0 R/XYZ 0 731 0]/Prev 1397 0 R/Next 1399 0 R>>endobj
+1399 0 obj<</Parent 1389 0 R/Title(2.3.10. Test 10)/Dest[1146 0 R/XYZ 0 541 0]/Prev 1398 0 R/Next 1400 0 R>>endobj
+1400 0 obj<</Parent 1389 0 R/Title(2.3.11. Test 11)/Dest[1146 0 R/XYZ 0 403 0]/Prev 1399 0 R>>endobj
+1401 0 obj<</Parent 1386 0 R/Title(2.4. Still having troubles?)/Dest[1146 0 R/XYZ 0 266 0]/Prev 1389 0 R>>endobj
+1402 0 obj<</Parent 1362 0 R/Count -6/First 1403 0 R/Last 1420 0 R/Title(Chapter 3. Integrating MS Windows networks with Samba)/Dest[1148 0 R/XYZ 0 786 0]/Prev 1386 0 R/Next 1421 0 R>>endobj
+1403 0 obj<</Parent 1402 0 R/Title(3.1. Agenda)/Dest[1148 0 R/XYZ 0 738 0]/Next 1404 0 R>>endobj
+1404 0 obj<</Parent 1402 0 R/Count -4/First 1405 0 R/Last 1408 0 R/Title(3.2. Name Resolution in a pure Unix/Linux world)/Dest[1148 0 R/XYZ 0 491 0]/Prev 1403 0 R/Next 1409 0 R>>endobj
+1405 0 obj<</Parent 1404 0 R/Title(3.2.1. /etc/hosts)/Dest[1148 0 R/XYZ 0 363 0]/Next 1406 0 R>>endobj
+1406 0 obj<</Parent 1404 0 R/Title(3.2.2. /etc/resolv.conf)/Dest[1150 0 R/XYZ 0 494 0]/Prev 1405 0 R/Next 1407 0 R>>endobj
+1407 0 obj<</Parent 1404 0 R/Title(3.2.3. /etc/host.conf)/Dest[1150 0 R/XYZ 0 356 0]/Prev 1406 0 R/Next 1408 0 R>>endobj
+1408 0 obj<</Parent 1404 0 R/Title(3.2.4. /etc/nsswitch.conf)/Dest[1150 0 R/XYZ 0 210 0]/Prev 1407 0 R>>endobj
+1409 0 obj<</Parent 1402 0 R/Count -5/First 1410 0 R/Last 1414 0 R/Title(3.3. Name resolution as used within MS Windows networking)/Dest[1152 0 R/XYZ 0 392 0]/Prev 1404 0 R/Next 1415 0 R>>endobj
+1410 0 obj<</Parent 1409 0 R/Title(3.3.1. The NetBIOS Name Cache)/Dest[1154 0 R/XYZ 0 319 0]/Next 1411 0 R>>endobj
+1411 0 obj<</Parent 1409 0 R/Title(3.3.2. The LMHOSTS file)/Dest[1156 0 R/XYZ 0 786 0]/Prev 1410 0 R/Next 1412 0 R>>endobj
+1412 0 obj<</Parent 1409 0 R/Title(3.3.3. HOSTS file)/Dest[1158 0 R/XYZ 0 512 0]/Prev 1411 0 R/Next 1413 0 R>>endobj
+1413 0 obj<</Parent 1409 0 R/Title(3.3.4. DNS Lookup)/Dest[1158 0 R/XYZ 0 414 0]/Prev 1412 0 R/Next 1414 0 R>>endobj
+1414 0 obj<</Parent 1409 0 R/Title(3.3.5. WINS Lookup)/Dest[1158 0 R/XYZ 0 276 0]/Prev 1413 0 R>>endobj
+1415 0 obj<</Parent 1402 0 R/Title(3.4. How browsing functions and how to deploy stable and dependable browsing using Samba)/Dest[1160 0 R/XYZ 0 723 0]/Prev 1409 0 R/Next 1416 0 R>>endobj
+1416 0 obj<</Parent 1402 0 R/Count -3/First 1417 0 R/Last 1419 0 R/Title(3.5. MS Windows security options and how to configure Samba for seemless integration)/Dest[1160 0 R/XYZ 0 179 0]/Prev 1415 0 R/Next 1420 0 R>>endobj
+1417 0 obj<</Parent 1416 0 R/Title(3.5.1. Use MS Windows NT as an authentication server)/Dest[1164 0 R/XYZ 0 786 0]/Next 1418 0 R>>endobj
+1418 0 obj<</Parent 1416 0 R/Title(3.5.2. Make Samba a member of an MS Windows NT security domain)/Dest[1164 0 R/XYZ 0 537 0]/Prev 1417 0 R/Next 1419 0 R>>endobj
+1419 0 obj<</Parent 1416 0 R/Title(3.5.3. Configure Samba as an authentication server)/Dest[1164 0 R/XYZ 0 185 0]/Prev 1418 0 R>>endobj
+1420 0 obj<</Parent 1402 0 R/Title(3.6. Conclusions)/Dest[1166 0 R/XYZ 0 316 0]/Prev 1416 0 R>>endobj
+1421 0 obj<</Parent 1362 0 R/Count -3/First 1422 0 R/Last 1424 0 R/Title(Chapter 4. Configuring PAM for distributed but centrally managed authentication)/Dest[1168 0 R/XYZ 0 786 0]/Prev 1402 0 R/Next 1425 0 R>>endobj
+1422 0 obj<</Parent 1421 0 R/Title(4.1. Samba and PAM)/Dest[1168 0 R/XYZ 0 738 0]/Next 1423 0 R>>endobj
+1423 0 obj<</Parent 1421 0 R/Title(4.2. Distributed Authentication)/Dest[1170 0 R/XYZ 0 201 0]/Prev 1422 0 R/Next 1424 0 R>>endobj
+1424 0 obj<</Parent 1421 0 R/Title(4.3. PAM Configuration in smb.conf)/Dest[1172 0 R/XYZ 0 758 0]/Prev 1423 0 R>>endobj
+1425 0 obj<</Parent 1362 0 R/Count -1/First 1426 0 R/Last 1426 0 R/Title(Chapter 5. Hosting a Microsoft Distributed File System tree on Samba)/Dest[1174 0 R/XYZ 0 786 0]/Prev 1421 0 R/Next 1428 0 R>>endobj
+1426 0 obj<</Parent 1425 0 R/Count -1/First 1427 0 R/Last 1427 0 R/Title(5.1. Instructions)/Dest[1174 0 R/XYZ 0 738 0]>>endobj
+1427 0 obj<</Parent 1426 0 R/Title(5.1.1. Notes)/Dest[1176 0 R/XYZ 0 705 0]>>endobj
+1428 0 obj<</Parent 1362 0 R/Count -7/First 1429 0 R/Last 1437 0 R/Title(Chapter 6. UNIX Permission Bits and Windows NT Access Control Lists)/Dest[1178 0 R/XYZ 0 786 0]/Prev 1425 0 R/Next 1438 0 R>>endobj
+1429 0 obj<</Parent 1428 0 R/Title(6.1. Viewing and changing UNIX permissions using the NT security dialogs)/Dest[1178 0 R/XYZ 0 738 0]/Next 1430 0 R>>endobj
+1430 0 obj<</Parent 1428 0 R/Title(6.2. How to view file security on a Samba share)/Dest[1178 0 R/XYZ 0 550 0]/Prev 1429 0 R/Next 1431 0 R>>endobj
+1431 0 obj<</Parent 1428 0 R/Title(6.3. Viewing file ownership)/Dest[1178 0 R/XYZ 0 383 0]/Prev 1430 0 R/Next 1432 0 R>>endobj
+1432 0 obj<</Parent 1428 0 R/Count -2/First 1433 0 R/Last 1434 0 R/Title(6.4. Viewing file or directory permissions)/Dest[1180 0 R/XYZ 0 718 0]/Prev 1431 0 R/Next 1435 0 R>>endobj
+1433 0 obj<</Parent 1432 0 R/Title(6.4.1. File Permissions)/Dest[1180 0 R/XYZ 0 485 0]/Next 1434 0 R>>endobj
+1434 0 obj<</Parent 1432 0 R/Title(6.4.2. Directory Permissions)/Dest[1180 0 R/XYZ 0 241 0]/Prev 1433 0 R>>endobj
+1435 0 obj<</Parent 1428 0 R/Title(6.5. Modifying file or directory permissions)/Dest[1182 0 R/XYZ 0 745 0]/Prev 1432 0 R/Next 1436 0 R>>endobj
+1436 0 obj<</Parent 1428 0 R/Title(6.6. Interaction with the standard Samba create mask parameters)/Dest[1182 0 R/XYZ 0 313 0]/Prev 1435 0 R/Next 1437 0 R>>endobj
+1437 0 obj<</Parent 1428 0 R/Title(6.7. Interaction with the standard Samba file attribute mapping)/Dest[1186 0 R/XYZ 0 652 0]/Prev 1436 0 R>>endobj
+1438 0 obj<</Parent 1362 0 R/Count -4/First 1439 0 R/Last 1451 0 R/Title(Chapter 7. Printing Support in Samba 2.2.x)/Dest[1188 0 R/XYZ 0 786 0]/Prev 1428 0 R/Next 1452 0 R>>endobj
+1439 0 obj<</Parent 1438 0 R/Title(7.1. Introduction)/Dest[1188 0 R/XYZ 0 762 0]/Next 1440 0 R>>endobj
+1440 0 obj<</Parent 1438 0 R/Count -5/First 1441 0 R/Last 1445 0 R/Title(7.2. Configuration)/Dest[1188 0 R/XYZ 0 331 0]/Prev 1439 0 R/Next 1446 0 R>>endobj
+1441 0 obj<</Parent 1440 0 R/Title(7.2.1. Creating [print$])/Dest[1190 0 R/XYZ 0 755 0]/Next 1442 0 R>>endobj
+1442 0 obj<</Parent 1440 0 R/Title(7.2.2. Setting Drivers for Existing Printers)/Dest[1192 0 R/XYZ 0 524 0]/Prev 1441 0 R/Next 1443 0 R>>endobj
+1443 0 obj<</Parent 1440 0 R/Title(7.2.3. Support a large number of printers)/Dest[1194 0 R/XYZ 0 771 0]/Prev 1442 0 R/Next 1444 0 R>>endobj
+1444 0 obj<</Parent 1440 0 R/Title(7.2.4. Adding New Printers via the Windows NT APW)/Dest[1194 0 R/XYZ 0 401 0]/Prev 1443 0 R/Next 1445 0 R>>endobj
+1445 0 obj<</Parent 1440 0 R/Title(7.2.5. Samba and Printer Ports)/Dest[1196 0 R/XYZ 0 224 0]/Prev 1444 0 R>>endobj
+1446 0 obj<</Parent 1438 0 R/Count -4/First 1447 0 R/Last 1450 0 R/Title(7.3. The Imprints Toolset)/Dest[1198 0 R/XYZ 0 705 0]/Prev 1440 0 R/Next 1451 0 R>>endobj
+1447 0 obj<</Parent 1446 0 R/Title(7.3.1. What is Imprints?)/Dest[1198 0 R/XYZ 0 603 0]/Next 1448 0 R>>endobj
+1448 0 obj<</Parent 1446 0 R/Title(7.3.2. Creating Printer Driver Packages)/Dest[1198 0 R/XYZ 0 479 0]/Prev 1447 0 R/Next 1449 0 R>>endobj
+1449 0 obj<</Parent 1446 0 R/Title(7.3.3. The Imprints server)/Dest[1198 0 R/XYZ 0 394 0]/Prev 1448 0 R/Next 1450 0 R>>endobj
+1450 0 obj<</Parent 1446 0 R/Title(7.3.4. The Installation Client)/Dest[1198 0 R/XYZ 0 296 0]/Prev 1449 0 R>>endobj
+1451 0 obj<</Parent 1438 0 R/Title(7.4. Migration to from Samba 2.0.x to 2.2.x)/Dest[1200 0 R/XYZ 0 412 0]/Prev 1446 0 R>>endobj
+1452 0 obj<</Parent 1362 0 R/Count -9/First 1453 0 R/Last 1461 0 R/Title(Chapter 8. Debugging Printing Problems)/Dest[1204 0 R/XYZ 0 786 0]/Prev 1438 0 R/Next 1462 0 R>>endobj
+1453 0 obj<</Parent 1452 0 R/Title(8.1. Introduction)/Dest[1204 0 R/XYZ 0 762 0]/Next 1454 0 R>>endobj
+1454 0 obj<</Parent 1452 0 R/Title(8.2. Debugging printer problems)/Dest[1206 0 R/XYZ 0 786 0]/Prev 1453 0 R/Next 1455 0 R>>endobj
+1455 0 obj<</Parent 1452 0 R/Title(8.3. What printers do I have?)/Dest[1206 0 R/XYZ 0 331 0]/Prev 1454 0 R/Next 1456 0 R>>endobj
+1456 0 obj<</Parent 1452 0 R/Title(8.4. Setting up printcap and print servers)/Dest[1208 0 R/XYZ 0 786 0]/Prev 1455 0 R/Next 1457 0 R>>endobj
+1457 0 obj<</Parent 1452 0 R/Title(8.5. Job sent, no output)/Dest[1208 0 R/XYZ 0 357 0]/Prev 1456 0 R/Next 1458 0 R>>endobj
+1458 0 obj<</Parent 1452 0 R/Title(8.6. Job sent, strange output)/Dest[1210 0 R/XYZ 0 699 0]/Prev 1457 0 R/Next 1459 0 R>>endobj
+1459 0 obj<</Parent 1452 0 R/Title(8.7. Raw PostScript printed)/Dest[1210 0 R/XYZ 0 351 0]/Prev 1458 0 R/Next 1460 0 R>>endobj
+1460 0 obj<</Parent 1452 0 R/Title(8.8. Advanced Printing)/Dest[1210 0 R/XYZ 0 263 0]/Prev 1459 0 R/Next 1461 0 R>>endobj
+1461 0 obj<</Parent 1452 0 R/Title(8.9. Real debugging)/Dest[1212 0 R/XYZ 0 786 0]/Prev 1460 0 R>>endobj
+1462 0 obj<</Parent 1362 0 R/Count -2/First 1463 0 R/Last 1464 0 R/Title(Chapter 9. Security levels)/Dest[1214 0 R/XYZ 0 786 0]/Prev 1452 0 R/Next 1465 0 R>>endobj
+1463 0 obj<</Parent 1462 0 R/Title(9.1. Introduction)/Dest[1214 0 R/XYZ 0 762 0]/Next 1464 0 R>>endobj
+1464 0 obj<</Parent 1462 0 R/Title(9.2. More complete description of security levels)/Dest[1214 0 R/XYZ 0 520 0]/Prev 1463 0 R>>endobj
+1465 0 obj<</Parent 1362 0 R/Count -3/First 1466 0 R/Last 1468 0 R/Title(Chapter 10. security = domain in Samba 2.x)/Dest[1218 0 R/XYZ 0 786 0]/Prev 1462 0 R/Next 1469 0 R>>endobj
+1466 0 obj<</Parent 1465 0 R/Title(10.1. Joining an NT Domain with Samba 2.2)/Dest[1218 0 R/XYZ 0 762 0]/Next 1467 0 R>>endobj
+1467 0 obj<</Parent 1465 0 R/Title(10.2. Samba and Windows 2000 Domains)/Dest[1220 0 R/XYZ 0 415 0]/Prev 1466 0 R/Next 1468 0 R>>endobj
+1468 0 obj<</Parent 1465 0 R/Title(10.3. Why is this better than security = server?)/Dest[1220 0 R/XYZ 0 207 0]/Prev 1467 0 R>>endobj
+1469 0 obj<</Parent 1362 0 R/Count -7/First 1470 0 R/Last 1485 0 R/Title(Chapter 11. Unified Logons between Windows NT and UNIX using Winbind)/Dest[1224 0 R/XYZ 0 786 0]/Prev 1465 0 R/Next 1486 0 R>>endobj
+1470 0 obj<</Parent 1469 0 R/Title(11.1. Abstract)/Dest[1224 0 R/XYZ 0 738 0]/Next 1471 0 R>>endobj
+1471 0 obj<</Parent 1469 0 R/Title(11.2. Introduction)/Dest[1224 0 R/XYZ 0 597 0]/Prev 1470 0 R/Next 1472 0 R>>endobj
+1472 0 obj<</Parent 1469 0 R/Count -1/First 1473 0 R/Last 1473 0 R/Title(11.3. What Winbind Provides)/Dest[1224 0 R/XYZ 0 284 0]/Prev 1471 0 R/Next 1474 0 R>>endobj
+1473 0 obj<</Parent 1472 0 R/Title(11.3.1. Target Uses)/Dest[1226 0 R/XYZ 0 613 0]>>endobj
+1474 0 obj<</Parent 1469 0 R/Count -5/First 1475 0 R/Last 1479 0 R/Title(11.4. How Winbind Works)/Dest[1226 0 R/XYZ 0 462 0]/Prev 1472 0 R/Next 1480 0 R>>endobj
+1475 0 obj<</Parent 1474 0 R/Title(11.4.1. Microsoft Remote Procedure Calls)/Dest[1226 0 R/XYZ 0 347 0]/Next 1476 0 R>>endobj
+1476 0 obj<</Parent 1474 0 R/Title(11.4.2. Name Service Switch)/Dest[1228 0 R/XYZ 0 786 0]/Prev 1475 0 R/Next 1477 0 R>>endobj
+1477 0 obj<</Parent 1474 0 R/Title(11.4.3. Pluggable Authentication Modules)/Dest[1228 0 R/XYZ 0 345 0]/Prev 1476 0 R/Next 1478 0 R>>endobj
+1478 0 obj<</Parent 1474 0 R/Title(11.4.4. User and Group ID Allocation)/Dest[1230 0 R/XYZ 0 718 0]/Prev 1477 0 R/Next 1479 0 R>>endobj
+1479 0 obj<</Parent 1474 0 R/Title(11.4.5. Result Caching)/Dest[1230 0 R/XYZ 0 541 0]/Prev 1478 0 R>>endobj
+1480 0 obj<</Parent 1469 0 R/Count -3/First 1481 0 R/Last 1483 0 R/Title(11.5. Installation and Configuration)/Dest[1230 0 R/XYZ 0 403 0]/Prev 1474 0 R/Next 1484 0 R>>endobj
+1481 0 obj<</Parent 1480 0 R/Title(11.5.1. Introduction)/Dest[1230 0 R/XYZ 0 262 0]/Next 1482 0 R>>endobj
+1482 0 obj<</Parent 1480 0 R/Title(11.5.2. Requirements)/Dest[1232 0 R/XYZ 0 652 0]/Prev 1481 0 R/Next 1483 0 R>>endobj
+1483 0 obj<</Parent 1480 0 R/Title(11.5.3. Testing Things Out)/Dest[1232 0 R/XYZ 0 383 0]/Prev 1482 0 R>>endobj
+1484 0 obj<</Parent 1469 0 R/Title(11.6. Limitations)/Dest[1246 0 R/XYZ 0 349 0]/Prev 1480 0 R/Next 1485 0 R>>endobj
+1485 0 obj<</Parent 1469 0 R/Title(11.7. Conclusion)/Dest[1248 0 R/XYZ 0 786 0]/Prev 1484 0 R>>endobj
+1486 0 obj<</Parent 1362 0 R/Count -9/First 1487 0 R/Last 1500 0 R/Title(Chapter 12. How to Configure Samba 2.2 as a Primary Domain Controller)/Dest[1250 0 R/XYZ 0 786 0]/Prev 1469 0 R/Next 1501 0 R>>endobj
+1487 0 obj<</Parent 1486 0 R/Title(12.1. Prerequisite Reading)/Dest[1250 0 R/XYZ 0 738 0]/Next 1488 0 R>>endobj
+1488 0 obj<</Parent 1486 0 R/Title(12.2. Background)/Dest[1250 0 R/XYZ 0 637 0]/Prev 1487 0 R/Next 1489 0 R>>endobj
+1489 0 obj<</Parent 1486 0 R/Title(12.3. Configuring the Samba Domain Controller)/Dest[1252 0 R/XYZ 0 771 0]/Prev 1488 0 R/Next 1490 0 R>>endobj
+1490 0 obj<</Parent 1486 0 R/Count -3/First 1491 0 R/Last 1493 0 R/Title(12.4. Creating Machine Trust Accounts and Joining Clients to the Domain)/Dest[1254 0 R/XYZ 0 665 0]/Prev 1489 0 R/Next 1494 0 R>>endobj
+1491 0 obj<</Parent 1490 0 R/Title(12.4.1. Manual Creation of Machine Trust Accounts)/Dest[1254 0 R/XYZ 0 279 0]/Next 1492 0 R>>endobj
+1492 0 obj<</Parent 1490 0 R/Title(12.4.2. "On-the-Fly" Creation of Machine Trust Accounts)/Dest[1256 0 R/XYZ 0 411 0]/Prev 1491 0 R/Next 1493 0 R>>endobj
+1493 0 obj<</Parent 1490 0 R/Title(12.4.3. Joining the Client to the Domain)/Dest[1256 0 R/XYZ 0 202 0]/Prev 1492 0 R>>endobj
+1494 0 obj<</Parent 1486 0 R/Title(12.5. Common Problems and Errors)/Dest[1258 0 R/XYZ 0 520 0]/Prev 1490 0 R/Next 1495 0 R>>endobj
+1495 0 obj<</Parent 1486 0 R/Title(12.6. System Policies and Profiles)/Dest[1260 0 R/XYZ 0 261 0]/Prev 1494 0 R/Next 1496 0 R>>endobj
+1496 0 obj<</Parent 1486 0 R/Title(12.7. What other help can I get?)/Dest[1262 0 R/XYZ 0 256 0]/Prev 1495 0 R/Next 1497 0 R>>endobj
+1497 0 obj<</Parent 1486 0 R/Count -2/First 1498 0 R/Last 1499 0 R/Title(12.8. Domain Control for Windows 9x/ME)/Dest[1268 0 R/XYZ 0 599 0]/Prev 1496 0 R/Next 1500 0 R>>endobj
+1498 0 obj<</Parent 1497 0 R/Title(12.8.1. Configuration Instructions: Network Logons)/Dest[1270 0 R/XYZ 0 613 0]/Next 1499 0 R>>endobj
+1499 0 obj<</Parent 1497 0 R/Title(12.8.2. Configuration Instructions: Setting up Roaming User Profiles)/Dest[1270 0 R/XYZ 0 179 0]/Prev 1498 0 R>>endobj
+1500 0 obj<</Parent 1486 0 R/Title(12.9. DOMAIN_CONTROL.txt : Windows NT Domain Control & Samba)/Dest[1278 0 R/XYZ 0 188 0]/Prev 1497 0 R>>endobj
+1501 0 obj<</Parent 1362 0 R/Count -5/First 1502 0 R/Last 1508 0 R/Title(Chapter 13. How to Act as a Backup Domain Controller in a Purely Samba Controlled Domain)/Dest[1284 0 R/XYZ 0 786 0]/Prev 1486 0 R/Next 1510 0 R>>endobj
+1502 0 obj<</Parent 1501 0 R/Title(13.1. Prerequisite Reading)/Dest[1284 0 R/XYZ 0 738 0]/Next 1503 0 R>>endobj
+1503 0 obj<</Parent 1501 0 R/Title(13.2. Background)/Dest[1284 0 R/XYZ 0 650 0]/Prev 1502 0 R/Next 1504 0 R>>endobj
+1504 0 obj<</Parent 1501 0 R/Count -2/First 1505 0 R/Last 1506 0 R/Title(13.3. What qualifies a Domain Controller on the network?)/Dest[1284 0 R/XYZ 0 278 0]/Prev 1503 0 R/Next 1507 0 R>>endobj
+1505 0 obj<</Parent 1504 0 R/Title(13.3.1. How does a Workstation find its domain controller?)/Dest[1286 0 R/XYZ 0 786 0]/Next 1506 0 R>>endobj
+1506 0 obj<</Parent 1504 0 R/Title(13.3.2. When is the PDC needed?)/Dest[1286 0 R/XYZ 0 662 0]/Prev 1505 0 R>>endobj
+1507 0 obj<</Parent 1501 0 R/Title(13.4. Can Samba be a Backup Domain Controller?)/Dest[1286 0 R/XYZ 0 577 0]/Prev 1504 0 R/Next 1508 0 R>>endobj
+1508 0 obj<</Parent 1501 0 R/Count -1/First 1509 0 R/Last 1509 0 R/Title(13.5. How do I set up a Samba BDC?)/Dest[1286 0 R/XYZ 0 436 0]/Prev 1507 0 R>>endobj
+1509 0 obj<</Parent 1508 0 R/Title(13.5.1. How do I replicate the smbpasswd file?)/Dest[1288 0 R/XYZ 0 673 0]>>endobj
+1510 0 obj<</Parent 1362 0 R/Count -10/First 1511 0 R/Last 1522 0 R/Title(Chapter 14. Storing Samba's User/Machine Account information in an LDAP Directory)/Dest[1290 0 R/XYZ 0 786 0]/Prev 1501 0 R/Next 1523 0 R>>endobj
+1511 0 obj<</Parent 1510 0 R/Title(14.1. Purpose)/Dest[1290 0 R/XYZ 0 738 0]/Next 1512 0 R>>endobj
+1512 0 obj<</Parent 1510 0 R/Title(14.2. Introduction)/Dest[1290 0 R/XYZ 0 465 0]/Prev 1511 0 R/Next 1513 0 R>>endobj
+1513 0 obj<</Parent 1510 0 R/Title(14.3. Supported LDAP Servers)/Dest[1292 0 R/XYZ 0 626 0]/Prev 1512 0 R/Next 1514 0 R>>endobj
+1514 0 obj<</Parent 1510 0 R/Title(14.4. Schema and Relationship to the RFC 2307 posixAccount)/Dest[1292 0 R/XYZ 0 524 0]/Prev 1513 0 R/Next 1515 0 R>>endobj
+1515 0 obj<</Parent 1510 0 R/Count -2/First 1516 0 R/Last 1517 0 R/Title(14.5. Configuring Samba with LDAP)/Dest[1294 0 R/XYZ 0 786 0]/Prev 1514 0 R/Next 1518 0 R>>endobj
+1516 0 obj<</Parent 1515 0 R/Title(14.5.1. OpenLDAP configuration)/Dest[1294 0 R/XYZ 0 766 0]/Next 1517 0 R>>endobj
+1517 0 obj<</Parent 1515 0 R/Title(14.5.2. Configuring Samba)/Dest[1294 0 R/XYZ 0 196 0]/Prev 1516 0 R>>endobj
+1518 0 obj<</Parent 1510 0 R/Title(14.6. Accounts and Groups management)/Dest[1296 0 R/XYZ 0 296 0]/Prev 1515 0 R/Next 1519 0 R>>endobj
+1519 0 obj<</Parent 1510 0 R/Title(14.7. Security and sambaAccount)/Dest[1298 0 R/XYZ 0 771 0]/Prev 1518 0 R/Next 1520 0 R>>endobj
+1520 0 obj<</Parent 1510 0 R/Title(14.8. LDAP specials attributes for sambaAccounts)/Dest[1298 0 R/XYZ 0 389 0]/Prev 1519 0 R/Next 1521 0 R>>endobj
+1521 0 obj<</Parent 1510 0 R/Title(14.9. Example LDIF Entries for a sambaAccount)/Dest[1300 0 R/XYZ 0 375 0]/Prev 1520 0 R/Next 1522 0 R>>endobj
+1522 0 obj<</Parent 1510 0 R/Title(14.10. Comments)/Dest[1302 0 R/XYZ 0 544 0]/Prev 1521 0 R>>endobj
+1523 0 obj<</Parent 1362 0 R/Count -8/First 1524 0 R/Last 1532 0 R/Title(Chapter 15. Using samba 3.0 with ActiveDirectory support)/Dest[1304 0 R/XYZ 0 786 0]/Prev 1510 0 R/Next 1533 0 R>>endobj
+1524 0 obj<</Parent 1523 0 R/Title(15.1. Installing the required packages for Debian)/Dest[1304 0 R/XYZ 0 553 0]/Next 1525 0 R>>endobj
+1525 0 obj<</Parent 1523 0 R/Title(15.2. Installing the required packages for RedHat)/Dest[1304 0 R/XYZ 0 446 0]/Prev 1524 0 R/Next 1526 0 R>>endobj
+1526 0 obj<</Parent 1523 0 R/Title(15.3. Compile Samba)/Dest[1304 0 R/XYZ 0 270 0]/Prev 1525 0 R/Next 1527 0 R>>endobj
+1527 0 obj<</Parent 1523 0 R/Title(15.4. Setup your /etc/krb5.conf)/Dest[1306 0 R/XYZ 0 583 0]/Prev 1526 0 R/Next 1528 0 R>>endobj
+1528 0 obj<</Parent 1523 0 R/Count -1/First 1529 0 R/Last 1529 0 R/Title(15.5. Create the computer account)/Dest[1306 0 R/XYZ 0 266 0]/Prev 1527 0 R/Next 1530 0 R>>endobj
+1529 0 obj<</Parent 1528 0 R/Title(15.5.1. Possible errors)/Dest[1306 0 R/XYZ 0 178 0]>>endobj
+1530 0 obj<</Parent 1523 0 R/Title(15.6. Test your server setup)/Dest[1308 0 R/XYZ 0 718 0]/Prev 1528 0 R/Next 1531 0 R>>endobj
+1531 0 obj<</Parent 1523 0 R/Title(15.7. Testing with smbclient)/Dest[1308 0 R/XYZ 0 630 0]/Prev 1530 0 R/Next 1532 0 R>>endobj
+1532 0 obj<</Parent 1523 0 R/Title(15.8. Notes)/Dest[1308 0 R/XYZ 0 555 0]/Prev 1531 0 R>>endobj
+1533 0 obj<</Parent 1362 0 R/Count -11/First 1534 0 R/Last 1545 0 R/Title(Chapter 16. Improved browsing in samba)/Dest[1310 0 R/XYZ 0 786 0]/Prev 1523 0 R/Next 1546 0 R>>endobj
+1534 0 obj<</Parent 1533 0 R/Title(16.1. Overview of browsing)/Dest[1310 0 R/XYZ 0 762 0]/Next 1535 0 R>>endobj
+1535 0 obj<</Parent 1533 0 R/Title(16.2. Browsing support in samba)/Dest[1310 0 R/XYZ 0 568 0]/Prev 1534 0 R/Next 1536 0 R>>endobj
+1536 0 obj<</Parent 1533 0 R/Title(16.3. Problem resolution)/Dest[1310 0 R/XYZ 0 189 0]/Prev 1535 0 R/Next 1537 0 R>>endobj
+1537 0 obj<</Parent 1533 0 R/Count -1/First 1538 0 R/Last 1538 0 R/Title(16.4. Browsing across subnets)/Dest[1312 0 R/XYZ 0 586 0]/Prev 1536 0 R/Next 1539 0 R>>endobj
+1538 0 obj<</Parent 1537 0 R/Title(16.4.1. How does cross subnet browsing work ?)/Dest[1312 0 R/XYZ 0 326 0]>>endobj
+1539 0 obj<</Parent 1533 0 R/Title(16.5. Setting up a WINS server)/Dest[1318 0 R/XYZ 0 613 0]/Prev 1537 0 R/Next 1540 0 R>>endobj
+1540 0 obj<</Parent 1533 0 R/Title(16.6. Setting up Browsing in a WORKGROUP)/Dest[1320 0 R/XYZ 0 665 0]/Prev 1539 0 R/Next 1541 0 R>>endobj
+1541 0 obj<</Parent 1533 0 R/Title(16.7. Setting up Browsing in a DOMAIN)/Dest[1322 0 R/XYZ 0 675 0]/Prev 1540 0 R/Next 1542 0 R>>endobj
+1542 0 obj<</Parent 1533 0 R/Title(16.8. Forcing samba to be the master)/Dest[1322 0 R/XYZ 0 319 0]/Prev 1541 0 R/Next 1543 0 R>>endobj
+1543 0 obj<</Parent 1533 0 R/Title(16.9. Making samba the domain master)/Dest[1324 0 R/XYZ 0 573 0]/Prev 1542 0 R/Next 1544 0 R>>endobj
+1544 0 obj<</Parent 1533 0 R/Title(16.10. Note about broadcast addresses)/Dest[1326 0 R/XYZ 0 786 0]/Prev 1543 0 R/Next 1545 0 R>>endobj
+1545 0 obj<</Parent 1533 0 R/Title(16.11. Multiple interfaces)/Dest[1326 0 R/XYZ 0 698 0]/Prev 1544 0 R>>endobj
+1546 0 obj<</Parent 1362 0 R/Count -17/First 1547 0 R/Last 1566 0 R/Title(Chapter 17. Samba performance issues)/Dest[1328 0 R/XYZ 0 786 0]/Prev 1533 0 R/Next 1567 0 R>>endobj
+1547 0 obj<</Parent 1546 0 R/Title(17.1. Comparisons)/Dest[1328 0 R/XYZ 0 762 0]/Next 1548 0 R>>endobj
+1548 0 obj<</Parent 1546 0 R/Count -3/First 1549 0 R/Last 1551 0 R/Title(17.2. Oplocks)/Dest[1328 0 R/XYZ 0 502 0]/Prev 1547 0 R/Next 1552 0 R>>endobj
+1549 0 obj<</Parent 1548 0 R/Title(17.2.1. Overview)/Dest[1328 0 R/XYZ 0 482 0]/Next 1550 0 R>>endobj
+1550 0 obj<</Parent 1548 0 R/Title(17.2.2. Level2 Oplocks)/Dest[1328 0 R/XYZ 0 199 0]/Prev 1549 0 R/Next 1551 0 R>>endobj
+1551 0 obj<</Parent 1548 0 R/Title(17.2.3. Old 'fake oplocks' option - deprecated)/Dest[1330 0 R/XYZ 0 705 0]/Prev 1550 0 R>>endobj
+1552 0 obj<</Parent 1546 0 R/Title(17.3. Socket options)/Dest[1330 0 R/XYZ 0 567 0]/Prev 1548 0 R/Next 1553 0 R>>endobj
+1553 0 obj<</Parent 1546 0 R/Title(17.4. Read size)/Dest[1330 0 R/XYZ 0 307 0]/Prev 1552 0 R/Next 1554 0 R>>endobj
+1554 0 obj<</Parent 1546 0 R/Title(17.5. Max xmit)/Dest[1332 0 R/XYZ 0 771 0]/Prev 1553 0 R/Next 1555 0 R>>endobj
+1555 0 obj<</Parent 1546 0 R/Title(17.6. Locking)/Dest[1332 0 R/XYZ 0 590 0]/Prev 1554 0 R/Next 1556 0 R>>endobj
+1556 0 obj<</Parent 1546 0 R/Title(17.7. Share modes)/Dest[1332 0 R/XYZ 0 462 0]/Prev 1555 0 R/Next 1557 0 R>>endobj
+1557 0 obj<</Parent 1546 0 R/Title(17.8. Log level)/Dest[1332 0 R/XYZ 0 242 0]/Prev 1556 0 R/Next 1558 0 R>>endobj
+1558 0 obj<</Parent 1546 0 R/Title(17.9. Wide lines)/Dest[1334 0 R/XYZ 0 786 0]/Prev 1557 0 R/Next 1559 0 R>>endobj
+1559 0 obj<</Parent 1546 0 R/Title(17.10. Read raw)/Dest[1334 0 R/XYZ 0 698 0]/Prev 1558 0 R/Next 1560 0 R>>endobj
+1560 0 obj<</Parent 1546 0 R/Title(17.11. Write raw)/Dest[1334 0 R/XYZ 0 530 0]/Prev 1559 0 R/Next 1561 0 R>>endobj
+1561 0 obj<</Parent 1546 0 R/Title(17.12. Read prediction)/Dest[1334 0 R/XYZ 0 402 0]/Prev 1560 0 R/Next 1562 0 R>>endobj
+1562 0 obj<</Parent 1546 0 R/Title(17.13. Memory mapping)/Dest[1334 0 R/XYZ 0 182 0]/Prev 1561 0 R/Next 1563 0 R>>endobj
+1563 0 obj<</Parent 1546 0 R/Title(17.14. Slow Clients)/Dest[1336 0 R/XYZ 0 692 0]/Prev 1562 0 R/Next 1564 0 R>>endobj
+1564 0 obj<</Parent 1546 0 R/Title(17.15. Slow Logins)/Dest[1336 0 R/XYZ 0 564 0]/Prev 1563 0 R/Next 1565 0 R>>endobj
+1565 0 obj<</Parent 1546 0 R/Title(17.16. Client tuning)/Dest[1336 0 R/XYZ 0 489 0]/Prev 1564 0 R/Next 1566 0 R>>endobj
+1566 0 obj<</Parent 1546 0 R/Title(17.17. My Results)/Dest[1338 0 R/XYZ 0 441 0]/Prev 1565 0 R>>endobj
+1567 0 obj<</Parent 1362 0 R/Count -5/First 1568 0 R/Last 1580 0 R/Title(Chapter 18. Samba and other CIFS clients)/Dest[1340 0 R/XYZ 0 786 0]/Prev 1546 0 R/Next 1581 0 R>>endobj
+1568 0 obj<</Parent 1567 0 R/Title(18.1. Macintosh clients?)/Dest[1340 0 R/XYZ 0 721 0]/Next 1569 0 R>>endobj
+1569 0 obj<</Parent 1567 0 R/Count -4/First 1570 0 R/Last 1573 0 R/Title(18.2. OS2 Client)/Dest[1340 0 R/XYZ 0 513 0]/Prev 1568 0 R/Next 1574 0 R>>endobj
+1570 0 obj<</Parent 1569 0 R/Title(18.2.1. How can I configure OS/2 Warp Connect or OS/2 Warp 4 as a client for Samba?)/Dest[1340 0 R/XYZ 0 493 0]/Next 1571 0 R>>endobj
+1571 0 obj<</Parent 1569 0 R/Title(18.2.2. How can I configure OS/2 Warp 3 \(not Connect\), OS/2 1.2, 1.3 or 2.x for Samba?)/Dest[1342 0 R/XYZ 0 786 0]/Prev 1570 0 R/Next 1572 0 R>>endobj
+1572 0 obj<</Parent 1569 0 R/Title(18.2.3. Are there any other issues when OS/2 \(any version\) is used as a client?)/Dest[1342 0 R/XYZ 0 575 0]/Prev 1571 0 R/Next 1573 0 R>>endobj
+1573 0 obj<</Parent 1569 0 R/Title(18.2.4. How do I get printer driver download working for OS/2 clients?)/Dest[1342 0 R/XYZ 0 461 0]/Prev 1572 0 R>>endobj
+1574 0 obj<</Parent 1567 0 R/Count -4/First 1575 0 R/Last 1578 0 R/Title(18.3. Windows for Workgroups)/Dest[1342 0 R/XYZ 0 204 0]/Prev 1569 0 R/Next 1579 0 R>>endobj
+1575 0 obj<</Parent 1574 0 R/Title(18.3.1. Use latest TCP/IP stack from Microsoft)/Dest[1342 0 R/XYZ 0 184 0]/Next 1576 0 R>>endobj
+1576 0 obj<</Parent 1574 0 R/Title(18.3.2. Delete .pwl files after password change)/Dest[1344 0 R/XYZ 0 679 0]/Prev 1575 0 R/Next 1577 0 R>>endobj
+1577 0 obj<</Parent 1574 0 R/Title(18.3.3. Configure WfW password handling)/Dest[1344 0 R/XYZ 0 528 0]/Prev 1576 0 R/Next 1578 0 R>>endobj
+1578 0 obj<</Parent 1574 0 R/Title(18.3.4. Case handling of passwords)/Dest[1344 0 R/XYZ 0 430 0]/Prev 1577 0 R>>endobj
+1579 0 obj<</Parent 1567 0 R/Title(18.4. Windows '95/'98)/Dest[1344 0 R/XYZ 0 345 0]/Prev 1574 0 R/Next 1580 0 R>>endobj
+1580 0 obj<</Parent 1567 0 R/Title(18.5. Windows 2000 Service Pack 2)/Dest[1346 0 R/XYZ 0 771 0]/Prev 1579 0 R>>endobj
+1581 0 obj<</Parent 1362 0 R/Count -2/First 1582 0 R/Last 1583 0 R/Title(Chapter 19. HOWTO Access Samba source code via CVS)/Dest[1348 0 R/XYZ 0 786 0]/Prev 1567 0 R/Next 1586 0 R>>endobj
+1582 0 obj<</Parent 1581 0 R/Title(19.1. Introduction)/Dest[1348 0 R/XYZ 0 738 0]/Next 1583 0 R>>endobj
+1583 0 obj<</Parent 1581 0 R/Count -2/First 1584 0 R/Last 1585 0 R/Title(19.2. CVS Access to samba.org)/Dest[1348 0 R/XYZ 0 610 0]/Prev 1582 0 R>>endobj
+1584 0 obj<</Parent 1583 0 R/Title(19.2.1. Access via CVSweb)/Dest[1348 0 R/XYZ 0 522 0]/Next 1585 0 R>>endobj
+1585 0 obj<</Parent 1583 0 R/Title(19.2.2. Access via cvs)/Dest[1348 0 R/XYZ 0 411 0]/Prev 1584 0 R>>endobj
+1586 0 obj<</Parent 1362 0 R/Count -6/First 1587 0 R/Last 1592 0 R/Title(Chapter 20. Reporting Bugs)/Dest[1352 0 R/XYZ 0 786 0]/Prev 1581 0 R/Next 1593 0 R>>endobj
+1587 0 obj<</Parent 1586 0 R/Title(20.1. Introduction)/Dest[1352 0 R/XYZ 0 762 0]/Next 1588 0 R>>endobj
+1588 0 obj<</Parent 1586 0 R/Title(20.2. General info)/Dest[1352 0 R/XYZ 0 489 0]/Prev 1587 0 R/Next 1589 0 R>>endobj
+1589 0 obj<</Parent 1586 0 R/Title(20.3. Debug levels)/Dest[1352 0 R/XYZ 0 348 0]/Prev 1588 0 R/Next 1590 0 R>>endobj
+1590 0 obj<</Parent 1586 0 R/Title(20.4. Internal errors)/Dest[1354 0 R/XYZ 0 692 0]/Prev 1589 0 R/Next 1591 0 R>>endobj
+1591 0 obj<</Parent 1586 0 R/Title(20.5. Attaching to a running process)/Dest[1354 0 R/XYZ 0 339 0]/Prev 1590 0 R/Next 1592 0 R>>endobj
+1592 0 obj<</Parent 1586 0 R/Title(20.6. Patches)/Dest[1354 0 R/XYZ 0 238 0]/Prev 1591 0 R>>endobj
+1593 0 obj<</Parent 1362 0 R/Title(Chapter 21. Group mapping HOWTO)/Dest[1356 0 R/XYZ 0 786 0]/Prev 1586 0 R/Next 1594 0 R>>endobj
+1594 0 obj<</Parent 1362 0 R/Count -3/First 1595 0 R/Last 1597 0 R/Title(Chapter 22. Portability)/Dest[1358 0 R/XYZ 0 786 0]/Prev 1593 0 R>>endobj
+1595 0 obj<</Parent 1594 0 R/Title(22.1. HPUX)/Dest[1358 0 R/XYZ 0 707 0]/Next 1596 0 R>>endobj
+1596 0 obj<</Parent 1594 0 R/Title(22.2. SCO Unix)/Dest[1358 0 R/XYZ 0 500 0]/Prev 1595 0 R/Next 1597 0 R>>endobj
+1597 0 obj<</Parent 1594 0 R/Title(22.3. DNIX)/Dest[1358 0 R/XYZ 0 385 0]/Prev 1596 0 R>>endobj
+1598 0 obj<</Type/Catalog/Pages 1099 0 R/PageLayout/SinglePage/Outlines 1362 0 R/OpenAction[1114 0 R/XYZ null null 0]/PageMode/UseOutlines/PageLabels<</Nums[0<</P(title)>>1<</S/r>>7<</S/D/St 1/P()>>8<</S/D/St 2/P()>>13<</S/D/St 7/P()>>19<</S/D/St 13/P()>>24<</S/D/St 18/P()>>34<</S/D/St 28/P()>>37<</S/D/St 31/P()>>39<</S/D/St 33/P()>>44<</S/D/St 38/P()>>52<</S/D/St 46/P()>>57<</S/D/St 51/P()>>59<</S/D/St 53/P()>>62<</S/D/St 56/P()>>75<</S/D/St 69/P()>>92<</S/D/St 86/P()>>95<</S/D/St 89/P()>>102<</S/D/St 96/P()>>105<</S/D/St 99/P()>>114<</S/D/St 108/P()>>120<</S/D/St 114/P()>>124<</S/D/St 118/P()>>126<</S/D/St 120/P()>>128<</S/D/St 122/P()>>129<</S/D/St 123/P()>>]>>>>endobj
 xref
-0 1939 
+0 1599 
 0000000000 65535 f 
 0000000015 00000 n 
 0000000248 00000 n 
@@ -4142,1928 +3437,1588 @@ xref
 0000002876 00000 n 
 0000002978 00000 n 
 0000003080 00000 n 
-0000003182 00000 n 
-0000003284 00000 n 
-0000003387 00000 n 
-0000003490 00000 n 
-0000003593 00000 n 
-0000003696 00000 n 
-0000003799 00000 n 
-0000003902 00000 n 
-0000004005 00000 n 
-0000004108 00000 n 
-0000004211 00000 n 
-0000004314 00000 n 
-0000004417 00000 n 
-0000004520 00000 n 
-0000004623 00000 n 
-0000004726 00000 n 
-0000004829 00000 n 
-0000004932 00000 n 
-0000005035 00000 n 
-0000005138 00000 n 
-0000005240 00000 n 
-0000005343 00000 n 
-0000005446 00000 n 
-0000005549 00000 n 
-0000005652 00000 n 
-0000005755 00000 n 
-0000005858 00000 n 
-0000005961 00000 n 
-0000006064 00000 n 
-0000006167 00000 n 
-0000006270 00000 n 
-0000006373 00000 n 
-0000006476 00000 n 
-0000006578 00000 n 
-0000006681 00000 n 
-0000006970 00000 n 
-0000007072 00000 n 
-0000007175 00000 n 
-0000007278 00000 n 
-0000007381 00000 n 
-0000007484 00000 n 
-0000007587 00000 n 
-0000007690 00000 n 
-0000007792 00000 n 
-0000007895 00000 n 
-0000007998 00000 n 
-0000008101 00000 n 
-0000008204 00000 n 
-0000008307 00000 n 
-0000008409 00000 n 
-0000008511 00000 n 
-0000008613 00000 n 
-0000008716 00000 n 
-0000008819 00000 n 
-0000008922 00000 n 
-0000009025 00000 n 
-0000009128 00000 n 
-0000009231 00000 n 
-0000009334 00000 n 
-0000009437 00000 n 
-0000009540 00000 n 
-0000009643 00000 n 
-0000009746 00000 n 
-0000009849 00000 n 
-0000009952 00000 n 
-0000010055 00000 n 
-0000010157 00000 n 
-0000010260 00000 n 
-0000010363 00000 n 
-0000010466 00000 n 
-0000010569 00000 n 
-0000010672 00000 n 
-0000010775 00000 n 
-0000010878 00000 n 
-0000010981 00000 n 
-0000011082 00000 n 
-0000011183 00000 n 
-0000011284 00000 n 
-0000011594 00000 n 
-0000011696 00000 n 
-0000011799 00000 n 
-0000011902 00000 n 
-0000012006 00000 n 
-0000012110 00000 n 
-0000012214 00000 n 
-0000012318 00000 n 
-0000012422 00000 n 
-0000012525 00000 n 
-0000012629 00000 n 
-0000012733 00000 n 
-0000012837 00000 n 
-0000012940 00000 n 
-0000013043 00000 n 
-0000013146 00000 n 
-0000013250 00000 n 
-0000013354 00000 n 
-0000013458 00000 n 
-0000013562 00000 n 
-0000013666 00000 n 
-0000013770 00000 n 
-0000013874 00000 n 
-0000013978 00000 n 
-0000014082 00000 n 
-0000014186 00000 n 
-0000014290 00000 n 
-0000014394 00000 n 
-0000014498 00000 n 
-0000014602 00000 n 
-0000014706 00000 n 
-0000014810 00000 n 
-0000014914 00000 n 
-0000015018 00000 n 
-0000015121 00000 n 
-0000015225 00000 n 
-0000015329 00000 n 
-0000015433 00000 n 
-0000015537 00000 n 
-0000015641 00000 n 
-0000015745 00000 n 
-0000015848 00000 n 
-0000015950 00000 n 
-0000016052 00000 n 
-0000016410 00000 n 
-0000016513 00000 n 
-0000016617 00000 n 
-0000016721 00000 n 
-0000016825 00000 n 
-0000016928 00000 n 
-0000017032 00000 n 
-0000017136 00000 n 
-0000017239 00000 n 
-0000017343 00000 n 
-0000017447 00000 n 
-0000017551 00000 n 
-0000017655 00000 n 
-0000017759 00000 n 
-0000017863 00000 n 
-0000017967 00000 n 
-0000018071 00000 n 
-0000018175 00000 n 
-0000018279 00000 n 
-0000018383 00000 n 
-0000018487 00000 n 
-0000018591 00000 n 
-0000018695 00000 n 
-0000018799 00000 n 
-0000018903 00000 n 
-0000019007 00000 n 
-0000019111 00000 n 
-0000019215 00000 n 
-0000019319 00000 n 
-0000019423 00000 n 
-0000019527 00000 n 
-0000019630 00000 n 
-0000019734 00000 n 
-0000019838 00000 n 
-0000019941 00000 n 
-0000020045 00000 n 
-0000020149 00000 n 
-0000020253 00000 n 
-0000020357 00000 n 
-0000020461 00000 n 
-0000020565 00000 n 
-0000020669 00000 n 
-0000020772 00000 n 
-0000020874 00000 n 
-0000020976 00000 n 
-0000021345 00000 n 
-0000021448 00000 n 
-0000021552 00000 n 
+0000003183 00000 n 
+0000003286 00000 n 
+0000003389 00000 n 
+0000003492 00000 n 
+0000003595 00000 n 
+0000003698 00000 n 
+0000003801 00000 n 
+0000003904 00000 n 
+0000004007 00000 n 
+0000004110 00000 n 
+0000004213 00000 n 
+0000004316 00000 n 
+0000004419 00000 n 
+0000004522 00000 n 
+0000004625 00000 n 
+0000004728 00000 n 
+0000004831 00000 n 
+0000004934 00000 n 
+0000005036 00000 n 
+0000005139 00000 n 
+0000005242 00000 n 
+0000005345 00000 n 
+0000005448 00000 n 
+0000005551 00000 n 
+0000005654 00000 n 
+0000005757 00000 n 
+0000005860 00000 n 
+0000005963 00000 n 
+0000006066 00000 n 
+0000006169 00000 n 
+0000006272 00000 n 
+0000006375 00000 n 
+0000006478 00000 n 
+0000006581 00000 n 
+0000006683 00000 n 
+0000006786 00000 n 
+0000006889 00000 n 
+0000006991 00000 n 
+0000007092 00000 n 
+0000007193 00000 n 
+0000007517 00000 n 
+0000007619 00000 n 
+0000007722 00000 n 
+0000007825 00000 n 
+0000007928 00000 n 
+0000008031 00000 n 
+0000008134 00000 n 
+0000008237 00000 n 
+0000008340 00000 n 
+0000008443 00000 n 
+0000008546 00000 n 
+0000008649 00000 n 
+0000008752 00000 n 
+0000008855 00000 n 
+0000008958 00000 n 
+0000009060 00000 n 
+0000009163 00000 n 
+0000009266 00000 n 
+0000009369 00000 n 
+0000009471 00000 n 
+0000009574 00000 n 
+0000009677 00000 n 
+0000009779 00000 n 
+0000009882 00000 n 
+0000009985 00000 n 
+0000010088 00000 n 
+0000010191 00000 n 
+0000010294 00000 n 
+0000010397 00000 n 
+0000010500 00000 n 
+0000010603 00000 n 
+0000010706 00000 n 
+0000010808 00000 n 
+0000010911 00000 n 
+0000011014 00000 n 
+0000011117 00000 n 
+0000011220 00000 n 
+0000011323 00000 n 
+0000011426 00000 n 
+0000011529 00000 n 
+0000011632 00000 n 
+0000011735 00000 n 
+0000011838 00000 n 
+0000011940 00000 n 
+0000012042 00000 n 
+0000012370 00000 n 
+0000012473 00000 n 
+0000012577 00000 n 
+0000012680 00000 n 
+0000012784 00000 n 
+0000012888 00000 n 
+0000012992 00000 n 
+0000013096 00000 n 
+0000013200 00000 n 
+0000013304 00000 n 
+0000013408 00000 n 
+0000013512 00000 n 
+0000013616 00000 n 
+0000013719 00000 n 
+0000013823 00000 n 
+0000013927 00000 n 
+0000014030 00000 n 
+0000014134 00000 n 
+0000014238 00000 n 
+0000014342 00000 n 
+0000014445 00000 n 
+0000014549 00000 n 
+0000014653 00000 n 
+0000014757 00000 n 
+0000014861 00000 n 
+0000014965 00000 n 
+0000015069 00000 n 
+0000015173 00000 n 
+0000015277 00000 n 
+0000015381 00000 n 
+0000015485 00000 n 
+0000015589 00000 n 
+0000015693 00000 n 
+0000015797 00000 n 
+0000015901 00000 n 
+0000016005 00000 n 
+0000016109 00000 n 
+0000016212 00000 n 
+0000016316 00000 n 
+0000016420 00000 n 
+0000016524 00000 n 
+0000016627 00000 n 
+0000016729 00000 n 
+0000016831 00000 n 
+0000017192 00000 n 
+0000017295 00000 n 
+0000017399 00000 n 
+0000017503 00000 n 
+0000017607 00000 n 
+0000017711 00000 n 
+0000017815 00000 n 
+0000017919 00000 n 
+0000018023 00000 n 
+0000018127 00000 n 
+0000018230 00000 n 
+0000018334 00000 n 
+0000018438 00000 n 
+0000018542 00000 n 
+0000018646 00000 n 
+0000018750 00000 n 
+0000018854 00000 n 
+0000018958 00000 n 
+0000019062 00000 n 
+0000019165 00000 n 
+0000019269 00000 n 
+0000019373 00000 n 
+0000019477 00000 n 
+0000019581 00000 n 
+0000019685 00000 n 
+0000019789 00000 n 
+0000019893 00000 n 
+0000019997 00000 n 
+0000020101 00000 n 
+0000020205 00000 n 
+0000020309 00000 n 
+0000020413 00000 n 
+0000020516 00000 n 
+0000020620 00000 n 
+0000020724 00000 n 
+0000020828 00000 n 
+0000020932 00000 n 
+0000021036 00000 n 
+0000021140 00000 n 
+0000021244 00000 n 
+0000021348 00000 n 
+0000021452 00000 n 
+0000021554 00000 n 
 0000021656 00000 n 
-0000021760 00000 n 
-0000021864 00000 n 
-0000021968 00000 n 
-0000022072 00000 n 
-0000022175 00000 n 
-0000022279 00000 n 
-0000022383 00000 n 
-0000022487 00000 n 
-0000022591 00000 n 
-0000022694 00000 n 
-0000022798 00000 n 
-0000022902 00000 n 
-0000023005 00000 n 
-0000023109 00000 n 
-0000023213 00000 n 
-0000023317 00000 n 
-0000023421 00000 n 
-0000023525 00000 n 
-0000023629 00000 n 
-0000023733 00000 n 
-0000023837 00000 n 
-0000023941 00000 n 
-0000024045 00000 n 
-0000024149 00000 n 
-0000024253 00000 n 
-0000024356 00000 n 
-0000024460 00000 n 
-0000024564 00000 n 
-0000024668 00000 n 
-0000024772 00000 n 
-0000024875 00000 n 
-0000024978 00000 n 
-0000025082 00000 n 
-0000025186 00000 n 
-0000025290 00000 n 
-0000025394 00000 n 
-0000025497 00000 n 
-0000025599 00000 n 
-0000025701 00000 n 
-0000026054 00000 n 
-0000026157 00000 n 
-0000026261 00000 n 
-0000026365 00000 n 
-0000026469 00000 n 
-0000026573 00000 n 
-0000026677 00000 n 
-0000026781 00000 n 
-0000026885 00000 n 
-0000026989 00000 n 
-0000027093 00000 n 
-0000027197 00000 n 
-0000027301 00000 n 
-0000027405 00000 n 
-0000027509 00000 n 
-0000027612 00000 n 
-0000027715 00000 n 
-0000027819 00000 n 
-0000027923 00000 n 
-0000028027 00000 n 
-0000028131 00000 n 
-0000028234 00000 n 
-0000028338 00000 n 
-0000028442 00000 n 
-0000028546 00000 n 
-0000028650 00000 n 
-0000028754 00000 n 
-0000028858 00000 n 
-0000028962 00000 n 
-0000029066 00000 n 
-0000029170 00000 n 
-0000029274 00000 n 
-0000029378 00000 n 
-0000029482 00000 n 
-0000029586 00000 n 
-0000029689 00000 n 
-0000029793 00000 n 
-0000029897 00000 n 
-0000030001 00000 n 
-0000030105 00000 n 
-0000030209 00000 n 
-0000030313 00000 n 
-0000030658 00000 n 
-0000030761 00000 n 
-0000030865 00000 n 
-0000030969 00000 n 
-0000031073 00000 n 
-0000031177 00000 n 
-0000031281 00000 n 
-0000031385 00000 n 
-0000031489 00000 n 
-0000031593 00000 n 
-0000031697 00000 n 
-0000031801 00000 n 
-0000031905 00000 n 
-0000032009 00000 n 
-0000032113 00000 n 
-0000032217 00000 n 
-0000032321 00000 n 
-0000032466 00000 n 
-0000032519 00000 n 
-0000032606 00000 n 
-0000032660 00000 n 
-0000032746 00000 n 
-0000032813 00000 n 
-0000032899 00000 n 
-0000033002 00000 n 
-0000033106 00000 n 
-0000033210 00000 n 
-0000033314 00000 n 
-0000033418 00000 n 
-0000033522 00000 n 
-0000033626 00000 n 
-0000033730 00000 n 
-0000033834 00000 n 
-0000033938 00000 n 
-0000034042 00000 n 
-0000034146 00000 n 
-0000034250 00000 n 
-0000034354 00000 n 
-0000034458 00000 n 
-0000034562 00000 n 
-0000034666 00000 n 
-0000034770 00000 n 
-0000034874 00000 n 
-0000034978 00000 n 
-0000035082 00000 n 
-0000035186 00000 n 
-0000035290 00000 n 
-0000035394 00000 n 
-0000035498 00000 n 
-0000035602 00000 n 
-0000035706 00000 n 
-0000035810 00000 n 
-0000035914 00000 n 
-0000036018 00000 n 
-0000036122 00000 n 
-0000036225 00000 n 
-0000036327 00000 n 
-0000036429 00000 n 
-0000036742 00000 n 
-0000036846 00000 n 
-0000036950 00000 n 
-0000037054 00000 n 
-0000037157 00000 n 
-0000037261 00000 n 
-0000037365 00000 n 
-0000037469 00000 n 
-0000037573 00000 n 
-0000037677 00000 n 
-0000037781 00000 n 
-0000037885 00000 n 
-0000037989 00000 n 
-0000038093 00000 n 
-0000038197 00000 n 
-0000038301 00000 n 
-0000038405 00000 n 
-0000038509 00000 n 
-0000038613 00000 n 
-0000038717 00000 n 
-0000038821 00000 n 
-0000038925 00000 n 
-0000039029 00000 n 
-0000039133 00000 n 
-0000039237 00000 n 
-0000039341 00000 n 
-0000039445 00000 n 
-0000039549 00000 n 
-0000039653 00000 n 
-0000039757 00000 n 
-0000039861 00000 n 
-0000039965 00000 n 
-0000040069 00000 n 
-0000040173 00000 n 
-0000040276 00000 n 
-0000040380 00000 n 
-0000040484 00000 n 
-0000040588 00000 n 
-0000040692 00000 n 
-0000040796 00000 n 
-0000040900 00000 n 
-0000041004 00000 n 
-0000041108 00000 n 
-0000041212 00000 n 
-0000041316 00000 n 
-0000041420 00000 n 
-0000041524 00000 n 
-0000041628 00000 n 
-0000041732 00000 n 
-0000041835 00000 n 
-0000041937 00000 n 
-0000042039 00000 n 
-0000042464 00000 n 
-0000042568 00000 n 
-0000042672 00000 n 
-0000042776 00000 n 
-0000042880 00000 n 
-0000042984 00000 n 
-0000043088 00000 n 
-0000043192 00000 n 
-0000043296 00000 n 
-0000043400 00000 n 
-0000043504 00000 n 
-0000043608 00000 n 
-0000043712 00000 n 
-0000043816 00000 n 
-0000043920 00000 n 
-0000044024 00000 n 
-0000044128 00000 n 
-0000044232 00000 n 
-0000044336 00000 n 
-0000044440 00000 n 
-0000044544 00000 n 
-0000044648 00000 n 
-0000044752 00000 n 
-0000044856 00000 n 
-0000044960 00000 n 
-0000045064 00000 n 
-0000045168 00000 n 
-0000045272 00000 n 
-0000045376 00000 n 
-0000045480 00000 n 
-0000045584 00000 n 
-0000045688 00000 n 
-0000045792 00000 n 
-0000045896 00000 n 
-0000046000 00000 n 
-0000046104 00000 n 
-0000046208 00000 n 
-0000046312 00000 n 
-0000046416 00000 n 
-0000046520 00000 n 
-0000046624 00000 n 
-0000046728 00000 n 
-0000046832 00000 n 
-0000046936 00000 n 
-0000047040 00000 n 
-0000047144 00000 n 
-0000047248 00000 n 
-0000047352 00000 n 
-0000047456 00000 n 
-0000047559 00000 n 
-0000047661 00000 n 
-0000047763 00000 n 
-0000048188 00000 n 
-0000048292 00000 n 
-0000048396 00000 n 
-0000048500 00000 n 
-0000048604 00000 n 
-0000048708 00000 n 
-0000048812 00000 n 
-0000048916 00000 n 
-0000049020 00000 n 
-0000049124 00000 n 
-0000049228 00000 n 
-0000049332 00000 n 
-0000049435 00000 n 
-0000049539 00000 n 
-0000049643 00000 n 
-0000049747 00000 n 
-0000049851 00000 n 
-0000049955 00000 n 
-0000050059 00000 n 
-0000050163 00000 n 
-0000050267 00000 n 
-0000050371 00000 n 
-0000050475 00000 n 
-0000050579 00000 n 
-0000050683 00000 n 
-0000050787 00000 n 
-0000050891 00000 n 
-0000050995 00000 n 
-0000051099 00000 n 
-0000051203 00000 n 
-0000051307 00000 n 
-0000051411 00000 n 
-0000051515 00000 n 
-0000051619 00000 n 
-0000051723 00000 n 
-0000051827 00000 n 
-0000052124 00000 n 
-0000052227 00000 n 
-0000052331 00000 n 
-0000052435 00000 n 
-0000052539 00000 n 
-0000052643 00000 n 
-0000052747 00000 n 
-0000052851 00000 n 
-0000052955 00000 n 
-0000053059 00000 n 
-0000053163 00000 n 
-0000053267 00000 n 
-0000053371 00000 n 
-0000053475 00000 n 
-0000053579 00000 n 
-0000053683 00000 n 
-0000053787 00000 n 
-0000053891 00000 n 
-0000053995 00000 n 
-0000054099 00000 n 
-0000054202 00000 n 
-0000054306 00000 n 
-0000054410 00000 n 
-0000054514 00000 n 
-0000054618 00000 n 
-0000054722 00000 n 
-0000054826 00000 n 
-0000054930 00000 n 
-0000055034 00000 n 
-0000055138 00000 n 
-0000055242 00000 n 
-0000055346 00000 n 
-0000055450 00000 n 
-0000055553 00000 n 
-0000055657 00000 n 
-0000055760 00000 n 
-0000055864 00000 n 
-0000055968 00000 n 
-0000056072 00000 n 
-0000056176 00000 n 
+0000021758 00000 n 
+0000022127 00000 n 
+0000022230 00000 n 
+0000022334 00000 n 
+0000022438 00000 n 
+0000022542 00000 n 
+0000022646 00000 n 
+0000022750 00000 n 
+0000022854 00000 n 
+0000022958 00000 n 
+0000023062 00000 n 
+0000023166 00000 n 
+0000023270 00000 n 
+0000023373 00000 n 
+0000023477 00000 n 
+0000023581 00000 n 
+0000023685 00000 n 
+0000023789 00000 n 
+0000023893 00000 n 
+0000023997 00000 n 
+0000024101 00000 n 
+0000024205 00000 n 
+0000024309 00000 n 
+0000024413 00000 n 
+0000024517 00000 n 
+0000024621 00000 n 
+0000024725 00000 n 
+0000024829 00000 n 
+0000024933 00000 n 
+0000025037 00000 n 
+0000025141 00000 n 
+0000025245 00000 n 
+0000025349 00000 n 
+0000025453 00000 n 
+0000025556 00000 n 
+0000025660 00000 n 
+0000025764 00000 n 
+0000025868 00000 n 
+0000025972 00000 n 
+0000026076 00000 n 
+0000026180 00000 n 
+0000026284 00000 n 
+0000026388 00000 n 
+0000026492 00000 n 
+0000026596 00000 n 
+0000026699 00000 n 
+0000026801 00000 n 
+0000026903 00000 n 
+0000027288 00000 n 
+0000027391 00000 n 
+0000027495 00000 n 
+0000027598 00000 n 
+0000027702 00000 n 
+0000027806 00000 n 
+0000027910 00000 n 
+0000028014 00000 n 
+0000028117 00000 n 
+0000028221 00000 n 
+0000028325 00000 n 
+0000028429 00000 n 
+0000028533 00000 n 
+0000028637 00000 n 
+0000028741 00000 n 
+0000028844 00000 n 
+0000028947 00000 n 
+0000029051 00000 n 
+0000029155 00000 n 
+0000029259 00000 n 
+0000029428 00000 n 
+0000029481 00000 n 
+0000029568 00000 n 
+0000029622 00000 n 
+0000029708 00000 n 
+0000029775 00000 n 
+0000029861 00000 n 
+0000029964 00000 n 
+0000030068 00000 n 
+0000030172 00000 n 
+0000030276 00000 n 
+0000030380 00000 n 
+0000030484 00000 n 
+0000030588 00000 n 
+0000030692 00000 n 
+0000030796 00000 n 
+0000030900 00000 n 
+0000031004 00000 n 
+0000031108 00000 n 
+0000031212 00000 n 
+0000031316 00000 n 
+0000031420 00000 n 
+0000031524 00000 n 
+0000031628 00000 n 
+0000031732 00000 n 
+0000031836 00000 n 
+0000031939 00000 n 
+0000032043 00000 n 
+0000032147 00000 n 
+0000032251 00000 n 
+0000032355 00000 n 
+0000032459 00000 n 
+0000032563 00000 n 
+0000032667 00000 n 
+0000032771 00000 n 
+0000032875 00000 n 
+0000032979 00000 n 
+0000033083 00000 n 
+0000033186 00000 n 
+0000033288 00000 n 
+0000033390 00000 n 
+0000033703 00000 n 
+0000033807 00000 n 
+0000033910 00000 n 
+0000034014 00000 n 
+0000034118 00000 n 
+0000034222 00000 n 
+0000034326 00000 n 
+0000034430 00000 n 
+0000034534 00000 n 
+0000034638 00000 n 
+0000034742 00000 n 
+0000034846 00000 n 
+0000034950 00000 n 
+0000035054 00000 n 
+0000035158 00000 n 
+0000035262 00000 n 
+0000035366 00000 n 
+0000035470 00000 n 
+0000035574 00000 n 
+0000035678 00000 n 
+0000035782 00000 n 
+0000035885 00000 n 
+0000035989 00000 n 
+0000036093 00000 n 
+0000036197 00000 n 
+0000036300 00000 n 
+0000036404 00000 n 
+0000036508 00000 n 
+0000036611 00000 n 
+0000036715 00000 n 
+0000036819 00000 n 
+0000036923 00000 n 
+0000037027 00000 n 
+0000037131 00000 n 
+0000037235 00000 n 
+0000037339 00000 n 
+0000037443 00000 n 
+0000037547 00000 n 
+0000037650 00000 n 
+0000037754 00000 n 
+0000037858 00000 n 
+0000037962 00000 n 
+0000038066 00000 n 
+0000038170 00000 n 
+0000038274 00000 n 
+0000038378 00000 n 
+0000038482 00000 n 
+0000038586 00000 n 
+0000038690 00000 n 
+0000038793 00000 n 
+0000038895 00000 n 
+0000038997 00000 n 
+0000039422 00000 n 
+0000039525 00000 n 
+0000039629 00000 n 
+0000039733 00000 n 
+0000039837 00000 n 
+0000039941 00000 n 
+0000040045 00000 n 
+0000040149 00000 n 
+0000040253 00000 n 
+0000040357 00000 n 
+0000040461 00000 n 
+0000040564 00000 n 
+0000040668 00000 n 
+0000040772 00000 n 
+0000040875 00000 n 
+0000040979 00000 n 
+0000041083 00000 n 
+0000041187 00000 n 
+0000041290 00000 n 
+0000041394 00000 n 
+0000041498 00000 n 
+0000041602 00000 n 
+0000041706 00000 n 
+0000041810 00000 n 
+0000041914 00000 n 
+0000042018 00000 n 
+0000042122 00000 n 
+0000042226 00000 n 
+0000042330 00000 n 
+0000042434 00000 n 
+0000042538 00000 n 
+0000042642 00000 n 
+0000042746 00000 n 
+0000042850 00000 n 
+0000042954 00000 n 
+0000043057 00000 n 
+0000043161 00000 n 
+0000043265 00000 n 
+0000043369 00000 n 
+0000043473 00000 n 
+0000043577 00000 n 
+0000043681 00000 n 
+0000043785 00000 n 
+0000043889 00000 n 
+0000043993 00000 n 
+0000044097 00000 n 
+0000044201 00000 n 
+0000044305 00000 n 
+0000044409 00000 n 
+0000044512 00000 n 
+0000044613 00000 n 
+0000044715 00000 n 
+0000045140 00000 n 
+0000045244 00000 n 
+0000045348 00000 n 
+0000045452 00000 n 
+0000045556 00000 n 
+0000045660 00000 n 
+0000045764 00000 n 
+0000045868 00000 n 
+0000045971 00000 n 
+0000046075 00000 n 
+0000046179 00000 n 
+0000046283 00000 n 
+0000046387 00000 n 
+0000046491 00000 n 
+0000046595 00000 n 
+0000046699 00000 n 
+0000046803 00000 n 
+0000046907 00000 n 
+0000047011 00000 n 
+0000047115 00000 n 
+0000047219 00000 n 
+0000047322 00000 n 
+0000047426 00000 n 
+0000047530 00000 n 
+0000047634 00000 n 
+0000047738 00000 n 
+0000047842 00000 n 
+0000047946 00000 n 
+0000048050 00000 n 
+0000048154 00000 n 
+0000048258 00000 n 
+0000048361 00000 n 
+0000048465 00000 n 
+0000048569 00000 n 
+0000048673 00000 n 
+0000048777 00000 n 
+0000048881 00000 n 
+0000048985 00000 n 
+0000049089 00000 n 
+0000049193 00000 n 
+0000049297 00000 n 
+0000049401 00000 n 
+0000049505 00000 n 
+0000049609 00000 n 
+0000049712 00000 n 
+0000049816 00000 n 
+0000049920 00000 n 
+0000050024 00000 n 
+0000050128 00000 n 
+0000050231 00000 n 
+0000050333 00000 n 
+0000050435 00000 n 
+0000050860 00000 n 
+0000050964 00000 n 
+0000051068 00000 n 
+0000051172 00000 n 
+0000051276 00000 n 
+0000051380 00000 n 
+0000051484 00000 n 
+0000051588 00000 n 
+0000051692 00000 n 
+0000051796 00000 n 
+0000051900 00000 n 
+0000052004 00000 n 
+0000052108 00000 n 
+0000052212 00000 n 
+0000052315 00000 n 
+0000052419 00000 n 
+0000052523 00000 n 
+0000052627 00000 n 
+0000052731 00000 n 
+0000052835 00000 n 
+0000052939 00000 n 
+0000053043 00000 n 
+0000053147 00000 n 
+0000053251 00000 n 
+0000053355 00000 n 
+0000053459 00000 n 
+0000053563 00000 n 
+0000053667 00000 n 
+0000053770 00000 n 
+0000053874 00000 n 
+0000053978 00000 n 
+0000054082 00000 n 
+0000054186 00000 n 
+0000054289 00000 n 
+0000054393 00000 n 
+0000054497 00000 n 
+0000054601 00000 n 
+0000054705 00000 n 
+0000054809 00000 n 
+0000054913 00000 n 
+0000055016 00000 n 
+0000055119 00000 n 
+0000055223 00000 n 
+0000055327 00000 n 
+0000055431 00000 n 
+0000055800 00000 n 
+0000055853 00000 n 
+0000055940 00000 n 
+0000055965 00000 n 
+0000056019 00000 n 
+0000056106 00000 n 
+0000056160 00000 n 
+0000056247 00000 n 
 0000056280 00000 n 
-0000056384 00000 n 
-0000056486 00000 n 
-0000056588 00000 n 
-0000056690 00000 n 
-0000057059 00000 n 
-0000057163 00000 n 
-0000057267 00000 n 
-0000057371 00000 n 
-0000057412 00000 n 
-0000057465 00000 n 
-0000057552 00000 n 
-0000057577 00000 n 
-0000057624 00000 n 
-0000057711 00000 n 
-0000057736 00000 n 
-0000057839 00000 n 
-0000057943 00000 n 
-0000058047 00000 n 
-0000058151 00000 n 
-0000058255 00000 n 
-0000058359 00000 n 
-0000058463 00000 n 
-0000058567 00000 n 
-0000058671 00000 n 
-0000058775 00000 n 
-0000058879 00000 n 
-0000058983 00000 n 
-0000059087 00000 n 
-0000059191 00000 n 
-0000059295 00000 n 
-0000059398 00000 n 
-0000059502 00000 n 
-0000059606 00000 n 
-0000059710 00000 n 
-0000059814 00000 n 
-0000059918 00000 n 
-0000060022 00000 n 
-0000060126 00000 n 
-0000060230 00000 n 
-0000060333 00000 n 
-0000060437 00000 n 
-0000060541 00000 n 
-0000060645 00000 n 
-0000060749 00000 n 
-0000060853 00000 n 
-0000060957 00000 n 
-0000061061 00000 n 
-0000061165 00000 n 
-0000061269 00000 n 
-0000061372 00000 n 
-0000061476 00000 n 
-0000061580 00000 n 
-0000061684 00000 n 
-0000062005 00000 n 
-0000062053 00000 n 
-0000062140 00000 n 
-0000062188 00000 n 
-0000062275 00000 n 
-0000062325 00000 n 
-0000062412 00000 n 
-0000062460 00000 n 
-0000062547 00000 n 
-0000062596 00000 n 
-0000062644 00000 n 
-0000062731 00000 n 
-0000062779 00000 n 
-0000062864 00000 n 
-0000062909 00000 n 
-0000062995 00000 n 
-0000063038 00000 n 
-0000063124 00000 n 
-0000063165 00000 n 
-0000063251 00000 n 
-0000063300 00000 n 
-0000063386 00000 n 
-0000063432 00000 n 
-0000063518 00000 n 
-0000063563 00000 n 
-0000063649 00000 n 
-0000063701 00000 n 
-0000063787 00000 n 
-0000063837 00000 n 
-0000063923 00000 n 
-0000063969 00000 n 
-0000064055 00000 n 
-0000064098 00000 n 
-0000064184 00000 n 
-0000064228 00000 n 
-0000064314 00000 n 
+0000056328 00000 n 
+0000056415 00000 n 
+0000056462 00000 n 
+0000056548 00000 n 
+0000056595 00000 n 
+0000056681 00000 n 
+0000056722 00000 n 
+0000056767 00000 n 
+0000056854 00000 n 
+0000056899 00000 n 
+0000056985 00000 n 
+0000057018 00000 n 
+0000057073 00000 n 
+0000057159 00000 n 
+0000057184 00000 n 
+0000057237 00000 n 
+0000057324 00000 n 
+0000057374 00000 n 
+0000057461 00000 n 
+0000057494 00000 n 
+0000057613 00000 n 
+0000057699 00000 n 
+0000057742 00000 n 
+0000057829 00000 n 
+0000057872 00000 n 
+0000057959 00000 n 
+0000058000 00000 n 
+0000058046 00000 n 
+0000058133 00000 n 
+0000058158 00000 n 
+0000058204 00000 n 
+0000058291 00000 n 
+0000058337 00000 n 
+0000058422 00000 n 
+0000058466 00000 n 
+0000058553 00000 n 
+0000058604 00000 n 
+0000058691 00000 n 
+0000058740 00000 n 
+0000058827 00000 n 
+0000058875 00000 n 
+0000058961 00000 n 
+0000059026 00000 n 
+0000059089 00000 n 
+0000059176 00000 n 
+0000059234 00000 n 
+0000059321 00000 n 
+0000059415 00000 n 
+0000059501 00000 n 
+0000059603 00000 n 
+0000059652 00000 n 
+0000059755 00000 n 
+0000059798 00000 n 
+0000059884 00000 n 
+0000059932 00000 n 
+0000060019 00000 n 
+0000060060 00000 n 
+0000060147 00000 n 
+0000060191 00000 n 
+0000060278 00000 n 
+0000060322 00000 n 
+0000060408 00000 n 
+0000060473 00000 n 
+0000060519 00000 n 
+0000060606 00000 n 
+0000060631 00000 n 
+0000060680 00000 n 
+0000060767 00000 n 
+0000060821 00000 n 
+0000060908 00000 n 
+0000060959 00000 n 
+0000061046 00000 n 
+0000061097 00000 n 
+0000061183 00000 n 
+0000061237 00000 n 
+0000061323 00000 n 
+0000061373 00000 n 
+0000061458 00000 n 
+0000061523 00000 n 
+0000061573 00000 n 
+0000061660 00000 n 
+0000061710 00000 n 
+0000061796 00000 n 
+0000061860 00000 n 
+0000061947 00000 n 
+0000061988 00000 n 
+0000062052 00000 n 
+0000062139 00000 n 
+0000062164 00000 n 
+0000062206 00000 n 
+0000062292 00000 n 
+0000062343 00000 n 
+0000062430 00000 n 
+0000062477 00000 n 
+0000062564 00000 n 
+0000062605 00000 n 
+0000062654 00000 n 
+0000062741 00000 n 
+0000062789 00000 n 
+0000062876 00000 n 
+0000062918 00000 n 
+0000063004 00000 n 
+0000063045 00000 n 
+0000063088 00000 n 
+0000063175 00000 n 
+0000063225 00000 n 
+0000063312 00000 n 
+0000063360 00000 n 
+0000063447 00000 n 
+0000063501 00000 n 
+0000063586 00000 n 
+0000063635 00000 n 
+0000063680 00000 n 
+0000063767 00000 n 
+0000063824 00000 n 
+0000063911 00000 n 
+0000064007 00000 n 
+0000064093 00000 n 
+0000064134 00000 n 
+0000064196 00000 n 
+0000064283 00000 n 
+0000064308 00000 n 
 0000064357 00000 n 
-0000064443 00000 n 
-0000064488 00000 n 
-0000064574 00000 n 
-0000064612 00000 n 
-0000064698 00000 n 
+0000064444 00000 n 
+0000064469 00000 n 
+0000064517 00000 n 
+0000064604 00000 n 
+0000064654 00000 n 
 0000064740 00000 n 
-0000064826 00000 n 
-0000064869 00000 n 
-0000064955 00000 n 
-0000064993 00000 n 
-0000065079 00000 n 
-0000065121 00000 n 
-0000065207 00000 n 
-0000065251 00000 n 
-0000065337 00000 n 
-0000065384 00000 n 
-0000065470 00000 n 
-0000065518 00000 n 
-0000065603 00000 n 
-0000065804 00000 n 
-0000065854 00000 n 
-0000065941 00000 n 
-0000065991 00000 n 
-0000066077 00000 n 
-0000066110 00000 n 
-0000066159 00000 n 
-0000066245 00000 n 
-0000066292 00000 n 
-0000066379 00000 n 
-0000066412 00000 n 
-0000066527 00000 n 
-0000066614 00000 n 
-0000066696 00000 n 
-0000066783 00000 n 
-0000066868 00000 n 
-0000066955 00000 n 
-0000066996 00000 n 
-0000067051 00000 n 
-0000067138 00000 n 
-0000067194 00000 n 
-0000067281 00000 n 
-0000067314 00000 n 
-0000067362 00000 n 
-0000067449 00000 n 
-0000067523 00000 n 
-0000067610 00000 n 
-0000067678 00000 n 
-0000067765 00000 n 
-0000067819 00000 n 
-0000067906 00000 n 
-0000067974 00000 n 
-0000068061 00000 n 
-0000068135 00000 n 
-0000068222 00000 n 
-0000068270 00000 n 
-0000068357 00000 n 
-0000068414 00000 n 
-0000068501 00000 n 
-0000068582 00000 n 
-0000068637 00000 n 
-0000068724 00000 n 
-0000068805 00000 n 
-0000068892 00000 n 
-0000068925 00000 n 
-0000068978 00000 n 
-0000069065 00000 n 
-0000069090 00000 n 
-0000069139 00000 n 
-0000069226 00000 n 
-0000069274 00000 n 
-0000069361 00000 n 
-0000069403 00000 n 
-0000069489 00000 n 
-0000069530 00000 n 
-0000069573 00000 n 
-0000069660 00000 n 
-0000069710 00000 n 
-0000069797 00000 n 
-0000069845 00000 n 
-0000069932 00000 n 
-0000069986 00000 n 
-0000070071 00000 n 
-0000070120 00000 n 
-0000070165 00000 n 
-0000070252 00000 n 
-0000070309 00000 n 
-0000070396 00000 n 
-0000070492 00000 n 
-0000070578 00000 n 
-0000070619 00000 n 
-0000070722 00000 n 
-0000070826 00000 n 
-0000070930 00000 n 
-0000071034 00000 n 
-0000071138 00000 n 
-0000071242 00000 n 
-0000071346 00000 n 
-0000071450 00000 n 
-0000071554 00000 n 
-0000071658 00000 n 
-0000071762 00000 n 
-0000071866 00000 n 
-0000071970 00000 n 
-0000072074 00000 n 
-0000072178 00000 n 
-0000072282 00000 n 
-0000072386 00000 n 
-0000072490 00000 n 
-0000072594 00000 n 
-0000072697 00000 n 
-0000072801 00000 n 
-0000072905 00000 n 
-0000073009 00000 n 
-0000073113 00000 n 
-0000073217 00000 n 
-0000073321 00000 n 
-0000073425 00000 n 
-0000073529 00000 n 
-0000073633 00000 n 
-0000073736 00000 n 
-0000073840 00000 n 
-0000073944 00000 n 
-0000074048 00000 n 
-0000074151 00000 n 
-0000074255 00000 n 
-0000074359 00000 n 
-0000074462 00000 n 
-0000074566 00000 n 
-0000074670 00000 n 
-0000074774 00000 n 
-0000074878 00000 n 
-0000074981 00000 n 
-0000075083 00000 n 
-0000075185 00000 n 
-0000075554 00000 n 
-0000075658 00000 n 
-0000075762 00000 n 
-0000075866 00000 n 
-0000075970 00000 n 
-0000076074 00000 n 
-0000076178 00000 n 
-0000076282 00000 n 
-0000076386 00000 n 
-0000076490 00000 n 
-0000076594 00000 n 
-0000076698 00000 n 
-0000076802 00000 n 
-0000076906 00000 n 
-0000077010 00000 n 
-0000077114 00000 n 
-0000077217 00000 n 
-0000077321 00000 n 
-0000077425 00000 n 
-0000077528 00000 n 
-0000077632 00000 n 
-0000077736 00000 n 
-0000077840 00000 n 
-0000077944 00000 n 
-0000078048 00000 n 
-0000078152 00000 n 
-0000078256 00000 n 
-0000078360 00000 n 
-0000078464 00000 n 
-0000078568 00000 n 
-0000078672 00000 n 
-0000078776 00000 n 
-0000078880 00000 n 
-0000078984 00000 n 
-0000079088 00000 n 
-0000079192 00000 n 
-0000079295 00000 n 
-0000079399 00000 n 
-0000079503 00000 n 
-0000079607 00000 n 
-0000079711 00000 n 
-0000079814 00000 n 
-0000079918 00000 n 
-0000080022 00000 n 
-0000080125 00000 n 
-0000080229 00000 n 
-0000080333 00000 n 
-0000080437 00000 n 
-0000080541 00000 n 
-0000080644 00000 n 
-0000080746 00000 n 
-0000080848 00000 n 
-0000081273 00000 n 
-0000081377 00000 n 
-0000081481 00000 n 
-0000081585 00000 n 
-0000081689 00000 n 
-0000081793 00000 n 
-0000081896 00000 n 
-0000082000 00000 n 
-0000082104 00000 n 
-0000082208 00000 n 
-0000082312 00000 n 
-0000082415 00000 n 
-0000082518 00000 n 
-0000082622 00000 n 
-0000082726 00000 n 
-0000082830 00000 n 
-0000082934 00000 n 
-0000083038 00000 n 
-0000083142 00000 n 
-0000083246 00000 n 
-0000083350 00000 n 
-0000083454 00000 n 
-0000083558 00000 n 
-0000083662 00000 n 
-0000083766 00000 n 
-0000083870 00000 n 
-0000083974 00000 n 
-0000084078 00000 n 
-0000084182 00000 n 
-0000084286 00000 n 
-0000084390 00000 n 
-0000084494 00000 n 
-0000084598 00000 n 
-0000084871 00000 n 
-0000084919 00000 n 
-0000085006 00000 n 
-0000085053 00000 n 
-0000085139 00000 n 
-0000085186 00000 n 
-0000085272 00000 n 
-0000085313 00000 n 
-0000085358 00000 n 
-0000085445 00000 n 
-0000085490 00000 n 
-0000085576 00000 n 
-0000085609 00000 n 
-0000085655 00000 n 
-0000085742 00000 n 
-0000085767 00000 n 
-0000085813 00000 n 
-0000085900 00000 n 
-0000085946 00000 n 
-0000086031 00000 n 
-0000086075 00000 n 
-0000086162 00000 n 
-0000086213 00000 n 
-0000086300 00000 n 
-0000086349 00000 n 
-0000086436 00000 n 
-0000086484 00000 n 
-0000086570 00000 n 
-0000086635 00000 n 
-0000086690 00000 n 
-0000086776 00000 n 
-0000086801 00000 n 
-0000086854 00000 n 
-0000086941 00000 n 
+0000064784 00000 n 
+0000064870 00000 n 
+0000064914 00000 n 
+0000065000 00000 n 
+0000065050 00000 n 
+0000065136 00000 n 
+0000065186 00000 n 
+0000065271 00000 n 
+0000065320 00000 n 
+0000065404 00000 n 
+0000065451 00000 n 
+0000065535 00000 n 
+0000065616 00000 n 
+0000065664 00000 n 
+0000065751 00000 n 
+0000065799 00000 n 
+0000065886 00000 n 
+0000065936 00000 n 
+0000066023 00000 n 
+0000066071 00000 n 
+0000066158 00000 n 
+0000066207 00000 n 
+0000066255 00000 n 
+0000066342 00000 n 
+0000066390 00000 n 
+0000066475 00000 n 
+0000066520 00000 n 
+0000066606 00000 n 
+0000066649 00000 n 
+0000066735 00000 n 
+0000066776 00000 n 
+0000066862 00000 n 
+0000066911 00000 n 
+0000066997 00000 n 
+0000067043 00000 n 
+0000067129 00000 n 
+0000067174 00000 n 
+0000067260 00000 n 
+0000067312 00000 n 
+0000067398 00000 n 
+0000067448 00000 n 
+0000067534 00000 n 
+0000067580 00000 n 
+0000067666 00000 n 
+0000067709 00000 n 
+0000067795 00000 n 
+0000067839 00000 n 
+0000067925 00000 n 
+0000067968 00000 n 
+0000068054 00000 n 
+0000068099 00000 n 
+0000068185 00000 n 
+0000068223 00000 n 
+0000068309 00000 n 
+0000068351 00000 n 
+0000068437 00000 n 
+0000068480 00000 n 
+0000068566 00000 n 
+0000068604 00000 n 
+0000068690 00000 n 
+0000068732 00000 n 
+0000068818 00000 n 
+0000068862 00000 n 
+0000068948 00000 n 
+0000068995 00000 n 
+0000069081 00000 n 
+0000069129 00000 n 
+0000069214 00000 n 
+0000069415 00000 n 
+0000069465 00000 n 
+0000069552 00000 n 
+0000069602 00000 n 
+0000069688 00000 n 
+0000069721 00000 n 
+0000069770 00000 n 
+0000069856 00000 n 
+0000069903 00000 n 
+0000069990 00000 n 
+0000070023 00000 n 
+0000070138 00000 n 
+0000070225 00000 n 
+0000070250 00000 n 
+0000070332 00000 n 
+0000070419 00000 n 
+0000070504 00000 n 
+0000070591 00000 n 
+0000070624 00000 n 
+0000070679 00000 n 
+0000070766 00000 n 
+0000070822 00000 n 
+0000070909 00000 n 
+0000070942 00000 n 
+0000070990 00000 n 
+0000071077 00000 n 
+0000071151 00000 n 
+0000071238 00000 n 
+0000071306 00000 n 
+0000071393 00000 n 
+0000071447 00000 n 
+0000071534 00000 n 
+0000071602 00000 n 
+0000071689 00000 n 
+0000071763 00000 n 
+0000071850 00000 n 
+0000071898 00000 n 
+0000071985 00000 n 
+0000072042 00000 n 
+0000072129 00000 n 
+0000072210 00000 n 
+0000072265 00000 n 
+0000072352 00000 n 
+0000072433 00000 n 
+0000072520 00000 n 
+0000072553 00000 n 
+0000072606 00000 n 
+0000072693 00000 n 
+0000072718 00000 n 
+0000072774 00000 n 
+0000072861 00000 n 
+0000072930 00000 n 
+0000073017 00000 n 
+0000073068 00000 n 
+0000073155 00000 n 
+0000073242 00000 n 
+0000073329 00000 n 
+0000073385 00000 n 
+0000073472 00000 n 
+0000073522 00000 n 
+0000073609 00000 n 
+0000073674 00000 n 
+0000073726 00000 n 
+0000073813 00000 n 
+0000073869 00000 n 
+0000073956 00000 n 
+0000074004 00000 n 
+0000074091 00000 n 
+0000074139 00000 n 
+0000074226 00000 n 
+0000074275 00000 n 
+0000074316 00000 n 
+0000074401 00000 n 
+0000074426 00000 n 
+0000074470 00000 n 
+0000074557 00000 n 
+0000074602 00000 n 
+0000074689 00000 n 
+0000074733 00000 n 
+0000074820 00000 n 
+0000074864 00000 n 
+0000074951 00000 n 
+0000074993 00000 n 
+0000075080 00000 n 
+0000075128 00000 n 
+0000075215 00000 n 
+0000075280 00000 n 
+0000075328 00000 n 
+0000075414 00000 n 
+0000075439 00000 n 
+0000075492 00000 n 
+0000075578 00000 n 
+0000075603 00000 n 
+0000075657 00000 n 
+0000075744 00000 n 
+0000075769 00000 n 
+0000075824 00000 n 
+0000075910 00000 n 
+0000075978 00000 n 
+0000076064 00000 n 
+0000076139 00000 n 
+0000076226 00000 n 
+0000076296 00000 n 
+0000076382 00000 n 
+0000076461 00000 n 
+0000076548 00000 n 
+0000076605 00000 n 
+0000076687 00000 n 
+0000076773 00000 n 
+0000076848 00000 n 
+0000076935 00000 n 
+0000077008 00000 n 
+0000077095 00000 n 
+0000077173 00000 n 
+0000077260 00000 n 
+0000077309 00000 n 
+0000077357 00000 n 
+0000077444 00000 n 
+0000077469 00000 n 
+0000077517 00000 n 
+0000077604 00000 n 
+0000077629 00000 n 
+0000077692 00000 n 
+0000077779 00000 n 
+0000077842 00000 n 
+0000077929 00000 n 
+0000077983 00000 n 
+0000078070 00000 n 
+0000078111 00000 n 
+0000078158 00000 n 
+0000078245 00000 n 
+0000078270 00000 n 
+0000078304 00000 n 
+0000078338 00000 n 
+0000082635 00000 n 
+0000082679 00000 n 
+0000082723 00000 n 
+0000082767 00000 n 
+0000082811 00000 n 
+0000082855 00000 n 
+0000082899 00000 n 
+0000082943 00000 n 
+0000082987 00000 n 
+0000083031 00000 n 
+0000083075 00000 n 
+0000083119 00000 n 
+0000083163 00000 n 
+0000083207 00000 n 
+0000083251 00000 n 
+0000083295 00000 n 
+0000083339 00000 n 
+0000083383 00000 n 
+0000083427 00000 n 
+0000083471 00000 n 
+0000083515 00000 n 
+0000083559 00000 n 
+0000083603 00000 n 
+0000083647 00000 n 
+0000083691 00000 n 
+0000083735 00000 n 
+0000083779 00000 n 
+0000083823 00000 n 
+0000083867 00000 n 
+0000083911 00000 n 
+0000083955 00000 n 
+0000083999 00000 n 
+0000084043 00000 n 
+0000084087 00000 n 
+0000084131 00000 n 
+0000084175 00000 n 
+0000084219 00000 n 
+0000084263 00000 n 
+0000084307 00000 n 
+0000084351 00000 n 
+0000084395 00000 n 
+0000084439 00000 n 
+0000084483 00000 n 
+0000084527 00000 n 
+0000084571 00000 n 
+0000084615 00000 n 
+0000084659 00000 n 
+0000084703 00000 n 
+0000084747 00000 n 
+0000084791 00000 n 
+0000084835 00000 n 
+0000084879 00000 n 
+0000084923 00000 n 
+0000084967 00000 n 
+0000085011 00000 n 
+0000085055 00000 n 
+0000085099 00000 n 
+0000085143 00000 n 
+0000085187 00000 n 
+0000085231 00000 n 
+0000085275 00000 n 
+0000085319 00000 n 
+0000085363 00000 n 
+0000085407 00000 n 
+0000085451 00000 n 
+0000085495 00000 n 
+0000085539 00000 n 
+0000085583 00000 n 
+0000085627 00000 n 
+0000085671 00000 n 
+0000085715 00000 n 
+0000085759 00000 n 
+0000085803 00000 n 
+0000085847 00000 n 
+0000085891 00000 n 
+0000085935 00000 n 
+0000085979 00000 n 
+0000086023 00000 n 
+0000086067 00000 n 
+0000086111 00000 n 
+0000086155 00000 n 
+0000086199 00000 n 
+0000086243 00000 n 
+0000086287 00000 n 
+0000086331 00000 n 
+0000086375 00000 n 
+0000086419 00000 n 
+0000086463 00000 n 
+0000086507 00000 n 
+0000086551 00000 n 
+0000086595 00000 n 
+0000086639 00000 n 
+0000086683 00000 n 
+0000086727 00000 n 
+0000086771 00000 n 
+0000086815 00000 n 
+0000086859 00000 n 
+0000086903 00000 n 
+0000086947 00000 n 
 0000086991 00000 n 
-0000087078 00000 n 
-0000087111 00000 n 
-0000087230 00000 n 
-0000087316 00000 n 
-0000087359 00000 n 
-0000087446 00000 n 
-0000087489 00000 n 
-0000087576 00000 n 
-0000087617 00000 n 
-0000087680 00000 n 
-0000087767 00000 n 
-0000087825 00000 n 
-0000087912 00000 n 
-0000088006 00000 n 
-0000088092 00000 n 
-0000088133 00000 n 
-0000088176 00000 n 
-0000088262 00000 n 
-0000088310 00000 n 
-0000088397 00000 n 
-0000088438 00000 n 
-0000088525 00000 n 
-0000088569 00000 n 
-0000088656 00000 n 
-0000088700 00000 n 
-0000088786 00000 n 
-0000088843 00000 n 
-0000088889 00000 n 
-0000088976 00000 n 
-0000089022 00000 n 
-0000089109 00000 n 
-0000089158 00000 n 
-0000089243 00000 n 
-0000089284 00000 n 
-0000089338 00000 n 
-0000089425 00000 n 
-0000089476 00000 n 
-0000089563 00000 n 
-0000089614 00000 n 
-0000089700 00000 n 
-0000089754 00000 n 
-0000089841 00000 n 
-0000089891 00000 n 
-0000089978 00000 n 
-0000090035 00000 n 
-0000090085 00000 n 
+0000087035 00000 n 
+0000087079 00000 n 
+0000087123 00000 n 
+0000087167 00000 n 
+0000087211 00000 n 
+0000087255 00000 n 
+0000087299 00000 n 
+0000087343 00000 n 
+0000087387 00000 n 
+0000087431 00000 n 
+0000087475 00000 n 
+0000087519 00000 n 
+0000087563 00000 n 
+0000087607 00000 n 
+0000087651 00000 n 
+0000087695 00000 n 
+0000087739 00000 n 
+0000087783 00000 n 
+0000087827 00000 n 
+0000087871 00000 n 
+0000087915 00000 n 
+0000087959 00000 n 
+0000088003 00000 n 
+0000088047 00000 n 
+0000088091 00000 n 
+0000088135 00000 n 
+0000088179 00000 n 
+0000088223 00000 n 
+0000088267 00000 n 
+0000088311 00000 n 
+0000088355 00000 n 
+0000088399 00000 n 
+0000088443 00000 n 
+0000088487 00000 n 
+0000088531 00000 n 
+0000088575 00000 n 
+0000088619 00000 n 
+0000088663 00000 n 
+0000088707 00000 n 
+0000088751 00000 n 
+0000088795 00000 n 
+0000088839 00000 n 
+0000088883 00000 n 
+0000088927 00000 n 
+0000088971 00000 n 
+0000089015 00000 n 
+0000089059 00000 n 
+0000089103 00000 n 
+0000089147 00000 n 
+0000089191 00000 n 
+0000089235 00000 n 
+0000089279 00000 n 
+0000089323 00000 n 
+0000089367 00000 n 
+0000089411 00000 n 
+0000089455 00000 n 
+0000089499 00000 n 
+0000089543 00000 n 
+0000089587 00000 n 
+0000089632 00000 n 
+0000089677 00000 n 
+0000089722 00000 n 
+0000089767 00000 n 
+0000089812 00000 n 
+0000089857 00000 n 
+0000089902 00000 n 
+0000089947 00000 n 
+0000089992 00000 n 
+0000090037 00000 n 
+0000090082 00000 n 
+0000090127 00000 n 
 0000090172 00000 n 
-0000090222 00000 n 
-0000090308 00000 n 
-0000090341 00000 n 
-0000090405 00000 n 
-0000090492 00000 n 
-0000090517 00000 n 
-0000090559 00000 n 
-0000090645 00000 n 
-0000090696 00000 n 
-0000090783 00000 n 
-0000090830 00000 n 
-0000090917 00000 n 
-0000090958 00000 n 
-0000091020 00000 n 
-0000091107 00000 n 
-0000091132 00000 n 
-0000091181 00000 n 
-0000091268 00000 n 
-0000091293 00000 n 
-0000091341 00000 n 
-0000091428 00000 n 
-0000091478 00000 n 
-0000091564 00000 n 
-0000091608 00000 n 
-0000091694 00000 n 
-0000091738 00000 n 
-0000091824 00000 n 
-0000091874 00000 n 
-0000091960 00000 n 
-0000092010 00000 n 
-0000092095 00000 n 
-0000092144 00000 n 
-0000092228 00000 n 
-0000092275 00000 n 
-0000092359 00000 n 
-0000092440 00000 n 
-0000092496 00000 n 
-0000092583 00000 n 
-0000092652 00000 n 
-0000092739 00000 n 
-0000092790 00000 n 
-0000092877 00000 n 
-0000092964 00000 n 
-0000093051 00000 n 
-0000093107 00000 n 
-0000093194 00000 n 
-0000093244 00000 n 
-0000093331 00000 n 
-0000093396 00000 n 
-0000093448 00000 n 
-0000093535 00000 n 
-0000093591 00000 n 
-0000093678 00000 n 
-0000093726 00000 n 
-0000093813 00000 n 
-0000093861 00000 n 
-0000093948 00000 n 
+0000090217 00000 n 
+0000090262 00000 n 
+0000090307 00000 n 
+0000090352 00000 n 
+0000090397 00000 n 
+0000090442 00000 n 
+0000090487 00000 n 
+0000090532 00000 n 
+0000090577 00000 n 
+0000090622 00000 n 
+0000090667 00000 n 
+0000090712 00000 n 
+0000090757 00000 n 
+0000090802 00000 n 
+0000090847 00000 n 
+0000090892 00000 n 
+0000090937 00000 n 
+0000090982 00000 n 
+0000091027 00000 n 
+0000091072 00000 n 
+0000091117 00000 n 
+0000091162 00000 n 
+0000091207 00000 n 
+0000091252 00000 n 
+0000091297 00000 n 
+0000091342 00000 n 
+0000091387 00000 n 
+0000091432 00000 n 
+0000091477 00000 n 
+0000091522 00000 n 
+0000091567 00000 n 
+0000091612 00000 n 
+0000091657 00000 n 
+0000091702 00000 n 
+0000091747 00000 n 
+0000091792 00000 n 
+0000091837 00000 n 
+0000091882 00000 n 
+0000091927 00000 n 
+0000091972 00000 n 
+0000092017 00000 n 
+0000092062 00000 n 
+0000092107 00000 n 
+0000092152 00000 n 
+0000092197 00000 n 
+0000092242 00000 n 
+0000092287 00000 n 
+0000092332 00000 n 
+0000092377 00000 n 
+0000092422 00000 n 
+0000092467 00000 n 
+0000092512 00000 n 
+0000092557 00000 n 
+0000092602 00000 n 
+0000092647 00000 n 
+0000092692 00000 n 
+0000092737 00000 n 
+0000092782 00000 n 
+0000092827 00000 n 
+0000092872 00000 n 
+0000092917 00000 n 
+0000092962 00000 n 
+0000093007 00000 n 
+0000093052 00000 n 
+0000093097 00000 n 
+0000093142 00000 n 
+0000093187 00000 n 
+0000093232 00000 n 
+0000093277 00000 n 
+0000093322 00000 n 
+0000093367 00000 n 
+0000093412 00000 n 
+0000093457 00000 n 
+0000093502 00000 n 
+0000093547 00000 n 
+0000093592 00000 n 
+0000093637 00000 n 
+0000093682 00000 n 
+0000093727 00000 n 
+0000093772 00000 n 
+0000093817 00000 n 
+0000093862 00000 n 
+0000093907 00000 n 
+0000093952 00000 n 
 0000093997 00000 n 
-0000094038 00000 n 
-0000094123 00000 n 
-0000094148 00000 n 
-0000094192 00000 n 
-0000094279 00000 n 
-0000094324 00000 n 
-0000094411 00000 n 
-0000094455 00000 n 
-0000094542 00000 n 
-0000094586 00000 n 
-0000094673 00000 n 
-0000094715 00000 n 
-0000094802 00000 n 
-0000094850 00000 n 
-0000094937 00000 n 
-0000095002 00000 n 
-0000095050 00000 n 
-0000095136 00000 n 
-0000095161 00000 n 
-0000095214 00000 n 
-0000095300 00000 n 
-0000095325 00000 n 
-0000095379 00000 n 
-0000095466 00000 n 
-0000095491 00000 n 
-0000095554 00000 n 
-0000095641 00000 n 
-0000095704 00000 n 
-0000095791 00000 n 
-0000095845 00000 n 
-0000095932 00000 n 
-0000095973 00000 n 
-0000096076 00000 n 
-0000096180 00000 n 
-0000096284 00000 n 
-0000096388 00000 n 
-0000096492 00000 n 
-0000096595 00000 n 
-0000096699 00000 n 
-0000096803 00000 n 
-0000096907 00000 n 
-0000097011 00000 n 
-0000097116 00000 n 
-0000097221 00000 n 
-0000097326 00000 n 
-0000097431 00000 n 
-0000097536 00000 n 
-0000097641 00000 n 
-0000097746 00000 n 
-0000097851 00000 n 
-0000097956 00000 n 
-0000098060 00000 n 
-0000098165 00000 n 
-0000098270 00000 n 
-0000098375 00000 n 
-0000098480 00000 n 
-0000098585 00000 n 
-0000098690 00000 n 
-0000098794 00000 n 
-0000098899 00000 n 
-0000099004 00000 n 
-0000099109 00000 n 
-0000099214 00000 n 
-0000099319 00000 n 
-0000099424 00000 n 
-0000099529 00000 n 
-0000099634 00000 n 
-0000099739 00000 n 
-0000099844 00000 n 
-0000099949 00000 n 
-0000100054 00000 n 
-0000100159 00000 n 
-0000100264 00000 n 
-0000100369 00000 n 
-0000100755 00000 n 
-0000100811 00000 n 
-0000100899 00000 n 
-0000100968 00000 n 
-0000101056 00000 n 
-0000101132 00000 n 
-0000101221 00000 n 
-0000101292 00000 n 
-0000101380 00000 n 
-0000101460 00000 n 
-0000101549 00000 n 
-0000101612 00000 n 
-0000101695 00000 n 
-0000101783 00000 n 
-0000101859 00000 n 
-0000101948 00000 n 
-0000102022 00000 n 
-0000102111 00000 n 
-0000102190 00000 n 
-0000102279 00000 n 
-0000102333 00000 n 
-0000102382 00000 n 
-0000102471 00000 n 
-0000102498 00000 n 
-0000102547 00000 n 
-0000102636 00000 n 
-0000102663 00000 n 
-0000102712 00000 n 
-0000102801 00000 n 
-0000102866 00000 n 
-0000102955 00000 n 
-0000103011 00000 n 
-0000103100 00000 n 
-0000103148 00000 n 
-0000103237 00000 n 
-0000103291 00000 n 
-0000103346 00000 n 
-0000103435 00000 n 
-0000103490 00000 n 
-0000103579 00000 n 
-0000103615 00000 n 
-0000103651 00000 n 
-0000103687 00000 n 
-0000108725 00000 n 
-0000108770 00000 n 
-0000108815 00000 n 
-0000108860 00000 n 
-0000108905 00000 n 
-0000108950 00000 n 
-0000108995 00000 n 
-0000109040 00000 n 
-0000109085 00000 n 
-0000109130 00000 n 
-0000109175 00000 n 
-0000109220 00000 n 
-0000109265 00000 n 
-0000109310 00000 n 
-0000109355 00000 n 
-0000109400 00000 n 
-0000109445 00000 n 
-0000109490 00000 n 
-0000109535 00000 n 
-0000109580 00000 n 
-0000109625 00000 n 
-0000109670 00000 n 
-0000109715 00000 n 
-0000109760 00000 n 
-0000109805 00000 n 
-0000109850 00000 n 
-0000109895 00000 n 
-0000109940 00000 n 
-0000109985 00000 n 
-0000110030 00000 n 
-0000110075 00000 n 
-0000110120 00000 n 
-0000110165 00000 n 
-0000110210 00000 n 
-0000110255 00000 n 
-0000110300 00000 n 
-0000110345 00000 n 
-0000110390 00000 n 
-0000110435 00000 n 
-0000110480 00000 n 
-0000110525 00000 n 
-0000110570 00000 n 
-0000110615 00000 n 
-0000110660 00000 n 
-0000110705 00000 n 
-0000110750 00000 n 
-0000110795 00000 n 
-0000110840 00000 n 
-0000110885 00000 n 
-0000110930 00000 n 
-0000110975 00000 n 
-0000111020 00000 n 
-0000111065 00000 n 
-0000111110 00000 n 
-0000111155 00000 n 
-0000111200 00000 n 
-0000111245 00000 n 
-0000111290 00000 n 
-0000111335 00000 n 
-0000111380 00000 n 
-0000111425 00000 n 
-0000111470 00000 n 
-0000111515 00000 n 
-0000111560 00000 n 
-0000111605 00000 n 
-0000111650 00000 n 
-0000111695 00000 n 
-0000111740 00000 n 
-0000111785 00000 n 
-0000111830 00000 n 
-0000111875 00000 n 
-0000111920 00000 n 
-0000111965 00000 n 
-0000112010 00000 n 
-0000112055 00000 n 
-0000112100 00000 n 
-0000112145 00000 n 
-0000112190 00000 n 
-0000112235 00000 n 
-0000112280 00000 n 
-0000112325 00000 n 
-0000112370 00000 n 
-0000112415 00000 n 
-0000112460 00000 n 
-0000112505 00000 n 
-0000112550 00000 n 
-0000112595 00000 n 
-0000112640 00000 n 
-0000112685 00000 n 
-0000112730 00000 n 
-0000112775 00000 n 
-0000112820 00000 n 
-0000112865 00000 n 
-0000112910 00000 n 
-0000112955 00000 n 
-0000113000 00000 n 
-0000113045 00000 n 
-0000113090 00000 n 
-0000113135 00000 n 
-0000113180 00000 n 
-0000113225 00000 n 
-0000113270 00000 n 
-0000113315 00000 n 
-0000113360 00000 n 
-0000113405 00000 n 
-0000113450 00000 n 
-0000113495 00000 n 
-0000113540 00000 n 
-0000113585 00000 n 
-0000113630 00000 n 
-0000113675 00000 n 
-0000113720 00000 n 
-0000113765 00000 n 
-0000113810 00000 n 
-0000113855 00000 n 
-0000113900 00000 n 
-0000113945 00000 n 
-0000113990 00000 n 
-0000114035 00000 n 
-0000114080 00000 n 
-0000114125 00000 n 
-0000114170 00000 n 
-0000114215 00000 n 
-0000114260 00000 n 
-0000114305 00000 n 
-0000114350 00000 n 
-0000114395 00000 n 
-0000114440 00000 n 
-0000114485 00000 n 
-0000114530 00000 n 
-0000114575 00000 n 
-0000114620 00000 n 
-0000114665 00000 n 
-0000114710 00000 n 
-0000114755 00000 n 
-0000114800 00000 n 
-0000114845 00000 n 
-0000114890 00000 n 
-0000114935 00000 n 
-0000114980 00000 n 
-0000115025 00000 n 
-0000115070 00000 n 
-0000115115 00000 n 
-0000115160 00000 n 
-0000115205 00000 n 
-0000115250 00000 n 
-0000115295 00000 n 
-0000115340 00000 n 
-0000115385 00000 n 
-0000115430 00000 n 
-0000115475 00000 n 
-0000115520 00000 n 
-0000115565 00000 n 
-0000115610 00000 n 
-0000115655 00000 n 
-0000115700 00000 n 
-0000115745 00000 n 
-0000115790 00000 n 
-0000115835 00000 n 
-0000115880 00000 n 
-0000115925 00000 n 
-0000115970 00000 n 
-0000116015 00000 n 
-0000116060 00000 n 
-0000116105 00000 n 
-0000116150 00000 n 
-0000116195 00000 n 
-0000116240 00000 n 
-0000116285 00000 n 
-0000116330 00000 n 
-0000116375 00000 n 
-0000116420 00000 n 
-0000116465 00000 n 
-0000116510 00000 n 
-0000116555 00000 n 
-0000116600 00000 n 
-0000116645 00000 n 
-0000116690 00000 n 
-0000116735 00000 n 
-0000116780 00000 n 
-0000116825 00000 n 
-0000116870 00000 n 
-0000116915 00000 n 
-0000116960 00000 n 
-0000117005 00000 n 
-0000117050 00000 n 
-0000117095 00000 n 
-0000117140 00000 n 
-0000117185 00000 n 
-0000117230 00000 n 
-0000117275 00000 n 
-0000117320 00000 n 
-0000117365 00000 n 
-0000117410 00000 n 
-0000117455 00000 n 
-0000117500 00000 n 
-0000117545 00000 n 
-0000117590 00000 n 
-0000117635 00000 n 
-0000117680 00000 n 
-0000117725 00000 n 
-0000117770 00000 n 
-0000117815 00000 n 
-0000117860 00000 n 
-0000117905 00000 n 
-0000117950 00000 n 
-0000117995 00000 n 
-0000118040 00000 n 
-0000118085 00000 n 
-0000118130 00000 n 
-0000118175 00000 n 
-0000118220 00000 n 
-0000118265 00000 n 
-0000118310 00000 n 
-0000118355 00000 n 
-0000118400 00000 n 
-0000118445 00000 n 
-0000118490 00000 n 
-0000118535 00000 n 
-0000118580 00000 n 
-0000118625 00000 n 
-0000118670 00000 n 
-0000118715 00000 n 
-0000118760 00000 n 
-0000118805 00000 n 
-0000118850 00000 n 
-0000118895 00000 n 
-0000118940 00000 n 
-0000118985 00000 n 
-0000119030 00000 n 
-0000119075 00000 n 
-0000119120 00000 n 
-0000119165 00000 n 
-0000119210 00000 n 
-0000119255 00000 n 
-0000119300 00000 n 
-0000119345 00000 n 
-0000119390 00000 n 
-0000119435 00000 n 
-0000119480 00000 n 
-0000119525 00000 n 
-0000119570 00000 n 
-0000119615 00000 n 
-0000119660 00000 n 
-0000119705 00000 n 
-0000119750 00000 n 
-0000119795 00000 n 
-0000119840 00000 n 
-0000119885 00000 n 
-0000119930 00000 n 
-0000119975 00000 n 
-0000120020 00000 n 
-0000120065 00000 n 
-0000120110 00000 n 
-0000120155 00000 n 
-0000120200 00000 n 
-0000120245 00000 n 
-0000120290 00000 n 
-0000120335 00000 n 
-0000120380 00000 n 
-0000120425 00000 n 
-0000120470 00000 n 
-0000120515 00000 n 
-0000120560 00000 n 
-0000120605 00000 n 
-0000120650 00000 n 
-0000120695 00000 n 
-0000120740 00000 n 
-0000120785 00000 n 
-0000120830 00000 n 
-0000120875 00000 n 
-0000120920 00000 n 
-0000120965 00000 n 
-0000121010 00000 n 
-0000121055 00000 n 
-0000121100 00000 n 
-0000121145 00000 n 
-0000121190 00000 n 
-0000121235 00000 n 
-0000121280 00000 n 
-0000121325 00000 n 
-0000121370 00000 n 
-0000121415 00000 n 
-0000121460 00000 n 
-0000121505 00000 n 
-0000121550 00000 n 
-0000121595 00000 n 
-0000121640 00000 n 
-0000121685 00000 n 
-0000121730 00000 n 
-0000121775 00000 n 
-0000121820 00000 n 
-0000121865 00000 n 
-0000121910 00000 n 
-0000123318 00000 n 
-0000123479 00000 n 
-0000123648 00000 n 
-0000123841 00000 n 
-0000127594 00000 n 
-0000127787 00000 n 
-0000132477 00000 n 
-0000132671 00000 n 
-0000137055 00000 n 
-0000137249 00000 n 
-0000141101 00000 n 
-0000141295 00000 n 
-0000144867 00000 n 
-0000145061 00000 n 
-0000148700 00000 n 
-0000148894 00000 n 
-0000149872 00000 n 
-0000150033 00000 n 
-0000150267 00000 n 
-0000150471 00000 n 
-0000153249 00000 n 
-0000153424 00000 n 
-0000157053 00000 n 
-0000157228 00000 n 
-0000159635 00000 n 
-0000159810 00000 n 
-0000161230 00000 n 
-0000161391 00000 n 
-0000161579 00000 n 
-0000161783 00000 n 
-0000164731 00000 n 
-0000164906 00000 n 
-0000165324 00000 n 
-0000165536 00000 n 
-0000166697 00000 n 
-0000166885 00000 n 
-0000168347 00000 n 
-0000168544 00000 n 
-0000169914 00000 n 
-0000170129 00000 n 
-0000171365 00000 n 
-0000171559 00000 n 
-0000173138 00000 n 
-0000173308 00000 n 
-0000175124 00000 n 
-0000175275 00000 n 
-0000175516 00000 n 
-0000175686 00000 n 
-0000177361 00000 n 
-0000177540 00000 n 
-0000179353 00000 n 
-0000179522 00000 n 
-0000181360 00000 n 
-0000181529 00000 n 
-0000182516 00000 n 
-0000182695 00000 n 
-0000184341 00000 n 
-0000184529 00000 n 
-0000186018 00000 n 
-0000186206 00000 n 
-0000187627 00000 n 
-0000187797 00000 n 
-0000189461 00000 n 
-0000189631 00000 n 
-0000190187 00000 n 
-0000190357 00000 n 
-0000192089 00000 n 
-0000192268 00000 n 
-0000193974 00000 n 
-0000194162 00000 n 
-0000195821 00000 n 
-0000196009 00000 n 
-0000197726 00000 n 
-0000197895 00000 n 
-0000198643 00000 n 
-0000198850 00000 n 
-0000200495 00000 n 
-0000200702 00000 n 
-0000202309 00000 n 
-0000202478 00000 n 
-0000202810 00000 n 
-0000202971 00000 n 
-0000203161 00000 n 
-0000203365 00000 n 
-0000206194 00000 n 
-0000206407 00000 n 
-0000208175 00000 n 
-0000208388 00000 n 
-0000209890 00000 n 
-0000210112 00000 n 
-0000211939 00000 n 
-0000212160 00000 n 
-0000213818 00000 n 
-0000214025 00000 n 
-0000215717 00000 n 
-0000215933 00000 n 
-0000217866 00000 n 
-0000218088 00000 n 
-0000220101 00000 n 
-0000220313 00000 n 
-0000222398 00000 n 
-0000222601 00000 n 
-0000224865 00000 n 
-0000225087 00000 n 
-0000227289 00000 n 
-0000227487 00000 n 
-0000229499 00000 n 
-0000229687 00000 n 
-0000231211 00000 n 
-0000231390 00000 n 
-0000233382 00000 n 
-0000233570 00000 n 
-0000235596 00000 n 
-0000235784 00000 n 
-0000237673 00000 n 
-0000237870 00000 n 
-0000239597 00000 n 
-0000239757 00000 n 
-0000240717 00000 n 
-0000240911 00000 n 
-0000242490 00000 n 
-0000242670 00000 n 
-0000244440 00000 n 
-0000244619 00000 n 
-0000245478 00000 n 
-0000245657 00000 n 
-0000246745 00000 n 
-0000246942 00000 n 
-0000248441 00000 n 
-0000248620 00000 n 
-0000249436 00000 n 
-0000249666 00000 n 
-0000251165 00000 n 
-0000251377 00000 n 
-0000253130 00000 n 
-0000253323 00000 n 
-0000254680 00000 n 
-0000254841 00000 n 
-0000255032 00000 n 
-0000255245 00000 n 
-0000258192 00000 n 
-0000258367 00000 n 
-0000260800 00000 n 
-0000260975 00000 n 
-0000262426 00000 n 
-0000262624 00000 n 
-0000263986 00000 n 
-0000264184 00000 n 
-0000265873 00000 n 
-0000266061 00000 n 
-0000267742 00000 n 
-0000267921 00000 n 
-0000270023 00000 n 
-0000270202 00000 n 
-0000271975 00000 n 
-0000272154 00000 n 
-0000273836 00000 n 
-0000274024 00000 n 
-0000275878 00000 n 
-0000276090 00000 n 
-0000278125 00000 n 
-0000278338 00000 n 
-0000279890 00000 n 
-0000280079 00000 n 
-0000281352 00000 n 
-0000281573 00000 n 
-0000283349 00000 n 
-0000283555 00000 n 
-0000285440 00000 n 
-0000285637 00000 n 
-0000287222 00000 n 
-0000287433 00000 n 
-0000288953 00000 n 
-0000289141 00000 n 
-0000290043 00000 n 
-0000290231 00000 n 
-0000291757 00000 n 
-0000291960 00000 n 
-0000293668 00000 n 
-0000293871 00000 n 
-0000294688 00000 n 
-0000294900 00000 n 
-0000296378 00000 n 
-0000296558 00000 n 
-0000297322 00000 n 
-0000297553 00000 n 
-0000299275 00000 n 
-0000299487 00000 n 
-0000301413 00000 n 
-0000301644 00000 n 
-0000303631 00000 n 
-0000303853 00000 n 
-0000305581 00000 n 
-0000305784 00000 n 
-0000307057 00000 n 
-0000307279 00000 n 
-0000308872 00000 n 
-0000309051 00000 n 
-0000310599 00000 n 
-0000310778 00000 n 
-0000312395 00000 n 
-0000312574 00000 n 
-0000313972 00000 n 
-0000314151 00000 n 
-0000315817 00000 n 
-0000315987 00000 n 
-0000316733 00000 n 
-0000316936 00000 n 
-0000318805 00000 n 
-0000318965 00000 n 
-0000320089 00000 n 
-0000320278 00000 n 
-0000321971 00000 n 
-0000322150 00000 n 
-0000323895 00000 n 
-0000324083 00000 n 
-0000325986 00000 n 
-0000326199 00000 n 
-0000328064 00000 n 
-0000328304 00000 n 
-0000330377 00000 n 
-0000330589 00000 n 
-0000332157 00000 n 
-0000332363 00000 n 
-0000333527 00000 n 
-0000333715 00000 n 
-0000334911 00000 n 
-0000335090 00000 n 
-0000336095 00000 n 
-0000336283 00000 n 
-0000337910 00000 n 
-0000338098 00000 n 
-0000339366 00000 n 
-0000339555 00000 n 
-0000340863 00000 n 
-0000341033 00000 n 
-0000341506 00000 n 
-0000341694 00000 n 
-0000343085 00000 n 
-0000343273 00000 n 
-0000344244 00000 n 
-0000344432 00000 n 
-0000344981 00000 n 
-0000345203 00000 n 
-0000347273 00000 n 
-0000347486 00000 n 
-0000349507 00000 n 
-0000349729 00000 n 
-0000350940 00000 n 
-0000351153 00000 n 
-0000352715 00000 n 
-0000352937 00000 n 
-0000354746 00000 n 
-0000354968 00000 n 
-0000356688 00000 n 
-0000356882 00000 n 
-0000357592 00000 n 
-0000357795 00000 n 
-0000359334 00000 n 
-0000359512 00000 n 
-0000360197 00000 n 
-0000360385 00000 n 
-0000361873 00000 n 
-0000362052 00000 n 
-0000363658 00000 n 
-0000363837 00000 n 
-0000365507 00000 n 
-0000365677 00000 n 
-0000367226 00000 n 
-0000367396 00000 n 
-0000368697 00000 n 
-0000368867 00000 n 
-0000370493 00000 n 
-0000370663 00000 n 
-0000372243 00000 n 
-0000372439 00000 n 
-0000374626 00000 n 
-0000374805 00000 n 
-0000376332 00000 n 
-0000376520 00000 n 
-0000377488 00000 n 
-0000377684 00000 n 
-0000379415 00000 n 
-0000379628 00000 n 
-0000381310 00000 n 
-0000381505 00000 n 
-0000383256 00000 n 
-0000383469 00000 n 
-0000384734 00000 n 
-0000384938 00000 n 
-0000386675 00000 n 
-0000386863 00000 n 
-0000388606 00000 n 
-0000388785 00000 n 
-0000390183 00000 n 
-0000390362 00000 n 
-0000392059 00000 n 
-0000392238 00000 n 
-0000393719 00000 n 
-0000393898 00000 n 
-0000395685 00000 n 
-0000395889 00000 n 
-0000397540 00000 n 
-0000397599 00000 n 
-0000397702 00000 n 
-0000397867 00000 n 
-0000397949 00000 n 
-0000398057 00000 n 
-0000398180 00000 n 
-0000398292 00000 n 
-0000398471 00000 n 
-0000398580 00000 n 
-0000398706 00000 n 
-0000398833 00000 n 
-0000398972 00000 n 
-0000399112 00000 n 
-0000399281 00000 n 
-0000399398 00000 n 
-0000399527 00000 n 
-0000399679 00000 n 
-0000399819 00000 n 
-0000399997 00000 n 
-0000400153 00000 n 
-0000400266 00000 n 
-0000400383 00000 n 
-0000400518 00000 n 
-0000400659 00000 n 
-0000400774 00000 n 
-0000400885 00000 n 
-0000401061 00000 n 
-0000401172 00000 n 
-0000401302 00000 n 
-0000401425 00000 n 
-0000401591 00000 n 
-0000401707 00000 n 
-0000401836 00000 n 
-0000401975 00000 n 
-0000402111 00000 n 
-0000402246 00000 n 
-0000402381 00000 n 
-0000402517 00000 n 
-0000402628 00000 n 
-0000402784 00000 n 
-0000402878 00000 n 
-0000403087 00000 n 
-0000403188 00000 n 
-0000403331 00000 n 
-0000403477 00000 n 
-0000403593 00000 n 
-0000403760 00000 n 
-0000403872 00000 n 
-0000404063 00000 n 
-0000404166 00000 n 
-0000404339 00000 n 
-0000404460 00000 n 
-0000404590 00000 n 
-0000404702 00000 n 
-0000404826 00000 n 
-0000404938 00000 n 
-0000405144 00000 n 
-0000405255 00000 n 
-0000405370 00000 n 
-0000405514 00000 n 
-0000405722 00000 n 
-0000405856 00000 n 
-0000406010 00000 n 
-0000406135 00000 n 
-0000406266 00000 n 
-0000406399 00000 n 
-0000406530 00000 n 
-0000406705 00000 n 
-0000406840 00000 n 
-0000406993 00000 n 
-0000407138 00000 n 
-0000407363 00000 n 
-0000407474 00000 n 
-0000407589 00000 n 
-0000407782 00000 n 
-0000407925 00000 n 
-0000408041 00000 n 
-0000408186 00000 n 
-0000408343 00000 n 
-0000408460 00000 n 
-0000408637 00000 n 
-0000408771 00000 n 
-0000408919 00000 n 
-0000409037 00000 n 
-0000409167 00000 n 
-0000409337 00000 n 
-0000409431 00000 n 
-0000409558 00000 n 
-0000409685 00000 n 
-0000409781 00000 n 
-0000409958 00000 n 
-0000410084 00000 n 
-0000410219 00000 n 
-0000410352 00000 n 
-0000410479 00000 n 
-0000410591 00000 n 
-0000410783 00000 n 
-0000410881 00000 n 
-0000411067 00000 n 
-0000411171 00000 n 
-0000411295 00000 n 
-0000411417 00000 n 
-0000411529 00000 n 
-0000411725 00000 n 
-0000411841 00000 n 
-0000411965 00000 n 
-0000412083 00000 n 
-0000412201 00000 n 
-0000412306 00000 n 
-0000412495 00000 n 
-0000412718 00000 n 
-0000412857 00000 n 
-0000413020 00000 n 
-0000413157 00000 n 
-0000413260 00000 n 
-0000413466 00000 n 
-0000413625 00000 n 
-0000413773 00000 n 
-0000413901 00000 n 
-0000414082 00000 n 
-0000414192 00000 n 
-0000414307 00000 n 
-0000414452 00000 n 
-0000414616 00000 n 
-0000414766 00000 n 
-0000414984 00000 n 
-0000415089 00000 n 
-0000415221 00000 n 
-0000415342 00000 n 
-0000415549 00000 n 
-0000415677 00000 n 
-0000415762 00000 n 
-0000415928 00000 n 
-0000416032 00000 n 
-0000416189 00000 n 
-0000416300 00000 n 
-0000416445 00000 n 
-0000416587 00000 n 
-0000416737 00000 n 
-0000416854 00000 n 
-0000417018 00000 n 
-0000417129 00000 n 
-0000417269 00000 n 
-0000417396 00000 n 
-0000417513 00000 n 
-0000417652 00000 n 
-0000417758 00000 n 
-0000417892 00000 n 
-0000418024 00000 n 
-0000418169 00000 n 
-0000418296 00000 n 
-0000418428 00000 n 
-0000418558 00000 n 
-0000418683 00000 n 
-0000418791 00000 n 
-0000418956 00000 n 
-0000419060 00000 n 
-0000419196 00000 n 
-0000419402 00000 n 
-0000419502 00000 n 
-0000419620 00000 n 
-0000419785 00000 n 
-0000419876 00000 n 
-0000420037 00000 n 
-0000420163 00000 n 
-0000420290 00000 n 
-0000420430 00000 n 
-0000420566 00000 n 
-0000420674 00000 n 
-0000420848 00000 n 
-0000420954 00000 n 
-0000421074 00000 n 
-0000421186 00000 n 
-0000421303 00000 n 
-0000421405 00000 n 
-0000421574 00000 n 
-0000421674 00000 n 
-0000421791 00000 n 
-0000421944 00000 n 
-0000422074 00000 n 
-0000422241 00000 n 
-0000422341 00000 n 
-0000422438 00000 n 
-0000422658 00000 n 
-0000422757 00000 n 
-0000422875 00000 n 
-0000423003 00000 n 
-0000423161 00000 n 
-0000423332 00000 n 
-0000423448 00000 n 
-0000423559 00000 n 
-0000423695 00000 n 
-0000423826 00000 n 
-0000423974 00000 n 
-0000424119 00000 n 
-0000424220 00000 n 
-0000424408 00000 n 
-0000424512 00000 n 
-0000424665 00000 n 
-0000424776 00000 n 
-0000424884 00000 n 
-0000425015 00000 n 
-0000425190 00000 n 
-0000425293 00000 n 
-0000425444 00000 n 
-0000425546 00000 n 
-0000425668 00000 n 
-0000425800 00000 n 
-0000425920 00000 n 
-0000426035 00000 n 
-0000426149 00000 n 
-0000426262 00000 n 
-0000426379 00000 n 
-0000426494 00000 n 
-0000426610 00000 n 
-0000426725 00000 n 
-0000426841 00000 n 
-0000426963 00000 n 
-0000427084 00000 n 
-0000427203 00000 n 
-0000427321 00000 n 
-0000427441 00000 n 
-0000427544 00000 n 
-0000427658 00000 n 
-0000427819 00000 n 
-0000427915 00000 n 
-0000428029 00000 n 
-0000428139 00000 n 
-0000428256 00000 n 
-0000428434 00000 n 
-0000428544 00000 n 
-0000428698 00000 n 
-0000428867 00000 n 
-0000429055 00000 n 
-0000429236 00000 n 
-0000429392 00000 n 
-0000429558 00000 n 
-0000429690 00000 n 
-0000429837 00000 n 
-0000429976 00000 n 
-0000430096 00000 n 
-0000430217 00000 n 
-0000430336 00000 n 
-0000430500 00000 n 
-0000430604 00000 n 
-0000430722 00000 n 
-0000430840 00000 n 
-0000430961 00000 n 
-0000431097 00000 n 
-0000431196 00000 n 
-0000431360 00000 n 
-0000431464 00000 n 
-0000431581 00000 n 
-0000431731 00000 n 
-0000431831 00000 n 
-0000431945 00000 n 
-0000432059 00000 n 
-0000432173 00000 n 
-0000432287 00000 n 
-0000432401 00000 n 
-0000432515 00000 n 
-0000432629 00000 n 
-0000432743 00000 n 
-0000432859 00000 n 
-0000432961 00000 n 
-0000433075 00000 n 
+0000094042 00000 n 
+0000095270 00000 n 
+0000095431 00000 n 
+0000095600 00000 n 
+0000095793 00000 n 
+0000099543 00000 n 
+0000099737 00000 n 
+0000104352 00000 n 
+0000104546 00000 n 
+0000108569 00000 n 
+0000108763 00000 n 
+0000113380 00000 n 
+0000113574 00000 n 
+0000117795 00000 n 
+0000117989 00000 n 
+0000119664 00000 n 
+0000119825 00000 n 
+0000120059 00000 n 
+0000120263 00000 n 
+0000122791 00000 n 
+0000122975 00000 n 
+0000126362 00000 n 
+0000126537 00000 n 
+0000129670 00000 n 
+0000129845 00000 n 
+0000132915 00000 n 
+0000133090 00000 n 
+0000135611 00000 n 
+0000135823 00000 n 
+0000136979 00000 n 
+0000137167 00000 n 
+0000138688 00000 n 
+0000138885 00000 n 
+0000140321 00000 n 
+0000140536 00000 n 
+0000141901 00000 n 
+0000142080 00000 n 
+0000143667 00000 n 
+0000143837 00000 n 
+0000145392 00000 n 
+0000145571 00000 n 
+0000147005 00000 n 
+0000147184 00000 n 
+0000148897 00000 n 
+0000149076 00000 n 
+0000150624 00000 n 
+0000150803 00000 n 
+0000152493 00000 n 
+0000152696 00000 n 
+0000154500 00000 n 
+0000154698 00000 n 
+0000156059 00000 n 
+0000156257 00000 n 
+0000157941 00000 n 
+0000158129 00000 n 
+0000159802 00000 n 
+0000159981 00000 n 
+0000162081 00000 n 
+0000162260 00000 n 
+0000164033 00000 n 
+0000164212 00000 n 
+0000165892 00000 n 
+0000166080 00000 n 
+0000167935 00000 n 
+0000168147 00000 n 
+0000170205 00000 n 
+0000170418 00000 n 
+0000171985 00000 n 
+0000172174 00000 n 
+0000173449 00000 n 
+0000173637 00000 n 
+0000175163 00000 n 
+0000175366 00000 n 
+0000177092 00000 n 
+0000177295 00000 n 
+0000178145 00000 n 
+0000178357 00000 n 
+0000179867 00000 n 
+0000180047 00000 n 
+0000180805 00000 n 
+0000181026 00000 n 
+0000182824 00000 n 
+0000183030 00000 n 
+0000184912 00000 n 
+0000185109 00000 n 
+0000186695 00000 n 
+0000186906 00000 n 
+0000188475 00000 n 
+0000188663 00000 n 
+0000189565 00000 n 
+0000189796 00000 n 
+0000191666 00000 n 
+0000191878 00000 n 
+0000193826 00000 n 
+0000194057 00000 n 
+0000196068 00000 n 
+0000196290 00000 n 
+0000198170 00000 n 
+0000198349 00000 n 
+0000199543 00000 n 
+0000199765 00000 n 
+0000201465 00000 n 
+0000201678 00000 n 
+0000203611 00000 n 
+0000203799 00000 n 
+0000204434 00000 n 
+0000204613 00000 n 
+0000206075 00000 n 
+0000206254 00000 n 
+0000207570 00000 n 
+0000207749 00000 n 
+0000209371 00000 n 
+0000209550 00000 n 
+0000211047 00000 n 
+0000211217 00000 n 
+0000211561 00000 n 
+0000211764 00000 n 
+0000213667 00000 n 
+0000213827 00000 n 
+0000214950 00000 n 
+0000215180 00000 n 
+0000216704 00000 n 
+0000216916 00000 n 
+0000218705 00000 n 
+0000218898 00000 n 
+0000220304 00000 n 
+0000220493 00000 n 
+0000222184 00000 n 
+0000222363 00000 n 
+0000224109 00000 n 
+0000224297 00000 n 
+0000226204 00000 n 
+0000226417 00000 n 
+0000228302 00000 n 
+0000228542 00000 n 
+0000230633 00000 n 
+0000230845 00000 n 
+0000232446 00000 n 
+0000232652 00000 n 
+0000233813 00000 n 
+0000234001 00000 n 
+0000235199 00000 n 
+0000235378 00000 n 
+0000236384 00000 n 
+0000236572 00000 n 
+0000238199 00000 n 
+0000238387 00000 n 
+0000239656 00000 n 
+0000239845 00000 n 
+0000241153 00000 n 
+0000241323 00000 n 
+0000241795 00000 n 
+0000242008 00000 n 
+0000243822 00000 n 
+0000244035 00000 n 
+0000245612 00000 n 
+0000245834 00000 n 
+0000247653 00000 n 
+0000247893 00000 n 
+0000249616 00000 n 
+0000249823 00000 n 
+0000251668 00000 n 
+0000251899 00000 n 
+0000253789 00000 n 
+0000254011 00000 n 
+0000255957 00000 n 
+0000256169 00000 n 
+0000258217 00000 n 
+0000258420 00000 n 
+0000260754 00000 n 
+0000260976 00000 n 
+0000263220 00000 n 
+0000263427 00000 n 
+0000265407 00000 n 
+0000265586 00000 n 
+0000267144 00000 n 
+0000267314 00000 n 
+0000269314 00000 n 
+0000269502 00000 n 
+0000271589 00000 n 
+0000271777 00000 n 
+0000273588 00000 n 
+0000273766 00000 n 
+0000275616 00000 n 
+0000275776 00000 n 
+0000276560 00000 n 
+0000276754 00000 n 
+0000278355 00000 n 
+0000278535 00000 n 
+0000280301 00000 n 
+0000280480 00000 n 
+0000281341 00000 n 
+0000281563 00000 n 
+0000283699 00000 n 
+0000283912 00000 n 
+0000285966 00000 n 
+0000286188 00000 n 
+0000287411 00000 n 
+0000287624 00000 n 
+0000289221 00000 n 
+0000289443 00000 n 
+0000291266 00000 n 
+0000291488 00000 n 
+0000293220 00000 n 
+0000293414 00000 n 
+0000294140 00000 n 
+0000294319 00000 n 
+0000295412 00000 n 
+0000295609 00000 n 
+0000297065 00000 n 
+0000297253 00000 n 
+0000298143 00000 n 
+0000298313 00000 n 
+0000299990 00000 n 
+0000300169 00000 n 
+0000301984 00000 n 
+0000302153 00000 n 
+0000303993 00000 n 
+0000304162 00000 n 
+0000305150 00000 n 
+0000305329 00000 n 
+0000306977 00000 n 
+0000307165 00000 n 
+0000308656 00000 n 
+0000308844 00000 n 
+0000310268 00000 n 
+0000310438 00000 n 
+0000312106 00000 n 
+0000312276 00000 n 
+0000312833 00000 n 
+0000313012 00000 n 
+0000314618 00000 n 
+0000314797 00000 n 
+0000316467 00000 n 
+0000316637 00000 n 
+0000318186 00000 n 
+0000318356 00000 n 
+0000319657 00000 n 
+0000319827 00000 n 
+0000321453 00000 n 
+0000321623 00000 n 
+0000323209 00000 n 
+0000323404 00000 n 
+0000325182 00000 n 
+0000325394 00000 n 
+0000327117 00000 n 
+0000327311 00000 n 
+0000329085 00000 n 
+0000329297 00000 n 
+0000330574 00000 n 
+0000330777 00000 n 
+0000332350 00000 n 
+0000332528 00000 n 
+0000333215 00000 n 
+0000333418 00000 n 
+0000335094 00000 n 
+0000335282 00000 n 
+0000337014 00000 n 
+0000337202 00000 n 
+0000338687 00000 n 
+0000338866 00000 n 
+0000340362 00000 n 
+0000340540 00000 n 
+0000341199 00000 n 
+0000341258 00000 n 
+0000341361 00000 n 
+0000341526 00000 n 
+0000341608 00000 n 
+0000341716 00000 n 
+0000341895 00000 n 
+0000342012 00000 n 
+0000342146 00000 n 
+0000342281 00000 n 
+0000342428 00000 n 
+0000342576 00000 n 
+0000342753 00000 n 
+0000342879 00000 n 
+0000343017 00000 n 
+0000343177 00000 n 
+0000343325 00000 n 
+0000343511 00000 n 
+0000343667 00000 n 
+0000343780 00000 n 
+0000343897 00000 n 
+0000344032 00000 n 
+0000344173 00000 n 
+0000344288 00000 n 
+0000344399 00000 n 
+0000344576 00000 n 
+0000344679 00000 n 
+0000344795 00000 n 
+0000344944 00000 n 
+0000345043 00000 n 
+0000345156 00000 n 
+0000345269 00000 n 
+0000345382 00000 n 
+0000345495 00000 n 
+0000345608 00000 n 
+0000345721 00000 n 
+0000345834 00000 n 
+0000345947 00000 n 
+0000346062 00000 n 
+0000346163 00000 n 
+0000346276 00000 n 
+0000346467 00000 n 
+0000346564 00000 n 
+0000346749 00000 n 
+0000346852 00000 n 
+0000346975 00000 n 
+0000347096 00000 n 
+0000347207 00000 n 
+0000347402 00000 n 
+0000347517 00000 n 
+0000347640 00000 n 
+0000347757 00000 n 
+0000347874 00000 n 
+0000347978 00000 n 
+0000348166 00000 n 
+0000348388 00000 n 
+0000348526 00000 n 
+0000348688 00000 n 
+0000348824 00000 n 
+0000348926 00000 n 
+0000349143 00000 n 
+0000349247 00000 n 
+0000349378 00000 n 
+0000349498 00000 n 
+0000349704 00000 n 
+0000349831 00000 n 
+0000349915 00000 n 
+0000350120 00000 n 
+0000350278 00000 n 
+0000350425 00000 n 
+0000350552 00000 n 
+0000350732 00000 n 
+0000350841 00000 n 
+0000350955 00000 n 
+0000351099 00000 n 
+0000351262 00000 n 
+0000351411 00000 n 
+0000351591 00000 n 
+0000351694 00000 n 
+0000351850 00000 n 
+0000351960 00000 n 
+0000352104 00000 n 
+0000352245 00000 n 
+0000352394 00000 n 
+0000352510 00000 n 
+0000352673 00000 n 
+0000352783 00000 n 
+0000352922 00000 n 
+0000353048 00000 n 
+0000353164 00000 n 
+0000353293 00000 n 
+0000353469 00000 n 
+0000353572 00000 n 
+0000353703 00000 n 
+0000353832 00000 n 
+0000353974 00000 n 
+0000354098 00000 n 
+0000354227 00000 n 
+0000354354 00000 n 
+0000354476 00000 n 
+0000354581 00000 n 
+0000354745 00000 n 
+0000354848 00000 n 
+0000354983 00000 n 
+0000355163 00000 n 
+0000355290 00000 n 
+0000355426 00000 n 
+0000355560 00000 n 
+0000355766 00000 n 
+0000355866 00000 n 
+0000355984 00000 n 
+0000356149 00000 n 
+0000356240 00000 n 
+0000356401 00000 n 
+0000356527 00000 n 
+0000356654 00000 n 
+0000356794 00000 n 
+0000356930 00000 n 
+0000357038 00000 n 
+0000357212 00000 n 
+0000357318 00000 n 
+0000357438 00000 n 
+0000357550 00000 n 
+0000357667 00000 n 
+0000357769 00000 n 
+0000357976 00000 n 
+0000358088 00000 n 
+0000358204 00000 n 
+0000358349 00000 n 
+0000358558 00000 n 
+0000358693 00000 n 
+0000358848 00000 n 
+0000358974 00000 n 
+0000359106 00000 n 
+0000359240 00000 n 
+0000359372 00000 n 
+0000359548 00000 n 
+0000359684 00000 n 
+0000359838 00000 n 
+0000359984 00000 n 
+0000360210 00000 n 
+0000360322 00000 n 
+0000360438 00000 n 
+0000360632 00000 n 
+0000360776 00000 n 
+0000360893 00000 n 
+0000361039 00000 n 
+0000361197 00000 n 
+0000361315 00000 n 
+0000361535 00000 n 
+0000361634 00000 n 
+0000361752 00000 n 
+0000361880 00000 n 
+0000362038 00000 n 
+0000362209 00000 n 
+0000362325 00000 n 
+0000362436 00000 n 
+0000362572 00000 n 
+0000362703 00000 n 
+0000362851 00000 n 
+0000362996 00000 n 
+0000363097 00000 n 
+0000363291 00000 n 
+0000363426 00000 n 
+0000363575 00000 n 
+0000363694 00000 n 
+0000363825 00000 n 
+0000363996 00000 n 
+0000364091 00000 n 
+0000364219 00000 n 
+0000364347 00000 n 
+0000364444 00000 n 
+0000364621 00000 n 
+0000364733 00000 n 
+0000364864 00000 n 
+0000364988 00000 n 
+0000365155 00000 n 
+0000365272 00000 n 
+0000365402 00000 n 
+0000365542 00000 n 
+0000365679 00000 n 
+0000365815 00000 n 
+0000365951 00000 n 
+0000366088 00000 n 
+0000366200 00000 n 
+0000366375 00000 n 
+0000366478 00000 n 
+0000366629 00000 n 
+0000366731 00000 n 
+0000366853 00000 n 
+0000366985 00000 n 
+0000367105 00000 n 
+0000367220 00000 n 
+0000367334 00000 n 
+0000367447 00000 n 
+0000367564 00000 n 
+0000367679 00000 n 
+0000367795 00000 n 
+0000367910 00000 n 
+0000368026 00000 n 
+0000368148 00000 n 
+0000368269 00000 n 
+0000368388 00000 n 
+0000368506 00000 n 
+0000368626 00000 n 
+0000368729 00000 n 
+0000368907 00000 n 
+0000369017 00000 n 
+0000369171 00000 n 
+0000369340 00000 n 
+0000369528 00000 n 
+0000369709 00000 n 
+0000369865 00000 n 
+0000370031 00000 n 
+0000370163 00000 n 
+0000370310 00000 n 
+0000370449 00000 n 
+0000370569 00000 n 
+0000370690 00000 n 
+0000370809 00000 n 
+0000370997 00000 n 
+0000371101 00000 n 
+0000371254 00000 n 
+0000371365 00000 n 
+0000371473 00000 n 
+0000371637 00000 n 
+0000371741 00000 n 
+0000371859 00000 n 
+0000371977 00000 n 
+0000372098 00000 n 
+0000372234 00000 n 
+0000372333 00000 n 
+0000372464 00000 n 
+0000372611 00000 n 
+0000372707 00000 n 
+0000372821 00000 n 
+0000372917 00000 n 
 trailer
-<</Size 1939/Root 1938 0 R/Info 1 0 R/ID[<2961315c0e4068c07caa3948042c9821><2961315c0e4068c07caa3948042c9821>]>>
+<</Size 1599/Root 1598 0 R/Info 1 0 R/ID[<5fb0ca5260e34d5c7c72807d3a63192d><5fb0ca5260e34d5c7c72807d3a63192d>]>>
 startxref
-433984
+373598
 %%EOF
diff --git a/docs/docbook/Makefile.in b/docs/docbook/Makefile.in
index ae24606caf7..1ac71e452b3 100644
--- a/docs/docbook/Makefile.in
+++ b/docs/docbook/Makefile.in
@@ -13,14 +13,16 @@
 
 MANPAGES_NAMES=findsmb.1 smbclient.1 \
 	smbspool.8 lmhosts.5 \
-	smbcontrol.1 smbstatus.1 \
-	smbd.8 net.8 smbtar.1 nmbd.8 \
-	smbmnt.8 smbumount.8 nmblookup.1 \
-	smbmount.8 swat.8 rpcclient.1 \
+	smbcontrol.1  smbstatus.1 \
+	make_smbcodepage.1  smbd.8 \
+	smbtar.1 nmbd.8 smbmnt.8 \
+	smbumount.8 nmblookup.1 \
+	smbmount.8 swat.8 rpcclient.1	 \
 	smbpasswd.5 testparm.1 samba.7 \
 	smbpasswd.8 testprns.1 \
 	smb.conf.5 wbinfo.1 pdbedit.8 \
 	smbcacls.1 smbsh.1 winbindd.8 \
+	make_unicodemap.1 net.8 \
 	smbgroupedit.8 vfstest.1
 
 ## This part contains only rules. You shouldn't need to change it 
diff --git a/docs/docbook/devdoc/dev-doc.sgml b/docs/docbook/devdoc/dev-doc.sgml
index e256dbe3a2c..adc25e83bdf 100644
--- a/docs/docbook/devdoc/dev-doc.sgml
+++ b/docs/docbook/devdoc/dev-doc.sgml
@@ -11,7 +11,6 @@
 <!ENTITY printing SYSTEM "printing.sgml">
 <!ENTITY wins SYSTEM "wins.sgml">
 <!ENTITY sam SYSTEM "sam.sgml">
-<!ENTITY encryption SYSTEM "encryption.sgml">
 ]>
 
 <book id="Samba-Developers-Guide">
@@ -65,6 +64,5 @@ url="http://www.fsf.org/licenses/gpl.txt">http://www.fsf.org/licenses/gpl.txt</u
 &printing;
 &wins;
 &sam;
-&encryption;
 
 </book>
diff --git a/docs/docbook/devdoc/unix-smb.sgml b/docs/docbook/devdoc/unix-smb.sgml
index aae96edfb70..be796988572 100644
--- a/docs/docbook/devdoc/unix-smb.sgml
+++ b/docs/docbook/devdoc/unix-smb.sgml
@@ -143,11 +143,6 @@ details.
 
 <sect1>
 <title>Locking</title>
-<para>
-Since samba 2.2, samba supports other types of locking as well. This 
-section is outdated.
-</para>
-
 <para>
 The locking calls available under a DOS/Windows environment are much
 richer than those available in unix. This means a unix server (like
diff --git a/docs/docbook/faq/errors.sgml b/docs/docbook/faq/errors.sgml
index 819462899e7..2f378a3688b 100644
--- a/docs/docbook/faq/errors.sgml
+++ b/docs/docbook/faq/errors.sgml
@@ -167,10 +167,4 @@ A domain controller has to announce on the network who it is. This usually takes
 </para>
 </sect1>
 
-<sect1>
-<title>I'm getting "open_oplock_ipc: Failed to get local UDP socket for address 100007f. Error was Cannot assign requested" in the logs</title>
-<para>Your loopback device isn't working correctly. Make sure it's running.
-</para>
-</sect1>
-
 </chapter>
diff --git a/docs/docbook/global.ent b/docs/docbook/global.ent
index 46745c27738..d88c489a4a2 100644
--- a/docs/docbook/global.ent
+++ b/docs/docbook/global.ent
@@ -31,58 +31,3 @@
 <!-- Misc -->
 <!ENTITY samba.pub.cvshost 'pserver.samba.org'>
 
-<!ENTITY stdarg.debuglevel '
-<varlistentry>
-<term>-d|--debug=debuglevel</term>
-<listitem>
-<para><replaceable>debuglevel</replaceable> is an integer 
-from 0 to 10.  The default value if this parameter is 
-not specified is zero.</para>
-
-<para>The higher this value, the more detail will be 
-logged to the log files about the activities of the 
-server. At level 0, only critical errors and serious 
-warnings will be logged. Level 1 is a reasonable level for
-day to day running - it generates a small amount of 
-information about operations carried out.</para>
-
-<para>Levels above 1 will generate considerable 
-amounts of log data, and should only be used when 
-investigating a problem. Levels above 3 are designed for 
-use only by developers and generate HUGE amounts of log
-data, most of which is extremely cryptic.</para>
-
-<para>Note that specifying this parameter here will 
-override the <ulink url="smb.conf.5.html#loglevel">log
-level</ulink> parameter in the <ulink url="smb.conf.5.html">
-<filename>smb.conf(5)</filename></ulink> file.</para>
-</listitem>
-</varlistentry>'>
-
-<!ENTITY stdarg.help '
-<varlistentry>
-<term>-h|--help</term>
-<listitem><para>Print a summary of command line options.
-</para></listitem>
-</varlistentry>'>
-
-<!ENTITY stdarg.configfile '
-<varlistentry>
-<term>-s &lt;configuration file&gt;</term>
-<listitem><para>The file specified contains the 
-configuration details required by the server.  The 
-information in this file includes server-specific
-information such as what printcap file to use, as well 
-as descriptions of all the services that the server is 
-to provide. See <ulink url="smb.conf.5.html"><filename>
-smb.conf(5)</filename></ulink> for more information.
-The default configuration file name is determined at 
-compile time.</para></listitem>
-</varlistentry>'>
-
-<!ENTITY stdarg.version '
-<varlistentry>
-<term>-v</term>
-<listitem><para>Prints the version number for 
-<command>smbd</command>.</para></listitem>
-</varlistentry>'>
diff --git a/docs/docbook/manpages/nmbd.8.sgml b/docs/docbook/manpages/nmbd.8.sgml
index b8986110a6b..bd8bf964f14 100644
--- a/docs/docbook/manpages/nmbd.8.sgml
+++ b/docs/docbook/manpages/nmbd.8.sgml
@@ -1,3 +1,4 @@
+2Q
 <!DOCTYPE refentry PUBLIC "-//OASIS//DTD DocBook V4.1//EN">
 <refentry id="nmbd">
 
@@ -317,7 +318,7 @@
 <refsect1>
 	<title>VERSION</title>
 
-	<para>This man page is correct for version 3.0 of 
+	<para>This man page is correct for version 2.2 of 
 	the Samba suite.</para>
 </refsect1>
 
diff --git a/docs/docbook/manpages/pdbedit.8.sgml b/docs/docbook/manpages/pdbedit.8.sgml
index ed49b9f540c..fd8ce375e54 100644
--- a/docs/docbook/manpages/pdbedit.8.sgml
+++ b/docs/docbook/manpages/pdbedit.8.sgml
@@ -1,6 +1,4 @@
-<!DOCTYPE refentry PUBLIC "-//OASIS//DTD DocBook V4.1//EN" [
-<!ENTITY % globalentities SYSTEM '../global.ent'> %globalentities;
-]>
+<!DOCTYPE refentry PUBLIC "-//OASIS//DTD DocBook V4.1//EN">
 <refentry id="pdbedit">
 
 <refmeta>
@@ -23,8 +21,8 @@
 		<arg choice="opt">-u username</arg>	
 		<arg choice="opt">-f fullname</arg>	
 		<arg choice="opt">-h homedir</arg>	
-		<arg choice="opt">-D drive</arg>	
-		<arg choice="opt">-S script</arg>
+		<arg choice="opt">-d drive</arg>	
+		<arg choice="opt">-s script</arg>
 		<arg choice="opt">-p profile</arg>	
 		<arg choice="opt">-a</arg>	
 		<arg choice="opt">-m</arg>	
@@ -32,8 +30,7 @@
 		<arg choice="opt">-i passdb-backend</arg>	
 		<arg choice="opt">-e passdb-backend</arg>   
 		<arg choice="opt">-b passdb-backend</arg>
-		<arg choice="opt">-d debuglevel</arg>
-		<arg choice="opt">-s configfile</arg>
+		<arg choice="opt">-D debuglevel</arg>
 		<arg choice="opt">-P account-policy</arg>
 		<arg choice="opt">-V value</arg>
 	</cmdsynopsis>
@@ -163,8 +160,9 @@
 		</varlistentry>
 		
 		
+		
 		<varlistentry>
-		<term>-D drive</term>
+		<term>-d drive</term>
 		<listitem><para>This option can be used while adding or
 		modifing a user account. It will specify the windows drive
 		letter to be used to map the home directory.</para>
@@ -176,7 +174,7 @@
 		
 		
 		<varlistentry>
-		<term>-S script</term>
+		<term>-s script</term>
 		<listitem><para>This option can be used while adding or
 		modifing a user account. It will specify the user's logon
 		script path.</para>
@@ -301,10 +299,6 @@
 		</programlisting></para>
 		</listitem>
 		</varlistentry>
-		
-		&stdarg.debuglevel;
-		&stdarg.help;
-		&stdarg.configfile;
 
 	</variablelist>
 </refsect1>
diff --git a/docs/docbook/manpages/rpcclient.1.sgml b/docs/docbook/manpages/rpcclient.1.sgml
index 10e0ff438d5..7a7a19c837b 100644
--- a/docs/docbook/manpages/rpcclient.1.sgml
+++ b/docs/docbook/manpages/rpcclient.1.sgml
@@ -1,6 +1,4 @@
-<!DOCTYPE refentry PUBLIC "-//OASIS//DTD DocBook V4.1//EN" [
-<!ENTITY % globalentities SYSTEM '../global.ent'> %globalentities;
-]>
+<!DOCTYPE refentry PUBLIC "-//OASIS//DTD DocBook V4.1//EN">
 <refentry id="rpcclient">
 
 <refmeta>
@@ -89,8 +87,23 @@
 				
 		
 
-		&stdarg.debuglevel;
-		&stdarg.help;
+		<varlistentry>
+		<term>-d|--debug=debuglevel</term>
+		<listitem><para>set the debuglevel. Debug level 0 is the lowest 
+		and 100 being the highest. This should be set to 100 if you are
+		planning on submitting a bug report to the Samba team (see <filename>BUGS.txt</filename>). 
+		</para></listitem>
+		</varlistentry>
+		
+	
+
+
+		<varlistentry>
+		<term>-h|--help</term>
+		<listitem><para>Print a summary of command line options.
+		</para></listitem>
+		</varlistentry>
+
 
 		<varlistentry>
 		<term>-I IP-address</term>
diff --git a/docs/docbook/manpages/smb.conf.5.sgml b/docs/docbook/manpages/smb.conf.5.sgml
index ca4de18cfd8..621b764a119 100644
--- a/docs/docbook/manpages/smb.conf.5.sgml
+++ b/docs/docbook/manpages/smb.conf.5.sgml
@@ -1269,10 +1269,10 @@
 		<term><anchor id="ANNOUNCEVERSION">announce version (G)</term>
 		<listitem><para>This specifies the major and minor version numbers 
 		that nmbd will use when announcing itself as a server. The default 
-		is 4.9.  Do not change this parameter unless you have a specific 
+		is 4.2.  Do not change this parameter unless you have a specific 
 		need to set a Samba server to be a downlevel server.</para>
 
-		<para>Default: <command>announce version = 4.9</command></para>
+		<para>Default: <command>announce version = 4.5</command></para>
 
 		<para>Example: <command>announce version = 2.0</command></para>
 		</listitem>
@@ -2300,7 +2300,7 @@
 		<term><anchor id="DOMAINLOGONS">domain logons (G)</term>
 		<listitem><para>If set to <constant>yes</constant>, the Samba server will serve 
 		Windows 95/98 Domain logons for the <link linkend="WORKGROUP">
-		<parameter>workgroup</parameter></link> it is in. Samba 2.2
+		<parameter>workgroup</parameter></link> it is in. Samba 2.2 also 
 		has limited capability to act as a domain controller for Windows 
 		NT 4 Domains.  For more details on setting up this feature see 
 		the Samba-PDC-HOWTO included in the <filename>htmldocs/</filename>
@@ -2862,7 +2862,7 @@
 		system print command such as <command>lpr(1)</command> or <command>
 		lp(1)</command>.</para>
 
-	        <para>This parameter does not accept % macros, because
+	        <para>This paramater does not accept % macros, because
 	        many parts of the system require this value to be
 	        constant for correct operation.</para>
 		
@@ -3475,7 +3475,7 @@
 			<parameter>ldap	server</parameter>.  Only
 			available when the backwards-compatiblity <command>
 			--with-ldapsam</command> option is specified
-			to configure.  See <link linkend="PASSDBBACKEND"><parameter>passdb backend</parameter></link></para></listitem>
+			to configure.  See <link linkend="PASSDBBACKEND"><paramater>passdb backend</parameter></link></para></listitem>
 		</itemizedlist>		
 		
 		<para>Default : <command>ldap ssl = start_tls</command></para>
@@ -3791,7 +3791,7 @@
 		<listitem><para>The value of the parameter (a astring) allows 
 		the debug level (logging level) to be specified in the 
 		<filename>smb.conf</filename> file. This parameter has been
-		extended since the 2.2.x series, now it allow to specify the debug
+		extended since 2.2.x series, now it allow to specify the debug
 		level for multiple debug classes. This is to give greater 
 		flexibility in the configuration of the system.</para>
 
@@ -5387,8 +5387,8 @@
 		        <para>LDAP connections should be secured where
                         possible.  This may be done using either
                         Start-TLS (see <link linkend="LDAPSSL">
-                        <parameter>ldap ssl</parameter></link>) or by
-                        specifying <parameter>ldaps://</parameter> in
+                        <parameter>ldap ssl</parameter>) or by
+                        specifying <paramater>ldaps://</paramater> in
                         the URL argument.  
                         </para></listitem>
 			
@@ -7499,8 +7499,7 @@
 		<varlistentry>
 		<term><anchor id="UNICODE">unicode (G)</term>
 		<listitem><para>Specifies whether Samba should try 
-		to use unicode on the wire by default. Note: This does NOT
-		mean that samba will assume that the unix machine uses unicode!
+		to use unicode on the wire by default. 
 		</para>
 
 		<para>Default: <command>unicode = yes</command></para>
@@ -7516,7 +7515,6 @@
 		</para>
 
 		<para>Default: <command>unix charset = ASCII</command></para>
-		<para>Example: <command>unix charset = UTF8</command></para>
 		</listitem>
 		</varlistentry>
 
@@ -8055,10 +8053,11 @@ veto files = /.AppleDouble/.bin/.AppleDesktop/Network Trash Folder/
 
 		<varlistentry>
 		<term><anchor id="VFSOBJECT">vfs object (S)</term>
-		<listitem><para>This parameter specifies a shared object files that 
-		are used for Samba VFS I/O operations.  By default, normal 
+		<listitem><para>This parameter specifies a shared object file that 
+		is used for Samba VFS I/O operations.  By default, normal 
 		disk I/O operations are used but these can be overloaded 
-		with one or more VFS objects. </para>
+		with a VFS object.  The Samba VFS layer is new to Samba 2.2 and 
+		must be enabled at compile time with --with-vfs.</para>
 		
 		<para>Default : <emphasis>no value</emphasis></para>
 		</listitem>
@@ -8070,8 +8069,9 @@ veto files = /.AppleDouble/.bin/.AppleDesktop/Network Trash Folder/
 		<varlistentry>
 		<term><anchor id="VFSOPTIONS">vfs options (S)</term>
 		<listitem><para>This parameter allows parameters to be passed 
-		to the vfs layer at initialization time. 
-		See also <link linkend="VFSOBJECT"><parameter>
+		to the vfs layer at initialization time.  The Samba VFS layer 
+		is new to Samba 2.2 and must be enabled at compile time 
+		with --with-vfs.  See also <link linkend="VFSOBJECT"><parameter>
 		vfs object</parameter></link>.</para>
 		
 		<para>Default : <emphasis>no value</emphasis></para>
diff --git a/docs/docbook/manpages/smbclient.1.sgml b/docs/docbook/manpages/smbclient.1.sgml
index 43994a4529f..31031dafc46 100644
--- a/docs/docbook/manpages/smbclient.1.sgml
+++ b/docs/docbook/manpages/smbclient.1.sgml
@@ -30,7 +30,7 @@
 		<arg choice="opt">-l logfile</arg>
 		<arg choice="opt">-L &lt;netbios name&gt;</arg>
 		<arg choice="opt">-I destinationIP</arg>
-		<arg choice="opt">-E</arg>
+		<arg choice="opt">-E &lt;terminal code&gt;</arg>
 		<arg choice="opt">-c &lt;command string&gt;</arg>
 		<arg choice="opt">-i scope</arg>
 		<arg choice="opt">-O &lt;socket options&gt;</arg>
diff --git a/docs/docbook/manpages/smbd.8.sgml b/docs/docbook/manpages/smbd.8.sgml
index 4ae8b3148be..509007c4bc8 100644
--- a/docs/docbook/manpages/smbd.8.sgml
+++ b/docs/docbook/manpages/smbd.8.sgml
@@ -16,10 +16,13 @@
 	<cmdsynopsis>
 		<command>smbd</command>
 		<arg choice="opt">-D</arg>
+		<arg choice="opt">-a</arg>
 		<arg choice="opt">-i</arg>
+		<arg choice="opt">-o</arg>
+		<arg choice="opt">-P</arg>
 		<arg choice="opt">-h</arg>
 		<arg choice="opt">-V</arg>
-		<arg choice="opt">-b</arg>
+                <arg choice="opt">-b</arg>
 		<arg choice="opt">-d &lt;debug level&gt;</arg>
 		<arg choice="opt">-l &lt;log directory&gt;</arg>
 		<arg choice="opt">-p &lt;port number&gt;</arg>
@@ -86,6 +89,13 @@
 		</para></listitem>
 		</varlistentry>
 
+		<varlistentry>
+		<term>-a</term>
+		<listitem><para>If this parameter is specified, each new 
+		connection will append log messages to the log file.  
+		This is the default.</para></listitem>
+		</varlistentry>
+		
 		<varlistentry>
 		<term>-i</term>
 		<listitem><para>If this parameter is specified it causes the
@@ -96,6 +106,21 @@
 		</para></listitem>
 		</varlistentry>
 		
+		<varlistentry>
+		<term>-o</term>
+		<listitem><para>If this parameter is specified, the 
+		log files will be overwritten when opened.  By default, 
+		<command>smbd</command> will append entries to the log 
+		files.</para></listitem>
+		</varlistentry>
+		
+		<varlistentry>
+		<term>-P</term>
+		<listitem><para>Passive option. Causes <command>smbd</command> not to 
+		send any network traffic out. Used for debugging by 
+		the developers only.</para></listitem>
+		</varlistentry>
+		
 		<varlistentry>
 		<term>-h</term>
 		<listitem><para>Prints the help information (usage) 
@@ -103,7 +128,7 @@
 		</varlistentry>
 		
 		<varlistentry>
-		<term>-V</term>
+		<term>-v</term>
 		<listitem><para>Prints the version number for 
 		<command>smbd</command>.</para></listitem>
 		</varlistentry>
@@ -297,7 +322,7 @@
 	</para>
 
 	<itemizedlist>
-	<listitem><para><emphasis>Account Validation</emphasis>:  All accesses to a 
+	<listitem><para><emphasis>Account Validation</emphasis>:  All acccesses to a 
 	samba server are checked 
 	against PAM to see if the account is vaild, not disabled and is permitted to 
 	login at this time.  This also applies to encrypted logins.
@@ -315,7 +340,7 @@
 <refsect1>
 	<title>VERSION</title>
 
-	<para>This man page is correct for version 3.0 of 
+	<para>This man page is correct for version 2.2 of 
 	the Samba suite.</para>
 </refsect1>
 
diff --git a/docs/docbook/manpages/smbpasswd.8.sgml b/docs/docbook/manpages/smbpasswd.8.sgml
index 8e6d925ae03..c0b7ac33591 100644
--- a/docs/docbook/manpages/smbpasswd.8.sgml
+++ b/docs/docbook/manpages/smbpasswd.8.sgml
@@ -28,8 +28,6 @@
 		<arg choice="opt">-h</arg>	
 		<arg choice="opt">-s</arg>	
 		<arg choice="opt">-w pass</arg>	
-		<arg choice="opt">-i</arg>
-		<arg choice="opt">-L</arg>
 		<arg choice="opt">username</arg>	
 	</cmdsynopsis>
 </refsynopsisdiv>
@@ -319,22 +317,7 @@
 		</para>
 		</listitem>
 		</varlistentry>
-
-		<varlistentry>
-		<term>-i</term>
-		<listitem><para>This option tells smbpasswd that the account 
-		being changed is an interdomain trust account. Currently this is used 
-		when Samba is being used as an NT Primary Domain Controller. 
-		The account contains the info about another trusted domain.</para>
-
-		<para>This option is only available when running smbpasswd as root.
-		</para></listitem>
-		</varlistentry>
-
-		<varlistentry>
-		<term>-L</term>
-		<listitem><para>Run in local mode.</para></listitem>
-		</varlistentry>
+		
 		
 		<varlistentry>
 		<term>username</term>
@@ -399,3 +382,7 @@
 </refsect1>
 
 </refentry>
+
+
+
+
diff --git a/docs/docbook/manpages/smbsh.1.sgml b/docs/docbook/manpages/smbsh.1.sgml
index c40609be4fd..82efb334ba7 100644
--- a/docs/docbook/manpages/smbsh.1.sgml
+++ b/docs/docbook/manpages/smbsh.1.sgml
@@ -188,7 +188,7 @@
 <refsect1>
 	<title>VERSION</title>
 
-	<para>This man page is correct for version 3.0 of 
+	<para>This man page is correct for version 2.2 of 
 	the Samba suite.</para>
 </refsect1>
 
diff --git a/docs/docbook/manpages/testparm.1.sgml b/docs/docbook/manpages/testparm.1.sgml
index 254ede7265d..350683eb574 100644
--- a/docs/docbook/manpages/testparm.1.sgml
+++ b/docs/docbook/manpages/testparm.1.sgml
@@ -20,9 +20,8 @@
 		<arg choice="opt">-h</arg>
 		<arg choice="opt">-v</arg>
 		<arg choice="opt">-L &lt;servername&gt;</arg>
-		<arg choice="opt">-t &lt;encoding&gt;</arg>
 		<arg choice="req">config filename</arg>
-		<arg choice="opt">hostname hostIP</arg>
+		<arg choice="opt">hostname  hostIP</arg>
 	</cmdsynopsis>
 </refsynopsisdiv>
 
@@ -87,12 +86,6 @@
 		their defaults.</para></listitem>
 		</varlistentry>
 
-		<varlistentry>
-		<term>-t encoding</term>
-		<listitem><para>
-		Output data in specified encoding.
-		</para></listitem>
-
 		<varlistentry>
 		<term>configfilename</term>
 		<listitem><para>This is the name of the configuration file 
@@ -151,7 +144,7 @@
 <refsect1>
 	<title>VERSION</title>
 
-	<para>This man page is correct for version 3.0 of 
+	<para>This man page is correct for version 2.2 of 
 	the Samba suite.</para>
 </refsect1>
 
@@ -180,3 +173,4 @@
 </refsect1>
 
 </refentry>
+
diff --git a/docs/docbook/manpages/vfstest.1.sgml b/docs/docbook/manpages/vfstest.1.sgml
index f8fa7298b81..9a7eff19392 100644
--- a/docs/docbook/manpages/vfstest.1.sgml
+++ b/docs/docbook/manpages/vfstest.1.sgml
@@ -1,7 +1,4 @@
-<!DOCTYPE refentry PUBLIC "-//OASIS//DTD DocBook V4.1//EN" [
-<!ENTITY % globalentities SYSTEM '../global.ent'> %globalentities;
-]>
-
+<!DOCTYPE refentry PUBLIC "-//OASIS//DTD DocBook V4.1//EN">
 <refentry id="vfstest">
 
 <refmeta>
@@ -51,8 +48,20 @@
 		</para> </listitem>
 		</varlistentry>
 
-		&stdarg.debuglevel;
-		&stdarg.help;
+		<varlistentry>
+		<term>-d|--debug=debuglevel</term>
+		<listitem><para>set the debuglevel. Debug level 0 is the lowest
+		and 100 being the highest. This should be set to 100 if you are
+		planning on submitting a bug report to the Samba team (see
+		<filename>BUGS.txt</filename>).
+		</para></listitem>
+		</varlistentry>
+
+		<varlistentry>
+		<term>-h|--help</term>
+		<listitem><para>Print a summary of command line options.
+		</para></listitem>
+		</varlistentry>
 
 		<varlistentry>
 		<term>-l|--logfile=logbasename</term>
diff --git a/docs/docbook/manpages/wbinfo.1.sgml b/docs/docbook/manpages/wbinfo.1.sgml
index a6ca2442437..f1461b07b9c 100644
--- a/docs/docbook/manpages/wbinfo.1.sgml
+++ b/docs/docbook/manpages/wbinfo.1.sgml
@@ -17,8 +17,8 @@
 		<command>wbinfo</command>
 		<arg choice="opt">-u</arg>
 		<arg choice="opt">-g</arg>
+		<arg choice="opt">-h name</arg>
 		<arg choice="opt">-i ip</arg>
-		<arg choice="opt">-N netbios-name</arg>
 		<arg choice="opt">-n name</arg>
 		<arg choice="opt">-s sid</arg>
 		<arg choice="opt">-U uid</arg>
@@ -30,7 +30,6 @@
 		<arg choice="opt">-r user</arg>
 		<arg choice="opt">-a user%password</arg>
 		<arg choice="opt">-A user%password</arg>
-		<arg choice="opt">-p</arg>
 	</cmdsynopsis>
 </refsynopsisdiv>
 
@@ -73,9 +72,10 @@
 		<command>winbindd(8)</command>. </para></listitem>
 		</varlistentry>
 		
+		
 		<varlistentry>
-		<term>-N name</term>
-		<listitem><para>The <parameter>-N</parameter> option 
+		<term>-h name</term>
+		<listitem><para>The <parameter>-h</parameter> option 
 		queries <command>winbindd(8)</command> to query the WINS
 		server for the IP address associated with the NetBIOS name
 		specified by the <parameter>name</parameter> parameter.
@@ -84,8 +84,8 @@
 
 
 		<varlistentry>
-		<term>-I ip</term>
-		<listitem><para>The <parameter>-I</parameter> option 
+		<term>-i ip</term>
+		<listitem><para>The <parameter>-i</parameter> option 
 		queries <command>winbindd(8)</command> to send a node status
 		request to get the NetBIOS name associated with the IP address
 		specified by the <parameter>ip</parameter> parameter.
@@ -210,7 +210,7 @@
 <refsect1>
 	<title>VERSION</title>
 
-	<para>This man page is correct for version 3.0 of 
+	<para>This man page is correct for version 2.2 of 
 	the Samba suite.</para>
 </refsect1>
 
diff --git a/docs/docbook/projdoc/ADS-HOWTO.sgml b/docs/docbook/projdoc/ADS-HOWTO.sgml
index 3e34d53c0af..0d2fda5f78c 100644
--- a/docs/docbook/projdoc/ADS-HOWTO.sgml
+++ b/docs/docbook/projdoc/ADS-HOWTO.sgml
@@ -7,11 +7,13 @@
 	<pubdate>2002</pubdate>
 </chapterinfo>
 
-<title>Samba as a ADS domain member</title>
+<title>Using samba 3.0 with ActiveDirectory support</title>
 
 <para>
-This is a rough guide to setting up Samba 3.0 with kerberos authentication against a
-Windows2000 KDC. 
+This is a VERY ROUGH guide to setting up the current (November 2001)
+pre-alpha version of Samba 3.0 with kerberos authentication against a
+Windows2000 KDC. The procedures listed here are likely to change as
+the code develops.
 </para>
 
 <para>Pieces you need before you begin:
@@ -74,17 +76,13 @@ to get them off CD2.</para>
 
 <para><programlisting>
   realm = YOUR.KERBEROS.REALM
+  ads server = your.kerberos.server
   security = ADS
   encrypt passwords = yes
 </programlisting></para>
 
-<para>
-In case samba can't figure out your ads server using your realm name, use the 
-<command>ads server</command> option in <filename>smb.conf</filename>:
-<programlisting>
-  ads server = your.kerberos.server
-</programlisting>
-</para>
+<para>Strictly speaking, you can omit the realm name and you can use an IP
+  address for the ads server. In that case Samba will auto-detect these.</para>
 
 <para>You do *not* need a smbpasswd file, although it won't do any harm
   and if you have one then Samba will be able to fall back to normal
diff --git a/docs/docbook/projdoc/Browsing.sgml b/docs/docbook/projdoc/Browsing.sgml
index 13d6fce9179..a463ea786b4 100644
--- a/docs/docbook/projdoc/Browsing.sgml
+++ b/docs/docbook/projdoc/Browsing.sgml
@@ -461,7 +461,7 @@ all smb.conf files :
 </para>
 
 <para>
-<command>wins server = &gt;name or IP address&lt;</command>
+<command>		wins server = &gt;name or IP address&lt;</command>
 </para>
 
 <para>
@@ -512,7 +512,7 @@ set the following option in the [global] section of the smb.conf file :
 </para>
 
 <para>
-<command>domain master = yes</command>
+<command>		domain master = yes</command>
 </para>
 
 <para>
diff --git a/docs/docbook/projdoc/Bugs.sgml b/docs/docbook/projdoc/Bugs.sgml
index a9493b07d4c..5a24458e080 100644
--- a/docs/docbook/projdoc/Bugs.sgml
+++ b/docs/docbook/projdoc/Bugs.sgml
@@ -15,8 +15,7 @@
 <title>Introduction</title>
 
 <para>
-The email address for bug reports for stable releases is <ulink url="samba@samba.org">samba@samba.org</ulink>. 
-Bug reports for alpha releases should go to <ulink url="mailto:samba-technical@samba.org">samba-technical@samba.org</ulink>.
+The email address for bug reports is samba@samba.org
 </para>
 
 <para>
@@ -45,7 +44,7 @@ that list that may be able to help you.
 <para>
 You may also like to look though the recent mailing list archives,
 which are conveniently accessible on the Samba web pages
-at <ulink url="http://samba.org/samba/">http://samba.org/samba/</ulink>.
+at http://samba.org/samba/ 
 </para>
 
 </sect1>
diff --git a/docs/docbook/projdoc/DOMAIN_MEMBER.sgml b/docs/docbook/projdoc/DOMAIN_MEMBER.sgml
index 8a30a5527df..6d0b36eafcc 100644
--- a/docs/docbook/projdoc/DOMAIN_MEMBER.sgml
+++ b/docs/docbook/projdoc/DOMAIN_MEMBER.sgml
@@ -25,7 +25,7 @@
 </chapterinfo>
 
 
-<title>Samba as a NT4 domain member</title>
+<title>security = domain in Samba 2.x</title>
 
 <sect1>
 
@@ -139,11 +139,10 @@
 
 <sect1>
 <title>Samba and Windows 2000 Domains</title>
-<!-- FIXME: this section is partly obsoleted - jelmer@samba.org -->
 
 <para>
 Many people have asked regarding the state of Samba's ability to participate in
-a Windows 2000 Domain.  Samba 3.0 is able to act as a member server of a Windows
+a Windows 2000 Domain.  Samba 2.2 is able to act as a member server of a Windows
 2000 domain operating in mixed or native mode.
 </para>
 
@@ -165,6 +164,7 @@ Computers" MMC (Microsoft Management Console) plugin.
 
 </sect1>
 
+
 <sect1>
 	<title>Why is this better than security = server?</title>
 
diff --git a/docs/docbook/projdoc/Diagnosis.sgml b/docs/docbook/projdoc/Diagnosis.sgml
index b2d7abb6569..3cc0bab5d5d 100644
--- a/docs/docbook/projdoc/Diagnosis.sgml
+++ b/docs/docbook/projdoc/Diagnosis.sgml
@@ -7,14 +7,7 @@
 			<address><email>tridge@samba.org</email></address>
 		</affiliation>
 	</author>
-	<author>
-		<firstname>Jelmer</firstname><surname>Vernooij</surname>
-		<affiliation>
-			<orgname>Samba Team</orgname>
-			<address><email>jelmer@samba.org</email></address>
-		</affiliation>
-	</author>
-	<pubdate>$Id: Diagnosis.sgml,v 1.3 2002/11/02 00:20:29 jelmer Exp $</pubdate>
+	<pubdate> 1 November 1999</pubdate>
 </chapterinfo>
 
 <title>Diagnosing your samba server</title>
@@ -30,15 +23,15 @@ then it is probably working fine.
 </para>
 
 <para>
-You should do ALL the tests, in the order shown. We have tried to
+You should do ALL the tests, in the order shown. I have tried to
 carefully choose them so later tests only use capabilities verified in
 the earlier tests.
 </para>
 
 <para>
-If you send one of the samba mailing lists  an email saying "it doesn't work"
-and you have not followed this test procedure then you should not be surprised
-your email is ignored.
+If you send me an email saying "it doesn't work" and you have not
+followed this test procedure then you should not be surprised if I
+ignore your email.
 </para>
 
 </sect1>
@@ -47,8 +40,11 @@ your email is ignored.
 <title>Assumptions</title>
 
 <para>
-In all of the tests it is assumed you have a Samba server called 
-BIGSERVER and a PC called ACLIENT both in workgroup TESTGROUP.
+In all of the tests I assume you have a Samba server called BIGSERVER
+and a PC called ACLIENT both in workgroup TESTGROUP. I also assume the
+PC is running windows for workgroups with a recent copy of the
+microsoft tcp/ip stack. Alternatively, your PC may be running Windows
+95 or Windows NT (Workstation or Server).
 </para>
 
 <para>
@@ -56,7 +52,7 @@ The procedure is similar for other types of clients.
 </para>
 
 <para>
-It is also assumed you know the name of an available share in your
+I also assume you know the name of an available share in your
 smb.conf. I will assume this share is called "tmp". You can add a
 "tmp" share like by adding the following to smb.conf:
 </para>
@@ -72,7 +68,7 @@ smb.conf. I will assume this share is called "tmp". You can add a
 </para>
 
 <para>
-THESE TESTS ASSUME VERSION 3.0.0 OR LATER OF THE SAMBA SUITE. SOME
+THESE TESTS ASSUME VERSION 2.0.6 OR LATER OF THE SAMBA SUITE. SOME
 COMMANDS SHOWN DID NOT EXIST IN EARLIER VERSIONS
 </para>
 
@@ -103,7 +99,7 @@ configuration file is faulty.
 </para>
 
 <para>
-Note:	Your smb.conf file may be located in: <filename>/etc/samba</filename>
+Note:	Your smb.conf file may be located in: <filename>/etc</filename>
 	Or in:   <filename>/usr/local/samba/lib</filename>
 </para>
 </sect2>
diff --git a/docs/docbook/projdoc/ENCRYPTION.sgml b/docs/docbook/projdoc/ENCRYPTION.sgml
index f903d7d3347..6a26dbeffac 100644
--- a/docs/docbook/projdoc/ENCRYPTION.sgml
+++ b/docs/docbook/projdoc/ENCRYPTION.sgml
@@ -7,42 +7,88 @@
 		<affiliation>
 			<orgname>Samba Team</orgname>
 			<address>
-				<email>jra@samba.org</email>
-			</address>
-		</affiliation>
-	</author>
-
-	<author>
-		<firstname>Jelmer</firstname><surname>Vernooij</surname>
-		<affiliation>
-			<orgname>Samba Team</orgname>
-			<address>
-				<email>jelmer@samba.org</email>
+				<email>samba@samba.org</email>
 			</address>
 		</affiliation>
 	</author>
+	
 
-	<pubdate>4 November 2002</pubdate>
+	<pubdate>19 Apr 1999</pubdate>
 </chapterinfo>
 	
-<title>LanMan and NT Password Encryption in Samba</title>
+<title>LanMan and NT Password Encryption in Samba 2.x</title>
 
 
 <sect1>
 	<title>Introduction</title>
 	
-	<para>Newer windows clients send encrypted passwords over 
-	the wire, instead of plain text passwords. The newest clients 
-	will only send encrypted passwords and refuse to send plain text 
-	passwords, unless their registry is tweaked.</para>
+	<para>With the development of LanManager and Windows NT 
+	compatible password encryption for Samba, it is now able 
+	to validate user connections in exactly the same way as 
+	a LanManager or Windows NT server.</para>
 
-	<para>These passwords can't be converted to unix style encrypted 
-	passwords. Because of that you can't use the standard unix 
-	user database, and you have to store the Lanman and NT hashes 
-	somewhere else. For more information, see the documentation 
-	about the <command>passdb backend = </command> parameter.
-	</para>
+	<para>This document describes how the SMB password encryption 
+	algorithm works and what issues there are in choosing whether 
+	you want to use it. You should read it carefully, especially 
+	the part about security and the "PROS and CONS" section.</para>
+	
+</sect1>
+
+<sect1>
+	<title>How does it work?</title>
+
+	<para>LanManager encryption is somewhat similar to UNIX 
+	password encryption. The server uses a file containing a 
+	hashed value of a user's password.  This is created by taking 
+	the user's plaintext password, capitalising it, and either 
+	truncating to 14 bytes or padding to 14 bytes with null bytes. 
+	This 14 byte value is used as two 56 bit DES keys to encrypt 
+	a 'magic' eight byte value, forming a 16 byte value which is 
+	stored by the server and client. Let this value be known as 
+	the "hashed password".</para>
+	
+	<para>Windows NT encryption is a higher quality mechanism, 
+	consisting of doing an MD4 hash on a Unicode version of the user's 
+	password. This also produces a 16 byte hash value that is 
+	non-reversible.</para>
+
+	<para>When a client (LanManager, Windows for WorkGroups, Windows 
+	95 or Windows NT) wishes to mount a Samba drive (or use a Samba 
+	resource), it first requests a connection and negotiates the 
+	protocol that the client and server will use. In the reply to this 
+	request the Samba server generates and appends an 8 byte, random 
+	value - this is stored in the Samba server after the reply is sent 
+	and is known as the "challenge".  The challenge is different for 
+	every client connection.</para>
+
+	<para>The client then uses the hashed password (16 byte values 
+	described above), appended with 5 null bytes, as three 56 bit 
+	DES keys, each of which is used to encrypt the challenge 8 byte 
+	value, forming a 24 byte value known as the "response".</para>
+
+	<para>In the SMB call SMBsessionsetupX (when user level security 
+	is selected) or the call SMBtconX (when share level security is 
+	selected), the 24 byte response is returned by the client to the 
+	Samba server.  For Windows NT protocol levels the above calculation 
+	is done on both hashes of the user's password and both responses are 
+	returned in the SMB call, giving two 24 byte values.</para>
 
+	<para>The Samba server then reproduces the above calculation, using 
+	its own stored value of the 16 byte hashed password (read from the 
+	<filename>smbpasswd</filename> file - described later) and the challenge 
+	value that it kept from the negotiate protocol reply. It then checks 
+	to see if the 24 byte value it calculates matches the 24 byte value 
+	returned to it from the client.</para>
+
+	<para>If these values match exactly, then the client knew the 
+	correct password (or the 16 byte hashed value - see security note 
+	below) and is thus allowed access. If not, then the client did not 
+	know the correct password and is denied access.</para>
+
+	<para>Note that the Samba server never knows or stores the cleartext 
+	of the user's password - just the 16 byte hashed values derived from 
+	it. Also note that the cleartext password or 16 byte hashed values 
+	are never transmitted over the network - thus increasing security.</para>
 </sect1>
 
 <sect1>
@@ -137,6 +183,111 @@
 </sect1>
 
 
+<sect1>
+	<title><anchor id="SMBPASSWDFILEFORMAT">The smbpasswd file</title>
+	
+	<para>In order for Samba to participate in the above protocol 
+	it must be able to look up the 16 byte hashed values given a user name.
+	Unfortunately, as the UNIX password value is also a one way hash
+	function (ie. it is impossible to retrieve the cleartext of the user's
+	password given the UNIX hash of it), a separate password file
+	containing this 16 byte value must be kept. To minimise problems with
+	these two password files, getting out of sync, the UNIX <filename>
+	/etc/passwd</filename> and the <filename>smbpasswd</filename> file, 
+	a utility, <command>mksmbpasswd.sh</command>, is provided to generate
+	a smbpasswd file from a UNIX <filename>/etc/passwd</filename> file.
+	</para
+
+
+	<para>To generate the smbpasswd file from your <filename>/etc/passwd
+	</filename> file use the following command :</para>
+	
+	<para><prompt>$ </prompt><userinput>cat /etc/passwd | mksmbpasswd.sh
+	&gt; /usr/local/samba/private/smbpasswd</userinput></para>
+	
+	<para>If you are running on a system that uses NIS, use</para>
+
+	<para><prompt>$ </prompt><userinput>ypcat passwd | mksmbpasswd.sh
+	&gt; /usr/local/samba/private/smbpasswd</userinput></para>
+	
+	<para>The <command>mksmbpasswd.sh</command> program is found in 
+	the Samba source directory. By default, the smbpasswd file is 
+	stored in :</para>
+
+	<para><filename>/usr/local/samba/private/smbpasswd</filename></para>
+
+	<para>The owner of the <filename>/usr/local/samba/private/</filename> 
+	directory should be set to root, and the permissions on it should 
+	be set to 0500 (<command>chmod 500 /usr/local/samba/private</command>).
+	</para>
+
+	<para>Likewise, the smbpasswd file inside the private directory should 
+	be owned by root and the permissions on is should be set to 0600
+	(<command>chmod 600 smbpasswd</command>).</para>
+
+
+	<para>The format of the smbpasswd file is (The line has been 
+	wrapped here. It should appear as one entry per line in 
+	your smbpasswd file.)</para>
+	
+	<para><programlisting>
+username:uid:XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX:XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX:
+	[Account type]:LCT-&lt;last-change-time&gt;:Long name
+	</programlisting></para>
+	
+	<para>Although only the <replaceable>username</replaceable>, 
+	<replaceable>uid</replaceable>, <replaceable>
+	XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX</replaceable>,
+	[<replaceable>Account type</replaceable>] and <replaceable>
+	last-change-time</replaceable> sections are significant 
+	and are looked at in the Samba code.</para>
+
+	<para>It is <emphasis>VITALLY</emphasis> important that there by 32 
+	'X' characters between the two ':' characters in the XXX sections - 
+	the smbpasswd and Samba code will fail to validate any entries that 
+	do not have 32 characters  between ':' characters. The first XXX 
+	section is for the Lanman password hash, the second is for the 
+	Windows NT version.</para>
+
+	<para>When the password file is created all users have password entries
+	consisting of 32 'X' characters. By default this disallows any access
+	as this user. When a user has a password set, the 'X' characters change
+	to 32 ascii hexadecimal digits (0-9, A-F). These are an ascii
+	representation of the 16 byte hashed value of a user's password.</para>
+
+	<para>To set a user to have no password (not recommended), edit the file
+	using vi, and replace the first 11 characters with the ascii text
+	<constant>"NO PASSWORD"</constant> (minus the quotes).</para>
+
+	<para>For example, to clear the password for user bob, his smbpasswd file 
+	entry would look like :</para>
+
+	<para><programlisting>
+	bob:100:NO PASSWORDXXXXXXXXXXXXXXXXXXXXX:XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX:[U          ]:LCT-00000000:Bob's full name:/bobhome:/bobshell
+	</programlisting></para>
+	
+	<para>If you are allowing users to use the smbpasswd command to set 
+	their own passwords, you may want to give users NO PASSWORD initially 
+	so they do not have to enter a previous password when changing to their 
+	new password (not recommended). In order for you to allow this the
+	<command>smbpasswd</command> program must be able to connect to the 
+	<command>smbd</command> daemon as that user with no password. Enable this 
+	by adding the line :</para>
+
+	<para><command>null passwords = yes</command></para>
+	
+	<para>to the [global] section of the smb.conf file (this is why 
+	the above scenario is not recommended). Preferably, allocate your
+	users a default password to begin with, so you do not have
+	to enable this on your server.</para>
+
+	<para><emphasis>Note : </emphasis>This file should be protected very 
+	carefully. Anyone with access to this file can (with enough knowledge of 
+	the protocols) gain access to your SMB server. The file is thus more 
+	sensitive than a normal unix <filename>/etc/passwd</filename> file.</para>
+</sect1>
+
+
 <sect1>
 	<title>The smbpasswd Command</title>
 	
@@ -146,14 +297,25 @@
 	install it in <filename>/usr/local/samba/bin/</filename> (or your 
 	main Samba binary directory).</para>
 
+	<para>Note that as of Samba 1.9.18p4 this program <emphasis>MUST NOT 
+	BE INSTALLED</emphasis> setuid root (the new <command>smbpasswd</command> 
+	code enforces this restriction so it cannot be run this way by 
+	accident).</para>
+
 	<para><command>smbpasswd</command> now works in a client-server mode 
 	where it contacts the local smbd to change the user's password on its 
 	behalf. This has enormous benefits - as follows.</para>
 
-	<para><command>smbpasswd</command> now has the capability 
-	to change passwords on Windows NT servers (this only works when 
-	the request is sent to the NT Primary Domain Controller if you 
-	are changing an NT Domain user's password).</para>
+	<itemizedlist>
+		<listitem><para>smbpasswd no longer has to be setuid root - 
+		an enormous range of potential security problems is 
+		eliminated.</para></listitem>
+		
+		<listitem><para><command>smbpasswd</command> now has the capability 
+		to change passwords on Windows NT servers (this only works when 
+		the request is sent to the NT Primary Domain Controller if you 
+		are changing an NT Domain user's password).</para></listitem>
+	</itemizedlist>
 	
 	<para>To run smbpasswd as a normal user just type :</para>
 	
@@ -186,4 +348,31 @@
 	to the man page which will always be the definitive reference.</para>
 </sect1>
 
+
+<sect1>
+	<title>Setting up Samba to support LanManager Encryption</title>
+
+	<para>This is a very brief description on how to setup samba to 
+	support password encryption. </para>
+	
+	<orderedlist numeration="Arabic">
+		<listitem><para>compile and install samba as usual</para>
+		</listitem>
+		
+		<listitem><para>enable encrypted passwords in <filename>
+		smb.conf</filename> by adding the line <command>encrypt 
+		passwords = yes</command> in the [global] section</para>
+		</listitem>
+		
+		<listitem><para>create the initial <filename>smbpasswd</filename>
+		password file in the place you specified in the Makefile 
+		(--prefix=&lt;dir&gt;). See the notes under the <link
+		linkend="SMBPASSWDFILEFORMAT">The smbpasswd File</link>
+		section earlier in the document for details.</para>
+		</listitem>
+	</orderedlist>
+	
+	<para>Note that you can test things using smbclient.</para> 
+</sect1>
+
 </chapter>
diff --git a/docs/docbook/projdoc/Integrating-with-Windows.sgml b/docs/docbook/projdoc/Integrating-with-Windows.sgml
index 3b0faf81af9..701e48678c3 100644
--- a/docs/docbook/projdoc/Integrating-with-Windows.sgml
+++ b/docs/docbook/projdoc/Integrating-with-Windows.sgml
@@ -253,7 +253,7 @@ principal of speaking only when necessary.
 </para>
 
 <para>
-Starting with version 2.2.0 samba has Linux support for extensions to 
+Samba version 2.2.0 will add Linux support for extensions to 
 the name service switch infrastructure so that linux clients will 
 be able to obtain resolution of MS Windows NetBIOS names to IP 
 Addresses. To gain this functionality Samba needs to be compiled 
diff --git a/docs/docbook/projdoc/Printing.sgml b/docs/docbook/projdoc/Printing.sgml
new file mode 100644
index 00000000000..ce9f40e88bf
--- /dev/null
+++ b/docs/docbook/projdoc/Printing.sgml
@@ -0,0 +1,398 @@
+<chapter id="printingdebug">
+<chapterinfo>
+	<author>
+		<firstname>Patrick</firstname><surname>Powell</surname>
+		<affiliation>
+			<address><email>papowell@lprng.org</email></address>
+		</affiliation>
+	</author>
+	<pubdate>11 August 2000</pubdate>
+</chapterinfo>
+
+<title>Debugging Printing Problems</title>
+
+<sect1>
+<title>Introduction</title>
+
+<para>
+This is a short description of how to debug printing problems with
+Samba. This describes how to debug problems with printing from a SMB
+client to a Samba server, not the other way around. For the reverse
+see the examples/printing directory.
+</para>
+
+<para>
+Ok, so you want to print to a Samba server from your PC. The first
+thing you need to understand is that Samba does not actually do any
+printing itself, it just acts as a middleman between your PC client
+and your Unix printing subsystem. Samba receives the file from the PC
+then passes the file to a external "print command". What print command
+you use is up to you.
+</para>
+
+<para>
+The whole things is controlled using options in smb.conf. The most
+relevant options (which you should look up in the smb.conf man page)
+are:
+</para>
+
+<para><programlisting>
+      [global]
+        print command     - send a file to a spooler
+        lpq command       - get spool queue status
+        lprm command      - remove a job
+      [printers]
+        path = /var/spool/lpd/samba
+</programlisting></para>
+
+<para>
+The following are nice to know about:
+</para>
+
+<para><programlisting>
+        queuepause command   - stop a printer or print queue
+        queueresume command  - start a printer or print queue
+</programlisting></para>
+
+<para>
+Example:
+</para>
+
+<para><programlisting>
+        print command = /usr/bin/lpr -r -P%p %s
+        lpq command   = /usr/bin/lpq    -P%p %s
+        lprm command  = /usr/bin/lprm   -P%p %j
+        queuepause command = /usr/sbin/lpc -P%p stop
+        queuepause command = /usr/sbin/lpc -P%p start
+</programlisting></para>
+
+<para>
+Samba should set reasonable defaults for these depending on your
+system type, but it isn't clairvoyant. It is not uncommon that you
+have to tweak these for local conditions.  The commands should
+always have fully specified pathnames,  as the smdb may not have
+the correct PATH values.
+</para>
+
+<para>
+When you send a job to Samba to be printed,  it will make a temporary
+copy of it in the directory specified in the [printers] section.
+and it should be periodically cleaned out.  The lpr -r option
+requests that the temporary copy be removed after printing; If
+printing fails then you might find leftover files in this directory,
+and it should be periodically cleaned out.  Samba used the lpq
+command to determine the "job number" assigned to your print job
+by the spooler.
+</para>
+
+<para>
+The %&gt;letter&lt; are "macros" that get dynamically replaced with appropriate
+values when they are used. The %s gets replaced with the name of the spool
+file that Samba creates and the %p gets replaced with the name of the
+printer. The %j gets replaced with the "job number" which comes from
+the lpq output.
+</para>
+
+</sect1>
+
+<sect1>
+<title>Debugging printer problems</title>
+
+<para>
+One way to debug printing problems is to start by replacing these
+command with shell scripts that record the arguments and the contents
+of the print file. A simple example of this kind of things might
+be:
+</para>
+
+<para><programlisting>
+	print command = /tmp/saveprint %p %s
+
+    #!/bin/saveprint
+    # we make sure that we are the right user
+    /usr/bin/id -p >/tmp/tmp.print
+    # we run the command and save the error messages
+    # replace the command with the one appropriate for your system
+    /usr/bin/lpr -r -P$1 $2 2>>&/tmp/tmp.print
+</programlisting></para>
+
+<para>
+Then you print a file and try removing it.  You may find that the
+print queue needs to be stopped in order to see the queue status
+and remove the job:
+</para>
+
+<para><programlisting>
+
+h4: {42} % echo hi >/tmp/hi
+h4: {43} % smbclient //localhost/lw4
+added interface ip=10.0.0.4 bcast=10.0.0.255 nmask=255.255.255.0
+Password: 
+Domain=[ASTART] OS=[Unix] Server=[Samba 2.0.7]
+smb: \> print /tmp/hi
+putting file /tmp/hi as hi-17534 (0.0 kb/s) (average 0.0 kb/s)
+smb: \> queue
+1049     3            hi-17534
+smb: \> cancel 1049
+Error cancelling job 1049 : code 0
+smb: \> cancel 1049
+Job 1049 cancelled
+smb: \> queue
+smb: \> exit
+</programlisting></para>
+
+<para>
+The 'code 0' indicates that the job was removed.  The comment
+by the  smbclient is a bit misleading on this.
+You can observe the command output and then and look at the
+/tmp/tmp.print file to see what the results are.  You can quickly
+find out if the problem is with your printing system.  Often people
+have problems with their /etc/printcap file or permissions on
+various print queues.
+</para>
+</sect1>
+
+<sect1>
+<title>What printers do I have?</title>
+
+<para>
+You can use the 'testprns' program to check to see if the printer
+name you are using is recognized by Samba.  For example,  you can
+use:
+</para>
+
+<para><programlisting>
+    testprns printer /etc/printcap
+</programlisting></para>
+
+<para>
+Samba can get its printcap information from a file or from a program.
+You can try the following to see the format of the extracted
+information:
+</para>
+
+<para><programlisting>
+    testprns -a printer /etc/printcap
+
+    testprns -a printer '|/bin/cat printcap'
+</programlisting></para>
+
+</sect1>
+
+<sect1>
+<title>Setting up printcap and print servers</title>
+
+<para>
+You may need to set up some printcaps for your Samba system to use.
+It is strongly recommended that you use the facilities provided by
+the print spooler to set up queues and printcap information.
+</para>
+
+<para>
+Samba requires either a printcap or program to deliver printcap
+information.  This printcap information has the format:
+</para>
+
+<para><programlisting>
+  name|alias1|alias2...:option=value:...
+</programlisting></para>
+
+<para>
+For almost all printing systems, the printer 'name' must be composed
+only of alphanumeric or underscore '_' characters.  Some systems also
+allow hyphens ('-') as well.  An alias is an alternative name for the
+printer,  and an alias with a space in it is used as a 'comment'
+about the printer.  The printcap format optionally uses a \ at the end of lines
+to extend the printcap to multiple lines.
+</para>
+
+<para>
+Here are some examples of printcap files:
+</para>
+
+<para>
+<orderedlist>
+<listitem><para>
+pr              just printer name
+</para></listitem>
+<listitem><para>
+pr|alias        printer name and alias
+</para></listitem>
+<listitem><para>
+pr|My Printer   printer name, alias used as comment
+</para></listitem>
+<listitem><para>
+pr:sh:\        Same as pr:sh:cm= testing
+  :cm= \ 
+  testing
+</para></listitem>
+<listitem><para>
+pr:sh           Same as pr:sh:cm= testing
+  :cm= testing
+</para></listitem>
+</orderedlist>
+</para>
+
+<para>
+Samba reads the printcap information when first started.  If you make
+changes in the printcap information, then you must do the following:
+</para>
+
+<orderedlist>
+
+<listitem><para>
+make sure that the print spooler is aware of these changes.
+The LPRng system uses the 'lpc reread' command to do this.
+</para></listitem>
+
+<listitem><para>
+make sure that the spool queues, etc., exist and have the
+correct permissions.  The LPRng system uses the 'checkpc -f'
+command to do this.
+</para></listitem>
+
+<listitem><para>
+You now should send a SIGHUP signal to the smbd server to have
+it reread the printcap information.
+</para></listitem>
+</orderedlist>
+
+</sect1>
+
+<sect1>
+<title>Job sent, no output</title>
+
+<para>
+This is the most frustrating part of printing.  You may have sent the
+job,  verified that the job was forwarded,  set up a wrapper around
+the command to send the file,  but there was no output from the printer.
+</para>
+
+<para>
+First,  check to make sure that the job REALLY is getting to the
+right print queue.  If you are using a BSD or LPRng print spooler,
+you can temporarily stop the printing of jobs.  Jobs can still be
+submitted, but they will not be printed.  Use:
+</para>
+
+<para><programlisting>
+  lpc -Pprinter stop
+</programlisting></para>
+
+<para>
+Now submit a print job and then use 'lpq -Pprinter' to see if the
+job is in the print queue.  If it is not in the print queue then
+you will have to find out why it is not being accepted for printing.
+</para>
+
+<para>
+Next, you may want to check to see what the format of the job really
+was.  With the assistance of the system administrator you can view
+the submitted jobs files.  You may be surprised to find that these
+are not in what you would expect to call a printable format.
+You can use the UNIX 'file' utitily to determine what the job
+format actually is:
+</para>
+
+<para><programlisting>
+    cd /var/spool/lpd/printer   # spool directory of print jobs
+    ls                          # find job files
+    file dfA001myhost
+</programlisting></para>
+
+<para>
+You should make sure that your printer supports this format OR that
+your system administrator has installed a 'print filter' that will
+convert the file to a format appropriate for your printer.
+</para>
+
+</sect1>
+
+<sect1>
+<title>Job sent, strange output</title>
+
+<para>
+Once you have the job printing, you can then start worrying about
+making it print nicely.
+</para>
+
+<para>
+The most common problem is extra pages of output: banner pages
+OR blank pages at the end.
+</para>
+
+<para>
+If you are getting banner pages,  check and make sure that the
+printcap option or printer option is configured for no banners.
+If you have a printcap,  this is the :sh (suppress header or banner
+page) option.  You should have the following in your printer.
+</para>
+
+<para><programlisting>
+   printer: ... :sh
+</programlisting></para>
+
+<para>
+If you have this option and are still getting banner pages,  there
+is a strong chance that your printer is generating them for you
+automatically.  You should make sure that banner printing is disabled
+for the printer.  This usually requires using the printer setup software
+or procedures supplied by the printer manufacturer.
+</para>
+
+<para>
+If you get an extra page of output,  this could be due to problems
+with your job format,  or if you are generating PostScript jobs,
+incorrect setting on your printer driver on the MicroSoft client.
+For example, under Win95 there is a option:
+</para>
+
+<para><programlisting>
+  Printers|Printer Name|(Right Click)Properties|Postscript|Advanced|
+</programlisting></para>
+
+<para>
+that allows you to choose if a Ctrl-D is appended to all jobs.
+This is a very bad thing to do, as most spooling systems will
+automatically add a ^D to the end of the job if it is detected as
+PostScript.  The multiple ^D may cause an additional page of output.
+</para>
+
+</sect1>
+
+<sect1>
+<title>Raw PostScript printed</title>
+
+<para>
+This is a problem that is usually caused by either the print spooling
+system putting information at the start of the print job that makes
+the printer think the job is a text file, or your printer simply
+does not support PostScript.  You may need to enable 'Automatic
+Format Detection' on your printer.
+</para>
+
+</sect1>
+
+<sect1>
+<title>Advanced Printing</title>
+
+<para>
+Note that you can do some pretty magic things by using your
+imagination with the "print command" option and some shell scripts.
+Doing print accounting is easy by passing the %U option to a print
+command shell script. You could even make the print command detect
+the type of output and its size and send it to an appropriate
+printer.
+</para>
+
+</sect1>
+
+<sect1>
+<title>Real debugging</title>
+
+<para>
+If the above debug tips don't help, then maybe you need to bring in
+the bug guns, system tracing. See Tracing.txt in this directory.
+</para>
+</sect1>
+</chapter>
diff --git a/docs/docbook/projdoc/Samba-PDC-HOWTO.sgml b/docs/docbook/projdoc/Samba-PDC-HOWTO.sgml
index 7cf3e5735c3..25a9783277b 100644
--- a/docs/docbook/projdoc/Samba-PDC-HOWTO.sgml
+++ b/docs/docbook/projdoc/Samba-PDC-HOWTO.sgml
@@ -19,7 +19,7 @@
 </chapterinfo>
 
 <title>
-How to Configure Samba as a NT4 Primary Domain Controller
+How to Configure Samba 2.2 as a Primary Domain Controller
 </title>
 
 
diff --git a/docs/docbook/projdoc/Speed.sgml b/docs/docbook/projdoc/Speed.sgml
index 55d8b9492b2..17adf104291 100644
--- a/docs/docbook/projdoc/Speed.sgml
+++ b/docs/docbook/projdoc/Speed.sgml
@@ -53,6 +53,92 @@ systems.
 
 </sect1>
 
+<sect1>
+<title>Oplocks</title>
+
+<sect2>
+<title>Overview</title>
+
+<para>
+Oplocks are the way that SMB clients get permission from a server to
+locally cache file operations. If a server grants an oplock
+(opportunistic lock) then the client is free to assume that it is the
+only one accessing the file and it will agressively cache file
+data. With some oplock types the client may even cache file open/close
+operations. This can give enormous performance benefits.
+</para>
+
+<para>
+With the release of Samba 1.9.18 we now correctly support opportunistic 
+locks. This is turned on by default, and can be turned off on a share-
+by-share basis by setting the parameter :
+</para>
+
+<para>
+<command>oplocks = False</command>
+</para>
+
+<para>
+We recommend that you leave oplocks on however, as current benchmark
+tests with NetBench seem to give approximately a 30% improvement in
+speed with them on. This is on average however, and the actual 
+improvement seen can be orders of magnitude greater, depending on
+what the client redirector is doing.
+</para>
+
+<para>
+Previous to Samba 1.9.18 there was a 'fake oplocks' option. This
+option has been left in the code for backwards compatibility reasons
+but it's use is now deprecated. A short summary of what the old
+code did follows.
+</para>
+
+</sect2>
+
+<sect2>
+<title>Level2 Oplocks</title>
+
+<para>
+With Samba 2.0.5 a new capability - level2 (read only) oplocks is
+supported (although the option is off by default - see the smb.conf
+man page for details). Turning on level2 oplocks (on a share-by-share basis)
+by setting the parameter :
+</para>
+
+<para>
+<command>level2 oplocks = true</command>
+</para>
+
+<para>
+should speed concurrent access to files that are not commonly written
+to, such as application serving shares (ie. shares that contain common
+.EXE files - such as a Microsoft Office share) as it allows clients to
+read-ahread cache copies of these files.
+</para>
+
+</sect2>
+
+<sect2>
+<title>Old 'fake oplocks' option - deprecated</title>
+
+<para>
+Samba can also fake oplocks, by granting a oplock whenever a client 
+asks for one. This is controlled using the smb.conf option "fake 
+oplocks". If you set "fake oplocks = yes" then you are telling the 
+client that it may agressively cache the file data for all opens.
+</para>
+
+<para>
+Enabling 'fake oplocks' on all read-only shares or shares that you know
+will only be accessed from one client at a time you will see a big
+performance improvement on many operations. If you enable this option
+on shares where multiple clients may be accessing the files read-write
+at the same time you can get data corruption.
+</para>
+
+</sect2>
+</sect1>
+
 <sect1>
 <title>Socket options</title>
 
@@ -140,6 +226,55 @@ In most cases the default is the best option.
 
 </sect1>
 
+<sect1>
+<title>Locking</title>
+
+<para>
+By default Samba does not implement strict locking on each read/write
+call (although it did in previous versions). If you enable strict
+locking (using "strict locking = yes") then you may find that you
+suffer a severe performance hit on some systems.
+</para>
+
+<para>
+The performance hit will probably be greater on NFS mounted
+filesystems, but could be quite high even on local disks.
+</para>
+
+</sect1>
+
+<sect1>
+<title>Share modes</title>
+
+<para>
+Some people find that opening files is very slow. This is often
+because of the "share modes" code needed to fully implement the dos
+share modes stuff. You can disable this code using "share modes =
+no". This will gain you a lot in opening and closing files but will
+mean that (in some cases) the system won't force a second user of a
+file to open the file read-only if the first has it open
+read-write. For many applications that do their own locking this
+doesn't matter, but for some it may. Most Windows applications
+depend heavily on "share modes" working correctly and it is
+recommended that the Samba share mode support be left at the
+default of "on".
+</para>
+
+<para>
+The share mode code in Samba has been re-written in the 1.9.17
+release following tests with the Ziff-Davis NetBench PC Benchmarking
+tool. It is now believed that Samba 1.9.17 implements share modes
+similarly to Windows NT.
+</para>
+
+<para>
+NOTE: In the most recent versions of Samba there is an option to use
+shared memory via mmap() to implement the share modes. This makes
+things much faster. See the Makefile for how to enable this.
+</para>
+
+</sect1>
+
 <sect1>
 <title>Log level</title>
 
@@ -151,6 +286,18 @@ expensive.
 </para>
 </sect1>
 
+<sect1>
+<title>Wide lines</title>
+
+<para>
+The "wide links" option is now enabled by default, but if you disable
+it (for better security) then you may suffer a performance hit in
+resolving filenames. The performance loss is lessened if you have
+"getwd cache = yes", which is now the default.
+</para>
+
+</sect1>
+
 <sect1>
 <title>Read raw</title>
 
@@ -192,6 +339,61 @@ case you may wish to change this option.
 
 </sect1>
 
+<sect1>
+<title>Read prediction</title>
+
+<para>
+Samba can do read prediction on some of the SMB commands. Read
+prediction means that Samba reads some extra data on the last file it
+read while waiting for the next SMB command to arrive. It can then
+respond more quickly when the next read request arrives.
+</para>
+
+<para>
+This is disabled by default. You can enable it by using "read
+prediction = yes".
+</para>
+
+<para>
+Note that read prediction is only used on files that were opened read
+only.
+</para>
+
+<para>
+Read prediction should particularly help for those silly clients (such
+as "Write" under NT) which do lots of very small reads on a file.
+</para>
+
+<para>
+Samba will not read ahead more data than the amount specified in the
+"read size" option. It always reads ahead on 1k block boundaries.
+</para>
+
+</sect1>
+
+<sect1>
+<title>Memory mapping</title>
+
+<para>
+Samba supports reading files via memory mapping them. One some
+machines this can give a large boost to performance, on others it
+makes not difference at all, and on some it may reduce performance.
+</para>
+
+<para>
+To enable you you have to recompile Samba with the -DUSE_MMAP option
+on the FLAGS line of the Makefile.
+</para>
+
+<para>
+Note that memory mapping is only used on files opened read only, and
+is not used by the "read raw" operation. Thus you may find memory
+mapping is more effective if you disable "read raw" using "read raw =
+no".
+</para>
+
+</sect1>
+
 <sect1>
 <title>Slow Clients</title>
 
@@ -308,12 +510,11 @@ drive (Kernel 2.0.30). The transfer rate was reasonable for 10 baseT.
 </para>
 
 <para>
-<programlisting>
+FIXME
 The figures are:          Put              Get 
 P166 client 3Com card:    420-440kB/s      500-520kB/s
 P100 client 3Com card:    390-410kB/s      490-510kB/s
 DX4-75 client NE2000:     370-380kB/s      330-350kB/s
-</programlisting>
 </para>
 
 <para>
@@ -340,5 +541,38 @@ if it could get up to the rate of FTP the perfomance would be quite
 staggering.
 </para>
 
+</sect1>
+
+<sect1>
+<title>My Results</title>
+
+<para>
+Some people want to see real numbers in a document like this, so here
+they are. I have a 486sx33 client running WfWg 3.11 with the 3.11b
+tcp/ip stack. It has a slow IDE drive and 20Mb of ram. It has a SMC
+Elite-16 ISA bus ethernet card. The only WfWg tuning I've done is to
+set DefaultRcvWindow in the [MSTCP] section of system.ini to 16384. My
+server is a 486dx3-66 running Linux. It also has 20Mb of ram and a SMC
+Elite-16 card. You can see my server config in the examples/tridge/
+subdirectory of the distribution.
+</para>
+
+<para>
+I get 490k/s on reading a 8Mb file with copy.
+I get 441k/s writing the same file to the samba server.
+</para>
+
+<para>
+Of course, there's a lot more to benchmarks than 2 raw throughput
+figures, but it gives you a ballpark figure.
+</para>
+
+<para>
+I've also tested Win95 and WinNT, and found WinNT gave me the best
+speed as a samba client. The fastest client of all (for me) is
+smbclient running on another linux box. Maybe I'll add those results
+here someday ...
+</para>
+
 </sect1>
 </chapter>
diff --git a/docs/docbook/projdoc/UNIX_INSTALL.sgml b/docs/docbook/projdoc/UNIX_INSTALL.sgml
index 1ff735a6568..c307636d5fa 100644
--- a/docs/docbook/projdoc/UNIX_INSTALL.sgml
+++ b/docs/docbook/projdoc/UNIX_INSTALL.sgml
@@ -3,17 +3,15 @@
 <title>How to Install and Test SAMBA</title>
 
 <sect1>
-	<title>Read the man pages</title>
+	<title>Step 0: Read the man pages</title>
 	
 	<para>The man pages distributed with SAMBA contain 
 	lots of useful info that will help to get you started. 
 	If you don't know how to read man pages then try 
 	something like:</para>
 
-	<para><prompt>$ </prompt><userinput>man smbd.8</userinput>
-	or 
-	<prompt>$ </prompt><userinput>nroff -man smbd.8 | more
-	</userinput> on older unixes.</para>
+	<para><prompt>$ </prompt><userinput>nroff -man smbd.8 | more
+	</userinput></para>
 	
 	<para>Other sources of information are pointed to 
 	by the Samba web site,<ulink url="http://www.samba.org/">
@@ -21,7 +19,7 @@
 </sect1>
 
 <sect1>
-	<title>Building the Binaries</title>
+	<title>Step 1: Building the Binaries</title>
 	
 	<para>To do this, first run the program <command>./configure
 	</command> in the source directory. This should automatically 
@@ -64,7 +62,7 @@
 </sect1>
 
 <sect1>
-	<title>The all important step</title>
+	<title>Step 2: The all important step</title>
 	
 	<para>At this stage you must fetch yourself a 
 	coffee or other drink you find stimulating. Getting the rest 
@@ -76,7 +74,7 @@
 </sect1>
 
 <sect1>
-	<title>Create the smb configuration file. </title>
+	<title>Step 3: Create the smb configuration file. </title>
 
 	<para>There are sample configuration files in the examples 
 	subdirectory in the distribution. I suggest you read them 
@@ -93,7 +91,7 @@
 	   [homes]
 	      guest ok = no
 	      read only = no
-	</programlisting></para>
+	</programlisting</para>
 	
 	<para>which would allow connections by anyone with an 
 	account on the server, using either their login name or 
@@ -113,7 +111,7 @@
 </sect1>
 
 <sect1>
-	<title>Test your config file with 
+	<title>Step 4: Test your config file with 
 	<command>testparm</command></title>
 
 	<para>It's important that you test the validity of your
@@ -124,13 +122,10 @@
 	<para>Make sure it runs OK and that the services look 
 	reasonable before proceeding. </para>
 
-	<para>Always run testparm again when you change 
-	<filename>smb.conf</filename>!</para>
-
 </sect1>
 
 <sect1>
-	<title>Starting the smbd and nmbd</title>
+	<title>Step 5: Starting the smbd and nmbd</title>
 
 	<para>You must choose to start smbd and nmbd either
 	as daemons or from <command>inetd</command>. Don't try
@@ -149,7 +144,7 @@
 	request.</para>
 
 	<sect2>
-		<title>Starting from inetd.conf</title>
+		<title>Step 5a: Starting from inetd.conf</title>
 
 		<para>NOTE; The following will be different if 
 		you use NIS or NIS+ to distributed services maps.</para>
@@ -201,7 +196,7 @@
 	</sect2>
 	
 	<sect2>
-		<title>Alternative: starting it as a daemon</title>
+		<title>Step 5b. Alternative: starting it as a daemon</title>
 
 		<para>To start the server as a daemon you should create 
 		a script something like this one, perhaps calling 
@@ -230,7 +225,7 @@
 </sect1>
 
 <sect1>
-	<title>Try listing the shares available on your 
+	<title>Step 6: Try listing the shares available on your 
 	server</title>
 
 	<para><prompt>$ </prompt><userinput>smbclient -L 
@@ -250,7 +245,7 @@
 </sect1>
 
 <sect1>
-	<title>Try connecting with the unix client</title>
+	<title>Step 7: Try connecting with the unix client</title>
 	
 	<para><prompt>$ </prompt><userinput>smbclient <replaceable>
 	//yourhostname/aservice</replaceable></userinput></para>
@@ -270,7 +265,7 @@
 </sect1>
 
 <sect1>
-	<title>Try connecting from a DOS, WfWg, Win9x, WinNT, 
+	<title>Step 8: Try connecting from a DOS, WfWg, Win9x, WinNT, 
 	Win2k, OS/2, etc... client</title>
 	
 	<para>Try mounting disks. eg:</para>
@@ -310,8 +305,8 @@
 	<sect2>
 		<title>Diagnosing Problems</title>
 
-		<para>If you have installation problems then go to the
-		<ulink url="Diagnosis.html">Diagnosis</ulink> chapter to try to find the 
+		<para>If you have installation problems then go to 
+		<filename>DIAGNOSIS.txt</filename> to try to find the 
 		problem.</para>
 	</sect2>
 	
@@ -429,8 +424,6 @@
 		its open. A client may ask for DENY_NONE, DENY_READ, DENY_WRITE 
 		or DENY_ALL. There are also special compatibility modes called 
 		DENY_FCB and  DENY_DOS.</para>
-
-		<!-- FIXME: Sync this with oplocks.sgml -->
 	</sect2>
 	
 	<sect2>
diff --git a/docs/docbook/projdoc/msdfs_setup.sgml b/docs/docbook/projdoc/msdfs_setup.sgml
index 6e1609460fc..35c9d40840a 100644
--- a/docs/docbook/projdoc/msdfs_setup.sgml
+++ b/docs/docbook/projdoc/msdfs_setup.sgml
@@ -11,7 +11,8 @@
 		</affiliation>
 	</author>
 	
-	<pubdate>12 Jul 2000</pubdate>
+		
+	<pubdate>12 Jul 200</pubdate>
 </chapterinfo>
 
 
diff --git a/docs/docbook/projdoc/printer_driver2.sgml b/docs/docbook/projdoc/printer_driver2.sgml
index 7bca8dc6f57..85ae0713b39 100644
--- a/docs/docbook/projdoc/printer_driver2.sgml
+++ b/docs/docbook/projdoc/printer_driver2.sgml
@@ -11,16 +11,12 @@
 			</address>
 		</affiliation>
 	</author>
-	<author>
-		<firstname>Patrick</firstname><surname>Powell</surname>
-		<affiliation>
-			<address><email>papowell@lprng.org</email></address>
-		</affiliation>
-	</author>
+	
+		
 	<pubdate> (3 May 2001) </pubdate>
 </chapterinfo>
 
-<title>Printing Support</title>
+<title>Printing Support in Samba 2.2.x</title>
 
 <sect1>
 <title>Introduction</title>
@@ -63,7 +59,12 @@ SPOOLSS support includes:</para>
 There has been some initial confusion about what all this means
 and whether or not it is a requirement for printer drivers to be 
 installed on a Samba host in order to support printing from Windows 
-clients. As a side note, Samba does not use these drivers in any way to process 
+clients.  A bug existed in Samba 2.2.0 which made Windows NT/2000 clients 
+require that the Samba server possess a valid driver for the printer.  
+This is fixed in Samba 2.2.1 and once again, Windows NT/2000 clients
+can use the local APW for installing drivers to be used with a Samba 
+served printer.  This is the same behavior exhibited by Windows 9x clients.
+As a side note, Samba does not use these drivers in any way to process 
 spooled files.  They are utilized entirely by the clients.
 </para>
 
@@ -103,9 +104,16 @@ parameter named <parameter>printer driver</parameter> provided
 a means of defining the printer driver name to be sent to 
 the client.
 </para>
-
-</warning>
  
+<para>
+These parameters, including <parameter>printer driver
+file</parameter> parameter, are being deprecated and should not 
+be used in new installations.  For more information on this change, 
+you should refer to the <link linkend="MIGRATION">Migration section</link>
+of this document.
+</para>
+</warning>
+
 <sect2>
 <title>Creating [print$]</title>	
 
@@ -235,8 +243,10 @@ that matches the printer shares defined on your Samba host.
 
 <para>The initial listing of printers in the Samba host's 
 Printers folder will have no real printer driver assigned 
-to them. This defaults to a NULL string to allow the use
-of the local Add Printer Wizard on NT/2000 clients.
+to them.  By default, in Samba 2.2.0 this driver name was set to 
+<emphasis>NO PRINTER DRIVER AVAILABLE FOR THIS PRINTER</emphasis>.
+Later versions changed this to a NULL string to allow the use
+tof the local Add Printer Wizard on NT/2000 clients.
 Attempting to view the printer properties for a printer
 which has this default driver assigned will result in 
 the error message:</para>
@@ -593,6 +603,84 @@ foreach (supported architecture for a given driver)
 	
 </sect1>
 
+
+<sect1>
+<title><anchor id="MIGRATION">Migration to from Samba 2.0.x to 2.2.x</title>
+
+<para>
+Given that printer driver management has changed (we hope improved) in 
+2.2 over prior releases, migration from an existing setup to 2.2 can 
+follow several paths. Here are the possible scenarios for 
+migration:
+</para>
+
+<itemizedlist>
+	<listitem><para>If you do not desire the new Windows NT 
+	print driver support, nothing needs to be done.  
+	All existing parameters work the same.</para></listitem>
+
+	<listitem><para>If you want to take advantage of NT printer 
+	driver support but do not want to migrate the 
+	9x drivers to the new setup, the leave the existing 
+	<filename>printers.def</filename> file.  When smbd attempts 
+	to locate a 
+	9x driver for the printer in the TDB and fails it 
+	will drop down to using the printers.def (and all 
+	associated parameters).  The <command>make_printerdef</command> 
+	tool will also remain for backwards compatibility but will 
+	be removed in the next major release.</para></listitem>
+
+	<listitem><para>If you install a Windows 9x driver for a printer 
+	on your Samba host (in the printing TDB), this information will 
+	take precedence and the three old printing parameters
+	will be ignored (including print driver location).</para></listitem>
+
+	<listitem><para>If you want to migrate an existing <filename>printers.def</filename> 
+	file into the new setup, the current only solution is to use the Windows 
+	NT APW to install the NT drivers and the 9x  drivers.  This can be scripted 
+	using <command>smbclient</command> and <command>rpcclient</command>.  See the 
+	Imprints installation client at <ulink 
+	url="http://imprints.sourceforge.net/">http://imprints.sourceforge.net/</ulink> 
+	for an example.
+	</para></listitem>
+</itemizedlist>
+
+
+<warning>
+<title>Achtung!</title>
+
+<para>
+The following <filename>smb.conf</filename> parameters are considered to 
+be deprecated and will be removed soon.  Do not use them in new 
+installations
+</para>
+		
+<itemizedlist>
+	<listitem><para><parameter>printer driver file (G)</parameter>
+	</para></listitem>
+			
+	<listitem><para><parameter>printer driver (S)</parameter>
+	</para></listitem>
+			
+	<listitem><para><parameter>printer driver location (S)</parameter>
+	</para></listitem>
+</itemizedlist>
+</warning>
+
+
+<para>
+The have been two new parameters add in Samba 2.2.2 to for 
+better support of Samba 2.0.x backwards capability (<parameter>disable
+spoolss</parameter>) and for using local printers drivers on Windows 
+NT/2000 clients (<parameter>use client driver</parameter>). Both of 
+these options are described in the smb.coinf(5) man page and are 
+disabled by default.
+</para>
+
+
+</sect1>
+
+
 <!--
 
   This comment from rpc_server/srv_spoolss_nt.c:_spoolss_open_printer_ex()
@@ -652,393 +740,4 @@ foreach (supported architecture for a given driver)
                  * on the Advanced Tab of the printer properties window.
 -->
 
-<sect1>
-<title>Diagnosis</title>
-
-<sect2>
-<title>Introduction</title>
-
-<para>
-This is a short description of how to debug printing problems with
-Samba. This describes how to debug problems with printing from a SMB
-client to a Samba server, not the other way around. For the reverse
-see the examples/printing directory.
-</para>
-
-<para>
-Ok, so you want to print to a Samba server from your PC. The first
-thing you need to understand is that Samba does not actually do any
-printing itself, it just acts as a middleman between your PC client
-and your Unix printing subsystem. Samba receives the file from the PC
-then passes the file to a external "print command". What print command
-you use is up to you.
-</para>
-
-<para>
-The whole things is controlled using options in smb.conf. The most
-relevant options (which you should look up in the smb.conf man page)
-are:
-</para>
-
-<para><programlisting>
-      [global]
-        print command     - send a file to a spooler
-        lpq command       - get spool queue status
-        lprm command      - remove a job
-      [printers]
-        path = /var/spool/lpd/samba
-</programlisting></para>
-
-<para>
-The following are nice to know about:
-</para>
-
-<para><programlisting>
-        queuepause command   - stop a printer or print queue
-        queueresume command  - start a printer or print queue
-</programlisting></para>
-
-<para>
-Example:
-</para>
-
-<para><programlisting>
-        print command = /usr/bin/lpr -r -P%p %s
-        lpq command   = /usr/bin/lpq    -P%p %s
-        lprm command  = /usr/bin/lprm   -P%p %j
-        queuepause command = /usr/sbin/lpc -P%p stop
-        queuepause command = /usr/sbin/lpc -P%p start
-</programlisting></para>
-
-<para>
-Samba should set reasonable defaults for these depending on your
-system type, but it isn't clairvoyant. It is not uncommon that you
-have to tweak these for local conditions.  The commands should
-always have fully specified pathnames,  as the smdb may not have
-the correct PATH values.
-</para>
-
-<para>
-When you send a job to Samba to be printed,  it will make a temporary
-copy of it in the directory specified in the [printers] section.
-and it should be periodically cleaned out.  The lpr -r option
-requests that the temporary copy be removed after printing; If
-printing fails then you might find leftover files in this directory,
-and it should be periodically cleaned out.  Samba used the lpq
-command to determine the "job number" assigned to your print job
-by the spooler.
-</para>
-
-<para>
-The %&gt;letter&lt; are "macros" that get dynamically replaced with appropriate
-values when they are used. The %s gets replaced with the name of the spool
-file that Samba creates and the %p gets replaced with the name of the
-printer. The %j gets replaced with the "job number" which comes from
-the lpq output.
-</para>
-
-</sect2>
-
-<sect2>
-<title>Debugging printer problems</title>
-
-<para>
-One way to debug printing problems is to start by replacing these
-command with shell scripts that record the arguments and the contents
-of the print file. A simple example of this kind of things might
-be:
-</para>
-
-<para><programlisting>
-	print command = /tmp/saveprint %p %s
-
-    #!/bin/saveprint
-    # we make sure that we are the right user
-    /usr/bin/id -p >/tmp/tmp.print
-    # we run the command and save the error messages
-    # replace the command with the one appropriate for your system
-    /usr/bin/lpr -r -P$1 $2 2>>&/tmp/tmp.print
-</programlisting></para>
-
-<para>
-Then you print a file and try removing it.  You may find that the
-print queue needs to be stopped in order to see the queue status
-and remove the job:
-</para>
-
-<para><programlisting>
-
-h4: {42} % echo hi >/tmp/hi
-h4: {43} % smbclient //localhost/lw4
-added interface ip=10.0.0.4 bcast=10.0.0.255 nmask=255.255.255.0
-Password: 
-Domain=[ASTART] OS=[Unix] Server=[Samba 2.0.7]
-smb: \> print /tmp/hi
-putting file /tmp/hi as hi-17534 (0.0 kb/s) (average 0.0 kb/s)
-smb: \> queue
-1049     3            hi-17534
-smb: \> cancel 1049
-Error cancelling job 1049 : code 0
-smb: \> cancel 1049
-Job 1049 cancelled
-smb: \> queue
-smb: \> exit
-</programlisting></para>
-
-<para>
-The 'code 0' indicates that the job was removed.  The comment
-by the  smbclient is a bit misleading on this.
-You can observe the command output and then and look at the
-/tmp/tmp.print file to see what the results are.  You can quickly
-find out if the problem is with your printing system.  Often people
-have problems with their /etc/printcap file or permissions on
-various print queues.
-</para>
-</sect2>
-
-<sect2>
-<title>What printers do I have?</title>
-
-<para>
-You can use the 'testprns' program to check to see if the printer
-name you are using is recognized by Samba.  For example,  you can
-use:
-</para>
-
-<para><programlisting>
-    testprns printer /etc/printcap
-</programlisting></para>
-
-<para>
-Samba can get its printcap information from a file or from a program.
-You can try the following to see the format of the extracted
-information:
-</para>
-
-<para><programlisting>
-    testprns -a printer /etc/printcap
-
-    testprns -a printer '|/bin/cat printcap'
-</programlisting></para>
-
-</sect2>
-
-<sect2>
-<title>Setting up printcap and print servers</title>
-
-<para>
-You may need to set up some printcaps for your Samba system to use.
-It is strongly recommended that you use the facilities provided by
-the print spooler to set up queues and printcap information.
-</para>
-
-<para>
-Samba requires either a printcap or program to deliver printcap
-information.  This printcap information has the format:
-</para>
-
-<para><programlisting>
-  name|alias1|alias2...:option=value:...
-</programlisting></para>
-
-<para>
-For almost all printing systems, the printer 'name' must be composed
-only of alphanumeric or underscore '_' characters.  Some systems also
-allow hyphens ('-') as well.  An alias is an alternative name for the
-printer,  and an alias with a space in it is used as a 'comment'
-about the printer.  The printcap format optionally uses a \ at the end of lines
-to extend the printcap to multiple lines.
-</para>
-
-<para>
-Here are some examples of printcap files:
-</para>
-
-<para>
-<orderedlist>
-<listitem><para>
-pr              just printer name
-</para></listitem>
-<listitem><para>
-pr|alias        printer name and alias
-</para></listitem>
-<listitem><para>
-pr|My Printer   printer name, alias used as comment
-</para></listitem>
-<listitem><para>
-pr:sh:\        Same as pr:sh:cm= testing
-  :cm= \ 
-  testing
-</para></listitem>
-<listitem><para>
-pr:sh           Same as pr:sh:cm= testing
-  :cm= testing
-</para></listitem>
-</orderedlist>
-</para>
-
-<para>
-Samba reads the printcap information when first started.  If you make
-changes in the printcap information, then you must do the following:
-</para>
-
-<orderedlist>
-
-<listitem><para>
-make sure that the print spooler is aware of these changes.
-The LPRng system uses the 'lpc reread' command to do this.
-</para></listitem>
-
-<listitem><para>
-make sure that the spool queues, etc., exist and have the
-correct permissions.  The LPRng system uses the 'checkpc -f'
-command to do this.
-</para></listitem>
-
-<listitem><para>
-You now should send a SIGHUP signal to the smbd server to have
-it reread the printcap information.
-</para></listitem>
-</orderedlist>
-
-</sect2>
-
-<sect2>
-<title>Job sent, no output</title>
-
-<para>
-This is the most frustrating part of printing.  You may have sent the
-job,  verified that the job was forwarded,  set up a wrapper around
-the command to send the file,  but there was no output from the printer.
-</para>
-
-<para>
-First,  check to make sure that the job REALLY is getting to the
-right print queue.  If you are using a BSD or LPRng print spooler,
-you can temporarily stop the printing of jobs.  Jobs can still be
-submitted, but they will not be printed.  Use:
-</para>
-
-<para><programlisting>
-  lpc -Pprinter stop
-</programlisting></para>
-
-<para>
-Now submit a print job and then use 'lpq -Pprinter' to see if the
-job is in the print queue.  If it is not in the print queue then
-you will have to find out why it is not being accepted for printing.
-</para>
-
-<para>
-Next, you may want to check to see what the format of the job really
-was.  With the assistance of the system administrator you can view
-the submitted jobs files.  You may be surprised to find that these
-are not in what you would expect to call a printable format.
-You can use the UNIX 'file' utitily to determine what the job
-format actually is:
-</para>
-
-<para><programlisting>
-    cd /var/spool/lpd/printer   # spool directory of print jobs
-    ls                          # find job files
-    file dfA001myhost
-</programlisting></para>
-
-<para>
-You should make sure that your printer supports this format OR that
-your system administrator has installed a 'print filter' that will
-convert the file to a format appropriate for your printer.
-</para>
-
-</sect2>
-
-<sect2>
-<title>Job sent, strange output</title>
-
-<para>
-Once you have the job printing, you can then start worrying about
-making it print nicely.
-</para>
-
-<para>
-The most common problem is extra pages of output: banner pages
-OR blank pages at the end.
-</para>
-
-<para>
-If you are getting banner pages,  check and make sure that the
-printcap option or printer option is configured for no banners.
-If you have a printcap,  this is the :sh (suppress header or banner
-page) option.  You should have the following in your printer.
-</para>
-
-<para><programlisting>
-   printer: ... :sh
-</programlisting></para>
-
-<para>
-If you have this option and are still getting banner pages,  there
-is a strong chance that your printer is generating them for you
-automatically.  You should make sure that banner printing is disabled
-for the printer.  This usually requires using the printer setup software
-or procedures supplied by the printer manufacturer.
-</para>
-
-<para>
-If you get an extra page of output,  this could be due to problems
-with your job format,  or if you are generating PostScript jobs,
-incorrect setting on your printer driver on the MicroSoft client.
-For example, under Win95 there is a option:
-</para>
-
-<para><programlisting>
-  Printers|Printer Name|(Right Click)Properties|Postscript|Advanced|
-</programlisting></para>
-
-<para>
-that allows you to choose if a Ctrl-D is appended to all jobs.
-This is a very bad thing to do, as most spooling systems will
-automatically add a ^D to the end of the job if it is detected as
-PostScript.  The multiple ^D may cause an additional page of output.
-</para>
-
-</sect2>
-
-<sect2>
-<title>Raw PostScript printed</title>
-
-<para>
-This is a problem that is usually caused by either the print spooling
-system putting information at the start of the print job that makes
-the printer think the job is a text file, or your printer simply
-does not support PostScript.  You may need to enable 'Automatic
-Format Detection' on your printer.
-</para>
-
-</sect2>
-
-<sect2>
-<title>Advanced Printing</title>
-
-<para>
-Note that you can do some pretty magic things by using your
-imagination with the "print command" option and some shell scripts.
-Doing print accounting is easy by passing the %U option to a print
-command shell script. You could even make the print command detect
-the type of output and its size and send it to an appropriate
-printer.
-</para>
-
-</sect2>
-
-<sect2>
-<title>Real debugging</title>
-
-<para>
-If the above debug tips don't help, then maybe you need to bring in
-the bug guns, system tracing. See Tracing.txt in this directory.
-</para>
-</sect2>
-</sect1>
-
 </chapter>
diff --git a/docs/docbook/projdoc/samba-doc.sgml b/docs/docbook/projdoc/samba-doc.sgml
index ce16405d54d..f20849edbfb 100644
--- a/docs/docbook/projdoc/samba-doc.sgml
+++ b/docs/docbook/projdoc/samba-doc.sgml
@@ -13,6 +13,7 @@
 <!ENTITY Samba-PAM SYSTEM "PAM-Authentication-And-Samba.sgml">
 <!ENTITY Samba-LDAP SYSTEM "Samba-LDAP-HOWTO.sgml">
 <!ENTITY Diagnosis SYSTEM "Diagnosis.sgml">
+<!ENTITY PRINTING SYSTEM "Printing.sgml">
 <!ENTITY BUGS SYSTEM "Bugs.sgml">
 <!ENTITY SECURITY-LEVEL SYSTEM "security_level.sgml">
 <!ENTITY SPEED SYSTEM "Speed.sgml">
@@ -22,10 +23,6 @@
 <!ENTITY Portability SYSTEM "Portability.sgml">
 <!ENTITY Other-Clients SYSTEM "Other-Clients.sgml">
 <!ENTITY ADS-HOWTO SYSTEM "ADS-HOWTO.sgml">
-<!ENTITY oplocks SYSTEM "oplocks.sgml">
-<!ENTITY pdb-mysql SYSTEM "pdb_mysql.sgml">
-<!ENTITY pdb-xml SYSTEM "pdb_xml.sgml">
-<!ENTITY VFS SYSTEM "VFS.sgml">
 ]>
 
 <book id="Samba-HOWTO-Collection">
@@ -43,7 +40,7 @@
 <title>Abstract</title>
 
 <para>
-<emphasis>Last Update</emphasis> : $Date: 2002/11/13 15:34:49 $
+<emphasis>Last Update</emphasis> : Thu Aug 15 12:48:45 CDT 2002
 </para>
 
 <para>
@@ -52,8 +49,7 @@ I try to ensure that all are current, but sometimes the is a larger job
 than one person can maintain.  The most recent version of this document
 can be found at <ulink url="http://www.samba.org/">http://www.samba.org/</ulink>
 on the "Documentation" page.  Please send updates to <ulink 
-url="mailto:jerry@samba.org">jerry@samba.org</ulink> or 
-<ulink url="mailto:jelmer@samba.org">jelmer@samba.org</ulink>.
+url="mailto:jerry@samba.org">jerry@samba.org</ulink>.
 </para>
 
 <para>
@@ -70,65 +66,30 @@ Cheers, jerry
 </dedication>
 
 <!-- Chapters -->
-<part id="introduction">
-<title>General installation</title>
-<partintro>
-<title>Introduction</title>
-<para>This part contains general info on how to install samba 
-and how to configure the parts of samba you will most likely need.
-PLEASE read this.</para>
-</partintro>
 &UNIX-INSTALL;
-&BROWSING;
-&oplocks;
-&BROWSING-Quick;
-&ENCRYPTION;
-</part>
-
-<part id="type">
-<title>Type of installation</title>
-<partintro>
-<title>Introduction</title>
-<para>
-Samba can operate in various SMB networks. This part contains information on configuring samba 
-for various environments.
-</para>
-</partintro>
-&SECURITY-LEVEL;
-&Samba-PDC-HOWTO;
-&Samba-BDC-HOWTO;
-&ADS-HOWTO;
-&DOMAIN-MEMBER;
-</part>
-
-<part id="optional">
-<title>Optional configuration</title>
-<partintro>
-<title>Introduction</title>
-<para>Samba has several features that you might want or might not want to use. The chapters in this 
-part each cover one specific feature.</para>
-</partintro>
 &IntegratingWithWindows;
-&NT-Security;
 &Samba-PAM;
 &MS-Dfs-Setup;
+&NT-Security;
 &PRINTER-DRIVER2;
+&PRINTING;
+&SECURITY-LEVEL;
+&DOMAIN-MEMBER;
 &WINBIND;
-&pdb-mysql;
-&pdb-xml;
-&VFS;
+&Samba-PDC-HOWTO;
+&Samba-BDC-HOWTO;
 &Samba-LDAP;
+&ADS-HOWTO;
+&BROWSING;
+&BROWSING-Quick;
+&SPEED;
 &CVS-Access;
+&BUGS;
 &GROUP-MAPPING-HOWTO;
-&SPEED;
-</part>
 
-<part id="Appendixes">
-<title>Appendixes</title>
+<!-- Appendices -->
 &Portability;
 &Other-Clients;
-&BUGS;
 &Diagnosis;
-</part>
 
 </book>
diff --git a/docs/docbook/projdoc/security_level.sgml b/docs/docbook/projdoc/security_level.sgml
index e2d9cfbbaae..efe2b6eaf3d 100644
--- a/docs/docbook/projdoc/security_level.sgml
+++ b/docs/docbook/projdoc/security_level.sgml
@@ -9,7 +9,40 @@
 	</author>
 </chapterinfo>
 
-<title>User and Share security level (for servers not in a domain)</title>
+<title>Security levels</title>
+
+<sect1>
+<title>Introduction</title>
+
+<para>
+Samba supports the following options to the global smb.conf parameter
+</para>
+
+<para><programlisting>
+[global]
+<ulink url="smb.conf.5.html#SECURITY"><parameter>security</parameter></ulink> = [share|user(default)|domain|ads]
+</programlisting></para>
+
+<para>
+Please refer to the smb.conf man page for usage information and to the document
+<ulink url="DOMAIN_MEMBER.html">DOMAIN_MEMBER.html</ulink> for further background details
+on domain mode security.  The Windows 2000 Kerberos domain security model
+(security = ads) is described in the <ulink url="ADS-HOWTO.html">ADS-HOWTO.html</ulink>.
+</para>
+
+<para>
+Of the above, "security = server" means that Samba reports to clients that
+it is running in "user mode" but actually passes off all authentication
+requests to another "user mode" server. This requires an additional
+parameter "password server =" that points to the real authentication server.
+That real authentication server can be another Samba server or can be a
+Windows NT server, the later natively capable of encrypted password support.
+</para>
+
+</sect1>
+
+<sect1>
+<title>More complete description of security levels</title>
 
 <para>
 A SMB server tells the client at startup what "security level" it is
@@ -103,14 +136,5 @@ cryptographically impossible to translate from unix style encryption
 to SMB style encryption, although there are some fairly simple management
 schemes by which the two could be kept in sync.
 </para>
-
-<para>
-"security = server" means that Samba reports to clients that
-it is running in "user mode" but actually passes off all authentication
-requests to another "user mode" server. This requires an additional
-parameter "password server =" that points to the real authentication server.
-That real authentication server can be another Samba server or can be a
-Windows NT server, the later natively capable of encrypted password support.
-</para>
-
+</sect1>
 </chapter>
diff --git a/docs/docbook/projdoc/winbind.sgml b/docs/docbook/projdoc/winbind.sgml
index d2bfb8ab679..b045a26db69 100644
--- a/docs/docbook/projdoc/winbind.sgml
+++ b/docs/docbook/projdoc/winbind.sgml
@@ -412,7 +412,7 @@ you get frustrated with the way things are going.  ;-)
 </para>
 
 <para>
-The latest version of SAMBA (version 3.0 as of this writing), now 
+The latest version of SAMBA (version 2.2.2 as of this writing), now 
 includes a functioning winbindd daemon.  Please refer to the 
 <ulink url="http://samba.org/">main SAMBA web page</ulink> or, 
 better yet, your closest SAMBA mirror site for instructions on 
diff --git a/docs/docs-status b/docs/docs-status
index 80541caea51..e6a25c40a24 100644
--- a/docs/docs-status
+++ b/docs/docs-status
@@ -1,8 +1,10 @@
 If you'd like to work on any of these, please contact jerry@samba.org or jelmer@samba.org.
 
 Outdated docs:
-docs/announce - needs updating before we release 3.0
-docs/history - needs updating (is current up to 1998 - merge with 10year.html)
+docs/OID/allocated-arcs.txt - does this file really belong here?
+docs/OID/samba-oid.mail - does this file really belong here?
+docs/announce - out of date (announces 2.2.0) - should it go away?
+docs/history - needs updating (is current up to 1998 - merge with 10year.html ?)
 docs/docbook/devdoc/* - most of these docs are outdated and need updates...
 docs/docbook/manpages/net.8.sgml - Still not finished
 docs/docbook/manpages/rpcclient.1.sgml - Command documentation might be outdated
@@ -12,17 +14,19 @@ docs/docbook/manpages/smbcontrol.1.sgml - Document -s, samsync, samrepl, pool-us
 docs/docbook/manpages/smb.conf.5.sgml - 'restrict anonymous' isn't documented properly
 docs/docbook/projdoc/DOMAIN_MEMBER.sgml - Needs update to 3.0
 docs/docbook/projdoc/ADS-HOWTO.sgml - seems outdated (it says we require 'ads server' when in ads mode, though that's not true, according to the manpages...)
+docs/docbook/projdoc/ENCRYPTION.sgml - contains useless old info about smbpasswd
 docs/docbook/projdoc/Integrating-with-Windows.sgml - Should slowly go a way. Contains a little bit information about wins, a little bit about domain membership, a little about winbind, etc
 docs/docbook/projdoc/NT_Security.sgml - probably outdated
-docs/docbook/projdoc/Diagnosis.sgml - Needs extension and updating
+docs/docbook/projdoc/Diagnosis.sgml - Needs extension
 docs/docbook/projdoc/PAM-Authentication-And-Samba.sgml
 docs/docbook/projdoc/Printing.sgml - Cups is not documented, smbprint, printing /to/ a windows server... - Kurt Pfeifle
 docs/docbook/projdoc/Samba-BDC-HOWTO.sgml - Needs update to 3.0
 docs/docbook/projdoc/Samba-LDAP-HOWTO.sgml - Needs update to 3.0
 docs/docbook/projdoc/Samba-PDC-HOWTO.sgml - Needs update to 3.0
 docs/docbook/projdoc/Speed.sgml - contains outdated and invalid information
-docs/docbook/projdoc/UNIX_INSTALL.sgml - Needs a lot of updating (swat, etc)
-docs/docbook/projdoc/printer_driver2.sgml - still up to date?
+docs/docbook/projdoc/UNIX_INSTALL.sgml - Needs a lot of updating (swat, ADS, PDC, etc)
+docs/docbook/projdoc/printer_driver2.sgml - Needs integration with printing.sgml, still up to date?
+docs/docbook/projdoc/security_level.sgml - information about ads and domain should be added (currently only contains pointers to the ads and domain_member docs)
 docs/docbook/projdoc/winbind.sgml - needs documentation for ADS
 docs/textdocs/CUPS-PrintingInfo.txt - needs to be converted to sgml - Kurt Pfeifle
 docs/textdocs/PROFILES.txt - needs to be converted to sgml
@@ -30,21 +34,24 @@ docs/textdocs/README.jis - Seems to need updating - possibly obsoleted by a newe
 docs/textdocs/RoutedNetworks.txt - still valid, but shouldn't this go into Other_clients.sgml ? This text originally comes from microsoft, what about copyright?
 
 These still need to be checked:
+docs/docbook/manpages/smbd.8.sgml
 docs/docbook/manpages/smbmnt.8.sgml
 docs/docbook/manpages/smbmount.8.sgml
+docs/docbook/manpages/smbpasswd.8.sgml
+docs/docbook/manpages/smbsh.1.sgml
 docs/docbook/manpages/smbspool.8.sgml
+docs/docbook/manpages/smbstatus.1.sgml
 docs/docbook/manpages/smbtar.1.sgml
 docs/docbook/manpages/smbumount.8.sgml
 docs/docbook/manpages/swat.8.sgml
+docs/docbook/manpages/testparm.1.sgml
 docs/docbook/manpages/testprns.1.sgml
+docs/docbook/manpages/wbinfo.1.sgml
 
 Stuff that needs to be documented:
-Doc for package maintainers
+Merge the various docs about wins and browsing
 Windows NT 4.0 Style Trust Relationship
 One Time Migration script from a Windows NT 4.0 PDC to a Samba PDC
 ldap passwd sync
-merge the various pdb docs and the doc about encryption
-UNICODE support
-Winbind with samba PDC
 
 http://www.unav.es/cti/ldap-smb/smb-ldap-3-howto.html
diff --git a/docs/faq/clientapp.html b/docs/faq/clientapp.html
index b48e2363778..3196fd285e5 100644
--- a/docs/faq/clientapp.html
+++ b/docs/faq/clientapp.html
@@ -10,8 +10,8 @@ REL="HOME"
 TITLE="Samba FAQ"
 HREF="samba-faq.html"><LINK
 REL="PREVIOUS"
-TITLE="Configuration problems"
-HREF="config.html"><LINK
+TITLE="Compiling and installing Samba on a Unix host"
+HREF="install.html"><LINK
 REL="NEXT"
 TITLE="Common errors"
 HREF="errors.html"></HEAD
@@ -42,7 +42,7 @@ WIDTH="10%"
 ALIGN="left"
 VALIGN="bottom"
 ><A
-HREF="config.html"
+HREF="install.html"
 ACCESSKEY="P"
 >Prev</A
 ></TD
@@ -71,15 +71,15 @@ CLASS="CHAPTER"
 ><A
 NAME="CLIENTAPP"
 ></A
->Chapter 4. Specific client application problems</H1
+>Chapter 3. Specific client application problems</H1
 ><DIV
 CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN175"
+NAME="AEN170"
 ></A
->4.1. MS Office Setup reports "Cannot change properties of '\MSOFFICE\SETUP.INI'"</H1
+>3.1. MS Office Setup reports "Cannot change properties of '\MSOFFICE\SETUP.INI'"</H1
 ><P
 >When installing MS Office on a Samba drive for which you have admin
 user permissions, ie. admin users = username, you will find the
@@ -98,9 +98,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN180"
+NAME="AEN175"
 ></A
->4.2. How to use a Samba share as an administrative share for MS Office, etc.</H1
+>3.2. How to use a Samba share as an administrative share for MS Office, etc.</H1
 ><P
 >Microsoft Office products can be installed as an administrative installation
 from which the application can either be run off the administratively installed
@@ -160,9 +160,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN195"
+NAME="AEN190"
 ></A
->4.3. Microsoft Access database opening errors</H1
+>3.3. Microsoft Access database opening errors</H1
 ><P
 >Here are some notes on running MS-Access on a Samba drive from <A
 HREF="stefank@esi.com.au"
@@ -210,7 +210,7 @@ WIDTH="33%"
 ALIGN="left"
 VALIGN="top"
 ><A
-HREF="config.html"
+HREF="install.html"
 ACCESSKEY="P"
 >Prev</A
 ></TD
@@ -238,7 +238,7 @@ ACCESSKEY="N"
 WIDTH="33%"
 ALIGN="left"
 VALIGN="top"
->Configuration problems</TD
+>Compiling and installing Samba on a Unix host</TD
 ><TD
 WIDTH="34%"
 ALIGN="center"
diff --git a/docs/faq/errors.html b/docs/faq/errors.html
index 08da5e5db08..b36251ec13d 100644
--- a/docs/faq/errors.html
+++ b/docs/faq/errors.html
@@ -71,15 +71,15 @@ CLASS="CHAPTER"
 ><A
 NAME="ERRORS"
 ></A
->Chapter 5. Common errors</H1
+>Chapter 4. Common errors</H1
 ><DIV
 CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN206"
+NAME="AEN201"
 ></A
->5.1. Not listening for calling name</H1
+>4.1. Not listening for calling name</H1
 ><P
 ><PRE
 CLASS="PROGRAMLISTING"
@@ -103,9 +103,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN213"
+NAME="AEN208"
 ></A
->5.2. System Error 1240</H1
+>4.2. System Error 1240</H1
 ><P
 >System error 1240 means that the client is refusing to talk
 to a non-encrypting server. Microsoft changed WinNT in service
@@ -139,9 +139,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN220"
+NAME="AEN215"
 ></A
->5.3. smbclient ignores -N !</H1
+>4.3. smbclient ignores -N !</H1
 ><P
 ><SPAN
 CLASS="QUOTE"
@@ -174,9 +174,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN229"
+NAME="AEN224"
 ></A
->5.4. The data on the CD-Drive I've shared seems to be corrupted!</H1
+>4.4. The data on the CD-Drive I've shared seems to be corrupted!</H1
 ><P
 >Some OSes (notably Linux) default to auto detection of file type on
 cdroms and do cr/lf translation. This is a very bad idea when use with
@@ -190,9 +190,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN233"
+NAME="AEN228"
 ></A
->5.5. Why can users access home directories of other users?</H1
+>4.5. Why can users access home directories of other users?</H1
 ><P
 ><SPAN
 CLASS="QUOTE"
@@ -243,17 +243,6 @@ CLASS="PROGRAMLISTING"
 to the definition of the [homes] share, as recommended in
 the smb.conf man page.</P
 ></DIV
-><DIV
-CLASS="SECT1"
-><H1
-CLASS="SECT1"
-><A
-NAME="AEN246"
-></A
->5.6. Until a few minutes after samba has started, clients get the error "Domain Controller Unavailable"</H1
-><P
->A domain controller has to announce on the network who it is. This usually takes a while.</P
-></DIV
 ></DIV
 ><DIV
 CLASS="NAVFOOTER"
diff --git a/docs/faq/install.html b/docs/faq/install.html
index 23403ab96b9..f9ecac1384f 100644
--- a/docs/faq/install.html
+++ b/docs/faq/install.html
@@ -13,8 +13,8 @@ REL="PREVIOUS"
 TITLE="General Information"
 HREF="general.html"><LINK
 REL="NEXT"
-TITLE="Configuration problems"
-HREF="config.html"></HEAD
+TITLE="Specific client application problems"
+HREF="clientapp.html"></HEAD
 ><BODY
 CLASS="CHAPTER"
 BGCOLOR="#FFFFFF"
@@ -56,7 +56,7 @@ WIDTH="10%"
 ALIGN="right"
 VALIGN="bottom"
 ><A
-HREF="config.html"
+HREF="clientapp.html"
 ACCESSKEY="N"
 >Next</A
 ></TD
@@ -496,7 +496,7 @@ WIDTH="33%"
 ALIGN="right"
 VALIGN="top"
 ><A
-HREF="config.html"
+HREF="clientapp.html"
 ACCESSKEY="N"
 >Next</A
 ></TD
@@ -516,7 +516,7 @@ VALIGN="top"
 WIDTH="33%"
 ALIGN="right"
 VALIGN="top"
->Configuration problems</TD
+>Specific client application problems</TD
 ></TR
 ></TABLE
 ></DIV
diff --git a/docs/faq/samba-faq.html b/docs/faq/samba-faq.html
index f6a9d831285..ed74a3be313 100644
--- a/docs/faq/samba-faq.html
+++ b/docs/faq/samba-faq.html
@@ -156,142 +156,118 @@ HREF="install.html#AEN155"
 ></DD
 ><DT
 >3. <A
-HREF="config.html"
->Configuration problems</A
-></DT
-><DD
-><DL
-><DT
->3.1. <A
-HREF="config.html#AEN170"
->I have set 'force user' and samba still makes 'root' the owner of all the files I touch!</A
-></DT
-></DL
-></DD
-><DT
->4. <A
 HREF="clientapp.html"
 >Specific client application problems</A
 ></DT
 ><DD
 ><DL
 ><DT
->4.1. <A
-HREF="clientapp.html#AEN175"
+>3.1. <A
+HREF="clientapp.html#AEN170"
 >MS Office Setup reports "Cannot change properties of '\MSOFFICE\SETUP.INI'"</A
 ></DT
 ><DT
->4.2. <A
-HREF="clientapp.html#AEN180"
+>3.2. <A
+HREF="clientapp.html#AEN175"
 >How to use a Samba share as an administrative share for MS Office, etc.</A
 ></DT
 ><DT
->4.3. <A
-HREF="clientapp.html#AEN195"
+>3.3. <A
+HREF="clientapp.html#AEN190"
 >Microsoft Access database opening errors</A
 ></DT
 ></DL
 ></DD
 ><DT
->5. <A
+>4. <A
 HREF="errors.html"
 >Common errors</A
 ></DT
 ><DD
 ><DL
 ><DT
->5.1. <A
-HREF="errors.html#AEN206"
+>4.1. <A
+HREF="errors.html#AEN201"
 >Not listening for calling name</A
 ></DT
 ><DT
->5.2. <A
-HREF="errors.html#AEN213"
+>4.2. <A
+HREF="errors.html#AEN208"
 >System Error 1240</A
 ></DT
 ><DT
->5.3. <A
-HREF="errors.html#AEN220"
+>4.3. <A
+HREF="errors.html#AEN215"
 >smbclient ignores -N !</A
 ></DT
 ><DT
->5.4. <A
-HREF="errors.html#AEN229"
+>4.4. <A
+HREF="errors.html#AEN224"
 >The data on the CD-Drive I've shared seems to be corrupted!</A
 ></DT
 ><DT
->5.5. <A
-HREF="errors.html#AEN233"
+>4.5. <A
+HREF="errors.html#AEN228"
 >Why can users access home directories of other users?</A
 ></DT
-><DT
->5.6. <A
-HREF="errors.html#AEN246"
->Until a few minutes after samba has started, clients get the error "Domain Controller Unavailable"</A
-></DT
 ></DL
 ></DD
 ><DT
->6. <A
+>5. <A
 HREF="features.html"
 >Features</A
 ></DT
 ><DD
 ><DL
 ><DT
->6.1. <A
-HREF="features.html#AEN251"
+>5.1. <A
+HREF="features.html#AEN243"
 >How can I prevent my samba server from being used to distribute the Nimda worm?</A
 ></DT
 ><DT
->6.2. <A
-HREF="features.html#AEN265"
+>5.2. <A
+HREF="features.html#AEN257"
 >How can I use samba as a fax server?</A
 ></DT
 ><DD
 ><DL
 ><DT
->6.2.1. <A
-HREF="features.html#AEN276"
+>5.2.1. <A
+HREF="features.html#AEN268"
 >Tools for printing faxes</A
 ></DT
 ><DT
->6.2.2. <A
-HREF="features.html#AEN286"
+>5.2.2. <A
+HREF="features.html#AEN278"
 >Making the fax-server</A
 ></DT
 ><DT
->6.2.3. <A
-HREF="features.html#AEN302"
+>5.2.3. <A
+HREF="features.html#AEN294"
 >Installing the client drivers</A
 ></DT
 ><DT
->6.2.4. <A
-HREF="features.html#AEN316"
+>5.2.4. <A
+HREF="features.html#AEN308"
 >Example smb.conf</A
 ></DT
 ></DL
 ></DD
 ><DT
->6.3. <A
-HREF="features.html#AEN320"
+>5.3. <A
+HREF="features.html#AEN312"
 >Samba doesn't work well together with DHCP!</A
 ></DT
 ><DT
->6.4. <A
-HREF="features.html#AEN333"
+>5.4. <A
+HREF="features.html#AEN325"
 >How can I assign NetBIOS names to clients with DHCP?</A
 ></DT
 ><DT
->6.5. <A
-HREF="features.html#AEN340"
+>5.5. <A
+HREF="features.html#AEN332"
 >How do I convert between unix and dos text formats?</A
 ></DT
-><DT
->6.6. <A
-HREF="features.html#AEN345"
->Does samba have wins replication support?</A
-></DT
 ></DL
 ></DD
 ></DL
diff --git a/docs/htmldocs/ENCRYPTION.html b/docs/htmldocs/ENCRYPTION.html
new file mode 100644
index 00000000000..e4d3ef5fed2
--- /dev/null
+++ b/docs/htmldocs/ENCRYPTION.html
@@ -0,0 +1,656 @@
+<HTML
+><HEAD
+><TITLE
+>LanMan and NT Password Encryption in Samba 2.x</TITLE
+><META
+NAME="GENERATOR"
+CONTENT="Modular DocBook HTML Stylesheet Version 1.57"></HEAD
+><BODY
+CLASS="ARTICLE"
+BGCOLOR="#FFFFFF"
+TEXT="#000000"
+LINK="#0000FF"
+VLINK="#840084"
+ALINK="#0000FF"
+><DIV
+CLASS="ARTICLE"
+><DIV
+CLASS="TITLEPAGE"
+><H1
+CLASS="TITLE"
+><A
+NAME="PWENCRYPT"
+>LanMan and NT Password Encryption in Samba 2.x</A
+></H1
+><HR></DIV
+><DIV
+CLASS="SECT1"
+><H1
+CLASS="SECT1"
+><A
+NAME="AEN3"
+>Introduction</A
+></H1
+><P
+>With the development of LanManager and Windows NT 
+	compatible password encryption for Samba, it is now able 
+	to validate user connections in exactly the same way as 
+	a LanManager or Windows NT server.</P
+><P
+>This document describes how the SMB password encryption 
+	algorithm works and what issues there are in choosing whether 
+	you want to use it. You should read it carefully, especially 
+	the part about security and the "PROS and CONS" section.</P
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H1
+CLASS="SECT1"
+><A
+NAME="AEN7"
+>How does it work?</A
+></H1
+><P
+>LanManager encryption is somewhat similar to UNIX 
+	password encryption. The server uses a file containing a 
+	hashed value of a user's password.  This is created by taking 
+	the user's plaintext password, capitalising it, and either 
+	truncating to 14 bytes or padding to 14 bytes with null bytes. 
+	This 14 byte value is used as two 56 bit DES keys to encrypt 
+	a 'magic' eight byte value, forming a 16 byte value which is 
+	stored by the server and client. Let this value be known as 
+	the "hashed password".</P
+><P
+>Windows NT encryption is a higher quality mechanism, 
+	consisting of doing an MD4 hash on a Unicode version of the user's 
+	password. This also produces a 16 byte hash value that is 
+	non-reversible.</P
+><P
+>When a client (LanManager, Windows for WorkGroups, Windows 
+	95 or Windows NT) wishes to mount a Samba drive (or use a Samba 
+	resource), it first requests a connection and negotiates the 
+	protocol that the client and server will use. In the reply to this 
+	request the Samba server generates and appends an 8 byte, random 
+	value - this is stored in the Samba server after the reply is sent 
+	and is known as the "challenge".  The challenge is different for 
+	every client connection.</P
+><P
+>The client then uses the hashed password (16 byte values 
+	described above), appended with 5 null bytes, as three 56 bit 
+	DES keys, each of which is used to encrypt the challenge 8 byte 
+	value, forming a 24 byte value known as the "response".</P
+><P
+>In the SMB call SMBsessionsetupX (when user level security 
+	is selected) or the call SMBtconX (when share level security is 
+	selected), the 24 byte response is returned by the client to the 
+	Samba server.  For Windows NT protocol levels the above calculation 
+	is done on both hashes of the user's password and both responses are 
+	returned in the SMB call, giving two 24 byte values.</P
+><P
+>The Samba server then reproduces the above calculation, using 
+	its own stored value of the 16 byte hashed password (read from the 
+	<TT
+CLASS="FILENAME"
+>smbpasswd</TT
+> file - described later) and the challenge 
+	value that it kept from the negotiate protocol reply. It then checks 
+	to see if the 24 byte value it calculates matches the 24 byte value 
+	returned to it from the client.</P
+><P
+>If these values match exactly, then the client knew the 
+	correct password (or the 16 byte hashed value - see security note 
+	below) and is thus allowed access. If not, then the client did not 
+	know the correct password and is denied access.</P
+><P
+>Note that the Samba server never knows or stores the cleartext 
+	of the user's password - just the 16 byte hashed values derived from 
+	it. Also note that the cleartext password or 16 byte hashed values 
+	are never transmitted over the network - thus increasing security.</P
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H1
+CLASS="SECT1"
+><A
+NAME="AEN18"
+>Important Notes About Security</A
+></H1
+><P
+>The unix and SMB password encryption techniques seem similar 
+	on the surface. This similarity is, however, only skin deep. The unix 
+	scheme typically sends clear text passwords over the network when 
+	logging in. This is bad. The SMB encryption scheme never sends the 
+	cleartext password over the network but it does store the 16 byte 
+	hashed values on disk. This is also bad. Why? Because the 16 byte hashed 
+	values are a "password equivalent". You cannot derive the user's 
+	password from them, but they could potentially be used in a modified 
+	client to gain access to a server. This would require considerable 
+	technical knowledge on behalf of the attacker but is perfectly possible. 
+	You should thus treat the smbpasswd file as though it contained the 
+	cleartext passwords of all your users. Its contents must be kept 
+	secret, and the file should be protected accordingly.</P
+><P
+>Ideally we would like a password scheme which neither requires 
+	plain text passwords on the net or on disk. Unfortunately this 
+	is not available as Samba is stuck with being compatible with 
+	other SMB systems (WinNT, WfWg, Win95 etc). </P
+><DIV
+CLASS="WARNING"
+><P
+></P
+><TABLE
+CLASS="WARNING"
+BORDER="1"
+WIDTH="100%"
+><TR
+><TD
+ALIGN="CENTER"
+><B
+>Warning</B
+></TD
+></TR
+><TR
+><TD
+ALIGN="LEFT"
+><P
+>Note that Windows NT 4.0 Service pack 3 changed the 
+		default for permissible authentication so that plaintext 
+		passwords are <I
+CLASS="EMPHASIS"
+>never</I
+> sent over the wire. 
+		The solution to this is either to switch to encrypted passwords 
+		with Samba or edit the Windows NT registry to re-enable plaintext 
+		passwords. See the document WinNT.txt for details on how to do 
+		this.</P
+><P
+>Other Microsoft operating systems which also exhibit 
+		this behavior includes</P
+><P
+></P
+><UL
+><LI
+><P
+>MS DOS Network client 3.0 with 
+			the basic network redirector installed</P
+></LI
+><LI
+><P
+>Windows 95 with the network redirector 
+			update installed</P
+></LI
+><LI
+><P
+>Windows 98 [se]</P
+></LI
+><LI
+><P
+>Windows 2000</P
+></LI
+></UL
+><P
+><I
+CLASS="EMPHASIS"
+>Note :</I
+>All current release of 
+		Microsoft SMB/CIFS clients support authentication via the
+		SMB Challenge/Response mechanism described here.  Enabling
+		clear text authentication does not disable the ability
+		of the client to participate in encrypted authentication.</P
+></TD
+></TR
+></TABLE
+></DIV
+><DIV
+CLASS="SECT2"
+><HR><H2
+CLASS="SECT2"
+><A
+NAME="AEN37"
+>Advantages of SMB Encryption</A
+></H2
+><P
+></P
+><UL
+><LI
+><P
+>plain text passwords are not passed across 
+			the network. Someone using a network sniffer cannot just 
+			record passwords going to the SMB server.</P
+></LI
+><LI
+><P
+>WinNT doesn't like talking to a server 
+			that isn't using SMB encrypted passwords. It will refuse 
+			to browse the server if the server is also in user level 
+			security mode. It will insist on prompting the user for the 
+			password on each connection, which is very annoying. The
+			only things you can do to stop this is to use SMB encryption.
+			</P
+></LI
+></UL
+></DIV
+><DIV
+CLASS="SECT2"
+><HR><H2
+CLASS="SECT2"
+><A
+NAME="AEN44"
+>Advantages of non-encrypted passwords</A
+></H2
+><P
+></P
+><UL
+><LI
+><P
+>plain text passwords are not kept 
+			on disk. </P
+></LI
+><LI
+><P
+>uses same password file as other unix 
+			services such as login and ftp</P
+></LI
+><LI
+><P
+>you are probably already using other 
+			services (such as telnet and ftp) which send plain text 
+			passwords over the net, so sending them for SMB isn't 
+			such a big deal.</P
+></LI
+></UL
+></DIV
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H1
+CLASS="SECT1"
+><A
+NAME="AEN53"
+><A
+NAME="SMBPASSWDFILEFORMAT"
+></A
+>The smbpasswd file</A
+></H1
+><P
+>In order for Samba to participate in the above protocol 
+	it must be able to look up the 16 byte hashed values given a user name.
+	Unfortunately, as the UNIX password value is also a one way hash
+	function (ie. it is impossible to retrieve the cleartext of the user's
+	password given the UNIX hash of it), a separate password file
+	containing this 16 byte value must be kept. To minimise problems with
+	these two password files, getting out of sync, the UNIX <TT
+CLASS="FILENAME"
+>	/etc/passwd</TT
+> and the <TT
+CLASS="FILENAME"
+>smbpasswd</TT
+> file, 
+	a utility, <B
+CLASS="COMMAND"
+>mksmbpasswd.sh</B
+>, is provided to generate
+	a smbpasswd file from a UNIX <TT
+CLASS="FILENAME"
+>/etc/passwd</TT
+> file.
+	</P
+><P
+>To generate the smbpasswd file from your <TT
+CLASS="FILENAME"
+>/etc/passwd
+	</TT
+> file use the following command :</P
+><P
+><TT
+CLASS="PROMPT"
+>$ </TT
+><TT
+CLASS="USERINPUT"
+><B
+>cat /etc/passwd | mksmbpasswd.sh
+	&gt; /usr/local/samba/private/smbpasswd</B
+></TT
+></P
+><P
+>If you are running on a system that uses NIS, use</P
+><P
+><TT
+CLASS="PROMPT"
+>$ </TT
+><TT
+CLASS="USERINPUT"
+><B
+>ypcat passwd | mksmbpasswd.sh
+	&gt; /usr/local/samba/private/smbpasswd</B
+></TT
+></P
+><P
+>The <B
+CLASS="COMMAND"
+>mksmbpasswd.sh</B
+> program is found in 
+	the Samba source directory. By default, the smbpasswd file is 
+	stored in :</P
+><P
+><TT
+CLASS="FILENAME"
+>/usr/local/samba/private/smbpasswd</TT
+></P
+><P
+>The owner of the <TT
+CLASS="FILENAME"
+>/usr/local/samba/private/</TT
+> 
+	directory should be set to root, and the permissions on it should 
+	be set to 0500 (<B
+CLASS="COMMAND"
+>chmod 500 /usr/local/samba/private</B
+>).
+	</P
+><P
+>Likewise, the smbpasswd file inside the private directory should 
+	be owned by root and the permissions on is should be set to 0600
+	(<B
+CLASS="COMMAND"
+>chmod 600 smbpasswd</B
+>).</P
+><P
+>The format of the smbpasswd file is (The line has been 
+	wrapped here. It should appear as one entry per line in 
+	your smbpasswd file.)</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>username:uid:XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX:XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX:
+	[Account type]:LCT-&lt;last-change-time&gt;:Long name
+	</PRE
+></P
+><P
+>Although only the <TT
+CLASS="REPLACEABLE"
+><I
+>username</I
+></TT
+>, 
+	<TT
+CLASS="REPLACEABLE"
+><I
+>uid</I
+></TT
+>, <TT
+CLASS="REPLACEABLE"
+><I
+>	XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX</I
+></TT
+>,
+	[<TT
+CLASS="REPLACEABLE"
+><I
+>Account type</I
+></TT
+>] and <TT
+CLASS="REPLACEABLE"
+><I
+>	last-change-time</I
+></TT
+> sections are significant 
+	and are looked at in the Samba code.</P
+><P
+>It is <I
+CLASS="EMPHASIS"
+>VITALLY</I
+> important that there by 32 
+	'X' characters between the two ':' characters in the XXX sections - 
+	the smbpasswd and Samba code will fail to validate any entries that 
+	do not have 32 characters  between ':' characters. The first XXX 
+	section is for the Lanman password hash, the second is for the 
+	Windows NT version.</P
+><P
+>When the password file is created all users have password entries
+	consisting of 32 'X' characters. By default this disallows any access
+	as this user. When a user has a password set, the 'X' characters change
+	to 32 ascii hexadecimal digits (0-9, A-F). These are an ascii
+	representation of the 16 byte hashed value of a user's password.</P
+><P
+>To set a user to have no password (not recommended), edit the file
+	using vi, and replace the first 11 characters with the ascii text
+	<TT
+CLASS="CONSTANT"
+>"NO PASSWORD"</TT
+> (minus the quotes).</P
+><P
+>For example, to clear the password for user bob, his smbpasswd file 
+	entry would look like :</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>	bob:100:NO PASSWORDXXXXXXXXXXXXXXXXXXXXX:XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX:[U          ]:LCT-00000000:Bob's full name:/bobhome:/bobshell
+	</PRE
+></P
+><P
+>If you are allowing users to use the smbpasswd command to set 
+	their own passwords, you may want to give users NO PASSWORD initially 
+	so they do not have to enter a previous password when changing to their 
+	new password (not recommended). In order for you to allow this the
+	<B
+CLASS="COMMAND"
+>smbpasswd</B
+> program must be able to connect to the 
+	<B
+CLASS="COMMAND"
+>smbd</B
+> daemon as that user with no password. Enable this 
+	by adding the line :</P
+><P
+><B
+CLASS="COMMAND"
+>null passwords = yes</B
+></P
+><P
+>to the [global] section of the smb.conf file (this is why 
+	the above scenario is not recommended). Preferably, allocate your
+	users a default password to begin with, so you do not have
+	to enable this on your server.</P
+><P
+><I
+CLASS="EMPHASIS"
+>Note : </I
+>This file should be protected very 
+	carefully. Anyone with access to this file can (with enough knowledge of 
+	the protocols) gain access to your SMB server. The file is thus more 
+	sensitive than a normal unix <TT
+CLASS="FILENAME"
+>/etc/passwd</TT
+> file.</P
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H1
+CLASS="SECT1"
+><A
+NAME="AEN105"
+>The smbpasswd Command</A
+></H1
+><P
+>The smbpasswd command maintains the two 32 byte password fields 
+	in the smbpasswd file. If you wish to make it similar to the unix 
+	<B
+CLASS="COMMAND"
+>passwd</B
+> or <B
+CLASS="COMMAND"
+>yppasswd</B
+> programs, 
+	install it in <TT
+CLASS="FILENAME"
+>/usr/local/samba/bin/</TT
+> (or your 
+	main Samba binary directory).</P
+><P
+>Note that as of Samba 1.9.18p4 this program <I
+CLASS="EMPHASIS"
+>MUST NOT 
+	BE INSTALLED</I
+> setuid root (the new <B
+CLASS="COMMAND"
+>smbpasswd</B
+> 
+	code enforces this restriction so it cannot be run this way by 
+	accident).</P
+><P
+><B
+CLASS="COMMAND"
+>smbpasswd</B
+> now works in a client-server mode 
+	where it contacts the local smbd to change the user's password on its 
+	behalf. This has enormous benefits - as follows.</P
+><P
+></P
+><UL
+><LI
+><P
+>smbpasswd no longer has to be setuid root - 
+		an enormous range of potential security problems is 
+		eliminated.</P
+></LI
+><LI
+><P
+><B
+CLASS="COMMAND"
+>smbpasswd</B
+> now has the capability 
+		to change passwords on Windows NT servers (this only works when 
+		the request is sent to the NT Primary Domain Controller if you 
+		are changing an NT Domain user's password).</P
+></LI
+></UL
+><P
+>To run smbpasswd as a normal user just type :</P
+><P
+><TT
+CLASS="PROMPT"
+>$ </TT
+><TT
+CLASS="USERINPUT"
+><B
+>smbpasswd</B
+></TT
+></P
+><P
+><TT
+CLASS="PROMPT"
+>Old SMB password: </TT
+><TT
+CLASS="USERINPUT"
+><B
+>&lt;type old value here - 
+	or hit return if there was no old password&gt;</B
+></TT
+></P
+><P
+><TT
+CLASS="PROMPT"
+>New SMB Password: </TT
+><TT
+CLASS="USERINPUT"
+><B
+>&lt;type new value&gt;
+	</B
+></TT
+></P
+><P
+><TT
+CLASS="PROMPT"
+>Repeat New SMB Password: </TT
+><TT
+CLASS="USERINPUT"
+><B
+>&lt;re-type new value
+	</B
+></TT
+></P
+><P
+>If the old value does not match the current value stored for 
+	that user, or the two new values do not match each other, then the 
+	password will not be changed.</P
+><P
+>If invoked by an ordinary user it will only allow the user 
+	to change his or her own Samba password.</P
+><P
+>If run by the root user smbpasswd may take an optional 
+	argument, specifying the user name whose SMB password you wish to 
+	change.  Note that when run as root smbpasswd does not prompt for 
+	or check the old password value, thus allowing root to set passwords 
+	for users who have forgotten their passwords.</P
+><P
+><B
+CLASS="COMMAND"
+>smbpasswd</B
+> is designed to work in the same way 
+	and be familiar to UNIX users who use the <B
+CLASS="COMMAND"
+>passwd</B
+> or 
+	<B
+CLASS="COMMAND"
+>yppasswd</B
+> commands.</P
+><P
+>For more details on using <B
+CLASS="COMMAND"
+>smbpasswd</B
+> refer 
+	to the man page which will always be the definitive reference.</P
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H1
+CLASS="SECT1"
+><A
+NAME="AEN144"
+>Setting up Samba to support LanManager Encryption</A
+></H1
+><P
+>This is a very brief description on how to setup samba to 
+	support password encryption. </P
+><P
+></P
+><OL
+TYPE="1"
+><LI
+><P
+>compile and install samba as usual</P
+></LI
+><LI
+><P
+>enable encrypted passwords in <TT
+CLASS="FILENAME"
+>		smb.conf</TT
+> by adding the line <B
+CLASS="COMMAND"
+>encrypt 
+		passwords = yes</B
+> in the [global] section</P
+></LI
+><LI
+><P
+>create the initial <TT
+CLASS="FILENAME"
+>smbpasswd</TT
+>
+		password file in the place you specified in the Makefile 
+		(--prefix=&lt;dir&gt;). See the notes under the <A
+HREF="#SMBPASSWDFILEFORMAT"
+>The smbpasswd File</A
+>
+		section earlier in the document for details.</P
+></LI
+></OL
+><P
+>Note that you can test things using smbclient.</P
+></DIV
+></DIV
+></BODY
+></HTML
+>
\ No newline at end of file
diff --git a/docs/htmldocs/NT_Security.html b/docs/htmldocs/NT_Security.html
new file mode 100644
index 00000000000..ab8797563e3
--- /dev/null
+++ b/docs/htmldocs/NT_Security.html
@@ -0,0 +1,783 @@
+<HTML
+><HEAD
+><TITLE
+>UNIX Permission Bits and Windows NT Access Control Lists</TITLE
+><META
+NAME="GENERATOR"
+CONTENT="Modular DocBook HTML Stylesheet Version 1.57"></HEAD
+><BODY
+CLASS="ARTICLE"
+BGCOLOR="#FFFFFF"
+TEXT="#000000"
+LINK="#0000FF"
+VLINK="#840084"
+ALINK="#0000FF"
+><DIV
+CLASS="ARTICLE"
+><DIV
+CLASS="TITLEPAGE"
+><H1
+CLASS="TITLE"
+><A
+NAME="UNIX-PERMISSIONS"
+>UNIX Permission Bits and Windows NT Access Control Lists</A
+></H1
+><HR></DIV
+><DIV
+CLASS="SECT1"
+><H1
+CLASS="SECT1"
+><A
+NAME="AEN3"
+>Viewing and changing UNIX permissions using the NT 
+	security dialogs</A
+></H1
+><P
+>New in the Samba 2.0.4 release is the ability for Windows 
+	NT clients to use their native security settings dialog box to 
+	view and modify the underlying UNIX permissions.</P
+><P
+>Note that this ability is careful not to compromise 
+	the security of the UNIX host Samba is running on, and 
+	still obeys all the file permission rules that a Samba 
+	administrator can set.</P
+><P
+>In Samba 2.0.4 and above the default value of the 
+	parameter <A
+HREF="smb.conf.5.html#NTACLSUPPORT"
+TARGET="_top"
+><TT
+CLASS="PARAMETER"
+><I
+>	nt acl support</I
+></TT
+></A
+> has been changed from 
+	<TT
+CLASS="CONSTANT"
+>false</TT
+> to <TT
+CLASS="CONSTANT"
+>true</TT
+>, so 
+ 	manipulation of permissions is turned on by default.</P
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H1
+CLASS="SECT1"
+><A
+NAME="AEN12"
+>How to view file security on a Samba share</A
+></H1
+><P
+>From an NT 4.0 client, single-click with the right 
+	mouse button on any file or directory in a Samba mounted 
+	drive letter or UNC path. When the menu pops-up, click 
+	on the <I
+CLASS="EMPHASIS"
+>Properties</I
+> entry at the bottom of 
+	the menu. This brings up the normal file properties dialog
+	box, but with Samba 2.0.4 this will have a new tab along the top
+	marked <I
+CLASS="EMPHASIS"
+>Security</I
+>. Click on this tab and you 
+	will see three buttons, <I
+CLASS="EMPHASIS"
+>Permissions</I
+>, 	
+	<I
+CLASS="EMPHASIS"
+>Auditing</I
+>, and <I
+CLASS="EMPHASIS"
+>Ownership</I
+>. 
+	The <I
+CLASS="EMPHASIS"
+>Auditing</I
+> button will cause either 
+	an error message <SPAN
+CLASS="ERRORNAME"
+>A requested privilege is not held 
+	by the client</SPAN
+> to appear if the user is not the 
+	NT Administrator, or a dialog which is intended to allow an 
+	Administrator to add auditing requirements to a file if the 
+	user is logged on as the NT Administrator. This dialog is 
+	non-functional with a Samba share at this time, as the only 
+	useful button, the <B
+CLASS="COMMAND"
+>Add</B
+> button will not currently 
+	allow a list of users to be seen.</P
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H1
+CLASS="SECT1"
+><A
+NAME="AEN23"
+>Viewing file ownership</A
+></H1
+><P
+>Clicking on the <B
+CLASS="COMMAND"
+>"Ownership"</B
+> button 
+	brings up a dialog box telling you who owns the given file. The 
+	owner name will be of the form :</P
+><P
+><B
+CLASS="COMMAND"
+>"SERVER\user (Long name)"</B
+></P
+><P
+>Where <TT
+CLASS="REPLACEABLE"
+><I
+>SERVER</I
+></TT
+> is the NetBIOS name of 
+	the Samba server, <TT
+CLASS="REPLACEABLE"
+><I
+>user</I
+></TT
+> is the user name of 
+	the UNIX user who owns the file, and <TT
+CLASS="REPLACEABLE"
+><I
+>(Long name)</I
+></TT
+>
+	is the descriptive string identifying the user (normally found in the
+	GECOS field of the UNIX password database). Click on the <B
+CLASS="COMMAND"
+>Close
+	</B
+> button to remove this dialog.</P
+><P
+>If the parameter <TT
+CLASS="PARAMETER"
+><I
+>nt acl support</I
+></TT
+>
+	is set to <TT
+CLASS="CONSTANT"
+>false</TT
+> then the file owner will 
+	be shown as the NT user <B
+CLASS="COMMAND"
+>"Everyone"</B
+>.</P
+><P
+>The <B
+CLASS="COMMAND"
+>Take Ownership</B
+> button will not allow 
+	you to change the ownership of this file to yourself (clicking on 
+	it will display a dialog box complaining that the user you are 
+	currently logged onto the NT client cannot be found). The reason 
+	for this is that changing the ownership of a file is a privileged 
+	operation in UNIX, available only to the <I
+CLASS="EMPHASIS"
+>root</I
+> 
+	user. As clicking on this button causes NT to attempt to change 
+	the ownership of a file to the current user logged into the NT 
+	client this will not work with Samba at this time.</P
+><P
+>There is an NT chown command that will work with Samba 
+	and allow a user with Administrator privilege connected 
+	to a Samba 2.0.4 server as root to change the ownership of 
+	files on both a local NTFS filesystem or remote mounted NTFS 
+	or Samba drive. This is available as part of the <I
+CLASS="EMPHASIS"
+>Seclib
+	</I
+> NT security library written by Jeremy Allison of 
+	the Samba Team, available from the main Samba ftp site.</P
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H1
+CLASS="SECT1"
+><A
+NAME="AEN43"
+>Viewing file or directory permissions</A
+></H1
+><P
+>The third button is the <B
+CLASS="COMMAND"
+>"Permissions"</B
+> 
+	button. Clicking on this brings up a dialog box that shows both 
+	the permissions and the UNIX owner of the file or directory. 
+	The owner is displayed in the form :</P
+><P
+><B
+CLASS="COMMAND"
+>"SERVER\user (Long name)"</B
+></P
+><P
+>Where <TT
+CLASS="REPLACEABLE"
+><I
+>SERVER</I
+></TT
+> is the NetBIOS name of 
+	the Samba server, <TT
+CLASS="REPLACEABLE"
+><I
+>user</I
+></TT
+> is the user name of 
+	the UNIX user who owns the file, and <TT
+CLASS="REPLACEABLE"
+><I
+>(Long name)</I
+></TT
+>
+	is the descriptive string identifying the user (normally found in the
+	GECOS field of the UNIX password database).</P
+><P
+>If the parameter <TT
+CLASS="PARAMETER"
+><I
+>nt acl support</I
+></TT
+>
+	is set to <TT
+CLASS="CONSTANT"
+>false</TT
+> then the file owner will 
+	be shown as the NT user <B
+CLASS="COMMAND"
+>"Everyone"</B
+> and the 
+	permissions will be shown as NT "Full Control".</P
+><P
+>The permissions field is displayed differently for files 
+	and directories, so I'll describe the way file permissions 
+	are displayed first.</P
+><DIV
+CLASS="SECT2"
+><HR><H2
+CLASS="SECT2"
+><A
+NAME="AEN58"
+>File Permissions</A
+></H2
+><P
+>The standard UNIX user/group/world triple and 
+		the corresponding "read", "write", "execute" permissions 
+		triples are mapped by Samba into a three element NT ACL 
+		with the 'r', 'w', and 'x' bits mapped into the corresponding 
+		NT permissions. The UNIX world permissions are mapped into 
+		the global NT group <B
+CLASS="COMMAND"
+>Everyone</B
+>, followed 
+		by the list of permissions allowed for UNIX world. The UNIX 
+		owner and group permissions are displayed as an NT 
+		<B
+CLASS="COMMAND"
+>user</B
+> icon and an NT <B
+CLASS="COMMAND"
+>local 
+		group</B
+> icon respectively followed by the list 
+	 	of permissions allowed for the UNIX user and group.</P
+><P
+>As many UNIX permission sets don't map into common 
+		NT names such as <B
+CLASS="COMMAND"
+>"read"</B
+>, <B
+CLASS="COMMAND"
+>		"change"</B
+> or <B
+CLASS="COMMAND"
+>"full control"</B
+> then 
+		usually the permissions will be prefixed by the words <B
+CLASS="COMMAND"
+>		"Special Access"</B
+> in the NT display list.</P
+><P
+>But what happens if the file has no permissions allowed 
+		for a particular UNIX user group or world component ? In order 
+		to  allow "no permissions" to be seen and modified then Samba 
+		overloads the NT <B
+CLASS="COMMAND"
+>"Take Ownership"</B
+> ACL attribute 
+		(which has no meaning in UNIX) and reports a component with 
+		no permissions as having the NT <B
+CLASS="COMMAND"
+>"O"</B
+> bit set. 
+		This was chosen of course to make it look like a zero, meaning 
+		zero permissions. More details on the decision behind this will 
+		be given below.</P
+></DIV
+><DIV
+CLASS="SECT2"
+><HR><H2
+CLASS="SECT2"
+><A
+NAME="AEN72"
+>Directory Permissions</A
+></H2
+><P
+>Directories on an NT NTFS file system have two 
+		different sets of permissions. The first set of permissions 
+		is the ACL set on the directory itself, this is usually displayed 
+		in the first set of parentheses in the normal <B
+CLASS="COMMAND"
+>"RW"</B
+> 
+		NT style. This first set of permissions is created by Samba in 
+		exactly the same way as normal file permissions are, described 
+		above, and is displayed in the same way.</P
+><P
+>The second set of directory permissions has no real meaning 
+		in the UNIX permissions world and represents the <B
+CLASS="COMMAND"
+>		"inherited"</B
+> permissions that any file created within 
+		this directory would inherit.</P
+><P
+>Samba synthesises these inherited permissions for NT by 
+		returning as an NT ACL the UNIX permission mode that a new file 
+		created by Samba on this share would receive.</P
+></DIV
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H1
+CLASS="SECT1"
+><A
+NAME="AEN79"
+>Modifying file or directory permissions</A
+></H1
+><P
+>Modifying file and directory permissions is as simple 
+	as changing the displayed permissions in the dialog box, and 
+	clicking the <B
+CLASS="COMMAND"
+>OK</B
+> button. However, there are 
+	limitations that a user needs to be aware of, and also interactions 
+	with the standard Samba permission masks and mapping of DOS 
+	attributes that need to also be taken into account.</P
+><P
+>If the parameter <TT
+CLASS="PARAMETER"
+><I
+>nt acl support</I
+></TT
+>
+	is set to <TT
+CLASS="CONSTANT"
+>false</TT
+> then any attempt to set 
+	security permissions will fail with an <B
+CLASS="COMMAND"
+>"Access Denied"
+	</B
+> message.</P
+><P
+>The first thing to note is that the <B
+CLASS="COMMAND"
+>"Add"</B
+> 
+	button will not return a list of users in Samba 2.0.4 (it will give 
+	an error message of <B
+CLASS="COMMAND"
+>"The remote procedure call failed 
+	and did not execute"</B
+>). This means that you can only 
+	manipulate the current user/group/world permissions listed in 
+	the dialog box. This actually works quite well as these are the 
+	only permissions that UNIX actually has.</P
+><P
+>If a permission triple (either user, group, or world) 
+	is removed from the list of permissions in the NT dialog box, 
+	then when the <B
+CLASS="COMMAND"
+>"OK"</B
+> button is pressed it will 
+	be applied as "no permissions" on the UNIX side. If you then 
+	view the permissions again the "no permissions" entry will appear 
+	as the NT <B
+CLASS="COMMAND"
+>"O"</B
+> flag, as described above. This 
+	allows you to add permissions back to a file or directory once 
+	you have removed them from a triple component.</P
+><P
+>As UNIX supports only the "r", "w" and "x" bits of 
+	an NT ACL then if other NT security attributes such as "Delete 
+	access" are selected then they will be ignored when applied on 
+	the Samba server.</P
+><P
+>When setting permissions on a directory the second 
+	set of permissions (in the second set of parentheses) is 
+	by default applied to all files within that directory. If this 
+	is not what you want you must uncheck the <B
+CLASS="COMMAND"
+>"Replace 
+	permissions on existing files"</B
+> checkbox in the NT 
+	dialog before clicking <B
+CLASS="COMMAND"
+>"OK"</B
+>.</P
+><P
+>If you wish to remove all permissions from a 
+	user/group/world  component then you may either highlight the 
+	component and click the <B
+CLASS="COMMAND"
+>"Remove"</B
+> button, 
+	or set the component to only have the special <B
+CLASS="COMMAND"
+>"Take
+	Ownership"</B
+> permission (displayed as <B
+CLASS="COMMAND"
+>"O"
+	</B
+>) highlighted.</P
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H1
+CLASS="SECT1"
+><A
+NAME="AEN101"
+>Interaction with the standard Samba create mask 
+	parameters</A
+></H1
+><P
+>Note that with Samba 2.0.5 there are four new parameters 
+	to control this interaction.  These are :</P
+><P
+><TT
+CLASS="PARAMETER"
+><I
+>security mask</I
+></TT
+></P
+><P
+><TT
+CLASS="PARAMETER"
+><I
+>force security mode</I
+></TT
+></P
+><P
+><TT
+CLASS="PARAMETER"
+><I
+>directory security mask</I
+></TT
+></P
+><P
+><TT
+CLASS="PARAMETER"
+><I
+>force directory security mode</I
+></TT
+></P
+><P
+>Once a user clicks <B
+CLASS="COMMAND"
+>"OK"</B
+> to apply the 
+	permissions Samba maps the given permissions into a user/group/world 
+	r/w/x triple set, and then will check the changed permissions for a 
+	file against the bits set in the <A
+HREF="smb.conf.5.html#SECURITYMASK"
+TARGET="_top"
+> 
+	<TT
+CLASS="PARAMETER"
+><I
+>security mask</I
+></TT
+></A
+> parameter. Any bits that 
+	were changed that are not set to '1' in this parameter are left alone 
+	in the file permissions.</P
+><P
+>Essentially, zero bits in the <TT
+CLASS="PARAMETER"
+><I
+>security mask</I
+></TT
+>
+	mask may be treated as a set of bits the user is <I
+CLASS="EMPHASIS"
+>not</I
+> 
+	allowed to change, and one bits are those the user is allowed to change.
+	</P
+><P
+>If not set explicitly this parameter is set to the same value as 
+	the <A
+HREF="smb.conf.5.html#CREATEMASK"
+TARGET="_top"
+><TT
+CLASS="PARAMETER"
+><I
+>create mask
+	</I
+></TT
+></A
+> parameter to provide compatibility with Samba 2.0.4 
+	where this permission change facility was introduced. To allow a user to 
+	modify all the user/group/world permissions on a file, set this parameter 
+	to 0777.</P
+><P
+>Next Samba checks the changed permissions for a file against 
+	the bits set in the <A
+HREF="smb.conf.5.html#FORCESECURITYMODE"
+TARGET="_top"
+>	<TT
+CLASS="PARAMETER"
+><I
+>force security mode</I
+></TT
+></A
+> parameter. Any bits 
+	that were changed that correspond to bits set to '1' in this parameter 
+	are forced to be set.</P
+><P
+>Essentially, bits set in the <TT
+CLASS="PARAMETER"
+><I
+>force security mode
+	</I
+></TT
+> parameter may be treated as a set of bits that, when 
+	modifying security on a file, the user has always set to be 'on'.</P
+><P
+>If not set explicitly this parameter is set to the same value 
+	as the <A
+HREF="smb.conf.5.html#FORCECREATEMODE"
+TARGET="_top"
+><TT
+CLASS="PARAMETER"
+><I
+>force 
+	create mode</I
+></TT
+></A
+> parameter to provide compatibility
+	with Samba 2.0.4 where the permission change facility was introduced.
+	To allow a user to modify all the user/group/world permissions on a file
+	with no restrictions set this parameter to 000.</P
+><P
+>The <TT
+CLASS="PARAMETER"
+><I
+>security mask</I
+></TT
+> and <TT
+CLASS="PARAMETER"
+><I
+>force 
+	security mode</I
+></TT
+> parameters are applied to the change 
+	request in that order.</P
+><P
+>For a directory Samba will perform the same operations as 
+	described above for a file except using the parameter <TT
+CLASS="PARAMETER"
+><I
+>	directory security mask</I
+></TT
+> instead of <TT
+CLASS="PARAMETER"
+><I
+>security 
+	mask</I
+></TT
+>, and <TT
+CLASS="PARAMETER"
+><I
+>force directory security mode
+	</I
+></TT
+> parameter instead of <TT
+CLASS="PARAMETER"
+><I
+>force security mode
+	</I
+></TT
+>.</P
+><P
+>The <TT
+CLASS="PARAMETER"
+><I
+>directory security mask</I
+></TT
+> parameter 
+	by default is set to the same value as the <TT
+CLASS="PARAMETER"
+><I
+>directory mask
+	</I
+></TT
+> parameter and the <TT
+CLASS="PARAMETER"
+><I
+>force directory security 
+	mode</I
+></TT
+> parameter by default is set to the same value as 
+ 	the <TT
+CLASS="PARAMETER"
+><I
+>force directory mode</I
+></TT
+> parameter to provide 
+	compatibility with Samba 2.0.4 where the permission change facility 
+	was introduced.</P
+><P
+>In this way Samba enforces the permission restrictions that 
+	an administrator can set on a Samba share, whilst still allowing users 
+	to modify the permission bits within that restriction.</P
+><P
+>If you want to set up a share that allows users full control
+	in modifying the permission bits on their files and directories and
+	doesn't force any particular bits to be set 'on', then set the following
+	parameters in the <A
+HREF="smb.conf.5.html"
+TARGET="_top"
+><TT
+CLASS="FILENAME"
+>smb.conf(5)
+	</TT
+></A
+> file in that share specific section :</P
+><P
+><TT
+CLASS="PARAMETER"
+><I
+>security mask = 0777</I
+></TT
+></P
+><P
+><TT
+CLASS="PARAMETER"
+><I
+>force security mode = 0</I
+></TT
+></P
+><P
+><TT
+CLASS="PARAMETER"
+><I
+>directory security mask = 0777</I
+></TT
+></P
+><P
+><TT
+CLASS="PARAMETER"
+><I
+>force directory security mode = 0</I
+></TT
+></P
+><P
+>As described, in Samba 2.0.4 the parameters :</P
+><P
+><TT
+CLASS="PARAMETER"
+><I
+>create mask</I
+></TT
+></P
+><P
+><TT
+CLASS="PARAMETER"
+><I
+>force create mode</I
+></TT
+></P
+><P
+><TT
+CLASS="PARAMETER"
+><I
+>directory mask</I
+></TT
+></P
+><P
+><TT
+CLASS="PARAMETER"
+><I
+>force directory mode</I
+></TT
+></P
+><P
+>were used instead of the parameters discussed here.</P
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H1
+CLASS="SECT1"
+><A
+NAME="AEN165"
+>Interaction with the standard Samba file attribute 
+	mapping</A
+></H1
+><P
+>Samba maps some of the DOS attribute bits (such as "read 
+	only") into the UNIX permissions of a file. This means there can 
+	be a conflict between the permission bits set via the security 
+	dialog and the permission bits set by the file attribute mapping.
+	</P
+><P
+>One way this can show up is if a file has no UNIX read access
+	for the owner it will show up as "read only" in the standard 
+	file attributes tabbed dialog. Unfortunately this dialog is
+	the same one that contains the security info in another tab.</P
+><P
+>What this can mean is that if the owner changes the permissions
+	to allow themselves read access using the security dialog, clicks
+	<B
+CLASS="COMMAND"
+>"OK"</B
+> to get back to the standard attributes tab 
+	dialog, and then clicks <B
+CLASS="COMMAND"
+>"OK"</B
+> on that dialog, then 
+	NT will set the file permissions back to read-only (as that is what 
+	the attributes still say in the dialog). This means that after setting 
+	permissions and clicking <B
+CLASS="COMMAND"
+>"OK"</B
+> to get back to the 
+	attributes dialog you should always hit <B
+CLASS="COMMAND"
+>"Cancel"</B
+> 
+	rather than <B
+CLASS="COMMAND"
+>"OK"</B
+> to ensure that your changes 
+	are not overridden.</P
+></DIV
+></DIV
+></BODY
+></HTML
+>
\ No newline at end of file
diff --git a/docs/htmldocs/Samba-Developers-Guide.html b/docs/htmldocs/Samba-Developers-Guide.html
index b90d99bf66f..7c008667af4 100644
--- a/docs/htmldocs/Samba-Developers-Guide.html
+++ b/docs/htmldocs/Samba-Developers-Guide.html
@@ -1,11 +1,12 @@
-<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN">
 <HTML
 ><HEAD
 ><TITLE
 >SAMBA Developers Guide</TITLE
 ><META
 NAME="GENERATOR"
-CONTENT="Modular DocBook HTML Stylesheet Version 1.77"></HEAD
+CONTENT="Modular DocBook HTML Stylesheet Version 1.76b+
+"></HEAD
 ><BODY
 CLASS="BOOK"
 BGCOLOR="#FFFFFF"
@@ -16,35 +17,24 @@ ALINK="#0000FF"
 ><DIV
 CLASS="BOOK"
 ><A
-NAME="SAMBA-DEVELOPERS-GUIDE"
-></A
-><DIV
+NAME="SAMBA-DEVELOPER-DOCUMENTATION"><DIV
 CLASS="TITLEPAGE"
 ><H1
 CLASS="TITLE"
 ><A
-NAME="SAMBA-DEVELOPERS-GUIDE"
-></A
->SAMBA Developers Guide</H1
+NAME="SAMBA-DEVELOPER-DOCUMENTATION">SAMBA Developers Guide</H1
 ><H3
 CLASS="AUTHOR"
 ><A
-NAME="AEN4"
-></A
->SAMBA Team</H3
+NAME="AEN4">SAMBA Team</H3
 ><HR></DIV
 ><HR><H1
 ><A
-NAME="AEN8"
-></A
->Abstract</H1
+NAME="AEN8">Abstract</H1
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Last Update</I
-></SPAN
 > : Mon Sep 30 15:23:53 CDT 2002</P
 ><P
 >This book is a collection of documents that might be useful for 
@@ -78,109 +68,109 @@ CLASS="TOC"
 >Table of Contents</B
 ></DT
 ><DT
->1. <A
+><A
 HREF="#NETBIOS"
 >Definition of NetBIOS Protocol and Name Resolution Modes</A
 ></DT
 ><DD
 ><DL
 ><DT
->1.1. <A
+><A
 HREF="#AEN24"
 >NETBIOS</A
 ></DT
 ><DT
->1.2. <A
+><A
 HREF="#AEN35"
 >BROADCAST NetBIOS</A
 ></DT
 ><DT
->1.3. <A
+><A
 HREF="#AEN39"
 >NBNS NetBIOS</A
 ></DT
 ></DL
 ></DD
 ><DT
->2. <A
+><A
 HREF="#ARCHITECTURE"
 >Samba Architecture</A
 ></DT
 ><DD
 ><DL
 ><DT
->2.1. <A
+><A
 HREF="#AEN54"
 >Introduction</A
 ></DT
 ><DT
->2.2. <A
+><A
 HREF="#AEN65"
 >Multithreading and Samba</A
 ></DT
 ><DT
->2.3. <A
+><A
 HREF="#AEN70"
 >Threading smbd</A
 ></DT
 ><DT
->2.4. <A
+><A
 HREF="#AEN86"
 >Threading nmbd</A
 ></DT
 ><DT
->2.5. <A
+><A
 HREF="#AEN92"
 >nbmd Design</A
 ></DT
 ></DL
 ></DD
 ><DT
->3. <A
+><A
 HREF="#DEBUG"
 >The samba DEBUG system</A
 ></DT
 ><DD
 ><DL
 ><DT
->3.1. <A
+><A
 HREF="#AEN103"
 >New Output Syntax</A
 ></DT
 ><DT
->3.2. <A
+><A
 HREF="#AEN128"
 >The DEBUG() Macro</A
 ></DT
 ><DT
->3.3. <A
+><A
 HREF="#AEN151"
 >The DEBUGADD() Macro</A
 ></DT
 ><DT
->3.4. <A
+><A
 HREF="#AEN159"
 >The DEBUGLVL() Macro</A
 ></DT
 ><DT
->3.5. <A
+><A
 HREF="#AEN179"
 >New Functions</A
 ></DT
 ><DD
 ><DL
 ><DT
->3.5.1. <A
+><A
 HREF="#AEN181"
 >dbgtext()</A
 ></DT
 ><DT
->3.5.2. <A
+><A
 HREF="#AEN184"
 >dbghdr()</A
 ></DT
 ><DT
->3.5.3. <A
+><A
 HREF="#AEN188"
 >format_debug_text()</A
 ></DT
@@ -189,177 +179,177 @@ HREF="#AEN188"
 ></DL
 ></DD
 ><DT
->4. <A
+><A
 HREF="#CODINGSUGGESTIONS"
 >Coding Suggestions</A
 ></DT
 ><DT
->5. <A
+><A
 HREF="#INTERNALS"
 >Samba Internals</A
 ></DT
 ><DD
 ><DL
 ><DT
->5.1. <A
+><A
 HREF="#AEN284"
 >Character Handling</A
 ></DT
 ><DT
->5.2. <A
+><A
 HREF="#AEN288"
 >The new functions</A
 ></DT
 ><DT
->5.3. <A
+><A
 HREF="#AEN317"
 >Macros in byteorder.h</A
 ></DT
 ><DD
 ><DL
 ><DT
->5.3.1. <A
+><A
 HREF="#AEN320"
 >CVAL(buf,pos)</A
 ></DT
 ><DT
->5.3.2. <A
+><A
 HREF="#AEN323"
 >PVAL(buf,pos)</A
 ></DT
 ><DT
->5.3.3. <A
+><A
 HREF="#AEN326"
 >SCVAL(buf,pos,val)</A
 ></DT
 ><DT
->5.3.4. <A
+><A
 HREF="#AEN329"
 >SVAL(buf,pos)</A
 ></DT
 ><DT
->5.3.5. <A
+><A
 HREF="#AEN332"
 >IVAL(buf,pos)</A
 ></DT
 ><DT
->5.3.6. <A
+><A
 HREF="#AEN335"
 >SVALS(buf,pos)</A
 ></DT
 ><DT
->5.3.7. <A
+><A
 HREF="#AEN338"
 >IVALS(buf,pos)</A
 ></DT
 ><DT
->5.3.8. <A
+><A
 HREF="#AEN341"
 >SSVAL(buf,pos,val)</A
 ></DT
 ><DT
->5.3.9. <A
+><A
 HREF="#AEN344"
 >SIVAL(buf,pos,val)</A
 ></DT
 ><DT
->5.3.10. <A
+><A
 HREF="#AEN347"
 >SSVALS(buf,pos,val)</A
 ></DT
 ><DT
->5.3.11. <A
+><A
 HREF="#AEN350"
 >SIVALS(buf,pos,val)</A
 ></DT
 ><DT
->5.3.12. <A
+><A
 HREF="#AEN353"
 >RSVAL(buf,pos)</A
 ></DT
 ><DT
->5.3.13. <A
+><A
 HREF="#AEN356"
 >RIVAL(buf,pos)</A
 ></DT
 ><DT
->5.3.14. <A
+><A
 HREF="#AEN359"
 >RSSVAL(buf,pos,val)</A
 ></DT
 ><DT
->5.3.15. <A
+><A
 HREF="#AEN362"
 >RSIVAL(buf,pos,val)</A
 ></DT
 ></DL
 ></DD
 ><DT
->5.4. <A
+><A
 HREF="#AEN365"
 >LAN Manager Samba API</A
 ></DT
 ><DD
 ><DL
 ><DT
->5.4.1. <A
+><A
 HREF="#AEN371"
 >Parameters</A
 ></DT
 ><DT
->5.4.2. <A
+><A
 HREF="#AEN406"
 >Return value</A
 ></DT
 ></DL
 ></DD
 ><DT
->5.5. <A
+><A
 HREF="#AEN420"
 >Code character table</A
 ></DT
 ></DL
 ></DD
 ><DT
->6. <A
+><A
 HREF="#PARSING"
 >The smb.conf file</A
 ></DT
 ><DD
 ><DL
 ><DT
->6.1. <A
+><A
 HREF="#AEN451"
 >Lexical Analysis</A
 ></DT
 ><DD
 ><DL
 ><DT
->6.1.1. <A
+><A
 HREF="#AEN472"
 >Handling of Whitespace</A
 ></DT
 ><DT
->6.1.2. <A
+><A
 HREF="#AEN484"
 >Handling of Line Continuation</A
 ></DT
 ><DT
->6.1.3. <A
+><A
 HREF="#AEN495"
 >Line Continuation Quirks</A
 ></DT
 ></DL
 ></DD
 ><DT
->6.2. <A
+><A
 HREF="#AEN515"
 >Syntax</A
 ></DT
 ><DD
 ><DL
 ><DT
->6.2.1. <A
+><A
 HREF="#AEN530"
 >About params.c</A
 ></DT
@@ -368,294 +358,294 @@ HREF="#AEN530"
 ></DL
 ></DD
 ><DT
->7. <A
+><A
 HREF="#UNIX-SMB"
 >NetBIOS in a Unix World</A
 ></DT
 ><DD
 ><DL
 ><DT
->7.1. <A
+><A
 HREF="#AEN540"
 >Introduction</A
 ></DT
 ><DT
->7.2. <A
+><A
 HREF="#AEN544"
 >Usernames</A
 ></DT
 ><DT
->7.3. <A
+><A
 HREF="#AEN552"
 >File Ownership</A
 ></DT
 ><DT
->7.4. <A
+><A
 HREF="#AEN557"
 >Passwords</A
 ></DT
 ><DT
->7.5. <A
+><A
 HREF="#AEN563"
 >Locking</A
 ></DT
 ><DT
->7.6. <A
-HREF="#AEN571"
+><A
+HREF="#AEN570"
 >Deny Modes</A
 ></DT
 ><DT
->7.7. <A
-HREF="#AEN575"
+><A
+HREF="#AEN574"
 >Trapdoor UIDs</A
 ></DT
 ><DT
->7.8. <A
-HREF="#AEN579"
+><A
+HREF="#AEN578"
 >Port numbers</A
 ></DT
 ><DT
->7.9. <A
-HREF="#AEN584"
+><A
+HREF="#AEN583"
 >Protocol Complexity</A
 ></DT
 ></DL
 ></DD
 ><DT
->8. <A
+><A
 HREF="#TRACING"
 >Tracing samba system calls</A
 ></DT
 ><DT
->9. <A
+><A
 HREF="#NTDOMAIN"
 >NT Domain RPC's</A
 ></DT
 ><DD
 ><DL
 ><DT
->9.1. <A
-HREF="#AEN652"
+><A
+HREF="#AEN651"
 >Introduction</A
 ></DT
 ><DD
 ><DL
 ><DT
->9.1.1. <A
-HREF="#AEN688"
+><A
+HREF="#AEN687"
 >Sources</A
 ></DT
 ><DT
->9.1.2. <A
-HREF="#AEN695"
+><A
+HREF="#AEN694"
 >Credits</A
 ></DT
 ></DL
 ></DD
 ><DT
->9.2. <A
-HREF="#AEN702"
+><A
+HREF="#AEN701"
 >Notes and Structures</A
 ></DT
 ><DD
 ><DL
 ><DT
->9.2.1. <A
-HREF="#AEN704"
+><A
+HREF="#AEN703"
 >Notes</A
 ></DT
 ><DT
->9.2.2. <A
-HREF="#AEN717"
+><A
+HREF="#AEN716"
 >Enumerations</A
 ></DT
 ><DT
->9.2.3. <A
-HREF="#AEN775"
+><A
+HREF="#AEN774"
 >Structures</A
 ></DT
 ></DL
 ></DD
 ><DT
->9.3. <A
-HREF="#AEN1571"
+><A
+HREF="#AEN1570"
 >MSRPC over Transact Named Pipe</A
 ></DT
 ><DD
 ><DL
 ><DT
->9.3.1. <A
-HREF="#AEN1574"
+><A
+HREF="#AEN1573"
 >MSRPC Pipes</A
 ></DT
 ><DT
->9.3.2. <A
-HREF="#AEN1588"
+><A
+HREF="#AEN1587"
 >Header</A
 ></DT
 ><DT
->9.3.3. <A
-HREF="#AEN1842"
+><A
+HREF="#AEN1841"
 >Tail</A
 ></DT
 ><DT
->9.3.4. <A
-HREF="#AEN1854"
+><A
+HREF="#AEN1853"
 >RPC Bind / Bind Ack</A
 ></DT
 ><DT
->9.3.5. <A
-HREF="#AEN1898"
+><A
+HREF="#AEN1897"
 >NTLSA Transact Named Pipe</A
 ></DT
 ><DT
->9.3.6. <A
-HREF="#AEN1939"
+><A
+HREF="#AEN1938"
 >LSA Open Policy</A
 ></DT
 ><DT
->9.3.7. <A
-HREF="#AEN1973"
+><A
+HREF="#AEN1972"
 >LSA Query Info Policy</A
 ></DT
 ><DT
->9.3.8. <A
-HREF="#AEN2001"
+><A
+HREF="#AEN2000"
 >LSA Enumerate Trusted Domains</A
 ></DT
 ><DT
->9.3.9. <A
-HREF="#AEN2025"
+><A
+HREF="#AEN2024"
 >LSA Open Secret</A
 ></DT
 ><DT
->9.3.10. <A
-HREF="#AEN2054"
+><A
+HREF="#AEN2053"
 >LSA Close</A
 ></DT
 ><DT
->9.3.11. <A
-HREF="#AEN2071"
+><A
+HREF="#AEN2070"
 >LSA Lookup SIDS</A
 ></DT
 ><DT
->9.3.12. <A
-HREF="#AEN2130"
+><A
+HREF="#AEN2129"
 >LSA Lookup Names</A
 ></DT
 ></DL
 ></DD
 ><DT
->9.4. <A
-HREF="#AEN2193"
+><A
+HREF="#AEN2192"
 >NETLOGON rpc Transact Named Pipe</A
 ></DT
 ><DD
 ><DL
 ><DT
->9.4.1. <A
-HREF="#AEN2232"
+><A
+HREF="#AEN2231"
 >LSA Request Challenge</A
 ></DT
 ><DT
->9.4.2. <A
-HREF="#AEN2267"
+><A
+HREF="#AEN2266"
 >LSA Authenticate 2</A
 ></DT
 ><DT
->9.4.3. <A
-HREF="#AEN2306"
+><A
+HREF="#AEN2305"
 >LSA Server Password Set</A
 ></DT
 ><DT
->9.4.4. <A
-HREF="#AEN2335"
+><A
+HREF="#AEN2334"
 >LSA SAM Logon</A
 ></DT
 ><DT
->9.4.5. <A
-HREF="#AEN2359"
+><A
+HREF="#AEN2358"
 >LSA SAM Logoff</A
 ></DT
 ></DL
 ></DD
 ><DT
->9.5. <A
-HREF="#AEN2382"
+><A
+HREF="#AEN2381"
 >\\MAILSLOT\NET\NTLOGON</A
 ></DT
 ><DD
 ><DL
 ><DT
->9.5.1. <A
-HREF="#AEN2386"
+><A
+HREF="#AEN2385"
 >Query for PDC</A
 ></DT
 ><DT
->9.5.2. <A
-HREF="#AEN2460"
+><A
+HREF="#AEN2459"
 >SAM Logon</A
 ></DT
 ></DL
 ></DD
 ><DT
->9.6. <A
-HREF="#AEN2550"
+><A
+HREF="#AEN2549"
 >SRVSVC Transact Named Pipe</A
 ></DT
 ><DD
 ><DL
 ><DT
->9.6.1. <A
-HREF="#AEN2562"
+><A
+HREF="#AEN2561"
 >Net Share Enum</A
 ></DT
 ><DT
->9.6.2. <A
-HREF="#AEN2623"
+><A
+HREF="#AEN2622"
 >Net Server Get Info</A
 ></DT
 ></DL
 ></DD
 ><DT
->9.7. <A
-HREF="#AEN2654"
+><A
+HREF="#AEN2653"
 >Cryptographic side of NT Domain Authentication</A
 ></DT
 ><DD
 ><DL
 ><DT
->9.7.1. <A
-HREF="#AEN2656"
+><A
+HREF="#AEN2655"
 >Definitions</A
 ></DT
 ><DT
->9.7.2. <A
-HREF="#AEN2699"
+><A
+HREF="#AEN2698"
 >Protocol</A
 ></DT
 ><DT
->9.7.3. <A
-HREF="#AEN2709"
+><A
+HREF="#AEN2708"
 >Comments</A
 ></DT
 ></DL
 ></DD
 ><DT
->9.8. <A
-HREF="#AEN2716"
+><A
+HREF="#AEN2715"
 >SIDs and RIDs</A
 ></DT
 ><DD
 ><DL
 ><DT
->9.8.1. <A
-HREF="#AEN2724"
+><A
+HREF="#AEN2723"
 >Well-known SIDs</A
 ></DT
 ><DT
->9.8.2. <A
-HREF="#AEN2812"
+><A
+HREF="#AEN2811"
 >Well-known RIDS</A
 ></DT
 ></DL
@@ -663,154 +653,50 @@ HREF="#AEN2812"
 ></DL
 ></DD
 ><DT
->10. <A
+><A
 HREF="#PRINTING"
 >Samba Printing Internals</A
 ></DT
 ><DD
 ><DL
 ><DT
->10.1. <A
-HREF="#AEN2896"
+><A
+HREF="#AEN2895"
 >Abstract</A
 ></DT
 ><DT
->10.2. <A
-HREF="#AEN2899"
+><A
+HREF="#AEN2898"
 >Printing Interface to Various Back ends</A
 ></DT
 ><DT
->10.3. <A
-HREF="#AEN2925"
+><A
+HREF="#AEN2924"
 >Print Queue TDB's</A
 ></DT
 ><DT
->10.4. <A
-HREF="#AEN2959"
+><A
+HREF="#AEN2958"
 >ChangeID &#38; Client Caching of Printer Information</A
 ></DT
 ><DT
->10.5. <A
-HREF="#AEN2962"
+><A
+HREF="#AEN2961"
 >Windows NT/2K Printer Change Notify</A
 ></DT
 ></DL
 ></DD
 ><DT
->11. <A
+><A
 HREF="#WINS"
 >Samba WINS Internals</A
 ></DT
 ><DD
 ><DL
 ><DT
->11.1. <A
-HREF="#AEN3033"
->WINS Failover</A
-></DT
-></DL
-></DD
-><DT
->12. <A
-HREF="#SAM"
->The Upcoming SAM System</A
-></DT
-><DD
-><DL
-><DT
->12.1. <A
-HREF="#AEN3054"
->Security in the 'new SAM'</A
-></DT
-><DT
->12.2. <A
-HREF="#AEN3071"
->Standalone from UNIX</A
-></DT
-><DT
->12.3. <A
-HREF="#AEN3075"
->Handles and Races in the new SAM</A
-></DT
-><DT
->12.4. <A
-HREF="#AEN3086"
->Layers</A
-></DT
-><DD
-><DL
-><DT
->12.4.1. <A
-HREF="#AEN3088"
->Application</A
-></DT
-><DT
->12.4.2. <A
-HREF="#AEN3091"
->SAM Interface</A
-></DT
-><DT
->12.4.3. <A
-HREF="#AEN3095"
->SAM Modules</A
-></DT
-></DL
-></DD
-><DT
->12.5. <A
-HREF="#AEN3098"
->SAM Modules</A
-></DT
-><DD
-><DL
-><DT
->12.5.1. <A
-HREF="#AEN3100"
->Special Module: sam_passdb</A
-></DT
-><DT
->12.5.2. <A
-HREF="#AEN3103"
->sam_ads</A
-></DT
-></DL
-></DD
-><DT
->12.6. <A
-HREF="#AEN3107"
->Memory Management</A
-></DT
-><DT
->12.7. <A
-HREF="#AEN3121"
->Testing</A
-></DT
-></DL
-></DD
-><DT
->13. <A
-HREF="#PWENCRYPT"
->LanMan and NT Password Encryption</A
-></DT
-><DD
-><DL
-><DT
->13.1. <A
-HREF="#AEN3147"
->Introduction</A
-></DT
-><DT
->13.2. <A
-HREF="#AEN3151"
->How does it work?</A
-></DT
-><DT
->13.3. <A
-HREF="#AEN3162"
 ><A
-NAME="SMBPASSWDFILEFORMAT"
-></A
->The smbpasswd file</A
+HREF="#AEN3032"
+>WINS Failover</A
 ></DT
 ></DL
 ></DD
@@ -820,17 +706,13 @@ NAME="SMBPASSWDFILEFORMAT"
 CLASS="CHAPTER"
 ><HR><H1
 ><A
-NAME="NETBIOS"
-></A
->Chapter 1. Definition of NetBIOS Protocol and Name Resolution Modes</H1
+NAME="NETBIOS">Definition of NetBIOS Protocol and Name Resolution Modes</H1
 ><DIV
 CLASS="SECT1"
 ><H2
 CLASS="SECT1"
 ><A
-NAME="AEN24"
-></A
->1.1. NETBIOS</H2
+NAME="AEN24">NETBIOS</H2
 ><P
 >NetBIOS runs over the following tranports: TCP/IP; NetBEUI and IPX/SPX.
 Samba only uses NetBIOS over TCP/IP.  For details on the TCP/IP NetBIOS 
@@ -884,9 +766,7 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN35"
-></A
->1.2. BROADCAST NetBIOS</H2
+NAME="AEN35">BROADCAST NetBIOS</H2
 ><P
 > 
 Clients can claim names, and therefore offer services on successfully claimed
@@ -907,9 +787,7 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN39"
-></A
->1.3. NBNS NetBIOS</H2
+NAME="AEN39">NBNS NetBIOS</H2
 ><P
 >rfc1001.txt describes, amongst other things, the implementation and use
 of, a 'NetBIOS Name Service'.  NT/AS offers 'Windows Internet Name Service'
@@ -959,17 +837,13 @@ contact the WINS server to resolve a NetBIOS name.</P
 CLASS="CHAPTER"
 ><HR><H1
 ><A
-NAME="ARCHITECTURE"
-></A
->Chapter 2. Samba Architecture</H1
+NAME="ARCHITECTURE">Samba Architecture</H1
 ><DIV
 CLASS="SECT1"
 ><H2
 CLASS="SECT1"
 ><A
-NAME="AEN54"
-></A
->2.1. Introduction</H2
+NAME="AEN54">Introduction</H2
 ><P
 >This document gives a general overview of how Samba works
 internally. The Samba Team has tried to come up with a model which is
@@ -1002,9 +876,7 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN65"
-></A
->2.2. Multithreading and Samba</H2
+NAME="AEN65">Multithreading and Samba</H2
 ><P
 >People sometimes tout threads as a uniformly good thing. They are very
 nice in their place but are quite inappropriate for smbd. nmbd is
@@ -1028,9 +900,7 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN70"
-></A
->2.3. Threading smbd</H2
+NAME="AEN70">Threading smbd</H2
 ><P
 >A few problems that would arise from a threaded smbd are:</P
 ><P
@@ -1079,9 +949,7 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN86"
-></A
->2.4. Threading nmbd</H2
+NAME="AEN86">Threading nmbd</H2
 ><P
 >This would be ideal, but gets sunk by portability requirements.</P
 ><P
@@ -1115,9 +983,7 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN92"
-></A
->2.5. nbmd Design</H2
+NAME="AEN92">nbmd Design</H2
 ><P
 >Originally Andrew used recursion to simulate a multi-threaded
 environment, which use the stack enormously and made for really
@@ -1145,31 +1011,36 @@ for browsing and WINS support. </P
 CLASS="CHAPTER"
 ><HR><H1
 ><A
-NAME="DEBUG"
-></A
->Chapter 3. The samba DEBUG system</H1
+NAME="DEBUG">The samba DEBUG system</H1
 ><DIV
 CLASS="SECT1"
 ><H2
 CLASS="SECT1"
 ><A
-NAME="AEN103"
-></A
->3.1. New Output Syntax</H2
+NAME="AEN103">New Output Syntax</H2
 ><P
 >   The syntax of a debugging log file is represented as:</P
 ><P
+><TABLE
+BORDER="0"
+BGCOLOR="#E0E0E0"
+WIDTH="100%"
+><TR
+><TD
 ><PRE
 CLASS="PROGRAMLISTING"
->  &gt;debugfile&lt; :== { &gt;debugmsg&lt; }
+>  &#62;debugfile&#60; :== { &#62;debugmsg&#60; }
 
-  &gt;debugmsg&lt;  :== &gt;debughdr&lt; '\n' &gt;debugtext&lt;
+  &#62;debugmsg&#60;  :== &#62;debughdr&#60; '\n' &#62;debugtext&#60;
 
-  &gt;debughdr&lt;  :== '[' TIME ',' LEVEL ']' FILE ':' [FUNCTION] '(' LINE ')'
+  &#62;debughdr&#60;  :== '[' TIME ',' LEVEL ']' FILE ':' [FUNCTION] '(' LINE ')'
 
-  &gt;debugtext&lt; :== { &gt;debugline&lt; }
+  &#62;debugtext&#60; :== { &#62;debugline&#60; }
 
-  &gt;debugline&lt; :== TEXT '\n'</PRE
+  &#62;debugline&#60; :== TEXT '\n'</PRE
+></TD
+></TR
+></TABLE
 ></P
 ><P
 >TEXT is a string of characters excluding the newline character.</P
@@ -1220,6 +1091,12 @@ by a newline.</P
 ><P
 >Here's some example output:</P
 ><P
+><TABLE
+BORDER="0"
+BGCOLOR="#E0E0E0"
+WIDTH="100%"
+><TR
+><TD
 ><PRE
 CLASS="PROGRAMLISTING"
 >    [1998/08/03 12:55:25, 1] nmbd.c:(659)
@@ -1227,6 +1104,9 @@ CLASS="PROGRAMLISTING"
       Copyright Andrew Tridgell 1994-1997
     [1998/08/03 12:55:25, 3] loadparm.c:(763)
       Initializing global parameters</PRE
+></TD
+></TR
+></TABLE
 ></P
 ><P
 >Note that in the above example the function names are not listed on
@@ -1238,9 +1118,7 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN128"
-></A
->3.2. The DEBUG() Macro</H2
+NAME="AEN128">The DEBUG() Macro</H2
 ><P
 >Use of the DEBUG() macro is unchanged. DEBUG() takes two parameters.
 The first is the message level, the second is the body of a function
@@ -1250,16 +1128,34 @@ call to the Debug1() function.</P
 ><P
 >Here's an example which may help a bit. If you would write</P
 ><P
+><TABLE
+BORDER="0"
+BGCOLOR="#E0E0E0"
+WIDTH="100%"
+><TR
+><TD
 ><PRE
 CLASS="PROGRAMLISTING"
 >printf( "This is a %s message.\n", "debug" );</PRE
+></TD
+></TR
+></TABLE
 ></P
 ><P
 >to send the output to stdout, then you would write</P
 ><P
+><TABLE
+BORDER="0"
+BGCOLOR="#E0E0E0"
+WIDTH="100%"
+><TR
+><TD
 ><PRE
 CLASS="PROGRAMLISTING"
 >DEBUG( 0, ( "This is a %s message.\n", "debug" ) );</PRE
+></TD
+></TR
+></TABLE
 ></P
 ><P
 >to send the output to the debug file.  All of the normal printf()
@@ -1272,10 +1168,19 @@ statement is processed.</P
 ><P
 >The output of the above example would be something like:</P
 ><P
+><TABLE
+BORDER="0"
+BGCOLOR="#E0E0E0"
+WIDTH="100%"
+><TR
+><TD
 ><PRE
 CLASS="PROGRAMLISTING"
 >    [1998/07/30 16:00:51, 0] file.c:function(128)
       This is a debug message.</PRE
+></TD
+></TR
+></TABLE
 ></P
 ><P
 >Each call to DEBUG() creates a new header *unless* the output produced
@@ -1288,6 +1193,12 @@ DEBUG() is called, the new input is simply appended.</P
 DEBUG() has been used to write partial lines. Here's a simple (dumb)
 example of the kind of thing I'm talking about:</P
 ><P
+><TABLE
+BORDER="0"
+BGCOLOR="#E0E0E0"
+WIDTH="100%"
+><TR
+><TD
 ><PRE
 CLASS="PROGRAMLISTING"
 >    DEBUG( 0, ("The test returned " ) );
@@ -1296,11 +1207,20 @@ CLASS="PROGRAMLISTING"
     else
       DEBUG(0, ("False") );
     DEBUG(0, (".\n") );</PRE
+></TD
+></TR
+></TABLE
 ></P
 ><P
 >Without the format buffer, the output (assuming test() returned true)
 would look like this:</P
 ><P
+><TABLE
+BORDER="0"
+BGCOLOR="#E0E0E0"
+WIDTH="100%"
+><TR
+><TD
 ><PRE
 CLASS="PROGRAMLISTING"
 >    [1998/07/30 16:00:51, 0] file.c:function(256)
@@ -1309,6 +1229,9 @@ CLASS="PROGRAMLISTING"
       True
     [1998/07/30 16:00:51, 0] file.c:function(261)
       .</PRE
+></TD
+></TR
+></TABLE
 ></P
 ><P
 >Which isn't much use. The format buffer kludge fixes this problem.</P
@@ -1318,9 +1241,7 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN151"
-></A
->3.3. The DEBUGADD() Macro</H2
+NAME="AEN151">The DEBUGADD() Macro</H2
 ><P
 >In addition to the kludgey solution to the broken line problem
 described above, there is a clean solution. The DEBUGADD() macro never
@@ -1328,20 +1249,38 @@ generates a header. It will append new text to the current debug
 message even if the format buffer is empty. The syntax of the
 DEBUGADD() macro is the same as that of the DEBUG() macro.</P
 ><P
+><TABLE
+BORDER="0"
+BGCOLOR="#E0E0E0"
+WIDTH="100%"
+><TR
+><TD
 ><PRE
 CLASS="PROGRAMLISTING"
 >    DEBUG( 0, ("This is the first line.\n" ) );
     DEBUGADD( 0, ("This is the second line.\nThis is the third line.\n" ) );</PRE
+></TD
+></TR
+></TABLE
 ></P
 ><P
 >Produces</P
 ><P
+><TABLE
+BORDER="0"
+BGCOLOR="#E0E0E0"
+WIDTH="100%"
+><TR
+><TD
 ><PRE
 CLASS="PROGRAMLISTING"
 >    [1998/07/30 16:00:51, 0] file.c:function(512)
       This is the first line.
       This is the second line.
       This is the third line.</PRE
+></TD
+></TR
+></TABLE
 ></P
 ></DIV
 ><DIV
@@ -1349,35 +1288,57 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN159"
-></A
->3.4. The DEBUGLVL() Macro</H2
+NAME="AEN159">The DEBUGLVL() Macro</H2
 ><P
 >One of the problems with the DEBUG() macro was that DEBUG() lines
 tended to get a bit long. Consider this example from
 nmbd_sendannounce.c:</P
 ><P
+><TABLE
+BORDER="0"
+BGCOLOR="#E0E0E0"
+WIDTH="100%"
+><TR
+><TD
 ><PRE
 CLASS="PROGRAMLISTING"
 >  DEBUG(3,("send_local_master_announcement: type %x for name %s on subnet %s for workgroup %s\n",
             type, global_myname, subrec-&#62;subnet_name, work-&#62;work_group));</PRE
+></TD
+></TR
+></TABLE
 ></P
 ><P
 >One solution to this is to break it down using DEBUG() and DEBUGADD(),
 as follows:</P
 ><P
+><TABLE
+BORDER="0"
+BGCOLOR="#E0E0E0"
+WIDTH="100%"
+><TR
+><TD
 ><PRE
 CLASS="PROGRAMLISTING"
 >  DEBUG( 3, ( "send_local_master_announcement: " ) );
   DEBUGADD( 3, ( "type %x for name %s ", type, global_myname ) );
   DEBUGADD( 3, ( "on subnet %s ", subrec-&#62;subnet_name ) );
   DEBUGADD( 3, ( "for workgroup %s\n", work-&#62;work_group ) );</PRE
+></TD
+></TR
+></TABLE
 ></P
 ><P
 >A similar, but arguably nicer approach is to use the DEBUGLVL() macro.
 This macro returns True if the message level is less than or equal to
 the global DEBUGLEVEL value, so:</P
 ><P
+><TABLE
+BORDER="0"
+BGCOLOR="#E0E0E0"
+WIDTH="100%"
+><TR
+><TD
 ><PRE
 CLASS="PROGRAMLISTING"
 >  if( DEBUGLVL( 3 ) )
@@ -1387,6 +1348,9 @@ CLASS="PROGRAMLISTING"
     dbgtext( "on subnet %s ", subrec-&#62;subnet_name );
     dbgtext( "for workgroup %s\n", work-&#62;work_group );
     }</PRE
+></TD
+></TR
+></TABLE
 ></P
 ><P
 >(The dbgtext() function is explained below.)</P
@@ -1417,17 +1381,13 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN179"
-></A
->3.5. New Functions</H2
+NAME="AEN179">New Functions</H2
 ><DIV
 CLASS="SECT2"
 ><H3
 CLASS="SECT2"
 ><A
-NAME="AEN181"
-></A
->3.5.1. dbgtext()</H3
+NAME="AEN181">dbgtext()</H3
 ><P
 >This function prints debug message text to the debug file (and
 possibly to syslog) via the format buffer. The function uses a
@@ -1443,9 +1403,7 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN184"
-></A
->3.5.2. dbghdr()</H3
+NAME="AEN184">dbghdr()</H3
 ><P
 >This is the function that writes a debug message header.
 Headers are not processed via the format buffer. Also note that
@@ -1460,9 +1418,7 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN188"
-></A
->3.5.3. format_debug_text()</H3
+NAME="AEN188">format_debug_text()</H3
 ><P
 >This is a static function in debug.c. It stores the output text
 for the body of the message in a buffer until it encounters a
@@ -1479,9 +1435,7 @@ syslog output).</P
 CLASS="CHAPTER"
 ><HR><H1
 ><A
-NAME="CODINGSUGGESTIONS"
-></A
->Chapter 4. Coding Suggestions</H1
+NAME="CODINGSUGGESTIONS">Coding Suggestions</H1
 ><P
 >So you want to add code to Samba ...</P
 ><P
@@ -1698,17 +1652,13 @@ added.</P
 CLASS="CHAPTER"
 ><HR><H1
 ><A
-NAME="INTERNALS"
-></A
->Chapter 5. Samba Internals</H1
+NAME="INTERNALS">Samba Internals</H1
 ><DIV
 CLASS="SECT1"
 ><H2
 CLASS="SECT1"
 ><A
-NAME="AEN284"
-></A
->5.1. Character Handling</H2
+NAME="AEN284">Character Handling</H2
 ><P
 >This section describes character set handling in Samba, as implemented in
 Samba 3.0 and above</P
@@ -1725,9 +1675,7 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN288"
-></A
->5.2. The new functions</H2
+NAME="AEN288">The new functions</H2
 ><P
 >The new system works like this:</P
 ><P
@@ -1836,9 +1784,7 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN317"
-></A
->5.3. Macros in byteorder.h</H2
+NAME="AEN317">Macros in byteorder.h</H2
 ><P
 >This section describes the macros defined in byteorder.h.  These macros 
 are used extensively in the Samba code.</P
@@ -1847,9 +1793,7 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN320"
-></A
->5.3.1. CVAL(buf,pos)</H3
+NAME="AEN320">CVAL(buf,pos)</H3
 ><P
 >returns the byte at offset pos within buffer buf as an unsigned character.</P
 ></DIV
@@ -1858,9 +1802,7 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN323"
-></A
->5.3.2. PVAL(buf,pos)</H3
+NAME="AEN323">PVAL(buf,pos)</H3
 ><P
 >returns the value of CVAL(buf,pos) cast to type unsigned integer.</P
 ></DIV
@@ -1869,9 +1811,7 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN326"
-></A
->5.3.3. SCVAL(buf,pos,val)</H3
+NAME="AEN326">SCVAL(buf,pos,val)</H3
 ><P
 >sets the byte at offset pos within buffer buf to value val.</P
 ></DIV
@@ -1880,9 +1820,7 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN329"
-></A
->5.3.4. SVAL(buf,pos)</H3
+NAME="AEN329">SVAL(buf,pos)</H3
 ><P
 >	returns the value of the unsigned short (16 bit) little-endian integer at 
 	offset pos within buffer buf.  An integer of this type is sometimes
@@ -1893,9 +1831,7 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN332"
-></A
->5.3.5. IVAL(buf,pos)</H3
+NAME="AEN332">IVAL(buf,pos)</H3
 ><P
 >returns the value of the unsigned 32 bit little-endian integer at offset 
 pos within buffer buf.</P
@@ -1905,9 +1841,7 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN335"
-></A
->5.3.6. SVALS(buf,pos)</H3
+NAME="AEN335">SVALS(buf,pos)</H3
 ><P
 >returns the value of the signed short (16 bit) little-endian integer at 
 offset pos within buffer buf.</P
@@ -1917,9 +1851,7 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN338"
-></A
->5.3.7. IVALS(buf,pos)</H3
+NAME="AEN338">IVALS(buf,pos)</H3
 ><P
 >returns the value of the signed 32 bit little-endian integer at offset pos
 within buffer buf.</P
@@ -1929,9 +1861,7 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN341"
-></A
->5.3.8. SSVAL(buf,pos,val)</H3
+NAME="AEN341">SSVAL(buf,pos,val)</H3
 ><P
 >sets the unsigned short (16 bit) little-endian integer at offset pos within 
 buffer buf to value val.</P
@@ -1941,9 +1871,7 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN344"
-></A
->5.3.9. SIVAL(buf,pos,val)</H3
+NAME="AEN344">SIVAL(buf,pos,val)</H3
 ><P
 >sets the unsigned 32 bit little-endian integer at offset pos within buffer 
 buf to the value val.</P
@@ -1953,9 +1881,7 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN347"
-></A
->5.3.10. SSVALS(buf,pos,val)</H3
+NAME="AEN347">SSVALS(buf,pos,val)</H3
 ><P
 >sets the short (16 bit) signed little-endian integer at offset pos within 
 buffer buf to the value val.</P
@@ -1965,9 +1891,7 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN350"
-></A
->5.3.11. SIVALS(buf,pos,val)</H3
+NAME="AEN350">SIVALS(buf,pos,val)</H3
 ><P
 >sets the signed 32 bit little-endian integer at offset pos withing buffer
 buf to the value val.</P
@@ -1977,9 +1901,7 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN353"
-></A
->5.3.12. RSVAL(buf,pos)</H3
+NAME="AEN353">RSVAL(buf,pos)</H3
 ><P
 >returns the value of the unsigned short (16 bit) big-endian integer at 
 offset pos within buffer buf.</P
@@ -1989,9 +1911,7 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN356"
-></A
->5.3.13. RIVAL(buf,pos)</H3
+NAME="AEN356">RIVAL(buf,pos)</H3
 ><P
 >returns the value of the unsigned 32 bit big-endian integer at offset 
 pos within buffer buf.</P
@@ -2001,9 +1921,7 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN359"
-></A
->5.3.14. RSSVAL(buf,pos,val)</H3
+NAME="AEN359">RSSVAL(buf,pos,val)</H3
 ><P
 >sets the value of the unsigned short (16 bit) big-endian integer at 
 offset pos within buffer buf to value val.
@@ -2014,9 +1932,7 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN362"
-></A
->5.3.15. RSIVAL(buf,pos,val)</H3
+NAME="AEN362">RSIVAL(buf,pos,val)</H3
 ><P
 >sets the value of the unsigned 32 bit big-endian integer at offset 
 pos within buffer buf to value val.</P
@@ -2027,19 +1943,26 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN365"
-></A
->5.4. LAN Manager Samba API</H2
+NAME="AEN365">LAN Manager Samba API</H2
 ><P
 >This section describes the functions need to make a LAN Manager RPC call.
 This information had been obtained by examining the Samba code and the LAN
 Manager 2.0 API documentation.  It should not be considered entirely
 reliable.</P
 ><P
+><TABLE
+BORDER="0"
+BGCOLOR="#E0E0E0"
+WIDTH="100%"
+><TR
+><TD
 ><PRE
 CLASS="PROGRAMLISTING"
 >call_api(int prcnt, int drcnt, int mprcnt, int mdrcnt, 
 	char *param, char *data, char **rparam, char **rdata);</PRE
+></TD
+></TR
+></TABLE
 ></P
 ><P
 >This function is defined in client.c.  It uses an SMB transaction to call a
@@ -2049,9 +1972,7 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN371"
-></A
->5.4.1. Parameters</H3
+NAME="AEN371">Parameters</H3
 ><P
 >The parameters are as follows:</P
 ><P
@@ -2143,9 +2064,7 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN406"
-></A
->5.4.2. Return value</H3
+NAME="AEN406">Return value</H3
 ><P
 >The returned parameters (pointed to by rparam), in their order of appearance
 are:</P
@@ -2196,9 +2115,7 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN420"
-></A
->5.5. Code character table</H2
+NAME="AEN420">Code character table</H2
 ><P
 >Certain data structures are described by means of ASCIIz strings containing
 code characters.  These are the code characters:</P
@@ -2253,17 +2170,13 @@ TYPE="1"
 CLASS="CHAPTER"
 ><HR><H1
 ><A
-NAME="PARSING"
-></A
->Chapter 6. The smb.conf file</H1
+NAME="PARSING">The smb.conf file</H1
 ><DIV
 CLASS="SECT1"
 ><H2
 CLASS="SECT1"
 ><A
-NAME="AEN451"
-></A
->6.1. Lexical Analysis</H2
+NAME="AEN451">Lexical Analysis</H2
 ><P
 >Basically, the file is processed on a line by line basis.  There are
 four types of lines that are recognized by the lexical analyzer
@@ -2320,9 +2233,7 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN472"
-></A
->6.1.1. Handling of Whitespace</H3
+NAME="AEN472">Handling of Whitespace</H3
 ><P
 >Whitespace is defined as all characters recognized by the isspace()
 function (see ctype(3C)) except for the newline character ('\n')
@@ -2357,9 +2268,7 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN484"
-></A
->6.1.2. Handling of Line Continuation</H3
+NAME="AEN484">Handling of Line Continuation</H3
 ><P
 >Long section header and parameter lines may be extended across
 multiple lines by use of the backslash character ('\\').  Line
@@ -2370,17 +2279,35 @@ a parameter line is a backslash, then the next line will be
 (logically) concatonated with the current line by the lexical
 analyzer.  For example:</P
 ><P
+><TABLE
+BORDER="0"
+BGCOLOR="#E0E0E0"
+WIDTH="100%"
+><TR
+><TD
 ><PRE
 CLASS="PROGRAMLISTING"
 >	param name = parameter value string \
 	with line continuation.</PRE
+></TD
+></TR
+></TABLE
 ></P
 ><P
 >Would be read as</P
 ><P
+><TABLE
+BORDER="0"
+BGCOLOR="#E0E0E0"
+WIDTH="100%"
+><TR
+><TD
 ><PRE
 CLASS="PROGRAMLISTING"
 >    param name = parameter value string     with line continuation.</PRE
+></TD
+></TR
+></TABLE
 ></P
 ><P
 >Note that there are five spaces following the word 'string',
@@ -2397,58 +2324,110 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN495"
-></A
->6.1.3. Line Continuation Quirks</H3
+NAME="AEN495">Line Continuation Quirks</H3
 ><P
 >Note the following example:</P
 ><P
+><TABLE
+BORDER="0"
+BGCOLOR="#E0E0E0"
+WIDTH="100%"
+><TR
+><TD
 ><PRE
 CLASS="PROGRAMLISTING"
 >	param name = parameter value string \
     \
     with line continuation.</PRE
+></TD
+></TR
+></TABLE
 ></P
 ><P
 >The middle line is *not* parsed as a blank line because it is first
 concatonated with the top line.  The result is</P
 ><P
+><TABLE
+BORDER="0"
+BGCOLOR="#E0E0E0"
+WIDTH="100%"
+><TR
+><TD
 ><PRE
 CLASS="PROGRAMLISTING"
 >param name = parameter value string         with line continuation.</PRE
+></TD
+></TR
+></TABLE
 ></P
 ><P
 >The same is true for comment lines.</P
 ><P
+><TABLE
+BORDER="0"
+BGCOLOR="#E0E0E0"
+WIDTH="100%"
+><TR
+><TD
 ><PRE
 CLASS="PROGRAMLISTING"
 >	param name = parameter value string \
 	; comment \
     with a comment.</PRE
+></TD
+></TR
+></TABLE
 ></P
 ><P
 >This becomes:</P
 ><P
+><TABLE
+BORDER="0"
+BGCOLOR="#E0E0E0"
+WIDTH="100%"
+><TR
+><TD
 ><PRE
 CLASS="PROGRAMLISTING"
 >param name = parameter value string     ; comment     with a comment.</PRE
+></TD
+></TR
+></TABLE
 ></P
 ><P
 >On a section header line, the closing bracket (']') is considered a
 terminating character, and the rest of the line is ignored.  The lines</P
 ><P
+><TABLE
+BORDER="0"
+BGCOLOR="#E0E0E0"
+WIDTH="100%"
+><TR
+><TD
 ><PRE
 CLASS="PROGRAMLISTING"
 >	[ section   name ] garbage \
     param  name  = value</PRE
+></TD
+></TR
+></TABLE
 ></P
 ><P
 >are read as</P
 ><P
+><TABLE
+BORDER="0"
+BGCOLOR="#E0E0E0"
+WIDTH="100%"
+><TR
+><TD
 ><PRE
 CLASS="PROGRAMLISTING"
 >	[section name]
     param name = value</PRE
+></TD
+></TR
+></TABLE
 ></P
 ></DIV
 ></DIV
@@ -2457,18 +2436,25 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN515"
-></A
->6.2. Syntax</H2
+NAME="AEN515">Syntax</H2
 ><P
 >The syntax of the smb.conf file is as follows:</P
 ><P
+><TABLE
+BORDER="0"
+BGCOLOR="#E0E0E0"
+WIDTH="100%"
+><TR
+><TD
 ><PRE
 CLASS="PROGRAMLISTING"
->  &lt;file&gt;            :==  { &lt;section&gt; } EOF
-  &lt;section&gt;         :==  &lt;section header&gt; { &lt;parameter line&gt; }
-  &lt;section header&gt;  :==  '[' NAME ']'
-  &lt;parameter line&gt;  :==  NAME '=' VALUE NL</PRE
+>  &#60;file&#62;            :==  { &#60;section&#62; } EOF
+  &#60;section&#62;         :==  &#60;section header&#62; { &#60;parameter line&#62; }
+  &#60;section header&#62;  :==  '[' NAME ']'
+  &#60;parameter line&#62;  :==  NAME '=' VALUE NL</PRE
+></TD
+></TR
+></TABLE
 ></P
 ><P
 >Basically, this means that</P
@@ -2504,9 +2490,7 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN530"
-></A
->6.2.1. About params.c</H3
+NAME="AEN530">About params.c</H3
 ><P
 >The parsing of the config file is a bit unusual if you are used to
 lex, yacc, bison, etc.  Both lexical analysis (scanning) and parsing
@@ -2519,17 +2503,13 @@ loadparm.c.</P
 CLASS="CHAPTER"
 ><HR><H1
 ><A
-NAME="UNIX-SMB"
-></A
->Chapter 7. NetBIOS in a Unix World</H1
+NAME="UNIX-SMB">NetBIOS in a Unix World</H1
 ><DIV
 CLASS="SECT1"
 ><H2
 CLASS="SECT1"
 ><A
-NAME="AEN540"
-></A
->7.1. Introduction</H2
+NAME="AEN540">Introduction</H2
 ><P
 >This is a short document that describes some of the issues that
 confront a SMB implementation on unix, and how Samba copes with
@@ -2544,9 +2524,7 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN544"
-></A
->7.2. Usernames</H2
+NAME="AEN544">Usernames</H2
 ><P
 >The SMB protocol has only a loose username concept. Early SMB
 protocols (such as CORE and COREPLUS) have no username concept at
@@ -2590,9 +2568,7 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN552"
-></A
->7.3. File Ownership</H2
+NAME="AEN552">File Ownership</H2
 ><P
 >The commonly used SMB protocols have no way of saying "you can't do
 that because you don't own the file". They have, in fact, no concept
@@ -2617,9 +2593,7 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN557"
-></A
->7.4. Passwords</H2
+NAME="AEN557">Passwords</H2
 ><P
 >Many SMB clients uppercase passwords before sending them. I have no
 idea why they do this. Interestingly WfWg uppercases the password only
@@ -2648,12 +2622,7 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN563"
-></A
->7.5. Locking</H2
-><P
->Since samba 2.2, samba supports other types of locking as well. This 
-section is outdated.</P
+NAME="AEN563">Locking</H2
 ><P
 >The locking calls available under a DOS/Windows environment are much
 richer than those available in unix. This means a unix server (like
@@ -2688,9 +2657,7 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN571"
-></A
->7.6. Deny Modes</H2
+NAME="AEN570">Deny Modes</H2
 ><P
 >When a SMB client opens a file it asks for a particular "deny mode" to
 be placed on the file. These modes (DENY_NONE, DENY_READ, DENY_WRITE,
@@ -2711,9 +2678,7 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN575"
-></A
->7.7. Trapdoor UIDs</H2
+NAME="AEN574">Trapdoor UIDs</H2
 ><P
 >A SMB session can run with several uids on the one socket. This
 happens when a user connects to two shares with different
@@ -2730,9 +2695,7 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN579"
-></A
->7.8. Port numbers</H2
+NAME="AEN578">Port numbers</H2
 ><P
 >There is a convention that clients on sockets use high "unprivilaged"
 port numbers (&#62;1000) and connect to servers on low "privilaged" port
@@ -2762,9 +2725,7 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN584"
-></A
->7.9. Protocol Complexity</H2
+NAME="AEN583">Protocol Complexity</H2
 ><P
 >There are many "protocol levels" in the SMB protocol. It seems that
 each time new functionality was added to a Microsoft operating system,
@@ -2809,9 +2770,7 @@ mailing list hosted by Microsft.</P
 CLASS="CHAPTER"
 ><HR><H1
 ><A
-NAME="TRACING"
-></A
->Chapter 8. Tracing samba system calls</H1
+NAME="TRACING">Tracing samba system calls</H1
 ><P
 >This file describes how to do a system call trace on Samba to work out
 what its doing wrong. This is not for the faint of heart, but if you
@@ -2861,9 +2820,18 @@ CLASS="COMMAND"
 hello</B
 > output is:</P
 ><P
+><TABLE
+BORDER="0"
+BGCOLOR="#E0E0E0"
+WIDTH="100%"
+><TR
+><TD
 ><PRE
 CLASS="PROGRAMLISTING"
 >write(1, "hello\n", 6)                  = 6</PRE
+></TD
+></TR
+></TABLE
 ></P
 ><P
 >all the rest is just setting up to run the program.</P
@@ -2915,10 +2883,19 @@ CLASS="FILENAME"
 > is not world writeable, which
 causes printing to fail with Samba:</P
 ><P
+><TABLE
+BORDER="0"
+BGCOLOR="#E0E0E0"
+WIDTH="100%"
+><TR
+><TD
 ><PRE
 CLASS="PROGRAMLISTING"
 >[pid 28268] open("/dev/null", O_RDWR)   = -1 EACCES (Permission denied)
 [pid 28268] open("/dev/null", O_WRONLY) = -1 EACCES (Permission denied)</PRE
+></TD
+></TR
+></TABLE
 ></P
 ><P
 >The process is trying to first open <TT
@@ -2935,17 +2912,13 @@ incorrect permissions.</P
 CLASS="CHAPTER"
 ><HR><H1
 ><A
-NAME="NTDOMAIN"
-></A
->Chapter 9. NT Domain RPC's</H1
+NAME="NTDOMAIN">NT Domain RPC's</H1
 ><DIV
 CLASS="SECT1"
 ><H2
 CLASS="SECT1"
 ><A
-NAME="AEN652"
-></A
->9.1. Introduction</H2
+NAME="AEN651">Introduction</H2
 ><P
 >This document contains information to provide an NT workstation with login
 services, without the need for an NT server. It is the sgml version of <A
@@ -3015,14 +2988,11 @@ CLASS="FILENAME"
 >HKLM\SYSTEM\CurrentControlSet\Services\Netlogon\Parameters</TT
 ></P
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Incorrect direct editing of the registry can cause your
 machine to fail. Then again, so can incorrect implementation of this 
 protocol. See "Liability:" above.</I
-></SPAN
 ></P
 ><P
 >Bear in mind that each packet over-the-wire will have its origin in an
@@ -3067,9 +3037,7 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN688"
-></A
->9.1.1. Sources</H3
+NAME="AEN687">Sources</H3
 ><P
 ></P
 ><TABLE
@@ -3101,9 +3069,7 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN695"
-></A
->9.1.2. Credits</H3
+NAME="AEN694">Credits</H3
 ><P
 ></P
 ><TABLE
@@ -3136,17 +3102,13 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN702"
-></A
->9.2. Notes and Structures</H2
+NAME="AEN701">Notes and Structures</H2
 ><DIV
 CLASS="SECT2"
 ><H3
 CLASS="SECT2"
 ><A
-NAME="AEN704"
-></A
->9.2.1. Notes</H3
+NAME="AEN703">Notes</H3
 ><P
 ></P
 ><OL
@@ -3196,17 +3158,13 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN717"
-></A
->9.2.2. Enumerations</H3
+NAME="AEN716">Enumerations</H3
 ><DIV
 CLASS="SECT3"
 ><H4
 CLASS="SECT3"
 ><A
-NAME="AEN719"
-></A
->9.2.2.1. MSRPC Header type</H4
+NAME="AEN718">MSRPC Header type</H4
 ><P
 >command number in the msrpc packet header</P
 ><P
@@ -3246,9 +3204,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN739"
-></A
->9.2.2.2. MSRPC Packet info</H4
+NAME="AEN738">MSRPC Packet info</H4
 ><P
 >The meaning of these flags is undocumented</P
 ><P
@@ -3313,17 +3269,13 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN775"
-></A
->9.2.3. Structures</H3
+NAME="AEN774">Structures</H3
 ><DIV
 CLASS="SECT3"
 ><H4
 CLASS="SECT3"
 ><A
-NAME="AEN777"
-></A
->9.2.3.1. VOID *</H4
+NAME="AEN776">VOID *</H4
 ><P
 >sizeof VOID* is 32 bits.</P
 ></DIV
@@ -3332,9 +3284,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN780"
-></A
->9.2.3.2. char</H4
+NAME="AEN779">char</H4
 ><P
 >sizeof char is 8 bits.</P
 ></DIV
@@ -3343,9 +3293,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN783"
-></A
->9.2.3.3. UTIME</H4
+NAME="AEN782">UTIME</H4
 ><P
 >UTIME is 32 bits, indicating time in seconds since 01jan1970.  documented in cifs6.txt (section 3.5 page, page 30).</P
 ></DIV
@@ -3354,9 +3302,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN786"
-></A
->9.2.3.4. NTTIME</H4
+NAME="AEN785">NTTIME</H4
 ><P
 >NTTIME is 64 bits.  documented in cifs6.txt (section 3.5 page, page 30).</P
 ></DIV
@@ -3365,9 +3311,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN789"
-></A
->9.2.3.5. DOM_SID (domain SID structure)</H4
+NAME="AEN788">DOM_SID (domain SID structure)</H4
 ><P
 ></P
 ><DIV
@@ -3406,12 +3350,9 @@ CLASS="VARIABLELIST"
 ></DL
 ></DIV
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Note: the domain SID is documented elsewhere.</I
-></SPAN
 ></P
 ></DIV
 ><DIV
@@ -3419,9 +3360,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN814"
-></A
->9.2.3.6. STR (string)</H4
+NAME="AEN813">STR (string)</H4
 ><P
 >STR (string) is a char[] : a null-terminated string of ascii characters.</P
 ></DIV
@@ -3430,9 +3369,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN817"
-></A
->9.2.3.7. UNIHDR (unicode string header)</H4
+NAME="AEN816">UNIHDR (unicode string header)</H4
 ><P
 ></P
 ><DIV
@@ -3464,9 +3401,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN832"
-></A
->9.2.3.8. UNIHDR2 (unicode string header plus buffer pointer)</H4
+NAME="AEN831">UNIHDR2 (unicode string header plus buffer pointer)</H4
 ><P
 ></P
 ><DIV
@@ -3492,9 +3427,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN843"
-></A
->9.2.3.9. UNISTR (unicode string)</H4
+NAME="AEN842">UNISTR (unicode string)</H4
 ><P
 ></P
 ><DIV
@@ -3514,9 +3447,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN850"
-></A
->9.2.3.10. NAME (length-indicated unicode string)</H4
+NAME="AEN849">NAME (length-indicated unicode string)</H4
 ><P
 ></P
 ><DIV
@@ -3542,9 +3473,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN861"
-></A
->9.2.3.11. UNISTR2 (aligned unicode string)</H4
+NAME="AEN860">UNISTR2 (aligned unicode string)</H4
 ><P
 ></P
 ><DIV
@@ -3588,9 +3517,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN884"
-></A
->9.2.3.12. OBJ_ATTR (object attributes)</H4
+NAME="AEN883">OBJ_ATTR (object attributes)</H4
 ><P
 ></P
 ><DIV
@@ -3640,9 +3567,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN911"
-></A
->9.2.3.13. POL_HND (LSA policy handle)</H4
+NAME="AEN910">POL_HND (LSA policy handle)</H4
 ><P
 ></P
 ><DIV
@@ -3662,9 +3587,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN918"
-></A
->9.2.3.14. DOM_SID2 (domain SID structure, SIDS stored in unicode)</H4
+NAME="AEN917">DOM_SID2 (domain SID structure, SIDS stored in unicode)</H4
 ><P
 ></P
 ><DIV
@@ -3697,20 +3620,14 @@ CLASS="VARIABLELIST"
 ></DL
 ></DIV
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Note:	there is a conflict between the unicode string header and the unicode string itself as to which to use to indicate string length.  this will need to be resolved.</I
-></SPAN
 ></P
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Note:	the SID type indicates, for example, an alias; a well-known group etc. this is documented somewhere.</I
-></SPAN
 ></P
 ></DIV
 ><DIV
@@ -3718,9 +3635,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN941"
-></A
->9.2.3.15. DOM_RID (domain RID structure)</H4
+NAME="AEN940">DOM_RID (domain RID structure)</H4
 ><P
 ></P
 ><DIV
@@ -3758,24 +3673,16 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN960"
-></A
->9.2.3.16. LOG_INFO (server, account, client structure)</H4
+NAME="AEN959">LOG_INFO (server, account, client structure)</H4
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Note:	logon server name starts with two '\' characters and is upper case.</I
-></SPAN
 ></P
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Note:	account name is the logon client name from the LSA Request Challenge, with a $ on the end of it, in upper case.</I
-></SPAN
 ></P
 ><P
 ></P
@@ -3820,16 +3727,11 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN987"
-></A
->9.2.3.17. CLNT_SRV (server, client names structure)</H4
+NAME="AEN986">CLNT_SRV (server, client names structure)</H4
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Note:	logon server name starts with two '\' characters and is upper case.</I
-></SPAN
 ></P
 ><P
 ></P
@@ -3868,9 +3770,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN1008"
-></A
->9.2.3.18. CREDS (credentials + time stamp)</H4
+NAME="AEN1007">CREDS (credentials + time stamp)</H4
 ><P
 ></P
 ><DIV
@@ -3896,17 +3796,12 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN1019"
-></A
->9.2.3.19. CLNT_INFO2 (server, client structure, client credentials)</H4
+NAME="AEN1018">CLNT_INFO2 (server, client structure, client credentials)</H4
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Note: whenever this structure appears in a request, you must take a copy of the client-calculated credentials received, because they will beused in subsequent credential checks.  the presumed intention is to
 	maintain an authenticated request/response trail.</I
-></SPAN
 ></P
 ><P
 ></P
@@ -3945,16 +3840,11 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN1040"
-></A
->9.2.3.20. CLNT_INFO (server, account, client structure, client credentials)</H4
+NAME="AEN1039">CLNT_INFO (server, account, client structure, client credentials)</H4
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Note: whenever this structure appears in a request, you must take a copy of the client-calculated credentials received, because they will be used in subsequent credential checks.  the presumed intention is to maintain an authenticated request/response trail.</I
-></SPAN
 ></P
 ><P
 ></P
@@ -3981,9 +3871,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN1053"
-></A
->9.2.3.21. ID_INFO_1 (id info structure, auth level 1)</H4
+NAME="AEN1052">ID_INFO_1 (id info structure, auth level 1)</H4
 ><P
 ></P
 ><DIV
@@ -4063,16 +3951,11 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN1100"
-></A
->9.2.3.22. SAM_INFO (sam logon/logoff id info structure)</H4
+NAME="AEN1099">SAM_INFO (sam logon/logoff id info structure)</H4
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Note: presumably, the return credentials is supposedly for the server to verify that the credential chain hasn't been compromised.</I
-></SPAN
 ></P
 ><P
 ></P
@@ -4112,6 +3995,12 @@ CLASS="VARIABLELIST"
 ></DL
 ></DIV
 ><P
+><TABLE
+BORDER="0"
+BGCOLOR="#E0E0E0"
+WIDTH="100%"
+><TR
+><TD
 ><PRE
 CLASS="PROGRAMLISTING"
 >        switch (switch_value)
@@ -4119,6 +4008,9 @@ CLASS="PROGRAMLISTING"
         {
             ID_INFO_1     id_info_1;
         }</PRE
+></TD
+></TR
+></TABLE
 ></P
 ></DIV
 ><DIV
@@ -4126,9 +4018,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN1127"
-></A
->9.2.3.23. GID (group id info)</H4
+NAME="AEN1126">GID (group id info)</H4
 ><P
 ></P
 ><DIV
@@ -4154,9 +4044,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN1138"
-></A
->9.2.3.24. DOM_REF (domain reference info)</H4
+NAME="AEN1137">DOM_REF (domain reference info)</H4
 ><P
 ></P
 ><DIV
@@ -4224,9 +4112,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN1177"
-></A
->9.2.3.25. DOM_INFO (domain info, levels 3 and 5 are the same))</H4
+NAME="AEN1176">DOM_INFO (domain info, levels 3 and 5 are the same))</H4
 ><P
 ></P
 ><DIV
@@ -4282,16 +4168,11 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN1208"
-></A
->9.2.3.26. USER_INFO (user logon info)</H4
+NAME="AEN1207">USER_INFO (user logon info)</H4
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Note: it would be nice to know what the 16 byte user session key is for.</I
-></SPAN
 ></P
 ><P
 ></P
@@ -4534,16 +4415,11 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN1365"
-></A
->9.2.3.27. SH_INFO_1_PTR (pointers to level 1 share info strings)</H4
+NAME="AEN1364">SH_INFO_1_PTR (pointers to level 1 share info strings)</H4
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Note:	see cifsrap2.txt section5, page 10.</I
-></SPAN
 ></P
 ><P
 ></P
@@ -4605,9 +4481,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN1388"
-></A
->9.2.3.28. SH_INFO_1_STR (level 1 share info strings)</H4
+NAME="AEN1387">SH_INFO_1_STR (level 1 share info strings)</H4
 ><P
 ></P
 ><DIV
@@ -4633,9 +4507,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN1399"
-></A
->9.2.3.29. SHARE_INFO_1_CTR</H4
+NAME="AEN1398">SHARE_INFO_1_CTR</H4
 ><P
 >share container with 0 entries:</P
 ><P
@@ -4720,16 +4592,11 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN1445"
-></A
->9.2.3.30. SERVER_INFO_101</H4
+NAME="AEN1444">SERVER_INFO_101</H4
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Note:	see cifs6.txt section 6.4 - the fields described therein will be of assistance here.  for example, the type listed below is the 	same as fServerType, which is described in 6.4.1. </I
-></SPAN
 ></P
 ><P
 ></P
@@ -4933,9 +4800,7 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN1571"
-></A
->9.3. MSRPC over Transact Named Pipe</H2
+NAME="AEN1570">MSRPC over Transact Named Pipe</H2
 ><P
 >For details on the SMB Transact Named Pipe, see cifs6.txt</P
 ><DIV
@@ -4943,9 +4808,7 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN1574"
-></A
->9.3.1. MSRPC Pipes</H3
+NAME="AEN1573">MSRPC Pipes</H3
 ><P
 >The MSRPC is conducted over an SMB Transact Pipe with a name of 
 <TT
@@ -4991,11 +4854,20 @@ is sent.</P
 >lkcl/01nov97 there appear to be two additional bytes after the null-terminated \PIPE\ name for the RPC pipe.  Values seen so far are
 listed below:</P
 ><P
+><TABLE
+BORDER="0"
+BGCOLOR="#E0E0E0"
+WIDTH="100%"
+><TR
+><TD
 ><PRE
 CLASS="PROGRAMLISTING"
 >        initial SMBopenX request:         RPC API command 0x26 params:
         "\\PIPE\\lsarpc"                  0x65 0x63; 0x72 0x70; 0x44 0x65;
         "\\PIPE\\srvsvc"                  0x73 0x76; 0x4E 0x00; 0x5C 0x43;</PRE
+></TD
+></TR
+></TABLE
 ></P
 ></DIV
 ><DIV
@@ -5003,9 +4875,7 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN1588"
-></A
->9.3.2. Header</H3
+NAME="AEN1587">Header</H3
 ><P
 >[section to be rewritten, following receipt of work by Duncan Stansfield]</P
 ><P
@@ -5174,9 +5044,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN1649"
-></A
->9.3.2.1. RPC_Packet for request, response, bind and bind acknowledgement</H4
+NAME="AEN1648">RPC_Packet for request, response, bind and bind acknowledgement</H4
 ><P
 ></P
 ><DIV
@@ -5244,16 +5112,23 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN1688"
-></A
->9.3.2.2. Interface identification</H4
+NAME="AEN1687">Interface identification</H4
 ><P
 >the interfaces are numbered. as yet I haven't seen more than one interface used on the same pipe name srvsvc</P
 ><P
+><TABLE
+BORDER="0"
+BGCOLOR="#E0E0E0"
+WIDTH="100%"
+><TR
+><TD
 ><PRE
 CLASS="PROGRAMLISTING"
 >abstract (0x4B324FC8, 0x01D31670, 0x475A7812, 0x88E16EBF, 0x00000003)
 transfer (0x8A885D04, 0x11C91CEB, 0x0008E89F, 0x6048102B, 0x00000002)</PRE
+></TD
+></TR
+></TABLE
 ></P
 ></DIV
 ><DIV
@@ -5261,9 +5136,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN1693"
-></A
->9.3.2.3. RPC_Iface RW</H4
+NAME="AEN1692">RPC_Iface RW</H4
 ><P
 ></P
 ><DIV
@@ -5289,9 +5162,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN1704"
-></A
->9.3.2.4. RPC_ReqBind RW</H4
+NAME="AEN1703">RPC_ReqBind RW</H4
 ><P
 >the remainder of the packet after the header if "type" was Bind in the response header, "type" should be BindAck</P
 ><P
@@ -5361,9 +5232,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN1744"
-></A
->9.3.2.5. RPC_Address RW</H4
+NAME="AEN1743">RPC_Address RW</H4
 ><P
 ></P
 ><DIV
@@ -5389,9 +5258,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN1755"
-></A
->9.3.2.6. RPC_ResBind RW</H4
+NAME="AEN1754">RPC_ResBind RW</H4
 ><P
 >the response to place after the header in the reply packet</P
 ><P
@@ -5467,9 +5334,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN1799"
-></A
->9.3.2.7. RPC_ReqNorm RW</H4
+NAME="AEN1798">RPC_ReqNorm RW</H4
 ><P
 >the remainder of the packet after the header for every other other request</P
 ><P
@@ -5509,9 +5374,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN1819"
-></A
->9.3.2.8. RPC_ResNorm RW</H4
+NAME="AEN1818">RPC_ResNorm RW</H4
 ><P
 ></P
 ><DIV
@@ -5556,9 +5419,7 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN1842"
-></A
->9.3.3. Tail</H3
+NAME="AEN1841">Tail</H3
 ><P
 >The end of each of the NTLSA and NETLOGON named pipes ends with:</P
 ><P
@@ -5586,40 +5447,29 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN1854"
-></A
->9.3.4. RPC Bind / Bind Ack</H3
+NAME="AEN1853">RPC Bind / Bind Ack</H3
 ><P
 >RPC Binds are the process of associating an RPC pipe (e.g \PIPE\lsarpc)
 with a "transfer syntax" (see RPC_Iface structure).  The purpose for doing
 this is unknown.</P
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Note: The RPC_ResBind SMB Transact request is sent with two uint16 setup parameters.  The first is 0x0026; the second is the file handle
 	returned by the SMBopenX Transact response.</I
-></SPAN
 ></P
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Note:	The RPC_ResBind members maxtsize, maxrsize and assocgid are the same in the response as the same members in the RPC_ReqBind.  The
 	RPC_ResBind member transfersyntax is the same in the response as
 	the</I
-></SPAN
 ></P
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Note:	The RPC_ResBind response member secondaddr contains the name of what is presumed to be the service behind the RPC pipe.  The
 	mapping identified so far is:</I
-></SPAN
 ></P
 ><P
 ></P
@@ -5665,12 +5515,9 @@ CLASS="VARIABLELIST"
 ></DL
 ></DIV
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Note:	The RPC_Packet fraglength member in both the Bind Request and Bind Acknowledgment must contain the length of the entire RPC data, including the RPC_Packet header.</I
-></SPAN
 ></P
 ><P
 >Request:</P
@@ -5716,9 +5563,7 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN1898"
-></A
->9.3.5. NTLSA Transact Named Pipe</H3
+NAME="AEN1897">NTLSA Transact Named Pipe</H3
 ><P
 >The sequence of actions taken on this pipe are:</P
 ><P
@@ -5815,25 +5660,18 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN1939"
-></A
->9.3.6. LSA Open Policy</H3
+NAME="AEN1938">LSA Open Policy</H3
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Note:	The policy handle can be anything you like.</I
-></SPAN
 ></P
 ><DIV
 CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN1943"
-></A
->9.3.6.1. Request</H4
+NAME="AEN1942">Request</H4
 ><P
 ></P
 ><DIV
@@ -5871,9 +5709,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN1962"
-></A
->9.3.6.2. Response</H4
+NAME="AEN1961">Response</H4
 ><P
 ></P
 ><DIV
@@ -5900,25 +5736,18 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN1973"
-></A
->9.3.7. LSA Query Info Policy</H3
+NAME="AEN1972">LSA Query Info Policy</H3
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Note:	The info class in response must be the same as that in the request.</I
-></SPAN
 ></P
 ><DIV
 CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN1977"
-></A
->9.3.7.1. Request</H4
+NAME="AEN1976">Request</H4
 ><P
 ></P
 ><DIV
@@ -5944,9 +5773,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN1988"
-></A
->9.3.7.2. Response</H4
+NAME="AEN1987">Response</H4
 ><P
 ></P
 ><DIV
@@ -5967,6 +5794,12 @@ CLASS="VARIABLELIST"
 ></DL
 ></DIV
 ><P
+><TABLE
+BORDER="0"
+BGCOLOR="#E0E0E0"
+WIDTH="100%"
+><TR
+><TD
 ><PRE
 CLASS="PROGRAMLISTING"
 >switch (info class)
@@ -5977,6 +5810,9 @@ DOM_INFO domain info, levels 3 and 5 (are the same).
 }
 
 return    0 - indicates success</PRE
+></TD
+></TR
+></TABLE
 ></P
 ></DIV
 ></DIV
@@ -5985,17 +5821,13 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN2001"
-></A
->9.3.8. LSA Enumerate Trusted Domains</H3
+NAME="AEN2000">LSA Enumerate Trusted Domains</H3
 ><DIV
 CLASS="SECT3"
 ><H4
 CLASS="SECT3"
 ><A
-NAME="AEN2003"
-></A
->9.3.8.1. Request</H4
+NAME="AEN2002">Request</H4
 ><P
 >no extra data</P
 ></DIV
@@ -6004,9 +5836,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN2006"
-></A
->9.3.8.2. Response</H4
+NAME="AEN2005">Response</H4
 ><P
 ></P
 ><DIV
@@ -6045,17 +5875,13 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN2025"
-></A
->9.3.9. LSA Open Secret</H3
+NAME="AEN2024">LSA Open Secret</H3
 ><DIV
 CLASS="SECT3"
 ><H4
 CLASS="SECT3"
 ><A
-NAME="AEN2027"
-></A
->9.3.9.1. Request</H4
+NAME="AEN2026">Request</H4
 ><P
 >no extra data</P
 ></DIV
@@ -6064,9 +5890,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN2030"
-></A
->9.3.9.2. Response</H4
+NAME="AEN2029">Response</H4
 ><P
 ></P
 ><DIV
@@ -6113,17 +5937,13 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN2054"
-></A
->9.3.10. LSA Close</H3
+NAME="AEN2053">LSA Close</H3
 ><DIV
 CLASS="SECT3"
 ><H4
 CLASS="SECT3"
 ><A
-NAME="AEN2056"
-></A
->9.3.10.1. Request</H4
+NAME="AEN2055">Request</H4
 ><P
 ></P
 ><DIV
@@ -6143,9 +5963,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN2063"
-></A
->9.3.10.2. Response</H4
+NAME="AEN2062">Response</H4
 ><P
 ></P
 ><DIV
@@ -6168,25 +5986,18 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN2071"
-></A
->9.3.11. LSA Lookup SIDS</H3
+NAME="AEN2070">LSA Lookup SIDS</H3
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Note:	num_entries in response must be same as num_entries in request.</I
-></SPAN
 ></P
 ><DIV
 CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN2075"
-></A
->9.3.11.1. Request</H4
+NAME="AEN2074">Request</H4
 ><P
 ></P
 ><DIV
@@ -6236,9 +6047,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN2102"
-></A
->9.3.11.2. Response</H4
+NAME="AEN2101">Response</H4
 ><P
 ></P
 ><DIV
@@ -6291,25 +6100,18 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN2130"
-></A
->9.3.12. LSA Lookup Names</H3
+NAME="AEN2129">LSA Lookup Names</H3
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Note:	num_entries in response must be same as num_entries in request.</I
-></SPAN
 ></P
 ><DIV
 CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN2134"
-></A
->9.3.12.1. Request</H4
+NAME="AEN2133">Request</H4
 ><P
 ></P
 ><DIV
@@ -6365,9 +6167,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN2165"
-></A
->9.3.12.2. Response</H4
+NAME="AEN2164">Response</H4
 ><P
 ></P
 ><DIV
@@ -6421,9 +6221,7 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN2193"
-></A
->9.4. NETLOGON rpc Transact Named Pipe</H2
+NAME="AEN2192">NETLOGON rpc Transact Named Pipe</H2
 ><P
 >The sequence of actions taken on this pipe are:</P
 ><P
@@ -6521,41 +6319,28 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN2232"
-></A
->9.4.1. LSA Request Challenge</H3
+NAME="AEN2231">LSA Request Challenge</H3
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Note:	logon server name starts with two '\' characters and is upper case.</I
-></SPAN
 ></P
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Note:	logon client is the machine, not the user.</I
-></SPAN
 ></P
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Note:	the initial LanManager password hash, against which the challenge is issued, is the machine name itself (lower case).  there will becalls issued (LSA Server Password Set) which will change this, later. refusing these calls allows you to always deal with the same password (i.e the LM# of the machine name in lower case).</I
-></SPAN
 ></P
 ><DIV
 CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN2240"
-></A
->9.4.1.1. Request</H4
+NAME="AEN2239">Request</H4
 ><P
 ></P
 ><DIV
@@ -6593,9 +6378,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN2259"
-></A
->9.4.1.2. Response</H4
+NAME="AEN2258">Response</H4
 ><P
 ></P
 ><DIV
@@ -6618,41 +6401,28 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN2267"
-></A
->9.4.2. LSA Authenticate 2</H3
+NAME="AEN2266">LSA Authenticate 2</H3
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Note:	in between request and response, calculate the client credentials, and check them against the client-calculated credentials (this process uses the previously received client credentials).</I
-></SPAN
 ></P
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Note:	neg_flags in the response is the same as that in the request.</I
-></SPAN
 ></P
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Note:	you must take a copy of the client-calculated credentials received 	here, because they will be used in subsequent authentication packets.</I
-></SPAN
 ></P
 ><DIV
 CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN2275"
-></A
->9.4.2.1. Request</H4
+NAME="AEN2274">Request</H4
 ><P
 ></P
 ><DIV
@@ -6690,9 +6460,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN2294"
-></A
->9.4.2.2. Response</H4
+NAME="AEN2293">Response</H4
 ><P
 ></P
 ><DIV
@@ -6721,49 +6489,33 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN2306"
-></A
->9.4.3. LSA Server Password Set</H3
+NAME="AEN2305">LSA Server Password Set</H3
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Note: the new password is suspected to be a DES encryption using the old password to generate the key.</I
-></SPAN
 ></P
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Note: in between request and response, calculate the client credentials, and check them against the client-calculated credentials (this process uses the previously received client credentials).</I
-></SPAN
 ></P
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Note: the server credentials are constructed from the client-calculated credentials and the client time + 1 second.</I
-></SPAN
 ></P
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Note: you must take a copy of the client-calculated credentials received here, because they will be used in subsequent authentication packets.</I
-></SPAN
 ></P
 ><DIV
 CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN2316"
-></A
->9.4.3.1. Request</H4
+NAME="AEN2315">Request</H4
 ><P
 ></P
 ><DIV
@@ -6789,9 +6541,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN2327"
-></A
->9.4.3.2. Response</H4
+NAME="AEN2326">Response</H4
 ><P
 ></P
 ><DIV
@@ -6814,26 +6564,19 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN2335"
-></A
->9.4.4. LSA SAM Logon</H3
+NAME="AEN2334">LSA SAM Logon</H3
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Note:	valid_user is True iff the username and password hash are valid for
 	the requested domain.</I
-></SPAN
 ></P
 ><DIV
 CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN2339"
-></A
->9.4.4.1. Request</H4
+NAME="AEN2338">Request</H4
 ><P
 ></P
 ><DIV
@@ -6853,9 +6596,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN2346"
-></A
->9.4.4.2. Response</H4
+NAME="AEN2345">Response</H4
 ><P
 ></P
 ><DIV
@@ -6876,6 +6617,12 @@ CLASS="VARIABLELIST"
 ></DL
 ></DIV
 ><P
+><TABLE
+BORDER="0"
+BGCOLOR="#E0E0E0"
+WIDTH="100%"
+><TR
+><TD
 ><PRE
 CLASS="PROGRAMLISTING"
 >if (valid_user)
@@ -6897,6 +6644,9 @@ else
 
     return    0xC000 0064 - NT_STATUS_NO_SUCH_USER.
 }</PRE
+></TD
+></TR
+></TABLE
 ></P
 ></DIV
 ></DIV
@@ -6905,26 +6655,19 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN2359"
-></A
->9.4.5. LSA SAM Logoff</H3
+NAME="AEN2358">LSA SAM Logoff</H3
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Note:	presumably, the SAM_INFO structure is validated, and a (currently
 	undocumented) error code returned if the Logoff is invalid.</I
-></SPAN
 ></P
 ><DIV
 CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN2363"
-></A
->9.4.5.1. Request</H4
+NAME="AEN2362">Request</H4
 ><P
 ></P
 ><DIV
@@ -6944,9 +6687,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN2370"
-></A
->9.4.5.2. Response</H4
+NAME="AEN2369">Response</H4
 ><P
 ></P
 ><DIV
@@ -6976,43 +6717,31 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN2382"
-></A
->9.5. \\MAILSLOT\NET\NTLOGON</H2
+NAME="AEN2381">\\MAILSLOT\NET\NTLOGON</H2
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Note:	mailslots will contain a response mailslot, to which the response
 	should be sent.  the target NetBIOS name is REQUEST_NAME&#60;20&#62;, where
 	REQUEST_NAME is the name of the machine that sent the request.</I
-></SPAN
 ></P
 ><DIV
 CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN2386"
-></A
->9.5.1. Query for PDC</H3
+NAME="AEN2385">Query for PDC</H3
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Note:	NTversion, LMNTtoken, LM20token in response are the same as those 	given in the request.</I
-></SPAN
 ></P
 ><DIV
 CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN2390"
-></A
->9.5.1.1. Request</H4
+NAME="AEN2389">Request</H4
 ><P
 ></P
 ><DIV
@@ -7074,9 +6803,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN2425"
-></A
->9.5.1.2. Response</H4
+NAME="AEN2424">Response</H4
 ><P
 ></P
 ><DIV
@@ -7139,41 +6866,28 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN2460"
-></A
->9.5.2. SAM Logon</H3
+NAME="AEN2459">SAM Logon</H3
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Note: machine name in response is preceded by two '\' characters.</I
-></SPAN
 ></P
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Note:	NTversion, LMNTtoken, LM20token in response are the same as those given in the request.</I
-></SPAN
 ></P
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Note:	user name in the response is presumably the same as that in the request.</I
-></SPAN
 ></P
 ><DIV
 CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN2468"
-></A
->9.5.2.1. Request</H4
+NAME="AEN2467">Request</H4
 ><P
 ></P
 ><DIV
@@ -7259,9 +6973,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN2519"
-></A
->9.5.2.2. Response</H4
+NAME="AEN2518">Response</H4
 ><P
 ></P
 ><DIV
@@ -7319,9 +7031,7 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN2550"
-></A
->9.6. SRVSVC Transact Named Pipe</H2
+NAME="AEN2549">SRVSVC Transact Named Pipe</H2
 ><P
 >Defines for this pipe, identifying the query are:</P
 ><P
@@ -7348,33 +7058,23 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN2562"
-></A
->9.6.1. Net Share Enum</H3
+NAME="AEN2561">Net Share Enum</H3
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Note:	share level and switch value in the response are presumably the same as those in the request.</I
-></SPAN
 ></P
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Note:	cifsrap2.txt (section 5) may be of limited assistance here.</I
-></SPAN
 ></P
 ><DIV
 CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN2568"
-></A
->9.6.1.1. Request</H4
+NAME="AEN2567">Request</H4
 ><P
 ></P
 ><DIV
@@ -7436,9 +7136,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN2603"
-></A
->9.6.1.2. Response</H4
+NAME="AEN2602">Response</H4
 ><P
 ></P
 ><DIV
@@ -7479,25 +7177,18 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN2623"
-></A
->9.6.2. Net Server Get Info</H3
+NAME="AEN2622">Net Server Get Info</H3
 ><P
-><SPAN
-CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
 >Note:	level is the same value as in the request.</I
-></SPAN
 ></P
 ><DIV
 CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN2627"
-></A
->9.6.2.1. Request</H4
+NAME="AEN2626">Request</H4
 ><P
 ></P
 ><DIV
@@ -7523,9 +7214,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN2638"
-></A
->9.6.2.2. Response</H4
+NAME="AEN2637">Response</H4
 ><P
 ></P
 ><DIV
@@ -7561,17 +7250,13 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN2654"
-></A
->9.7. Cryptographic side of NT Domain Authentication</H2
+NAME="AEN2653">Cryptographic side of NT Domain Authentication</H2
 ><DIV
 CLASS="SECT2"
 ><H3
 CLASS="SECT2"
 ><A
-NAME="AEN2656"
-></A
->9.7.1. Definitions</H3
+NAME="AEN2655">Definitions</H3
 ><P
 ></P
 ><DIV
@@ -7646,9 +7331,7 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN2699"
-></A
->9.7.2. Protocol</H3
+NAME="AEN2698">Protocol</H3
 ><P
 >C-&#62;S ReqChal,Cc S-&#62;C Cs</P
 ><P
@@ -7682,9 +7365,7 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN2709"
-></A
->9.7.3. Comments</H3
+NAME="AEN2708">Comments</H3
 ><P
 >On first joining the domain the session key could be computed by
 anyone listening in on the network as the machine password has a well
@@ -7713,9 +7394,7 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN2716"
-></A
->9.8. SIDs and RIDs</H2
+NAME="AEN2715">SIDs and RIDs</H2
 ><P
 >SIDs and RIDs are well documented elsewhere.</P
 ><P
@@ -7745,17 +7424,13 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN2724"
-></A
->9.8.1. Well-known SIDs</H3
+NAME="AEN2723">Well-known SIDs</H3
 ><DIV
 CLASS="SECT3"
 ><H4
 CLASS="SECT3"
 ><A
-NAME="AEN2726"
-></A
->9.8.1.1. Universal well-known SIDs</H4
+NAME="AEN2725">Universal well-known SIDs</H4
 ><P
 ></P
 ><DIV
@@ -7817,9 +7492,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN2761"
-></A
->9.8.1.2. NT well-known SIDs</H4
+NAME="AEN2760">NT well-known SIDs</H4
 ><P
 ></P
 ><DIV
@@ -7906,9 +7579,7 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN2812"
-></A
->9.8.2. Well-known RIDS</H3
+NAME="AEN2811">Well-known RIDS</H3
 ><P
 >A RID is a sub-authority value, as part of either a SID, or in the case
 of Group RIDs, part of the DOM_GID structure, in the USER_INFO_1
@@ -7918,9 +7589,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN2815"
-></A
->9.8.2.1. Well-known RID users</H4
+NAME="AEN2814">Well-known RID users</H4
 ><P
 ><B
 >Groupname: </B
@@ -7951,9 +7620,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN2829"
-></A
->9.8.2.2. Well-known RID groups</H4
+NAME="AEN2828">Well-known RID groups</H4
 ><P
 ><B
 >Groupname: </B
@@ -7996,9 +7663,7 @@ CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN2847"
-></A
->9.8.2.3. Well-known RID aliases</H4
+NAME="AEN2846">Well-known RID aliases</H4
 ><P
 ><B
 >Groupname: </B
@@ -8115,17 +7780,13 @@ NAME="AEN2847"
 CLASS="CHAPTER"
 ><HR><H1
 ><A
-NAME="PRINTING"
-></A
->Chapter 10. Samba Printing Internals</H1
+NAME="PRINTING">Samba Printing Internals</H1
 ><DIV
 CLASS="SECT1"
 ><H2
 CLASS="SECT1"
 ><A
-NAME="AEN2896"
-></A
->10.1. Abstract</H2
+NAME="AEN2895">Abstract</H2
 ><P
 >The purpose of this document is to provide some insight into
 Samba's printing functionality and also to describe the semantics
@@ -8136,9 +7797,7 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN2899"
-></A
->10.2. Printing Interface to Various Back ends</H2
+NAME="AEN2898">Printing Interface to Various Back ends</H2
 ><P
 >Samba uses a table of function pointers to seven functions.  The
 function prototypes are defined in the <TT
@@ -8204,9 +7863,7 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN2925"
-></A
->10.3. Print Queue TDB's</H2
+NAME="AEN2924">Print Queue TDB's</H2
 ><P
 >Samba provides periodic caching of the output from the "lpq command"
 for performance reasons.  This cache time is configurable in seconds.
@@ -8230,6 +7887,12 @@ client which will insert the job information directly into the TDB.
 The second method is to have the print job picked up by executing the
 "lpq command".</P
 ><P
+><TABLE
+BORDER="0"
+BGCOLOR="#E0E0E0"
+WIDTH="100%"
+><TR
+><TD
 ><PRE
 CLASS="PROGRAMLISTING"
 >/* included from printing.h */
@@ -8249,13 +7912,16 @@ struct printjob {
 	fstring queuename; /* service number of printer for this job */
 	NT_DEVICEMODE *nt_devmode;
 };</PRE
+></TD
+></TR
+></TABLE
 ></P
 ><P
 >The current manifestation of the printjob structure contains a field
 for the UNIX job id returned from the "lpq command" and a Windows job
 ID (32-bit bounded by PRINT_MAX_JOBID).  When a print job is returned
 by the "lpq command" that does not match an existing job in the queue's
-TDB, a 32-bit job ID above the &lt;*vance doesn't know what word is missing here*&gt; is generating by adding UNIX_JOB_START to
+TDB, a 32-bit job ID above the &#60;*vance doesn't know what word is missing here*&#62; is generating by adding UNIX_JOB_START to
 the id reported by lpq.</P
 ><P
 >In order to match a 32-bit Windows jobid onto a 16-bit lanman print job
@@ -8302,6 +7968,12 @@ CLASS="REPLACEABLE"
 ></LI
 ><LI
 ><P
+><TABLE
+BORDER="0"
+BGCOLOR="#E0E0E0"
+WIDTH="90%"
+><TR
+><TD
 ><PRE
 CLASS="PROGRAMLISTING"
 >	foreach job in the queue
@@ -8316,6 +7988,9 @@ CLASS="PROGRAMLISTING"
 				update the job status only
 		}
 	}</PRE
+></TD
+></TR
+></TABLE
 ></P
 ></LI
 ><LI
@@ -8353,9 +8028,7 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN2959"
-></A
->10.4. ChangeID &#38; Client Caching of Printer Information</H2
+NAME="AEN2958">ChangeID &#38; Client Caching of Printer Information</H2
 ><P
 >[To be filled in later]</P
 ></DIV
@@ -8364,9 +8037,7 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN2962"
-></A
->10.5. Windows NT/2K Printer Change Notify</H2
+NAME="AEN2961">Windows NT/2K Printer Change Notify</H2
 ><P
 >When working with Windows NT+ clients, it is possible for a
 print server to use RPC to send asynchronous change notification
@@ -8425,6 +8096,12 @@ notification event to clients.  The process of registering a new change
 notification handle is as follows.  The 'C' is for client and the
 'S' is for server.  All error conditions have been eliminated.</P
 ><P
+><TABLE
+BORDER="0"
+BGCOLOR="#E0E0E0"
+WIDTH="100%"
+><TR
+><TD
 ><PRE
 CLASS="PROGRAMLISTING"
 >C:	Obtain handle to printer or to the printer
@@ -8436,7 +8113,7 @@ C:	Send a RFFPCN request with the previously obtained
 	to monitor, or (b) a PRINTER_NOTIFY_OPTIONS structure
 	containing the event information to monitor.  The windows
 	spooler has only been observed to use (b).
-S:	The &lt;* another missing word*&gt; opens a new TCP session to the client (thus requiring
+S:	The &#60;* another missing word*&#62; opens a new TCP session to the client (thus requiring
 	all print clients to be CIFS servers as well) and sends
 	a ReplyOpenPrinter() request to the client.
 C:	The client responds with a printer handle that can be used to
@@ -8458,6 +8135,9 @@ C:	If the change notification handle is ever released by the
 S:	The server closes the internal change notification handle
 	(POLICY_HND) and does not send any further change notification
 	events to the client for that printer or job.</PRE
+></TD
+></TR
+></TABLE
 ></P
 ><P
 >The current list of notification events supported by Samba can be
@@ -8582,57 +8262,80 @@ data values.</P
 CLASS="CHAPTER"
 ><HR><H1
 ><A
-NAME="WINS"
-></A
->Chapter 11. Samba WINS Internals</H1
+NAME="WINS">Samba WINS Internals</H1
 ><DIV
 CLASS="SECT1"
 ><H2
 CLASS="SECT1"
 ><A
-NAME="AEN3033"
-></A
->11.1. WINS Failover</H2
+NAME="AEN3032">WINS Failover</H2
 ><P
 >The current Samba codebase possesses the capability to use groups of WINS
 servers that share a common namespace for NetBIOS name registration and 
 resolution.  The formal parameter syntax is</P
 ><P
+><TABLE
+BORDER="0"
+BGCOLOR="#E0E0E0"
+WIDTH="100%"
+><TR
+><TD
 ><PRE
 CLASS="PROGRAMLISTING"
 >	WINS_SERVER_PARAM 	= SERVER [ SEPARATOR SERVER_LIST ]
-	WINS_SERVER_PARAM 	= &quot;wins server&quot;
+	WINS_SERVER_PARAM 	= "wins server"
 	SERVER 			= ADDR[:TAG]
 	ADDR 			= ip_addr | fqdn
 	TAG 			= string
 	SEPARATOR		= comma | \s+
 	SERVER_LIST		= SERVER [ SEPARATOR SERVER_LIST ]</PRE
+></TD
+></TR
+></TABLE
 ></P
 ><P
 >A simple example of a valid wins server setting is</P
 ><P
+><TABLE
+BORDER="0"
+BGCOLOR="#E0E0E0"
+WIDTH="100%"
+><TR
+><TD
 ><PRE
 CLASS="PROGRAMLISTING"
 >[global]
 	wins server = 192.168.1.2 192.168.1.3</PRE
+></TD
+></TR
+></TABLE
 ></P
 ><P
 >In the event that no TAG is defined in for a SERVER in the list, smbd assigns a default
-TAG of &quot;*&quot;.  A TAG is used to group servers of a shared NetBIOS namespace together.  Upon
+TAG of "*".  A TAG is used to group servers of a shared NetBIOS namespace together.  Upon
 startup, nmbd will attempt to register the netbios name value with one server in each
 tagged group.</P
 ><P
 >An example using tags to group WINS servers together is show here.  Note that the use of
 interface names in the tags is only by convention and is not a technical requirement.</P
 ><P
+><TABLE
+BORDER="0"
+BGCOLOR="#E0E0E0"
+WIDTH="100%"
+><TR
+><TD
 ><PRE
 CLASS="PROGRAMLISTING"
 >[global]
 	wins server = 192.168.1.2:eth0 192.168.1.3:eth0 192.168.2.2:eth1</PRE
+></TD
+></TR
+></TABLE
 ></P
 ><P
 >Using this configuration, nmbd would attempt to register the server's NetBIOS name 
-with one WINS server in each group.  Because the &quot;eth0&quot; group has two servers, the 
+with one WINS server in each group.  Because the "eth0" group has two servers, the 
 second server would only be used when a registration (or resolution) request to 
 the first server in that group timed out.</P
 ><P
@@ -8646,662 +8349,6 @@ dead, Samba will not attempt to contact that server for name registration/resolu
 for a period of 10 minutes.</P
 ></DIV
 ></DIV
-><DIV
-CLASS="CHAPTER"
-><HR><H1
-><A
-NAME="SAM"
-></A
->Chapter 12. The Upcoming SAM System</H1
-><DIV
-CLASS="SECT1"
-><H2
-CLASS="SECT1"
-><A
-NAME="AEN3054"
-></A
->12.1. Security in the 'new SAM'</H2
-><P
->One of the biggest problems with passdb is it's implementation of
-'security'.  Access control is on a 'are you root at the moment' basis,
-and it has no concept of NT ACLs.  Things like ldapsam had to add
-'magic' 'are you root' checks.</P
-><P
->We took this very seriously when we started work, and the new structure
-is designed with this in mind, from the ground up.  Each call to the SAM
-has a NT_TOKEN and (if relevant) an 'access desired'.  This is either
-provided as a parameter, or implicitly supplied by the object being
-accessed.</P
-><P
->For example, when you call </P
-><PRE
-CLASS="PROGRAMLISTING"
->&#60;
-NTSTATUS sam_get_account_by_name(const SAM_CONTEXT *context, const
-NT_USER_TOKEN *access_token, uint32 access_desired, const char *domain,
-const char *name, SAM_ACCOUNT_HANDLE **account)</PRE
-><P
->The context can be NULL (and is used to allow import/export by setting
-up 2 contexts, and allowing calls on both simultaneously)</P
-><P
->The access token *must* be specified.  Normally the user's token out of
-current_user, this can also be a global 'system' context.</P
-><P
->The access desired is as per the ACL, for passing to the seaccess stuff.</P
-><P
->The domain/username are standard.  Even if we only have one domain,
-keeping this ensures that we don't get 'unqualified' usernames (same
-problem as we had with unqualified SIDs).</P
-><P
->We return a 'handle'.  This is opaque to the rest of Samba, but is
-operated on by get/set routines, all of which return NTSTATUS.</P
-><P
->The access checking is done by the SAM module.   The reason it is not
-done 'above' the interface is to ensure a 'choke point'.  I put a lot of
-effort into the auth subsystem to ensure we never 'accidentally' forgot
-to check for null passwords, missed a restriction etc.  I intend the SAM
-to be written with the same caution.</P
-><P
->The reason the access checking is not handled by the interface itself is
-due to the different implementations it make take on.  For example, on
-ADS, you cannot set a password over a non-SSL connection.  Other
-backends may have similar requirements - we need to leave this policy up
-to the modules.  They will naturally have access to 'helper' procedures
-and good examples to avoid mishaps.</P
-><P
->(Furthermore, some backends my actually chose to push the whole ACL
-issue to the remote server, and - assuming ldap for this example - bind
-as the user directly)</P
-><P
->Each returned handle has an internal 'access permitted', which allows
-the 'get' and 'set' routines to return 'ACCESS_DENIED' for things that
-were not able to be retrieved from the backend.  This removes the need
-to specify the NT_TOKEN on every operation, and allows for 'object not
-present' to be easily distinguished from 'access denied'.</P
-><P
->When you 'set' an object (calling sam_update_account) the internal
-details are again used.  Each change that has been made to the object
-has been flagged, so as to avoid race conditions (on unmodified
-components) and to avoid violating any extra ACL requirements on the
-actual data store (like the LDAP server).</P
-><P
->Finally, we have generic get_sec_desc() and set_sec_desc() routines to
-allow external ACL manipulation.  These do lookups based on SID.</P
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN3071"
-></A
->12.2. Standalone from UNIX</H2
-><P
->One of the primary tenants of the 'new SAM' is that it would not attempt
-to deal with 'what unix id for that'.  This would be left to the 'SMS'
-(Sid Mapping System') or SID farm, and probably administered via
-winbind.  We have had constructive discussion on how 'basic' unix
-accounts like 'root' would be handled, and we think this can work.  
-Accounts not preexisting in unix would be served up via winbind.</P
-><P
->This is an *optional* part, and my preferred end-game.  We have a fare
-way to go before things like winbind up to it however.</P
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN3075"
-></A
->12.3. Handles and Races in the new SAM</H2
-><P
->One of the things that the 'new SAM' work has tried to face is both
-compatibility with existing code, and a closer alignment to the SAMR
-interface.  I consider SAMR to be a 'primary customer' to the this work,
-because if we get alignment with that wrong, things get more, rather
-than less complex.  Also, most other parts of Samba are much more
-flexible with what they can allow.</P
-><P
->In any case, that was a decision taken as to how the general design
-would progress.  BTW, my understanding of SAMR may be completely flawed.</P
-><P
->One of the most race-prone areas of the new code is the conflicting
-update problem.  We have taken two approaches:  </P
-><P
-></P
-><UL
-><LI
-><P
->'Not conflicting' conflicts.  Due to the way usrmgr operates, it will
-open a user, display all the properties and *save* them all, even if you
-don't change any.</P
-><P
->For this, see what I've done in rpc_server/srv_samr_util.c.  I intend
-to take this one step further, and operate on the 'handle' that the
-values were read from.  This should mean that we only update things that
-have *really* changed.</P
-></LI
-><LI
-><P
->'conflicting' updates:  Currently we don't deal with this (in passdb
-or the new sam stuff), but the design is sufficiently flexible to 'deny'
-a second update.  I don't foresee locking records however.</P
-></LI
-></UL
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN3086"
-></A
->12.4. Layers</H2
-><DIV
-CLASS="SECT2"
-><H3
-CLASS="SECT2"
-><A
-NAME="AEN3088"
-></A
->12.4.1. Application</H3
-><P
->This is where smbd, samtest and whatever end-user replacement we have
-for pdbedit sits.  They use only the SAM interface, and do not get
-'special knowledge' of what is below them.</P
-></DIV
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN3091"
-></A
->12.4.2. SAM Interface</H3
-><P
->This level 'owns' the various handle structures, the get/set routines on
-those structures and provides the public interface.  The application
-layer may initialize a 'context' to be passed to all interface routines,
-else a default, self-initialising context will be supplied.  This layser
-finds the appropriate backend module for the task, and tries very hard
-not to need to much 'knowledge'.  It should just provide the required
-abstraction to the modules below, and arrange for their initial loading.</P
-><P
->We could possibly add ACL checking at this layer, to avoid discrepancies
-in implementation modules.</P
-></DIV
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN3095"
-></A
->12.4.3. SAM Modules</H3
-><P
->These do not communicate with the application directly, only by setting
-values in the handles, and receiving requests from the interface.  These
-modules are responsible for translating values from the handle's
-.private into (say) an LDAP modification list.  The module is expected
-to 'know' things like it's own domain SID, domain name, and any other
-state attached to the SAM.  Simpler modules may call back to some helper
-routine.</P
-></DIV
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN3098"
-></A
->12.5. SAM Modules</H2
-><DIV
-CLASS="SECT2"
-><H3
-CLASS="SECT2"
-><A
-NAME="AEN3100"
-></A
->12.5.1. Special Module: sam_passdb</H3
-><P
->In order for there to be a smooth transition, kai is writing a module
-that reads existing passdb backends, and translates them into SAM
-replies.  (Also pulling data from the account policy DB etc).  We also
-intend to write a module that does the reverse - gives the SAM a passdb
-interface.</P
-></DIV
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN3103"
-></A
->12.5.2. sam_ads</H3
-><P
->This is the first of the SAM modules to be committed to the tree -
-mainly because I needed to coordinate work with metze (who authored most
-of it).  This module aims to use Samba's libads code to provide an
-Active Directory LDAP client, suitable for use on a mixed-mode DC. 
-While it is currently being tested against Win2k servers (with a
-password in the smb.conf file) it is expected to eventually use a
-(possibly modified) OpenLDAP server.  We hope that this will assist in
-the construction of an Samba AD DC.</P
-><P
->We also intend to construct a Samba 2.2/3.0 compatible ldap module,
-again using libads code.</P
-></DIV
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN3107"
-></A
->12.6. Memory Management</H2
-><P
-> 
-The 'new SAM' development effort also concerned itself with getting a
-sane implementation of memory management.  It was decided that we would
-be (as much as possible) talloc based, using an 'internal talloc
-context' on many objects.  That is, the creation of an object would
-initiate it's own internal talloc context, and this would be used for
-all operations on that object.  Much of this is already implemented in
-passdb.  Also, like passdb, it will be possible to specify that some
-object actually be created on a specified context.  </P
-><P
->Memory management is important here because the APIs in the 'new SAM' do
-not use 'pdb_init()' or an equivalent.  They always allocate new
-objects.  Enumeration's are slightly different, and occur on a supplied
-context that 'owns' the entire list, rather than per-element.  (the
-enumeration functions return an array of all elements - not full handles
-just basic (and public) info)  Likewise for things that fill in a char
-**.</P
-><P
->For example:</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->NTSTATUS sam_lookup_sid(const SAM_CONTEXT *context, const NT_USER_TOKEN
-*access_token, TALLOC_CTX *mem_ctx, const DOM_SID *sid, char **name,
-uint32 *type)</PRE
-></P
-><P
->Takes a context to allocate the 'name' on, while:</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->NTSTATUS sam_get_account_by_sid(const SAM_CONTEXT *context, const
-NT_USER_TOKEN *access_token, uint32 access_desired, const DOM_SID
-*accountsid, SAM_ACCOUNT_HANDLE **account)</PRE
-></P
-><P
->Allocates a handle and stores the allocation context on that handle.</P
-><P
->I think that the following:</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->NTSTATUS sam_enum_accounts(const SAM_CONTEXT *context, const
-NT_USER_TOKEN *access_token, const DOM_SID *domainsid, uint16 acct_ctrl,
-int32 *account_count, SAM_ACCOUNT_ENUM **accounts)</PRE
-></P
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN3121"
-></A
->12.7. Testing</H2
-><P
->Testing is vital in any piece of software, and Samba is certainly no
-exception. In designing this new subsystem, we have taken care to ensure
-it is easily tested, independent of outside protocols.</P
-><P
->To this end, Jelmer has constructed 'samtest'.  </P
-><P
->This utility (see torture/samtest.c) is structured like rpcclient, but
-instead operates on the SAM subsystem.  It creates a 'custom' SAM
-context, that may be distinct from the default values used by the rest
-of the system, and can load a separate configuration file.  </P
-><P
->A small number of commands are currently implemented, but these have
-already proved vital in testing.   I expect SAM module authors will find
-it particularly valuable.</P
-><P
->Example useage:</P
-><P
-><TT
-CLASS="PROMPT"
->$</TT
-> <B
-CLASS="COMMAND"
->bin/samtest</B
-></P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->&#62; context ads:ldap://192.168.1.96</PRE
->
-(this loads a new context, using the new ADS module.  The parameter is
-the 'location' of the ldap server)</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->&#62; lookup_name DOMAIN abartlet</PRE
->
-(returns a sid).</P
-><P
->Because the 'new SAM' is NT ACL based, there will be a command to
-specify an arbitrary NT ACL, but for now it uses 'system' by default.</P
-></DIV
-></DIV
-><DIV
-CLASS="CHAPTER"
-><HR><H1
-><A
-NAME="PWENCRYPT"
-></A
->Chapter 13. LanMan and NT Password Encryption</H1
-><DIV
-CLASS="SECT1"
-><H2
-CLASS="SECT1"
-><A
-NAME="AEN3147"
-></A
->13.1. Introduction</H2
-><P
->With the development of LanManager and Windows NT 
-	compatible password encryption for Samba, it is now able 
-	to validate user connections in exactly the same way as 
-	a LanManager or Windows NT server.</P
-><P
->This document describes how the SMB password encryption 
-	algorithm works and what issues there are in choosing whether 
-	you want to use it. You should read it carefully, especially 
-	the part about security and the "PROS and CONS" section.</P
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN3151"
-></A
->13.2. How does it work?</H2
-><P
->LanManager encryption is somewhat similar to UNIX 
-	password encryption. The server uses a file containing a 
-	hashed value of a user's password.  This is created by taking 
-	the user's plaintext password, capitalising it, and either 
-	truncating to 14 bytes or padding to 14 bytes with null bytes. 
-	This 14 byte value is used as two 56 bit DES keys to encrypt 
-	a 'magic' eight byte value, forming a 16 byte value which is 
-	stored by the server and client. Let this value be known as 
-	the "hashed password".</P
-><P
->Windows NT encryption is a higher quality mechanism, 
-	consisting of doing an MD4 hash on a Unicode version of the user's 
-	password. This also produces a 16 byte hash value that is 
-	non-reversible.</P
-><P
->When a client (LanManager, Windows for WorkGroups, Windows 
-	95 or Windows NT) wishes to mount a Samba drive (or use a Samba 
-	resource), it first requests a connection and negotiates the 
-	protocol that the client and server will use. In the reply to this 
-	request the Samba server generates and appends an 8 byte, random 
-	value - this is stored in the Samba server after the reply is sent 
-	and is known as the "challenge".  The challenge is different for 
-	every client connection.</P
-><P
->The client then uses the hashed password (16 byte values 
-	described above), appended with 5 null bytes, as three 56 bit 
-	DES keys, each of which is used to encrypt the challenge 8 byte 
-	value, forming a 24 byte value known as the "response".</P
-><P
->In the SMB call SMBsessionsetupX (when user level security 
-	is selected) or the call SMBtconX (when share level security is 
-	selected), the 24 byte response is returned by the client to the 
-	Samba server.  For Windows NT protocol levels the above calculation 
-	is done on both hashes of the user's password and both responses are 
-	returned in the SMB call, giving two 24 byte values.</P
-><P
->The Samba server then reproduces the above calculation, using 
-	its own stored value of the 16 byte hashed password (read from the 
-	<TT
-CLASS="FILENAME"
->smbpasswd</TT
-> file - described later) and the challenge 
-	value that it kept from the negotiate protocol reply. It then checks 
-	to see if the 24 byte value it calculates matches the 24 byte value 
-	returned to it from the client.</P
-><P
->If these values match exactly, then the client knew the 
-	correct password (or the 16 byte hashed value - see security note 
-	below) and is thus allowed access. If not, then the client did not 
-	know the correct password and is denied access.</P
-><P
->Note that the Samba server never knows or stores the cleartext 
-	of the user's password - just the 16 byte hashed values derived from 
-	it. Also note that the cleartext password or 16 byte hashed values 
-	are never transmitted over the network - thus increasing security.</P
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN3162"
-></A
->13.3. <A
-NAME="SMBPASSWDFILEFORMAT"
-></A
->The smbpasswd file</H2
-><P
->In order for Samba to participate in the above protocol 
-	it must be able to look up the 16 byte hashed values given a user name.
-	Unfortunately, as the UNIX password value is also a one way hash
-	function (ie. it is impossible to retrieve the cleartext of the user's
-	password given the UNIX hash of it), a separate password file
-	containing this 16 byte value must be kept. To minimise problems with
-	these two password files, getting out of sync, the UNIX <TT
-CLASS="FILENAME"
->	/etc/passwd</TT
-> and the <TT
-CLASS="FILENAME"
->smbpasswd</TT
-> file, 
-	a utility, <B
-CLASS="COMMAND"
->mksmbpasswd.sh</B
->, is provided to generate
-	a smbpasswd file from a UNIX <TT
-CLASS="FILENAME"
->/etc/passwd</TT
-> file.
-	</P
-><P
->To generate the smbpasswd file from your <TT
-CLASS="FILENAME"
->/etc/passwd
-	</TT
-> file use the following command :</P
-><P
-><TT
-CLASS="PROMPT"
->$ </TT
-><TT
-CLASS="USERINPUT"
-><B
->cat /etc/passwd | mksmbpasswd.sh
-	&gt; /usr/local/samba/private/smbpasswd</B
-></TT
-></P
-><P
->If you are running on a system that uses NIS, use</P
-><P
-><TT
-CLASS="PROMPT"
->$ </TT
-><TT
-CLASS="USERINPUT"
-><B
->ypcat passwd | mksmbpasswd.sh
-	&gt; /usr/local/samba/private/smbpasswd</B
-></TT
-></P
-><P
->The <B
-CLASS="COMMAND"
->mksmbpasswd.sh</B
-> program is found in 
-	the Samba source directory. By default, the smbpasswd file is 
-	stored in :</P
-><P
-><TT
-CLASS="FILENAME"
->/usr/local/samba/private/smbpasswd</TT
-></P
-><P
->The owner of the <TT
-CLASS="FILENAME"
->/usr/local/samba/private/</TT
-> 
-	directory should be set to root, and the permissions on it should 
-	be set to 0500 (<B
-CLASS="COMMAND"
->chmod 500 /usr/local/samba/private</B
->).
-	</P
-><P
->Likewise, the smbpasswd file inside the private directory should 
-	be owned by root and the permissions on is should be set to 0600
-	(<B
-CLASS="COMMAND"
->chmod 600 smbpasswd</B
->).</P
-><P
->The format of the smbpasswd file is (The line has been 
-	wrapped here. It should appear as one entry per line in 
-	your smbpasswd file.)</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->username:uid:XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX:XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX:
-	[Account type]:LCT-&lt;last-change-time&gt;:Long name
-	</PRE
-></P
-><P
->Although only the <TT
-CLASS="REPLACEABLE"
-><I
->username</I
-></TT
->, 
-	<TT
-CLASS="REPLACEABLE"
-><I
->uid</I
-></TT
->, <TT
-CLASS="REPLACEABLE"
-><I
->	XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX</I
-></TT
->,
-	[<TT
-CLASS="REPLACEABLE"
-><I
->Account type</I
-></TT
->] and <TT
-CLASS="REPLACEABLE"
-><I
->	last-change-time</I
-></TT
-> sections are significant 
-	and are looked at in the Samba code.</P
-><P
->It is <SPAN
-CLASS="emphasis"
-><I
-CLASS="EMPHASIS"
->VITALLY</I
-></SPAN
-> important that there by 32 
-	'X' characters between the two ':' characters in the XXX sections - 
-	the smbpasswd and Samba code will fail to validate any entries that 
-	do not have 32 characters  between ':' characters. The first XXX 
-	section is for the Lanman password hash, the second is for the 
-	Windows NT version.</P
-><P
->When the password file is created all users have password entries
-	consisting of 32 'X' characters. By default this disallows any access
-	as this user. When a user has a password set, the 'X' characters change
-	to 32 ascii hexadecimal digits (0-9, A-F). These are an ascii
-	representation of the 16 byte hashed value of a user's password.</P
-><P
->To set a user to have no password (not recommended), edit the file
-	using vi, and replace the first 11 characters with the ascii text
-	<TT
-CLASS="CONSTANT"
->"NO PASSWORD"</TT
-> (minus the quotes).</P
-><P
->For example, to clear the password for user bob, his smbpasswd file 
-	entry would look like :</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->	bob:100:NO PASSWORDXXXXXXXXXXXXXXXXXXXXX:XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX:[U          ]:LCT-00000000:Bob's full name:/bobhome:/bobshell
-	</PRE
-></P
-><P
->If you are allowing users to use the smbpasswd command to set 
-	their own passwords, you may want to give users NO PASSWORD initially 
-	so they do not have to enter a previous password when changing to their 
-	new password (not recommended). In order for you to allow this the
-	<B
-CLASS="COMMAND"
->smbpasswd</B
-> program must be able to connect to the 
-	<B
-CLASS="COMMAND"
->smbd</B
-> daemon as that user with no password. Enable this 
-	by adding the line :</P
-><P
-><B
-CLASS="COMMAND"
->null passwords = yes</B
-></P
-><P
->to the [global] section of the smb.conf file (this is why 
-	the above scenario is not recommended). Preferably, allocate your
-	users a default password to begin with, so you do not have
-	to enable this on your server.</P
-><P
-><SPAN
-CLASS="emphasis"
-><I
-CLASS="EMPHASIS"
->Note : </I
-></SPAN
->This file should be protected very 
-	carefully. Anyone with access to this file can (with enough knowledge of 
-	the protocols) gain access to your SMB server. The file is thus more 
-	sensitive than a normal unix <TT
-CLASS="FILENAME"
->/etc/passwd</TT
-> file.</P
-></DIV
-></DIV
 ></DIV
 ></BODY
 ></HTML
diff --git a/docs/htmldocs/Samba-HOWTO-Collection.html b/docs/htmldocs/Samba-HOWTO-Collection.html
index 2bb324d9f32..e5240ba658e 100644
--- a/docs/htmldocs/Samba-HOWTO-Collection.html
+++ b/docs/htmldocs/Samba-HOWTO-Collection.html
@@ -16,14 +16,14 @@ ALINK="#0000FF"
 ><DIV
 CLASS="BOOK"
 ><A
-NAME="SAMBA-HOWTO-COLLECTION"
+NAME="SAMBA-PROJECT-DOCUMENTATION"
 ></A
 ><DIV
 CLASS="TITLEPAGE"
 ><H1
 CLASS="TITLE"
 ><A
-NAME="SAMBA-HOWTO-COLLECTION"
+NAME="SAMBA-PROJECT-DOCUMENTATION"
 ></A
 >SAMBA Project Documentation</H1
 ><H3
@@ -78,13 +78,6 @@ CLASS="TOC"
 >Table of Contents</B
 ></DT
 ><DT
->I. <A
-HREF="#AEN18"
->General installation</A
-></DT
-><DD
-><DL
-><DT
 >1. <A
 HREF="#INSTALL"
 >How to Install and Test SAMBA</A
@@ -93,28 +86,28 @@ HREF="#INSTALL"
 ><DL
 ><DT
 >1.1. <A
-HREF="#AEN25"
->Read the man pages</A
+HREF="#AEN20"
+>Step 0: Read the man pages</A
 ></DT
 ><DT
 >1.2. <A
-HREF="#AEN35"
->Building the Binaries</A
+HREF="#AEN28"
+>Step 1: Building the Binaries</A
 ></DT
 ><DT
 >1.3. <A
-HREF="#AEN63"
->The all important step</A
+HREF="#AEN56"
+>Step 2: The all important step</A
 ></DT
 ><DT
 >1.4. <A
-HREF="#AEN67"
->Create the smb configuration file.</A
+HREF="#AEN60"
+>Step 3: Create the smb configuration file.</A
 ></DT
 ><DT
 >1.5. <A
-HREF="#AEN81"
->Test your config file with 
+HREF="#AEN74"
+>Step 4: Test your config file with 
 	<B
 CLASS="COMMAND"
 >testparm</B
@@ -122,1266 +115,1352 @@ CLASS="COMMAND"
 ></DT
 ><DT
 >1.6. <A
-HREF="#AEN89"
->Starting the smbd and nmbd</A
+HREF="#AEN80"
+>Step 5: Starting the smbd and nmbd</A
+></DT
+><DD
+><DL
+><DT
+>1.6.1. <A
+HREF="#AEN90"
+>Step 5a: Starting from inetd.conf</A
+></DT
+><DT
+>1.6.2. <A
+HREF="#AEN119"
+>Step 5b. Alternative: starting it as a daemon</A
 ></DT
+></DL
+></DD
 ><DT
 >1.7. <A
-HREF="#AEN144"
->Try listing the shares available on your 
+HREF="#AEN135"
+>Step 6: Try listing the shares available on your 
 	server</A
 ></DT
 ><DT
 >1.8. <A
-HREF="#AEN153"
->Try connecting with the unix client</A
+HREF="#AEN144"
+>Step 7: Try connecting with the unix client</A
 ></DT
 ><DT
 >1.9. <A
-HREF="#AEN169"
->Try connecting from a DOS, WfWg, Win9x, WinNT, 
+HREF="#AEN160"
+>Step 8: Try connecting from a DOS, WfWg, Win9x, WinNT, 
 	Win2k, OS/2, etc... client</A
 ></DT
 ><DT
 >1.10. <A
-HREF="#AEN183"
+HREF="#AEN174"
 >What If Things Don't Work?</A
 ></DT
+><DD
+><DL
+><DT
+>1.10.1. <A
+HREF="#AEN179"
+>Diagnosing Problems</A
+></DT
+><DT
+>1.10.2. <A
+HREF="#AEN183"
+>Scope IDs</A
+></DT
+><DT
+>1.10.3. <A
+HREF="#AEN186"
+>Choosing the Protocol Level</A
+></DT
+><DT
+>1.10.4. <A
+HREF="#AEN195"
+>Printing from UNIX to a Client PC</A
+></DT
+><DT
+>1.10.5. <A
+HREF="#AEN200"
+>Locking</A
+></DT
+><DT
+>1.10.6. <A
+HREF="#AEN209"
+>Mapping Usernames</A
+></DT
+></DL
+></DD
 ></DL
 ></DD
 ><DT
 >2. <A
-HREF="#IMPROVED-BROWSING"
->Improved browsing in samba</A
+HREF="#DIAGNOSIS"
+>Diagnosing your samba server</A
 ></DT
 ><DD
 ><DL
 ><DT
 >2.1. <A
-HREF="#AEN228"
->Overview of browsing</A
+HREF="#AEN223"
+>Introduction</A
 ></DT
 ><DT
 >2.2. <A
-HREF="#AEN232"
->Browsing support in samba</A
+HREF="#AEN228"
+>Assumptions</A
 ></DT
 ><DT
 >2.3. <A
-HREF="#AEN241"
->Problem resolution</A
+HREF="#AEN238"
+>Tests</A
 ></DT
+><DD
+><DL
 ><DT
->2.4. <A
-HREF="#AEN248"
->Browsing across subnets</A
+>2.3.1. <A
+HREF="#AEN240"
+>Test 1</A
 ></DT
 ><DT
->2.5. <A
-HREF="#AEN288"
->Setting up a WINS server</A
+>2.3.2. <A
+HREF="#AEN246"
+>Test 2</A
 ></DT
 ><DT
->2.6. <A
-HREF="#AEN307"
->Setting up Browsing in a WORKGROUP</A
+>2.3.3. <A
+HREF="#AEN252"
+>Test 3</A
 ></DT
 ><DT
->2.7. <A
-HREF="#AEN325"
->Setting up Browsing in a DOMAIN</A
+>2.3.4. <A
+HREF="#AEN267"
+>Test 4</A
 ></DT
 ><DT
->2.8. <A
-HREF="#AEN335"
->Forcing samba to be the master</A
+>2.3.5. <A
+HREF="#AEN272"
+>Test 5</A
 ></DT
 ><DT
->2.9. <A
-HREF="#AEN344"
->Making samba the domain master</A
+>2.3.6. <A
+HREF="#AEN278"
+>Test 6</A
 ></DT
 ><DT
->2.10. <A
-HREF="#AEN362"
->Note about broadcast addresses</A
+>2.3.7. <A
+HREF="#AEN286"
+>Test 7</A
 ></DT
 ><DT
->2.11. <A
-HREF="#AEN365"
->Multiple interfaces</A
+>2.3.8. <A
+HREF="#AEN312"
+>Test 8</A
+></DT
+><DT
+>2.3.9. <A
+HREF="#AEN329"
+>Test 9</A
+></DT
+><DT
+>2.3.10. <A
+HREF="#AEN337"
+>Test 10</A
+></DT
+><DT
+>2.3.11. <A
+HREF="#AEN343"
+>Test 11</A
+></DT
+></DL
+></DD
+><DT
+>2.4. <A
+HREF="#AEN348"
+>Still having troubles?</A
 ></DT
 ></DL
 ></DD
 ><DT
 >3. <A
-HREF="#OPLOCKS"
->Oplocks</A
+HREF="#INTEGRATE-MS-NETWORKS"
+>Integrating MS Windows networks with Samba</A
 ></DT
 ><DD
 ><DL
 ><DT
 >3.1. <A
-HREF="#AEN377"
->What are oplocks?</A
+HREF="#AEN365"
+>Agenda</A
 ></DT
-></DL
-></DD
 ><DT
->4. <A
-HREF="#BROWSING-QUICK"
->Quick Cross Subnet Browsing / Cross Workgroup Browsing guide</A
+>3.2. <A
+HREF="#AEN387"
+>Name Resolution in a pure Unix/Linux world</A
 ></DT
 ><DD
 ><DL
 ><DT
->4.1. <A
-HREF="#AEN392"
->Discussion</A
+>3.2.1. <A
+HREF="#AEN403"
+><TT
+CLASS="FILENAME"
+>/etc/hosts</TT
+></A
 ></DT
 ><DT
->4.2. <A
-HREF="#AEN400"
->Use of the "Remote Announce" parameter</A
+>3.2.2. <A
+HREF="#AEN419"
+><TT
+CLASS="FILENAME"
+>/etc/resolv.conf</TT
+></A
 ></DT
 ><DT
->4.3. <A
-HREF="#AEN414"
->Use of the "Remote Browse Sync" parameter</A
+>3.2.3. <A
+HREF="#AEN430"
+><TT
+CLASS="FILENAME"
+>/etc/host.conf</TT
+></A
 ></DT
 ><DT
->4.4. <A
-HREF="#AEN419"
->Use of WINS</A
+>3.2.4. <A
+HREF="#AEN438"
+><TT
+CLASS="FILENAME"
+>/etc/nsswitch.conf</TT
+></A
+></DT
+></DL
+></DD
+><DT
+>3.3. <A
+HREF="#AEN450"
+>Name resolution as used within MS Windows networking</A
 ></DT
+><DD
+><DL
 ><DT
->4.5. <A
-HREF="#AEN430"
->Do NOT use more than one (1) protocol on MS Windows machines</A
+>3.3.1. <A
+HREF="#AEN462"
+>The NetBIOS Name Cache</A
+></DT
+><DT
+>3.3.2. <A
+HREF="#AEN467"
+>The LMHOSTS file</A
+></DT
+><DT
+>3.3.3. <A
+HREF="#AEN475"
+>HOSTS file</A
+></DT
+><DT
+>3.3.4. <A
+HREF="#AEN480"
+>DNS Lookup</A
 ></DT
 ><DT
->4.6. <A
-HREF="#AEN436"
->Name Resolution Order</A
+>3.3.5. <A
+HREF="#AEN483"
+>WINS Lookup</A
 ></DT
 ></DL
 ></DD
 ><DT
->5. <A
-HREF="#PWENCRYPT"
->LanMan and NT Password Encryption in Samba</A
+>3.4. <A
+HREF="#AEN495"
+>How browsing functions and how to deploy stable and 
+dependable browsing using Samba</A
+></DT
+><DT
+>3.5. <A
+HREF="#AEN505"
+>MS Windows security options and how to configure 
+Samba for seemless integration</A
 ></DT
 ><DD
 ><DL
 ><DT
->5.1. <A
-HREF="#AEN472"
->Introduction</A
+>3.5.1. <A
+HREF="#AEN533"
+>Use MS Windows NT as an authentication server</A
+></DT
+><DT
+>3.5.2. <A
+HREF="#AEN541"
+>Make Samba a member of an MS Windows NT security domain</A
 ></DT
 ><DT
->5.2. <A
-HREF="#AEN477"
->Important Notes About Security</A
+>3.5.3. <A
+HREF="#AEN558"
+>Configure Samba as an authentication server</A
 ></DT
+></DL
+></DD
 ><DT
->5.3. <A
-HREF="#AEN512"
->The smbpasswd Command</A
+>3.6. <A
+HREF="#AEN575"
+>Conclusions</A
 ></DT
 ></DL
 ></DD
+><DT
+>4. <A
+HREF="#PAM"
+>Configuring PAM for distributed but centrally 
+managed authentication</A
+></DT
+><DD
+><DL
+><DT
+>4.1. <A
+HREF="#AEN596"
+>Samba and PAM</A
+></DT
+><DT
+>4.2. <A
+HREF="#AEN640"
+>Distributed Authentication</A
+></DT
+><DT
+>4.3. <A
+HREF="#AEN647"
+>PAM Configuration in smb.conf</A
+></DT
 ></DL
 ></DD
 ><DT
->II. <A
-HREF="#AEN544"
->Type of installation</A
+>5. <A
+HREF="#MSDFS"
+>Hosting a Microsoft Distributed File System tree on Samba</A
+></DT
+><DD
+><DL
+><DT
+>5.1. <A
+HREF="#AEN667"
+>Instructions</A
 ></DT
 ><DD
 ><DL
 ><DT
+>5.1.1. <A
+HREF="#AEN702"
+>Notes</A
+></DT
+></DL
+></DD
+></DL
+></DD
+><DT
 >6. <A
-HREF="#SAMBA-PDC"
->How to Configure Samba as a NT4 Primary Domain Controller</A
+HREF="#UNIX-PERMISSIONS"
+>UNIX Permission Bits and Windows NT Access Control Lists</A
 ></DT
 ><DD
 ><DL
 ><DT
 >6.1. <A
-HREF="#AEN566"
->Prerequisite Reading</A
+HREF="#AEN722"
+>Viewing and changing UNIX permissions using the NT 
+	security dialogs</A
 ></DT
 ><DT
 >6.2. <A
-HREF="#AEN572"
->Background</A
+HREF="#AEN731"
+>How to view file security on a Samba share</A
 ></DT
 ><DT
 >6.3. <A
-HREF="#AEN611"
->Configuring the Samba Domain Controller</A
+HREF="#AEN742"
+>Viewing file ownership</A
 ></DT
 ><DT
 >6.4. <A
-HREF="#AEN654"
->Creating Machine Trust Accounts and Joining Clients to the
-Domain</A
+HREF="#AEN762"
+>Viewing file or directory permissions</A
 ></DT
+><DD
+><DL
 ><DT
->6.5. <A
-HREF="#AEN738"
->Common Problems and Errors</A
+>6.4.1. <A
+HREF="#AEN777"
+>File Permissions</A
 ></DT
 ><DT
->6.6. <A
-HREF="#AEN786"
->System Policies and Profiles</A
+>6.4.2. <A
+HREF="#AEN791"
+>Directory Permissions</A
 ></DT
+></DL
+></DD
 ><DT
->6.7. <A
-HREF="#AEN830"
->What other help can I get?</A
+>6.5. <A
+HREF="#AEN798"
+>Modifying file or directory permissions</A
 ></DT
 ><DT
->6.8. <A
-HREF="#AEN944"
->Domain Control for Windows 9x/ME</A
+>6.6. <A
+HREF="#AEN820"
+>Interaction with the standard Samba create mask 
+	parameters</A
 ></DT
 ><DT
->6.9. <A
-HREF="#AEN1082"
->DOMAIN_CONTROL.txt : Windows NT Domain Control &#38; Samba</A
+>6.7. <A
+HREF="#AEN884"
+>Interaction with the standard Samba file attribute 
+	mapping</A
 ></DT
 ></DL
 ></DD
 ><DT
 >7. <A
-HREF="#SAMBA-BDC"
->How to Act as a Backup Domain Controller in a Purely Samba Controlled Domain</A
+HREF="#PRINTING"
+>Printing Support in Samba 2.2.x</A
 ></DT
 ><DD
 ><DL
 ><DT
 >7.1. <A
-HREF="#AEN1118"
->Prerequisite Reading</A
+HREF="#AEN905"
+>Introduction</A
 ></DT
 ><DT
 >7.2. <A
-HREF="#AEN1122"
->Background</A
+HREF="#AEN927"
+>Configuration</A
 ></DT
+><DD
+><DL
 ><DT
->7.3. <A
-HREF="#AEN1130"
->What qualifies a Domain Controller on the network?</A
+>7.2.1. <A
+HREF="#AEN938"
+>Creating [print$]</A
 ></DT
 ><DT
->7.4. <A
-HREF="#AEN1139"
->Can Samba be a Backup Domain Controller?</A
+>7.2.2. <A
+HREF="#AEN973"
+>Setting Drivers for Existing Printers</A
 ></DT
 ><DT
->7.5. <A
-HREF="#AEN1143"
->How do I set up a Samba BDC?</A
+>7.2.3. <A
+HREF="#AEN990"
+>Support a large number of printers</A
 ></DT
-></DL
-></DD
 ><DT
->8. <A
-HREF="#ADS"
->Samba as a ADS domain member</A
+>7.2.4. <A
+HREF="#AEN1001"
+>Adding New Printers via the Windows NT APW</A
+></DT
+><DT
+>7.2.5. <A
+HREF="#AEN1031"
+>Samba and Printer Ports</A
+></DT
+></DL
+></DD
+><DT
+>7.3. <A
+HREF="#AEN1039"
+>The Imprints Toolset</A
+></DT
+><DD
+><DL
+><DT
+>7.3.1. <A
+HREF="#AEN1043"
+>What is Imprints?</A
+></DT
+><DT
+>7.3.2. <A
+HREF="#AEN1053"
+>Creating Printer Driver Packages</A
+></DT
+><DT
+>7.3.3. <A
+HREF="#AEN1056"
+>The Imprints server</A
+></DT
+><DT
+>7.3.4. <A
+HREF="#AEN1060"
+>The Installation Client</A
+></DT
+></DL
+></DD
+><DT
+>7.4. <A
+HREF="#AEN1082"
+><A
+NAME="MIGRATION"
+></A
+>Migration to from Samba 2.0.x to 2.2.x</A
+></DT
+></DL
+></DD
+><DT
+>8. <A
+HREF="#PRINTINGDEBUG"
+>Debugging Printing Problems</A
 ></DT
 ><DD
 ><DL
 ><DT
 >8.1. <A
-HREF="#AEN1178"
->Installing the required packages for Debian</A
+HREF="#AEN1128"
+>Introduction</A
 ></DT
 ><DT
 >8.2. <A
-HREF="#AEN1184"
->Installing the required packages for RedHat</A
+HREF="#AEN1144"
+>Debugging printer problems</A
 ></DT
 ><DT
 >8.3. <A
-HREF="#AEN1193"
->Compile Samba</A
+HREF="#AEN1153"
+>What printers do I have?</A
 ></DT
 ><DT
 >8.4. <A
-HREF="#AEN1205"
->Setup your /etc/krb5.conf</A
+HREF="#AEN1161"
+>Setting up printcap and print servers</A
 ></DT
 ><DT
 >8.5. <A
-HREF="#AEN1215"
->Create the computer account</A
+HREF="#AEN1189"
+>Job sent, no output</A
 ></DT
 ><DT
 >8.6. <A
-HREF="#AEN1231"
->Test your server setup</A
+HREF="#AEN1200"
+>Job sent, strange output</A
 ></DT
 ><DT
 >8.7. <A
-HREF="#AEN1236"
->Testing with smbclient</A
+HREF="#AEN1212"
+>Raw PostScript printed</A
 ></DT
 ><DT
 >8.8. <A
-HREF="#AEN1239"
->Notes</A
+HREF="#AEN1215"
+>Advanced Printing</A
+></DT
+><DT
+>8.9. <A
+HREF="#AEN1218"
+>Real debugging</A
 ></DT
 ></DL
 ></DD
 ><DT
 >9. <A
-HREF="#DOMAIN-SECURITY"
->Samba as a NT4 domain member</A
+HREF="#SECURITYLEVELS"
+>Security levels</A
 ></DT
 ><DD
 ><DL
 ><DT
 >9.1. <A
-HREF="#AEN1261"
->Joining an NT Domain with Samba 2.2</A
+HREF="#AEN1231"
+>Introduction</A
 ></DT
 ><DT
 >9.2. <A
-HREF="#AEN1325"
->Samba and Windows 2000 Domains</A
-></DT
-><DT
->9.3. <A
-HREF="#AEN1330"
->Why is this better than security = server?</A
+HREF="#AEN1242"
+>More complete description of security levels</A
 ></DT
 ></DL
 ></DD
-></DL
-></DD
-><DT
->III. <A
-HREF="#AEN1346"
->Optional configuration</A
-></DT
-><DD
-><DL
 ><DT
 >10. <A
-HREF="#INTEGRATE-MS-NETWORKS"
->Integrating MS Windows networks with Samba</A
+HREF="#DOMAIN-SECURITY"
+>security = domain in Samba 2.x</A
 ></DT
 ><DD
 ><DL
 ><DT
 >10.1. <A
-HREF="#AEN1362"
->Agenda</A
+HREF="#AEN1275"
+>Joining an NT Domain with Samba 2.2</A
 ></DT
 ><DT
 >10.2. <A
-HREF="#AEN1384"
->Name Resolution in a pure Unix/Linux world</A
+HREF="#AEN1339"
+>Samba and Windows 2000 Domains</A
 ></DT
 ><DT
 >10.3. <A
-HREF="#AEN1447"
->Name resolution as used within MS Windows networking</A
-></DT
-><DT
->10.4. <A
-HREF="#AEN1492"
->How browsing functions and how to deploy stable and 
-dependable browsing using Samba</A
-></DT
-><DT
->10.5. <A
-HREF="#AEN1502"
->MS Windows security options and how to configure 
-Samba for seemless integration</A
-></DT
-><DT
->10.6. <A
-HREF="#AEN1572"
->Conclusions</A
+HREF="#AEN1344"
+>Why is this better than security = server?</A
 ></DT
 ></DL
 ></DD
 ><DT
 >11. <A
-HREF="#UNIX-PERMISSIONS"
->UNIX Permission Bits and Windows NT Access Control Lists</A
+HREF="#WINBIND"
+>Unified Logons between Windows NT and UNIX using Winbind</A
 ></DT
 ><DD
 ><DL
 ><DT
 >11.1. <A
-HREF="#AEN1593"
->Viewing and changing UNIX permissions using the NT 
-	security dialogs</A
+HREF="#AEN1397"
+>Abstract</A
 ></DT
 ><DT
 >11.2. <A
-HREF="#AEN1602"
->How to view file security on a Samba share</A
+HREF="#AEN1401"
+>Introduction</A
 ></DT
 ><DT
 >11.3. <A
-HREF="#AEN1613"
->Viewing file ownership</A
+HREF="#AEN1414"
+>What Winbind Provides</A
+></DT
+><DD
+><DL
+><DT
+>11.3.1. <A
+HREF="#AEN1421"
+>Target Uses</A
 ></DT
+></DL
+></DD
 ><DT
 >11.4. <A
-HREF="#AEN1633"
->Viewing file or directory permissions</A
+HREF="#AEN1425"
+>How Winbind Works</A
 ></DT
+><DD
+><DL
 ><DT
->11.5. <A
-HREF="#AEN1669"
->Modifying file or directory permissions</A
+>11.4.1. <A
+HREF="#AEN1430"
+>Microsoft Remote Procedure Calls</A
 ></DT
 ><DT
->11.6. <A
-HREF="#AEN1691"
->Interaction with the standard Samba create mask 
-	parameters</A
+>11.4.2. <A
+HREF="#AEN1434"
+>Name Service Switch</A
 ></DT
 ><DT
->11.7. <A
-HREF="#AEN1755"
->Interaction with the standard Samba file attribute 
-	mapping</A
+>11.4.3. <A
+HREF="#AEN1450"
+>Pluggable Authentication Modules</A
+></DT
+><DT
+>11.4.4. <A
+HREF="#AEN1458"
+>User and Group ID Allocation</A
+></DT
+><DT
+>11.4.5. <A
+HREF="#AEN1462"
+>Result Caching</A
 ></DT
 ></DL
 ></DD
 ><DT
->12. <A
-HREF="#PAM"
->Configuring PAM for distributed but centrally 
-managed authentication</A
+>11.5. <A
+HREF="#AEN1465"
+>Installation and Configuration</A
 ></DT
 ><DD
 ><DL
 ><DT
->12.1. <A
-HREF="#AEN1776"
->Samba and PAM</A
+>11.5.1. <A
+HREF="#AEN1472"
+>Introduction</A
 ></DT
 ><DT
->12.2. <A
-HREF="#AEN1820"
->Distributed Authentication</A
+>11.5.2. <A
+HREF="#AEN1485"
+>Requirements</A
 ></DT
 ><DT
->12.3. <A
-HREF="#AEN1827"
->PAM Configuration in smb.conf</A
+>11.5.3. <A
+HREF="#AEN1499"
+>Testing Things Out</A
 ></DT
 ></DL
 ></DD
 ><DT
->13. <A
-HREF="#MSDFS"
->Hosting a Microsoft Distributed File System tree on Samba</A
+>11.6. <A
+HREF="#AEN1714"
+>Limitations</A
 ></DT
-><DD
-><DL
 ><DT
->13.1. <A
-HREF="#AEN1847"
->Instructions</A
+>11.7. <A
+HREF="#AEN1724"
+>Conclusion</A
 ></DT
 ></DL
 ></DD
 ><DT
->14. <A
-HREF="#PRINTING"
->Printing Support</A
+>12. <A
+HREF="#SAMBA-PDC"
+>How to Configure Samba 2.2 as a Primary Domain Controller</A
 ></DT
 ><DD
 ><DL
 ><DT
->14.1. <A
-HREF="#AEN1908"
->Introduction</A
-></DT
-><DT
->14.2. <A
-HREF="#AEN1930"
->Configuration</A
+>12.1. <A
+HREF="#AEN1744"
+>Prerequisite Reading</A
 ></DT
 ><DT
->14.3. <A
-HREF="#AEN2038"
->The Imprints Toolset</A
+>12.2. <A
+HREF="#AEN1750"
+>Background</A
 ></DT
 ><DT
->14.4. <A
-HREF="#AEN2081"
->Diagnosis</A
+>12.3. <A
+HREF="#AEN1789"
+>Configuring the Samba Domain Controller</A
 ></DT
-></DL
-></DD
 ><DT
->15. <A
-HREF="#SECURITYLEVELS"
->Security levels</A
+>12.4. <A
+HREF="#AEN1832"
+>Creating Machine Trust Accounts and Joining Clients to the
+Domain</A
 ></DT
 ><DD
 ><DL
 ><DT
->15.1. <A
-HREF="#AEN2186"
->Introduction</A
+>12.4.1. <A
+HREF="#AEN1851"
+>Manual Creation of Machine Trust Accounts</A
 ></DT
 ><DT
->15.2. <A
-HREF="#AEN2197"
->More complete description of security levels</A
+>12.4.2. <A
+HREF="#AEN1886"
+>"On-the-Fly" Creation of Machine Trust Accounts</A
 ></DT
-></DL
-></DD
 ><DT
->16. <A
-HREF="#WINBIND"
->Unified Logons between Windows NT and UNIX using Winbind</A
+>12.4.3. <A
+HREF="#AEN1895"
+>Joining the Client to the Domain</A
 ></DT
-><DD
-><DL
+></DL
+></DD
 ><DT
->16.1. <A
-HREF="#AEN2249"
->Abstract</A
+>12.5. <A
+HREF="#AEN1910"
+>Common Problems and Errors</A
 ></DT
 ><DT
->16.2. <A
-HREF="#AEN2253"
->Introduction</A
+>12.6. <A
+HREF="#AEN1958"
+>System Policies and Profiles</A
 ></DT
 ><DT
->16.3. <A
-HREF="#AEN2266"
->What Winbind Provides</A
+>12.7. <A
+HREF="#AEN2002"
+>What other help can I get?</A
 ></DT
 ><DT
->16.4. <A
-HREF="#AEN2277"
->How Winbind Works</A
+>12.8. <A
+HREF="#AEN2116"
+>Domain Control for Windows 9x/ME</A
 ></DT
+><DD
+><DL
 ><DT
->16.5. <A
-HREF="#AEN2317"
->Installation and Configuration</A
+>12.8.1. <A
+HREF="#AEN2142"
+>Configuration Instructions:	Network Logons</A
 ></DT
 ><DT
->16.6. <A
-HREF="#AEN2566"
->Limitations</A
+>12.8.2. <A
+HREF="#AEN2161"
+>Configuration Instructions:	Setting up Roaming User Profiles</A
 ></DT
+></DL
+></DD
 ><DT
->16.7. <A
-HREF="#AEN2576"
->Conclusion</A
+>12.9. <A
+HREF="#AEN2254"
+>DOMAIN_CONTROL.txt : Windows NT Domain Control &#38; Samba</A
 ></DT
 ></DL
 ></DD
 ><DT
->17. <A
-HREF="#PDB-MYSQL"
->Passdb MySQL plugin</A
+>13. <A
+HREF="#SAMBA-BDC"
+>How to Act as a Backup Domain Controller in a Purely Samba Controlled Domain</A
 ></DT
 ><DD
 ><DL
 ><DT
->17.1. <A
-HREF="#AEN2590"
->Building</A
+>13.1. <A
+HREF="#AEN2290"
+>Prerequisite Reading</A
 ></DT
 ><DT
->17.2. <A
-HREF="#AEN2596"
->Configuring</A
+>13.2. <A
+HREF="#AEN2294"
+>Background</A
 ></DT
 ><DT
->17.3. <A
-HREF="#AEN2611"
->Using plaintext passwords or encrypted password</A
+>13.3. <A
+HREF="#AEN2302"
+>What qualifies a Domain Controller on the network?</A
+></DT
+><DD
+><DL
+><DT
+>13.3.1. <A
+HREF="#AEN2305"
+>How does a Workstation find its domain controller?</A
 ></DT
 ><DT
->17.4. <A
-HREF="#AEN2616"
->Getting non-column data from the table</A
+>13.3.2. <A
+HREF="#AEN2308"
+>When is the PDC needed?</A
 ></DT
 ></DL
 ></DD
 ><DT
->18. <A
-HREF="#PDB-XML"
->Passdb XML plugin</A
+>13.4. <A
+HREF="#AEN2311"
+>Can Samba be a Backup Domain Controller?</A
 ></DT
-><DD
-><DL
 ><DT
->18.1. <A
-HREF="#AEN2635"
->Building</A
+>13.5. <A
+HREF="#AEN2315"
+>How do I set up a Samba BDC?</A
 ></DT
+><DD
+><DL
 ><DT
->18.2. <A
-HREF="#AEN2641"
->Usage</A
+>13.5.1. <A
+HREF="#AEN2332"
+>How do I replicate the smbpasswd file?</A
 ></DT
 ></DL
 ></DD
+></DL
+></DD
 ><DT
->19. <A
+>14. <A
 HREF="#SAMBA-LDAP-HOWTO"
 >Storing Samba's User/Machine Account information in an LDAP Directory</A
 ></DT
 ><DD
 ><DL
 ><DT
->19.1. <A
-HREF="#AEN2664"
+>14.1. <A
+HREF="#AEN2353"
 >Purpose</A
 ></DT
 ><DT
->19.2. <A
-HREF="#AEN2684"
+>14.2. <A
+HREF="#AEN2373"
 >Introduction</A
 ></DT
 ><DT
->19.3. <A
-HREF="#AEN2713"
+>14.3. <A
+HREF="#AEN2402"
 >Supported LDAP Servers</A
 ></DT
 ><DT
->19.4. <A
-HREF="#AEN2718"
+>14.4. <A
+HREF="#AEN2407"
 >Schema and Relationship to the RFC 2307 posixAccount</A
 ></DT
 ><DT
->19.5. <A
-HREF="#AEN2730"
+>14.5. <A
+HREF="#AEN2419"
 >Configuring Samba with LDAP</A
 ></DT
+><DD
+><DL
+><DT
+>14.5.1. <A
+HREF="#AEN2421"
+>OpenLDAP configuration</A
+></DT
 ><DT
->19.6. <A
-HREF="#AEN2777"
+>14.5.2. <A
+HREF="#AEN2438"
+>Configuring Samba</A
+></DT
+></DL
+></DD
+><DT
+>14.6. <A
+HREF="#AEN2466"
 >Accounts and Groups management</A
 ></DT
 ><DT
->19.7. <A
-HREF="#AEN2782"
+>14.7. <A
+HREF="#AEN2471"
 >Security and sambaAccount</A
 ></DT
 ><DT
->19.8. <A
-HREF="#AEN2802"
+>14.8. <A
+HREF="#AEN2491"
 >LDAP specials attributes for sambaAccounts</A
 ></DT
 ><DT
->19.9. <A
-HREF="#AEN2872"
+>14.9. <A
+HREF="#AEN2561"
 >Example LDIF Entries for a sambaAccount</A
 ></DT
 ><DT
->19.10. <A
-HREF="#AEN2880"
+>14.10. <A
+HREF="#AEN2569"
 >Comments</A
 ></DT
 ></DL
 ></DD
 ><DT
->20. <A
-HREF="#CVS-ACCESS"
->HOWTO Access Samba source code via CVS</A
+>15. <A
+HREF="#ADS"
+>Using samba 3.0 with ActiveDirectory support</A
 ></DT
 ><DD
 ><DL
 ><DT
->20.1. <A
-HREF="#AEN2891"
->Introduction</A
+>15.1. <A
+HREF="#AEN2587"
+>Installing the required packages for Debian</A
 ></DT
 ><DT
->20.2. <A
-HREF="#AEN2896"
->CVS Access to samba.org</A
+>15.2. <A
+HREF="#AEN2593"
+>Installing the required packages for RedHat</A
+></DT
+><DT
+>15.3. <A
+HREF="#AEN2602"
+>Compile Samba</A
+></DT
+><DT
+>15.4. <A
+HREF="#AEN2614"
+>Setup your /etc/krb5.conf</A
+></DT
+><DT
+>15.5. <A
+HREF="#AEN2624"
+>Create the computer account</A
+></DT
+><DD
+><DL
+><DT
+>15.5.1. <A
+HREF="#AEN2628"
+>Possible errors</A
 ></DT
 ></DL
 ></DD
 ><DT
->21. <A
-HREF="#GROUPMAPPING"
->Group mapping HOWTO</A
+>15.6. <A
+HREF="#AEN2640"
+>Test your server setup</A
 ></DT
 ><DT
->22. <A
+>15.7. <A
+HREF="#AEN2645"
+>Testing with smbclient</A
+></DT
+><DT
+>15.8. <A
+HREF="#AEN2648"
+>Notes</A
+></DT
+></DL
+></DD
+><DT
+>16. <A
+HREF="#IMPROVED-BROWSING"
+>Improved browsing in samba</A
+></DT
+><DD
+><DL
+><DT
+>16.1. <A
+HREF="#AEN2659"
+>Overview of browsing</A
+></DT
+><DT
+>16.2. <A
+HREF="#AEN2663"
+>Browsing support in samba</A
+></DT
+><DT
+>16.3. <A
+HREF="#AEN2672"
+>Problem resolution</A
+></DT
+><DT
+>16.4. <A
+HREF="#AEN2679"
+>Browsing across subnets</A
+></DT
+><DD
+><DL
+><DT
+>16.4.1. <A
+HREF="#AEN2684"
+>How does cross subnet browsing work ?</A
+></DT
+></DL
+></DD
+><DT
+>16.5. <A
+HREF="#AEN2719"
+>Setting up a WINS server</A
+></DT
+><DT
+>16.6. <A
+HREF="#AEN2738"
+>Setting up Browsing in a WORKGROUP</A
+></DT
+><DT
+>16.7. <A
+HREF="#AEN2756"
+>Setting up Browsing in a DOMAIN</A
+></DT
+><DT
+>16.8. <A
+HREF="#AEN2766"
+>Forcing samba to be the master</A
+></DT
+><DT
+>16.9. <A
+HREF="#AEN2775"
+>Making samba the domain master</A
+></DT
+><DT
+>16.10. <A
+HREF="#AEN2793"
+>Note about broadcast addresses</A
+></DT
+><DT
+>16.11. <A
+HREF="#AEN2796"
+>Multiple interfaces</A
+></DT
+></DL
+></DD
+><DT
+>17. <A
 HREF="#SPEED"
 >Samba performance issues</A
 ></DT
 ><DD
 ><DL
 ><DT
->22.1. <A
-HREF="#AEN2982"
+>17.1. <A
+HREF="#AEN2814"
 >Comparisons</A
 ></DT
 ><DT
->22.2. <A
-HREF="#AEN2988"
+>17.2. <A
+HREF="#AEN2820"
 >Oplocks</A
 ></DT
+><DD
+><DL
+><DT
+>17.2.1. <A
+HREF="#AEN2822"
+>Overview</A
+></DT
 ><DT
->22.3. <A
-HREF="#AEN3008"
+>17.2.2. <A
+HREF="#AEN2830"
+>Level2 Oplocks</A
+></DT
+><DT
+>17.2.3. <A
+HREF="#AEN2836"
+>Old 'fake oplocks' option - deprecated</A
+></DT
+></DL
+></DD
+><DT
+>17.3. <A
+HREF="#AEN2840"
 >Socket options</A
 ></DT
 ><DT
->22.4. <A
-HREF="#AEN3015"
+>17.4. <A
+HREF="#AEN2847"
 >Read size</A
 ></DT
 ><DT
->22.5. <A
-HREF="#AEN3020"
+>17.5. <A
+HREF="#AEN2852"
 >Max xmit</A
 ></DT
 ><DT
->22.6. <A
-HREF="#AEN3025"
+>17.6. <A
+HREF="#AEN2857"
 >Locking</A
 ></DT
 ><DT
->22.7. <A
-HREF="#AEN3029"
+>17.7. <A
+HREF="#AEN2861"
 >Share modes</A
 ></DT
 ><DT
->22.8. <A
-HREF="#AEN3034"
+>17.8. <A
+HREF="#AEN2866"
 >Log level</A
 ></DT
 ><DT
->22.9. <A
-HREF="#AEN3037"
+>17.9. <A
+HREF="#AEN2869"
 >Wide lines</A
 ></DT
 ><DT
->22.10. <A
-HREF="#AEN3040"
+>17.10. <A
+HREF="#AEN2872"
 >Read raw</A
 ></DT
 ><DT
->22.11. <A
-HREF="#AEN3045"
+>17.11. <A
+HREF="#AEN2877"
 >Write raw</A
 ></DT
 ><DT
->22.12. <A
-HREF="#AEN3049"
+>17.12. <A
+HREF="#AEN2881"
 >Read prediction</A
 ></DT
 ><DT
->22.13. <A
-HREF="#AEN3056"
+>17.13. <A
+HREF="#AEN2888"
 >Memory mapping</A
 ></DT
 ><DT
->22.14. <A
-HREF="#AEN3061"
+>17.14. <A
+HREF="#AEN2893"
 >Slow Clients</A
 ></DT
 ><DT
->22.15. <A
-HREF="#AEN3065"
+>17.15. <A
+HREF="#AEN2897"
 >Slow Logins</A
 ></DT
 ><DT
->22.16. <A
-HREF="#AEN3068"
+>17.16. <A
+HREF="#AEN2900"
 >Client tuning</A
 ></DT
 ><DT
->22.17. <A
-HREF="#AEN3100"
+>17.17. <A
+HREF="#AEN2932"
 >My Results</A
 ></DT
 ></DL
 ></DD
-></DL
-></DD
 ><DT
->IV. <A
-HREF="#AEN3106"
->Appendixes</A
+>18. <A
+HREF="#OTHER-CLIENTS"
+>Samba and other CIFS clients</A
 ></DT
 ><DD
 ><DL
 ><DT
->23. <A
-HREF="#PORTABILITY"
->Portability</A
+>18.1. <A
+HREF="#AEN2953"
+>Macintosh clients?</A
+></DT
+><DT
+>18.2. <A
+HREF="#AEN2962"
+>OS2 Client</A
 ></DT
 ><DD
 ><DL
 ><DT
->23.1. <A
-HREF="#AEN3115"
->HPUX</A
+>18.2.1. <A
+HREF="#AEN2964"
+>How can I configure OS/2 Warp Connect or 
+		OS/2 Warp 4 as a client for Samba?</A
 ></DT
 ><DT
->23.2. <A
-HREF="#AEN3121"
->SCO Unix</A
+>18.2.2. <A
+HREF="#AEN2979"
+>How can I configure OS/2 Warp 3 (not Connect), 
+		OS/2 1.2, 1.3 or 2.x for Samba?</A
 ></DT
 ><DT
->23.3. <A
-HREF="#AEN3125"
->DNIX</A
+>18.2.3. <A
+HREF="#AEN2988"
+>Are there any other issues when OS/2 (any version) 
+		is used as a client?</A
 ></DT
 ><DT
->23.4. <A
-HREF="#AEN3154"
->RedHat Linux Rembrandt-II</A
+>18.2.4. <A
+HREF="#AEN2992"
+>How do I get printer driver download working 
+		for OS/2 clients?</A
 ></DT
 ></DL
 ></DD
 ><DT
->24. <A
-HREF="#OTHER-CLIENTS"
->Samba and other CIFS clients</A
+>18.3. <A
+HREF="#AEN3002"
+>Windows for Workgroups</A
 ></DT
 ><DD
 ><DL
 ><DT
->24.1. <A
-HREF="#AEN3175"
->Macintosh clients?</A
+>18.3.1. <A
+HREF="#AEN3004"
+>Use latest TCP/IP stack from Microsoft</A
 ></DT
 ><DT
->24.2. <A
-HREF="#AEN3184"
->OS2 Client</A
+>18.3.2. <A
+HREF="#AEN3009"
+>Delete .pwl files after password change</A
 ></DT
 ><DT
->24.3. <A
-HREF="#AEN3224"
->Windows for Workgroups</A
+>18.3.3. <A
+HREF="#AEN3014"
+>Configure WfW password handling</A
 ></DT
 ><DT
->24.4. <A
-HREF="#AEN3245"
+>18.3.4. <A
+HREF="#AEN3018"
+>Case handling of passwords</A
+></DT
+></DL
+></DD
+><DT
+>18.4. <A
+HREF="#AEN3023"
 >Windows '95/'98</A
 ></DT
 ><DT
->24.5. <A
-HREF="#AEN3261"
+>18.5. <A
+HREF="#AEN3039"
 >Windows 2000 Service Pack 2</A
 ></DT
 ></DL
 ></DD
 ><DT
->25. <A
+>19. <A
+HREF="#CVS-ACCESS"
+>HOWTO Access Samba source code via CVS</A
+></DT
+><DD
+><DL
+><DT
+>19.1. <A
+HREF="#AEN3063"
+>Introduction</A
+></DT
+><DT
+>19.2. <A
+HREF="#AEN3068"
+>CVS Access to samba.org</A
+></DT
+><DD
+><DL
+><DT
+>19.2.1. <A
+HREF="#AEN3071"
+>Access via CVSweb</A
+></DT
+><DT
+>19.2.2. <A
+HREF="#AEN3076"
+>Access via cvs</A
+></DT
+></DL
+></DD
+></DL
+></DD
+><DT
+>20. <A
 HREF="#BUGREPORT"
 >Reporting Bugs</A
 ></DT
 ><DD
 ><DL
 ><DT
->25.1. <A
-HREF="#AEN3285"
+>20.1. <A
+HREF="#AEN3111"
 >Introduction</A
 ></DT
 ><DT
->25.2. <A
-HREF="#AEN3295"
+>20.2. <A
+HREF="#AEN3118"
 >General info</A
 ></DT
 ><DT
->25.3. <A
-HREF="#AEN3301"
+>20.3. <A
+HREF="#AEN3124"
 >Debug levels</A
 ></DT
 ><DT
->25.4. <A
-HREF="#AEN3318"
+>20.4. <A
+HREF="#AEN3141"
 >Internal errors</A
 ></DT
 ><DT
->25.5. <A
-HREF="#AEN3328"
+>20.5. <A
+HREF="#AEN3151"
 >Attaching to a running process</A
 ></DT
 ><DT
->25.6. <A
-HREF="#AEN3331"
+>20.6. <A
+HREF="#AEN3154"
 >Patches</A
 ></DT
 ></DL
 ></DD
 ><DT
->26. <A
-HREF="#DIAGNOSIS"
->Diagnosing your samba server</A
+>21. <A
+HREF="#GROUPMAPPING"
+>Group mapping HOWTO</A
 ></DT
-><DD
-><DL
 ><DT
->26.1. <A
-HREF="#AEN3354"
->Introduction</A
+>22. <A
+HREF="#PORTABILITY"
+>Portability</A
 ></DT
+><DD
+><DL
 ><DT
->26.2. <A
-HREF="#AEN3359"
->Assumptions</A
+>22.1. <A
+HREF="#AEN3201"
+>HPUX</A
 ></DT
 ><DT
->26.3. <A
-HREF="#AEN3369"
->Tests</A
+>22.2. <A
+HREF="#AEN3206"
+>SCO Unix</A
 ></DT
 ><DT
->26.4. <A
-HREF="#AEN3479"
->Still having troubles?</A
+>22.3. <A
+HREF="#AEN3210"
+>DNIX</A
 ></DT
 ></DL
 ></DD
 ></DL
-></DD
-></DL
 ></DIV
 ><DIV
-CLASS="PART"
+CLASS="CHAPTER"
+><HR><H1
 ><A
-NAME="AEN18"
+NAME="INSTALL"
 ></A
-><DIV
-CLASS="TITLEPAGE"
-><H1
-CLASS="TITLE"
->I. General installation</H1
-><DIV
-CLASS="PARTINTRO"
-><A
-NAME="AEN20"
-></A
-><H1
->Introduction</H1
-><P
->This part contains general info on how to install samba 
-and how to configure the parts of samba you will most likely need.
-PLEASE read this.</P
-></DIV
-><DIV
-CLASS="TOC"
-><DL
-><DT
-><B
->Table of Contents</B
-></DT
-><DT
->1. <A
-HREF="#INSTALL"
->How to Install and Test SAMBA</A
-></DT
-><DD
-><DL
-><DT
->1.1. <A
-HREF="#AEN25"
->Read the man pages</A
-></DT
-><DT
->1.2. <A
-HREF="#AEN35"
->Building the Binaries</A
-></DT
-><DT
->1.3. <A
-HREF="#AEN63"
->The all important step</A
-></DT
-><DT
->1.4. <A
-HREF="#AEN67"
->Create the smb configuration file.</A
-></DT
-><DT
->1.5. <A
-HREF="#AEN81"
->Test your config file with 
-	<B
-CLASS="COMMAND"
->testparm</B
-></A
-></DT
-><DT
->1.6. <A
-HREF="#AEN89"
->Starting the smbd and nmbd</A
-></DT
-><DD
-><DL
-><DT
->1.6.1. <A
-HREF="#AEN99"
->Starting from inetd.conf</A
-></DT
-><DT
->1.6.2. <A
-HREF="#AEN128"
->Alternative: starting it as a daemon</A
-></DT
-></DL
-></DD
-><DT
->1.7. <A
-HREF="#AEN144"
->Try listing the shares available on your 
-	server</A
-></DT
-><DT
->1.8. <A
-HREF="#AEN153"
->Try connecting with the unix client</A
-></DT
-><DT
->1.9. <A
-HREF="#AEN169"
->Try connecting from a DOS, WfWg, Win9x, WinNT, 
-	Win2k, OS/2, etc... client</A
-></DT
-><DT
->1.10. <A
-HREF="#AEN183"
->What If Things Don't Work?</A
-></DT
-><DD
-><DL
-><DT
->1.10.1. <A
-HREF="#AEN188"
->Diagnosing Problems</A
-></DT
-><DT
->1.10.2. <A
-HREF="#AEN192"
->Scope IDs</A
-></DT
-><DT
->1.10.3. <A
-HREF="#AEN195"
->Choosing the Protocol Level</A
-></DT
-><DT
->1.10.4. <A
-HREF="#AEN204"
->Printing from UNIX to a Client PC</A
-></DT
-><DT
->1.10.5. <A
-HREF="#AEN209"
->Locking</A
-></DT
-><DT
->1.10.6. <A
-HREF="#AEN218"
->Mapping Usernames</A
-></DT
-></DL
-></DD
-></DL
-></DD
-><DT
->2. <A
-HREF="#IMPROVED-BROWSING"
->Improved browsing in samba</A
-></DT
-><DD
-><DL
-><DT
->2.1. <A
-HREF="#AEN228"
->Overview of browsing</A
-></DT
-><DT
->2.2. <A
-HREF="#AEN232"
->Browsing support in samba</A
-></DT
-><DT
->2.3. <A
-HREF="#AEN241"
->Problem resolution</A
-></DT
-><DT
->2.4. <A
-HREF="#AEN248"
->Browsing across subnets</A
-></DT
-><DD
-><DL
-><DT
->2.4.1. <A
-HREF="#AEN253"
->How does cross subnet browsing work ?</A
-></DT
-></DL
-></DD
-><DT
->2.5. <A
-HREF="#AEN288"
->Setting up a WINS server</A
-></DT
-><DT
->2.6. <A
-HREF="#AEN307"
->Setting up Browsing in a WORKGROUP</A
-></DT
-><DT
->2.7. <A
-HREF="#AEN325"
->Setting up Browsing in a DOMAIN</A
-></DT
-><DT
->2.8. <A
-HREF="#AEN335"
->Forcing samba to be the master</A
-></DT
-><DT
->2.9. <A
-HREF="#AEN344"
->Making samba the domain master</A
-></DT
-><DT
->2.10. <A
-HREF="#AEN362"
->Note about broadcast addresses</A
-></DT
-><DT
->2.11. <A
-HREF="#AEN365"
->Multiple interfaces</A
-></DT
-></DL
-></DD
-><DT
->3. <A
-HREF="#OPLOCKS"
->Oplocks</A
-></DT
-><DD
-><DL
-><DT
->3.1. <A
-HREF="#AEN377"
->What are oplocks?</A
-></DT
-></DL
-></DD
-><DT
->4. <A
-HREF="#BROWSING-QUICK"
->Quick Cross Subnet Browsing / Cross Workgroup Browsing guide</A
-></DT
-><DD
-><DL
-><DT
->4.1. <A
-HREF="#AEN392"
->Discussion</A
-></DT
-><DT
->4.2. <A
-HREF="#AEN400"
->Use of the "Remote Announce" parameter</A
-></DT
-><DT
->4.3. <A
-HREF="#AEN414"
->Use of the "Remote Browse Sync" parameter</A
-></DT
-><DT
->4.4. <A
-HREF="#AEN419"
->Use of WINS</A
-></DT
-><DT
->4.5. <A
-HREF="#AEN430"
->Do NOT use more than one (1) protocol on MS Windows machines</A
-></DT
-><DT
->4.6. <A
-HREF="#AEN436"
->Name Resolution Order</A
-></DT
-></DL
-></DD
-><DT
->5. <A
-HREF="#PWENCRYPT"
->LanMan and NT Password Encryption in Samba</A
-></DT
-><DD
-><DL
-><DT
->5.1. <A
-HREF="#AEN472"
->Introduction</A
-></DT
-><DT
->5.2. <A
-HREF="#AEN477"
->Important Notes About Security</A
-></DT
-><DD
-><DL
-><DT
->5.2.1. <A
-HREF="#AEN496"
->Advantages of SMB Encryption</A
-></DT
-><DT
->5.2.2. <A
-HREF="#AEN503"
->Advantages of non-encrypted passwords</A
-></DT
-></DL
-></DD
-><DT
->5.3. <A
-HREF="#AEN512"
->The smbpasswd Command</A
-></DT
-></DL
-></DD
-></DL
-></DIV
-></DIV
-><DIV
-CLASS="CHAPTER"
-><HR><H1
-><A
-NAME="INSTALL"
-></A
->Chapter 1. How to Install and Test SAMBA</H1
+>Chapter 1. How to Install and Test SAMBA</H1
 ><DIV
 CLASS="SECT1"
 ><H2
 CLASS="SECT1"
 ><A
-NAME="AEN25"
+NAME="AEN20"
 ></A
->1.1. Read the man pages</H2
+>1.1. Step 0: Read the man pages</H2
 ><P
 >The man pages distributed with SAMBA contain 
 	lots of useful info that will help to get you started. 
@@ -1394,20 +1473,10 @@ CLASS="PROMPT"
 ><TT
 CLASS="USERINPUT"
 ><B
->man smbd.8</B
-></TT
->
-	or 
-	<TT
-CLASS="PROMPT"
->$ </TT
-><TT
-CLASS="USERINPUT"
-><B
 >nroff -man smbd.8 | more
 	</B
 ></TT
-> on older unixes.</P
+></P
 ><P
 >Other sources of information are pointed to 
 	by the Samba web site,<A
@@ -1421,9 +1490,9 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN35"
+NAME="AEN28"
 ></A
->1.2. Building the Binaries</H2
+>1.2. Step 1: Building the Binaries</H2
 ><P
 >To do this, first run the program <B
 CLASS="COMMAND"
@@ -1520,9 +1589,9 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN63"
+NAME="AEN56"
 ></A
->1.3. The all important step</H2
+>1.3. Step 2: The all important step</H2
 ><P
 >At this stage you must fetch yourself a 
 	coffee or other drink you find stimulating. Getting the rest 
@@ -1537,9 +1606,9 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN67"
+NAME="AEN60"
 ></A
->1.4. Create the smb configuration file.</H2
+>1.4. Step 3: Create the smb configuration file.</H2
 ><P
 >There are sample configuration files in the examples 
 	subdirectory in the distribution. I suggest you read them 
@@ -1593,9 +1662,9 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN81"
+NAME="AEN74"
 ></A
->1.5. Test your config file with 
+>1.5. Step 4: Test your config file with 
 	<B
 CLASS="COMMAND"
 >testparm</B
@@ -1611,21 +1680,15 @@ CLASS="FILENAME"
 ><P
 >Make sure it runs OK and that the services look 
 	reasonable before proceeding. </P
-><P
->Always run testparm again when you change 
-	<TT
-CLASS="FILENAME"
->smb.conf</TT
->!</P
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN89"
+NAME="AEN80"
 ></A
->1.6. Starting the smbd and nmbd</H2
+>1.6. Step 5: Starting the smbd and nmbd</H2
 ><P
 >You must choose to start smbd and nmbd either
 	as daemons or from <B
@@ -1663,9 +1726,9 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN99"
+NAME="AEN90"
 ></A
->1.6.1. Starting from inetd.conf</H3
+>1.6.1. Step 5a: Starting from inetd.conf</H3
 ><P
 >NOTE; The following will be different if 
 		you use NIS or NIS+ to distributed services maps.</P
@@ -1767,9 +1830,9 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN128"
+NAME="AEN119"
 ></A
->1.6.2. Alternative: starting it as a daemon</H3
+>1.6.2. Step 5b. Alternative: starting it as a daemon</H3
 ><P
 >To start the server as a daemon you should create 
 		a script something like this one, perhaps calling 
@@ -1824,9 +1887,9 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN144"
+NAME="AEN135"
 ></A
->1.7. Try listing the shares available on your 
+>1.7. Step 6: Try listing the shares available on your 
 	server</H2
 ><P
 ><TT
@@ -1865,9 +1928,9 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN153"
+NAME="AEN144"
 ></A
->1.8. Try connecting with the unix client</H2
+>1.8. Step 7: Try connecting with the unix client</H2
 ><P
 ><TT
 CLASS="PROMPT"
@@ -1928,9 +1991,9 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN169"
+NAME="AEN160"
 ></A
->1.9. Try connecting from a DOS, WfWg, Win9x, WinNT, 
+>1.9. Step 8: Try connecting from a DOS, WfWg, Win9x, WinNT, 
 	Win2k, OS/2, etc... client</H2
 ><P
 >Try mounting disks. eg:</P
@@ -1977,7 +2040,7 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN183"
+NAME="AEN174"
 ></A
 >1.10. What If Things Don't Work?</H2
 ><P
@@ -2000,16 +2063,15 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN188"
+NAME="AEN179"
 ></A
 >1.10.1. Diagnosing Problems</H3
 ><P
->If you have installation problems then go to the
-		<A
-HREF="Diagnosis.html"
-TARGET="_top"
->Diagnosis</A
-> chapter to try to find the 
+>If you have installation problems then go to 
+		<TT
+CLASS="FILENAME"
+>DIAGNOSIS.txt</TT
+> to try to find the 
 		problem.</P
 ></DIV
 ><DIV
@@ -2017,7 +2079,7 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN192"
+NAME="AEN183"
 ></A
 >1.10.2. Scope IDs</H3
 ><P
@@ -2033,7 +2095,7 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN195"
+NAME="AEN186"
 ></A
 >1.10.3. Choosing the Protocol Level</H3
 ><P
@@ -2074,7 +2136,7 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN204"
+NAME="AEN195"
 ></A
 >1.10.4. Printing from UNIX to a Client PC</H3
 ><P
@@ -2095,7 +2157,7 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN209"
+NAME="AEN200"
 ></A
 >1.10.5. Locking</H3
 ><P
@@ -2155,7 +2217,7 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN218"
+NAME="AEN209"
 ></A
 >1.10.6. Mapping Usernames</H3
 ><P
@@ -2169,3271 +2231,2976 @@ NAME="AEN218"
 CLASS="CHAPTER"
 ><HR><H1
 ><A
-NAME="IMPROVED-BROWSING"
+NAME="DIAGNOSIS"
 ></A
->Chapter 2. Improved browsing in samba</H1
+>Chapter 2. Diagnosing your samba server</H1
 ><DIV
 CLASS="SECT1"
 ><H2
 CLASS="SECT1"
 ><A
-NAME="AEN228"
+NAME="AEN223"
 ></A
->2.1. Overview of browsing</H2
+>2.1. Introduction</H2
 ><P
->SMB networking provides a mechanism by which clients can access a list
-of machines in a network, a so-called "browse list".  This list
-contains machines that are ready to offer file and/or print services
-to other machines within the network. Thus it does not include
-machines which aren't currently able to do server tasks.  The browse
-list is heavily used by all SMB clients.  Configuration of SMB
-browsing has been problematic for some Samba users, hence this
-document.</P
+>This file contains a list of tests you can perform to validate your
+Samba server. It also tells you what the likely cause of the problem
+is if it fails any one of these steps. If it passes all these tests
+then it is probably working fine.</P
 ><P
->Browsing will NOT work if name resolution from NetBIOS names to IP
-addresses does not function correctly. Use of a WINS server is highly
-recommended to aid the resolution of NetBIOS (SMB) names to IP addresses.
-WINS allows remote segment clients to obtain NetBIOS name_type information
-that can NOT be provided by any other means of name resolution.</P
+>You should do ALL the tests, in the order shown. I have tried to
+carefully choose them so later tests only use capabilities verified in
+the earlier tests.</P
+><P
+>If you send me an email saying "it doesn't work" and you have not
+followed this test procedure then you should not be surprised if I
+ignore your email.</P
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN232"
+NAME="AEN228"
 ></A
->2.2. Browsing support in samba</H2
+>2.2. Assumptions</H2
 ><P
->Samba now fully supports browsing.  The browsing is supported by nmbd
-and is also controlled by options in the smb.conf file (see smb.conf(5)).</P
+>In all of the tests I assume you have a Samba server called BIGSERVER
+and a PC called ACLIENT both in workgroup TESTGROUP. I also assume the
+PC is running windows for workgroups with a recent copy of the
+microsoft tcp/ip stack. Alternatively, your PC may be running Windows
+95 or Windows NT (Workstation or Server).</P
 ><P
->Samba can act as a local browse master for a workgroup and the ability
-for samba to support domain logons and scripts is now available.  See
-DOMAIN.txt for more information on domain logons.</P
+>The procedure is similar for other types of clients.</P
 ><P
->Samba can also act as a domain master browser for a workgroup.  This
-means that it will collate lists from local browse masters into a
-wide area network server list.  In order for browse clients to
-resolve the names they may find in this list, it is recommended that
-both samba and your clients use a WINS server.</P
+>I also assume you know the name of an available share in your
+smb.conf. I will assume this share is called "tmp". You can add a
+"tmp" share like by adding the following to smb.conf:</P
 ><P
->Note that you should NOT set Samba to be the domain master for a
-workgroup that has the same name as an NT Domain: on each wide area
-network, you must only ever have one domain master browser per workgroup,
-regardless of whether it is NT, Samba or any other type of domain master
-that is providing this service.</P
+><PRE
+CLASS="PROGRAMLISTING"
+>&#13;[tmp]
+ comment = temporary files 
+ path = /tmp
+ read only = yes&#13;</PRE
+></P
 ><P
->[Note that nmbd can be configured as a WINS server, but it is not
-necessary to specifically use samba as your WINS server.  NTAS can
-be configured as your WINS server.  In a mixed NT server and
-samba environment on a Wide Area Network, it is recommended that
-you use the NT server's WINS server capabilities.  In a samba-only
-environment, it is recommended that you use one and only one nmbd
-as your WINS server].</P
+>THESE TESTS ASSUME VERSION 2.0.6 OR LATER OF THE SAMBA SUITE. SOME
+COMMANDS SHOWN DID NOT EXIST IN EARLIER VERSIONS</P
 ><P
->To get browsing to work you need to run nmbd as usual, but will need
-to use the "workgroup" option in smb.conf to control what workgroup
-Samba becomes a part of.</P
+>Please pay attention to the error messages you receive. If any error message
+reports that your server is being unfriendly you should first check that you
+IP name resolution is correctly set up. eg: Make sure your /etc/resolv.conf
+file points to name servers that really do exist.</P
 ><P
->Samba also has a useful option for a Samba server to offer itself for
-browsing on another subnet.  It is recommended that this option is only
-used for 'unusual' purposes: announcements over the internet, for
-example.  See "remote announce" in the smb.conf man page.  </P
+>Also, if you do not have DNS server access for name resolution please check
+that the settings for your smb.conf file results in "dns proxy = no". The
+best way to check this is with "testparm smb.conf"</P
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN241"
+NAME="AEN238"
 ></A
->2.3. Problem resolution</H2
-><P
->If something doesn't work then hopefully the log.nmb file will help
-you track down the problem.  Try a debug level of 2 or 3 for finding
-problems. Also note that the current browse list usually gets stored
-in text form in a file called browse.dat.</P
-><P
->Note that if it doesn't work for you, then you should still be able to
-type the server name as \\SERVER in filemanager then hit enter and
-filemanager should display the list of available shares.</P
-><P
->Some people find browsing fails because they don't have the global
-"guest account" set to a valid account.  Remember that the IPC$
-connection that lists the shares is done as guest, and thus you must
-have a valid guest account.</P
+>2.3. Tests</H2
+><DIV
+CLASS="SECT2"
+><H3
+CLASS="SECT2"
+><A
+NAME="AEN240"
+></A
+>2.3.1. Test 1</H3
 ><P
->Also, a lot of people are getting bitten by the problem of too many
-parameters on the command line of nmbd in inetd.conf.  This trick is to
-not use spaces between the option and the parameter (eg: -d2 instead
-of -d 2), and to not use the -B and -N options.  New versions of nmbd
-are now far more likely to correctly find your broadcast and network
-address, so in most cases these aren't needed.</P
+>In the directory in which you store your smb.conf file, run the command
+"testparm smb.conf". If it reports any errors then your smb.conf
+configuration file is faulty.</P
 ><P
->The other big problem people have is that their broadcast address,
-netmask or IP address is wrong (specified with the "interfaces" option
-in smb.conf)</P
+>Note:	Your smb.conf file may be located in: <TT
+CLASS="FILENAME"
+>/etc</TT
+>
+	Or in:   <TT
+CLASS="FILENAME"
+>/usr/local/samba/lib</TT
+></P
 ></DIV
 ><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
 ><A
-NAME="AEN248"
+NAME="AEN246"
 ></A
->2.4. Browsing across subnets</H2
+>2.3.2. Test 2</H3
 ><P
->With the release of Samba 1.9.17(alpha1 and above) Samba has been
-updated to enable it to support the replication of browse lists
-across subnet boundaries.  New code and options have been added to
-achieve this.  This section describes how to set this feature up
-in different settings.</P
+>Run the command "ping BIGSERVER" from the PC and "ping ACLIENT" from
+the unix box. If you don't get a valid response then your TCP/IP
+software is not correctly installed. </P
 ><P
->To see browse lists that span TCP/IP subnets (ie.  networks separated
-by routers that don't pass broadcast traffic) you must set up at least
-one WINS server.  The WINS server acts as a DNS for NetBIOS names, allowing
-NetBIOS name to IP address translation to be done by doing a direct
-query of the WINS server.  This is done via a directed UDP packet on
-port 137 to the WINS server machine.  The reason for a WINS server is
-that by default, all NetBIOS name to IP address translation is done
-by broadcasts from the querying machine.  This means that machines
-on one subnet will not be able to resolve the names of machines on
-another subnet without using a WINS server.</P
+>Note that you will need to start a "dos prompt" window on the PC to
+run ping.</P
 ><P
->Remember, for browsing across subnets to work correctly, all machines,
-be they Windows 95, Windows NT, or Samba servers must have the IP address
-of a WINS server given to them by a DHCP server, or by manual configuration 
-(for Win95 and WinNT, this is in the TCP/IP Properties, under Network 
-settings) for Samba this is in the smb.conf file.</P
+>If you get a message saying "host not found" or similar then your DNS
+software or /etc/hosts file is not correctly setup. It is possible to
+run samba without DNS entries for the server and client, but I assume
+you do have correct entries for the remainder of these tests. </P
+><P
+>Another reason why ping might fail is if your host is running firewall 
+software. You will need to relax the rules to let in the workstation
+in question, perhaps by allowing access from another subnet (on Linux
+this is done via the ipfwadm program.)</P
+></DIV
 ><DIV
 CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN253"
+NAME="AEN252"
 ></A
->2.4.1. How does cross subnet browsing work ?</H3
-><P
->Cross subnet browsing is a complicated dance, containing multiple
-moving parts.  It has taken Microsoft several years to get the code
-that achieves this correct, and Samba lags behind in some areas.
-However, with the 1.9.17 release, Samba is capable of cross subnet
-browsing when configured correctly.</P
+>2.3.3. Test 3</H3
 ><P
->Consider a network set up as follows :</P
+>Run the command "smbclient -L BIGSERVER" on the unix box. You
+should get a list of available shares back. </P
 ><P
-><PRE
-CLASS="PROGRAMLISTING"
->                                   (DMB)
-             N1_A      N1_B        N1_C       N1_D        N1_E
-              |          |           |          |           |
-          -------------------------------------------------------
-            |          subnet 1                       |
-          +---+                                      +---+
-          |R1 | Router 1                  Router 2   |R2 |
-          +---+                                      +---+
-            |                                          |
-            |  subnet 2              subnet 3          |
-  --------------------------       ------------------------------------
-  |     |     |      |               |        |         |           |
- N2_A  N2_B  N2_C   N2_D           N3_A     N3_B      N3_C        N3_D 
-                    (WINS)</PRE
-></P
+>If you get a error message containing the string "Bad password" then
+you probably have either an incorrect "hosts allow", "hosts deny" or
+"valid users" line in your smb.conf, or your guest account is not
+valid. Check what your guest account is using "testparm" and
+temporarily remove any "hosts allow", "hosts deny", "valid users" or
+"invalid users" lines.</P
 ><P
->Consisting of 3 subnets (1, 2, 3) connected by two routers
-(R1, R2) - these do not pass broadcasts.  Subnet 1 has 5 machines
-on it, subnet 2 has 4 machines, subnet 3 has 4 machines.  Assume
-for the moment that all these machines are configured to be in the
-same workgroup (for simplicities sake).  Machine N1_C on subnet 1
-is configured as Domain Master Browser (ie.  it will collate the
-browse lists for the workgroup).  Machine N2_D is configured as
-WINS server and all the other machines are configured to register
-their NetBIOS names with it.</P
+>If you get a "connection refused" response then the smbd server may
+not be running. If you installed it in inetd.conf then you probably edited
+that file incorrectly. If you installed it as a daemon then check that
+it is running, and check that the netbios-ssn port is in a LISTEN
+state using "netstat -a".</P
 ><P
->As all these machines are booted up, elections for master browsers
-will take place on each of the three subnets.  Assume that machine
-N1_C wins on subnet 1, N2_B wins on subnet 2, and N3_D wins on
-subnet 3 - these machines are known as local master browsers for
-their particular subnet.  N1_C has an advantage in winning as the
-local master browser on subnet 1 as it is set up as Domain Master
-Browser.</P
+>If you get a "session request failed" then the server refused the
+connection. If it says "Your server software is being unfriendly" then
+its probably because you have invalid command line parameters to smbd,
+or a similar fatal problem with the initial startup of smbd. Also
+check your config file (smb.conf) for syntax errors with "testparm"
+and that the various directories where samba keeps its log and lock
+files exist.</P
 ><P
->On each of the three networks, machines that are configured to 
-offer sharing services will broadcast that they are offering
-these services.  The local master browser on each subnet will
-receive these broadcasts and keep a record of the fact that
-the machine is offering a service.  This list of records is
-the basis of the browse list.  For this case, assume that
-all the machines are configured to offer services so all machines
-will be on the browse list.</P
+>There are a number of reasons for which smbd may refuse or decline
+a session request. The most common of these involve one or more of
+the following smb.conf file entries:</P
 ><P
->For each network, the local master browser on that network is
-considered 'authoritative' for all the names it receives via
-local broadcast.  This is because a machine seen by the local
-master browser via a local broadcast must be on the same 
-network as the local master browser and thus is a 'trusted'
-and 'verifiable' resource.  Machines on other networks that
-the local master browsers learn about when collating their
-browse lists have not been directly seen - these records are
-called 'non-authoritative'.</P
+><PRE
+CLASS="PROGRAMLISTING"
+>	hosts deny = ALL
+	hosts allow = xxx.xxx.xxx.xxx/yy
+	bind interfaces only = Yes</PRE
+></P
 ><P
->At this point the browse lists look as follows (these are 
-the machines you would see in your network neighborhood if
-you looked in it on a particular network right now).</P
+>In the above, no allowance has been made for any session requests that
+will automatically translate to the loopback adaptor address 127.0.0.1.
+To solve this problem change these lines to:</P
 ><P
 ><PRE
 CLASS="PROGRAMLISTING"
->Subnet           Browse Master   List
-------           -------------   ----
-Subnet1          N1_C            N1_A, N1_B, N1_C, N1_D, N1_E
-
-Subnet2          N2_B            N2_A, N2_B, N2_C, N2_D
-
-Subnet3          N3_D            N3_A, N3_B, N3_C, N3_D</PRE
+>	hosts deny = ALL
+	hosts allow = xxx.xxx.xxx.xxx/yy 127.</PRE
 ></P
 ><P
->Note that at this point all the subnets are separate, no
-machine is seen across any of the subnets.</P
-><P
->Now examine subnet 2.  As soon as N2_B has become the local
-master browser it looks for a Domain master browser to synchronize
-its browse list with.  It does this by querying the WINS server
-(N2_D) for the IP address associated with the NetBIOS name 
-WORKGROUP&gt;1B&lt;.  This name was registerd by the Domain master
-browser (N1_C) with the WINS server as soon as it was booted.</P
+>Do NOT use the "bind interfaces only" parameter where you may wish to
+use the samba password change facility, or where smbclient may need to
+access local service for name resolution or for local resource
+connections. (Note: the "bind interfaces only" parameter deficiency
+where it will not allow connections to the loopback address will be
+fixed soon).</P
 ><P
->Once N2_B knows the address of the Domain master browser it
-tells it that is the local master browser for subnet 2 by
-sending a MasterAnnouncement packet as a UDP port 138 packet.
-It then synchronizes with it by doing a NetServerEnum2 call.  This
-tells the Domain Master Browser to send it all the server
-names it knows about.  Once the domain master browser receives
-the MasterAnnouncement packet it schedules a synchronization
-request to the sender of that packet.  After both synchronizations
-are done the browse lists look like :</P
+>Another common cause of these two errors is having something already running 
+on port 139, such as Samba (ie: smbd is running from inetd already) or
+something like Digital's Pathworks. Check your inetd.conf file before trying
+to start smbd as a daemon, it can avoid a lot of frustration!</P
 ><P
-><PRE
-CLASS="PROGRAMLISTING"
->Subnet           Browse Master   List
-------           -------------   ----
-Subnet1          N1_C            N1_A, N1_B, N1_C, N1_D, N1_E, 
-                                 N2_A(*), N2_B(*), N2_C(*), N2_D(*)
-
-Subnet2          N2_B            N2_A, N2_B, N2_C, N2_D
-                                 N1_A(*), N1_B(*), N1_C(*), N1_D(*), N1_E(*)
-
-Subnet3          N3_D            N3_A, N3_B, N3_C, N3_D
-
-Servers with a (*) after them are non-authoritative names.</PRE
+>And yet another possible cause for failure of TEST 3 is when the subnet mask
+and / or broadcast address settings are incorrect. Please check that the
+network interface IP Address / Broadcast Address / Subnet Mask settings are
+correct and that Samba has correctly noted these in the log.nmb file.</P
+></DIV
+><DIV
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
+><A
+NAME="AEN267"
+></A
+>2.3.4. Test 4</H3
+><P
+>Run the command "nmblookup -B BIGSERVER __SAMBA__". You should get the
+IP address of your Samba server back.</P
+><P
+>If you don't then nmbd is incorrectly installed. Check your inetd.conf
+if you run it from there, or that the daemon is running and listening
+to udp port 137.</P
+><P
+>One common problem is that many inetd implementations can't take many
+parameters on the command line. If this is the case then create a
+one-line script that contains the right parameters and run that from
+inetd.</P
+></DIV
+><DIV
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
+><A
+NAME="AEN272"
+></A
+>2.3.5. Test 5</H3
+><P
+>run the command <B
+CLASS="COMMAND"
+>nmblookup -B ACLIENT '*'</B
 ></P
 ><P
->At this point users looking in their network neighborhood on
-subnets 1 or 2 will see all the servers on both, users on
-subnet 3 will still only see the servers on their own subnet.</P
+>You should get the PCs IP address back. If you don't then the client
+software on the PC isn't installed correctly, or isn't started, or you
+got the name of the PC wrong. </P
 ><P
->The same sequence of events that occured for N2_B now occurs
-for the local master browser on subnet 3 (N3_D).  When it
-synchronizes browse lists with the domain master browser (N1_A)
-it gets both the server entries on subnet 1, and those on
-subnet 2.  After N3_D has synchronized with N1_C and vica-versa
-the browse lists look like.</P
+>If ACLIENT doesn't resolve via DNS then use the IP address of the
+client in the above test.</P
+></DIV
+><DIV
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
+><A
+NAME="AEN278"
+></A
+>2.3.6. Test 6</H3
 ><P
-><PRE
-CLASS="PROGRAMLISTING"
->Subnet           Browse Master   List
-------           -------------   ----
-Subnet1          N1_C            N1_A, N1_B, N1_C, N1_D, N1_E, 
-                                 N2_A(*), N2_B(*), N2_C(*), N2_D(*),
-                                 N3_A(*), N3_B(*), N3_C(*), N3_D(*)
-
-Subnet2          N2_B            N2_A, N2_B, N2_C, N2_D
-                                 N1_A(*), N1_B(*), N1_C(*), N1_D(*), N1_E(*)
-
-Subnet3          N3_D            N3_A, N3_B, N3_C, N3_D
-                                 N1_A(*), N1_B(*), N1_C(*), N1_D(*), N1_E(*),
-                                 N2_A(*), N2_B(*), N2_C(*), N2_D(*)
-
-Servers with a (*) after them are non-authoritative names.</PRE
+>Run the command <B
+CLASS="COMMAND"
+>nmblookup -d 2 '*'</B
 ></P
 ><P
->At this point users looking in their network neighborhood on
-subnets 1 or 3 will see all the servers on all sunbets, users on
-subnet 2 will still only see the servers on subnets 1 and 2, but not 3.</P
+>This time we are trying the same as the previous test but are trying
+it via a broadcast to the default broadcast address. A number of
+Netbios/TCPIP hosts on the network should respond, although Samba may
+not catch all of the responses in the short time it listens. You
+should see "got a positive name query response" messages from several
+hosts.</P
 ><P
->Finally, the local master browser for subnet 2 (N2_B) will sync again
-with the domain master browser (N1_C) and will recieve the missing
-server entries.  Finally - and as a steady state (if no machines
-are removed or shut off) the browse lists will look like :</P
+>If this doesn't give a similar result to the previous test then
+nmblookup isn't correctly getting your broadcast address through its
+automatic mechanism. In this case you should experiment use the
+"interfaces" option in smb.conf to manually configure your IP
+address, broadcast and netmask. </P
 ><P
-><PRE
-CLASS="PROGRAMLISTING"
->Subnet           Browse Master   List
-------           -------------   ----
-Subnet1          N1_C            N1_A, N1_B, N1_C, N1_D, N1_E, 
-                                 N2_A(*), N2_B(*), N2_C(*), N2_D(*),
-                                 N3_A(*), N3_B(*), N3_C(*), N3_D(*)
-
-Subnet2          N2_B            N2_A, N2_B, N2_C, N2_D
-                                 N1_A(*), N1_B(*), N1_C(*), N1_D(*), N1_E(*)
-                                 N3_A(*), N3_B(*), N3_C(*), N3_D(*)
-
-Subnet3          N3_D            N3_A, N3_B, N3_C, N3_D
-                                 N1_A(*), N1_B(*), N1_C(*), N1_D(*), N1_E(*),
-                                 N2_A(*), N2_B(*), N2_C(*), N2_D(*)
-	
-Servers with a (*) after them are non-authoritative names.</PRE
+>If your PC and server aren't on the same subnet then you will need to
+use the -B option to set the broadcast address to the that of the PCs
+subnet.</P
+><P
+>This test will probably fail if your subnet mask and broadcast address are
+not correct. (Refer to TEST 3 notes above).</P
+></DIV
+><DIV
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
+><A
+NAME="AEN286"
+></A
+>2.3.7. Test 7</H3
+><P
+>Run the command <B
+CLASS="COMMAND"
+>smbclient //BIGSERVER/TMP</B
+>. You should 
+then be prompted for a password. You should use the password of the account
+you are logged into the unix box with. If you want to test with
+another account then add the -U &gt;accountname&lt; option to the end of
+the command line.  eg: 
+<B
+CLASS="COMMAND"
+>smbclient //bigserver/tmp -Ujohndoe</B
 ></P
 ><P
->Synchronizations between the domain master browser and local
-master browsers will continue to occur, but this should be a
-steady state situation.</P
+>Note: It is possible to specify the password along with the username
+as follows:
+<B
+CLASS="COMMAND"
+>smbclient //bigserver/tmp -Ujohndoe%secret</B
+></P
 ><P
->If either router R1 or R2 fails the following will occur:</P
+>Once you enter the password you should get the "smb&#62;" prompt. If you
+don't then look at the error message. If it says "invalid network
+name" then the service "tmp" is not correctly setup in your smb.conf.</P
+><P
+>If it says "bad password" then the likely causes are:</P
 ><P
 ></P
 ><OL
 TYPE="1"
 ><LI
 ><P
->	Names of computers on each side of the inaccessible network fragments
-	will be maintained for as long as 36 minutes, in the network neighbourhood
-	lists.
+>	you have shadow passords (or some other password system) but didn't
+	compile in support for them in smbd
 	</P
 ></LI
 ><LI
 ><P
->	Attempts to connect to these inaccessible computers will fail, but the
-	names will not be removed from the network neighbourhood lists.
+>	your "valid users" configuration is incorrect
 	</P
 ></LI
 ><LI
 ><P
->	If one of the fragments is cut off from the WINS server, it will only
-	be able to access servers on its local subnet, by using subnet-isolated
-	broadcast NetBIOS name resolution.  The effects are similar to that of
-	losing access to a DNS server.
+>	you have a mixed case password and you haven't enabled the "password
+	level" option at a high enough level
+	</P
+></LI
+><LI
+><P
+>	the "path =" line in smb.conf is incorrect. Check it with testparm
+	</P
+></LI
+><LI
+><P
+>	you enabled password encryption but didn't create the SMB encrypted
+	password file
 	</P
 ></LI
 ></OL
-></DIV
+><P
+>Once connected you should be able to use the commands 
+<B
+CLASS="COMMAND"
+>dir</B
+> <B
+CLASS="COMMAND"
+>get</B
+> <B
+CLASS="COMMAND"
+>put</B
+> etc. 
+Type <B
+CLASS="COMMAND"
+>help &gt;command&lt;</B
+> for instructions. You should
+especially check that the amount of free disk space shown is correct
+when you type <B
+CLASS="COMMAND"
+>dir</B
+>.</P
 ></DIV
 ><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
 ><A
-NAME="AEN288"
+NAME="AEN312"
 ></A
->2.5. Setting up a WINS server</H2
-><P
->Either a Samba machine or a Windows NT Server machine may be set up
-as a WINS server.  To set a Samba machine to be a WINS server you must
-add the following option to the smb.conf file on the selected machine :
-in the [globals] section add the line </P
+>2.3.8. Test 8</H3
 ><P
-><B
+>On the PC type the command <B
 CLASS="COMMAND"
->		wins support = yes</B
-></P
-><P
->Versions of Samba previous to 1.9.17 had this parameter default to
-yes.  If you have any older versions of Samba on your network it is
-strongly suggested you upgrade to 1.9.17 or above, or at the very
-least set the parameter to 'no' on all these machines.</P
+>net view \\BIGSERVER</B
+>. You will 
+need to do this from within a "dos prompt" window. You should get back a 
+list of available shares on the server.</P
 ><P
->Machines with "<B
-CLASS="COMMAND"
->wins support = yes</B
->" will keep a list of 
-all NetBIOS names registered with them, acting as a DNS for NetBIOS names.</P
+>If you get a "network name not found" or similar error then netbios
+name resolution is not working. This is usually caused by a problem in
+nmbd. To overcome it you could do one of the following (you only need
+to choose one of them):</P
 ><P
->You should set up only ONE wins server.  Do NOT set the
-"<B
-CLASS="COMMAND"
->wins support = yes</B
->" option on more than one Samba 
-server.</P
+></P
+><OL
+TYPE="1"
+><LI
 ><P
->To set up a Windows NT Server as a WINS server you need to set up
-the WINS service - see your NT documentation for details.  Note that
-Windows NT WINS Servers can replicate to each other, allowing more
-than one to be set up in a complex subnet environment.  As Microsoft
-refuse to document these replication protocols Samba cannot currently
-participate in these replications.  It is possible in the future that
-a Samba-&#62;Samba WINS replication protocol may be defined, in which
-case more than one Samba machine could be set up as a WINS server
-but currently only one Samba server should have the "wins support = yes"
-parameter set.</P
+>	fixup the nmbd installation</P
+></LI
+><LI
 ><P
->After the WINS server has been configured you must ensure that all
-machines participating on the network are configured with the address
-of this WINS server.  If your WINS server is a Samba machine, fill in
-the Samba machine IP address in the "Primary WINS Server" field of
-the "Control Panel-&#62;Network-&#62;Protocols-&#62;TCP-&#62;WINS Server" dialogs
-in Windows 95 or Windows NT.  To tell a Samba server the IP address
-of the WINS server add the following line to the [global] section of
-all smb.conf files :</P
+>	add the IP address of BIGSERVER to the "wins server" box in the
+	advanced tcp/ip setup on the PC.</P
+></LI
+><LI
 ><P
-><B
-CLASS="COMMAND"
->wins server = &gt;name or IP address&lt;</B
-></P
+>	enable windows name resolution via DNS in the advanced section of
+	the tcp/ip setup</P
+></LI
+><LI
 ><P
->where &gt;name or IP address&lt; is either the DNS name of the WINS server
-machine or its IP address.</P
+>	add BIGSERVER to your lmhosts file on the PC.</P
+></LI
+></OL
 ><P
->Note that this line MUST NOT BE SET in the smb.conf file of the Samba
-server acting as the WINS server itself.  If you set both the
-"<B
-CLASS="COMMAND"
->wins support = yes</B
->" option and the 
-"<B
-CLASS="COMMAND"
->wins server = &gt;name&lt;</B
->" option then
-nmbd will fail to start.</P
+>If you get a "invalid network name" or "bad password error" then the
+same fixes apply as they did for the "smbclient -L" test above. In
+particular, make sure your "hosts allow" line is correct (see the man
+pages)</P
 ><P
->There are two possible scenarios for setting up cross subnet browsing.
-The first details setting up cross subnet browsing on a network containing
-Windows 95, Samba and Windows NT machines that are not configured as
-part of a Windows NT Domain.  The second details setting up cross subnet
-browsing on networks that contain NT Domains.</P
+>Also, do not overlook that fact that when the workstation requests the
+connection to the samba server it will attempt to connect using the 
+name with which you logged onto your Windows machine. You need to make
+sure that an account exists on your Samba server with that exact same
+name and password.</P
+><P
+>If you get "specified computer is not receiving requests" or similar
+it probably means that the host is not contactable via tcp services.
+Check to see if the host is running tcp wrappers, and if so add an entry in
+the hosts.allow file for your client (or subnet, etc.)</P
 ></DIV
 ><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
 ><A
-NAME="AEN307"
+NAME="AEN329"
 ></A
->2.6. Setting up Browsing in a WORKGROUP</H2
+>2.3.9. Test 9</H3
 ><P
->To set up cross subnet browsing on a network containing machines
-in up to be in a WORKGROUP, not an NT Domain you need to set up one
-Samba server to be the Domain Master Browser (note that this is *NOT*
-the same as a Primary Domain Controller, although in an NT Domain the
-same machine plays both roles).  The role of a Domain master browser is
-to collate the browse lists from local master browsers on all the
-subnets that have a machine participating in the workgroup.  Without
-one machine configured as a domain master browser each subnet would
-be an isolated workgroup, unable to see any machines on any other
-subnet.  It is the presense of a domain master browser that makes
-cross subnet browsing possible for a workgroup.</P
+>Run the command <B
+CLASS="COMMAND"
+>net use x: \\BIGSERVER\TMP</B
+>. You should 
+be prompted for a password then you should get a "command completed 
+successfully" message. If not then your PC software is incorrectly 
+installed or your smb.conf is incorrect. make sure your "hosts allow" 
+and other config lines in smb.conf are correct.</P
 ><P
->In an WORKGROUP environment the domain master browser must be a
-Samba server, and there must only be one domain master browser per
-workgroup name.  To set up a Samba server as a domain master browser,
-set the following option in the [global] section of the smb.conf file :</P
+>It's also possible that the server can't work out what user name to
+connect you as. To see if this is the problem add the line "user =
+USERNAME" to the [tmp] section of smb.conf where "USERNAME" is the
+username corresponding to the password you typed. If you find this
+fixes things you may need the username mapping option. </P
 ><P
-><B
+>It might also be the case that your client only sends encrypted passwords 
+and you have <B
 CLASS="COMMAND"
->domain master = yes</B
-></P
-><P
->The domain master browser should also preferrably be the local master
-browser for its own subnet.  In order to achieve this set the following
-options in the [global] section of the smb.conf file :</P
+>encrypt passwords = no</B
+> in <TT
+CLASS="FILENAME"
+>smb.conf</TT
+>.
+Turn it back on to fix.</P
+></DIV
+><DIV
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
+><A
+NAME="AEN337"
+></A
+>2.3.10. Test 10</H3
 ><P
-><PRE
-CLASS="PROGRAMLISTING"
->        domain master = yes
-        local master = yes
-        preferred master = yes
-        os level = 65</PRE
-></P
+>Run the command <B
+CLASS="COMMAND"
+>nmblookup -M TESTGROUP</B
+> where 
+TESTGROUP is the name of the workgroup that your Samba server and 
+Windows PCs belong to. You should get back the IP address of the 
+master browser for that workgroup.</P
 ><P
->The domain master browser may be the same machine as the WINS
-server, if you require.</P
+>If you don't then the election process has failed. Wait a minute to
+see if it is just being slow then try again. If it still fails after
+that then look at the browsing options you have set in smb.conf. Make
+sure you have <B
+CLASS="COMMAND"
+>preferred master = yes</B
+> to ensure that 
+an election is held at startup.</P
+></DIV
+><DIV
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
+><A
+NAME="AEN343"
+></A
+>2.3.11. Test 11</H3
 ><P
->Next, you should ensure that each of the subnets contains a
-machine that can act as a local master browser for the
-workgroup.  Any NT machine should be able to do this, as will
-Windows 95 machines (although these tend to get rebooted more
-often, so it's not such a good idea to use these).  To make a 
-Samba server a local master browser set the following
-options in the [global] section of the smb.conf file :</P
+>From file manager try to browse the server. Your samba server should
+appear in the browse list of your local workgroup (or the one you
+specified in smb.conf). You should be able to double click on the name
+of the server and get a list of shares. If you get a "invalid
+password" error when you do then you are probably running WinNT and it
+is refusing to browse a server that has no encrypted password
+capability and is in user level security mode. In this case either set
+<B
+CLASS="COMMAND"
+>security = server</B
+> AND 
+<B
+CLASS="COMMAND"
+>password server = Windows_NT_Machine</B
+> in your
+smb.conf file, or enable encrypted passwords AFTER compiling in support
+for encrypted passwords (refer to the Makefile).</P
+></DIV
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
+><A
+NAME="AEN348"
+></A
+>2.4. Still having troubles?</H2
 ><P
-><PRE
-CLASS="PROGRAMLISTING"
->        domain master = no
-        local master = yes
-        preferred master = yes
-        os level = 65</PRE
+>Try the mailing list or newsgroup, or use the ethereal utility to
+sniff the problem. The official samba mailing list can be reached at
+<A
+HREF="mailto:samba@samba.org"
+TARGET="_top"
+>samba@samba.org</A
+>. To find 
+out more about samba and how to subscribe to the mailing list check 
+out the samba web page at 
+<A
+HREF="http://samba.org/samba"
+TARGET="_top"
+>http://samba.org/samba</A
 ></P
 ><P
->Do not do this for more than one Samba server on each subnet,
-or they will war with each other over which is to be the local
-master browser.</P
-><P
->The "local master" parameter allows Samba to act as a local master
-browser.  The "preferred master" causes nmbd to force a browser
-election on startup and the "os level" parameter sets Samba high
-enough so that it should win any browser elections.</P
-><P
->If you have an NT machine on the subnet that you wish to
-be the local master browser then you can disable Samba from
-becoming a local master browser by setting the following
-options in the [global] section of the smb.conf file :</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->        domain master = no
-        local master = no
-        preferred master = no
-        os level = 0</PRE
-></P
+>Also look at the other docs in the Samba package!</P
+></DIV
 ></DIV
 ><DIV
+CLASS="CHAPTER"
+><HR><H1
+><A
+NAME="INTEGRATE-MS-NETWORKS"
+></A
+>Chapter 3. Integrating MS Windows networks with Samba</H1
+><DIV
 CLASS="SECT1"
-><HR><H2
+><H2
 CLASS="SECT1"
 ><A
-NAME="AEN325"
+NAME="AEN365"
 ></A
->2.7. Setting up Browsing in a DOMAIN</H2
+>3.1. Agenda</H2
 ><P
->If you are adding Samba servers to a Windows NT Domain then
-you must not set up a Samba server as a domain master browser.
-By default, a Windows NT Primary Domain Controller for a Domain
-name is also the Domain master browser for that name, and many
-things will break if a Samba server registers the Domain master
-browser NetBIOS name (DOMAIN&gt;1B&lt;) with WINS instead of the PDC.</P
-><P
->For subnets other than the one containing the Windows NT PDC
-you may set up Samba servers as local master browsers as
-described.  To make a Samba server a local master browser set 
-the following options in the [global] section of the smb.conf 
-file :</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->        domain master = no
-        local master = yes
-        preferred master = yes
-        os level = 65</PRE
-></P
-><P
->If you wish to have a Samba server fight the election with machines
-on the same subnet you may set the "os level" parameter to lower
-levels.  By doing this you can tune the order of machines that
-will become local master browsers if they are running.  For
-more details on this see the section "FORCING SAMBA TO BE THE MASTER"
-below.</P
-><P
->If you have Windows NT machines that are members of the domain
-on all subnets, and you are sure they will always be running then
-you can disable Samba from taking part in browser elections and
-ever becoming a local master browser by setting following options 
-in the [global] section of the smb.conf file :</P
-><P
-><B
-CLASS="COMMAND"
->        domain master = no
-        local master = no
-        preferred master = no
-        os level = 0</B
-></P
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN335"
-></A
->2.8. Forcing samba to be the master</H2
-><P
->Who becomes the "master browser" is determined by an election process
-using broadcasts.  Each election packet contains a number of parameters
-which determine what precedence (bias) a host should have in the
-election.  By default Samba uses a very low precedence and thus loses
-elections to just about anyone else.</P
-><P
->If you want Samba to win elections then just set the "os level" global
-option in smb.conf to a higher number.  It defaults to 0.  Using 34
-would make it win all elections over every other system (except other
-samba systems!)</P
-><P
->A "os level" of 2 would make it beat WfWg and Win95, but not NTAS.  A
-NTAS domain controller uses level 32.</P
-><P
->The maximum os level is 255</P
-><P
->If you want samba to force an election on startup, then set the
-"preferred master" global option in smb.conf to "yes".  Samba will
-then have a slight advantage over other potential master browsers
-that are not preferred master browsers.  Use this parameter with
-care, as if you have two hosts (whether they are windows 95 or NT or
-samba) on the same local subnet both set with "preferred master" to
-"yes", then periodically and continually they will force an election
-in order to become the local master browser.</P
-><P
->If you want samba to be a "domain master browser", then it is
-recommended that you also set "preferred master" to "yes", because
-samba will not become a domain master browser for the whole of your
-LAN or WAN if it is not also a local master browser on its own
-broadcast isolated subnet.</P
-><P
->It is possible to configure two samba servers to attempt to become
-the domain master browser for a domain.  The first server that comes
-up will be the domain master browser.  All other samba servers will
-attempt to become the domain master browser every 5 minutes.  They
-will find that another samba server is already the domain master
-browser and will fail.  This provides automatic redundancy, should
-the current domain master browser fail.</P
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN344"
-></A
->2.9. Making samba the domain master</H2
-><P
->The domain master is responsible for collating the browse lists of
-multiple subnets so that browsing can occur between subnets.  You can
-make samba act as the domain master by setting "domain master = yes"
-in smb.conf.  By default it will not be a domain master.</P
-><P
->Note that you should NOT set Samba to be the domain master for a
-workgroup that has the same name as an NT Domain.</P
-><P
->When samba is the domain master and the master browser it will listen
-for master announcements (made roughly every twelve minutes) from local
-master browsers on other subnets and then contact them to synchronise
-browse lists.</P
-><P
->If you want samba to be the domain master then I suggest you also set
-the "os level" high enough to make sure it wins elections, and set
-"preferred master" to "yes", to get samba to force an election on
-startup.</P
+>To identify the key functional mechanisms of MS Windows networking 
+to enable the deployment of Samba as a means of extending and/or 
+replacing MS Windows NT/2000 technology.</P
 ><P
->Note that all your servers (including samba) and clients should be
-using a WINS server to resolve NetBIOS names.  If your clients are only
-using broadcasting to resolve NetBIOS names, then two things will occur:</P
+>We will examine:</P
 ><P
 ></P
 ><OL
 TYPE="1"
 ><LI
 ><P
->	your local master browsers will be unable to find a domain master
-	browser, as it will only be looking on the local subnet.
+>Name resolution in a pure Unix/Linux TCP/IP 
+	environment
 	</P
 ></LI
 ><LI
 ><P
->	if a client happens to get hold of a domain-wide browse list, and
-	a user attempts to access a host in that list, it will be unable to
-	resolve the NetBIOS name of that host.
+>Name resolution as used within MS Windows 
+	networking
 	</P
 ></LI
-></OL
+><LI
 ><P
->If, however, both samba and your clients are using a WINS server, then:</P
+>How browsing functions and how to deploy stable 
+	and dependable browsing using Samba
+	</P
+></LI
+><LI
+><P
+>MS Windows security options and how to 
+	configure Samba for seemless integration
+	</P
+></LI
+><LI
+><P
+>Configuration of Samba as:</P
 ><P
 ></P
 ><OL
-TYPE="1"
+TYPE="a"
 ><LI
 ><P
->	your local master browsers will contact the WINS server and, as long as
-	samba has registered that it is a domain master browser with the WINS
-	server, your local master browser will receive samba's ip address
-	as its domain master browser.
-	</P
+>A stand-alone server</P
 ></LI
 ><LI
 ><P
->	when a client receives a domain-wide browse list, and a user attempts
-	to access a host in that list, it will contact the WINS server to
-	resolve the NetBIOS name of that host.  as long as that host has
-	registered its NetBIOS name with the same WINS server, the user will
-	be able to see that host.  
-	</P
+>An MS Windows NT 3.x/4.0 security domain member
+		</P
 ></LI
-></OL
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN362"
-></A
->2.10. Note about broadcast addresses</H2
-><P
->If your network uses a "0" based broadcast address (for example if it
-ends in a 0) then you will strike problems.  Windows for Workgroups
-does not seem to support a 0's broadcast and you will probably find
-that browsing and name lookups won't work.</P
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN365"
-></A
->2.11. Multiple interfaces</H2
+><LI
 ><P
->Samba now supports machines with multiple network interfaces.  If you
-have multiple interfaces then you will need to use the "interfaces"
-option in smb.conf to configure them.  See smb.conf(5) for details.</P
-></DIV
-></DIV
-><DIV
-CLASS="CHAPTER"
-><HR><H1
-><A
-NAME="OPLOCKS"
-></A
->Chapter 3. Oplocks</H1
-><DIV
-CLASS="SECT1"
-><H2
-CLASS="SECT1"
-><A
-NAME="AEN377"
-></A
->3.1. What are oplocks?</H2
-><P
->When a client opens a file it can request an "oplock" or file
-lease. This is (to simplify a bit) a guarentee that no one else
-has the file open simultaneously. It allows the client to not
-send any updates on the file to the server, thus reducing a
-network file access to local access (once the file is in
-client cache). An "oplock break" is when the server sends
-a request to the client to flush all its changes back to
-the server, so the file is in a consistent state for other
-opens to succeed. If a client fails to respond to this
-asynchronous request then the file can be corrupted. Hence
-the "turn off oplocks" answer if people are having multi-user
-file access problems.</P
-><P
->Unless the kernel is "oplock aware" (SGI IRIX and Linux are
-the only two UNIXes that are at the moment) then if a local
-UNIX process accesses the file simultaneously then Samba
-has no way of telling this is occuring, so the guarentee
-to the client is broken. This can corrupt the file. Short
-answer - it you have UNIX clients accessing the same file
-as smbd locally or via NFS and you're not running Linux or
-IRIX then turn off oplocks for that file or share.</P
-><P
->"Share modes". These are modes of opening a file, that
-guarentee an invarient - such as DENY_WRITE - which means
-that if any other opens are requested with write access after
-this current open has succeeded then they should be denied
-with a "sharing violation" error message. Samba handles these
-internally inside smbd. UNIX clients accessing the same file
-ignore these invarients. Just proving that if you need simultaneous
-file access from a Windows and UNIX client you *must* have an
-application that is written to lock records correctly on both
-sides. Few applications are written like this, and even fewer
-are cross platform (UNIX and Windows) so in practice this isn't
-much of a problem.</P
-><P
->"Locking". This really means "byte range locking" - such as
-lock 10 bytes at file offset 24 for write access. This is the
-area in which well written UNIX and Windows apps will cooperate.
-Windows locks (at least from NT or above) are 64-bit unsigned
-offsets. UNIX locks are either 31 bit or 63 bit and are signed
-(the top bit is used for the sign). Samba handles these by
-first ensuring that all the Windows locks don't conflict (ie.
-if other Windows clients have competing locks then just reject
-immediately) - this allows us to support 64-bit Windows locks
-on 32-bit filesystems. Secondly any locks that are valid are
-then mapped onto UNIX fcntl byte range locks. These are the
-locks that will be seen by UNIX processes. If there is a conflict
-here the lock is rejected.</P
-><P
->Note that if a client has an oplock then it "knows" that no
-other client can have the file open so usually doesn't bother
-to send to lock request to the server - this means once again
-if you need to share files between UNIX and Windows processes
-either use IRIX or Linux, or turn off oplocks for these
-files/shares.</P
-></DIV
+>An alternative to an MS Windows NT 3.x/4.0 Domain Controller
+		</P
+></LI
+></OL
+></LI
+></OL
 ></DIV
 ><DIV
-CLASS="CHAPTER"
-><HR><H1
-><A
-NAME="BROWSING-QUICK"
-></A
->Chapter 4. Quick Cross Subnet Browsing / Cross Workgroup Browsing guide</H1
-><P
->This document should be read in conjunction with Browsing and may
-be taken as the fast track guide to implementing browsing across subnets
-and / or across workgroups (or domains). WINS is the best tool for resolution
-of NetBIOS names to IP addesses. WINS is NOT involved in browse list handling
-except by way of name to address mapping.</P
-><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN392"
+NAME="AEN387"
 ></A
->4.1. Discussion</H2
+>3.2. Name Resolution in a pure Unix/Linux world</H2
 ><P
->Firstly, all MS Windows networking is based on SMB (Server Message
-Block) based messaging. SMB messaging is implemented using NetBIOS. Samba
-implements NetBIOS by encapsulating it over TCP/IP. MS Windows products can
-do likewise. NetBIOS based networking uses broadcast messaging to affect
-browse list management. When running NetBIOS over TCP/IP this uses UDP
-based messaging. UDP messages can be broadcast or unicast.</P
+>The key configuration files covered in this section are:</P
 ><P
->Normally, only unicast UDP messaging can be forwarded by routers. The
-"remote announce" parameter to smb.conf helps to project browse announcements
-to remote network segments via unicast UDP. Similarly, the "remote browse sync"
-parameter of smb.conf implements browse list collation using unicast UDP.</P
+></P
+><UL
+><LI
 ><P
->Secondly, in those networks where Samba is the only SMB server technology
-wherever possible nmbd should be configured on one (1) machine as the WINS
-server. This makes it easy to manage the browsing environment. If each network
-segment is configured with it's own Samba WINS server, then the only way to
-get cross segment browsing to work is by using the "remote announce" and
-the "remote browse sync" parameters to your smb.conf file.</P
+><TT
+CLASS="FILENAME"
+>/etc/hosts</TT
+></P
+></LI
+><LI
 ><P
->If only one WINS server is used then the use of the "remote announce" and the
-"remote browse sync" parameters should NOT be necessary.</P
+><TT
+CLASS="FILENAME"
+>/etc/resolv.conf</TT
+></P
+></LI
+><LI
 ><P
->Samba WINS does not support MS-WINS replication. This means that when setting up
-Samba as a WINS server there must only be one nmbd configured as a WINS server
-on the network. Some sites have used multiple Samba WINS servers for redundancy
-(one server per subnet) and then used "remote browse sync" and "remote announce"
-to affect browse list collation across all segments. Note that this means
-clients will only resolve local names, and must be configured to use DNS to
-resolve names on other subnets in order to resolve the IP addresses of the
-servers they can see on other subnets. This setup is not recommended, but is
-mentioned as a practical consideration (ie: an 'if all else fails' scenario).</P
+><TT
+CLASS="FILENAME"
+>/etc/host.conf</TT
+></P
+></LI
+><LI
 ><P
->Lastly, take note that browse lists are a collection of unreliable broadcast
-messages that are repeated at intervals of not more than 15 minutes. This means
-that it will take time to establish a browse list and it can take up to 45
-minutes to stabilise, particularly across network segments.</P
-></DIV
+><TT
+CLASS="FILENAME"
+>/etc/nsswitch.conf</TT
+></P
+></LI
+></UL
 ><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
 ><A
-NAME="AEN400"
+NAME="AEN403"
 ></A
->4.2. Use of the "Remote Announce" parameter</H2
+>3.2.1. <TT
+CLASS="FILENAME"
+>/etc/hosts</TT
+></H3
 ><P
->The "remote announce" parameter of smb.conf can be used to forcibly ensure
-that all the NetBIOS names on a network get announced to a remote network.
-The syntax of the "remote announce" parameter is:
-<PRE
-CLASS="PROGRAMLISTING"
->	remote announce = a.b.c.d [e.f.g.h] ...</PRE
->
-_or_
-<PRE
+>Contains a static list of IP Addresses and names.
+eg:</P
+><P
+><PRE
 CLASS="PROGRAMLISTING"
->	remote announce = a.b.c.d/WORKGROUP [e.f.g.h/WORKGROUP] ...</PRE
->
-
-where:
-<P
+>	127.0.0.1	localhost localhost.localdomain
+	192.168.1.1	bigbox.caldera.com	bigbox	alias4box</PRE
 ></P
-><DIV
-CLASS="VARIABLELIST"
-><DL
-><DT
->a.b.c.d and e.f.g.h</DT
-><DD
 ><P
->is either the LMB (Local Master Browser) IP address
-or the broadcst address of the remote network.
-ie: the LMB is at 192.168.1.10, or the address
-could be given as 192.168.1.255 where the netmask
-is assumed to be 24 bits (255.255.255.0).
-When the remote announcement is made to the broadcast
-address of the remote network every host will receive
-our announcements. This is noisy and therefore
-undesirable but may be necessary if we do NOT know
-the IP address of the remote LMB.</P
-></DD
-><DT
->WORKGROUP</DT
-><DD
+>The purpose of <TT
+CLASS="FILENAME"
+>/etc/hosts</TT
+> is to provide a 
+name resolution mechanism so that uses do not need to remember 
+IP addresses.</P
 ><P
->is optional and can be either our own workgroup
-or that of the remote network. If you use the
-workgroup name of the remote network then our
-NetBIOS machine names will end up looking like
-they belong to that workgroup, this may cause
-name resolution problems and should be avoided.</P
-></DD
-></DL
-></DIV
->&#13;</P
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN414"
-></A
->4.3. Use of the "Remote Browse Sync" parameter</H2
+>Network packets that are sent over the physical network transport 
+layer communicate not via IP addresses but rather using the Media 
+Access Control address, or MAC address. IP Addresses are currently 
+32 bits in length and are typically presented as four (4) decimal 
+numbers that are separated by a dot (or period). eg: 168.192.1.1</P
+><P
+>MAC Addresses use 48 bits (or 6 bytes) and are typically represented 
+as two digit hexadecimal numbers separated by colons. eg: 
+40:8e:0a:12:34:56</P
 ><P
->The "remote browse sync" parameter of smb.conf is used to announce to
-another LMB that it must synchronise it's NetBIOS name list with our
-Samba LMB. It works ONLY if the Samba server that has this option is
-simultaneously the LMB on it's network segment.</P
+>Every network interfrace must have an MAC address. Associated with 
+a MAC address there may be one or more IP addresses. There is NO 
+relationship between an IP address and a MAC address, all such assignments 
+are arbitary or discretionary in nature. At the most basic level all 
+network communications takes place using MAC addressing. Since MAC 
+addresses must be globally unique, and generally remains fixed for 
+any particular interface, the assignment of an IP address makes sense 
+from a network management perspective. More than one IP address can 
+be assigned per MAC address. One address must be the primary IP address, 
+this is the address that will be returned in the ARP reply.</P
 ><P
->The syntax of the "remote browse  sync" parameter is:
-<PRE
-CLASS="PROGRAMLISTING"
->	remote browse sync = a.b.c.d</PRE
->
-
-where a.b.c.d is either the IP address of the remote LMB or else is the network broadcast address of the remote segment.</P
+>When a user or a process wants to communicate with another machine 
+the protocol implementation ensures that the "machine name" or "host 
+name" is resolved to an IP address in a manner that is controlled 
+by the TCP/IP configuration control files. The file 
+<TT
+CLASS="FILENAME"
+>/etc/hosts</TT
+> is one such file.</P
+><P
+>When the IP address of the destination interface has been 
+determined a protocol called ARP/RARP is used to identify 
+the MAC address of the target interface. ARP stands for Address 
+Resolution Protocol, and is a broadcast oriented method that 
+uses UDP (User Datagram Protocol) to send a request to all 
+interfaces on the local network segment using the all 1's MAC 
+address. Network interfaces are programmed to respond to two 
+MAC addresses only; their own unique address and the address 
+ff:ff:ff:ff:ff:ff. The reply packet from an ARP request will 
+contain the MAC address and the primary IP address for each 
+interface.</P
+><P
+>The <TT
+CLASS="FILENAME"
+>/etc/hosts</TT
+> file is foundational to all 
+Unix/Linux TCP/IP installations and as a minumum will contain 
+the localhost and local network interface IP addresses and the 
+primary names by which they are known within the local machine. 
+This file helps to prime the pump so that a basic level of name 
+resolution can exist before any other method of name resolution 
+becomes available.</P
 ></DIV
 ><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
 ><A
 NAME="AEN419"
 ></A
->4.4. Use of WINS</H2
-><P
->Use of WINS (either Samba WINS _or_ MS Windows NT Server WINS) is highly
-recommended. Every NetBIOS machine registers it's name together with a
-name_type value for each of of several types of service it has available.
-eg: It registers it's name directly as a unique (the type 0x03) name.
-It also registers it's name if it is running the lanmanager compatible
-server service (used to make shares and printers available to other users)
-by registering the server (the type 0x20) name.</P
-><P
->All NetBIOS names are up to 15 characters in length. The name_type variable
-is added to the end of the name - thus creating a 16 character name. Any
-name that is shorter than 15 characters is padded with spaces to the 15th
-character. ie: All NetBIOS names are 16 characters long (including the
-name_type information).</P
-><P
->WINS can store these 16 character names as they get registered. A client
-that wants to log onto the network can ask the WINS server for a list
-of all names that have registered the NetLogon service name_type. This saves
-broadcast traffic and greatly expedites logon processing. Since broadcast
-name resolution can not be used across network segments this type of
-information can only be provided via WINS _or_ via statically configured
-"lmhosts" files that must reside on all clients in the absence of WINS.</P
-><P
->WINS also serves the purpose of forcing browse list synchronisation by all
-LMB's. LMB's must synchronise their browse list with the DMB (domain master
-browser) and WINS helps the LMB to identify it's DMB. By definition this
-will work only within a single workgroup. Note that the domain master browser
-has NOTHING to do with what is referred to as an MS Windows NT Domain. The
-later is a reference to a security environment while the DMB refers to the
-master controller for browse list information only.</P
-><P
->Use of WINS will work correctly only if EVERY client TCP/IP protocol stack
-has been configured to use the WINS server/s. Any client that has not been
-configured to use the WINS server will continue to use only broadcast based
-name registration so that WINS may NEVER get to know about it. In any case,
-machines that have not registered with a WINS server will fail name to address
-lookup attempts by other clients and will therefore cause workstation access
-errors.</P
-><P
->To configure Samba as a WINS server just add "wins support = yes" to the
-smb.conf file [globals] section.</P
-><P
->To configure Samba to register with a WINS server just add
-"wins server = a.b.c.d" to your smb.conf file [globals] section.</P
+>3.2.2. <TT
+CLASS="FILENAME"
+>/etc/resolv.conf</TT
+></H3
 ><P
-><SPAN
-CLASS="emphasis"
-><I
-CLASS="EMPHASIS"
->DO NOT EVER</I
-></SPAN
-> use both "wins support = yes" together with "wins server = a.b.c.d"
-particularly not using it's own IP address.</P
+>This file tells the name resolution libraries:</P
+><P
+></P
+><UL
+><LI
+><P
+>The name of the domain to which the machine 
+	belongs
+	</P
+></LI
+><LI
+><P
+>The name(s) of any domains that should be 
+	automatically searched when trying to resolve unqualified 
+	host names to their IP address
+	</P
+></LI
+><LI
+><P
+>The name or IP address of available Domain 
+	Name Servers that may be asked to perform name to address 
+	translation lookups
+	</P
+></LI
+></UL
 ></DIV
 ><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
 ><A
 NAME="AEN430"
 ></A
->4.5. Do NOT use more than one (1) protocol on MS Windows machines</H2
-><P
->A very common cause of browsing problems results from installing more than
-one protocol on an MS Windows machine.</P
+>3.2.3. <TT
+CLASS="FILENAME"
+>/etc/host.conf</TT
+></H3
 ><P
->Every NetBIOS machine take part in a process of electing the LMB (and DMB)
-every 15 minutes. A set of election criteria is used to determine the order
-of precidence for winning this election process. A machine running Samba or
-Windows NT will be biased so that the most suitable machine will predictably
-win and thus retain it's role.</P
+><TT
+CLASS="FILENAME"
+>/etc/host.conf</TT
+> is the primary means by 
+which the setting in /etc/resolv.conf may be affected. It is a 
+critical configuration file.  This file controls the order by 
+which name resolution may procede. The typical structure is:</P
 ><P
->The election process is "fought out" so to speak over every NetBIOS network
-interface. In the case of a Windows 9x machine that has both TCP/IP and IPX
-installed and has NetBIOS enabled over both protocols the election will be
-decided over both protocols. As often happens, if the Windows 9x machine is
-the only one with both protocols then the LMB may be won on the NetBIOS
-interface over the IPX protocol. Samba will then lose the LMB role as Windows
-9x will insist it knows who the LMB is. Samba will then cease to function
-as an LMB and thus browse list operation on all TCP/IP only machines will
-fail.</P
+><PRE
+CLASS="PROGRAMLISTING"
+>	order hosts,bind
+	multi on</PRE
+></P
 ><P
->The safest rule of all to follow it this - USE ONLY ONE PROTOCOL!</P
+>then both addresses should be returned. Please refer to the 
+man page for host.conf for further details.</P
 ></DIV
 ><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
 ><A
-NAME="AEN436"
+NAME="AEN438"
 ></A
->4.6. Name Resolution Order</H2
+>3.2.4. <TT
+CLASS="FILENAME"
+>/etc/nsswitch.conf</TT
+></H3
 ><P
->Resolution of NetBIOS names to IP addresses can take place using a number
-of methods. The only ones that can provide NetBIOS name_type information
-are:
-<P
-></P
-><TABLE
-BORDER="0"
-><TBODY
-><TR
-><TD
->WINS: the best tool!</TD
-></TR
-><TR
-><TD
->LMHOSTS: is static and hard to maintain.</TD
-></TR
-><TR
-><TD
->Broadcast: uses UDP and can not resolve names across remote segments.</TD
-></TR
-></TBODY
-></TABLE
+>This file controls the actual name resolution targets. The 
+file typically has resolver object specifications as follows:</P
 ><P
-></P
+><PRE
+CLASS="PROGRAMLISTING"
+>	# /etc/nsswitch.conf
+	#
+	# Name Service Switch configuration file.
+	#
+
+	passwd:		compat
+	# Alternative entries for password authentication are:
+	# passwd:	compat files nis ldap winbind
+	shadow:		compat
+	group:		compat
+
+	hosts:		files nis dns
+	# Alternative entries for host name resolution are:
+	# hosts:	files dns nis nis+ hesoid db compat ldap wins
+	networks:	nis files dns
+
+	ethers:		nis files
+	protocols:	nis files
+	rpc:		nis files
+	services:	nis files</PRE
 ></P
 ><P
->Alternative means of name resolution includes:
-<P
-></P
-><TABLE
-BORDER="0"
-><TBODY
-><TR
-><TD
->/etc/hosts: is static, hard to maintain, and lacks name_type info</TD
-></TR
-><TR
-><TD
->DNS: is a good choice but lacks essential name_type info.</TD
-></TR
-></TBODY
-></TABLE
+>Of course, each of these mechanisms requires that the appropriate 
+facilities and/or services are correctly configured.</P
 ><P
-></P
-></P
+>It should be noted that unless a network request/message must be 
+sent, TCP/IP networks are silent. All TCP/IP communications assumes a 
+principal of speaking only when necessary.</P
 ><P
->Many sites want to restrict DNS lookups and want to avoid broadcast name
-resolution traffic. The "name resolve order" parameter is of great help here.
-The syntax of the "name resolve order" parameter is:
-<PRE
-CLASS="PROGRAMLISTING"
->	name resolve order = wins lmhosts bcast host</PRE
->
-_or_
-<PRE
-CLASS="PROGRAMLISTING"
->	name resolve order = wins lmhosts  	(eliminates bcast and host)</PRE
->
-The default is:
-<PRE
-CLASS="PROGRAMLISTING"
->	name  resolve order = host lmhost wins bcast</PRE
->.
-where "host" refers the the native methods used by the Unix system
-to implement the gethostbyname() function call. This is normally
-controlled by <TT
+>Samba version 2.2.0 will add Linux support for extensions to 
+the name service switch infrastructure so that linux clients will 
+be able to obtain resolution of MS Windows NetBIOS names to IP 
+Addresses. To gain this functionality Samba needs to be compiled 
+with appropriate arguments to the make command (ie: <B
+CLASS="COMMAND"
+>make 
+nsswitch/libnss_wins.so</B
+>). The resulting library should 
+then be installed in the <TT
 CLASS="FILENAME"
->/etc/host.conf</TT
->, <TT
+>/lib</TT
+> directory and 
+the "wins" parameter needs to be added to the "hosts:" line in 
+the <TT
 CLASS="FILENAME"
 >/etc/nsswitch.conf</TT
-> and <TT
-CLASS="FILENAME"
->/etc/resolv.conf</TT
->.</P
+> file. At this point it 
+will be possible to ping any MS Windows machine by it's NetBIOS 
+machine name, so long as that machine is within the workgroup to 
+which both the samba machine and the MS Windows machine belong.</P
 ></DIV
 ></DIV
 ><DIV
-CLASS="CHAPTER"
-><HR><H1
-><A
-NAME="PWENCRYPT"
-></A
->Chapter 5. LanMan and NT Password Encryption in Samba</H1
-><DIV
 CLASS="SECT1"
-><H2
+><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN472"
+NAME="AEN450"
 ></A
->5.1. Introduction</H2
+>3.3. Name resolution as used within MS Windows networking</H2
 ><P
->Newer windows clients send encrypted passwords over 
-	the wire, instead of plain text passwords. The newest clients 
-	will only send encrypted passwords and refuse to send plain text 
-	passwords, unless their registry is tweaked.</P
-><P
->These passwords can't be converted to unix style encrypted 
-	passwords. Because of that you can't use the standard unix 
-	user database, and you have to store the Lanman and NT hashes 
-	somewhere else. For more information, see the documentation 
-	about the <B
-CLASS="COMMAND"
->passdb backend = </B
-> parameter.
-	</P
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN477"
-></A
->5.2. Important Notes About Security</H2
-><P
->The unix and SMB password encryption techniques seem similar 
-	on the surface. This similarity is, however, only skin deep. The unix 
-	scheme typically sends clear text passwords over the network when 
-	logging in. This is bad. The SMB encryption scheme never sends the 
-	cleartext password over the network but it does store the 16 byte 
-	hashed values on disk. This is also bad. Why? Because the 16 byte hashed 
-	values are a "password equivalent". You cannot derive the user's 
-	password from them, but they could potentially be used in a modified 
-	client to gain access to a server. This would require considerable 
-	technical knowledge on behalf of the attacker but is perfectly possible. 
-	You should thus treat the smbpasswd file as though it contained the 
-	cleartext passwords of all your users. Its contents must be kept 
-	secret, and the file should be protected accordingly.</P
-><P
->Ideally we would like a password scheme which neither requires 
-	plain text passwords on the net or on disk. Unfortunately this 
-	is not available as Samba is stuck with being compatible with 
-	other SMB systems (WinNT, WfWg, Win95 etc). </P
-><DIV
-CLASS="WARNING"
-><P
-></P
-><TABLE
-CLASS="WARNING"
-WIDTH="100%"
-BORDER="0"
-><TR
-><TD
-WIDTH="25"
-ALIGN="CENTER"
-VALIGN="TOP"
-><IMG
-SRC="/docbook-dsssl/warning.gif"
-HSPACE="5"
-ALT="Warning"></TD
-><TD
-ALIGN="LEFT"
-VALIGN="TOP"
-><P
->Note that Windows NT 4.0 Service pack 3 changed the 
-		default for permissible authentication so that plaintext 
-		passwords are <SPAN
-CLASS="emphasis"
-><I
-CLASS="EMPHASIS"
->never</I
-></SPAN
-> sent over the wire. 
-		The solution to this is either to switch to encrypted passwords 
-		with Samba or edit the Windows NT registry to re-enable plaintext 
-		passwords. See the document WinNT.txt for details on how to do 
-		this.</P
+>MS Windows networking is predicated about the name each machine 
+is given. This name is known variously (and inconsistently) as 
+the "computer name", "machine name", "networking name", "netbios name", 
+"SMB name". All terms mean the same thing with the exception of 
+"netbios name" which can apply also to the name of the workgroup or the 
+domain name. The terms "workgroup" and "domain" are really just a 
+simply name with which the machine is associated. All NetBIOS names 
+are exactly 16 characters in length. The 16th character is reserved. 
+It is used to store a one byte value that indicates service level 
+information for the NetBIOS name that is registered. A NetBIOS machine 
+name is therefore registered for each service type that is provided by 
+the client/server.</P
 ><P
->Other Microsoft operating systems which also exhibit 
-		this behavior includes</P
+>The following are typical NetBIOS name/service type registrations:</P
 ><P
+><PRE
+CLASS="PROGRAMLISTING"
+>	Unique NetBIOS Names:
+		MACHINENAME&#60;00&#62;	= Server Service is running on MACHINENAME
+		MACHINENAME&#60;03&#62; = Generic Machine Name (NetBIOS name)
+		MACHINENAME&#60;20&#62; = LanMan Server service is running on MACHINENAME
+		WORKGROUP&#60;1b&#62; = Domain Master Browser
+
+	Group Names:
+		WORKGROUP&#60;03&#62; = Generic Name registered by all members of WORKGROUP
+		WORKGROUP&#60;1c&#62; = Domain Controllers / Netlogon Servers
+		WORKGROUP&#60;1d&#62; = Local Master Browsers
+		WORKGROUP&#60;1e&#62; = Internet Name Resolvers</PRE
 ></P
-><UL
-><LI
 ><P
->MS DOS Network client 3.0 with 
-			the basic network redirector installed</P
-></LI
-><LI
+>It should be noted that all NetBIOS machines register their own 
+names as per the above. This is in vast contrast to TCP/IP 
+installations where traditionally the system administrator will 
+determine in the /etc/hosts or in the DNS database what names 
+are associated with each IP address.</P
 ><P
->Windows 95 with the network redirector 
-			update installed</P
-></LI
-><LI
+>One further point of clarification should be noted, the <TT
+CLASS="FILENAME"
+>/etc/hosts</TT
+> 
+file and the DNS records do not provide the NetBIOS name type information 
+that MS Windows clients depend on to locate the type of service that may 
+be needed. An example of this is what happens when an MS Windows client 
+wants to locate a domain logon server. It find this service and the IP 
+address of a server that provides it by performing a lookup (via a 
+NetBIOS broadcast) for enumeration of all machines that have 
+registered the name type *&#60;1c&#62;. A logon request is then sent to each 
+IP address that is returned in the enumerated list of IP addresses. Which 
+ever machine first replies then ends up providing the logon services.</P
 ><P
->Windows 98 [se]</P
-></LI
-><LI
+>The name "workgroup" or "domain" really can be confusing since these 
+have the added significance of indicating what is the security 
+architecture of the MS Windows network. The term "workgroup" indicates 
+that the primary nature of the network environment is that of a 
+peer-to-peer design. In a WORKGROUP all machines are responsible for 
+their own security, and generally such security is limited to use of 
+just a password (known as SHARE MODE security). In most situations 
+with peer-to-peer networking the users who control their own machines 
+will simply opt to have no security at all. It is possible to have 
+USER MODE security in a WORKGROUP environment, thus requiring use 
+of a user name and a matching password.</P
 ><P
->Windows 2000</P
-></LI
-></UL
+>MS Windows networking is thus predetermined to use machine names 
+for all local and remote machine message passing. The protocol used is 
+called Server Message Block (SMB) and this is implemented using 
+the NetBIOS protocol (Network Basic Input Output System). NetBIOS can 
+be encapsulated using LLC (Logical Link Control) protocol - in which case 
+the resulting protocol is called NetBEUI (Network Basic Extended User 
+Interface). NetBIOS can also be run over IPX (Internetworking Packet 
+Exchange) protocol as used by Novell NetWare, and it can be run 
+over TCP/IP protocols - in which case the resulting protocol is called 
+NBT or NetBT, the NetBIOS over TCP/IP.</P
 ><P
-><SPAN
-CLASS="emphasis"
-><I
-CLASS="EMPHASIS"
->Note :</I
-></SPAN
->All current release of 
-		Microsoft SMB/CIFS clients support authentication via the
-		SMB Challenge/Response mechanism described here.  Enabling
-		clear text authentication does not disable the ability
-		of the client to participate in encrypted authentication.</P
-></TD
-></TR
-></TABLE
-></DIV
+>MS Windows machines use a complex array of name resolution mechanisms. 
+Since we are primarily concerned with TCP/IP this demonstration is 
+limited to this area.</P
 ><DIV
 CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN496"
+NAME="AEN462"
 ></A
->5.2.1. Advantages of SMB Encryption</H3
+>3.3.1. The NetBIOS Name Cache</H3
 ><P
-></P
-><UL
-><LI
+>All MS Windows machines employ an in memory buffer in which is 
+stored the NetBIOS names and IP addresses for all external 
+machines that that machine has communicated with over the 
+past 10-15 minutes. It is more efficient to obtain an IP address 
+for a machine from the local cache than it is to go through all the 
+configured name resolution mechanisms.</P
 ><P
->plain text passwords are not passed across 
-			the network. Someone using a network sniffer cannot just 
-			record passwords going to the SMB server.</P
-></LI
-><LI
+>If a machine whose name is in the local name cache has been shut 
+down before the name had been expired and flushed from the cache, then 
+an attempt to exchange a message with that machine will be subject 
+to time-out delays. i.e.: Its name is in the cache, so a name resolution 
+lookup will succeed, but the machine can not respond. This can be 
+frustrating for users - but it is a characteristic of the protocol.</P
 ><P
->WinNT doesn't like talking to a server 
-			that isn't using SMB encrypted passwords. It will refuse 
-			to browse the server if the server is also in user level 
-			security mode. It will insist on prompting the user for the 
-			password on each connection, which is very annoying. The
-			only things you can do to stop this is to use SMB encryption.
-			</P
-></LI
-></UL
+>The MS Windows utility that allows examination of the NetBIOS 
+name cache is called "nbtstat". The Samba equivalent of this 
+is called "nmblookup".</P
 ></DIV
 ><DIV
 CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN503"
+NAME="AEN467"
 ></A
->5.2.2. Advantages of non-encrypted passwords</H3
-><P
-></P
-><UL
-><LI
+>3.3.2. The LMHOSTS file</H3
 ><P
->plain text passwords are not kept 
-			on disk. </P
-></LI
-><LI
+>This file is usually located in MS Windows NT 4.0 or 
+2000 in <TT
+CLASS="FILENAME"
+>C:\WINNT\SYSTEM32\DRIVERS\ETC</TT
+> and contains 
+the IP Address and the machine name in matched pairs. The 
+<TT
+CLASS="FILENAME"
+>LMHOSTS</TT
+> file performs NetBIOS name 
+to IP address mapping oriented.</P
 ><P
->uses same password file as other unix 
-			services such as login and ftp</P
-></LI
-><LI
+>It typically looks like:</P
 ><P
->you are probably already using other 
-			services (such as telnet and ftp) which send plain text 
-			passwords over the net, so sending them for SMB isn't 
-			such a big deal.</P
-></LI
-></UL
-></DIV
+><PRE
+CLASS="PROGRAMLISTING"
+>	# Copyright (c) 1998 Microsoft Corp.
+	#
+	# This is a sample LMHOSTS file used by the Microsoft Wins Client (NetBIOS
+	# over TCP/IP) stack for Windows98
+	#
+	# This file contains the mappings of IP addresses to NT computernames
+	# (NetBIOS) names.  Each entry should be kept on an individual line.
+	# The IP address should be placed in the first column followed by the
+	# corresponding computername. The address and the comptername
+	# should be separated by at least one space or tab. The "#" character
+	# is generally used to denote the start of a comment (see the exceptions
+	# below).
+	#
+	# This file is compatible with Microsoft LAN Manager 2.x TCP/IP lmhosts
+	# files and offers the following extensions:
+	#
+	#      #PRE
+	#      #DOM:&lt;domain&gt;
+	#      #INCLUDE &lt;filename&gt;
+	#      #BEGIN_ALTERNATE
+	#      #END_ALTERNATE
+	#      \0xnn (non-printing character support)
+	#
+	# Following any entry in the file with the characters "#PRE" will cause
+	# the entry to be preloaded into the name cache. By default, entries are
+	# not preloaded, but are parsed only after dynamic name resolution fails.
+	#
+	# Following an entry with the "#DOM:&lt;domain&gt;" tag will associate the
+	# entry with the domain specified by &lt;domain&gt;. This affects how the
+	# browser and logon services behave in TCP/IP environments. To preload
+	# the host name associated with #DOM entry, it is necessary to also add a
+	# #PRE to the line. The &lt;domain&gt; is always preloaded although it will not
+	# be shown when the name cache is viewed.
+	#
+	# Specifying "#INCLUDE &lt;filename&gt;" will force the RFC NetBIOS (NBT)
+	# software to seek the specified &lt;filename&gt; and parse it as if it were
+	# local. &lt;filename&gt; is generally a UNC-based name, allowing a
+	# centralized lmhosts file to be maintained on a server.
+	# It is ALWAYS necessary to provide a mapping for the IP address of the
+	# server prior to the #INCLUDE. This mapping must use the #PRE directive.
+	# In addtion the share "public" in the example below must be in the
+	# LanManServer list of "NullSessionShares" in order for client machines to
+	# be able to read the lmhosts file successfully. This key is under
+	# \machine\system\currentcontrolset\services\lanmanserver\parameters\nullsessionshares
+	# in the registry. Simply add "public" to the list found there.
+	#
+	# The #BEGIN_ and #END_ALTERNATE keywords allow multiple #INCLUDE
+	# statements to be grouped together. Any single successful include
+	# will cause the group to succeed.
+	#
+	# Finally, non-printing characters can be embedded in mappings by
+	# first surrounding the NetBIOS name in quotations, then using the
+	# \0xnn notation to specify a hex value for a non-printing character.
+	#
+	# The following example illustrates all of these extensions:
+	#
+	# 102.54.94.97     rhino         #PRE #DOM:networking  #net group's DC
+	# 102.54.94.102    "appname  \0x14"                    #special app server
+	# 102.54.94.123    popular            #PRE             #source server
+	# 102.54.94.117    localsrv           #PRE             #needed for the include
+	#
+	# #BEGIN_ALTERNATE
+	# #INCLUDE \\localsrv\public\lmhosts
+	# #INCLUDE \\rhino\public\lmhosts
+	# #END_ALTERNATE
+	#
+	# In the above example, the "appname" server contains a special
+	# character in its name, the "popular" and "localsrv" server names are
+	# preloaded, and the "rhino" server name is specified so it can be used
+	# to later #INCLUDE a centrally maintained lmhosts file if the "localsrv"
+	# system is unavailable.
+	#
+	# Note that the whole file is parsed including comments on each lookup,
+	# so keeping the number of comments to a minimum will improve performance.
+	# Therefore it is not advisable to simply add lmhosts file entries onto the
+	# end of this file.</PRE
+></P
 ></DIV
 ><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
 ><A
-NAME="AEN512"
+NAME="AEN475"
 ></A
->5.3. The smbpasswd Command</H2
+>3.3.3. HOSTS file</H3
 ><P
->The smbpasswd command maintains the two 32 byte password fields 
-	in the smbpasswd file. If you wish to make it similar to the unix 
-	<B
-CLASS="COMMAND"
->passwd</B
-> or <B
-CLASS="COMMAND"
->yppasswd</B
-> programs, 
-	install it in <TT
+>This file is usually located in MS Windows NT 4.0 or 2000 in 
+<TT
 CLASS="FILENAME"
->/usr/local/samba/bin/</TT
-> (or your 
-	main Samba binary directory).</P
-><P
-><B
-CLASS="COMMAND"
->smbpasswd</B
-> now works in a client-server mode 
-	where it contacts the local smbd to change the user's password on its 
-	behalf. This has enormous benefits - as follows.</P
+>C:\WINNT\SYSTEM32\DRIVERS\ETC</TT
+> and contains 
+the IP Address and the IP hostname in matched pairs. It can be 
+used by the name resolution infrastructure in MS Windows, depending 
+on how the TCP/IP environment is configured. This file is in 
+every way the equivalent of the Unix/Linux <TT
+CLASS="FILENAME"
+>/etc/hosts</TT
+> file.</P
+></DIV
+><DIV
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
+><A
+NAME="AEN480"
+></A
+>3.3.4. DNS Lookup</H3
 ><P
-><B
-CLASS="COMMAND"
->smbpasswd</B
-> now has the capability 
-	to change passwords on Windows NT servers (this only works when 
-	the request is sent to the NT Primary Domain Controller if you 
-	are changing an NT Domain user's password).</P
+>This capability is configured in the TCP/IP setup area in the network 
+configuration facility. If enabled an elaborate name resolution sequence 
+is followed the precise nature of which isdependant on what the NetBIOS 
+Node Type parameter is configured to. A Node Type of 0 means use 
+NetBIOS broadcast (over UDP broadcast) is first used if the name 
+that is the subject of a name lookup is not found in the NetBIOS name 
+cache. If that fails then DNS, HOSTS and LMHOSTS are checked. If set to 
+Node Type 8, then a NetBIOS Unicast (over UDP Unicast) is sent to the 
+WINS Server to obtain a lookup before DNS, HOSTS, LMHOSTS, or broadcast 
+lookup is used.</P
+></DIV
+><DIV
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
+><A
+NAME="AEN483"
+></A
+>3.3.5. WINS Lookup</H3
 ><P
->To run smbpasswd as a normal user just type :</P
+>A WINS (Windows Internet Name Server) service is the equivaent of the 
+rfc1001/1002 specified NBNS (NetBIOS Name Server). A WINS server stores 
+the names and IP addresses that are registered by a Windows client 
+if the TCP/IP setup has been given at least one WINS Server IP Address.</P
 ><P
-><TT
-CLASS="PROMPT"
->$ </TT
-><TT
-CLASS="USERINPUT"
-><B
->smbpasswd</B
-></TT
-></P
+>To configure Samba to be a WINS server the following parameter needs 
+to be added to the <TT
+CLASS="FILENAME"
+>smb.conf</TT
+> file:</P
 ><P
-><TT
-CLASS="PROMPT"
->Old SMB password: </TT
-><TT
-CLASS="USERINPUT"
-><B
->&lt;type old value here - 
-	or hit return if there was no old password&gt;</B
-></TT
+><PRE
+CLASS="PROGRAMLISTING"
+>	wins support = Yes</PRE
 ></P
 ><P
-><TT
-CLASS="PROMPT"
->New SMB Password: </TT
-><TT
-CLASS="USERINPUT"
-><B
->&lt;type new value&gt;
-	</B
-></TT
+>To configure Samba to use a WINS server the following parameters are 
+needed in the smb.conf file:</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>	wins support = No
+	wins server = xxx.xxx.xxx.xxx</PRE
 ></P
 ><P
-><TT
-CLASS="PROMPT"
->Repeat New SMB Password: </TT
-><TT
-CLASS="USERINPUT"
-><B
->&lt;re-type new value
-	</B
+>where <TT
+CLASS="REPLACEABLE"
+><I
+>xxx.xxx.xxx.xxx</I
 ></TT
-></P
+> is the IP address 
+of the WINS server.</P
+></DIV
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
+><A
+NAME="AEN495"
+></A
+>3.4. How browsing functions and how to deploy stable and 
+dependable browsing using Samba</H2
 ><P
->If the old value does not match the current value stored for 
-	that user, or the two new values do not match each other, then the 
-	password will not be changed.</P
+>As stated above, MS Windows machines register their NetBIOS names 
+(i.e.: the machine name for each service type in operation) on start 
+up. Also, as stated above, the exact method by which this name registration 
+takes place is determined by whether or not the MS Windows client/server 
+has been given a WINS server address, whether or not LMHOSTS lookup 
+is enabled, or if DNS for NetBIOS name resolution is enabled, etc.</P
 ><P
->If invoked by an ordinary user it will only allow the user 
-	to change his or her own Samba password.</P
+>In the case where there is no WINS server all name registrations as 
+well as name lookups are done by UDP broadcast. This isolates name 
+resolution to the local subnet, unless LMHOSTS is used to list all 
+names and IP addresses. In such situations Samba provides a means by 
+which the samba server name may be forcibly injected into the browse 
+list of a remote MS Windows network (using the "remote announce" parameter).</P
 ><P
->If run by the root user smbpasswd may take an optional 
-	argument, specifying the user name whose SMB password you wish to 
-	change.  Note that when run as root smbpasswd does not prompt for 
-	or check the old password value, thus allowing root to set passwords 
-	for users who have forgotten their passwords.</P
+>Where a WINS server is used, the MS Windows client will use UDP 
+unicast to register with the WINS server. Such packets can be routed 
+and thus WINS allows name resolution to function across routed networks.</P
 ><P
-><B
-CLASS="COMMAND"
->smbpasswd</B
-> is designed to work in the same way 
-	and be familiar to UNIX users who use the <B
-CLASS="COMMAND"
->passwd</B
-> or 
-	<B
-CLASS="COMMAND"
->yppasswd</B
-> commands.</P
+>During the startup process an election will take place to create a 
+local master browser if one does not already exist. On each NetBIOS network 
+one machine will be elected to function as the domain master browser. This 
+domain browsing has nothing to do with MS security domain control. 
+Instead, the domain master browser serves the role of contacting each local 
+master browser (found by asking WINS or from LMHOSTS) and exchanging browse 
+list contents. This way every master browser will eventually obtain a complete 
+list of all machines that are on the network. Every 11-15 minutes an election 
+is held to determine which machine will be the master browser. By the nature of 
+the election criteria used, the machine with the highest uptime, or the 
+most senior protocol version, or other criteria, will win the election 
+as domain master browser.</P
 ><P
->For more details on using <B
-CLASS="COMMAND"
->smbpasswd</B
-> refer 
-	to the man page which will always be the definitive reference.</P
-></DIV
-></DIV
+>Clients wishing to browse the network make use of this list, but also depend 
+on the availability of correct name resolution to the respective IP 
+address/addresses. </P
+><P
+>Any configuration that breaks name resolution and/or browsing intrinsics 
+will annoy users because they will have to put up with protracted 
+inability to use the network services.</P
+><P
+>Samba supports a feature that allows forced synchonisation 
+of browse lists across routed networks using the "remote 
+browse sync" parameter in the smb.conf file. This causes Samba 
+to contact the local master browser on a remote network and 
+to request browse list synchronisation. This effectively bridges 
+two networks that are separated by routers. The two remote 
+networks may use either broadcast based name resolution or WINS 
+based name resolution, but it should be noted that the "remote 
+browse sync" parameter provides browse list synchronisation - and 
+that is distinct from name to address resolution, in other 
+words, for cross subnet browsing to function correctly it is 
+essential that a name to address resolution mechanism be provided. 
+This mechanism could be via DNS, <TT
+CLASS="FILENAME"
+>/etc/hosts</TT
+>, 
+and so on.</P
 ></DIV
 ><DIV
-CLASS="PART"
-><A
-NAME="AEN544"
-></A
-><DIV
-CLASS="TITLEPAGE"
-><H1
-CLASS="TITLE"
->II. Type of installation</H1
-><DIV
-CLASS="PARTINTRO"
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
 ><A
-NAME="AEN546"
+NAME="AEN505"
 ></A
-><H1
->Introduction</H1
+>3.5. MS Windows security options and how to configure 
+Samba for seemless integration</H2
 ><P
->This part contains information on using samba in a (NT 4 or ADS) domain. 
-If you wish to run samba as a domain member or DC, read the appropriate chapter in 
-this part.</P
-></DIV
-><DIV
-CLASS="TOC"
-><DL
-><DT
-><B
->Table of Contents</B
-></DT
-><DT
->6. <A
-HREF="#SAMBA-PDC"
->How to Configure Samba as a NT4 Primary Domain Controller</A
-></DT
-><DD
-><DL
-><DT
->6.1. <A
-HREF="#AEN566"
->Prerequisite Reading</A
-></DT
-><DT
->6.2. <A
-HREF="#AEN572"
->Background</A
-></DT
-><DT
->6.3. <A
-HREF="#AEN611"
->Configuring the Samba Domain Controller</A
-></DT
-><DT
->6.4. <A
-HREF="#AEN654"
->Creating Machine Trust Accounts and Joining Clients to the
-Domain</A
-></DT
-><DD
-><DL
-><DT
->6.4.1. <A
-HREF="#AEN673"
->Manual Creation of Machine Trust Accounts</A
-></DT
-><DT
->6.4.2. <A
-HREF="#AEN714"
->"On-the-Fly" Creation of Machine Trust Accounts</A
-></DT
-><DT
->6.4.3. <A
-HREF="#AEN723"
->Joining the Client to the Domain</A
-></DT
-></DL
-></DD
-><DT
->6.5. <A
-HREF="#AEN738"
->Common Problems and Errors</A
-></DT
-><DT
->6.6. <A
-HREF="#AEN786"
->System Policies and Profiles</A
-></DT
-><DT
->6.7. <A
-HREF="#AEN830"
->What other help can I get?</A
-></DT
-><DT
->6.8. <A
-HREF="#AEN944"
->Domain Control for Windows 9x/ME</A
-></DT
-><DD
-><DL
-><DT
->6.8.1. <A
-HREF="#AEN970"
->Configuration Instructions:	Network Logons</A
-></DT
-><DT
->6.8.2. <A
-HREF="#AEN989"
->Configuration Instructions:	Setting up Roaming User Profiles</A
-></DT
-></DL
-></DD
-><DT
->6.9. <A
-HREF="#AEN1082"
->DOMAIN_CONTROL.txt : Windows NT Domain Control &#38; Samba</A
-></DT
-></DL
-></DD
-><DT
->7. <A
-HREF="#SAMBA-BDC"
->How to Act as a Backup Domain Controller in a Purely Samba Controlled Domain</A
-></DT
-><DD
-><DL
-><DT
->7.1. <A
-HREF="#AEN1118"
->Prerequisite Reading</A
-></DT
-><DT
->7.2. <A
-HREF="#AEN1122"
->Background</A
-></DT
-><DT
->7.3. <A
-HREF="#AEN1130"
->What qualifies a Domain Controller on the network?</A
-></DT
-><DD
-><DL
-><DT
->7.3.1. <A
-HREF="#AEN1133"
->How does a Workstation find its domain controller?</A
-></DT
-><DT
->7.3.2. <A
-HREF="#AEN1136"
->When is the PDC needed?</A
-></DT
-></DL
-></DD
-><DT
->7.4. <A
-HREF="#AEN1139"
->Can Samba be a Backup Domain Controller?</A
-></DT
-><DT
->7.5. <A
-HREF="#AEN1143"
->How do I set up a Samba BDC?</A
-></DT
-><DD
-><DL
-><DT
->7.5.1. <A
-HREF="#AEN1160"
->How do I replicate the smbpasswd file?</A
-></DT
-></DL
-></DD
-></DL
-></DD
-><DT
->8. <A
-HREF="#ADS"
->Samba as a ADS domain member</A
-></DT
-><DD
-><DL
-><DT
->8.1. <A
-HREF="#AEN1178"
->Installing the required packages for Debian</A
-></DT
-><DT
->8.2. <A
-HREF="#AEN1184"
->Installing the required packages for RedHat</A
-></DT
-><DT
->8.3. <A
-HREF="#AEN1193"
->Compile Samba</A
-></DT
-><DT
->8.4. <A
-HREF="#AEN1205"
->Setup your /etc/krb5.conf</A
-></DT
-><DT
->8.5. <A
-HREF="#AEN1215"
->Create the computer account</A
-></DT
-><DD
-><DL
-><DT
->8.5.1. <A
-HREF="#AEN1219"
->Possible errors</A
-></DT
-></DL
-></DD
-><DT
->8.6. <A
-HREF="#AEN1231"
->Test your server setup</A
-></DT
-><DT
->8.7. <A
-HREF="#AEN1236"
->Testing with smbclient</A
-></DT
-><DT
->8.8. <A
-HREF="#AEN1239"
->Notes</A
-></DT
-></DL
-></DD
-><DT
->9. <A
-HREF="#DOMAIN-SECURITY"
->Samba as a NT4 domain member</A
-></DT
-><DD
-><DL
-><DT
->9.1. <A
-HREF="#AEN1261"
->Joining an NT Domain with Samba 2.2</A
-></DT
-><DT
->9.2. <A
-HREF="#AEN1325"
->Samba and Windows 2000 Domains</A
-></DT
-><DT
->9.3. <A
-HREF="#AEN1330"
->Why is this better than security = server?</A
-></DT
-></DL
-></DD
-></DL
-></DIV
-></DIV
-><DIV
-CLASS="CHAPTER"
-><HR><H1
-><A
-NAME="SAMBA-PDC"
-></A
->Chapter 6. How to Configure Samba as a NT4 Primary Domain Controller</H1
-><DIV
-CLASS="SECT1"
-><H2
-CLASS="SECT1"
-><A
-NAME="AEN566"
-></A
->6.1. Prerequisite Reading</H2
-><P
->Before you continue reading in this chapter, please make sure 
-that you are comfortable with configuring basic files services
-in smb.conf and how to enable and administer password 
-encryption in Samba.  Theses two topics are covered in the
-<A
-HREF="smb.conf.5.html"
-TARGET="_top"
-><TT
-CLASS="FILENAME"
->smb.conf(5)</TT
-></A
-> 
-manpage and the <A
-HREF="ENCRYPTION.html"
-TARGET="_top"
->Encryption chapter</A
-> 
-of this HOWTO Collection.</P
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN572"
-></A
->6.2. Background</H2
-><DIV
-CLASS="NOTE"
-><P
-></P
-><TABLE
-CLASS="NOTE"
-WIDTH="100%"
-BORDER="0"
-><TR
-><TD
-WIDTH="25"
-ALIGN="CENTER"
-VALIGN="TOP"
-><IMG
-SRC="/docbook-dsssl/note.gif"
-HSPACE="5"
-ALT="Note"></TD
-><TD
-ALIGN="LEFT"
-VALIGN="TOP"
-><P
-><SPAN
-CLASS="emphasis"
-><I
-CLASS="EMPHASIS"
->Author's Note:</I
-></SPAN
-> This document is a combination 
-of David Bannon's "Samba 2.2 PDC HOWTO" and "Samba NT Domain FAQ". 
-Both documents are superseded by this one.</P
-></TD
-></TR
-></TABLE
-></DIV
+>MS Windows clients may use encrypted passwords as part of a 
+challenege/response authentication model (a.k.a. NTLMv1) or 
+alone, or clear text strings for simple password based 
+authentication. It should be realized that with the SMB 
+protocol the password is passed over the network either 
+in plain text or encrypted, but not both in the same 
+authentication requets.</P
 ><P
->Versions of Samba prior to release 2.2 had marginal capabilities to act
-as a Windows NT 4.0 Primary Domain Controller
-
-(PDC).  With Samba 2.2.0, we are proud to announce official support for
-Windows NT 4.0-style domain logons from Windows NT 4.0 and Windows 
-2000 clients.  This article outlines the steps
-necessary for configuring Samba as a PDC.  It is necessary to have a
-working Samba server prior to implementing the PDC functionality.  If
-you have not followed the steps outlined in <A
-HREF="UNIX_INSTALL.html"
-TARGET="_top"
-> UNIX_INSTALL.html</A
->, please make sure
-that your server is configured correctly before proceeding.  Another
-good resource in the <A
-HREF="smb.conf.5.html"
-TARGET="_top"
->smb.conf(5) man
-page</A
->. The following functionality should work in 2.2:</P
+>When encrypted passwords are used a password that has been 
+entered by the user is encrypted in two ways:</P
 ><P
 ></P
 ><UL
 ><LI
 ><P
->	domain logons for Windows NT 4.0/2000 clients.
-	</P
-></LI
-><LI
-><P
->	placing a Windows 9x client in user level security
-	</P
-></LI
-><LI
-><P
->	retrieving a list of users and groups from a Samba PDC to
-	Windows 9x/NT/2000 clients
-	</P
-></LI
-><LI
-><P
->	roving (roaming) user profiles
+>An MD4 hash of the UNICODE of the password
+	string.  This is known as the NT hash.
 	</P
 ></LI
 ><LI
 ><P
->	Windows NT 4.0-style system policies
+>The password is converted to upper case,
+	and then padded or trucated to 14 bytes.  This string is 
+	then appended with 5 bytes of NULL characters and split to
+	form two 56 bit DES keys to encrypt a "magic" 8 byte value.
+	The resulting 16 bytes for the LanMan hash.
 	</P
 ></LI
 ></UL
 ><P
->The following pieces of functionality are not included in the 2.2 release:</P
-><P
-></P
-><UL
-><LI
+>You should refer to the <A
+HREF="ENCRYPTION.html"
+TARGET="_top"
+>Password Encryption</A
+> chapter in this HOWTO collection
+for more details on the inner workings</P
 ><P
->	Windows NT 4 domain trusts
-	</P
-></LI
-><LI
+>MS Windows 95 pre-service pack 1, MS Windows NT versions 3.x 
+and version 4.0 pre-service pack 3 will use either mode of 
+password authentication. All versions of MS Windows that follow 
+these versions no longer support plain text passwords by default.</P
 ><P
->	SAM replication with Windows NT 4.0 Domain Controllers
-	(i.e. a Samba PDC and a Windows NT BDC or vice versa) 
-	</P
-></LI
-><LI
+>MS Windows clients have a habit of dropping network mappings that 
+have been idle for 10 minutes or longer. When the user attempts to 
+use the mapped drive connection that has been dropped, the client
+re-establishes the connection using 
+a cached copy of the password.</P
 ><P
->	Adding users via the User Manager for Domains
-	</P
-></LI
-><LI
+>When Microsoft changed the default password mode, they dropped support for 
+caching of the plain text password. This means that when the registry 
+parameter is changed to re-enable use of plain text passwords it appears to 
+work, but when a dropped mapping attempts to revalidate it will fail if 
+the remote authentication server does not support encrypted passwords. 
+This means that it is definitely not a good idea to re-enable plain text 
+password support in such clients.</P
 ><P
->	Acting as a Windows 2000 Domain Controller (i.e. Kerberos and 
-	Active Directory)
-	</P
-></LI
-></UL
+>The following parameters can be used to work around the 
+issue of Windows 9x client upper casing usernames and
+password before transmitting them to the SMB server
+when using clear text authentication.</P
 ><P
->Please note that Windows 9x clients are not true members of a domain
-for reasons outlined in this article.  Therefore the protocol for
-support Windows 9x-style domain logons is completely different
-from NT4 domain logons and has been officially supported for some 
-time.</P
+><PRE
+CLASS="PROGRAMLISTING"
+>	<A
+HREF="smb.conf.5.html#PASSWORDLEVEL"
+TARGET="_top"
+>passsword level</A
+> = <TT
+CLASS="REPLACEABLE"
+><I
+>integer</I
+></TT
+>
+	<A
+HREF="smb.conf.5.html#USERNAMELEVEL"
+TARGET="_top"
+>username level</A
+> = <TT
+CLASS="REPLACEABLE"
+><I
+>integer</I
+></TT
+></PRE
+></P
 ><P
->Implementing a Samba PDC can basically be divided into 2 broad
-steps.</P
+>By default Samba will lower case the username before attempting
+to lookup the user in the database of local system accounts.
+Because UNIX usernames conventionally only contain lower case
+character, the <TT
+CLASS="PARAMETER"
+><I
+>username level</I
+></TT
+> parameter
+is rarely even needed.</P
+><P
+>However, password on UNIX systems often make use of mixed case
+characters.  This means that in order for a user on a Windows 9x
+client to connect to a Samba server using clear text authentication,
+the <TT
+CLASS="PARAMETER"
+><I
+>password level</I
+></TT
+> must be set to the maximum
+number of upper case letter which <SPAN
+CLASS="emphasis"
+><I
+CLASS="EMPHASIS"
+>could</I
+></SPAN
+> appear
+is a password.  Note that is the server OS uses the traditional
+DES version of crypt(), then a <TT
+CLASS="PARAMETER"
+><I
+>password level</I
+></TT
+>
+of 8 will result in case insensitive passwords as seen from Windows
+users.  This will also result in longer login times as Samba
+hash to compute the permutations of the password string and 
+try them one by one until a match is located (or all combinations fail).</P
+><P
+>The best option to adopt is to enable support for encrypted passwords 
+where ever Samba is used. There are three configuration possibilities 
+for support of encrypted passwords:</P
+><DIV
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
+><A
+NAME="AEN533"
+></A
+>3.5.1. Use MS Windows NT as an authentication server</H3
+><P
+>This method involves the additions of the following parameters 
+in the smb.conf file:</P
 ><P
+><PRE
+CLASS="PROGRAMLISTING"
+>	encrypt passwords = Yes
+	security = server
+	password server = "NetBIOS_name_of_PDC"</PRE
 ></P
-><OL
-TYPE="1"
+><P
+>There are two ways of identifying whether or not a username and 
+password pair was valid or not. One uses the reply information provided 
+as part of the authentication messaging process, the other uses 
+just and error code.</P
+><P
+>The down-side of this mode of configuration is the fact that 
+for security reasons Samba will send the password server a bogus 
+username and a bogus password and if the remote server fails to 
+reject the username and password pair then an alternative mode 
+of identification of validation is used. Where a site uses password 
+lock out after a certain number of failed authentication attempts 
+this will result in user lockouts.</P
+><P
+>Use of this mode of authentication does require there to be 
+a standard Unix account for the user, this account can be blocked 
+to prevent logons by other than MS Windows clients.</P
+></DIV
+><DIV
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
+><A
+NAME="AEN541"
+></A
+>3.5.2. Make Samba a member of an MS Windows NT security domain</H3
+><P
+>This method involves additon of the following paramters in the smb.conf file:</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>	encrypt passwords = Yes
+	security = domain
+	workgroup = "name of NT domain"
+	password server = *</PRE
+></P
+><P
+>The use of the "*" argument to "password server" will cause samba 
+to locate the domain controller in a way analogous to the way 
+this is done within MS Windows NT.</P
+><P
+>In order for this method to work the Samba server needs to join the 
+MS Windows NT security domain. This is done as follows:</P
+><P
+></P
+><UL
 ><LI
 ><P
->	Configuring the Samba PDC
+>On the MS Windows NT domain controller using 
+	the Server Manager add a machine account for the Samba server.
 	</P
 ></LI
 ><LI
 ><P
->	Creating machine trust accounts	and joining clients 
-	to the domain
+>Next, on the Linux system execute: 
+	<B
+CLASS="COMMAND"
+>smbpasswd -r PDC_NAME -j DOMAIN_NAME</B
+>
 	</P
 ></LI
-></OL
+></UL
 ><P
->There are other minor details such as user profiles, system
-policies, etc...  However, these are not necessarily specific
-to a Samba PDC as much as they are related to Windows NT networking
-concepts.  They will be mentioned only briefly here.</P
+>Use of this mode of authentication does require there to be 
+a standard Unix account for the user in order to assign
+a uid once the account has been authenticated by the remote
+Windows DC.  This account can be blocked to prevent logons by 
+other than MS Windows clients by things such as setting an invalid
+shell in the <TT
+CLASS="FILENAME"
+>/etc/passwd</TT
+> entry.</P
+><P
+>An alternative to assigning UIDs to Windows users on a 
+Samba member server is presented in the <A
+HREF="winbind.html"
+TARGET="_top"
+>Winbind Overview</A
+> chapter in
+this HOWTO collection.</P
 ></DIV
 ><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
 ><A
-NAME="AEN611"
+NAME="AEN558"
 ></A
->6.3. Configuring the Samba Domain Controller</H2
+>3.5.3. Configure Samba as an authentication server</H3
 ><P
->The first step in creating a working Samba PDC is to 
-understand the parameters necessary in smb.conf.  I will not
-attempt to re-explain the parameters here as they are more that
-adequately covered in <A
-HREF="smb.conf.5.html"
-TARGET="_top"
-> the smb.conf
-man page</A
->.  For convenience, the parameters have been
-linked with the actual smb.conf description.</P
+>This mode of authentication demands that there be on the 
+Unix/Linux system both a Unix style account as well as an 
+smbpasswd entry for the user. The Unix system account can be 
+locked if required as only the encrypted password will be 
+used for SMB client authentication.</P
 ><P
->Here is an example <TT
-CLASS="FILENAME"
->smb.conf</TT
-> for acting as a PDC:</P
+>This method involves addition of the following parameters to 
+the smb.conf file:</P
 ><P
 ><PRE
 CLASS="PROGRAMLISTING"
->[global]
-    ; Basic server settings
-    <A
-HREF="smb.conf.5.html#NETBIOSNAME"
-TARGET="_top"
->netbios name</A
-> = <TT
-CLASS="REPLACEABLE"
-><I
->POGO</I
-></TT
->
-    <A
-HREF="smb.conf.5.html#WORKGROUP"
-TARGET="_top"
->workgroup</A
-> = <TT
-CLASS="REPLACEABLE"
-><I
->NARNIA</I
-></TT
->
+>## please refer to the Samba PDC HOWTO chapter later in 
+## this collection for more details
+[global]
+	encrypt passwords = Yes
+	security = user
+	domain logons = Yes
+	; an OS level of 33 or more is recommended
+	os level = 33
 
-    ; we should act as the domain and local master browser
-    <A
-HREF="smb.conf.5.html#OSLEVEL"
-TARGET="_top"
->os level</A
-> = 64
-    <A
-HREF="smb.conf.5.html#PERFERREDMASTER"
-TARGET="_top"
->preferred master</A
-> = yes
-    <A
-HREF="smb.conf.5.html#DOMAINMASTER"
-TARGET="_top"
->domain master</A
-> = yes
-    <A
-HREF="smb.conf.5.html#LOCALMASTER"
-TARGET="_top"
->local master</A
-> = yes
-    
-    ; security settings (must user security = user)
-    <A
-HREF="smb.conf.5.html#SECURITYEQUALSUSER"
-TARGET="_top"
->security</A
-> = user
-    
-    ; encrypted passwords are a requirement for a PDC
-    <A
-HREF="smb.conf.5.html#ENCRYPTPASSWORDS"
-TARGET="_top"
->encrypt passwords</A
-> = yes
-    
-    ; support domain logons
-    <A
-HREF="smb.conf.5.html#DOMAINLOGONS"
-TARGET="_top"
->domain logons</A
-> = yes
-    
-    ; where to store user profiles?
-    <A
-HREF="smb.conf.5.html#LOGONPATH"
-TARGET="_top"
->logon path</A
-> = \\%N\profiles\%u
-    
-    ; where is a user's home directory and where should it
-    ; be mounted at?
-    <A
-HREF="smb.conf.5.html#LOGONDRIVE"
-TARGET="_top"
->logon drive</A
-> = H:
-    <A
-HREF="smb.conf.5.html#LOGONHOME"
-TARGET="_top"
->logon home</A
-> = \\homeserver\%u
-    
-    ; specify a generic logon script for all users
-    ; this is a relative **DOS** path to the [netlogon] share
-    <A
-HREF="smb.conf.5.html#LOGONSCRIPT"
-TARGET="_top"
->logon script</A
-> = logon.cmd
-
-; necessary share for domain controller
-[netlogon]
-    <A
-HREF="smb.conf.5.html#PATH"
-TARGET="_top"
->path</A
-> = /usr/local/samba/lib/netlogon
-    <A
-HREF="smb.conf.5.html#READONLY"
-TARGET="_top"
->read only</A
-> = yes
-    <A
-HREF="smb.conf.5.html#WRITELIST"
-TARGET="_top"
->write list</A
-> = <TT
-CLASS="REPLACEABLE"
-><I
->ntadmin</I
-></TT
->
-    
-; share for storing user profiles
-[profiles]
-    <A
-HREF="smb.conf.5.html#PATH"
-TARGET="_top"
->path</A
-> = /export/smb/ntprofile
-    <A
-HREF="smb.conf.5.html#READONLY"
-TARGET="_top"
->read only</A
-> = no
-    <A
-HREF="smb.conf.5.html#CREATEMASK"
-TARGET="_top"
->create mask</A
-> = 0600
-    <A
-HREF="smb.conf.5.html#DIRECTORYMASK"
-TARGET="_top"
->directory mask</A
-> = 0700</PRE
+[NETLOGON]
+	path = /somewhare/in/file/system
+	read only = yes</PRE
 ></P
 ><P
->There are a couple of points to emphasize in the above configuration.</P
-><P
-></P
-><UL
-><LI
+>in order for this method to work a Unix system account needs 
+to be created for each user, as well as for each MS Windows NT/2000 
+machine. The following structure is required.</P
+><DIV
+CLASS="SECT3"
+><HR><H4
+CLASS="SECT3"
+><A
+NAME="AEN565"
+></A
+>3.5.3.1. Users</H4
 ><P
->	Encrypted passwords must be enabled.  For more details on how 
-	to do this, refer to <A
-HREF="ENCRYPTION.html"
-TARGET="_top"
->ENCRYPTION.html</A
->.
-	</P
-></LI
-><LI
+>A user account that may provide a home directory should be 
+created. The following Linux system commands are typical of 
+the procedure for creating an account.</P
 ><P
->	The server must support domain logons and a
-	<TT
-CLASS="FILENAME"
->[netlogon]</TT
-> share
-	</P
-></LI
-><LI
+><PRE
+CLASS="PROGRAMLISTING"
+>	# useradd -s /bin/bash -d /home/"userid" -m "userid"
+	# passwd "userid"
+	  Enter Password: &lt;pw&gt;
+	  
+	# smbpasswd -a "userid"
+	  Enter Password: &lt;pw&gt;</PRE
+></P
+></DIV
+><DIV
+CLASS="SECT3"
+><HR><H4
+CLASS="SECT3"
+><A
+NAME="AEN570"
+></A
+>3.5.3.2. MS Windows NT Machine Accounts</H4
 ><P
->	The server must be the domain master browser in order for Windows 
-	client to locate the server as a DC.  Please refer to the various 
-	Network Browsing documentation included with this distribution for 
-	details.
-	</P
-></LI
-></UL
+>These are required only when Samba is used as a domain 
+controller.  Refer to the Samba-PDC-HOWTO for more details.</P
 ><P
->As Samba 2.2 does not offer a complete implementation of group mapping
-between Windows NT groups and Unix groups (this is really quite
-complicated to explain in a short space), you should refer to the
-<A
-HREF="smb.conf.5.html#DOMAINADMINGROUP"
-TARGET="_top"
->domain admin
-group</A
-> smb.conf parameter for information of creating "Domain
-Admins" style accounts.</P
+><PRE
+CLASS="PROGRAMLISTING"
+>	# useradd -s /bin/false -d /dev/null "machine_name"\$
+	# passwd -l "machine_name"\$
+	# smbpasswd -a -m "machine_name"</PRE
+></P
+></DIV
+></DIV
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN654"
+NAME="AEN575"
 ></A
->6.4. Creating Machine Trust Accounts and Joining Clients to the
-Domain</H2
+>3.6. Conclusions</H2
 ><P
->A machine trust account is a Samba account that is used to
-authenticate a client machine (rather than a user) to the Samba
-server.  In Windows terminology, this is known as a "Computer
-Account."</P
-><P
->The password of a machine trust account acts as the shared secret for
-secure communication with the Domain Controller.  This is a security
-feature to prevent an unauthorized machine with the same NetBIOS name
-from joining the domain and gaining access to domain user/group
-accounts.  Windows NT and 2000 clients use machine trust accounts, but
-Windows 9x clients do not.  Hence, a Windows 9x client is never a true
-member of a domain because it does not possess a machine trust
-account, and thus has no shared secret with the domain controller.</P
+>Samba provides a flexible means to operate as...</P
 ><P
->A Windows PDC stores each machine trust account in the Windows
-Registry.  A Samba PDC, however, stores each machine trust account 
-in two parts, as follows:
-
-<P
 ></P
 ><UL
 ><LI
 ><P
->A Samba account, stored in the same location as user
-    LanMan and NT password hashes (currently
-    <TT
-CLASS="FILENAME"
->smbpasswd</TT
->). The Samba account 
-    possesses and uses only the NT password hash.</P
-></LI
-><LI
-><P
->A corresponding Unix account, typically stored in
-    <TT
-CLASS="FILENAME"
->/etc/passwd</TT
->. (Future releases will alleviate the need to
-    create <TT
-CLASS="FILENAME"
->/etc/passwd</TT
-> entries.) </P
+>A Stand-alone server - No special action is needed 
+	other than to create user accounts. Stand-alone servers do NOT 
+	provide network logon services, meaning that machines that use this 
+	server do NOT perform a domain logon but instead make use only of 
+	the MS Windows logon which is local to the MS Windows 
+	workstation/server.
+	</P
 ></LI
-></UL
-></P
-><P
->There are two ways to create machine trust accounts:</P
-><P
-></P
-><UL
 ><LI
 ><P
-> Manual creation. Both the Samba and corresponding
-	Unix account are created by hand.</P
+>An MS Windows NT 3.x/4.0 security domain member.
+	</P
 ></LI
 ><LI
 ><P
-> "On-the-fly" creation. The Samba machine trust
-	account is automatically created by Samba at the time the client
-	is joined to the domain. (For security, this is the
-	recommended method.) The corresponding Unix account may be
-	created automatically or manually. </P
+>An alternative to an MS Windows NT 3.x/4.0 
+	Domain Controller.
+	</P
 ></LI
 ></UL
+></DIV
+></DIV
 ><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
+CLASS="CHAPTER"
+><HR><H1
+><A
+NAME="PAM"
+></A
+>Chapter 4. Configuring PAM for distributed but centrally 
+managed authentication</H1
+><DIV
+CLASS="SECT1"
+><H2
+CLASS="SECT1"
 ><A
-NAME="AEN673"
+NAME="AEN596"
 ></A
->6.4.1. Manual Creation of Machine Trust Accounts</H3
+>4.1. Samba and PAM</H2
 ><P
->The first step in manually creating a machine trust account is to
-manually create the corresponding Unix account in
-<TT
+>A number of Unix systems (eg: Sun Solaris), as well as the 
+xxxxBSD family and Linux, now utilize the Pluggable Authentication 
+Modules (PAM) facility to provide all authentication, 
+authorization and resource control services. Prior to the 
+introduction of PAM, a decision to use an alternative to 
+the system password database (<TT
 CLASS="FILENAME"
 >/etc/passwd</TT
->.  This can be done using
+>) 
+would require the provision of alternatives for all programs that provide 
+security services. Such a choice would involve provision of 
+alternatives to such programs as: <B
+CLASS="COMMAND"
+>login</B
+>, 
 <B
 CLASS="COMMAND"
->vipw</B
-> or other 'add user' command that is normally
-used to create new Unix accounts.  The following is an example for a
-Linux based Samba server:</P
-><P
->  <TT
-CLASS="PROMPT"
->root# </TT
-><B
+>passwd</B
+>, <B
 CLASS="COMMAND"
->/usr/sbin/useradd -g 100 -d /dev/null -c <TT
-CLASS="REPLACEABLE"
-><I
->"machine 
-nickname"</I
-></TT
-> -s /bin/false <TT
-CLASS="REPLACEABLE"
-><I
->machine_name</I
-></TT
->$ </B
-></P
+>chown</B
+>, etc.</P
 ><P
-><TT
-CLASS="PROMPT"
->root# </TT
-><B
-CLASS="COMMAND"
->passwd -l <TT
-CLASS="REPLACEABLE"
-><I
->machine_name</I
-></TT
->$</B
+>PAM provides a mechanism that disconnects these security programs 
+from the underlying authentication/authorization infrastructure.
+PAM is configured either through one file <TT
+CLASS="FILENAME"
+>/etc/pam.conf</TT
+> (Solaris), 
+or by editing individual files that are located in <TT
+CLASS="FILENAME"
+>/etc/pam.d</TT
+>.</P
+><P
+>The following is an example <TT
+CLASS="FILENAME"
+>/etc/pam.d/login</TT
+> configuration file. 
+This example had all options been uncommented is probably not usable 
+as it stacks many conditions before allowing successful completion 
+of the login process. Essentially all conditions can be disabled 
+by commenting them out except the calls to <TT
+CLASS="FILENAME"
+>pam_pwdb.so</TT
+>.</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>#%PAM-1.0
+# The PAM configuration file for the `login' service
+#
+auth 		required	pam_securetty.so
+auth 		required	pam_nologin.so
+# auth 		required	pam_dialup.so
+# auth 		optional	pam_mail.so
+auth		required	pam_pwdb.so shadow md5
+# account    	requisite  	pam_time.so
+account		required	pam_pwdb.so
+session		required	pam_pwdb.so
+# session 	optional	pam_lastlog.so
+# password   	required   	pam_cracklib.so retry=3
+password	required	pam_pwdb.so shadow md5</PRE
 ></P
 ><P
->On *BSD systems, this can be done using the 'chpass' utility:</P
+>PAM allows use of replacable modules. Those available on a 
+sample system include:</P
 ><P
-><TT
-CLASS="PROMPT"
->root# </TT
-><B
-CLASS="COMMAND"
->chpass -a "<TT
-CLASS="REPLACEABLE"
-><I
->machine_name</I
-></TT
->$:*:101:100::0:0:Workstation <TT
-CLASS="REPLACEABLE"
-><I
->machine_name</I
-></TT
->:/dev/null:/sbin/nologin"</B
+><PRE
+CLASS="PROGRAMLISTING"
+>$ /bin/ls /lib/security
+pam_access.so    pam_ftp.so          pam_limits.so     
+pam_ncp_auth.so  pam_rhosts_auth.so  pam_stress.so     
+pam_cracklib.so  pam_group.so        pam_listfile.so   
+pam_nologin.so   pam_rootok.so       pam_tally.so      
+pam_deny.so      pam_issue.so        pam_mail.so       
+pam_permit.so    pam_securetty.so    pam_time.so       
+pam_dialup.so    pam_lastlog.so      pam_mkhomedir.so  
+pam_pwdb.so      pam_shells.so       pam_unix.so       
+pam_env.so       pam_ldap.so         pam_motd.so       
+pam_radius.so    pam_smbpass.so      pam_unix_acct.so  
+pam_wheel.so     pam_unix_auth.so    pam_unix_passwd.so
+pam_userdb.so    pam_warn.so         pam_unix_session.so</PRE
 ></P
 ><P
->The <TT
+>The following example for the login program replaces the use of 
+the <TT
+CLASS="FILENAME"
+>pam_pwdb.so</TT
+> module which uses the system 
+password database (<TT
 CLASS="FILENAME"
 >/etc/passwd</TT
-> entry will list the machine name 
-with a "$" appended, won't have a password, will have a null shell and no 
-home directory. For example a machine named 'doppy' would have an 
+>,
 <TT
 CLASS="FILENAME"
->/etc/passwd</TT
-> entry like this:</P
+>/etc/shadow</TT
+>, <TT
+CLASS="FILENAME"
+>/etc/group</TT
+>) with 
+the module <TT
+CLASS="FILENAME"
+>pam_smbpass.so</TT
+> which uses the Samba 
+database which contains the Microsoft MD4 encrypted password 
+hashes. This database is stored in either 
+<TT
+CLASS="FILENAME"
+>/usr/local/samba/private/smbpasswd</TT
+>, 
+<TT
+CLASS="FILENAME"
+>/etc/samba/smbpasswd</TT
+>, or in 
+<TT
+CLASS="FILENAME"
+>/etc/samba.d/smbpasswd</TT
+>, depending on the 
+Samba implementation for your Unix/Linux system. The 
+<TT
+CLASS="FILENAME"
+>pam_smbpass.so</TT
+> module is provided by 
+Samba version 2.2.1 or later. It can be compiled by specifying the 
+<B
+CLASS="COMMAND"
+>--with-pam_smbpass</B
+> options when running Samba's
+<TT
+CLASS="FILENAME"
+>configure</TT
+> script.  For more information
+on the <TT
+CLASS="FILENAME"
+>pam_smbpass</TT
+> module, see the documentation
+in the <TT
+CLASS="FILENAME"
+>source/pam_smbpass</TT
+> directory of the Samba 
+source distribution.</P
 ><P
 ><PRE
 CLASS="PROGRAMLISTING"
->doppy$:x:505:501:<TT
-CLASS="REPLACEABLE"
-><I
->machine_nickname</I
-></TT
->:/dev/null:/bin/false</PRE
+>#%PAM-1.0
+# The PAM configuration file for the `login' service
+#
+auth		required	pam_smbpass.so nodelay
+account		required	pam_smbpass.so nodelay
+session		required	pam_smbpass.so nodelay
+password	required	pam_smbpass.so nodelay</PRE
 ></P
 ><P
->Above, <TT
-CLASS="REPLACEABLE"
-><I
->machine_nickname</I
-></TT
-> can be any
-descriptive name for the client, i.e., BasementComputer.
-<TT
-CLASS="REPLACEABLE"
-><I
->machine_name</I
-></TT
-> absolutely must be the NetBIOS
-name of the client to be joined to the domain.  The "$" must be
-appended to the NetBIOS name of the client or Samba will not recognize
-this as a machine trust account.</P
+>The following is the PAM configuration file for a particular 
+Linux system. The default condition uses <TT
+CLASS="FILENAME"
+>pam_pwdb.so</TT
+>.</P
 ><P
->Now that the corresponding Unix account has been created, the next step is to create 
-the Samba account for the client containing the well-known initial 
-machine trust account password.  This can be done using the <A
-HREF="smbpasswd.8.html"
-TARGET="_top"
-><B
-CLASS="COMMAND"
->smbpasswd(8)</B
-></A
-> command 
-as shown here:</P
+><PRE
+CLASS="PROGRAMLISTING"
+>#%PAM-1.0
+# The PAM configuration file for the `samba' service
+#
+auth       required     /lib/security/pam_pwdb.so nullok nodelay shadow audit
+account    required     /lib/security/pam_pwdb.so audit nodelay
+session    required     /lib/security/pam_pwdb.so nodelay
+password   required     /lib/security/pam_pwdb.so shadow md5</PRE
+></P
 ><P
-><TT
-CLASS="PROMPT"
->root# </TT
-><B
-CLASS="COMMAND"
->smbpasswd -a -m <TT
-CLASS="REPLACEABLE"
-><I
->machine_name</I
-></TT
-></B
-></P
-><P
->where <TT
-CLASS="REPLACEABLE"
-><I
->machine_name</I
-></TT
-> is the machine's NetBIOS
-name.  The RID of the new machine account is generated from the UID of 
-the corresponding Unix account.</P
-><DIV
-CLASS="WARNING"
+>In the following example the decision has been made to use the 
+smbpasswd database even for basic samba authentication. Such a 
+decision could also be made for the passwd program and would 
+thus allow the smbpasswd passwords to be changed using the passwd 
+program.</P
 ><P
+><PRE
+CLASS="PROGRAMLISTING"
+>#%PAM-1.0
+# The PAM configuration file for the `samba' service
+#
+auth       required     /lib/security/pam_smbpass.so nodelay
+account    required     /lib/security/pam_pwdb.so audit nodelay
+session    required     /lib/security/pam_pwdb.so nodelay
+password   required     /lib/security/pam_smbpass.so nodelay smbconf=/etc/samba.d/smb.conf</PRE
 ></P
-><TABLE
-CLASS="WARNING"
-WIDTH="100%"
-BORDER="0"
-><TR
-><TD
-WIDTH="25"
-ALIGN="CENTER"
-VALIGN="TOP"
-><IMG
-SRC="/docbook-dsssl/warning.gif"
-HSPACE="5"
-ALT="Warning"></TD
-><TH
-ALIGN="LEFT"
-VALIGN="CENTER"
-><B
->Join the client to the domain immediately</B
-></TH
-></TR
-><TR
-><TD
->&nbsp;</TD
-><TD
-ALIGN="LEFT"
-VALIGN="TOP"
 ><P
->	Manually creating a machine trust account using this method is the 
-	equivalent of creating a machine trust account on a Windows NT PDC using 
-	the "Server Manager".  From the time at which the account is created
-	to the time which the client joins the domain and changes the password,
-	your domain is vulnerable to an intruder joining your domain using a
-	a machine with the same NetBIOS name.  A PDC inherently trusts
-	members of the domain and will serve out a large degree of user 
-	information to such clients.  You have been warned!
-	</P
-></TD
-></TR
-></TABLE
-></DIV
+>Note: PAM allows stacking of authentication mechanisms. It is 
+also possible to pass information obtained within one PAM module through 
+to the next module in the PAM stack. Please refer to the documentation for 
+your particular system implementation for details regarding the specific 
+capabilities of PAM in this environment. Some Linux implmentations also 
+provide the <TT
+CLASS="FILENAME"
+>pam_stack.so</TT
+> module that allows all 
+authentication to be configured in a single central file. The 
+<TT
+CLASS="FILENAME"
+>pam_stack.so</TT
+> method has some very devoted followers 
+on the basis that it allows for easier administration. As with all issues in 
+life though, every decision makes trade-offs, so you may want examine the 
+PAM documentation for further helpful information.</P
 ></DIV
 ><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
 ><A
-NAME="AEN714"
+NAME="AEN640"
 ></A
->6.4.2. "On-the-Fly" Creation of Machine Trust Accounts</H3
-><P
->The second (and recommended) way of creating machine trust accounts is
-simply to allow the Samba server to create them as needed when the client
-is joined to the domain. </P
+>4.2. Distributed Authentication</H2
 ><P
->Since each Samba machine trust account requires a corresponding
-Unix account, a method for automatically creating the
-Unix account is usually supplied; this requires configuration of the
+>The astute administrator will realize from this that the 
+combination of <TT
+CLASS="FILENAME"
+>pam_smbpass.so</TT
+>, 
+<B
+CLASS="COMMAND"
+>winbindd</B
+>, and <B
+CLASS="COMMAND"
+>rsync</B
+> (see
 <A
-HREF="smb.conf.5.html#ADDUSERSCRIPT"
+HREF="http://rsync.samba.org/"
 TARGET="_top"
->add user script</A
-> 
-option in <TT
-CLASS="FILENAME"
->smb.conf</TT
->.  This
-method is not required, however; corresponding Unix accounts may also
-be created manually.</P
-><P
->Below is an example for a RedHat 6.2 Linux system.</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->[global]
-   # &#60;...remainder of parameters...&#62;
-   add user script = /usr/sbin/useradd -d /dev/null -g 100 -s /bin/false -M %u </PRE
-></P
+>http://rsync.samba.org/</A
+>)
+will allow the establishment of a centrally managed, distributed 
+user/password database that can also be used by all 
+PAM (eg: Linux) aware programs and applications. This arrangement 
+can have particularly potent advantages compared with the 
+use of Microsoft Active Directory Service (ADS) in so far as 
+reduction of wide area network authentication traffic.</P
 ></DIV
 ><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
 ><A
-NAME="AEN723"
+NAME="AEN647"
 ></A
->6.4.3. Joining the Client to the Domain</H3
-><P
->The procedure for joining a client to the domain varies with the
-version of Windows.</P
-><P
-></P
-><UL
-><LI
-><P
-><SPAN
-CLASS="emphasis"
-><I
-CLASS="EMPHASIS"
->Windows 2000</I
-></SPAN
-></P
+>4.3. PAM Configuration in smb.conf</H2
 ><P
-> When the user elects to join the client to a domain, Windows prompts for
-	an account and password that is privileged to join the domain.  A
-	Samba administrative account (i.e., a Samba account that has root
-	privileges on the Samba server) must be entered here; the
-	operation will fail if an ordinary user account is given. 
-	The password for this account should be
-	set to a different password than the associated
-	<TT
-CLASS="FILENAME"
->/etc/passwd</TT
-> entry, for security
-	reasons. </P
+>There is an option in smb.conf called <A
+HREF="smb.conf.5.html#OBEYPAMRESTRICTIONS"
+TARGET="_top"
+>obey pam restrictions</A
+>. 
+The following is from the on-line help for this option in SWAT;</P
 ><P
->The session key of the Samba administrative account acts as an
-	encryption key for setting the password of the machine trust
-	account. The machine trust account will be created on-the-fly, or
-	updated if it already exists.</P
-></LI
-><LI
+>When Samba 2.2 is configure to enable PAM support (i.e. 
+<TT
+CLASS="CONSTANT"
+>--with-pam</TT
+>), this parameter will 
+control whether or not Samba should obey PAM's account 
+and session management directives. The default behavior 
+is to use PAM for clear text authentication only and to 
+ignore any account or session management. Note that Samba always 
+ignores PAM for authentication in the case of 
+<A
+HREF="smb.conf.5.html#ENCRYPTPASSWORDS"
+TARGET="_top"
+>encrypt passwords = yes</A
+>. 
+The reason is that PAM modules cannot support the challenge/response 
+authentication mechanism needed in the presence of SMB 
+password encryption. </P
 ><P
-><SPAN
-CLASS="emphasis"
-><I
-CLASS="EMPHASIS"
->Windows NT</I
-></SPAN
+>Default: <B
+CLASS="COMMAND"
+>obey pam restrictions = no</B
 ></P
-><P
-> If the machine trust account was created manually, on the
-	Identification Changes menu enter the domain name, but do not
-	check the box "Create a Computer Account in the Domain."  In this case,
-	the existing machine trust account is used to join the machine to
-	the domain.</P
-><P
-> If the machine trust account is to be created
-	on-the-fly, on the Identification Changes menu enter the domain
-	name, and check the box "Create a Computer Account in the Domain."  In
-	this case, joining the domain proceeds as above for Windows 2000
-	(i.e., you must supply a Samba administrative account when
-	prompted).</P
-></LI
-></UL
 ></DIV
 ></DIV
 ><DIV
+CLASS="CHAPTER"
+><HR><H1
+><A
+NAME="MSDFS"
+></A
+>Chapter 5. Hosting a Microsoft Distributed File System tree on Samba</H1
+><DIV
 CLASS="SECT1"
-><HR><H2
+><H2
 CLASS="SECT1"
 ><A
-NAME="AEN738"
+NAME="AEN667"
 ></A
->6.5. Common Problems and Errors</H2
+>5.1. Instructions</H2
 ><P
-></P
+>The Distributed File System (or Dfs) provides a means of 
+	separating the logical view of files and directories that users 
+	see from the actual physical locations of these resources on the 
+	network. It allows for higher availability, smoother storage expansion, 
+	load balancing etc. For more information about Dfs, refer to  <A
+HREF="http://www.microsoft.com/NTServer/nts/downloads/winfeatures/NTSDistrFile/AdminGuide.asp"
+TARGET="_top"
+>	Microsoft documentation</A
+>. </P
 ><P
-></P
-><UL
-><LI
+>This document explains how to host a Dfs tree on a Unix 
+	machine (for Dfs-aware clients to browse) using Samba.</P
 ><P
->	<SPAN
-CLASS="emphasis"
+>To enable SMB-based DFS for Samba, configure it with the 
+	<TT
+CLASS="PARAMETER"
 ><I
-CLASS="EMPHASIS"
->I cannot include a '$' in a machine name.</I
-></SPAN
->
-	</P
-><P
->	A 'machine name' in (typically) <TT
+>--with-msdfs</I
+></TT
+> option. Once built, a 
+	Samba server can be made a Dfs server by setting the global 
+	boolean <A
+HREF="smb.conf.5.html#HOSTMSDFS"
+TARGET="_top"
+><TT
+CLASS="PARAMETER"
+><I
+>	host msdfs</I
+></TT
+></A
+> parameter in the <TT
 CLASS="FILENAME"
->/etc/passwd</TT
-> 	
-	of the machine name with a '$' appended. FreeBSD (and other BSD 
-	systems?) won't create a user with a '$' in their name.
-	</P
+>smb.conf
+	</TT
+> file. You designate a share as a Dfs root using the share 
+	level boolean <A
+HREF="smb.conf.5.html#MSDFSROOT"
+TARGET="_top"
+><TT
+CLASS="PARAMETER"
+><I
+>	msdfs root</I
+></TT
+></A
+> parameter. A Dfs root directory on 
+	Samba hosts Dfs links in the form of symbolic links that point 
+	to other servers. For example, a symbolic link
+	<TT
+CLASS="FILENAME"
+>junction-&gt;msdfs:storage1\share1</TT
+> in 
+	the share directory acts as the Dfs junction. When Dfs-aware 
+	clients attempt to access the junction link, they are redirected 
+	to the storage location (in this case, \\storage1\share1).</P
 ><P
->	The problem is only in the program used to make the entry, once 
-	made, it works perfectly. So create a user without the '$' and 
-	use <B
-CLASS="COMMAND"
->vipw</B
-> to edit the entry, adding the '$'. Or create 
-	the whole entry with vipw if you like, make sure you use a 
-	unique User ID !
-	</P
-></LI
-><LI
+>Dfs trees on Samba work with all Dfs-aware clients ranging 
+	from Windows 95 to 2000.</P
 ><P
->	<SPAN
-CLASS="emphasis"
-><I
-CLASS="EMPHASIS"
->I get told "You already have a connection to the Domain...." 
-	or "Cannot join domain, the credentials supplied conflict with an 
-	existing set.." when creating a machine trust account.</I
-></SPAN
->
-	</P
+>Here's an example of setting up a Dfs tree on a Samba 
+	server.</P
 ><P
->	This happens if you try to create a machine trust account from the 
-	machine itself and already have a connection (e.g. mapped drive) 
-	to a share (or IPC$) on the Samba PDC.  The following command
-	will remove all network drive connections:
-	</P
+><PRE
+CLASS="PROGRAMLISTING"
+># The smb.conf file:
+[global]
+	netbios name = SAMBA
+	host msdfs   = yes
+
+[dfs]
+	path = /export/dfsroot
+	msdfs root = yes
+	</PRE
+></P
 ><P
->	<TT
+>In the /export/dfsroot directory we set up our dfs links to 
+	other servers on the network.</P
+><P
+><TT
 CLASS="PROMPT"
->C:\WINNT\&#62;</TT
-> <B
-CLASS="COMMAND"
->net use * /d</B
->
-	</P
+>root# </TT
+><TT
+CLASS="USERINPUT"
+><B
+>cd /export/dfsroot</B
+></TT
+></P
 ><P
->	Further, if the machine is a already a 'member of a workgroup' that 
-	is the same name as the domain you are joining (bad idea) you will 
-	get this message.  Change the workgroup name to something else, it 
-	does not matter what, reboot, and try again.
-	</P
-></LI
-><LI
+><TT
+CLASS="PROMPT"
+>root# </TT
+><TT
+CLASS="USERINPUT"
+><B
+>chown root /export/dfsroot</B
+></TT
+></P
 ><P
->	<SPAN
-CLASS="emphasis"
-><I
-CLASS="EMPHASIS"
->The system can not log you on (C000019B)....</I
-></SPAN
->
-	</P
+><TT
+CLASS="PROMPT"
+>root# </TT
+><TT
+CLASS="USERINPUT"
+><B
+>chmod 755 /export/dfsroot</B
+></TT
+></P
 ><P
->I joined the domain successfully but after upgrading 
-	to a newer version of the Samba code I get the message, "The system 
-	can not log you on (C000019B), Please try a gain or consult your 
-	system administrator" when attempting to logon.
-	</P
+><TT
+CLASS="PROMPT"
+>root# </TT
+><TT
+CLASS="USERINPUT"
+><B
+>ln -s msdfs:storageA\\shareA linka</B
+></TT
+></P
 ><P
->	This occurs when the domain SID stored in 
-	<TT
-CLASS="FILENAME"
->private/WORKGROUP.SID</TT
-> is 
-	changed.  For example, you remove the file and <B
-CLASS="COMMAND"
->smbd</B
-> automatically 
-	creates a new one.  Or you are swapping back and forth between 
-	versions 2.0.7, TNG and the HEAD branch code (not recommended).  The 
-	only way to correct the problem is to restore the original domain 
-	SID or remove the domain client from the domain and rejoin.
-	</P
-></LI
-><LI
+><TT
+CLASS="PROMPT"
+>root# </TT
+><TT
+CLASS="USERINPUT"
+><B
+>ln -s msdfs:serverB\\share,serverC\\share linkb</B
+></TT
+></P
 ><P
->	<SPAN
-CLASS="emphasis"
-><I
-CLASS="EMPHASIS"
->The machine trust account for this computer either does not 
-	exist or is not accessible.</I
-></SPAN
->
-	</P
+>You should set up the permissions and ownership of 
+	the directory acting as the Dfs root such that only designated 
+	users can create, delete or modify the msdfs links. Also note 
+	that symlink names should be all lowercase. This limitation exists 
+	to have Samba avoid trying all the case combinations to get at 
+	the link name. Finally set up the symbolic links to point to the 
+	network shares you want, and start Samba.</P
 ><P
->	When I try to join the domain I get the message "The machine account 
-	for this computer either does not exist or is not accessible". What's 
-	wrong?
-	</P
+>Users on Dfs-aware clients can now browse the Dfs tree 
+	on the Samba server at \\samba\dfs. Accessing 
+	links linka or linkb (which appear as directories to the client) 
+	takes users directly to the appropriate shares on the network.</P
+><DIV
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
+><A
+NAME="AEN702"
+></A
+>5.1.1. Notes</H3
 ><P
->	This problem is caused by the PDC not having a suitable machine trust account. 
-	If you are using the <TT
-CLASS="PARAMETER"
-><I
->add user script</I
-></TT
-> method to create 
-	accounts then this would indicate that it has not worked. Ensure the domain 
-	admin user system is working.
-	</P
+></P
+><UL
+><LI
 ><P
->	Alternatively if you are creating account entries manually then they 
-	have not been created correctly. Make sure that you have the entry 
-	correct for the machine trust account in smbpasswd file on the Samba PDC. 
-	If you added the account using an editor rather than using the smbpasswd 
-	utility, make sure that the account name is the machine NetBIOS name 
-	with a '$' appended to it ( i.e. computer_name$ ). There must be an entry 
-	in both /etc/passwd and the smbpasswd file. Some people have reported 
-	that inconsistent subnet masks between the Samba server and the NT 
-	client have caused this problem.   Make sure that these are consistent 
-	for both client and server.
-	</P
+>Windows clients need to be rebooted 
+			if a previously mounted non-dfs share is made a dfs 
+			root or vice versa. A better way is to introduce a 
+			new share and make it the dfs root.</P
 ></LI
 ><LI
 ><P
->	<SPAN
-CLASS="emphasis"
-><I
-CLASS="EMPHASIS"
->When I attempt to login to a Samba Domain from a NT4/W2K workstation,
-	I get a message about my account being disabled.</I
-></SPAN
->
-	</P
+>Currently there's a restriction that msdfs 
+			symlink names should all be lowercase.</P
+></LI
+><LI
 ><P
->	This problem is caused by a PAM related bug in Samba 2.2.0.  This bug is 
-	fixed in 2.2.1.  Other symptoms could be unaccessible shares on 
-	NT/W2K member servers in the domain or the following error in your smbd.log:
-	passdb/pampass.c:pam_account(268) PAM: UNKNOWN ERROR for User: %user%
-	</P
+>For security purposes, the directory 
+			acting as the root of the Dfs tree should have ownership 
+			and permissions set so that only designated users can 
+			modify the symbolic links in the directory.</P
+></LI
+></UL
+></DIV
+></DIV
+></DIV
+><DIV
+CLASS="CHAPTER"
+><HR><H1
+><A
+NAME="UNIX-PERMISSIONS"
+></A
+>Chapter 6. UNIX Permission Bits and Windows NT Access Control Lists</H1
+><DIV
+CLASS="SECT1"
+><H2
+CLASS="SECT1"
+><A
+NAME="AEN722"
+></A
+>6.1. Viewing and changing UNIX permissions using the NT 
+	security dialogs</H2
 ><P
->	At first be ensure to enable the useraccounts with <B
-CLASS="COMMAND"
->smbpasswd -e 
-	%user%</B
->, this is normally done, when you create an account.
-	</P
+>New in the Samba 2.0.4 release is the ability for Windows 
+	NT clients to use their native security settings dialog box to 
+	view and modify the underlying UNIX permissions.</P
 ><P
->	In order to work around this problem in 2.2.0, configure the 
-	<TT
+>Note that this ability is careful not to compromise 
+	the security of the UNIX host Samba is running on, and 
+	still obeys all the file permission rules that a Samba 
+	administrator can set.</P
+><P
+>In Samba 2.0.4 and above the default value of the 
+	parameter <A
+HREF="smb.conf.5.html#NTACLSUPPORT"
+TARGET="_top"
+><TT
 CLASS="PARAMETER"
 ><I
->account</I
+>	nt acl support</I
 ></TT
-> control flag in 
-	<TT
-CLASS="FILENAME"
->/etc/pam.d/samba</TT
-> file as follows:
-	</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->	account required        pam_permit.so
-	</PRE
-></P
-><P
->	If you want to remain backward compatibility to samba 2.0.x use
-	<TT
-CLASS="FILENAME"
->pam_permit.so</TT
->, it's also possible to use 
+></A
+> has been changed from 
 	<TT
-CLASS="FILENAME"
->pam_pwdb.so</TT
->. There are some bugs if you try to 
-	use <TT
-CLASS="FILENAME"
->pam_unix.so</TT
->, if you need this, be ensure to use
-	the most recent version of this file.
-	</P
-></LI
-></UL
+CLASS="CONSTANT"
+>false</TT
+> to <TT
+CLASS="CONSTANT"
+>true</TT
+>, so 
+ 	manipulation of permissions is turned on by default.</P
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN786"
+NAME="AEN731"
 ></A
->6.6. System Policies and Profiles</H2
-><P
->Much of the information necessary to implement System Policies and
-Roving User Profiles in a Samba domain is the same as that for 
-implementing these same items in a Windows NT 4.0 domain. 
-You should read the white paper <A
-HREF="http://www.microsoft.com/ntserver/management/deployment/planguide/prof_policies.asp"
-TARGET="_top"
->Implementing
-Profiles and Policies in Windows NT 4.0</A
-> available from Microsoft.</P
-><P
->Here are some additional details:</P
-><P
-></P
-><UL
-><LI
+>6.2. How to view file security on a Samba share</H2
 ><P
->	<SPAN
+>From an NT 4.0 client, single-click with the right 
+	mouse button on any file or directory in a Samba mounted 
+	drive letter or UNC path. When the menu pops-up, click 
+	on the <SPAN
 CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
->What about Windows NT Policy Editor?</I
+>Properties</I
 ></SPAN
->
-	</P
-><P
->	To create or edit <TT
-CLASS="FILENAME"
->ntconfig.pol</TT
-> you must use 
-	the NT Server Policy Editor, <B
-CLASS="COMMAND"
->poledit.exe</B
->	which 
-	is included with NT Server but <SPAN
+> entry at the bottom of 
+	the menu. This brings up the normal file properties dialog
+	box, but with Samba 2.0.4 this will have a new tab along the top
+	marked <SPAN
 CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
->not NT Workstation</I
+>Security</I
 ></SPAN
->. 
-	There is a Policy Editor on a NTws 
-	but it is not suitable for creating <SPAN
+>. Click on this tab and you 
+	will see three buttons, <SPAN
 CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
->Domain Policies</I
+>Permissions</I
 ></SPAN
->. 
-	Further, although the Windows 95 
-	Policy Editor can be installed on an NT Workstation/Server, it will not
-	work with NT policies because the registry key that are set by the policy templates. 
-	However, the files from the NT Server will run happily enough on an NTws. 	
-	You need <TT
-CLASS="FILENAME"
->poledit.exe, common.adm</TT
-> and <TT
-CLASS="FILENAME"
->winnt.adm</TT
->. It is convenient
-	to put the two *.adm files in <TT
-CLASS="FILENAME"
->c:\winnt\inf</TT
-> which is where
-	the binary will look for them unless told otherwise. Note also that that 
-	directory is 'hidden'.
-	</P
-><P
->	The Windows NT policy editor is also included with the Service Pack 3 (and 
-	later) for Windows NT 4.0. Extract the files using <B
-CLASS="COMMAND"
->servicepackname /x</B
->, 
-	i.e. that's <B
-CLASS="COMMAND"
->Nt4sp6ai.exe /x</B
-> for service pack 6a.  The policy editor, 
-	<B
-CLASS="COMMAND"
->poledit.exe</B
-> and the associated template files (*.adm) should
-	be extracted as well.  It is also possible to downloaded the policy template 
-	files for Office97 and get a copy of the policy editor.  Another possible 
-	location is with the Zero Administration Kit available for download from Microsoft.
-	</P
-></LI
-><LI
-><P
->	<SPAN
+>, 	
+	<SPAN
 CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
->Can Win95 do Policies?</I
+>Auditing</I
+></SPAN
+>, and <SPAN
+CLASS="emphasis"
+><I
+CLASS="EMPHASIS"
+>Ownership</I
 ></SPAN
->
-	</P
-><P
->	Install the group policy handler for Win9x to pick up group 
-	policies.   Look on the Win98 CD in <TT
-CLASS="FILENAME"
->\tools\reskit\netadmin\poledit</TT
 >. 
-	Install group policies on a Win9x client by double-clicking 
-	<TT
-CLASS="FILENAME"
->grouppol.inf</TT
->. Log off and on again a couple of 
-	times and see if Win98 picks up group policies.  Unfortunately this needs 
-	to be done on every Win9x machine that uses group policies....
-	</P
-><P
->	If group policies don't work one reports suggests getting the updated 
-	(read: working) grouppol.dll for Windows 9x. The group list is grabbed 
-	from /etc/group.
-	</P
-></LI
-><LI
-><P
->	<SPAN
+	The <SPAN
 CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
->How do I get 'User Manager' and 'Server Manager'</I
+>Auditing</I
 ></SPAN
->
-	</P
-><P
->	Since I don't need to buy an NT Server CD now, how do I get 
-	the 'User Manager for Domains', the 'Server Manager'?
-	</P
+> button will cause either 
+	an error message <SPAN
+CLASS="ERRORNAME"
+>A requested privilege is not held 
+	by the client</SPAN
+> to appear if the user is not the 
+	NT Administrator, or a dialog which is intended to allow an 
+	Administrator to add auditing requirements to a file if the 
+	user is logged on as the NT Administrator. This dialog is 
+	non-functional with a Samba share at this time, as the only 
+	useful button, the <B
+CLASS="COMMAND"
+>Add</B
+> button will not currently 
+	allow a list of users to be seen.</P
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
+><A
+NAME="AEN742"
+></A
+>6.3. Viewing file ownership</H2
 ><P
->	Microsoft distributes a version of these tools called nexus for 
-	installation on Windows 95 systems.  The tools set includes
-	</P
+>Clicking on the <B
+CLASS="COMMAND"
+>"Ownership"</B
+> button 
+	brings up a dialog box telling you who owns the given file. The 
+	owner name will be of the form :</P
 ><P
+><B
+CLASS="COMMAND"
+>"SERVER\user (Long name)"</B
 ></P
-><UL
-><LI
-><P
->Server Manager</P
-></LI
-><LI
 ><P
->User Manager for Domains</P
-></LI
-><LI
-><P
->Event Viewer</P
-></LI
-></UL
-><P
->	Click here to download the archived file <A
-HREF="ftp://ftp.microsoft.com/Softlib/MSLFILES/NEXUS.EXE"
-TARGET="_top"
->ftp://ftp.microsoft.com/Softlib/MSLFILES/NEXUS.EXE</A
+>Where <TT
+CLASS="REPLACEABLE"
+><I
+>SERVER</I
+></TT
+> is the NetBIOS name of 
+	the Samba server, <TT
+CLASS="REPLACEABLE"
+><I
+>user</I
+></TT
+> is the user name of 
+	the UNIX user who owns the file, and <TT
+CLASS="REPLACEABLE"
+><I
+>(Long name)</I
+></TT
 >
-	</P
+	is the descriptive string identifying the user (normally found in the
+	GECOS field of the UNIX password database). Click on the <B
+CLASS="COMMAND"
+>Close
+	</B
+> button to remove this dialog.</P
 ><P
->	The Windows NT 4.0 version of the 'User Manager for 
-	Domains' and 'Server Manager' are available from Microsoft via ftp 
-	from <A
-HREF="ftp://ftp.microsoft.com/Softlib/MSLFILES/SRVTOOLS.EXE"
-TARGET="_top"
->ftp://ftp.microsoft.com/Softlib/MSLFILES/SRVTOOLS.EXE</A
+>If the parameter <TT
+CLASS="PARAMETER"
+><I
+>nt acl support</I
+></TT
 >
-	</P
-></LI
-></UL
+	is set to <TT
+CLASS="CONSTANT"
+>false</TT
+> then the file owner will 
+	be shown as the NT user <B
+CLASS="COMMAND"
+>"Everyone"</B
+>.</P
+><P
+>The <B
+CLASS="COMMAND"
+>Take Ownership</B
+> button will not allow 
+	you to change the ownership of this file to yourself (clicking on 
+	it will display a dialog box complaining that the user you are 
+	currently logged onto the NT client cannot be found). The reason 
+	for this is that changing the ownership of a file is a privileged 
+	operation in UNIX, available only to the <SPAN
+CLASS="emphasis"
+><I
+CLASS="EMPHASIS"
+>root</I
+></SPAN
+> 
+	user. As clicking on this button causes NT to attempt to change 
+	the ownership of a file to the current user logged into the NT 
+	client this will not work with Samba at this time.</P
+><P
+>There is an NT chown command that will work with Samba 
+	and allow a user with Administrator privilege connected 
+	to a Samba 2.0.4 server as root to change the ownership of 
+	files on both a local NTFS filesystem or remote mounted NTFS 
+	or Samba drive. This is available as part of the <SPAN
+CLASS="emphasis"
+><I
+CLASS="EMPHASIS"
+>Seclib
+	</I
+></SPAN
+> NT security library written by Jeremy Allison of 
+	the Samba Team, available from the main Samba ftp site.</P
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN830"
+NAME="AEN762"
 ></A
->6.7. What other help can I get?</H2
+>6.4. Viewing file or directory permissions</H2
 ><P
->There are many sources of information available in the form 
-of mailing lists, RFC's and documentation.  The docs that come 
-with the samba distribution contain very good explanations of 
-general SMB topics such as browsing.</P
+>The third button is the <B
+CLASS="COMMAND"
+>"Permissions"</B
+> 
+	button. Clicking on this brings up a dialog box that shows both 
+	the permissions and the UNIX owner of the file or directory. 
+	The owner is displayed in the form :</P
 ><P
+><B
+CLASS="COMMAND"
+>"SERVER\user (Long name)"</B
 ></P
-><UL
-><LI
 ><P
->	<SPAN
-CLASS="emphasis"
+>Where <TT
+CLASS="REPLACEABLE"
 ><I
-CLASS="EMPHASIS"
->What are some diagnostics tools I can use to debug the domain logon 
-	process and where can I	find them?</I
-></SPAN
+>SERVER</I
+></TT
+> is the NetBIOS name of 
+	the Samba server, <TT
+CLASS="REPLACEABLE"
+><I
+>user</I
+></TT
+> is the user name of 
+	the UNIX user who owns the file, and <TT
+CLASS="REPLACEABLE"
+><I
+>(Long name)</I
+></TT
 >
-	</P
-><P
->	One of the best diagnostic tools for debugging problems is Samba itself.  
-	You can use the -d option for both smbd and nmbd to specify what 
-	'debug level' at which to run.  See the man pages on smbd, nmbd  and 
-	smb.conf for more information on debugging options.  The debug 
-	level can range from 1 (the default) to 10 (100 for debugging passwords).
-	</P
+	is the descriptive string identifying the user (normally found in the
+	GECOS field of the UNIX password database).</P
 ><P
->	Another helpful method of debugging is to compile samba using the 
-	<B
+>If the parameter <TT
+CLASS="PARAMETER"
+><I
+>nt acl support</I
+></TT
+>
+	is set to <TT
+CLASS="CONSTANT"
+>false</TT
+> then the file owner will 
+	be shown as the NT user <B
 CLASS="COMMAND"
->gcc -g </B
-> flag.   This will include debug 
-	information in the binaries and allow you to attach gdb to the 
-	running smbd / nmbd process.  In order to attach gdb to an smbd 
-	process for an NT workstation, first get the workstation to make the 
-	connection. Pressing ctrl-alt-delete and going down to the domain box 
-	is sufficient (at least, on the first time you join the domain) to 
-	generate a 'LsaEnumTrustedDomains'. Thereafter, the workstation 
-	maintains an open connection, and therefore there will be an smbd 
-	process running (assuming that you haven't set a really short smbd 
-	idle timeout)  So, in between pressing ctrl alt delete, and actually 
-	typing in your password, you can gdb attach and continue.
-	</P
+>"Everyone"</B
+> and the 
+	permissions will be shown as NT "Full Control".</P
 ><P
->	Some useful samba commands worth investigating:
-	</P
+>The permissions field is displayed differently for files 
+	and directories, so I'll describe the way file permissions 
+	are displayed first.</P
+><DIV
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
+><A
+NAME="AEN777"
+></A
+>6.4.1. File Permissions</H3
 ><P
-></P
-><UL
-><LI
+>The standard UNIX user/group/world triple and 
+		the corresponding "read", "write", "execute" permissions 
+		triples are mapped by Samba into a three element NT ACL 
+		with the 'r', 'w', and 'x' bits mapped into the corresponding 
+		NT permissions. The UNIX world permissions are mapped into 
+		the global NT group <B
+CLASS="COMMAND"
+>Everyone</B
+>, followed 
+		by the list of permissions allowed for UNIX world. The UNIX 
+		owner and group permissions are displayed as an NT 
+		<B
+CLASS="COMMAND"
+>user</B
+> icon and an NT <B
+CLASS="COMMAND"
+>local 
+		group</B
+> icon respectively followed by the list 
+	 	of permissions allowed for the UNIX user and group.</P
 ><P
->testparam | more</P
-></LI
-><LI
+>As many UNIX permission sets don't map into common 
+		NT names such as <B
+CLASS="COMMAND"
+>"read"</B
+>, <B
+CLASS="COMMAND"
+>		"change"</B
+> or <B
+CLASS="COMMAND"
+>"full control"</B
+> then 
+		usually the permissions will be prefixed by the words <B
+CLASS="COMMAND"
+>		"Special Access"</B
+> in the NT display list.</P
 ><P
->smbclient -L //{netbios name of server}</P
-></LI
-></UL
+>But what happens if the file has no permissions allowed 
+		for a particular UNIX user group or world component ? In order 
+		to  allow "no permissions" to be seen and modified then Samba 
+		overloads the NT <B
+CLASS="COMMAND"
+>"Take Ownership"</B
+> ACL attribute 
+		(which has no meaning in UNIX) and reports a component with 
+		no permissions as having the NT <B
+CLASS="COMMAND"
+>"O"</B
+> bit set. 
+		This was chosen of course to make it look like a zero, meaning 
+		zero permissions. More details on the decision behind this will 
+		be given below.</P
+></DIV
+><DIV
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
+><A
+NAME="AEN791"
+></A
+>6.4.2. Directory Permissions</H3
 ><P
->	An SMB enabled version of tcpdump is available from 
-	<A
-HREF="http://www.tcpdump.org/"
-TARGET="_top"
->http://www.tcpdup.org/</A
->.
-	Ethereal, another good packet sniffer for Unix and Win32
-	hosts, can be downloaded from <A
-HREF="http://www.ethereal.com/"
-TARGET="_top"
->http://www.ethereal.com</A
->.
-	</P
+>Directories on an NT NTFS file system have two 
+		different sets of permissions. The first set of permissions 
+		is the ACL set on the directory itself, this is usually displayed 
+		in the first set of parentheses in the normal <B
+CLASS="COMMAND"
+>"RW"</B
+> 
+		NT style. This first set of permissions is created by Samba in 
+		exactly the same way as normal file permissions are, described 
+		above, and is displayed in the same way.</P
 ><P
->	For tracing things on the Microsoft Windows NT, Network Monitor 
-	(aka. netmon) is available on the Microsoft Developer Network CD's, 
-	the Windows NT Server install CD and the SMS CD's.  The version of 
-	netmon that ships with SMS allows for dumping packets between any two 
-	computers (i.e. placing the network interface in promiscuous mode).  
-	The version on the NT Server install CD will only allow monitoring 
-	of network traffic directed to the local NT box and broadcasts on the 
-	local subnet.  Be aware that Ethereal can read and write netmon 
-	formatted files.
-	</P
-></LI
-><LI
+>The second set of directory permissions has no real meaning 
+		in the UNIX permissions world and represents the <B
+CLASS="COMMAND"
+>		"inherited"</B
+> permissions that any file created within 
+		this directory would inherit.</P
 ><P
->	<SPAN
-CLASS="emphasis"
+>Samba synthesises these inherited permissions for NT by 
+		returning as an NT ACL the UNIX permission mode that a new file 
+		created by Samba on this share would receive.</P
+></DIV
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
+><A
+NAME="AEN798"
+></A
+>6.5. Modifying file or directory permissions</H2
+><P
+>Modifying file and directory permissions is as simple 
+	as changing the displayed permissions in the dialog box, and 
+	clicking the <B
+CLASS="COMMAND"
+>OK</B
+> button. However, there are 
+	limitations that a user needs to be aware of, and also interactions 
+	with the standard Samba permission masks and mapping of DOS 
+	attributes that need to also be taken into account.</P
+><P
+>If the parameter <TT
+CLASS="PARAMETER"
 ><I
-CLASS="EMPHASIS"
->How do I install 'Network Monitor' on an NT Workstation 
-	or a Windows 9x box?</I
-></SPAN
+>nt acl support</I
+></TT
 >
-	</P
+	is set to <TT
+CLASS="CONSTANT"
+>false</TT
+> then any attempt to set 
+	security permissions will fail with an <B
+CLASS="COMMAND"
+>"Access Denied"
+	</B
+> message.</P
 ><P
->	Installing netmon on an NT workstation requires a couple 
-	of steps.  The following are for installing Netmon V4.00.349, which comes 
-	with Microsoft Windows NT Server 4.0, on Microsoft Windows NT 
-	Workstation 4.0.  The process should be similar for other version of 
-	Windows NT / Netmon.  You will need both the Microsoft Windows 
-	NT Server 4.0 Install CD and the Workstation 4.0 Install CD.
-	</P
+>The first thing to note is that the <B
+CLASS="COMMAND"
+>"Add"</B
+> 
+	button will not return a list of users in Samba 2.0.4 (it will give 
+	an error message of <B
+CLASS="COMMAND"
+>"The remote procedure call failed 
+	and did not execute"</B
+>). This means that you can only 
+	manipulate the current user/group/world permissions listed in 
+	the dialog box. This actually works quite well as these are the 
+	only permissions that UNIX actually has.</P
 ><P
->	Initially you will need to install 'Network Monitor Tools and Agent' 
-	on the NT Server.  To do this 
-	</P
+>If a permission triple (either user, group, or world) 
+	is removed from the list of permissions in the NT dialog box, 
+	then when the <B
+CLASS="COMMAND"
+>"OK"</B
+> button is pressed it will 
+	be applied as "no permissions" on the UNIX side. If you then 
+	view the permissions again the "no permissions" entry will appear 
+	as the NT <B
+CLASS="COMMAND"
+>"O"</B
+> flag, as described above. This 
+	allows you to add permissions back to a file or directory once 
+	you have removed them from a triple component.</P
 ><P
-></P
-><UL
-><LI
+>As UNIX supports only the "r", "w" and "x" bits of 
+	an NT ACL then if other NT security attributes such as "Delete 
+	access" are selected then they will be ignored when applied on 
+	the Samba server.</P
 ><P
->Goto Start - Settings - Control Panel - 
-		Network - Services - Add </P
-></LI
-><LI
+>When setting permissions on a directory the second 
+	set of permissions (in the second set of parentheses) is 
+	by default applied to all files within that directory. If this 
+	is not what you want you must uncheck the <B
+CLASS="COMMAND"
+>"Replace 
+	permissions on existing files"</B
+> checkbox in the NT 
+	dialog before clicking <B
+CLASS="COMMAND"
+>"OK"</B
+>.</P
 ><P
->Select the 'Network Monitor Tools and Agent' and 
-		click on 'OK'.</P
-></LI
-><LI
+>If you wish to remove all permissions from a 
+	user/group/world  component then you may either highlight the 
+	component and click the <B
+CLASS="COMMAND"
+>"Remove"</B
+> button, 
+	or set the component to only have the special <B
+CLASS="COMMAND"
+>"Take
+	Ownership"</B
+> permission (displayed as <B
+CLASS="COMMAND"
+>"O"
+	</B
+>) highlighted.</P
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
+><A
+NAME="AEN820"
+></A
+>6.6. Interaction with the standard Samba create mask 
+	parameters</H2
 ><P
->Click 'OK' on the Network Control Panel.
-		</P
-></LI
-><LI
+>Note that with Samba 2.0.5 there are four new parameters 
+	to control this interaction.  These are :</P
 ><P
->Insert the Windows NT Server 4.0 install CD 
-		when prompted.</P
-></LI
-></UL
+><TT
+CLASS="PARAMETER"
+><I
+>security mask</I
+></TT
+></P
 ><P
->	At this point the Netmon files should exist in 
-	<TT
-CLASS="FILENAME"
->%SYSTEMROOT%\System32\netmon\*.*</TT
->.    
-	Two subdirectories exist as well, <TT
-CLASS="FILENAME"
->parsers\</TT
-> 
-	which contains the necessary DLL's for parsing the netmon packet 
-	dump, and <TT
-CLASS="FILENAME"
->captures\</TT
->.
-	</P
+><TT
+CLASS="PARAMETER"
+><I
+>force security mode</I
+></TT
+></P
 ><P
->	In order to install the Netmon tools on an NT Workstation, you will 
-	first need to install the 'Network  Monitor Agent' from the Workstation 
-	install CD.
-	</P
+><TT
+CLASS="PARAMETER"
+><I
+>directory security mask</I
+></TT
+></P
 ><P
+><TT
+CLASS="PARAMETER"
+><I
+>force directory security mode</I
+></TT
 ></P
-><UL
-><LI
 ><P
->Goto Start - Settings - Control Panel - 
-		Network - Services - Add</P
-></LI
-><LI
+>Once a user clicks <B
+CLASS="COMMAND"
+>"OK"</B
+> to apply the 
+	permissions Samba maps the given permissions into a user/group/world 
+	r/w/x triple set, and then will check the changed permissions for a 
+	file against the bits set in the <A
+HREF="smb.conf.5.html#SECURITYMASK"
+TARGET="_top"
+> 
+	<TT
+CLASS="PARAMETER"
+><I
+>security mask</I
+></TT
+></A
+> parameter. Any bits that 
+	were changed that are not set to '1' in this parameter are left alone 
+	in the file permissions.</P
 ><P
->Select the 'Network Monitor Agent' and click 
-		on 'OK'.</P
-></LI
-><LI
+>Essentially, zero bits in the <TT
+CLASS="PARAMETER"
+><I
+>security mask</I
+></TT
+>
+	mask may be treated as a set of bits the user is <SPAN
+CLASS="emphasis"
+><I
+CLASS="EMPHASIS"
+>not</I
+></SPAN
+> 
+	allowed to change, and one bits are those the user is allowed to change.
+	</P
 ><P
->Click 'OK' on the Network Control Panel.
-		</P
-></LI
-><LI
-><P
->Insert the Windows NT Workstation 4.0 install 
-		CD when prompted.</P
-></LI
-></UL
+>If not set explicitly this parameter is set to the same value as 
+	the <A
+HREF="smb.conf.5.html#CREATEMASK"
+TARGET="_top"
+><TT
+CLASS="PARAMETER"
+><I
+>create mask
+	</I
+></TT
+></A
+> parameter to provide compatibility with Samba 2.0.4 
+	where this permission change facility was introduced. To allow a user to 
+	modify all the user/group/world permissions on a file, set this parameter 
+	to 0777.</P
 ><P
->	Now copy the files from the NT Server in %SYSTEMROOT%\System32\netmon\*.* 
-	to %SYSTEMROOT%\System32\netmon\*.* on the Workstation and set 
-	permissions as  you deem appropriate for your site. You will need 
-	administrative rights on the NT box to run netmon.
-	</P
+>Next Samba checks the changed permissions for a file against 
+	the bits set in the <A
+HREF="smb.conf.5.html#FORCESECURITYMODE"
+TARGET="_top"
+>	<TT
+CLASS="PARAMETER"
+><I
+>force security mode</I
+></TT
+></A
+> parameter. Any bits 
+	that were changed that correspond to bits set to '1' in this parameter 
+	are forced to be set.</P
 ><P
->	To install Netmon on a Windows 9x box install the network monitor agent 
-	from the Windows 9x CD (\admin\nettools\netmon).  There is a readme 
-	file located with the netmon driver files on the CD if you need 
-	information on how to do this.  Copy the files from a working 
-	Netmon installation.
-	</P
-></LI
-><LI
+>Essentially, bits set in the <TT
+CLASS="PARAMETER"
+><I
+>force security mode
+	</I
+></TT
+> parameter may be treated as a set of bits that, when 
+	modifying security on a file, the user has always set to be 'on'.</P
 ><P
->	The following is a list if helpful URLs and other links:
-	</P
+>If not set explicitly this parameter is set to the same value 
+	as the <A
+HREF="smb.conf.5.html#FORCECREATEMODE"
+TARGET="_top"
+><TT
+CLASS="PARAMETER"
+><I
+>force 
+	create mode</I
+></TT
+></A
+> parameter to provide compatibility
+	with Samba 2.0.4 where the permission change facility was introduced.
+	To allow a user to modify all the user/group/world permissions on a file
+	with no restrictions set this parameter to 000.</P
 ><P
-></P
-><UL
-><LI
+>The <TT
+CLASS="PARAMETER"
+><I
+>security mask</I
+></TT
+> and <TT
+CLASS="PARAMETER"
+><I
+>force 
+	security mode</I
+></TT
+> parameters are applied to the change 
+	request in that order.</P
 ><P
->Home of Samba site <A
-HREF="http://samba.org"
-TARGET="_top"
->        http://samba.org</A
->. We have a mirror near you !</P
-></LI
-><LI
+>For a directory Samba will perform the same operations as 
+	described above for a file except using the parameter <TT
+CLASS="PARAMETER"
+><I
+>	directory security mask</I
+></TT
+> instead of <TT
+CLASS="PARAMETER"
+><I
+>security 
+	mask</I
+></TT
+>, and <TT
+CLASS="PARAMETER"
+><I
+>force directory security mode
+	</I
+></TT
+> parameter instead of <TT
+CLASS="PARAMETER"
+><I
+>force security mode
+	</I
+></TT
+>.</P
 ><P
-> The <SPAN
-CLASS="emphasis"
+>The <TT
+CLASS="PARAMETER"
 ><I
-CLASS="EMPHASIS"
->Development</I
-></SPAN
-> document 
-	on the Samba mirrors might mention your problem. If so,
-	it might mean that the developers are working on it.</P
-></LI
-><LI
+>directory security mask</I
+></TT
+> parameter 
+	by default is set to the same value as the <TT
+CLASS="PARAMETER"
+><I
+>directory mask
+	</I
+></TT
+> parameter and the <TT
+CLASS="PARAMETER"
+><I
+>force directory security 
+	mode</I
+></TT
+> parameter by default is set to the same value as 
+ 	the <TT
+CLASS="PARAMETER"
+><I
+>force directory mode</I
+></TT
+> parameter to provide 
+	compatibility with Samba 2.0.4 where the permission change facility 
+	was introduced.</P
 ><P
->See how Scott Merrill simulates a BDC behavior at 
-        <A
-HREF="http://www.skippy.net/linux/smb-howto.html"
-TARGET="_top"
->        http://www.skippy.net/linux/smb-howto.html</A
->. </P
-></LI
-><LI
+>In this way Samba enforces the permission restrictions that 
+	an administrator can set on a Samba share, whilst still allowing users 
+	to modify the permission bits within that restriction.</P
 ><P
->Although 2.0.7 has almost had its day as a PDC, David Bannon will
-        keep the 2.0.7 PDC pages at <A
-HREF="http://bioserve.latrobe.edu.au/samba"
+>If you want to set up a share that allows users full control
+	in modifying the permission bits on their files and directories and
+	doesn't force any particular bits to be set 'on', then set the following
+	parameters in the <A
+HREF="smb.conf.5.html"
 TARGET="_top"
->        http://bioserve.latrobe.edu.au/samba</A
-> going for a while yet.</P
-></LI
-><LI
+><TT
+CLASS="FILENAME"
+>smb.conf(5)
+	</TT
+></A
+> file in that share specific section :</P
 ><P
->Misc links to CIFS information 
-        <A
-HREF="http://samba.org/cifs/"
-TARGET="_top"
->http://samba.org/cifs/</A
+><TT
+CLASS="PARAMETER"
+><I
+>security mask = 0777</I
+></TT
 ></P
-></LI
-><LI
 ><P
->NT Domains for Unix <A
-HREF="http://mailhost.cb1.com/~lkcl/ntdom/"
-TARGET="_top"
->        http://mailhost.cb1.com/~lkcl/ntdom/</A
+><TT
+CLASS="PARAMETER"
+><I
+>force security mode = 0</I
+></TT
 ></P
-></LI
-><LI
 ><P
->FTP site for older SMB specs: 
-        <A
-HREF="ftp://ftp.microsoft.com/developr/drg/CIFS/"
-TARGET="_top"
->        ftp://ftp.microsoft.com/developr/drg/CIFS/</A
+><TT
+CLASS="PARAMETER"
+><I
+>directory security mask = 0777</I
+></TT
 ></P
-></LI
-></UL
-></LI
-></UL
 ><P
+><TT
+CLASS="PARAMETER"
+><I
+>force directory security mode = 0</I
+></TT
 ></P
-><UL
-><LI
 ><P
->	<SPAN
-CLASS="emphasis"
+>As described, in Samba 2.0.4 the parameters :</P
+><P
+><TT
+CLASS="PARAMETER"
 ><I
-CLASS="EMPHASIS"
->How do I get help from the mailing lists?</I
-></SPAN
->
-	</P
+>create mask</I
+></TT
+></P
 ><P
->	There are a number of Samba related mailing lists. Go to <A
-HREF="http://samba.org"
-TARGET="_top"
->http://samba.org</A
->, click on your nearest mirror
-	and then click on <B
-CLASS="COMMAND"
->Support</B
-> and then click on <B
-CLASS="COMMAND"
->	Samba related mailing lists</B
->.
-	</P
+><TT
+CLASS="PARAMETER"
+><I
+>force create mode</I
+></TT
+></P
 ><P
->	For questions relating to Samba TNG go to
-	<A
-HREF="http://www.samba-tng.org/"
-TARGET="_top"
->http://www.samba-tng.org/</A
-> 
-	It has been requested that you don't post questions about Samba-TNG to the
-	main stream Samba lists.</P
+><TT
+CLASS="PARAMETER"
+><I
+>directory mask</I
+></TT
+></P
 ><P
->	If you post a message to one of the lists please observe the following guide lines :
+><TT
+CLASS="PARAMETER"
+><I
+>force directory mode</I
+></TT
+></P
+><P
+>were used instead of the parameters discussed here.</P
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
+><A
+NAME="AEN884"
+></A
+>6.7. Interaction with the standard Samba file attribute 
+	mapping</H2
+><P
+>Samba maps some of the DOS attribute bits (such as "read 
+	only") into the UNIX permissions of a file. This means there can 
+	be a conflict between the permission bits set via the security 
+	dialog and the permission bits set by the file attribute mapping.
 	</P
 ><P
-></P
-><UL
-><LI
+>One way this can show up is if a file has no UNIX read access
+	for the owner it will show up as "read only" in the standard 
+	file attributes tabbed dialog. Unfortunately this dialog is
+	the same one that contains the security info in another tab.</P
 ><P
-> Always remember that the developers are volunteers, they are 
-		not paid and they never guarantee to produce a particular feature at 
-		a particular time. Any time lines are 'best guess' and nothing more.
-		</P
-></LI
-><LI
+>What this can mean is that if the owner changes the permissions
+	to allow themselves read access using the security dialog, clicks
+	<B
+CLASS="COMMAND"
+>"OK"</B
+> to get back to the standard attributes tab 
+	dialog, and then clicks <B
+CLASS="COMMAND"
+>"OK"</B
+> on that dialog, then 
+	NT will set the file permissions back to read-only (as that is what 
+	the attributes still say in the dialog). This means that after setting 
+	permissions and clicking <B
+CLASS="COMMAND"
+>"OK"</B
+> to get back to the 
+	attributes dialog you should always hit <B
+CLASS="COMMAND"
+>"Cancel"</B
+> 
+	rather than <B
+CLASS="COMMAND"
+>"OK"</B
+> to ensure that your changes 
+	are not overridden.</P
+></DIV
+></DIV
+><DIV
+CLASS="CHAPTER"
+><HR><H1
+><A
+NAME="PRINTING"
+></A
+>Chapter 7. Printing Support in Samba 2.2.x</H1
+><DIV
+CLASS="SECT1"
+><H2
+CLASS="SECT1"
+><A
+NAME="AEN905"
+></A
+>7.1. Introduction</H2
 ><P
-> Always mention what version of samba you are using and what 
-		operating system its running under. You should probably list the
-        relevant sections of your smb.conf file, at least the options 
-        in [global] that affect PDC support.</P
-></LI
-><LI
+>Beginning with the 2.2.0 release, Samba supports 
+the native Windows NT printing mechanisms implemented via 
+MS-RPC (i.e. the SPOOLSS named pipe).  Previous versions of 
+Samba only supported LanMan printing calls.</P
 ><P
->In addition to the version, if you obtained Samba via
-        CVS mention the date when you last checked it out.</P
-></LI
-><LI
+>The additional functionality provided by the new 
+SPOOLSS support includes:</P
 ><P
-> Try and make your question clear and brief, lots of long, 
-		convoluted questions get deleted before	they are completely read ! 
-		Don't post html encoded messages (if you can select colour or font 
-		size its html).</P
-></LI
+></P
+><UL
 ><LI
 ><P
-> If you run one of those nifty 'I'm on holidays' things when 
-		you are away, make sure its configured	to not answer mailing lists.
-		</P
+>Support for downloading printer driver 
+	files to Windows 95/98/NT/2000 clients upon demand.
+	</P
 ></LI
 ><LI
 ><P
-> Don't cross post. Work out which is the best list to post to 
-		and see what happens, i.e. don't post to both samba-ntdom and samba-technical.
-        Many people active on the lists subscribe to more 
-		than one list and get annoyed to see the same message two or more times. 
-		Often someone will see a message and thinking it would be better dealt 
-		with on another, will forward it on for you.</P
+>Uploading of printer drivers via the 
+	Windows NT Add Printer Wizard (APW) or the 
+	Imprints tool set (refer to <A
+HREF="http://imprints.sourceforge.net"
+TARGET="_top"
+>http://imprints.sourceforge.net</A
+>). 
+	</P
 ></LI
 ><LI
 ><P
->You might include <SPAN
-CLASS="emphasis"
-><I
-CLASS="EMPHASIS"
->partial</I
-></SPAN
->
-        log files written at a debug level set to as much as 20.  
-        Please don't send the entire log but enough to give the context of the 
-        error messages.</P
+>Support for the native MS-RPC printing 
+	calls such as StartDocPrinter, EnumJobs(), etc...  (See 
+	the MSDN documentation at <A
+HREF="http://msdn.microsoft.com/"
+TARGET="_top"
+>http://msdn.microsoft.com/</A
+> 
+	for more information on the Win32 printing API)
+	</P
 ></LI
 ><LI
 ><P
->(Possibly) If you have a complete netmon trace ( from the opening of 
-        the pipe to the error ) you can send the *.CAP file as well.</P
+>Support for NT Access Control Lists (ACL) 
+	on printer objects</P
 ></LI
 ><LI
 ><P
->Please think carefully before attaching a document to an email.
-        Consider pasting the relevant parts into the body of the message. The samba
-        mailing lists go to a huge number of people, do they all need a copy of your 
-        smb.conf in their attach directory?</P
+>Improved support for printer queue manipulation 
+	through the use of an internal databases for spooled job 
+	information</P
 ></LI
 ></UL
-></LI
-><LI
 ><P
->	<SPAN
+>There has been some initial confusion about what all this means
+and whether or not it is a requirement for printer drivers to be 
+installed on a Samba host in order to support printing from Windows 
+clients.  A bug existed in Samba 2.2.0 which made Windows NT/2000 clients 
+require that the Samba server possess a valid driver for the printer.  
+This is fixed in Samba 2.2.1 and once again, Windows NT/2000 clients
+can use the local APW for installing drivers to be used with a Samba 
+served printer.  This is the same behavior exhibited by Windows 9x clients.
+As a side note, Samba does not use these drivers in any way to process 
+spooled files.  They are utilized entirely by the clients.</P
+><P
+>The following MS KB article, may be of some help if you are dealing with
+Windows 2000 clients:  <SPAN
 CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
->How do I get off the mailing lists?</I
+>How to Add Printers with No User 
+Interaction in Windows 2000</I
 ></SPAN
->
-	</P
+></P
 ><P
->To have your name removed from a samba mailing list, go to the
-	same place you went to to get on it. Go to <A
-HREF="http://lists.samba.org/"
-TARGET="_top"
->http://lists.samba.org</A
->, 
-	click on your nearest mirror and then click on <B
-CLASS="COMMAND"
->Support</B
-> and 
-	then click on <B
-CLASS="COMMAND"
-> Samba related mailing lists</B
->. Or perhaps see 
-	<A
-HREF="http://lists.samba.org/mailman/roster/samba-ntdom"
+><A
+HREF="http://support.microsoft.com/support/kb/articles/Q189/1/05.ASP"
 TARGET="_top"
->here</A
->
-	</P
-><P
->	Please don't post messages to the list asking to be removed, you will just
-	be referred to the above address (unless that process failed in some way...)
-	</P
-></LI
-></UL
+>http://support.microsoft.com/support/kb/articles/Q189/1/05.ASP</A
+></P
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN944"
+NAME="AEN927"
 ></A
->6.8. Domain Control for Windows 9x/ME</H2
+>7.2. Configuration</H2
 ><DIV
-CLASS="NOTE"
+CLASS="WARNING"
 ><P
 ></P
 ><TABLE
-CLASS="NOTE"
+CLASS="WARNING"
 WIDTH="100%"
 BORDER="0"
 ><TR
@@ -5442,144 +5209,207 @@ WIDTH="25"
 ALIGN="CENTER"
 VALIGN="TOP"
 ><IMG
-SRC="/docbook-dsssl/note.gif"
+SRC="/docbook-dsssl/warning.gif"
 HSPACE="5"
-ALT="Note"></TD
+ALT="Warning"></TD
+><TH
+ALIGN="LEFT"
+VALIGN="CENTER"
+><B
+>[print$] vs. [printer$]</B
+></TH
+></TR
+><TR
+><TD
+>&nbsp;</TD
 ><TD
 ALIGN="LEFT"
 VALIGN="TOP"
 ><P
->The following section contains much of the original 
-DOMAIN.txt file previously included with Samba.  Much of 
-the material is based on what went into the book <SPAN
-CLASS="emphasis"
-><I
-CLASS="EMPHASIS"
->Special 
-Edition, Using Samba</I
-></SPAN
->, by Richard Sharpe.</P
-></TD
-></TR
-></TABLE
-></DIV
+>Previous versions of Samba recommended using a share named [printer$].  
+This name was taken from the printer$ service created by Windows 9x 
+clients when a printer was shared.  Windows 9x printer servers always have 
+a printer$ service which provides read-only access via no 
+password in order to support printer driver downloads.</P
 ><P
->A domain and a workgroup are exactly the same thing in terms of network
-browsing.  The difference is that a distributable authentication
-database is associated with a domain, for secure login access to a
-network.  Also, different access rights can be granted to users if they
-successfully authenticate against a domain logon server (NT server and 
-other systems based on NT server support this, as does at least Samba TNG now).</P
-><P
->The SMB client logging on to a domain has an expectation that every other
-server in the domain should accept the same authentication information.
-Network browsing functionality of domains and workgroups is
-identical and is explained in BROWSING.txt. It should be noted, that browsing
-is totally orthogonal to logon support.</P
-><P
->Issues related to the single-logon network model are discussed in this
-section.  Samba supports domain logons, network logon scripts, and user
-profiles for MS Windows for workgroups and MS Windows 9X/ME clients
-which will be the focus of this section.</P
-><P
->When an SMB client in a domain wishes to logon it broadcast requests for a
-logon server.  The first one to reply gets the job, and validates its
-password using whatever mechanism the Samba administrator has installed.
-It is possible (but very stupid) to create a domain where the user
-database is not shared between servers, i.e. they are effectively workgroup
-servers advertising themselves as participating in a domain.  This
-demonstrates how authentication is quite different from but closely
-involved with domains.</P
-><P
->Using these features you can make your clients verify their logon via
-the Samba server; make clients run a batch file when they logon to
-the network and download their preferences, desktop and start menu.</P
-><P
->Before launching into the configuration instructions, it is 
-worthwhile lookingat how a Windows 9x/ME client performs a logon:</P
-><P
-></P
-><OL
-TYPE="1"
-><LI
-><P
->	The client broadcasts (to the IP broadcast address of the subnet it is in)
-	a NetLogon request. This is sent to the NetBIOS name DOMAIN&#60;1c&#62; at the
-	NetBIOS layer.  The client chooses the first response it receives, which
-	contains the NetBIOS name of the logon server to use in the format of 
-	\\SERVER.
-	</P
-></LI
-><LI
-><P
->	The client then connects to that server, logs on (does an SMBsessetupX) and
-	then connects to the IPC$ share (using an SMBtconX).
-	</P
-></LI
-><LI
-><P
->	The client then does a NetWkstaUserLogon request, which retrieves the name
-	of the user's logon script. 
-	</P
-></LI
-><LI
-><P
->	The client then connects to the NetLogon share and searches for this 	
-	and if it is found and can be read, is retrieved and executed by the client.
-	After this, the client disconnects from the NetLogon share.
-	</P
-></LI
-><LI
-><P
->	The client then sends a NetUserGetInfo request to the server, to retrieve
-	the user's home share, which is used to search for profiles. Since the
-	response to the NetUserGetInfo request does not contain much more 	
-	the user's home share, profiles for Win9X clients MUST reside in the user
-	home directory.
-	</P
-></LI
-><LI
-><P
->	The client then connects to the user's home share and searches for the 
-	user's profile. As it turns out, you can specify the user's home share as
-	a sharename and path. For example, \\server\fred\.profile.
-	If the profiles are found, they are implemented.
-	</P
-></LI
-><LI
+>However, the initial implementation allowed for a 
+parameter named <TT
+CLASS="PARAMETER"
+><I
+>printer driver location</I
+></TT
+> 
+to be used on a per share basis to specify the location of 
+the driver files associated with that printer.  Another 
+parameter named <TT
+CLASS="PARAMETER"
+><I
+>printer driver</I
+></TT
+> provided 
+a means of defining the printer driver name to be sent to 
+the client.</P
 ><P
->	The client then disconnects from the user's home share, and reconnects to
-	the NetLogon share and looks for CONFIG.POL, the policies file. If this is
-	found, it is read and implemented.
-	</P
-></LI
-></OL
+>These parameters, including <TT
+CLASS="PARAMETER"
+><I
+>printer driver
+file</I
+></TT
+> parameter, are being deprecated and should not 
+be used in new installations.  For more information on this change, 
+you should refer to the <A
+HREF="#MIGRATION"
+>Migration section</A
+>
+of this document.</P
+></TD
+></TR
+></TABLE
+></DIV
 ><DIV
 CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN970"
+NAME="AEN938"
 ></A
->6.8.1. Configuration Instructions:	Network Logons</H3
+>7.2.1. Creating [print$]</H3
 ><P
->The main difference between a PDC and a Windows 9x logon 
-server configuration is that</P
+>In order to support the uploading of printer driver 
+files, you must first configure a file share named [print$].  
+The name of this share is hard coded in Samba's internals so 
+the name is very important (print$ is the service used by 
+Windows NT print servers to provide support for printer driver 
+download).</P
+><P
+>You should modify the server's smb.conf file to add the global
+parameters and to create the 
+following file share (of course, some of the parameter values,
+such as 'path' are arbitrary and should be replaced with
+appropriate values for your site):</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>[global]
+    ; members of the ntadmin group should be able
+    ; to add drivers and set printer properties
+    ; root is implicitly a 'printer admin'
+    printer admin = @ntadmin
+
+[print$]
+    path = /usr/local/samba/printers
+    guest ok = yes
+    browseable = yes
+    read only = yes
+    ; since this share is configured as read only, then we need
+    ; a 'write list'.  Check the file system permissions to make
+    ; sure this account can copy files to the share.  If this
+    ; is setup to a non-root account, then it should also exist
+    ; as a 'printer admin'
+    write list = @ntadmin,root</PRE
+></P
+><P
+>The <A
+HREF="smb.conf.5.html#WRITELIST"
+TARGET="_top"
+><TT
+CLASS="PARAMETER"
+><I
+>write list</I
+></TT
+></A
+> is used to allow administrative 
+level user accounts to have write access in order to update files 
+on the share.  See the <A
+HREF="smb.conf.5.html"
+TARGET="_top"
+>smb.conf(5) 
+man page</A
+> for more information on configuring file shares.</P
+><P
+>The requirement for <A
+HREF="smb.conf.5.html#GUESTOK"
+TARGET="_top"
+><B
+CLASS="COMMAND"
+>guest 
+ok = yes</B
+></A
+> depends upon how your
+site is configured.  If users will be guaranteed to have 
+an account on the Samba host, then this is a non-issue.</P
+><DIV
+CLASS="NOTE"
 ><P
 ></P
-><UL
-><LI
+><TABLE
+CLASS="NOTE"
+WIDTH="100%"
+BORDER="0"
+><TR
+><TD
+WIDTH="25"
+ALIGN="CENTER"
+VALIGN="TOP"
+><IMG
+SRC="/docbook-dsssl/note.gif"
+HSPACE="5"
+ALT="Note"></TD
+><TH
+ALIGN="LEFT"
+VALIGN="CENTER"
+><B
+>Author's Note</B
+></TH
+></TR
+><TR
+><TD
+>&nbsp;</TD
+><TD
+ALIGN="LEFT"
+VALIGN="TOP"
 ><P
->Password encryption is not required for a Windows 9x logon server.</P
-></LI
-><LI
+>The non-issue is that if all your Windows NT users are guaranteed to be 
+authenticated by the Samba server (such as a domain member server and the NT 
+user has already been validated by the Domain Controller in 
+order to logon to the Windows NT console), then guest access 
+is not necessary.  Of course, in a workgroup environment where 
+you just want to be able to print without worrying about 
+silly accounts and security, then configure the share for 
+guest access.  You'll probably want to add <A
+HREF="smb.conf.5.html#MAPTOGUEST"
+TARGET="_top"
+><B
+CLASS="COMMAND"
+>map to guest = Bad User</B
+></A
+> in the [global] section as well.  Make sure 
+you understand what this parameter does before using it 
+though. --jerry</P
+></TD
+></TR
+></TABLE
+></DIV
 ><P
->Windows 9x/ME clients do not possess machine trust accounts.</P
-></LI
-></UL
+>In order for a Windows NT print server to support 
+the downloading of driver files by multiple client architectures,
+it must create subdirectories within the [print$] service
+which correspond to each of the supported client architectures.
+Samba follows this model as well.</P
 ><P
->Therefore, a Samba PDC will also act as a Windows 9x logon 
-server.</P
+>Next create the directory tree below the [print$] share 
+for each architecture you wish to support.</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>[print$]-----
+        |-W32X86           ; "Windows NT x86"
+        |-WIN40            ; "Windows 95/98"
+        |-W32ALPHA         ; "Windows NT Alpha_AXP"
+        |-W32MIPS          ; "Windows NT R4000"
+        |-W32PPC           ; "Windows NT PowerPC"</PRE
+></P
 ><DIV
 CLASS="WARNING"
 ><P
@@ -5601,7 +5431,7 @@ ALT="Warning"></TD
 ALIGN="LEFT"
 VALIGN="CENTER"
 ><B
->security mode and master browsers</B
+>ATTENTION!  REQUIRED PERMISSIONS</B
 ></TH
 ></TR
 ><TR
@@ -5611,531 +5441,666 @@ VALIGN="CENTER"
 ALIGN="LEFT"
 VALIGN="TOP"
 ><P
->There are a few comments to make in order to tie up some 
-loose ends.  There has been much debate over the issue of whether
-or not it is ok to configure Samba as a Domain Controller in security
-modes other than <TT
-CLASS="CONSTANT"
->USER</TT
->.  The only security mode 
-which  will not work due to technical reasons is <TT
-CLASS="CONSTANT"
->SHARE</TT
->
-mode security.  <TT
-CLASS="CONSTANT"
->DOMAIN</TT
-> and <TT
-CLASS="CONSTANT"
->SERVER</TT
->
-mode security is really just a variation on SMB user level security.</P
+>In order to currently add a new driver to you Samba host, 
+one of two conditions must hold true:</P
 ><P
->Actually, this issue is also closely tied to the debate on whether 
-or not Samba must be the domain master browser for its workgroup
-when operating as a DC.  While it may technically be possible
-to configure a server as such (after all, browsing and domain logons
-are two distinctly different functions), it is not a good idea to
-so.  You should remember that the DC must register the DOMAIN#1b NetBIOS 
-name.  This is the name used by Windows clients to locate the DC.
-Windows clients do not distinguish between the DC and the DMB.
-For this reason, it is very wise to configure the Samba DC as the DMB.</P
+></P
+><UL
+><LI
 ><P
->Now back to the issue of configuring a Samba DC to use a mode other
-than "security = user".  If a Samba host is configured to use 
-another SMB server or DC in order to validate user connection 
-requests, then it is a fact that some other machine on the network 
-(the "password server") knows more about user than the Samba host.
-99% of the time, this other host is a domain controller.  Now 
-in order to operate in domain mode security, the "workgroup" parameter
-must be set to the name of the Windows NT domain (which already 
-has a domain controller, right?)</P
+>The account used to connect to the Samba host 
+	must have a uid of 0 (i.e. a root account)</P
+></LI
+><LI
 ><P
->Therefore configuring a Samba box as a DC for a domain that 
-already by definition has a PDC is asking for trouble.
-Therefore, you should always configure the Samba DC to be the DMB
-for its domain.</P
+>The account used to connect to the Samba host
+	must be a member of the <A
+HREF="smb.conf.5.html#PRINTERADMIN"
+TARGET="_top"
+><TT
+CLASS="PARAMETER"
+><I
+>printer 
+	admin</I
+></TT
+></A
+> list.</P
+></LI
+></UL
+><P
+>Of course, the connected account must still possess access
+to add files to the subdirectories beneath [print$]. Remember
+that all file shares are set to 'read only' by default.</P
 ></TD
 ></TR
 ></TABLE
 ></DIV
+><P
+>Once you have created the required [print$] service and 
+associated subdirectories, simply log onto the Samba server using 
+a root (or <TT
+CLASS="PARAMETER"
+><I
+>printer admin</I
+></TT
+>) account
+from a Windows NT 4.0/2k client.  Open "Network Neighbourhood" or
+"My Network Places" and browse for the Samba host.  Once you have located
+the server, navigate to the "Printers..." folder.
+You should see an initial listing of printers
+that matches the printer shares defined on your Samba host.</P
 ></DIV
 ><DIV
 CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN989"
+NAME="AEN973"
 ></A
->6.8.2. Configuration Instructions:	Setting up Roaming User Profiles</H3
-><DIV
-CLASS="WARNING"
+>7.2.2. Setting Drivers for Existing Printers</H3
 ><P
-></P
-><TABLE
-CLASS="WARNING"
-WIDTH="100%"
-BORDER="0"
-><TR
-><TD
-WIDTH="25"
-ALIGN="CENTER"
-VALIGN="TOP"
-><IMG
-SRC="/docbook-dsssl/warning.gif"
-HSPACE="5"
-ALT="Warning"></TD
-><TD
-ALIGN="LEFT"
-VALIGN="TOP"
+>The initial listing of printers in the Samba host's 
+Printers folder will have no real printer driver assigned 
+to them.  By default, in Samba 2.2.0 this driver name was set to 
+<SPAN
+CLASS="emphasis"
+><I
+CLASS="EMPHASIS"
+>NO PRINTER DRIVER AVAILABLE FOR THIS PRINTER</I
+></SPAN
+>.
+Later versions changed this to a NULL string to allow the use
+tof the local Add Printer Wizard on NT/2000 clients.
+Attempting to view the printer properties for a printer
+which has this default driver assigned will result in 
+the error message:</P
 ><P
 ><SPAN
 CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
->NOTE!</I
+>Device settings cannot be displayed.  The driver 
+for the specified printer is not installed, only spooler 
+properties will be displayed.  Do you want to install the 
+driver now?</I
 ></SPAN
-> Roaming profiles support is different 
-for Win9X and WinNT.</P
-></TD
-></TR
-></TABLE
-></DIV
-><P
->Before discussing how to configure roaming profiles, it is useful to see how
-Win9X and WinNT clients implement these features.</P
-><P
->Win9X clients send a NetUserGetInfo request to the server to get the user's
-profiles location. However, the response does not have room for a separate 
-profiles location field, only the user's home share. This means that Win9X 
-profiles are restricted to being in the user's home directory.</P
-><P
->WinNT clients send a NetSAMLogon RPC request, which contains many fields, 
-including a separate field for the location of the user's profiles. 
-This means that support for profiles is different for Win9X and WinNT.</P
-><DIV
-CLASS="SECT3"
-><HR><H4
-CLASS="SECT3"
-><A
-NAME="AEN997"
-></A
->6.8.2.1. Windows NT Configuration</H4
-><P
->To support WinNT clients, in the [global] section of smb.conf set the
-following (for example):</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->logon path = \\profileserver\profileshare\profilepath\%U\moreprofilepath</PRE
 ></P
 ><P
->The default for this option is \\%N\%U\profile, namely
-\\sambaserver\username\profile.  The \\N%\%U service is created
-automatically by the [homes] service.
-If you are using a samba server for the profiles, you _must_ make the
-share specified in the logon path browseable. </P
-><DIV
-CLASS="NOTE"
+>Click "No" in the error dialog and you will be presented with
+the printer properties window.  The way to assign a driver to a 
+printer is to either</P
 ><P
 ></P
-><TABLE
-CLASS="NOTE"
-WIDTH="100%"
-BORDER="0"
-><TR
-><TD
-WIDTH="25"
-ALIGN="CENTER"
-VALIGN="TOP"
-><IMG
-SRC="/docbook-dsssl/note.gif"
-HSPACE="5"
-ALT="Note"></TD
-><TD
-ALIGN="LEFT"
-VALIGN="TOP"
+><UL
+><LI
 ><P
->[lkcl 26aug96 - we have discovered a problem where Windows clients can
-maintain a connection to the [homes] share in between logins.  The
-[homes] share must NOT therefore be used in a profile path.]</P
-></TD
-></TR
-></TABLE
-></DIV
-></DIV
-><DIV
-CLASS="SECT3"
-><HR><H4
-CLASS="SECT3"
-><A
-NAME="AEN1005"
-></A
->6.8.2.2. Windows 9X Configuration</H4
+>Use the "New Driver..." button to install 
+	a new printer driver, or</P
+></LI
+><LI
 ><P
->To support Win9X clients, you must use the "logon home" parameter. Samba has
-now been fixed so that "net use/home" now works as well, and it, too, relies
-on the "logon home" parameter.</P
+>Select a driver from the popup list of 
+	installed drivers.  Initially this list will be empty.</P
+></LI
+></UL
 ><P
->By using the logon home parameter, you are restricted to putting Win9X 
-profiles in the user's home directory.   But wait! There is a trick you 
-can use. If you set the following in the [global] section of your 
-smb.conf file:</P
+>If you wish to install printer drivers for client 
+operating systems other than "Windows NT x86", you will need 
+to use the "Sharing" tab of the printer properties dialog.</P
 ><P
-><PRE
-CLASS="PROGRAMLISTING"
->logon home = \\%L\%U\.profiles</PRE
-></P
+>Assuming you have connected with a root account, you 
+will also be able modify other printer properties such as 
+ACLs and device settings using this dialog box.</P
 ><P
->then your Win9X clients will dutifully put their clients in a subdirectory
-of your home directory called .profiles (thus making them hidden).</P
+>A few closing comments for this section, it is possible 
+on a Windows NT print server to have printers
+listed in the Printers folder which are not shared.  Samba does
+not make this distinction.  By definition, the only printers of
+which Samba is aware are those which are specified as shares in
+<TT
+CLASS="FILENAME"
+>smb.conf</TT
+>.</P
 ><P
->Not only that, but 'net use/home' will also work, because of a feature in 
-Win9X. It removes any directory stuff off the end of the home directory area
-and only uses the server and share portion. That is, it looks like you
-specified \\%L\%U for "logon home".</P
+>Another interesting side note is that Windows NT clients do
+not use the SMB printer share, but rather can print directly 
+to any printer on another Windows NT host using MS-RPC.  This
+of course assumes that the printing client has the necessary
+privileges on the remote host serving the printer.  The default
+permissions assigned by Windows NT to a printer gives the "Print"
+permissions to the "Everyone" well-known group.</P
 ></DIV
 ><DIV
-CLASS="SECT3"
-><HR><H4
-CLASS="SECT3"
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
 ><A
-NAME="AEN1013"
+NAME="AEN990"
 ></A
->6.8.2.3. Win9X and WinNT Configuration</H4
+>7.2.3. Support a large number of printers</H3
 ><P
->You can support profiles for both Win9X and WinNT clients by setting both the
-"logon home" and "logon path" parameters. For example:</P
+>One issue that has arisen during the development
+phase of Samba 2.2 is the need to support driver downloads for
+100's of printers.  Using the Windows NT APW is somewhat 
+awkward to say the list.  If more than one printer are using the 
+same driver, the <A
+HREF="rpcclient.1.html"
+TARGET="_top"
+><B
+CLASS="COMMAND"
+>rpcclient's
+setdriver command</B
+></A
+> can be used to set the driver
+associated with an installed driver.  The following is example
+of how this could be accomplished:</P
 ><P
 ><PRE
 CLASS="PROGRAMLISTING"
->logon home = \\%L\%U\.profiles
-logon path = \\%L\profiles\%U</PRE
-></P
-><DIV
-CLASS="NOTE"
-><P
+> 
+<TT
+CLASS="PROMPT"
+>$ </TT
+>rpcclient pogo -U root%secret -c "enumdrivers"
+Domain=[NARNIA] OS=[Unix] Server=[Samba 2.2.0-alpha3]
+ 
+[Windows NT x86]
+Printer Driver Info 1:
+     Driver Name: [HP LaserJet 4000 Series PS]
+ 
+Printer Driver Info 1:
+     Driver Name: [HP LaserJet 2100 Series PS]
+ 
+Printer Driver Info 1:
+     Driver Name: [HP LaserJet 4Si/4SiMX PS]
+				  
+<TT
+CLASS="PROMPT"
+>$ </TT
+>rpcclient pogo -U root%secret -c "enumprinters"
+Domain=[NARNIA] OS=[Unix] Server=[Samba 2.2.0-alpha3]
+     flags:[0x800000]
+     name:[\\POGO\hp-print]
+     description:[POGO\\POGO\hp-print,NO DRIVER AVAILABLE FOR THIS PRINTER,]
+     comment:[]
+				  
+<TT
+CLASS="PROMPT"
+>$ </TT
+>rpcclient pogo -U root%secret \
+<TT
+CLASS="PROMPT"
+>&gt; </TT
+> -c "setdriver hp-print \"HP LaserJet 4000 Series PS\""
+Domain=[NARNIA] OS=[Unix] Server=[Samba 2.2.0-alpha3]
+Successfully set hp-print to driver HP LaserJet 4000 Series PS.</PRE
 ></P
-><TABLE
-CLASS="NOTE"
-WIDTH="100%"
-BORDER="0"
-><TR
-><TD
-WIDTH="25"
-ALIGN="CENTER"
-VALIGN="TOP"
-><IMG
-SRC="/docbook-dsssl/note.gif"
-HSPACE="5"
-ALT="Note"></TD
-><TD
-ALIGN="LEFT"
-VALIGN="TOP"
-><P
->I have not checked what 'net use /home' does on NT when "logon home" is
-set as above.</P
-></TD
-></TR
-></TABLE
-></DIV
 ></DIV
 ><DIV
-CLASS="SECT3"
-><HR><H4
-CLASS="SECT3"
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
 ><A
-NAME="AEN1020"
+NAME="AEN1001"
 ></A
->6.8.2.4. Windows 9X Profile Setup</H4
-><P
->When a user first logs in on Windows 9X, the file user.DAT is created,
-as are folders "Start Menu", "Desktop", "Programs" and "Nethood".  
-These directories and their contents will be merged with the local
-versions stored in c:\windows\profiles\username on subsequent logins,
-taking the most recent from each.  You will need to use the [global]
-options "preserve case = yes", "short preserve case = yes" and
-"case sensitive = no" in order to maintain capital letters in shortcuts
-in any of the profile folders.</P
+>7.2.4. Adding New Printers via the Windows NT APW</H3
 ><P
->The user.DAT file contains all the user's preferences.  If you wish to
-enforce a set of preferences, rename their user.DAT file to user.MAN,
-and deny them write access to this file.</P
+>By default, Samba offers all printer shares defined in <TT
+CLASS="FILENAME"
+>smb.conf</TT
+>
+in the "Printers..." folder.  Also existing in this folder is the Windows NT 
+Add Printer Wizard icon.  The APW will be show only if</P
 ><P
 ></P
-><OL
-TYPE="1"
-><LI
-><P
->	On the Windows 95 machine, go to Control Panel | Passwords and
-	select the User Profiles tab.  Select the required level of
-	roaming preferences.  Press OK, but do _not_ allow the computer
-	to reboot.
-	</P
-></LI
+><UL
 ><LI
 ><P
->	On the Windows 95 machine, go to Control Panel | Network |
-	Client for Microsoft Networks | Preferences.  Select 'Log on to
-	NT Domain'.  Then, ensure that the Primary Logon is 'Client for
-	Microsoft Networks'.  Press OK, and this time allow the computer
-	to reboot.
+>The connected user is able to successfully
+	execute an OpenPrinterEx(\\server) with administrative
+	privileges (i.e. root or <TT
+CLASS="PARAMETER"
+><I
+>printer admin</I
+></TT
+>).
 	</P
 ></LI
-></OL
-><P
->Under Windows 95, Profiles are downloaded from the Primary Logon.
-If you have the Primary Logon as 'Client for Novell Networks', then
-the profiles and logon script will be downloaded from your Novell
-Server.  If you have the Primary Logon as 'Windows Logon', then the
-profiles will be loaded from the local machine - a bit against the
-concept of roaming profiles, if you ask me.</P
-><P
->You will now find that the Microsoft Networks Login box contains
-[user, password, domain] instead of just [user, password].  Type in
-the samba server's domain name (or any other domain known to exist,
-but bear in mind that the user will be authenticated against this
-domain and profiles downloaded from it, if that domain logon server
-supports it), user name and user's password.</P
-><P
->Once the user has been successfully validated, the Windows 95 machine
-will inform you that 'The user has not logged on before' and asks you
-if you wish to save the user's preferences?  Select 'yes'.</P
-><P
->Once the Windows 95 client comes up with the desktop, you should be able
-to examine the contents of the directory specified in the "logon path"
-on the samba server and verify that the "Desktop", "Start Menu",
-"Programs" and "Nethood" folders have been created.</P
-><P
->These folders will be cached locally on the client, and updated when
-the user logs off (if you haven't made them read-only by then :-).
-You will find that if the user creates further folders or short-cuts,
-that the client will merge the profile contents downloaded with the
-contents of the profile directory already on the local client, taking
-the newest folders and short-cuts from each set.</P
-><P
->If you have made the folders / files read-only on the samba server,
-then you will get errors from the w95 machine on logon and logout, as
-it attempts to merge the local and the remote profile.  Basically, if
-you have any errors reported by the w95 machine, check the Unix file
-permissions and ownership rights on the profile directory contents,
-on the samba server.</P
-><P
->If you have problems creating user profiles, you can reset the user's
-local desktop cache, as shown below.  When this user then next logs in,
-they will be told that they are logging in "for the first time".</P
-><P
-></P
-><OL
-TYPE="1"
 ><LI
 ><P
->	instead of logging in under the [user, password, domain] dialog,
-	press escape.
+><A
+HREF="smb.conf.5.html#SHOWADDPRINTERWIZARD"
+TARGET="_top"
+><TT
+CLASS="PARAMETER"
+><I
+>show 
+	add printer wizard = yes</I
+></TT
+></A
+> (the default).
 	</P
 ></LI
-><LI
-><P
->	run the regedit.exe program, and look in:
-	</P
-><P
->	HKEY_LOCAL_MACHINE\Windows\CurrentVersion\ProfileList
-	</P
+></UL
 ><P
->	you will find an entry, for each user, of ProfilePath.  Note the
-	contents of this key (likely to be c:\windows\profiles\username),
-	then delete the key ProfilePath for the required user.
-	</P
+>In order to be able to use the APW to successfully add a printer to a Samba 
+server, the <A
+HREF="smb.conf.5.html#ADDPRINTERCOMMAND"
+TARGET="_top"
+><TT
+CLASS="PARAMETER"
+><I
+>add 
+printer command</I
+></TT
+></A
+> must have a defined value.  The program
+hook must successfully add the printer to the system (i.e. 
+<TT
+CLASS="FILENAME"
+>/etc/printcap</TT
+> or appropriate files) and 
+<TT
+CLASS="FILENAME"
+>smb.conf</TT
+> if necessary.</P
 ><P
->	[Exit the registry editor].
-	</P
-></LI
-><LI
+>When using the APW from a client, if the named printer share does 
+not exist, <B
+CLASS="COMMAND"
+>smbd</B
+> will execute the <TT
+CLASS="PARAMETER"
+><I
+>add printer 
+command</I
+></TT
+> and reparse to the <TT
+CLASS="FILENAME"
+>smb.conf</TT
+>
+to attempt to locate the new printer share.  If the share is still not defined,
+an error of "Access Denied" is returned to the client.  Note that the 
+<TT
+CLASS="PARAMETER"
+><I
+>add printer program</I
+></TT
+> is executed under the context
+of the connected user, not necessarily a root account.</P
 ><P
->	<SPAN
-CLASS="emphasis"
+>There is a complementary <A
+HREF="smb.conf.5.html#DELETEPRINTERCOMMAND"
+TARGET="_top"
+><TT
+CLASS="PARAMETER"
 ><I
-CLASS="EMPHASIS"
->WARNING</I
-></SPAN
-> - before deleting the contents of the 
-	directory listed in
-   the ProfilePath (this is likely to be c:\windows\profiles\username),
-   ask them if they have any important files stored on their desktop
-   or in their start menu.  delete the contents of the directory
-   ProfilePath (making a backup if any of the files are needed).
-	</P
+>delete
+printer command</I
+></TT
+></A
+> for removing entries from the "Printers..."
+folder.</P
 ><P
->   This will have the effect of removing the local (read-only hidden
-   system file) user.DAT in their profile directory, as well as the
-   local "desktop", "nethood", "start menu" and "programs" folders.
-	</P
-></LI
+>The following is an example <A
+HREF="smb.conf.5.html#ADDPRINTERCOMMAN"
+TARGET="_top"
+><TT
+CLASS="PARAMETER"
+><I
+>add printer command</I
+></TT
+></A
+> script. It adds the appropriate entries to <TT
+CLASS="FILENAME"
+>/etc/printcap.local</TT
+> (change that to what you need) and returns a line of 'Done' which is needed for the whole process to work.</P
+><PRE
+CLASS="PROGRAMLISTING"
+>#!/bin/sh
+
+# Script to insert a new printer entry into printcap.local
+#
+# $1, printer name, used as the descriptive name
+# $2, share name, used as the printer name for Linux
+# $3, port name
+# $4, driver name
+# $5, location, used for the device file of the printer
+# $6, win9x location
+
+#
+# Make sure we use the location that RedHat uses for local printer defs
+PRINTCAP=/etc/printcap.local
+DATE=`date +%Y%m%d-%H%M%S`
+LP=lp
+RESTART="service lpd restart"
+
+# Keep a copy
+cp $PRINTCAP $PRINTCAP.$DATE
+# Add the printer to $PRINTCAP
+echo ""				 			&#62;&#62; $PRINTCAP
+echo "$2|$1:\\" 					&#62;&#62; $PRINTCAP
+echo "  :sd=/var/spool/lpd/$2:\\" 			&#62;&#62; $PRINTCAP
+echo "  :mx=0:ml=0:sh:\\" 				&#62;&#62; $PRINTCAP
+echo "  :lp=/usr/local/samba/var/print/$5.prn:" 	&#62;&#62; $PRINTCAP
+
+touch "/usr/local/samba/var/print/$5.prn" &#62;&#62; /tmp/printadd.$$ 2&#62;&#38;1
+chown $LP "/usr/local/samba/var/print/$5.prn" &#62;&#62; /tmp/printadd.$$ 2&#62;&#38;1
+
+mkdir /var/spool/lpd/$2
+chmod 700 /var/spool/lpd/$2
+chown $LP /var/spool/lpd/$2
+#echo $1 &#62;&#62; "/usr/local/samba/var/print/$5.prn"
+#echo $2 &#62;&#62; "/usr/local/samba/var/print/$5.prn"
+#echo $3 &#62;&#62; "/usr/local/samba/var/print/$5.prn"
+#echo $4 &#62;&#62; "/usr/local/samba/var/print/$5.prn"
+#echo $5 &#62;&#62; "/usr/local/samba/var/print/$5.prn"
+#echo $6 &#62;&#62; "/usr/local/samba/var/print/$5.prn"
+$RESTART &#62;&#62; "/usr/local/samba/var/print/$5.prn"
+# Not sure if this is needed
+touch /usr/local/samba/lib/smb.conf
+#
+# You need to return a value, but I am not sure what it means.
+#
+echo "Done"
+exit 0</PRE
+></DIV
+><DIV
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
+><A
+NAME="AEN1031"
+></A
+>7.2.5. Samba and Printer Ports</H3
+><P
+>Windows NT/2000 print servers associate a port with each printer.  These normally
+take the form of LPT1:, COM1:, FILE:, etc...  Samba must also support the
+concept of ports associated with a printer.  By default, only one printer port,
+named "Samba Printer Port", exists on a system.  Samba does not really a port in
+order to print, rather it is a requirement of Windows clients.  </P
+><P
+>Note that Samba does not support the concept of "Printer Pooling" internally 
+either.  This is when a logical printer is assigned to multiple ports as 
+a form of load balancing or fail over.</P
+><P
+>If you require that multiple ports be defined for some reason,
+<TT
+CLASS="FILENAME"
+>smb.conf</TT
+> possesses a <A
+HREF="smb.conf.5.html#ENUMPORTSCOMMAND"
+TARGET="_top"
+><TT
+CLASS="PARAMETER"
+><I
+>enumports 
+command</I
+></TT
+></A
+> which can be used to define an external program 
+that generates a listing of ports on a system.</P
+></DIV
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
+><A
+NAME="AEN1039"
+></A
+>7.3. The Imprints Toolset</H2
+><P
+>The Imprints tool set provides a UNIX equivalent of the 
+	Windows NT Add Printer Wizard.  For complete information, please 
+	refer to the Imprints web site at <A
+HREF="http://imprints.sourceforge.net/"
+TARGET="_top"
+>	http://imprints.sourceforge.net/</A
+> as well as the documentation 
+	included with the imprints source distribution.  This section will 
+	only provide a brief introduction to the features of Imprints.</P
+><DIV
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
+><A
+NAME="AEN1043"
+></A
+>7.3.1. What is Imprints?</H3
+><P
+>Imprints is a collection of tools for supporting the goals 
+		of</P
+><P
+></P
+><UL
 ><LI
 ><P
->	search for the user's .PWL password-caching file in the c:\windows
-	directory, and delete it.
-	</P
+>Providing a central repository information 
+			regarding Windows NT and 95/98 printer driver packages</P
 ></LI
 ><LI
 ><P
->	log off the windows 95 client.
-	</P
+>Providing the tools necessary for creating 
+			the Imprints printer driver packages.</P
 ></LI
 ><LI
 ><P
->	check the contents of the profile path (see "logon path" described
-	above), and delete the user.DAT or user.MAN file for the user,
-	making a backup if required.  
-	</P
+>Providing an installation client which 
+			will obtain and install printer drivers on remote Samba 
+			and Windows NT 4 print servers.</P
 ></LI
-></OL
-><P
->If all else fails, increase samba's debug log levels to between 3 and 10,
-and / or run a packet trace program such as tcpdump or netmon.exe, and
-look for any error reports.</P
+></UL
+></DIV
+><DIV
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
+><A
+NAME="AEN1053"
+></A
+>7.3.2. Creating Printer Driver Packages</H3
 ><P
->If you have access to an NT server, then first set up roaming profiles
-and / or netlogons on the NT server.  Make a packet trace, or examine
-the example packet traces provided with NT server, and see what the
-differences are with the equivalent samba trace.</P
+>The process of creating printer driver packages is beyond
+		the scope of this document (refer to Imprints.txt also included
+		with the Samba distribution for more information).  In short,
+		an Imprints driver package is a gzipped tarball containing the
+		driver files, related INF files, and a control file needed by the
+		installation client.</P
 ></DIV
 ><DIV
-CLASS="SECT3"
-><HR><H4
-CLASS="SECT3"
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
 ><A
 NAME="AEN1056"
 ></A
->6.8.2.5. Windows NT Workstation 4.0</H4
+>7.3.3. The Imprints server</H3
 ><P
->When a user first logs in to a Windows NT Workstation, the profile
-NTuser.DAT is created.  The profile location can be now specified
-through the "logon path" parameter.  </P
+>The Imprints server is really a database server that 
+		may be queried via standard HTTP mechanisms.  Each printer 
+		entry in the database has an associated URL for the actual
+		downloading of the package.  Each package is digitally signed
+		via GnuPG which can be used to verify that package downloaded
+		is actually the one referred in the Imprints database.  It is 
+		<SPAN
+CLASS="emphasis"
+><I
+CLASS="EMPHASIS"
+>not</I
+></SPAN
+> recommended that this security check 
+		be disabled.</P
+></DIV
 ><DIV
-CLASS="NOTE"
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
+><A
+NAME="AEN1060"
+></A
+>7.3.4. The Installation Client</H3
 ><P
-></P
-><TABLE
-CLASS="NOTE"
-WIDTH="100%"
-BORDER="0"
-><TR
-><TD
-WIDTH="25"
-ALIGN="CENTER"
-VALIGN="TOP"
-><IMG
-SRC="/docbook-dsssl/note.gif"
-HSPACE="5"
-ALT="Note"></TD
-><TD
-ALIGN="LEFT"
-VALIGN="TOP"
+>More information regarding the Imprints installation client 
+		is available in the <TT
+CLASS="FILENAME"
+>Imprints-Client-HOWTO.ps</TT
+> 
+		file included with the imprints source package.</P
 ><P
->[lkcl 10aug97 - i tried setting the path to
-\\samba-server\homes\profile, and discovered that this fails because
-a background process maintains the connection to the [homes] share
-which does _not_ close down in between user logins.  you have to
-have \\samba-server\%L\profile, where user is the username created
-from the [homes] share].</P
-></TD
-></TR
-></TABLE
-></DIV
+>The Imprints installation client comes in two forms.</P
 ><P
->There is a parameter that is now available for use with NT Profiles:
-"logon drive".  This should be set to "h:" or any other drive, and
-should be used in conjunction with the new "logon home" parameter.</P
+></P
+><UL
+><LI
 ><P
->The entry for the NT 4.0 profile is a _directory_ not a file.  The NT
-help on profiles mentions that a directory is also created with a .PDS
-extension.  The user, while logging in, must have write permission to
-create the full profile path (and the folder with the .PDS extension)
-[lkcl 10aug97 - i found that the creation of the .PDS directory failed,
-and had to create these manually for each user, with a shell script.
-also, i presume, but have not tested, that the full profile path must
-be browseable just as it is for w95, due to the manner in which they
-attempt to create the full profile path: test existence of each path
-component; create path component].</P
+>a set of command line Perl scripts</P
+></LI
+><LI
 ><P
->In the profile directory, NT creates more folders than 95.  It creates
-"Application Data" and others, as well as "Desktop", "Nethood",
-"Start Menu" and "Programs".  The profile itself is stored in a file
-NTuser.DAT.  Nothing appears to be stored in the .PDS directory, and
-its purpose is currently unknown.</P
+>a GTK+ based graphical interface to 
+			the command line perl scripts</P
+></LI
+></UL
 ><P
->You can use the System Control Panel to copy a local profile onto
-a samba server (see NT Help on profiles: it is also capable of firing
-up the correct location in the System Control Panel for you).  The
-NT Help file also mentions that renaming NTuser.DAT to NTuser.MAN
-turns a profile into a mandatory one.</P
-><DIV
-CLASS="NOTE"
+>The installation client (in both forms) provides a means
+		of querying the Imprints database server for a matching
+		list of known printer model names as well as a means to 
+		download and install the drivers on remote Samba and Windows
+		NT print servers.</P
+><P
+>The basic installation process is in four steps and 
+		perl code is wrapped around <B
+CLASS="COMMAND"
+>smbclient</B
+> 
+		and <B
+CLASS="COMMAND"
+>rpcclient</B
+>.</P
 ><P
+><PRE
+CLASS="PROGRAMLISTING"
+>	
+foreach (supported architecture for a given driver)
+{
+     1.  rpcclient: Get the appropriate upload directory 
+         on the remote server
+     2.  smbclient: Upload the driver files
+     3.  rpcclient: Issues an AddPrinterDriver() MS-RPC
+}
+	
+4.  rpcclient: Issue an AddPrinterEx() MS-RPC to actually
+    create the printer</PRE
 ></P
-><TABLE
-CLASS="NOTE"
-WIDTH="100%"
-BORDER="0"
-><TR
-><TD
-WIDTH="25"
-ALIGN="CENTER"
-VALIGN="TOP"
-><IMG
-SRC="/docbook-dsssl/note.gif"
-HSPACE="5"
-ALT="Note"></TD
-><TD
-ALIGN="LEFT"
-VALIGN="TOP"
 ><P
->[lkcl 10aug97 - i notice that NT Workstation tells me that it is
-downloading a profile from a slow link.  whether this is actually the
-case, or whether there is some configuration issue, as yet unknown,
-that makes NT Workstation _think_ that the link is a slow one is a
-matter to be resolved].</P
+>One of the problems encountered when implementing 
+		the Imprints tool set was the name space issues between 
+		various supported client architectures.  For example, Windows 
+		NT includes a driver named "Apple LaserWriter II NTX v51.8" 
+		and Windows 95 calls its version of this driver "Apple 
+		LaserWriter II NTX"</P
 ><P
->[lkcl 20aug97 - after samba digest correspondence, one user found, and
-another confirmed, that profiles cannot be loaded from a samba server
-unless "security = user" and "encrypt passwords = yes" (see the file
-ENCRYPTION.txt) or "security = server" and "password server = ip.address.
-of.yourNTserver" are used.  Either of these options will allow the NT
-workstation to access the samba server using LAN manager encrypted
-passwords, without the user intervention normally required by NT
-workstation for clear-text passwords].</P
+>The problem is how to know what client drivers have 
+		been uploaded for a printer.  As astute reader will remember 
+		that the Windows NT Printer Properties dialog only includes 
+		space for one printer driver name.  A quick look in the 
+		Windows NT 4.0 system registry at</P
 ><P
->[lkcl 25aug97 - more comments received about NT profiles: the case of
-the profile _matters_.  the file _must_ be called NTuser.DAT or, for
-a mandatory profile, NTuser.MAN].</P
-></TD
-></TR
-></TABLE
+><TT
+CLASS="FILENAME"
+>HKLM\System\CurrentControlSet\Control\Print\Environment
+		</TT
+></P
+><P
+>will reveal that Windows NT always uses the NT driver 
+		name.  This is ok as Windows NT always requires that at least 
+		the Windows NT version of the printer driver is present.  
+		However, Samba does not have the requirement internally.  
+		Therefore, how can you use the NT driver name if is has not 
+		already been installed?</P
+><P
+>The way of sidestepping this limitation is to require 
+		that all Imprints printer driver packages include both the Intel 
+		Windows NT and 95/98 printer drivers and that NT driver is 
+		installed first.</P
 ></DIV
 ></DIV
 ><DIV
-CLASS="SECT3"
-><HR><H4
-CLASS="SECT3"
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
 ><A
-NAME="AEN1069"
+NAME="AEN1082"
 ></A
->6.8.2.6. Windows NT Server</H4
-><P
->There is nothing to stop you specifying any path that you like for the
-location of users' profiles.  Therefore, you could specify that the
-profile be stored on a samba server, or any other SMB server, as long as
-that SMB server supports encrypted passwords.</P
-></DIV
-><DIV
-CLASS="SECT3"
-><HR><H4
-CLASS="SECT3"
-><A
-NAME="AEN1072"
+>7.4. <A
+NAME="MIGRATION"
 ></A
->6.8.2.7. Sharing Profiles between W95 and NT Workstation 4.0</H4
+>Migration to from Samba 2.0.x to 2.2.x</H2
+><P
+>Given that printer driver management has changed (we hope improved) in 
+2.2 over prior releases, migration from an existing setup to 2.2 can 
+follow several paths. Here are the possible scenarios for 
+migration:</P
+><P
+></P
+><UL
+><LI
+><P
+>If you do not desire the new Windows NT 
+	print driver support, nothing needs to be done.  
+	All existing parameters work the same.</P
+></LI
+><LI
+><P
+>If you want to take advantage of NT printer 
+	driver support but do not want to migrate the 
+	9x drivers to the new setup, the leave the existing 
+	<TT
+CLASS="FILENAME"
+>printers.def</TT
+> file.  When smbd attempts 
+	to locate a 
+	9x driver for the printer in the TDB and fails it 
+	will drop down to using the printers.def (and all 
+	associated parameters).  The <B
+CLASS="COMMAND"
+>make_printerdef</B
+> 
+	tool will also remain for backwards compatibility but will 
+	be removed in the next major release.</P
+></LI
+><LI
+><P
+>If you install a Windows 9x driver for a printer 
+	on your Samba host (in the printing TDB), this information will 
+	take precedence and the three old printing parameters
+	will be ignored (including print driver location).</P
+></LI
+><LI
+><P
+>If you want to migrate an existing <TT
+CLASS="FILENAME"
+>printers.def</TT
+> 
+	file into the new setup, the current only solution is to use the Windows 
+	NT APW to install the NT drivers and the 9x  drivers.  This can be scripted 
+	using <B
+CLASS="COMMAND"
+>smbclient</B
+> and <B
+CLASS="COMMAND"
+>rpcclient</B
+>.  See the 
+	Imprints installation client at <A
+HREF="http://imprints.sourceforge.net/"
+TARGET="_top"
+>http://imprints.sourceforge.net/</A
+> 
+	for an example.
+	</P
+></LI
+></UL
 ><DIV
 CLASS="WARNING"
 ><P
@@ -6157,7 +6122,7 @@ ALT="Warning"></TD
 ALIGN="LEFT"
 VALIGN="CENTER"
 ><B
->Potentially outdated or incorrect material follows</B
+>Achtung!</B
 ></TH
 ></TR
 ><TR
@@ -6167,618 +6132,426 @@ VALIGN="CENTER"
 ALIGN="LEFT"
 VALIGN="TOP"
 ><P
->I think this is all bogus, but have not deleted it. (Richard Sharpe)</P
-></TD
-></TR
-></TABLE
-></DIV
-><P
->The default logon path is \\%N\%U.  NT Workstation will attempt to create
-a directory "\\samba-server\username.PDS" if you specify the logon path
-as "\\samba-server\username" with the NT User Manager.  Therefore, you
-will need to specify (for example) "\\samba-server\username\profile".
-NT 4.0 will attempt to create "\\samba-server\username\profile.PDS", which
-is more likely to succeed.</P
+>The following <TT
+CLASS="FILENAME"
+>smb.conf</TT
+> parameters are considered to 
+be deprecated and will be removed soon.  Do not use them in new 
+installations</P
 ><P
->If you then want to share the same Start Menu / Desktop with W95, you will
-need to specify "logon path = \\samba-server\username\profile" [lkcl 10aug97
-this has its drawbacks: i created a shortcut to telnet.exe, which attempts
-to run from the c:\winnt\system32 directory.  this directory is obviously
-unlikely to exist on a Win95-only host].</P
+></P
+><UL
+><LI
 ><P
->&#13;If you have this set up correctly, you will find separate user.DAT and
-NTuser.DAT files in the same profile directory.</P
-><DIV
-CLASS="NOTE"
+><TT
+CLASS="PARAMETER"
+><I
+>printer driver file (G)</I
+></TT
+>
+	</P
+></LI
+><LI
 ><P
-></P
-><TABLE
-CLASS="NOTE"
-WIDTH="100%"
-BORDER="0"
-><TR
-><TD
-WIDTH="25"
-ALIGN="CENTER"
-VALIGN="TOP"
-><IMG
-SRC="/docbook-dsssl/note.gif"
-HSPACE="5"
-ALT="Note"></TD
-><TD
-ALIGN="LEFT"
-VALIGN="TOP"
+><TT
+CLASS="PARAMETER"
+><I
+>printer driver (S)</I
+></TT
+>
+	</P
+></LI
+><LI
 ><P
->[lkcl 25aug97 - there are some issues to resolve with downloading of
-NT profiles, probably to do with time/date stamps.  i have found that
-NTuser.DAT is never updated on the workstation after the first time that
-it is copied to the local workstation profile directory.  this is in
-contrast to w95, where it _does_ transfer / update profiles correctly].</P
+><TT
+CLASS="PARAMETER"
+><I
+>printer driver location (S)</I
+></TT
+>
+	</P
+></LI
+></UL
 ></TD
 ></TR
 ></TABLE
 ></DIV
+><P
+>The have been two new parameters add in Samba 2.2.2 to for 
+better support of Samba 2.0.x backwards capability (<TT
+CLASS="PARAMETER"
+><I
+>disable
+spoolss</I
+></TT
+>) and for using local printers drivers on Windows 
+NT/2000 clients (<TT
+CLASS="PARAMETER"
+><I
+>use client driver</I
+></TT
+>). Both of 
+these options are described in the smb.coinf(5) man page and are 
+disabled by default.</P
 ></DIV
 ></DIV
-></DIV
+><DIV
+CLASS="CHAPTER"
+><HR><H1
+><A
+NAME="PRINTINGDEBUG"
+></A
+>Chapter 8. Debugging Printing Problems</H1
 ><DIV
 CLASS="SECT1"
-><HR><H2
+><H2
 CLASS="SECT1"
 ><A
-NAME="AEN1082"
+NAME="AEN1128"
 ></A
->6.9. DOMAIN_CONTROL.txt : Windows NT Domain Control &#38; Samba</H2
-><DIV
-CLASS="WARNING"
+>8.1. Introduction</H2
 ><P
-></P
-><TABLE
-CLASS="WARNING"
-WIDTH="100%"
-BORDER="0"
-><TR
-><TD
-WIDTH="25"
-ALIGN="CENTER"
-VALIGN="TOP"
-><IMG
-SRC="/docbook-dsssl/warning.gif"
-HSPACE="5"
-ALT="Warning"></TD
-><TH
-ALIGN="LEFT"
-VALIGN="CENTER"
-><B
->Possibly Outdated Material</B
-></TH
-></TR
-><TR
-><TD
->&nbsp;</TD
-><TD
-ALIGN="LEFT"
-VALIGN="TOP"
-><P
->	This appendix was originally authored by John H Terpstra of 
-	the Samba Team and is included here for posterity.
-	</P
-></TD
-></TR
-></TABLE
-></DIV
-><P
-><SPAN
-CLASS="emphasis"
-><I
-CLASS="EMPHASIS"
->NOTE :</I
-></SPAN
-> 
-The term "Domain Controller" and those related to it refer to one specific
-method of authentication that can underly an SMB domain. Domain Controllers
-prior to Windows NT Server 3.1 were sold by various companies and based on 
-private extensions to the LAN Manager 2.1 protocol. Windows NT introduced
-Microsoft-specific ways of distributing the user authentication database.
-See DOMAIN.txt for examples of how Samba can participate in or create
-SMB domains based on shared authentication database schemes other than the 
-Windows NT SAM.</P
-><P
->Windows NT Server can be installed as either a plain file and print server
-(WORKGROUP workstation or server) or as a server that participates in Domain
-Control (DOMAIN member, Primary Domain controller or Backup Domain controller).
-The same is true for OS/2 Warp Server, Digital Pathworks and other similar
-products, all of which can participate in Domain Control along with Windows NT.</P
-><P
->To many people these terms can be confusing, so let's try to clear the air.</P
-><P
->Every Windows NT system (workstation or server) has a registry database.
-The registry contains entries that describe the initialization information
-for all services (the equivalent of Unix Daemons) that run within the Windows
-NT environment. The registry also contains entries that tell application
-software where to find dynamically loadable libraries that they depend upon.
-In fact, the registry contains entries that describes everything that anything
-may need to know to interact with the rest of the system.</P
-><P
->The registry files can be located on any Windows NT machine by opening a
-command prompt and typing:</P
-><P
-><TT
-CLASS="PROMPT"
->C:\WINNT\&#62;</TT
-> dir %SystemRoot%\System32\config</P
-><P
->The environment variable %SystemRoot% value can be obtained by typing:</P
-><P
-><TT
-CLASS="PROMPT"
->C:\WINNT&#62;</TT
->echo %SystemRoot%</P
+>This is a short description of how to debug printing problems with
+Samba. This describes how to debug problems with printing from a SMB
+client to a Samba server, not the other way around. For the reverse
+see the examples/printing directory.</P
 ><P
->The active parts of the registry that you may want to be familiar with are
-the files called: default, system, software, sam and security.</P
+>Ok, so you want to print to a Samba server from your PC. The first
+thing you need to understand is that Samba does not actually do any
+printing itself, it just acts as a middleman between your PC client
+and your Unix printing subsystem. Samba receives the file from the PC
+then passes the file to a external "print command". What print command
+you use is up to you.</P
 ><P
->In a domain environment, Microsoft Windows NT domain controllers participate
-in replication of the SAM and SECURITY files so that all controllers within
-the domain have an exactly identical copy of each.</P
+>The whole things is controlled using options in smb.conf. The most
+relevant options (which you should look up in the smb.conf man page)
+are:</P
 ><P
->The Microsoft Windows NT system is structured within a security model that
-says that all applications and services must authenticate themselves before
-they can obtain permission from the security manager to do what they set out
-to do.</P
+><PRE
+CLASS="PROGRAMLISTING"
+>      [global]
+        print command     - send a file to a spooler
+        lpq command       - get spool queue status
+        lprm command      - remove a job
+      [printers]
+        path = /var/spool/lpd/samba</PRE
+></P
 ><P
->The Windows NT User database also resides within the registry. This part of
-the registry contains the user's security identifier, home directory, group
-memberships, desktop profile, and so on.</P
+>The following are nice to know about:</P
 ><P
->Every Windows NT system (workstation as well as server) will have its own
-registry. Windows NT Servers that participate in Domain Security control
-have a database that they share in common - thus they do NOT own an
-independent full registry database of their own, as do Workstations and
-plain Servers.</P
+><PRE
+CLASS="PROGRAMLISTING"
+>        queuepause command   - stop a printer or print queue
+        queueresume command  - start a printer or print queue</PRE
+></P
 ><P
->The User database is called the SAM (Security Access Manager) database and
-is used for all user authentication as well as for authentication of inter-
-process authentication (i.e. to ensure that the service action a user has
-requested is permitted within the limits of that user's privileges).</P
+>Example:</P
 ><P
->The Samba team have produced a utility that can dump the Windows NT SAM into 
-smbpasswd format: see ENCRYPTION.txt for information on smbpasswd and
-/pub/samba/pwdump on your nearest Samba mirror for the utility. This 
-facility is useful but cannot be easily used to implement SAM replication
-to Samba systems.</P
+><PRE
+CLASS="PROGRAMLISTING"
+>        print command = /usr/bin/lpr -r -P%p %s
+        lpq command   = /usr/bin/lpq    -P%p %s
+        lprm command  = /usr/bin/lprm   -P%p %j
+        queuepause command = /usr/sbin/lpc -P%p stop
+        queuepause command = /usr/sbin/lpc -P%p start</PRE
+></P
 ><P
->Windows for Workgroups, Windows 95, and Windows NT Workstations and Servers
-can participate in a Domain security system that is controlled by Windows NT
-servers that have been correctly configured. Almost every domain will have
-ONE Primary Domain Controller (PDC). It is desirable that each domain will
-have at least one Backup Domain Controller (BDC).</P
+>Samba should set reasonable defaults for these depending on your
+system type, but it isn't clairvoyant. It is not uncommon that you
+have to tweak these for local conditions.  The commands should
+always have fully specified pathnames,  as the smdb may not have
+the correct PATH values.</P
 ><P
->The PDC and BDCs then participate in replication of the SAM database so that
-each Domain Controlling participant will have an up to date SAM component
-within its registry.</P
-></DIV
-></DIV
-><DIV
-CLASS="CHAPTER"
-><HR><H1
-><A
-NAME="SAMBA-BDC"
-></A
->Chapter 7. How to Act as a Backup Domain Controller in a Purely Samba Controlled Domain</H1
-><DIV
-CLASS="SECT1"
-><H2
-CLASS="SECT1"
-><A
-NAME="AEN1118"
-></A
->7.1. Prerequisite Reading</H2
+>When you send a job to Samba to be printed,  it will make a temporary
+copy of it in the directory specified in the [printers] section.
+and it should be periodically cleaned out.  The lpr -r option
+requests that the temporary copy be removed after printing; If
+printing fails then you might find leftover files in this directory,
+and it should be periodically cleaned out.  Samba used the lpq
+command to determine the "job number" assigned to your print job
+by the spooler.</P
 ><P
->Before you continue reading in this chapter, please make sure
-that you are comfortable with configuring a Samba PDC
-as described in the <A
-HREF="Samba-PDC-HOWTO.html"
-TARGET="_top"
->Samba-PDC-HOWTO</A
->.</P
+>The %&gt;letter&lt; are "macros" that get dynamically replaced with appropriate
+values when they are used. The %s gets replaced with the name of the spool
+file that Samba creates and the %p gets replaced with the name of the
+printer. The %j gets replaced with the "job number" which comes from
+the lpq output.</P
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN1122"
+NAME="AEN1144"
 ></A
->7.2. Background</H2
+>8.2. Debugging printer problems</H2
 ><P
->What is a Domain Controller? It is a machine that is able to answer
-logon requests from workstations in a Windows NT Domain. Whenever a
-user logs into a Windows NT Workstation, the workstation connects to a
-Domain Controller and asks him whether the username and password the
-user typed in is correct.  The Domain Controller replies with a lot of
-information about the user, for example the place where the users
-profile is stored, the users full name of the user. All this
-information is stored in the NT user database, the so-called SAM.</P
+>One way to debug printing problems is to start by replacing these
+command with shell scripts that record the arguments and the contents
+of the print file. A simple example of this kind of things might
+be:</P
 ><P
->There are two kinds of Domain Controller in a NT 4 compatible Domain:
-A Primary Domain Controller (PDC) and one or more Backup Domain
-Controllers (BDC). The PDC contains the master copy of the
-SAM. Whenever the SAM has to change, for example when a user changes
-his password, this change has to be done on the PDC. A Backup Domain
-Controller is a machine that maintains a read-only copy of the
-SAM. This way it is able to reply to logon requests and authenticate
-users in case the PDC is not available. During this time no changes to
-the SAM are possible. Whenever changes to the SAM are done on the PDC,
-all BDC receive the changes from the PDC.</P
+><PRE
+CLASS="PROGRAMLISTING"
+>	print command = /tmp/saveprint %p %s
+
+    #!/bin/saveprint
+    # we make sure that we are the right user
+    /usr/bin/id -p &#62;/tmp/tmp.print
+    # we run the command and save the error messages
+    # replace the command with the one appropriate for your system
+    /usr/bin/lpr -r -P$1 $2 2&#62;&#62;&#38;/tmp/tmp.print</PRE
+></P
 ><P
->Since version 2.2 Samba officially supports domain logons for all
-current Windows Clients, including Windows 2000 and XP. This text
-assumes the domain to be named SAMBA. To be able to act as a PDC, some
-parameters in the [global]-section of the smb.conf have to be set:</P
+>Then you print a file and try removing it.  You may find that the
+print queue needs to be stopped in order to see the queue status
+and remove the job:</P
 ><P
 ><PRE
 CLASS="PROGRAMLISTING"
->workgroup = SAMBA
-domain master = yes
-domain logons = yes</PRE
+>&#13;h4: {42} % echo hi &#62;/tmp/hi
+h4: {43} % smbclient //localhost/lw4
+added interface ip=10.0.0.4 bcast=10.0.0.255 nmask=255.255.255.0
+Password: 
+Domain=[ASTART] OS=[Unix] Server=[Samba 2.0.7]
+smb: \&#62; print /tmp/hi
+putting file /tmp/hi as hi-17534 (0.0 kb/s) (average 0.0 kb/s)
+smb: \&#62; queue
+1049     3            hi-17534
+smb: \&#62; cancel 1049
+Error cancelling job 1049 : code 0
+smb: \&#62; cancel 1049
+Job 1049 cancelled
+smb: \&#62; queue
+smb: \&#62; exit</PRE
 ></P
 ><P
->Several other things like a [homes] and a [netlogon] share also may be
-set along with settings for the profile path, the users home drive and
-others. This will not be covered in this document.</P
+>The 'code 0' indicates that the job was removed.  The comment
+by the  smbclient is a bit misleading on this.
+You can observe the command output and then and look at the
+/tmp/tmp.print file to see what the results are.  You can quickly
+find out if the problem is with your printing system.  Often people
+have problems with their /etc/printcap file or permissions on
+various print queues.</P
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN1130"
+NAME="AEN1153"
 ></A
->7.3. What qualifies a Domain Controller on the network?</H2
+>8.3. What printers do I have?</H2
 ><P
->Every machine that is a Domain Controller for the domain SAMBA has to
-register the NetBIOS group name SAMBA#1c with the WINS server and/or
-by broadcast on the local network. The PDC also registers the unique
-NetBIOS name SAMBA#1b with the WINS server. The name type #1b is
-normally reserved for the domain master browser, a role that has
-nothing to do with anything related to authentication, but the
-Microsoft Domain implementation requires the domain master browser to
-be on the same machine as the PDC.</P
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN1133"
-></A
->7.3.1. How does a Workstation find its domain controller?</H3
+>You can use the 'testprns' program to check to see if the printer
+name you are using is recognized by Samba.  For example,  you can
+use:</P
 ><P
->A NT workstation in the domain SAMBA that wants a local user to be
-authenticated has to find the domain controller for SAMBA. It does
-this by doing a NetBIOS name query for the group name SAMBA#1c. It
-assumes that each of the machines it gets back from the queries is a
-domain controller and can answer logon requests. To not open security
-holes both the workstation and the selected (TODO: How is the DC
-chosen) domain controller authenticate each other. After that the
-workstation sends the user's credentials (his name and password) to
-the domain controller, asking for approval.</P
-></DIV
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN1136"
-></A
->7.3.2. When is the PDC needed?</H3
+><PRE
+CLASS="PROGRAMLISTING"
+>    testprns printer /etc/printcap</PRE
+></P
 ><P
->Whenever a user wants to change his password, this has to be done on
-the PDC. To find the PDC, the workstation does a NetBIOS name query
-for SAMBA#1b, assuming this machine maintains the master copy of the
-SAM. The workstation contacts the PDC, both mutually authenticate and
-the password change is done.</P
-></DIV
+>Samba can get its printcap information from a file or from a program.
+You can try the following to see the format of the extracted
+information:</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>    testprns -a printer /etc/printcap
+
+    testprns -a printer '|/bin/cat printcap'</PRE
+></P
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN1139"
+NAME="AEN1161"
 ></A
->7.4. Can Samba be a Backup Domain Controller?</H2
+>8.4. Setting up printcap and print servers</H2
 ><P
->With version 2.2, no. The native NT SAM replication protocols have
-not yet been fully implemented. The Samba Team is working on
-understanding and implementing the protocols, but this work has not
-been finished for version 2.2.</P
+>You may need to set up some printcaps for your Samba system to use.
+It is strongly recommended that you use the facilities provided by
+the print spooler to set up queues and printcap information.</P
 ><P
->Can I get the benefits of a BDC with Samba?  Yes. The main reason for
-implementing a BDC is availability. If the PDC is a Samba machine,
-a second Samba machine can be set up to
-service logon requests whenever the PDC is down.</P
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN1143"
-></A
->7.5. How do I set up a Samba BDC?</H2
+>Samba requires either a printcap or program to deliver printcap
+information.  This printcap information has the format:</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>  name|alias1|alias2...:option=value:...</PRE
+></P
+><P
+>For almost all printing systems, the printer 'name' must be composed
+only of alphanumeric or underscore '_' characters.  Some systems also
+allow hyphens ('-') as well.  An alias is an alternative name for the
+printer,  and an alias with a space in it is used as a 'comment'
+about the printer.  The printcap format optionally uses a \ at the end of lines
+to extend the printcap to multiple lines.</P
+><P
+>Here are some examples of printcap files:</P
 ><P
->Several things have to be done:</P
 ><P
 ></P
-><UL
+><OL
+TYPE="1"
 ><LI
 ><P
->The domain SID has to be the same on the PDC and the BDC. This used to
-be stored in the file private/MACHINE.SID. This file is not created
-anymore since Samba 2.2.5 or even earlier. Nowadays the domain SID is
-stored in the file private/secrets.tdb. Simply copying the secrets.tdb
-from the PDC to the BDC does not work, as the BDC would
-generate a new SID for itself and override the domain SID with this
-new BDC SID.</P
+>pr              just printer name</P
+></LI
+><LI
 ><P
->To retrieve the domain SID from the PDC or an existing BDC and store it in the
-secrets.tdb, execute 'net rpc getsid' on the BDC.</P
+>pr|alias        printer name and alias</P
 ></LI
 ><LI
 ><P
->The Unix user database has to be synchronized from the PDC to the
-BDC. This means that both the /etc/passwd and /etc/group have to be
-replicated from the PDC to the BDC. This can be done manually
-whenever changes are made, or the PDC is set up as a NIS master
-server and the BDC as a NIS slave server. To set up the BDC as a
-mere NIS client would not be enough, as the BDC would not be able to
-access its user database in case of a PDC failure.</P
+>pr|My Printer   printer name, alias used as comment</P
 ></LI
 ><LI
 ><P
->The Samba password database in the file private/smbpasswd has to be
-replicated from the PDC to the BDC. This is a bit tricky, see the
-next section.</P
+>pr:sh:\        Same as pr:sh:cm= testing
+  :cm= \ 
+  testing</P
 ></LI
 ><LI
 ><P
->Any netlogon share has to be replicated from the PDC to the
-BDC. This can be done manually whenever login scripts are changed,
-or it can be done automatically together with the smbpasswd
-synchronization.</P
+>pr:sh           Same as pr:sh:cm= testing
+  :cm= testing</P
 ></LI
-></UL
+></OL
+></P
 ><P
->Finally, the BDC has to be found by the workstations. This can be done
-by setting</P
+>Samba reads the printcap information when first started.  If you make
+changes in the printcap information, then you must do the following:</P
 ><P
-><PRE
-CLASS="PROGRAMLISTING"
->workgroup = samba
-domain master = no
-domain logons = yes</PRE
 ></P
+><OL
+TYPE="1"
+><LI
 ><P
->in the [global]-section of the smb.conf of the BDC. This makes the BDC
-only register the name SAMBA#1c with the WINS server. This is no
-problem as the name SAMBA#1c is a NetBIOS group name that is meant to
-be registered by more than one machine. The parameter 'domain master =
-no' forces the BDC not to register SAMBA#1b which as a unique NetBIOS
-name is reserved for the Primary Domain Controller.</P
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN1160"
-></A
->7.5.1. How do I replicate the smbpasswd file?</H3
+>make sure that the print spooler is aware of these changes.
+The LPRng system uses the 'lpc reread' command to do this.</P
+></LI
+><LI
 ><P
->Replication of the smbpasswd file is sensitive. It has to be done
-whenever changes to the SAM are made. Every user's password change is
-done in the smbpasswd file and has to be replicated to the BDC. So
-replicating the smbpasswd file very often is necessary.</P
+>make sure that the spool queues, etc., exist and have the
+correct permissions.  The LPRng system uses the 'checkpc -f'
+command to do this.</P
+></LI
+><LI
 ><P
->As the smbpasswd file contains plain text password equivalents, it
-must not be sent unencrypted over the wire. The best way to set up
-smbpasswd replication from the PDC to the BDC is to use the utility
-rsync. rsync can use ssh as a transport. ssh itself can be set up to
-accept *only* rsync transfer without requiring the user to type a
-password.</P
-></DIV
-></DIV
+>You now should send a SIGHUP signal to the smbd server to have
+it reread the printcap information.</P
+></LI
+></OL
 ></DIV
 ><DIV
-CLASS="CHAPTER"
-><HR><H1
-><A
-NAME="ADS"
-></A
->Chapter 8. Samba as a ADS domain member</H1
-><P
->This is a VERY ROUGH guide to setting up the current (November 2001)
-pre-alpha version of Samba 3.0 with kerberos authentication against a
-Windows2000 KDC. The procedures listed here are likely to change as
-the code develops.</P
-><P
->Pieces you need before you begin:
-<P
-></P
-><TABLE
-BORDER="0"
-><TBODY
-><TR
-><TD
->a Windows 2000 server.</TD
-></TR
-><TR
-><TD
->samba 3.0 or higher.</TD
-></TR
-><TR
-><TD
->the MIT kerberos development libraries (either install from the above sources or use a package). The heimdal libraries will not work.</TD
-></TR
-><TR
-><TD
->the OpenLDAP development libraries.</TD
-></TR
-></TBODY
-></TABLE
-><P
-></P
-></P
-><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN1178"
+NAME="AEN1189"
 ></A
->8.1. Installing the required packages for Debian</H2
+>8.5. Job sent, no output</H2
 ><P
->On Debian you need to install the following packages:
-<P
-></P
-><TABLE
-BORDER="0"
-><TBODY
-><TR
-><TD
->libkrb5-dev</TD
-></TR
-><TR
-><TD
->krb5-user</TD
-></TR
-></TBODY
-></TABLE
+>This is the most frustrating part of printing.  You may have sent the
+job,  verified that the job was forwarded,  set up a wrapper around
+the command to send the file,  but there was no output from the printer.</P
+><P
+>First,  check to make sure that the job REALLY is getting to the
+right print queue.  If you are using a BSD or LPRng print spooler,
+you can temporarily stop the printing of jobs.  Jobs can still be
+submitted, but they will not be printed.  Use:</P
 ><P
+><PRE
+CLASS="PROGRAMLISTING"
+>  lpc -Pprinter stop</PRE
 ></P
+><P
+>Now submit a print job and then use 'lpq -Pprinter' to see if the
+job is in the print queue.  If it is not in the print queue then
+you will have to find out why it is not being accepted for printing.</P
+><P
+>Next, you may want to check to see what the format of the job really
+was.  With the assistance of the system administrator you can view
+the submitted jobs files.  You may be surprised to find that these
+are not in what you would expect to call a printable format.
+You can use the UNIX 'file' utitily to determine what the job
+format actually is:</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>    cd /var/spool/lpd/printer   # spool directory of print jobs
+    ls                          # find job files
+    file dfA001myhost</PRE
 ></P
+><P
+>You should make sure that your printer supports this format OR that
+your system administrator has installed a 'print filter' that will
+convert the file to a format appropriate for your printer.</P
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN1184"
+NAME="AEN1200"
 ></A
->8.2. Installing the required packages for RedHat</H2
+>8.6. Job sent, strange output</H2
 ><P
->On RedHat this means you should have at least: 
-<P
-></P
-><TABLE
-BORDER="0"
-><TBODY
-><TR
-><TD
->krb5-workstation (for kinit)</TD
-></TR
-><TR
-><TD
->krb5-libs (for linking with)</TD
-></TR
-><TR
-><TD
->krb5-devel (because you are compiling from source)</TD
-></TR
-></TBODY
-></TABLE
-><P
-></P
-></P
-><P
->in addition to the standard development environment.</P
-><P
->Note that these are not standard on a RedHat install, and you may need 
-to get them off CD2.</P
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN1193"
-></A
->8.3. Compile Samba</H2
+>Once you have the job printing, you can then start worrying about
+making it print nicely.</P
 ><P
->If your kerberos libraries are in a non-standard location then
-  remember to add the configure option --with-krb5=DIR.</P
+>The most common problem is extra pages of output: banner pages
+OR blank pages at the end.</P
 ><P
->After you run configure make sure that include/config.h contains 
-  lines like this:</P
+>If you are getting banner pages,  check and make sure that the
+printcap option or printer option is configured for no banners.
+If you have a printcap,  this is the :sh (suppress header or banner
+page) option.  You should have the following in your printer.</P
 ><P
 ><PRE
 CLASS="PROGRAMLISTING"
->#define HAVE_KRB5 1
-#define HAVE_LDAP 1</PRE
+>   printer: ... :sh</PRE
 ></P
 ><P
->If it doesn't then configure did not find your krb5 libraries or
-  your ldap libraries. Look in config.log to figure out why and fix
-  it.</P
+>If you have this option and are still getting banner pages,  there
+is a strong chance that your printer is generating them for you
+automatically.  You should make sure that banner printing is disabled
+for the printer.  This usually requires using the printer setup software
+or procedures supplied by the printer manufacturer.</P
 ><P
->Then compile and install Samba as usual. You must use at least the
-  following 3 options in smb.conf:</P
+>If you get an extra page of output,  this could be due to problems
+with your job format,  or if you are generating PostScript jobs,
+incorrect setting on your printer driver on the MicroSoft client.
+For example, under Win95 there is a option:</P
 ><P
 ><PRE
 CLASS="PROGRAMLISTING"
->  realm = YOUR.KERBEROS.REALM
-  ads server = your.kerberos.server
-  security = ADS
-  encrypt passwords = yes</PRE
+>  Printers|Printer Name|(Right Click)Properties|Postscript|Advanced|</PRE
 ></P
 ><P
->Strictly speaking, you can omit the realm name and you can use an IP
-  address for the ads server. In that case Samba will auto-detect these.</P
-><P
->You do *not* need a smbpasswd file, although it won't do any harm
-  and if you have one then Samba will be able to fall back to normal
-  password security for older clients. I expect that the above
-  required options will change soon when we get better active
-  directory integration.</P
+>that allows you to choose if a Ctrl-D is appended to all jobs.
+This is a very bad thing to do, as most spooling systems will
+automatically add a ^D to the end of the job if it is detected as
+PostScript.  The multiple ^D may cause an additional page of output.</P
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN1205"
+NAME="AEN1212"
 ></A
->8.4. Setup your /etc/krb5.conf</H2
-><P
->The minimal configuration for krb5.conf is:</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->	[realms]
-    YOUR.KERBEROS.REALM = {
-	kdc = your.kerberos.server
-    }</PRE
-></P
-><P
->Test your config by doing a "kinit USERNAME@REALM" and making sure that
-  your password is accepted by the Win2000 KDC. </P
-><P
->NOTE: The realm must be uppercase. </P
+>8.7. Raw PostScript printed</H2
 ><P
->You also must ensure that you can do a reverse DNS lookup on the IP
-address of your KDC. Also, the name that this reverse lookup maps to
-must either be the netbios name of the KDC (ie. the hostname with no
-domain attached) or it can alternatively be the netbios name
-followed by the realm. </P
-><P
->The easiest way to ensure you get this right is to add a /etc/hosts
-entry mapping the IP address of your KDC to its netbios name. If you
-don't get this right then you will get a "local error" when you try
-to join the realm.</P
-><P
->If all you want is kerberos support in smbclient then you can skip
-straight to step 5 now. Step 3 is only needed if you want kerberos
-support in smbd.</P
+>This is a problem that is usually caused by either the print spooling
+system putting information at the start of the print job that makes
+the printer think the job is a text file, or your printer simply
+does not support PostScript.  You may need to enable 'Automatic
+Format Detection' on your printer.</P
 ></DIV
 ><DIV
 CLASS="SECT1"
@@ -6787,167 +6560,247 @@ CLASS="SECT1"
 ><A
 NAME="AEN1215"
 ></A
->8.5. Create the computer account</H2
-><P
->Do a "kinit" as a user that has authority to change arbitrary
-passwords on the KDC ("Administrator" is a good choice). Then as a
-user that has write permission on the Samba private directory
-(usually root) run:
-<B
-CLASS="COMMAND"
->net ads join</B
-></P
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN1219"
-></A
->8.5.1. Possible errors</H3
-><P
-><P
-></P
-><DIV
-CLASS="VARIABLELIST"
-><DL
-><DT
->"bash: kinit: command not found"</DT
-><DD
-><P
->kinit is in the krb5-workstation RPM on RedHat systems, and is in /usr/kerberos/bin, so it won't be in the path until you log in again (or open a new terminal)</P
-></DD
-><DT
->"ADS support not compiled in"</DT
-><DD
-><P
->Samba must be reconfigured (remove config.cache) and recompiled (make clean all install) after the kerberos libs and headers are installed.</P
-></DD
-></DL
-></DIV
-></P
-></DIV
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN1231"
-></A
->8.6. Test your server setup</H2
+>8.8. Advanced Printing</H2
 ><P
->On a Windows 2000 client try <B
-CLASS="COMMAND"
->net use * \\server\share</B
->. You should
-be logged in with kerberos without needing to know a password. If
-this fails then run <B
-CLASS="COMMAND"
->klist tickets</B
->. Did you get a ticket for the
-server? Does it have an encoding type of DES-CBC-MD5 ? </P
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN1236"
-></A
->8.7. Testing with smbclient</H2
-><P
->On your Samba server try to login to a Win2000 server or your Samba
-server using smbclient and kerberos. Use smbclient as usual, but
-specify the -k option to choose kerberos authentication.</P
+>Note that you can do some pretty magic things by using your
+imagination with the "print command" option and some shell scripts.
+Doing print accounting is easy by passing the %U option to a print
+command shell script. You could even make the print command detect
+the type of output and its size and send it to an appropriate
+printer.</P
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN1239"
+NAME="AEN1218"
 ></A
->8.8. Notes</H2
-><P
->You must change administrator password at least once after DC install,
- to create the right encoding types</P
+>8.9. Real debugging</H2
 ><P
->w2k doesn't seem to create the _kerberos._udp and _ldap._tcp in
-   their defaults DNS setup. Maybe fixed in service packs?</P
+>If the above debug tips don't help, then maybe you need to bring in
+the bug guns, system tracing. See Tracing.txt in this directory.</P
 ></DIV
 ></DIV
 ><DIV
 CLASS="CHAPTER"
 ><HR><H1
 ><A
-NAME="DOMAIN-SECURITY"
+NAME="SECURITYLEVELS"
 ></A
->Chapter 9. Samba as a NT4 domain member</H1
+>Chapter 9. Security levels</H1
 ><DIV
 CLASS="SECT1"
 ><H2
 CLASS="SECT1"
 ><A
-NAME="AEN1261"
+NAME="AEN1231"
 ></A
->9.1. Joining an NT Domain with Samba 2.2</H2
-><P
->Assume you have a Samba 2.x server with a NetBIOS name of 
-	<TT
-CLASS="CONSTANT"
->SERV1</TT
-> and are joining an NT domain called
-	<TT
-CLASS="CONSTANT"
->DOM</TT
->, which has a PDC with a NetBIOS name
-	of <TT
-CLASS="CONSTANT"
->DOMPDC</TT
-> and two backup domain controllers 
-	with NetBIOS names <TT
-CLASS="CONSTANT"
->DOMBDC1</TT
-> and <TT
-CLASS="CONSTANT"
->DOMBDC2
-	</TT
->.</P
+>9.1. Introduction</H2
 ><P
->In order to join the domain, first stop all Samba daemons 
-	and run the command:</P
+>Samba supports the following options to the global smb.conf parameter</P
 ><P
+><PRE
+CLASS="PROGRAMLISTING"
+>[global]
+<A
+HREF="smb.conf.5.html#SECURITY"
+TARGET="_top"
 ><TT
-CLASS="PROMPT"
->root# </TT
-><TT
-CLASS="USERINPUT"
-><B
->smbpasswd -j DOM -r DOMPDC
-	-U<TT
-CLASS="REPLACEABLE"
+CLASS="PARAMETER"
 ><I
->Administrator%password</I
-></TT
-></B
+>security</I
 ></TT
+></A
+> = [share|user(default)|domain|ads]</PRE
 ></P
 ><P
->as we are joining the domain DOM and the PDC for that domain 
-	(the only machine that has write access to the domain SAM database) 
-	is DOMPDC. The <TT
-CLASS="REPLACEABLE"
-><I
->Administrator%password</I
-></TT
-> is 
-	the login name and password for an account which has the necessary 
-	privilege to add machines to the domain.  If this is successful 
-	you will see the message:</P
-><P
-><TT
-CLASS="COMPUTEROUTPUT"
+>Please refer to the smb.conf man page for usage information and to the document
+<A
+HREF="DOMAIN_MEMBER.html"
+TARGET="_top"
+>DOMAIN_MEMBER.html</A
+> for further background details
+on domain mode security.  The Windows 2000 Kerberos domain security model
+(security = ads) is described in the <A
+HREF="ADS-HOWTO.html"
+TARGET="_top"
+>ADS-HOWTO.html</A
+>.</P
+><P
+>Of the above, "security = server" means that Samba reports to clients that
+it is running in "user mode" but actually passes off all authentication
+requests to another "user mode" server. This requires an additional
+parameter "password server =" that points to the real authentication server.
+That real authentication server can be another Samba server or can be a
+Windows NT server, the later natively capable of encrypted password support.</P
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
+><A
+NAME="AEN1242"
+></A
+>9.2. More complete description of security levels</H2
+><P
+>A SMB server tells the client at startup what "security level" it is
+running. There are two options "share level" and "user level". Which
+of these two the client receives affects the way the client then tries
+to authenticate itself. It does not directly affect (to any great
+extent) the way the Samba server does security. I know this is
+strange, but it fits in with the client/server approach of SMB. In SMB
+everything is initiated and controlled by the client, and the server
+can only tell the client what is available and whether an action is
+allowed. </P
+><P
+>I'll describe user level security first, as its simpler. In user level
+security the client will send a "session setup" command directly after
+the protocol negotiation. This contains a username and password. The
+server can either accept or reject that username/password
+combination. Note that at this stage the server has no idea what
+share the client will eventually try to connect to, so it can't base
+the "accept/reject" on anything other than:</P
+><P
+></P
+><OL
+TYPE="1"
+><LI
+><P
+>the username/password</P
+></LI
+><LI
+><P
+>the machine that the client is coming from</P
+></LI
+></OL
+><P
+>If the server accepts the username/password then the client expects to
+be able to mount any share (using a "tree connection") without
+specifying a password. It expects that all access rights will be as
+the username/password specified in the "session setup". </P
+><P
+>It is also possible for a client to send multiple "session setup"
+requests. When the server responds it gives the client a "uid" to use
+as an authentication tag for that username/password. The client can
+maintain multiple authentication contexts in this way (WinDD is an
+example of an application that does this)</P
+><P
+>Ok, now for share level security. In share level security the client
+authenticates itself separately for each share. It will send a
+password along with each "tree connection" (share mount). It does not
+explicitly send a username with this operation. The client is
+expecting a password to be associated with each share, independent of
+the user. This means that samba has to work out what username the
+client probably wants to use. It is never explicitly sent the
+username. Some commercial SMB servers such as NT actually associate
+passwords directly with shares in share level security, but samba
+always uses the unix authentication scheme where it is a
+username/password that is authenticated, not a "share/password".</P
+><P
+>Many clients send a "session setup" even if the server is in share
+level security. They normally send a valid username but no
+password. Samba records this username in a list of "possible
+usernames". When the client then does a "tree connection" it also adds
+to this list the name of the share they try to connect to (useful for
+home directories) and any users listed in the "user =" smb.conf
+line. The password is then checked in turn against these "possible
+usernames". If a match is found then the client is authenticated as
+that user.</P
+><P
+>Finally "server level" security. In server level security the samba
+server reports to the client that it is in user level security. The
+client then does a "session setup" as described earlier. The samba
+server takes the username/password that the client sends and attempts
+to login to the "password server" by sending exactly the same
+username/password that it got from the client. If that server is in
+user level security and accepts the password then samba accepts the
+clients connection. This allows the samba server to use another SMB
+server as the "password server". </P
+><P
+>You should also note that at the very start of all this, where the
+server tells the client what security level it is in, it also tells
+the client if it supports encryption. If it does then it supplies the
+client with a random "cryptkey". The client will then send all
+passwords in encrypted form. You have to compile samba with encryption
+enabled to support this feature, and you have to maintain a separate
+smbpasswd file with SMB style encrypted passwords. It is
+cryptographically impossible to translate from unix style encryption
+to SMB style encryption, although there are some fairly simple management
+schemes by which the two could be kept in sync.</P
+></DIV
+></DIV
+><DIV
+CLASS="CHAPTER"
+><HR><H1
+><A
+NAME="DOMAIN-SECURITY"
+></A
+>Chapter 10. security = domain in Samba 2.x</H1
+><DIV
+CLASS="SECT1"
+><H2
+CLASS="SECT1"
+><A
+NAME="AEN1275"
+></A
+>10.1. Joining an NT Domain with Samba 2.2</H2
+><P
+>Assume you have a Samba 2.x server with a NetBIOS name of 
+	<TT
+CLASS="CONSTANT"
+>SERV1</TT
+> and are joining an NT domain called
+	<TT
+CLASS="CONSTANT"
+>DOM</TT
+>, which has a PDC with a NetBIOS name
+	of <TT
+CLASS="CONSTANT"
+>DOMPDC</TT
+> and two backup domain controllers 
+	with NetBIOS names <TT
+CLASS="CONSTANT"
+>DOMBDC1</TT
+> and <TT
+CLASS="CONSTANT"
+>DOMBDC2
+	</TT
+>.</P
+><P
+>In order to join the domain, first stop all Samba daemons 
+	and run the command:</P
+><P
+><TT
+CLASS="PROMPT"
+>root# </TT
+><TT
+CLASS="USERINPUT"
+><B
+>smbpasswd -j DOM -r DOMPDC
+	-U<TT
+CLASS="REPLACEABLE"
+><I
+>Administrator%password</I
+></TT
+></B
+></TT
+></P
+><P
+>as we are joining the domain DOM and the PDC for that domain 
+	(the only machine that has write access to the domain SAM database) 
+	is DOMPDC. The <TT
+CLASS="REPLACEABLE"
+><I
+>Administrator%password</I
+></TT
+> is 
+	the login name and password for an account which has the necessary 
+	privilege to add machines to the domain.  If this is successful 
+	you will see the message:</P
+><P
+><TT
+CLASS="COMPUTEROUTPUT"
 >smbpasswd: Joined domain DOM.</TT
 >
 	</P
@@ -7120,12 +6973,12 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN1325"
+NAME="AEN1339"
 ></A
->9.2. Samba and Windows 2000 Domains</H2
+>10.2. Samba and Windows 2000 Domains</H2
 ><P
 >Many people have asked regarding the state of Samba's ability to participate in
-a Windows 2000 Domain.  Samba 3.0 is able to act as a member server of a Windows
+a Windows 2000 Domain.  Samba 2.2 is able to act as a member server of a Windows
 2000 domain operating in mixed or native mode.</P
 ><P
 >There is much confusion between the circumstances that require a "mixed" mode
@@ -7145,9 +6998,9 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN1330"
+NAME="AEN1344"
 ></A
->9.3. Why is this better than security = server?</H2
+>10.3. Why is this better than security = server?</H2
 ><P
 >Currently, domain security in Samba doesn't free you from 
 	having to create local Unix users to represent the users attaching 
@@ -7231,4197 +7084,2209 @@ TARGET="_top"
 >.</P
 ></DIV
 ></DIV
-></DIV
 ><DIV
-CLASS="PART"
+CLASS="CHAPTER"
+><HR><H1
 ><A
-NAME="AEN1346"
+NAME="WINBIND"
 ></A
+>Chapter 11. Unified Logons between Windows NT and UNIX using Winbind</H1
 ><DIV
-CLASS="TITLEPAGE"
-><H1
-CLASS="TITLE"
->III. Optional configuration</H1
-><DIV
-CLASS="PARTINTRO"
+CLASS="SECT1"
+><H2
+CLASS="SECT1"
 ><A
-NAME="AEN1348"
+NAME="AEN1397"
 ></A
-><H1
->Introduction</H1
+>11.1. Abstract</H2
 ><P
->Samba has several features that you might want or might not want to use. The chapters in this 
-part each cover one specific feature.</P
+>Integration of UNIX and Microsoft Windows NT through 
+	a unified logon has been considered a "holy grail" in heterogeneous 
+	computing environments for a long time. We present 
+	<SPAN
+CLASS="emphasis"
+><I
+CLASS="EMPHASIS"
+>winbind</I
+></SPAN
+>, a component of the Samba suite 
+	of programs as a solution to the unified logon problem. Winbind 
+	uses a UNIX implementation 
+	of Microsoft RPC calls, Pluggable Authentication Modules, and the Name 
+	Service Switch to allow Windows NT domain users to appear and operate 
+	as UNIX users on a UNIX machine. This paper describes the winbind 
+	system, explaining the functionality it provides, how it is configured, 
+	and how it works internally.</P
 ></DIV
 ><DIV
-CLASS="TOC"
-><DL
-><DT
-><B
->Table of Contents</B
-></DT
-><DT
->10. <A
-HREF="#INTEGRATE-MS-NETWORKS"
->Integrating MS Windows networks with Samba</A
-></DT
-><DD
-><DL
-><DT
->10.1. <A
-HREF="#AEN1362"
->Agenda</A
-></DT
-><DT
->10.2. <A
-HREF="#AEN1384"
->Name Resolution in a pure Unix/Linux world</A
-></DT
-><DD
-><DL
-><DT
->10.2.1. <A
-HREF="#AEN1400"
-><TT
-CLASS="FILENAME"
->/etc/hosts</TT
-></A
-></DT
-><DT
->10.2.2. <A
-HREF="#AEN1416"
-><TT
-CLASS="FILENAME"
->/etc/resolv.conf</TT
-></A
-></DT
-><DT
->10.2.3. <A
-HREF="#AEN1427"
-><TT
-CLASS="FILENAME"
->/etc/host.conf</TT
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
+><A
+NAME="AEN1401"
 ></A
-></DT
-><DT
->10.2.4. <A
-HREF="#AEN1435"
-><TT
-CLASS="FILENAME"
->/etc/nsswitch.conf</TT
-></A
-></DT
-></DL
-></DD
-><DT
->10.3. <A
-HREF="#AEN1447"
->Name resolution as used within MS Windows networking</A
-></DT
-><DD
-><DL
-><DT
->10.3.1. <A
-HREF="#AEN1459"
->The NetBIOS Name Cache</A
-></DT
-><DT
->10.3.2. <A
-HREF="#AEN1464"
->The LMHOSTS file</A
-></DT
-><DT
->10.3.3. <A
-HREF="#AEN1472"
->HOSTS file</A
-></DT
-><DT
->10.3.4. <A
-HREF="#AEN1477"
->DNS Lookup</A
-></DT
-><DT
->10.3.5. <A
-HREF="#AEN1480"
->WINS Lookup</A
-></DT
-></DL
-></DD
-><DT
->10.4. <A
-HREF="#AEN1492"
->How browsing functions and how to deploy stable and 
-dependable browsing using Samba</A
-></DT
-><DT
->10.5. <A
-HREF="#AEN1502"
->MS Windows security options and how to configure 
-Samba for seemless integration</A
-></DT
-><DD
-><DL
-><DT
->10.5.1. <A
-HREF="#AEN1530"
->Use MS Windows NT as an authentication server</A
-></DT
-><DT
->10.5.2. <A
-HREF="#AEN1538"
->Make Samba a member of an MS Windows NT security domain</A
-></DT
-><DT
->10.5.3. <A
-HREF="#AEN1555"
->Configure Samba as an authentication server</A
-></DT
-></DL
-></DD
-><DT
->10.6. <A
-HREF="#AEN1572"
->Conclusions</A
-></DT
-></DL
-></DD
-><DT
->11. <A
-HREF="#UNIX-PERMISSIONS"
->UNIX Permission Bits and Windows NT Access Control Lists</A
-></DT
-><DD
-><DL
-><DT
->11.1. <A
-HREF="#AEN1593"
->Viewing and changing UNIX permissions using the NT 
-	security dialogs</A
-></DT
-><DT
->11.2. <A
-HREF="#AEN1602"
->How to view file security on a Samba share</A
-></DT
-><DT
->11.3. <A
-HREF="#AEN1613"
->Viewing file ownership</A
-></DT
-><DT
->11.4. <A
-HREF="#AEN1633"
->Viewing file or directory permissions</A
-></DT
-><DD
-><DL
-><DT
->11.4.1. <A
-HREF="#AEN1648"
->File Permissions</A
-></DT
-><DT
->11.4.2. <A
-HREF="#AEN1662"
->Directory Permissions</A
-></DT
-></DL
-></DD
-><DT
->11.5. <A
-HREF="#AEN1669"
->Modifying file or directory permissions</A
-></DT
-><DT
->11.6. <A
-HREF="#AEN1691"
->Interaction with the standard Samba create mask 
-	parameters</A
-></DT
-><DT
->11.7. <A
-HREF="#AEN1755"
->Interaction with the standard Samba file attribute 
-	mapping</A
-></DT
-></DL
-></DD
-><DT
->12. <A
-HREF="#PAM"
->Configuring PAM for distributed but centrally 
-managed authentication</A
-></DT
-><DD
-><DL
-><DT
->12.1. <A
-HREF="#AEN1776"
->Samba and PAM</A
-></DT
-><DT
->12.2. <A
-HREF="#AEN1820"
->Distributed Authentication</A
-></DT
-><DT
->12.3. <A
-HREF="#AEN1827"
->PAM Configuration in smb.conf</A
-></DT
-></DL
-></DD
-><DT
->13. <A
-HREF="#MSDFS"
->Hosting a Microsoft Distributed File System tree on Samba</A
-></DT
-><DD
-><DL
-><DT
->13.1. <A
-HREF="#AEN1847"
->Instructions</A
-></DT
-><DD
-><DL
-><DT
->13.1.1. <A
-HREF="#AEN1882"
->Notes</A
-></DT
-></DL
-></DD
-></DL
-></DD
-><DT
->14. <A
-HREF="#PRINTING"
->Printing Support</A
-></DT
-><DD
-><DL
-><DT
->14.1. <A
-HREF="#AEN1908"
->Introduction</A
-></DT
-><DT
->14.2. <A
-HREF="#AEN1930"
->Configuration</A
-></DT
-><DD
-><DL
-><DT
->14.2.1. <A
-HREF="#AEN1938"
->Creating [print$]</A
-></DT
-><DT
->14.2.2. <A
-HREF="#AEN1973"
->Setting Drivers for Existing Printers</A
-></DT
-><DT
->14.2.3. <A
-HREF="#AEN1989"
->Support a large number of printers</A
-></DT
-><DT
->14.2.4. <A
-HREF="#AEN2000"
->Adding New Printers via the Windows NT APW</A
-></DT
-><DT
->14.2.5. <A
-HREF="#AEN2030"
->Samba and Printer Ports</A
-></DT
-></DL
-></DD
-><DT
->14.3. <A
-HREF="#AEN2038"
->The Imprints Toolset</A
-></DT
-><DD
-><DL
-><DT
->14.3.1. <A
-HREF="#AEN2042"
->What is Imprints?</A
-></DT
-><DT
->14.3.2. <A
-HREF="#AEN2052"
->Creating Printer Driver Packages</A
-></DT
-><DT
->14.3.3. <A
-HREF="#AEN2055"
->The Imprints server</A
-></DT
-><DT
->14.3.4. <A
-HREF="#AEN2059"
->The Installation Client</A
-></DT
-></DL
-></DD
-><DT
->14.4. <A
-HREF="#AEN2081"
->Diagnosis</A
-></DT
-><DD
-><DL
-><DT
->14.4.1. <A
-HREF="#AEN2083"
->Introduction</A
-></DT
-><DT
->14.4.2. <A
-HREF="#AEN2099"
->Debugging printer problems</A
-></DT
-><DT
->14.4.3. <A
-HREF="#AEN2108"
->What printers do I have?</A
-></DT
-><DT
->14.4.4. <A
-HREF="#AEN2116"
->Setting up printcap and print servers</A
-></DT
-><DT
->14.4.5. <A
-HREF="#AEN2144"
->Job sent, no output</A
-></DT
-><DT
->14.4.6. <A
-HREF="#AEN2155"
->Job sent, strange output</A
-></DT
-><DT
->14.4.7. <A
-HREF="#AEN2167"
->Raw PostScript printed</A
-></DT
-><DT
->14.4.8. <A
-HREF="#AEN2170"
->Advanced Printing</A
-></DT
-><DT
->14.4.9. <A
-HREF="#AEN2173"
->Real debugging</A
-></DT
-></DL
-></DD
-></DL
-></DD
-><DT
->15. <A
-HREF="#SECURITYLEVELS"
->Security levels</A
-></DT
-><DD
-><DL
-><DT
->15.1. <A
-HREF="#AEN2186"
->Introduction</A
-></DT
-><DT
->15.2. <A
-HREF="#AEN2197"
->More complete description of security levels</A
-></DT
-></DL
-></DD
-><DT
->16. <A
-HREF="#WINBIND"
->Unified Logons between Windows NT and UNIX using Winbind</A
-></DT
-><DD
-><DL
-><DT
->16.1. <A
-HREF="#AEN2249"
->Abstract</A
-></DT
-><DT
->16.2. <A
-HREF="#AEN2253"
->Introduction</A
-></DT
-><DT
->16.3. <A
-HREF="#AEN2266"
->What Winbind Provides</A
-></DT
-><DD
-><DL
-><DT
->16.3.1. <A
-HREF="#AEN2273"
->Target Uses</A
-></DT
-></DL
-></DD
-><DT
->16.4. <A
-HREF="#AEN2277"
->How Winbind Works</A
-></DT
-><DD
-><DL
-><DT
->16.4.1. <A
-HREF="#AEN2282"
->Microsoft Remote Procedure Calls</A
-></DT
-><DT
->16.4.2. <A
-HREF="#AEN2286"
->Name Service Switch</A
-></DT
-><DT
->16.4.3. <A
-HREF="#AEN2302"
->Pluggable Authentication Modules</A
-></DT
-><DT
->16.4.4. <A
-HREF="#AEN2310"
->User and Group ID Allocation</A
-></DT
-><DT
->16.4.5. <A
-HREF="#AEN2314"
->Result Caching</A
-></DT
-></DL
-></DD
-><DT
->16.5. <A
-HREF="#AEN2317"
->Installation and Configuration</A
-></DT
-><DD
-><DL
-><DT
->16.5.1. <A
-HREF="#AEN2324"
->Introduction</A
-></DT
-><DT
->16.5.2. <A
-HREF="#AEN2337"
->Requirements</A
-></DT
-><DT
->16.5.3. <A
-HREF="#AEN2351"
->Testing Things Out</A
-></DT
-></DL
-></DD
-><DT
->16.6. <A
-HREF="#AEN2566"
->Limitations</A
-></DT
-><DT
->16.7. <A
-HREF="#AEN2576"
->Conclusion</A
-></DT
-></DL
-></DD
-><DT
->17. <A
-HREF="#PDB-MYSQL"
->Passdb MySQL plugin</A
-></DT
-><DD
-><DL
-><DT
->17.1. <A
-HREF="#AEN2590"
->Building</A
-></DT
-><DT
->17.2. <A
-HREF="#AEN2596"
->Configuring</A
-></DT
-><DT
->17.3. <A
-HREF="#AEN2611"
->Using plaintext passwords or encrypted password</A
-></DT
-><DT
->17.4. <A
-HREF="#AEN2616"
->Getting non-column data from the table</A
-></DT
-></DL
-></DD
-><DT
->18. <A
-HREF="#PDB-XML"
->Passdb XML plugin</A
-></DT
-><DD
-><DL
-><DT
->18.1. <A
-HREF="#AEN2635"
->Building</A
-></DT
-><DT
->18.2. <A
-HREF="#AEN2641"
->Usage</A
-></DT
-></DL
-></DD
-><DT
->19. <A
-HREF="#SAMBA-LDAP-HOWTO"
->Storing Samba's User/Machine Account information in an LDAP Directory</A
-></DT
-><DD
-><DL
-><DT
->19.1. <A
-HREF="#AEN2664"
->Purpose</A
-></DT
-><DT
->19.2. <A
-HREF="#AEN2684"
->Introduction</A
-></DT
-><DT
->19.3. <A
-HREF="#AEN2713"
->Supported LDAP Servers</A
-></DT
-><DT
->19.4. <A
-HREF="#AEN2718"
->Schema and Relationship to the RFC 2307 posixAccount</A
-></DT
-><DT
->19.5. <A
-HREF="#AEN2730"
->Configuring Samba with LDAP</A
-></DT
-><DD
-><DL
-><DT
->19.5.1. <A
-HREF="#AEN2732"
->OpenLDAP configuration</A
-></DT
-><DT
->19.5.2. <A
-HREF="#AEN2749"
->Configuring Samba</A
-></DT
-></DL
-></DD
-><DT
->19.6. <A
-HREF="#AEN2777"
->Accounts and Groups management</A
-></DT
-><DT
->19.7. <A
-HREF="#AEN2782"
->Security and sambaAccount</A
-></DT
-><DT
->19.8. <A
-HREF="#AEN2802"
->LDAP specials attributes for sambaAccounts</A
-></DT
-><DT
->19.9. <A
-HREF="#AEN2872"
->Example LDIF Entries for a sambaAccount</A
-></DT
-><DT
->19.10. <A
-HREF="#AEN2880"
->Comments</A
-></DT
-></DL
-></DD
-><DT
->20. <A
-HREF="#CVS-ACCESS"
->HOWTO Access Samba source code via CVS</A
-></DT
-><DD
-><DL
-><DT
->20.1. <A
-HREF="#AEN2891"
->Introduction</A
-></DT
-><DT
->20.2. <A
-HREF="#AEN2896"
->CVS Access to samba.org</A
-></DT
-><DD
-><DL
-><DT
->20.2.1. <A
-HREF="#AEN2899"
->Access via CVSweb</A
-></DT
-><DT
->20.2.2. <A
-HREF="#AEN2904"
->Access via cvs</A
-></DT
-></DL
-></DD
-></DL
-></DD
-><DT
->21. <A
-HREF="#GROUPMAPPING"
->Group mapping HOWTO</A
-></DT
-><DT
->22. <A
-HREF="#SPEED"
->Samba performance issues</A
-></DT
-><DD
-><DL
-><DT
->22.1. <A
-HREF="#AEN2982"
->Comparisons</A
-></DT
-><DT
->22.2. <A
-HREF="#AEN2988"
->Oplocks</A
-></DT
-><DD
-><DL
-><DT
->22.2.1. <A
-HREF="#AEN2990"
->Overview</A
-></DT
-><DT
->22.2.2. <A
-HREF="#AEN2998"
->Level2 Oplocks</A
-></DT
-><DT
->22.2.3. <A
-HREF="#AEN3004"
->Old 'fake oplocks' option - deprecated</A
-></DT
-></DL
-></DD
-><DT
->22.3. <A
-HREF="#AEN3008"
->Socket options</A
-></DT
-><DT
->22.4. <A
-HREF="#AEN3015"
->Read size</A
-></DT
-><DT
->22.5. <A
-HREF="#AEN3020"
->Max xmit</A
-></DT
-><DT
->22.6. <A
-HREF="#AEN3025"
->Locking</A
-></DT
-><DT
->22.7. <A
-HREF="#AEN3029"
->Share modes</A
-></DT
-><DT
->22.8. <A
-HREF="#AEN3034"
->Log level</A
-></DT
-><DT
->22.9. <A
-HREF="#AEN3037"
->Wide lines</A
-></DT
-><DT
->22.10. <A
-HREF="#AEN3040"
->Read raw</A
-></DT
-><DT
->22.11. <A
-HREF="#AEN3045"
->Write raw</A
-></DT
-><DT
->22.12. <A
-HREF="#AEN3049"
->Read prediction</A
-></DT
-><DT
->22.13. <A
-HREF="#AEN3056"
->Memory mapping</A
-></DT
-><DT
->22.14. <A
-HREF="#AEN3061"
->Slow Clients</A
-></DT
-><DT
->22.15. <A
-HREF="#AEN3065"
->Slow Logins</A
-></DT
-><DT
->22.16. <A
-HREF="#AEN3068"
->Client tuning</A
-></DT
-><DT
->22.17. <A
-HREF="#AEN3100"
->My Results</A
-></DT
-></DL
-></DD
-></DL
-></DIV
-></DIV
-><DIV
-CLASS="CHAPTER"
-><HR><H1
-><A
-NAME="INTEGRATE-MS-NETWORKS"
-></A
->Chapter 10. Integrating MS Windows networks with Samba</H1
-><DIV
-CLASS="SECT1"
-><H2
-CLASS="SECT1"
-><A
-NAME="AEN1362"
-></A
->10.1. Agenda</H2
-><P
->To identify the key functional mechanisms of MS Windows networking 
-to enable the deployment of Samba as a means of extending and/or 
-replacing MS Windows NT/2000 technology.</P
-><P
->We will examine:</P
-><P
-></P
-><OL
-TYPE="1"
-><LI
-><P
->Name resolution in a pure Unix/Linux TCP/IP 
-	environment
-	</P
-></LI
-><LI
-><P
->Name resolution as used within MS Windows 
-	networking
-	</P
-></LI
-><LI
-><P
->How browsing functions and how to deploy stable 
-	and dependable browsing using Samba
-	</P
-></LI
-><LI
-><P
->MS Windows security options and how to 
-	configure Samba for seemless integration
-	</P
-></LI
-><LI
-><P
->Configuration of Samba as:</P
-><P
-></P
-><OL
-TYPE="a"
-><LI
-><P
->A stand-alone server</P
-></LI
-><LI
-><P
->An MS Windows NT 3.x/4.0 security domain member
-		</P
-></LI
-><LI
-><P
->An alternative to an MS Windows NT 3.x/4.0 Domain Controller
-		</P
-></LI
-></OL
-></LI
-></OL
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN1384"
-></A
->10.2. Name Resolution in a pure Unix/Linux world</H2
-><P
->The key configuration files covered in this section are:</P
-><P
-></P
-><UL
-><LI
-><P
-><TT
-CLASS="FILENAME"
->/etc/hosts</TT
-></P
-></LI
-><LI
-><P
-><TT
-CLASS="FILENAME"
->/etc/resolv.conf</TT
-></P
-></LI
-><LI
-><P
-><TT
-CLASS="FILENAME"
->/etc/host.conf</TT
-></P
-></LI
-><LI
-><P
-><TT
-CLASS="FILENAME"
->/etc/nsswitch.conf</TT
-></P
-></LI
-></UL
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN1400"
-></A
->10.2.1. <TT
-CLASS="FILENAME"
->/etc/hosts</TT
-></H3
-><P
->Contains a static list of IP Addresses and names.
-eg:</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->	127.0.0.1	localhost localhost.localdomain
-	192.168.1.1	bigbox.caldera.com	bigbox	alias4box</PRE
-></P
-><P
->The purpose of <TT
-CLASS="FILENAME"
->/etc/hosts</TT
-> is to provide a 
-name resolution mechanism so that uses do not need to remember 
-IP addresses.</P
-><P
->Network packets that are sent over the physical network transport 
-layer communicate not via IP addresses but rather using the Media 
-Access Control address, or MAC address. IP Addresses are currently 
-32 bits in length and are typically presented as four (4) decimal 
-numbers that are separated by a dot (or period). eg: 168.192.1.1</P
-><P
->MAC Addresses use 48 bits (or 6 bytes) and are typically represented 
-as two digit hexadecimal numbers separated by colons. eg: 
-40:8e:0a:12:34:56</P
-><P
->Every network interfrace must have an MAC address. Associated with 
-a MAC address there may be one or more IP addresses. There is NO 
-relationship between an IP address and a MAC address, all such assignments 
-are arbitary or discretionary in nature. At the most basic level all 
-network communications takes place using MAC addressing. Since MAC 
-addresses must be globally unique, and generally remains fixed for 
-any particular interface, the assignment of an IP address makes sense 
-from a network management perspective. More than one IP address can 
-be assigned per MAC address. One address must be the primary IP address, 
-this is the address that will be returned in the ARP reply.</P
-><P
->When a user or a process wants to communicate with another machine 
-the protocol implementation ensures that the "machine name" or "host 
-name" is resolved to an IP address in a manner that is controlled 
-by the TCP/IP configuration control files. The file 
-<TT
-CLASS="FILENAME"
->/etc/hosts</TT
-> is one such file.</P
-><P
->When the IP address of the destination interface has been 
-determined a protocol called ARP/RARP is used to identify 
-the MAC address of the target interface. ARP stands for Address 
-Resolution Protocol, and is a broadcast oriented method that 
-uses UDP (User Datagram Protocol) to send a request to all 
-interfaces on the local network segment using the all 1's MAC 
-address. Network interfaces are programmed to respond to two 
-MAC addresses only; their own unique address and the address 
-ff:ff:ff:ff:ff:ff. The reply packet from an ARP request will 
-contain the MAC address and the primary IP address for each 
-interface.</P
-><P
->The <TT
-CLASS="FILENAME"
->/etc/hosts</TT
-> file is foundational to all 
-Unix/Linux TCP/IP installations and as a minumum will contain 
-the localhost and local network interface IP addresses and the 
-primary names by which they are known within the local machine. 
-This file helps to prime the pump so that a basic level of name 
-resolution can exist before any other method of name resolution 
-becomes available.</P
-></DIV
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN1416"
-></A
->10.2.2. <TT
-CLASS="FILENAME"
->/etc/resolv.conf</TT
-></H3
-><P
->This file tells the name resolution libraries:</P
-><P
-></P
-><UL
-><LI
-><P
->The name of the domain to which the machine 
-	belongs
-	</P
-></LI
-><LI
-><P
->The name(s) of any domains that should be 
-	automatically searched when trying to resolve unqualified 
-	host names to their IP address
-	</P
-></LI
-><LI
-><P
->The name or IP address of available Domain 
-	Name Servers that may be asked to perform name to address 
-	translation lookups
-	</P
-></LI
-></UL
-></DIV
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN1427"
-></A
->10.2.3. <TT
-CLASS="FILENAME"
->/etc/host.conf</TT
-></H3
-><P
-><TT
-CLASS="FILENAME"
->/etc/host.conf</TT
-> is the primary means by 
-which the setting in /etc/resolv.conf may be affected. It is a 
-critical configuration file.  This file controls the order by 
-which name resolution may procede. The typical structure is:</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->	order hosts,bind
-	multi on</PRE
-></P
-><P
->then both addresses should be returned. Please refer to the 
-man page for host.conf for further details.</P
-></DIV
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN1435"
-></A
->10.2.4. <TT
-CLASS="FILENAME"
->/etc/nsswitch.conf</TT
-></H3
-><P
->This file controls the actual name resolution targets. The 
-file typically has resolver object specifications as follows:</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->	# /etc/nsswitch.conf
-	#
-	# Name Service Switch configuration file.
-	#
-
-	passwd:		compat
-	# Alternative entries for password authentication are:
-	# passwd:	compat files nis ldap winbind
-	shadow:		compat
-	group:		compat
-
-	hosts:		files nis dns
-	# Alternative entries for host name resolution are:
-	# hosts:	files dns nis nis+ hesoid db compat ldap wins
-	networks:	nis files dns
-
-	ethers:		nis files
-	protocols:	nis files
-	rpc:		nis files
-	services:	nis files</PRE
-></P
-><P
->Of course, each of these mechanisms requires that the appropriate 
-facilities and/or services are correctly configured.</P
-><P
->It should be noted that unless a network request/message must be 
-sent, TCP/IP networks are silent. All TCP/IP communications assumes a 
-principal of speaking only when necessary.</P
-><P
->Starting with version 2.2.0 samba has Linux support for extensions to 
-the name service switch infrastructure so that linux clients will 
-be able to obtain resolution of MS Windows NetBIOS names to IP 
-Addresses. To gain this functionality Samba needs to be compiled 
-with appropriate arguments to the make command (ie: <B
-CLASS="COMMAND"
->make 
-nsswitch/libnss_wins.so</B
->). The resulting library should 
-then be installed in the <TT
-CLASS="FILENAME"
->/lib</TT
-> directory and 
-the "wins" parameter needs to be added to the "hosts:" line in 
-the <TT
-CLASS="FILENAME"
->/etc/nsswitch.conf</TT
-> file. At this point it 
-will be possible to ping any MS Windows machine by it's NetBIOS 
-machine name, so long as that machine is within the workgroup to 
-which both the samba machine and the MS Windows machine belong.</P
-></DIV
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN1447"
-></A
->10.3. Name resolution as used within MS Windows networking</H2
-><P
->MS Windows networking is predicated about the name each machine 
-is given. This name is known variously (and inconsistently) as 
-the "computer name", "machine name", "networking name", "netbios name", 
-"SMB name". All terms mean the same thing with the exception of 
-"netbios name" which can apply also to the name of the workgroup or the 
-domain name. The terms "workgroup" and "domain" are really just a 
-simply name with which the machine is associated. All NetBIOS names 
-are exactly 16 characters in length. The 16th character is reserved. 
-It is used to store a one byte value that indicates service level 
-information for the NetBIOS name that is registered. A NetBIOS machine 
-name is therefore registered for each service type that is provided by 
-the client/server.</P
-><P
->The following are typical NetBIOS name/service type registrations:</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->	Unique NetBIOS Names:
-		MACHINENAME&#60;00&#62;	= Server Service is running on MACHINENAME
-		MACHINENAME&#60;03&#62; = Generic Machine Name (NetBIOS name)
-		MACHINENAME&#60;20&#62; = LanMan Server service is running on MACHINENAME
-		WORKGROUP&#60;1b&#62; = Domain Master Browser
-
-	Group Names:
-		WORKGROUP&#60;03&#62; = Generic Name registered by all members of WORKGROUP
-		WORKGROUP&#60;1c&#62; = Domain Controllers / Netlogon Servers
-		WORKGROUP&#60;1d&#62; = Local Master Browsers
-		WORKGROUP&#60;1e&#62; = Internet Name Resolvers</PRE
-></P
-><P
->It should be noted that all NetBIOS machines register their own 
-names as per the above. This is in vast contrast to TCP/IP 
-installations where traditionally the system administrator will 
-determine in the /etc/hosts or in the DNS database what names 
-are associated with each IP address.</P
-><P
->One further point of clarification should be noted, the <TT
-CLASS="FILENAME"
->/etc/hosts</TT
-> 
-file and the DNS records do not provide the NetBIOS name type information 
-that MS Windows clients depend on to locate the type of service that may 
-be needed. An example of this is what happens when an MS Windows client 
-wants to locate a domain logon server. It find this service and the IP 
-address of a server that provides it by performing a lookup (via a 
-NetBIOS broadcast) for enumeration of all machines that have 
-registered the name type *&#60;1c&#62;. A logon request is then sent to each 
-IP address that is returned in the enumerated list of IP addresses. Which 
-ever machine first replies then ends up providing the logon services.</P
-><P
->The name "workgroup" or "domain" really can be confusing since these 
-have the added significance of indicating what is the security 
-architecture of the MS Windows network. The term "workgroup" indicates 
-that the primary nature of the network environment is that of a 
-peer-to-peer design. In a WORKGROUP all machines are responsible for 
-their own security, and generally such security is limited to use of 
-just a password (known as SHARE MODE security). In most situations 
-with peer-to-peer networking the users who control their own machines 
-will simply opt to have no security at all. It is possible to have 
-USER MODE security in a WORKGROUP environment, thus requiring use 
-of a user name and a matching password.</P
-><P
->MS Windows networking is thus predetermined to use machine names 
-for all local and remote machine message passing. The protocol used is 
-called Server Message Block (SMB) and this is implemented using 
-the NetBIOS protocol (Network Basic Input Output System). NetBIOS can 
-be encapsulated using LLC (Logical Link Control) protocol - in which case 
-the resulting protocol is called NetBEUI (Network Basic Extended User 
-Interface). NetBIOS can also be run over IPX (Internetworking Packet 
-Exchange) protocol as used by Novell NetWare, and it can be run 
-over TCP/IP protocols - in which case the resulting protocol is called 
-NBT or NetBT, the NetBIOS over TCP/IP.</P
-><P
->MS Windows machines use a complex array of name resolution mechanisms. 
-Since we are primarily concerned with TCP/IP this demonstration is 
-limited to this area.</P
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN1459"
-></A
->10.3.1. The NetBIOS Name Cache</H3
-><P
->All MS Windows machines employ an in memory buffer in which is 
-stored the NetBIOS names and IP addresses for all external 
-machines that that machine has communicated with over the 
-past 10-15 minutes. It is more efficient to obtain an IP address 
-for a machine from the local cache than it is to go through all the 
-configured name resolution mechanisms.</P
-><P
->If a machine whose name is in the local name cache has been shut 
-down before the name had been expired and flushed from the cache, then 
-an attempt to exchange a message with that machine will be subject 
-to time-out delays. i.e.: Its name is in the cache, so a name resolution 
-lookup will succeed, but the machine can not respond. This can be 
-frustrating for users - but it is a characteristic of the protocol.</P
-><P
->The MS Windows utility that allows examination of the NetBIOS 
-name cache is called "nbtstat". The Samba equivalent of this 
-is called "nmblookup".</P
-></DIV
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN1464"
-></A
->10.3.2. The LMHOSTS file</H3
-><P
->This file is usually located in MS Windows NT 4.0 or 
-2000 in <TT
-CLASS="FILENAME"
->C:\WINNT\SYSTEM32\DRIVERS\ETC</TT
-> and contains 
-the IP Address and the machine name in matched pairs. The 
-<TT
-CLASS="FILENAME"
->LMHOSTS</TT
-> file performs NetBIOS name 
-to IP address mapping oriented.</P
-><P
->It typically looks like:</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->	# Copyright (c) 1998 Microsoft Corp.
-	#
-	# This is a sample LMHOSTS file used by the Microsoft Wins Client (NetBIOS
-	# over TCP/IP) stack for Windows98
-	#
-	# This file contains the mappings of IP addresses to NT computernames
-	# (NetBIOS) names.  Each entry should be kept on an individual line.
-	# The IP address should be placed in the first column followed by the
-	# corresponding computername. The address and the comptername
-	# should be separated by at least one space or tab. The "#" character
-	# is generally used to denote the start of a comment (see the exceptions
-	# below).
-	#
-	# This file is compatible with Microsoft LAN Manager 2.x TCP/IP lmhosts
-	# files and offers the following extensions:
-	#
-	#      #PRE
-	#      #DOM:&lt;domain&gt;
-	#      #INCLUDE &lt;filename&gt;
-	#      #BEGIN_ALTERNATE
-	#      #END_ALTERNATE
-	#      \0xnn (non-printing character support)
-	#
-	# Following any entry in the file with the characters "#PRE" will cause
-	# the entry to be preloaded into the name cache. By default, entries are
-	# not preloaded, but are parsed only after dynamic name resolution fails.
-	#
-	# Following an entry with the "#DOM:&lt;domain&gt;" tag will associate the
-	# entry with the domain specified by &lt;domain&gt;. This affects how the
-	# browser and logon services behave in TCP/IP environments. To preload
-	# the host name associated with #DOM entry, it is necessary to also add a
-	# #PRE to the line. The &lt;domain&gt; is always preloaded although it will not
-	# be shown when the name cache is viewed.
-	#
-	# Specifying "#INCLUDE &lt;filename&gt;" will force the RFC NetBIOS (NBT)
-	# software to seek the specified &lt;filename&gt; and parse it as if it were
-	# local. &lt;filename&gt; is generally a UNC-based name, allowing a
-	# centralized lmhosts file to be maintained on a server.
-	# It is ALWAYS necessary to provide a mapping for the IP address of the
-	# server prior to the #INCLUDE. This mapping must use the #PRE directive.
-	# In addtion the share "public" in the example below must be in the
-	# LanManServer list of "NullSessionShares" in order for client machines to
-	# be able to read the lmhosts file successfully. This key is under
-	# \machine\system\currentcontrolset\services\lanmanserver\parameters\nullsessionshares
-	# in the registry. Simply add "public" to the list found there.
-	#
-	# The #BEGIN_ and #END_ALTERNATE keywords allow multiple #INCLUDE
-	# statements to be grouped together. Any single successful include
-	# will cause the group to succeed.
-	#
-	# Finally, non-printing characters can be embedded in mappings by
-	# first surrounding the NetBIOS name in quotations, then using the
-	# \0xnn notation to specify a hex value for a non-printing character.
-	#
-	# The following example illustrates all of these extensions:
-	#
-	# 102.54.94.97     rhino         #PRE #DOM:networking  #net group's DC
-	# 102.54.94.102    "appname  \0x14"                    #special app server
-	# 102.54.94.123    popular            #PRE             #source server
-	# 102.54.94.117    localsrv           #PRE             #needed for the include
-	#
-	# #BEGIN_ALTERNATE
-	# #INCLUDE \\localsrv\public\lmhosts
-	# #INCLUDE \\rhino\public\lmhosts
-	# #END_ALTERNATE
-	#
-	# In the above example, the "appname" server contains a special
-	# character in its name, the "popular" and "localsrv" server names are
-	# preloaded, and the "rhino" server name is specified so it can be used
-	# to later #INCLUDE a centrally maintained lmhosts file if the "localsrv"
-	# system is unavailable.
-	#
-	# Note that the whole file is parsed including comments on each lookup,
-	# so keeping the number of comments to a minimum will improve performance.
-	# Therefore it is not advisable to simply add lmhosts file entries onto the
-	# end of this file.</PRE
-></P
-></DIV
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN1472"
-></A
->10.3.3. HOSTS file</H3
-><P
->This file is usually located in MS Windows NT 4.0 or 2000 in 
-<TT
-CLASS="FILENAME"
->C:\WINNT\SYSTEM32\DRIVERS\ETC</TT
-> and contains 
-the IP Address and the IP hostname in matched pairs. It can be 
-used by the name resolution infrastructure in MS Windows, depending 
-on how the TCP/IP environment is configured. This file is in 
-every way the equivalent of the Unix/Linux <TT
-CLASS="FILENAME"
->/etc/hosts</TT
-> file.</P
-></DIV
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN1477"
-></A
->10.3.4. DNS Lookup</H3
-><P
->This capability is configured in the TCP/IP setup area in the network 
-configuration facility. If enabled an elaborate name resolution sequence 
-is followed the precise nature of which isdependant on what the NetBIOS 
-Node Type parameter is configured to. A Node Type of 0 means use 
-NetBIOS broadcast (over UDP broadcast) is first used if the name 
-that is the subject of a name lookup is not found in the NetBIOS name 
-cache. If that fails then DNS, HOSTS and LMHOSTS are checked. If set to 
-Node Type 8, then a NetBIOS Unicast (over UDP Unicast) is sent to the 
-WINS Server to obtain a lookup before DNS, HOSTS, LMHOSTS, or broadcast 
-lookup is used.</P
-></DIV
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN1480"
-></A
->10.3.5. WINS Lookup</H3
-><P
->A WINS (Windows Internet Name Server) service is the equivaent of the 
-rfc1001/1002 specified NBNS (NetBIOS Name Server). A WINS server stores 
-the names and IP addresses that are registered by a Windows client 
-if the TCP/IP setup has been given at least one WINS Server IP Address.</P
-><P
->To configure Samba to be a WINS server the following parameter needs 
-to be added to the <TT
-CLASS="FILENAME"
->smb.conf</TT
-> file:</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->	wins support = Yes</PRE
-></P
-><P
->To configure Samba to use a WINS server the following parameters are 
-needed in the smb.conf file:</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->	wins support = No
-	wins server = xxx.xxx.xxx.xxx</PRE
-></P
-><P
->where <TT
-CLASS="REPLACEABLE"
-><I
->xxx.xxx.xxx.xxx</I
-></TT
-> is the IP address 
-of the WINS server.</P
-></DIV
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN1492"
-></A
->10.4. How browsing functions and how to deploy stable and 
-dependable browsing using Samba</H2
-><P
->As stated above, MS Windows machines register their NetBIOS names 
-(i.e.: the machine name for each service type in operation) on start 
-up. Also, as stated above, the exact method by which this name registration 
-takes place is determined by whether or not the MS Windows client/server 
-has been given a WINS server address, whether or not LMHOSTS lookup 
-is enabled, or if DNS for NetBIOS name resolution is enabled, etc.</P
-><P
->In the case where there is no WINS server all name registrations as 
-well as name lookups are done by UDP broadcast. This isolates name 
-resolution to the local subnet, unless LMHOSTS is used to list all 
-names and IP addresses. In such situations Samba provides a means by 
-which the samba server name may be forcibly injected into the browse 
-list of a remote MS Windows network (using the "remote announce" parameter).</P
-><P
->Where a WINS server is used, the MS Windows client will use UDP 
-unicast to register with the WINS server. Such packets can be routed 
-and thus WINS allows name resolution to function across routed networks.</P
-><P
->During the startup process an election will take place to create a 
-local master browser if one does not already exist. On each NetBIOS network 
-one machine will be elected to function as the domain master browser. This 
-domain browsing has nothing to do with MS security domain control. 
-Instead, the domain master browser serves the role of contacting each local 
-master browser (found by asking WINS or from LMHOSTS) and exchanging browse 
-list contents. This way every master browser will eventually obtain a complete 
-list of all machines that are on the network. Every 11-15 minutes an election 
-is held to determine which machine will be the master browser. By the nature of 
-the election criteria used, the machine with the highest uptime, or the 
-most senior protocol version, or other criteria, will win the election 
-as domain master browser.</P
-><P
->Clients wishing to browse the network make use of this list, but also depend 
-on the availability of correct name resolution to the respective IP 
-address/addresses. </P
-><P
->Any configuration that breaks name resolution and/or browsing intrinsics 
-will annoy users because they will have to put up with protracted 
-inability to use the network services.</P
-><P
->Samba supports a feature that allows forced synchonisation 
-of browse lists across routed networks using the "remote 
-browse sync" parameter in the smb.conf file. This causes Samba 
-to contact the local master browser on a remote network and 
-to request browse list synchronisation. This effectively bridges 
-two networks that are separated by routers. The two remote 
-networks may use either broadcast based name resolution or WINS 
-based name resolution, but it should be noted that the "remote 
-browse sync" parameter provides browse list synchronisation - and 
-that is distinct from name to address resolution, in other 
-words, for cross subnet browsing to function correctly it is 
-essential that a name to address resolution mechanism be provided. 
-This mechanism could be via DNS, <TT
-CLASS="FILENAME"
->/etc/hosts</TT
->, 
-and so on.</P
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN1502"
-></A
->10.5. MS Windows security options and how to configure 
-Samba for seemless integration</H2
-><P
->MS Windows clients may use encrypted passwords as part of a 
-challenege/response authentication model (a.k.a. NTLMv1) or 
-alone, or clear text strings for simple password based 
-authentication. It should be realized that with the SMB 
-protocol the password is passed over the network either 
-in plain text or encrypted, but not both in the same 
-authentication requets.</P
-><P
->When encrypted passwords are used a password that has been 
-entered by the user is encrypted in two ways:</P
-><P
-></P
-><UL
-><LI
-><P
->An MD4 hash of the UNICODE of the password
-	string.  This is known as the NT hash.
-	</P
-></LI
-><LI
-><P
->The password is converted to upper case,
-	and then padded or trucated to 14 bytes.  This string is 
-	then appended with 5 bytes of NULL characters and split to
-	form two 56 bit DES keys to encrypt a "magic" 8 byte value.
-	The resulting 16 bytes for the LanMan hash.
-	</P
-></LI
-></UL
-><P
->You should refer to the <A
-HREF="ENCRYPTION.html"
-TARGET="_top"
->Password Encryption</A
-> chapter in this HOWTO collection
-for more details on the inner workings</P
-><P
->MS Windows 95 pre-service pack 1, MS Windows NT versions 3.x 
-and version 4.0 pre-service pack 3 will use either mode of 
-password authentication. All versions of MS Windows that follow 
-these versions no longer support plain text passwords by default.</P
-><P
->MS Windows clients have a habit of dropping network mappings that 
-have been idle for 10 minutes or longer. When the user attempts to 
-use the mapped drive connection that has been dropped, the client
-re-establishes the connection using 
-a cached copy of the password.</P
-><P
->When Microsoft changed the default password mode, they dropped support for 
-caching of the plain text password. This means that when the registry 
-parameter is changed to re-enable use of plain text passwords it appears to 
-work, but when a dropped mapping attempts to revalidate it will fail if 
-the remote authentication server does not support encrypted passwords. 
-This means that it is definitely not a good idea to re-enable plain text 
-password support in such clients.</P
-><P
->The following parameters can be used to work around the 
-issue of Windows 9x client upper casing usernames and
-password before transmitting them to the SMB server
-when using clear text authentication.</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->	<A
-HREF="smb.conf.5.html#PASSWORDLEVEL"
-TARGET="_top"
->passsword level</A
-> = <TT
-CLASS="REPLACEABLE"
-><I
->integer</I
-></TT
->
-	<A
-HREF="smb.conf.5.html#USERNAMELEVEL"
-TARGET="_top"
->username level</A
-> = <TT
-CLASS="REPLACEABLE"
-><I
->integer</I
-></TT
-></PRE
-></P
-><P
->By default Samba will lower case the username before attempting
-to lookup the user in the database of local system accounts.
-Because UNIX usernames conventionally only contain lower case
-character, the <TT
-CLASS="PARAMETER"
-><I
->username level</I
-></TT
-> parameter
-is rarely even needed.</P
-><P
->However, password on UNIX systems often make use of mixed case
-characters.  This means that in order for a user on a Windows 9x
-client to connect to a Samba server using clear text authentication,
-the <TT
-CLASS="PARAMETER"
-><I
->password level</I
-></TT
-> must be set to the maximum
-number of upper case letter which <SPAN
-CLASS="emphasis"
-><I
-CLASS="EMPHASIS"
->could</I
-></SPAN
-> appear
-is a password.  Note that is the server OS uses the traditional
-DES version of crypt(), then a <TT
-CLASS="PARAMETER"
-><I
->password level</I
-></TT
->
-of 8 will result in case insensitive passwords as seen from Windows
-users.  This will also result in longer login times as Samba
-hash to compute the permutations of the password string and 
-try them one by one until a match is located (or all combinations fail).</P
-><P
->The best option to adopt is to enable support for encrypted passwords 
-where ever Samba is used. There are three configuration possibilities 
-for support of encrypted passwords:</P
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN1530"
-></A
->10.5.1. Use MS Windows NT as an authentication server</H3
-><P
->This method involves the additions of the following parameters 
-in the smb.conf file:</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->	encrypt passwords = Yes
-	security = server
-	password server = "NetBIOS_name_of_PDC"</PRE
-></P
-><P
->There are two ways of identifying whether or not a username and 
-password pair was valid or not. One uses the reply information provided 
-as part of the authentication messaging process, the other uses 
-just and error code.</P
-><P
->The down-side of this mode of configuration is the fact that 
-for security reasons Samba will send the password server a bogus 
-username and a bogus password and if the remote server fails to 
-reject the username and password pair then an alternative mode 
-of identification of validation is used. Where a site uses password 
-lock out after a certain number of failed authentication attempts 
-this will result in user lockouts.</P
-><P
->Use of this mode of authentication does require there to be 
-a standard Unix account for the user, this account can be blocked 
-to prevent logons by other than MS Windows clients.</P
-></DIV
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN1538"
-></A
->10.5.2. Make Samba a member of an MS Windows NT security domain</H3
-><P
->This method involves additon of the following paramters in the smb.conf file:</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->	encrypt passwords = Yes
-	security = domain
-	workgroup = "name of NT domain"
-	password server = *</PRE
-></P
-><P
->The use of the "*" argument to "password server" will cause samba 
-to locate the domain controller in a way analogous to the way 
-this is done within MS Windows NT.</P
-><P
->In order for this method to work the Samba server needs to join the 
-MS Windows NT security domain. This is done as follows:</P
-><P
-></P
-><UL
-><LI
-><P
->On the MS Windows NT domain controller using 
-	the Server Manager add a machine account for the Samba server.
-	</P
-></LI
-><LI
-><P
->Next, on the Linux system execute: 
-	<B
-CLASS="COMMAND"
->smbpasswd -r PDC_NAME -j DOMAIN_NAME</B
->
-	</P
-></LI
-></UL
-><P
->Use of this mode of authentication does require there to be 
-a standard Unix account for the user in order to assign
-a uid once the account has been authenticated by the remote
-Windows DC.  This account can be blocked to prevent logons by 
-other than MS Windows clients by things such as setting an invalid
-shell in the <TT
-CLASS="FILENAME"
->/etc/passwd</TT
-> entry.</P
-><P
->An alternative to assigning UIDs to Windows users on a 
-Samba member server is presented in the <A
-HREF="winbind.html"
-TARGET="_top"
->Winbind Overview</A
-> chapter in
-this HOWTO collection.</P
-></DIV
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN1555"
-></A
->10.5.3. Configure Samba as an authentication server</H3
-><P
->This mode of authentication demands that there be on the 
-Unix/Linux system both a Unix style account as well as an 
-smbpasswd entry for the user. The Unix system account can be 
-locked if required as only the encrypted password will be 
-used for SMB client authentication.</P
-><P
->This method involves addition of the following parameters to 
-the smb.conf file:</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->## please refer to the Samba PDC HOWTO chapter later in 
-## this collection for more details
-[global]
-	encrypt passwords = Yes
-	security = user
-	domain logons = Yes
-	; an OS level of 33 or more is recommended
-	os level = 33
-
-[NETLOGON]
-	path = /somewhare/in/file/system
-	read only = yes</PRE
-></P
-><P
->in order for this method to work a Unix system account needs 
-to be created for each user, as well as for each MS Windows NT/2000 
-machine. The following structure is required.</P
-><DIV
-CLASS="SECT3"
-><HR><H4
-CLASS="SECT3"
-><A
-NAME="AEN1562"
-></A
->10.5.3.1. Users</H4
-><P
->A user account that may provide a home directory should be 
-created. The following Linux system commands are typical of 
-the procedure for creating an account.</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->	# useradd -s /bin/bash -d /home/"userid" -m "userid"
-	# passwd "userid"
-	  Enter Password: &lt;pw&gt;
-	  
-	# smbpasswd -a "userid"
-	  Enter Password: &lt;pw&gt;</PRE
-></P
-></DIV
-><DIV
-CLASS="SECT3"
-><HR><H4
-CLASS="SECT3"
-><A
-NAME="AEN1567"
-></A
->10.5.3.2. MS Windows NT Machine Accounts</H4
-><P
->These are required only when Samba is used as a domain 
-controller.  Refer to the Samba-PDC-HOWTO for more details.</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->	# useradd -s /bin/false -d /dev/null "machine_name"\$
-	# passwd -l "machine_name"\$
-	# smbpasswd -a -m "machine_name"</PRE
-></P
-></DIV
-></DIV
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN1572"
-></A
->10.6. Conclusions</H2
-><P
->Samba provides a flexible means to operate as...</P
-><P
-></P
-><UL
-><LI
-><P
->A Stand-alone server - No special action is needed 
-	other than to create user accounts. Stand-alone servers do NOT 
-	provide network logon services, meaning that machines that use this 
-	server do NOT perform a domain logon but instead make use only of 
-	the MS Windows logon which is local to the MS Windows 
-	workstation/server.
-	</P
-></LI
-><LI
-><P
->An MS Windows NT 3.x/4.0 security domain member.
-	</P
-></LI
-><LI
-><P
->An alternative to an MS Windows NT 3.x/4.0 
-	Domain Controller.
-	</P
-></LI
-></UL
-></DIV
-></DIV
-><DIV
-CLASS="CHAPTER"
-><HR><H1
-><A
-NAME="UNIX-PERMISSIONS"
-></A
->Chapter 11. UNIX Permission Bits and Windows NT Access Control Lists</H1
-><DIV
-CLASS="SECT1"
-><H2
-CLASS="SECT1"
-><A
-NAME="AEN1593"
-></A
->11.1. Viewing and changing UNIX permissions using the NT 
-	security dialogs</H2
-><P
->New in the Samba 2.0.4 release is the ability for Windows 
-	NT clients to use their native security settings dialog box to 
-	view and modify the underlying UNIX permissions.</P
-><P
->Note that this ability is careful not to compromise 
-	the security of the UNIX host Samba is running on, and 
-	still obeys all the file permission rules that a Samba 
-	administrator can set.</P
-><P
->In Samba 2.0.4 and above the default value of the 
-	parameter <A
-HREF="smb.conf.5.html#NTACLSUPPORT"
-TARGET="_top"
-><TT
-CLASS="PARAMETER"
-><I
->	nt acl support</I
-></TT
-></A
-> has been changed from 
-	<TT
-CLASS="CONSTANT"
->false</TT
-> to <TT
-CLASS="CONSTANT"
->true</TT
->, so 
- 	manipulation of permissions is turned on by default.</P
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN1602"
-></A
->11.2. How to view file security on a Samba share</H2
-><P
->From an NT 4.0 client, single-click with the right 
-	mouse button on any file or directory in a Samba mounted 
-	drive letter or UNC path. When the menu pops-up, click 
-	on the <SPAN
-CLASS="emphasis"
-><I
-CLASS="EMPHASIS"
->Properties</I
-></SPAN
-> entry at the bottom of 
-	the menu. This brings up the normal file properties dialog
-	box, but with Samba 2.0.4 this will have a new tab along the top
-	marked <SPAN
-CLASS="emphasis"
-><I
-CLASS="EMPHASIS"
->Security</I
-></SPAN
->. Click on this tab and you 
-	will see three buttons, <SPAN
-CLASS="emphasis"
-><I
-CLASS="EMPHASIS"
->Permissions</I
-></SPAN
->, 	
-	<SPAN
-CLASS="emphasis"
-><I
-CLASS="EMPHASIS"
->Auditing</I
-></SPAN
->, and <SPAN
-CLASS="emphasis"
-><I
-CLASS="EMPHASIS"
->Ownership</I
-></SPAN
->. 
-	The <SPAN
-CLASS="emphasis"
-><I
-CLASS="EMPHASIS"
->Auditing</I
-></SPAN
-> button will cause either 
-	an error message <SPAN
-CLASS="ERRORNAME"
->A requested privilege is not held 
-	by the client</SPAN
-> to appear if the user is not the 
-	NT Administrator, or a dialog which is intended to allow an 
-	Administrator to add auditing requirements to a file if the 
-	user is logged on as the NT Administrator. This dialog is 
-	non-functional with a Samba share at this time, as the only 
-	useful button, the <B
-CLASS="COMMAND"
->Add</B
-> button will not currently 
-	allow a list of users to be seen.</P
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN1613"
-></A
->11.3. Viewing file ownership</H2
-><P
->Clicking on the <B
-CLASS="COMMAND"
->"Ownership"</B
-> button 
-	brings up a dialog box telling you who owns the given file. The 
-	owner name will be of the form :</P
-><P
-><B
-CLASS="COMMAND"
->"SERVER\user (Long name)"</B
-></P
-><P
->Where <TT
-CLASS="REPLACEABLE"
-><I
->SERVER</I
-></TT
-> is the NetBIOS name of 
-	the Samba server, <TT
-CLASS="REPLACEABLE"
-><I
->user</I
-></TT
-> is the user name of 
-	the UNIX user who owns the file, and <TT
-CLASS="REPLACEABLE"
-><I
->(Long name)</I
-></TT
->
-	is the descriptive string identifying the user (normally found in the
-	GECOS field of the UNIX password database). Click on the <B
-CLASS="COMMAND"
->Close
-	</B
-> button to remove this dialog.</P
-><P
->If the parameter <TT
-CLASS="PARAMETER"
-><I
->nt acl support</I
-></TT
->
-	is set to <TT
-CLASS="CONSTANT"
->false</TT
-> then the file owner will 
-	be shown as the NT user <B
-CLASS="COMMAND"
->"Everyone"</B
->.</P
-><P
->The <B
-CLASS="COMMAND"
->Take Ownership</B
-> button will not allow 
-	you to change the ownership of this file to yourself (clicking on 
-	it will display a dialog box complaining that the user you are 
-	currently logged onto the NT client cannot be found). The reason 
-	for this is that changing the ownership of a file is a privileged 
-	operation in UNIX, available only to the <SPAN
-CLASS="emphasis"
-><I
-CLASS="EMPHASIS"
->root</I
-></SPAN
-> 
-	user. As clicking on this button causes NT to attempt to change 
-	the ownership of a file to the current user logged into the NT 
-	client this will not work with Samba at this time.</P
-><P
->There is an NT chown command that will work with Samba 
-	and allow a user with Administrator privilege connected 
-	to a Samba 2.0.4 server as root to change the ownership of 
-	files on both a local NTFS filesystem or remote mounted NTFS 
-	or Samba drive. This is available as part of the <SPAN
-CLASS="emphasis"
-><I
-CLASS="EMPHASIS"
->Seclib
-	</I
-></SPAN
-> NT security library written by Jeremy Allison of 
-	the Samba Team, available from the main Samba ftp site.</P
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN1633"
-></A
->11.4. Viewing file or directory permissions</H2
-><P
->The third button is the <B
-CLASS="COMMAND"
->"Permissions"</B
-> 
-	button. Clicking on this brings up a dialog box that shows both 
-	the permissions and the UNIX owner of the file or directory. 
-	The owner is displayed in the form :</P
-><P
-><B
-CLASS="COMMAND"
->"SERVER\user (Long name)"</B
-></P
-><P
->Where <TT
-CLASS="REPLACEABLE"
-><I
->SERVER</I
-></TT
-> is the NetBIOS name of 
-	the Samba server, <TT
-CLASS="REPLACEABLE"
-><I
->user</I
-></TT
-> is the user name of 
-	the UNIX user who owns the file, and <TT
-CLASS="REPLACEABLE"
-><I
->(Long name)</I
-></TT
->
-	is the descriptive string identifying the user (normally found in the
-	GECOS field of the UNIX password database).</P
-><P
->If the parameter <TT
-CLASS="PARAMETER"
-><I
->nt acl support</I
-></TT
->
-	is set to <TT
-CLASS="CONSTANT"
->false</TT
-> then the file owner will 
-	be shown as the NT user <B
-CLASS="COMMAND"
->"Everyone"</B
-> and the 
-	permissions will be shown as NT "Full Control".</P
-><P
->The permissions field is displayed differently for files 
-	and directories, so I'll describe the way file permissions 
-	are displayed first.</P
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN1648"
-></A
->11.4.1. File Permissions</H3
-><P
->The standard UNIX user/group/world triple and 
-		the corresponding "read", "write", "execute" permissions 
-		triples are mapped by Samba into a three element NT ACL 
-		with the 'r', 'w', and 'x' bits mapped into the corresponding 
-		NT permissions. The UNIX world permissions are mapped into 
-		the global NT group <B
-CLASS="COMMAND"
->Everyone</B
->, followed 
-		by the list of permissions allowed for UNIX world. The UNIX 
-		owner and group permissions are displayed as an NT 
-		<B
-CLASS="COMMAND"
->user</B
-> icon and an NT <B
-CLASS="COMMAND"
->local 
-		group</B
-> icon respectively followed by the list 
-	 	of permissions allowed for the UNIX user and group.</P
-><P
->As many UNIX permission sets don't map into common 
-		NT names such as <B
-CLASS="COMMAND"
->"read"</B
->, <B
-CLASS="COMMAND"
->		"change"</B
-> or <B
-CLASS="COMMAND"
->"full control"</B
-> then 
-		usually the permissions will be prefixed by the words <B
-CLASS="COMMAND"
->		"Special Access"</B
-> in the NT display list.</P
-><P
->But what happens if the file has no permissions allowed 
-		for a particular UNIX user group or world component ? In order 
-		to  allow "no permissions" to be seen and modified then Samba 
-		overloads the NT <B
-CLASS="COMMAND"
->"Take Ownership"</B
-> ACL attribute 
-		(which has no meaning in UNIX) and reports a component with 
-		no permissions as having the NT <B
-CLASS="COMMAND"
->"O"</B
-> bit set. 
-		This was chosen of course to make it look like a zero, meaning 
-		zero permissions. More details on the decision behind this will 
-		be given below.</P
-></DIV
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN1662"
-></A
->11.4.2. Directory Permissions</H3
-><P
->Directories on an NT NTFS file system have two 
-		different sets of permissions. The first set of permissions 
-		is the ACL set on the directory itself, this is usually displayed 
-		in the first set of parentheses in the normal <B
-CLASS="COMMAND"
->"RW"</B
-> 
-		NT style. This first set of permissions is created by Samba in 
-		exactly the same way as normal file permissions are, described 
-		above, and is displayed in the same way.</P
-><P
->The second set of directory permissions has no real meaning 
-		in the UNIX permissions world and represents the <B
-CLASS="COMMAND"
->		"inherited"</B
-> permissions that any file created within 
-		this directory would inherit.</P
-><P
->Samba synthesises these inherited permissions for NT by 
-		returning as an NT ACL the UNIX permission mode that a new file 
-		created by Samba on this share would receive.</P
-></DIV
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN1669"
-></A
->11.5. Modifying file or directory permissions</H2
-><P
->Modifying file and directory permissions is as simple 
-	as changing the displayed permissions in the dialog box, and 
-	clicking the <B
-CLASS="COMMAND"
->OK</B
-> button. However, there are 
-	limitations that a user needs to be aware of, and also interactions 
-	with the standard Samba permission masks and mapping of DOS 
-	attributes that need to also be taken into account.</P
-><P
->If the parameter <TT
-CLASS="PARAMETER"
-><I
->nt acl support</I
-></TT
->
-	is set to <TT
-CLASS="CONSTANT"
->false</TT
-> then any attempt to set 
-	security permissions will fail with an <B
-CLASS="COMMAND"
->"Access Denied"
-	</B
-> message.</P
-><P
->The first thing to note is that the <B
-CLASS="COMMAND"
->"Add"</B
-> 
-	button will not return a list of users in Samba 2.0.4 (it will give 
-	an error message of <B
-CLASS="COMMAND"
->"The remote procedure call failed 
-	and did not execute"</B
->). This means that you can only 
-	manipulate the current user/group/world permissions listed in 
-	the dialog box. This actually works quite well as these are the 
-	only permissions that UNIX actually has.</P
-><P
->If a permission triple (either user, group, or world) 
-	is removed from the list of permissions in the NT dialog box, 
-	then when the <B
-CLASS="COMMAND"
->"OK"</B
-> button is pressed it will 
-	be applied as "no permissions" on the UNIX side. If you then 
-	view the permissions again the "no permissions" entry will appear 
-	as the NT <B
-CLASS="COMMAND"
->"O"</B
-> flag, as described above. This 
-	allows you to add permissions back to a file or directory once 
-	you have removed them from a triple component.</P
-><P
->As UNIX supports only the "r", "w" and "x" bits of 
-	an NT ACL then if other NT security attributes such as "Delete 
-	access" are selected then they will be ignored when applied on 
-	the Samba server.</P
-><P
->When setting permissions on a directory the second 
-	set of permissions (in the second set of parentheses) is 
-	by default applied to all files within that directory. If this 
-	is not what you want you must uncheck the <B
-CLASS="COMMAND"
->"Replace 
-	permissions on existing files"</B
-> checkbox in the NT 
-	dialog before clicking <B
-CLASS="COMMAND"
->"OK"</B
->.</P
-><P
->If you wish to remove all permissions from a 
-	user/group/world  component then you may either highlight the 
-	component and click the <B
-CLASS="COMMAND"
->"Remove"</B
-> button, 
-	or set the component to only have the special <B
-CLASS="COMMAND"
->"Take
-	Ownership"</B
-> permission (displayed as <B
-CLASS="COMMAND"
->"O"
-	</B
->) highlighted.</P
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN1691"
-></A
->11.6. Interaction with the standard Samba create mask 
-	parameters</H2
-><P
->Note that with Samba 2.0.5 there are four new parameters 
-	to control this interaction.  These are :</P
+>11.2. Introduction</H2
 ><P
-><TT
-CLASS="PARAMETER"
-><I
->security mask</I
-></TT
-></P
+>It is well known that UNIX and Microsoft Windows NT have 
+	different models for representing user and group information and 
+	use different technologies for implementing them. This fact has 
+	made it difficult to integrate the two systems in a satisfactory 
+	manner.</P
 ><P
-><TT
-CLASS="PARAMETER"
-><I
->force security mode</I
-></TT
-></P
+>One common solution in use today has been to create 
+	identically named user accounts on both the UNIX and Windows systems 
+	and use the Samba suite of programs to provide file and print services 
+	between the two. This solution is far from perfect however, as 
+	adding and deleting users on both sets of machines becomes a chore 
+	and two sets of passwords are required both of which
+	can lead to synchronization problems between the UNIX and Windows 
+	systems and confusion for users.</P
 ><P
-><TT
-CLASS="PARAMETER"
-><I
->directory security mask</I
-></TT
-></P
+>We divide the unified logon problem for UNIX machines into 
+	three smaller problems:</P
 ><P
-><TT
-CLASS="PARAMETER"
-><I
->force directory security mode</I
-></TT
 ></P
+><UL
+><LI
 ><P
->Once a user clicks <B
-CLASS="COMMAND"
->"OK"</B
-> to apply the 
-	permissions Samba maps the given permissions into a user/group/world 
-	r/w/x triple set, and then will check the changed permissions for a 
-	file against the bits set in the <A
-HREF="smb.conf.5.html#SECURITYMASK"
-TARGET="_top"
-> 
-	<TT
-CLASS="PARAMETER"
-><I
->security mask</I
-></TT
-></A
-> parameter. Any bits that 
-	were changed that are not set to '1' in this parameter are left alone 
-	in the file permissions.</P
-><P
->Essentially, zero bits in the <TT
-CLASS="PARAMETER"
-><I
->security mask</I
-></TT
->
-	mask may be treated as a set of bits the user is <SPAN
-CLASS="emphasis"
-><I
-CLASS="EMPHASIS"
->not</I
-></SPAN
-> 
-	allowed to change, and one bits are those the user is allowed to change.
-	</P
-><P
->If not set explicitly this parameter is set to the same value as 
-	the <A
-HREF="smb.conf.5.html#CREATEMASK"
-TARGET="_top"
-><TT
-CLASS="PARAMETER"
-><I
->create mask
-	</I
-></TT
-></A
-> parameter to provide compatibility with Samba 2.0.4 
-	where this permission change facility was introduced. To allow a user to 
-	modify all the user/group/world permissions on a file, set this parameter 
-	to 0777.</P
+>Obtaining Windows NT user and group information
+		</P
+></LI
+><LI
 ><P
->Next Samba checks the changed permissions for a file against 
-	the bits set in the <A
-HREF="smb.conf.5.html#FORCESECURITYMODE"
-TARGET="_top"
->	<TT
-CLASS="PARAMETER"
-><I
->force security mode</I
-></TT
-></A
-> parameter. Any bits 
-	that were changed that correspond to bits set to '1' in this parameter 
-	are forced to be set.</P
+>Authenticating Windows NT users
+		</P
+></LI
+><LI
 ><P
->Essentially, bits set in the <TT
-CLASS="PARAMETER"
-><I
->force security mode
-	</I
-></TT
-> parameter may be treated as a set of bits that, when 
-	modifying security on a file, the user has always set to be 'on'.</P
+>Password changing for Windows NT users
+		</P
+></LI
+></UL
 ><P
->If not set explicitly this parameter is set to the same value 
-	as the <A
-HREF="smb.conf.5.html#FORCECREATEMODE"
-TARGET="_top"
-><TT
-CLASS="PARAMETER"
-><I
->force 
-	create mode</I
-></TT
+>Ideally, a prospective solution to the unified logon problem 
+	would satisfy all the above components without duplication of 
+	information on the UNIX machines and without creating additional 
+	tasks for the system administrator when maintaining users and 
+	groups on either system. The winbind system provides a simple 
+	and elegant solution to all three components of the unified logon 
+	problem.</P
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
+><A
+NAME="AEN1414"
 ></A
-> parameter to provide compatibility
-	with Samba 2.0.4 where the permission change facility was introduced.
-	To allow a user to modify all the user/group/world permissions on a file
-	with no restrictions set this parameter to 000.</P
+>11.3. What Winbind Provides</H2
 ><P
->The <TT
-CLASS="PARAMETER"
-><I
->security mask</I
-></TT
-> and <TT
-CLASS="PARAMETER"
-><I
->force 
-	security mode</I
-></TT
-> parameters are applied to the change 
-	request in that order.</P
+>Winbind unifies UNIX and Windows NT account management by 
+	allowing a UNIX box to become a full member of a NT domain. Once 
+	this is done the UNIX box will see NT users and groups as if 
+	they were native UNIX users and groups, allowing the NT domain 
+	to be used in much the same manner that NIS+ is used within 
+	UNIX-only environments.</P
 ><P
->For a directory Samba will perform the same operations as 
-	described above for a file except using the parameter <TT
-CLASS="PARAMETER"
-><I
->	directory security mask</I
-></TT
-> instead of <TT
-CLASS="PARAMETER"
-><I
->security 
-	mask</I
-></TT
->, and <TT
-CLASS="PARAMETER"
-><I
->force directory security mode
-	</I
-></TT
-> parameter instead of <TT
-CLASS="PARAMETER"
-><I
->force security mode
-	</I
-></TT
->.</P
+>The end result is that whenever any 
+	program on the UNIX machine asks the operating system to lookup 
+	a user or group name, the query will be resolved by asking the 
+	NT domain controller for the specified domain to do the lookup.
+	Because Winbind hooks into the operating system at a low level 
+	(via the NSS name resolution modules in the C library) this 
+	redirection to the NT domain controller is completely 
+	transparent.</P
 ><P
->The <TT
-CLASS="PARAMETER"
-><I
->directory security mask</I
-></TT
-> parameter 
-	by default is set to the same value as the <TT
-CLASS="PARAMETER"
-><I
->directory mask
-	</I
-></TT
-> parameter and the <TT
-CLASS="PARAMETER"
-><I
->force directory security 
-	mode</I
-></TT
-> parameter by default is set to the same value as 
- 	the <TT
-CLASS="PARAMETER"
-><I
->force directory mode</I
-></TT
-> parameter to provide 
-	compatibility with Samba 2.0.4 where the permission change facility 
-	was introduced.</P
+>Users on the UNIX machine can then use NT user and group 
+	names as they would use "native" UNIX names. They can chown files 
+	so that they are owned by NT domain users or even login to the 
+	UNIX machine and run a UNIX X-Window session as a domain user.</P
 ><P
->In this way Samba enforces the permission restrictions that 
-	an administrator can set on a Samba share, whilst still allowing users 
-	to modify the permission bits within that restriction.</P
+>The only obvious indication that Winbind is being used is 
+	that user and group names take the form DOMAIN\user and 
+	DOMAIN\group. This is necessary as it allows Winbind to determine 
+	that redirection to a domain controller is wanted for a particular 
+	lookup and which trusted domain is being referenced.</P
 ><P
->If you want to set up a share that allows users full control
-	in modifying the permission bits on their files and directories and
-	doesn't force any particular bits to be set 'on', then set the following
-	parameters in the <A
-HREF="smb.conf.5.html"
-TARGET="_top"
-><TT
-CLASS="FILENAME"
->smb.conf(5)
-	</TT
+>Additionally, Winbind provides an authentication service 
+	that hooks into the Pluggable Authentication Modules (PAM) system 
+	to provide authentication via a NT domain to any PAM enabled 
+	applications. This capability solves the problem of synchronizing 
+	passwords between systems since all passwords are stored in a single 
+	location (on the domain controller).</P
+><DIV
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
+><A
+NAME="AEN1421"
 ></A
-> file in that share specific section :</P
+>11.3.1. Target Uses</H3
 ><P
-><TT
-CLASS="PARAMETER"
-><I
->security mask = 0777</I
-></TT
-></P
+>Winbind is targeted at organizations that have an 
+		existing NT based domain infrastructure into which they wish 
+		to put UNIX workstations or servers. Winbind will allow these 
+		organizations to deploy UNIX workstations without having to 
+		maintain a separate account infrastructure. This greatly 
+		simplifies the administrative overhead of deploying UNIX 
+		workstations into a NT based organization.</P
 ><P
-><TT
-CLASS="PARAMETER"
-><I
->force security mode = 0</I
-></TT
-></P
+>Another interesting way in which we expect Winbind to 
+		be used is as a central part of UNIX based appliances. Appliances 
+		that provide file and print services to Microsoft based networks 
+		will be able to use Winbind to provide seamless integration of 
+		the appliance into the domain.</P
+></DIV
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
+><A
+NAME="AEN1425"
+></A
+>11.4. How Winbind Works</H2
 ><P
-><TT
-CLASS="PARAMETER"
-><I
->directory security mask = 0777</I
-></TT
-></P
+>The winbind system is designed around a client/server 
+	architecture. A long running <B
+CLASS="COMMAND"
+>winbindd</B
+> daemon 
+	listens on a UNIX domain socket waiting for requests
+	to arrive. These requests are generated by the NSS and PAM 
+	clients and processed sequentially.</P
 ><P
-><TT
-CLASS="PARAMETER"
-><I
->force directory security mode = 0</I
-></TT
-></P
+>The technologies used to implement winbind are described 
+	in detail below.</P
+><DIV
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
+><A
+NAME="AEN1430"
+></A
+>11.4.1. Microsoft Remote Procedure Calls</H3
 ><P
->As described, in Samba 2.0.4 the parameters :</P
+>Over the last two years, efforts have been underway 
+		by various Samba Team members to decode various aspects of 
+		the Microsoft Remote Procedure Call (MSRPC) system. This 
+		system is used for most network related operations between 
+		Windows NT machines including remote management, user authentication
+		and print spooling. Although initially this work was done 
+		to aid the implementation of Primary Domain Controller (PDC) 
+		functionality in Samba, it has also yielded a body of code which 
+		can be used for other purposes.</P
 ><P
-><TT
-CLASS="PARAMETER"
-><I
->create mask</I
-></TT
-></P
+>Winbind uses various MSRPC calls to enumerate domain users 
+		and groups and to obtain detailed information about individual 
+		users or groups. Other MSRPC calls can be used to authenticate 
+		NT domain users and to change user passwords. By directly querying 
+		a Windows PDC for user and group information, winbind maps the 
+		NT account information onto UNIX user and group names.</P
+></DIV
+><DIV
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
+><A
+NAME="AEN1434"
+></A
+>11.4.2. Name Service Switch</H3
+><P
+>The Name Service Switch, or NSS, is a feature that is 
+		present in many UNIX operating systems. It allows system 
+		information such as hostnames, mail aliases and user information 
+		to be resolved from different sources. For example, a standalone 
+		UNIX workstation may resolve system information from a series of 
+		flat files stored on the local filesystem. A networked workstation 
+		may first attempt to resolve system information from local files, 
+		and then consult a NIS database for user information or a DNS server 
+		for hostname information.</P
+><P
+>The NSS application programming interface allows winbind 
+		to present itself as a source of system information when 
+		resolving UNIX usernames and groups.  Winbind uses this interface, 
+		and information obtained from a Windows NT server using MSRPC 
+		calls to provide a new source of account enumeration.  Using standard 
+		UNIX library calls, one can enumerate the users and groups on
+		a UNIX machine running winbind and see all users and groups in 
+		a NT domain plus any trusted domain as though they were local 
+		users and groups.</P
 ><P
-><TT
-CLASS="PARAMETER"
-><I
->force create mode</I
-></TT
-></P
+>The primary control file for NSS is 
+		<TT
+CLASS="FILENAME"
+>/etc/nsswitch.conf</TT
+>. 
+		When a UNIX application makes a request to do a lookup 
+		the C library looks in <TT
+CLASS="FILENAME"
+>/etc/nsswitch.conf</TT
+> 
+		for a line which matches the service type being requested, for 
+		example the "passwd" service type is used when user or group names 
+		are looked up. This	config line species which implementations 
+		of that service should be tried and in what order. If the passwd 
+		config line is:</P
 ><P
-><TT
-CLASS="PARAMETER"
-><I
->directory mask</I
-></TT
+><B
+CLASS="COMMAND"
+>passwd: files example</B
 ></P
 ><P
-><TT
-CLASS="PARAMETER"
-><I
->force directory mode</I
-></TT
-></P
+>then the C library will first load a module called 
+		<TT
+CLASS="FILENAME"
+>/lib/libnss_files.so</TT
+> followed by
+		the module <TT
+CLASS="FILENAME"
+>/lib/libnss_example.so</TT
+>. The 
+		C library will dynamically load each of these modules in turn 
+		and call resolver functions within the modules to try to resolve 
+		the request. Once the request is resolved the C library returns the
+		result to the application.</P
 ><P
->were used instead of the parameters discussed here.</P
+>This NSS interface provides a very easy way for Winbind 
+		to hook into the operating system. All that needs to be done 
+		is to put <TT
+CLASS="FILENAME"
+>libnss_winbind.so</TT
+> in <TT
+CLASS="FILENAME"
+>/lib/</TT
+> 
+		then add "winbind" into <TT
+CLASS="FILENAME"
+>/etc/nsswitch.conf</TT
+> at 
+		the appropriate place. The C library will then call Winbind to 
+		resolve user and group names.</P
 ></DIV
 ><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
 ><A
-NAME="AEN1755"
+NAME="AEN1450"
 ></A
->11.7. Interaction with the standard Samba file attribute 
-	mapping</H2
+>11.4.3. Pluggable Authentication Modules</H3
 ><P
->Samba maps some of the DOS attribute bits (such as "read 
-	only") into the UNIX permissions of a file. This means there can 
-	be a conflict between the permission bits set via the security 
-	dialog and the permission bits set by the file attribute mapping.
-	</P
+>Pluggable Authentication Modules, also known as PAM, 
+		is a system for abstracting authentication and authorization 
+		technologies. With a PAM module it is possible to specify different 
+		authentication methods for different system applications without 
+		having to recompile these applications. PAM is also useful
+		for implementing a particular policy for authorization. For example, 
+		a system administrator may only allow console logins from users 
+		stored in the local password file but only allow users resolved from 
+		a NIS database to log in over the network.</P
 ><P
->One way this can show up is if a file has no UNIX read access
-	for the owner it will show up as "read only" in the standard 
-	file attributes tabbed dialog. Unfortunately this dialog is
-	the same one that contains the security info in another tab.</P
+>Winbind uses the authentication management and password 
+		management PAM interface to integrate Windows NT users into a 
+		UNIX system. This allows Windows NT users to log in to a UNIX 
+		machine and be authenticated against a suitable Primary Domain 
+		Controller. These users can also change their passwords and have 
+		this change take effect directly on the Primary Domain Controller.
+		</P
 ><P
->What this can mean is that if the owner changes the permissions
-	to allow themselves read access using the security dialog, clicks
-	<B
-CLASS="COMMAND"
->"OK"</B
-> to get back to the standard attributes tab 
-	dialog, and then clicks <B
-CLASS="COMMAND"
->"OK"</B
-> on that dialog, then 
-	NT will set the file permissions back to read-only (as that is what 
-	the attributes still say in the dialog). This means that after setting 
-	permissions and clicking <B
-CLASS="COMMAND"
->"OK"</B
-> to get back to the 
-	attributes dialog you should always hit <B
-CLASS="COMMAND"
->"Cancel"</B
-> 
-	rather than <B
-CLASS="COMMAND"
->"OK"</B
-> to ensure that your changes 
-	are not overridden.</P
+>PAM is configured by providing control files in the directory 
+		<TT
+CLASS="FILENAME"
+>/etc/pam.d/</TT
+> for each of the services that 
+		require authentication. When an authentication request is made 
+		by an application the PAM code in the C library looks up this
+		control file to determine what modules to load to do the 
+		authentication check and in what order. This interface makes adding 
+		a new authentication service for Winbind very easy, all that needs 
+		to be done is that the <TT
+CLASS="FILENAME"
+>pam_winbind.so</TT
+> module 
+		is copied to <TT
+CLASS="FILENAME"
+>/lib/security/</TT
+> and the PAM 
+		control files for relevant services are updated to allow 
+		authentication via winbind. See the PAM documentation
+		for more details.</P
 ></DIV
+><DIV
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
+><A
+NAME="AEN1458"
+></A
+>11.4.4. User and Group ID Allocation</H3
+><P
+>When a user or group is created under Windows NT 
+		is it allocated a numerical relative identifier (RID). This is 
+		slightly different to UNIX which has a range of numbers that are 
+		used to identify users, and the same range in which to identify 
+		groups. It is winbind's job to convert RIDs to UNIX id numbers and
+		vice versa.  When winbind is configured it is given part of the UNIX 
+		user id space and a part of the UNIX group id space in which to 
+		store Windows NT users and groups. If a Windows NT user is 
+		resolved for the first time, it is allocated the next UNIX id from 
+		the range. The same process applies for Windows NT groups. Over 
+		time, winbind will have mapped all Windows NT users and groups
+		to UNIX user ids and group ids.</P
+><P
+>The results of this mapping are stored persistently in 
+		an ID mapping database held in a tdb database). This ensures that 
+		RIDs are mapped to UNIX IDs in a consistent way.</P
 ></DIV
 ><DIV
-CLASS="CHAPTER"
-><HR><H1
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
 ><A
-NAME="PAM"
+NAME="AEN1462"
 ></A
->Chapter 12. Configuring PAM for distributed but centrally 
-managed authentication</H1
+>11.4.5. Result Caching</H3
+><P
+>An active system can generate a lot of user and group 
+		name lookups. To reduce the network cost of these lookups winbind 
+		uses a caching scheme based on the SAM sequence number supplied 
+		by NT domain controllers.  User or group information returned 
+		by a PDC is cached by winbind along with a sequence number also 
+		returned by the PDC. This sequence number is incremented by 
+		Windows NT whenever any user or group information is modified. If 
+		a cached entry has expired, the sequence number is requested from 
+		the PDC and compared against the sequence number of the cached entry. 
+		If the sequence numbers do not match, then the cached information 
+		is discarded and up to date information is requested directly 
+		from the PDC.</P
+></DIV
+></DIV
 ><DIV
 CLASS="SECT1"
-><H2
+><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN1776"
+NAME="AEN1465"
 ></A
->12.1. Samba and PAM</H2
+>11.5. Installation and Configuration</H2
 ><P
->A number of Unix systems (eg: Sun Solaris), as well as the 
-xxxxBSD family and Linux, now utilize the Pluggable Authentication 
-Modules (PAM) facility to provide all authentication, 
-authorization and resource control services. Prior to the 
-introduction of PAM, a decision to use an alternative to 
-the system password database (<TT
-CLASS="FILENAME"
->/etc/passwd</TT
->) 
-would require the provision of alternatives for all programs that provide 
-security services. Such a choice would involve provision of 
-alternatives to such programs as: <B
-CLASS="COMMAND"
->login</B
->, 
-<B
-CLASS="COMMAND"
->passwd</B
->, <B
-CLASS="COMMAND"
->chown</B
->, etc.</P
+>Many thanks to John Trostel <A
+HREF="mailto:jtrostel@snapserver.com"
+TARGET="_top"
+>jtrostel@snapserver.com</A
+>
+for providing the HOWTO for this section.</P
 ><P
->PAM provides a mechanism that disconnects these security programs 
-from the underlying authentication/authorization infrastructure.
-PAM is configured either through one file <TT
-CLASS="FILENAME"
->/etc/pam.conf</TT
-> (Solaris), 
-or by editing individual files that are located in <TT
+>This HOWTO describes how to get winbind services up and running 
+to control access and authenticate users on your Linux box using 
+the winbind services which come with SAMBA 2.2.2.</P
+><P
+>There is also some Solaris specific information in 
+<TT
 CLASS="FILENAME"
->/etc/pam.d</TT
->.</P
+>docs/textdocs/Solaris-Winbind-HOWTO.txt</TT
+>.
+Future revisions of this document will incorporate that
+information.</P
+><DIV
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
+><A
+NAME="AEN1472"
+></A
+>11.5.1. Introduction</H3
+><P
+>This HOWTO describes the procedures used to get winbind up and 
+running on my RedHat 7.1 system.  Winbind is capable of providing access 
+and authentication control for Windows Domain users through an NT 
+or Win2K PDC for 'regular' services, such as telnet a nd ftp, as
+well for SAMBA services.</P
 ><P
->The following is an example <TT
-CLASS="FILENAME"
->/etc/pam.d/login</TT
-> configuration file. 
-This example had all options been uncommented is probably not usable 
-as it stacks many conditions before allowing successful completion 
-of the login process. Essentially all conditions can be disabled 
-by commenting them out except the calls to <TT
-CLASS="FILENAME"
->pam_pwdb.so</TT
->.</P
+>This HOWTO has been written from a 'RedHat-centric' perspective, so if 
+you are using another distribution, you may have to modify the instructions 
+somewhat to fit the way your distribution works.</P
 ><P
-><PRE
-CLASS="PROGRAMLISTING"
->#%PAM-1.0
-# The PAM configuration file for the `login' service
-#
-auth 		required	pam_securetty.so
-auth 		required	pam_nologin.so
-# auth 		required	pam_dialup.so
-# auth 		optional	pam_mail.so
-auth		required	pam_pwdb.so shadow md5
-# account    	requisite  	pam_time.so
-account		required	pam_pwdb.so
-session		required	pam_pwdb.so
-# session 	optional	pam_lastlog.so
-# password   	required   	pam_cracklib.so retry=3
-password	required	pam_pwdb.so shadow md5</PRE
 ></P
+><UL
+><LI
 ><P
->PAM allows use of replacable modules. Those available on a 
-sample system include:</P
+>	<SPAN
+CLASS="emphasis"
+><I
+CLASS="EMPHASIS"
+>Why should I to this?</I
+></SPAN
+>
+	</P
 ><P
-><PRE
-CLASS="PROGRAMLISTING"
->$ /bin/ls /lib/security
-pam_access.so    pam_ftp.so          pam_limits.so     
-pam_ncp_auth.so  pam_rhosts_auth.so  pam_stress.so     
-pam_cracklib.so  pam_group.so        pam_listfile.so   
-pam_nologin.so   pam_rootok.so       pam_tally.so      
-pam_deny.so      pam_issue.so        pam_mail.so       
-pam_permit.so    pam_securetty.so    pam_time.so       
-pam_dialup.so    pam_lastlog.so      pam_mkhomedir.so  
-pam_pwdb.so      pam_shells.so       pam_unix.so       
-pam_env.so       pam_ldap.so         pam_motd.so       
-pam_radius.so    pam_smbpass.so      pam_unix_acct.so  
-pam_wheel.so     pam_unix_auth.so    pam_unix_passwd.so
-pam_userdb.so    pam_warn.so         pam_unix_session.so</PRE
-></P
+>This allows the SAMBA administrator to rely on the 
+	authentication mechanisms on the NT/Win2K PDC for the authentication 
+	of domain members.  NT/Win2K users no longer need to have separate 
+	accounts on the SAMBA server.
+	</P
+></LI
+><LI
 ><P
->The following example for the login program replaces the use of 
-the <TT
-CLASS="FILENAME"
->pam_pwdb.so</TT
-> module which uses the system 
-password database (<TT
-CLASS="FILENAME"
->/etc/passwd</TT
->,
-<TT
-CLASS="FILENAME"
->/etc/shadow</TT
->, <TT
-CLASS="FILENAME"
->/etc/group</TT
->) with 
-the module <TT
-CLASS="FILENAME"
->pam_smbpass.so</TT
-> which uses the Samba 
-database which contains the Microsoft MD4 encrypted password 
-hashes. This database is stored in either 
-<TT
-CLASS="FILENAME"
->/usr/local/samba/private/smbpasswd</TT
->, 
-<TT
-CLASS="FILENAME"
->/etc/samba/smbpasswd</TT
->, or in 
-<TT
-CLASS="FILENAME"
->/etc/samba.d/smbpasswd</TT
->, depending on the 
-Samba implementation for your Unix/Linux system. The 
-<TT
-CLASS="FILENAME"
->pam_smbpass.so</TT
-> module is provided by 
-Samba version 2.2.1 or later. It can be compiled by specifying the 
-<B
-CLASS="COMMAND"
->--with-pam_smbpass</B
-> options when running Samba's
-<TT
-CLASS="FILENAME"
->configure</TT
-> script.  For more information
-on the <TT
-CLASS="FILENAME"
->pam_smbpass</TT
-> module, see the documentation
-in the <TT
-CLASS="FILENAME"
->source/pam_smbpass</TT
-> directory of the Samba 
-source distribution.</P
+>	<SPAN
+CLASS="emphasis"
+><I
+CLASS="EMPHASIS"
+>Who should be reading this document?</I
+></SPAN
+>
+	</P
 ><P
-><PRE
-CLASS="PROGRAMLISTING"
->#%PAM-1.0
-# The PAM configuration file for the `login' service
-#
-auth		required	pam_smbpass.so nodelay
-account		required	pam_smbpass.so nodelay
-session		required	pam_smbpass.so nodelay
-password	required	pam_smbpass.so nodelay</PRE
-></P
+>	This HOWTO is designed for system administrators.  If you are 
+	implementing SAMBA on a file server and wish to (fairly easily) 
+	integrate existing NT/Win2K users from your PDC onto the
+	SAMBA server, this HOWTO is for you.  That said, I am no NT or PAM 
+	expert, so you may find a better or easier way to accomplish 
+	these tasks.
+	</P
+></LI
+></UL
+></DIV
+><DIV
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
+><A
+NAME="AEN1485"
+></A
+>11.5.2. Requirements</H3
 ><P
->The following is the PAM configuration file for a particular 
-Linux system. The default condition uses <TT
+>If you have a samba configuration file that you are currently 
+using... <SPAN
+CLASS="emphasis"
+><I
+CLASS="EMPHASIS"
+>BACK IT UP!</I
+></SPAN
+>  If your system already uses PAM, 
+<SPAN
+CLASS="emphasis"
+><I
+CLASS="EMPHASIS"
+>back up the <TT
 CLASS="FILENAME"
->pam_pwdb.so</TT
->.</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->#%PAM-1.0
-# The PAM configuration file for the `samba' service
-#
-auth       required     /lib/security/pam_pwdb.so nullok nodelay shadow audit
-account    required     /lib/security/pam_pwdb.so audit nodelay
-session    required     /lib/security/pam_pwdb.so nodelay
-password   required     /lib/security/pam_pwdb.so shadow md5</PRE
+>/etc/pam.d</TT
+> directory 
+contents!</I
+></SPAN
+> If you haven't already made a boot disk, 
+<SPAN
+CLASS="emphasis"
+><I
+CLASS="EMPHASIS"
+>MAKE ONE NOW!</I
+></SPAN
 ></P
 ><P
->In the following example the decision has been made to use the 
-smbpasswd database even for basic samba authentication. Such a 
-decision could also be made for the passwd program and would 
-thus allow the smbpasswd passwords to be changed using the passwd 
-program.</P
+>Messing with the pam configuration files can make it nearly impossible 
+to log in to yourmachine. That's why you want to be able to boot back 
+into your machine in single user mode and restore your 
+<TT
+CLASS="FILENAME"
+>/etc/pam.d</TT
+> back to the original state they were in if 
+you get frustrated with the way things are going.  ;-)</P
 ><P
-><PRE
-CLASS="PROGRAMLISTING"
->#%PAM-1.0
-# The PAM configuration file for the `samba' service
-#
-auth       required     /lib/security/pam_smbpass.so nodelay
-account    required     /lib/security/pam_pwdb.so audit nodelay
-session    required     /lib/security/pam_pwdb.so nodelay
-password   required     /lib/security/pam_smbpass.so nodelay smbconf=/etc/samba.d/smb.conf</PRE
-></P
+>The latest version of SAMBA (version 2.2.2 as of this writing), now 
+includes a functioning winbindd daemon.  Please refer to the 
+<A
+HREF="http://samba.org/"
+TARGET="_top"
+>main SAMBA web page</A
+> or, 
+better yet, your closest SAMBA mirror site for instructions on 
+downloading the source code.</P
 ><P
->Note: PAM allows stacking of authentication mechanisms. It is 
-also possible to pass information obtained within one PAM module through 
-to the next module in the PAM stack. Please refer to the documentation for 
-your particular system implementation for details regarding the specific 
-capabilities of PAM in this environment. Some Linux implmentations also 
-provide the <TT
+>To allow Domain users the ability to access SAMBA shares and 
+files, as well as potentially other services provided by your 
+SAMBA machine, PAM (pluggable authentication modules) must
+be setup properly on your machine.  In order to compile the 
+winbind modules, you should have at least the pam libraries resident 
+on your system.  For recent RedHat systems (7.1, for instance), that 
+means <TT
 CLASS="FILENAME"
->pam_stack.so</TT
-> module that allows all 
-authentication to be configured in a single central file. The 
-<TT
+>pam-0.74-22</TT
+>.  For best results, it is helpful to also
+install the development packages in <TT
 CLASS="FILENAME"
->pam_stack.so</TT
-> method has some very devoted followers 
-on the basis that it allows for easier administration. As with all issues in 
-life though, every decision makes trade-offs, so you may want examine the 
-PAM documentation for further helpful information.</P
+>pam-devel-0.74-22</TT
+>.</P
 ></DIV
 ><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
 ><A
-NAME="AEN1820"
+NAME="AEN1499"
 ></A
->12.2. Distributed Authentication</H2
+>11.5.3. Testing Things Out</H3
 ><P
->The astute administrator will realize from this that the 
-combination of <TT
-CLASS="FILENAME"
->pam_smbpass.so</TT
+>Before starting, it is probably best to kill off all the SAMBA 
+related daemons running on your server.  Kill off all <B
+CLASS="COMMAND"
+>smbd</B
 >, 
 <B
 CLASS="COMMAND"
->winbindd</B
+>nmbd</B
 >, and <B
 CLASS="COMMAND"
->rsync</B
-> (see
-<A
-HREF="http://rsync.samba.org/"
-TARGET="_top"
->http://rsync.samba.org/</A
->)
-will allow the establishment of a centrally managed, distributed 
-user/password database that can also be used by all 
-PAM (eg: Linux) aware programs and applications. This arrangement 
-can have particularly potent advantages compared with the 
-use of Microsoft Active Directory Service (ADS) in so far as 
-reduction of wide area network authentication traffic.</P
-></DIV
+>winbindd</B
+> processes that may 
+be running.  To use PAM, you will want to make sure that you have the 
+standard PAM package (for RedHat) which supplies the <TT
+CLASS="FILENAME"
+>/etc/pam.d</TT
+> 
+directory structure, including the pam modules are used by pam-aware 
+services, several pam libraries, and the <TT
+CLASS="FILENAME"
+>/usr/doc</TT
+> 
+and <TT
+CLASS="FILENAME"
+>/usr/man</TT
+> entries for pam.  Winbind built better 
+in SAMBA if the pam-devel package was also installed.  This package includes 
+the header files needed to compile pam-aware applications. For instance, 
+my RedHat system has both <TT
+CLASS="FILENAME"
+>pam-0.74-22</TT
+> and
+<TT
+CLASS="FILENAME"
+>pam-devel-0.74-22</TT
+> RPMs installed.</P
 ><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
+CLASS="SECT3"
+><HR><H4
+CLASS="SECT3"
 ><A
-NAME="AEN1827"
+NAME="AEN1510"
 ></A
->12.3. PAM Configuration in smb.conf</H2
+>11.5.3.1. Configure and compile SAMBA</H4
 ><P
->There is an option in smb.conf called <A
-HREF="smb.conf.5.html#OBEYPAMRESTRICTIONS"
-TARGET="_top"
->obey pam restrictions</A
->. 
-The following is from the on-line help for this option in SWAT;</P
+>The configuration and compilation of SAMBA is pretty straightforward.
+The first three steps may not be necessary depending upon
+whether or not you have previously built the Samba binaries.</P
 ><P
->When Samba 2.2 is configure to enable PAM support (i.e. 
+><PRE
+CLASS="PROGRAMLISTING"
+><TT
+CLASS="PROMPT"
+>root#</TT
+> <B
+CLASS="COMMAND"
+>autoconf</B
+>
 <TT
-CLASS="CONSTANT"
->--with-pam</TT
->), this parameter will 
-control whether or not Samba should obey PAM's account 
-and session management directives. The default behavior 
-is to use PAM for clear text authentication only and to 
-ignore any account or session management. Note that Samba always 
-ignores PAM for authentication in the case of 
-<A
-HREF="smb.conf.5.html#ENCRYPTPASSWORDS"
-TARGET="_top"
->encrypt passwords = yes</A
->. 
-The reason is that PAM modules cannot support the challenge/response 
-authentication mechanism needed in the presence of SMB 
-password encryption. </P
-><P
->Default: <B
+CLASS="PROMPT"
+>root#</TT
+> <B
 CLASS="COMMAND"
->obey pam restrictions = no</B
+>make clean</B
+>
+<TT
+CLASS="PROMPT"
+>root#</TT
+> <B
+CLASS="COMMAND"
+>rm config.cache</B
+>
+<TT
+CLASS="PROMPT"
+>root#</TT
+> <B
+CLASS="COMMAND"
+>./configure --with-winbind</B
+>
+<TT
+CLASS="PROMPT"
+>root#</TT
+> <B
+CLASS="COMMAND"
+>make</B
+>
+<TT
+CLASS="PROMPT"
+>root#</TT
+> <B
+CLASS="COMMAND"
+>make install</B
+></PRE
 ></P
+><P
+>This will, by default, install SAMBA in <TT
+CLASS="FILENAME"
+>/usr/local/samba</TT
+>.
+See the main SAMBA documentation if you want to install SAMBA somewhere else.
+It will also build the winbindd executable and libraries. </P
 ></DIV
-></DIV
-><DIV
-CLASS="CHAPTER"
-><HR><H1
-><A
-NAME="MSDFS"
-></A
->Chapter 13. Hosting a Microsoft Distributed File System tree on Samba</H1
 ><DIV
-CLASS="SECT1"
-><H2
-CLASS="SECT1"
+CLASS="SECT3"
+><HR><H4
+CLASS="SECT3"
 ><A
-NAME="AEN1847"
+NAME="AEN1529"
 ></A
->13.1. Instructions</H2
-><P
->The Distributed File System (or Dfs) provides a means of 
-	separating the logical view of files and directories that users 
-	see from the actual physical locations of these resources on the 
-	network. It allows for higher availability, smoother storage expansion, 
-	load balancing etc. For more information about Dfs, refer to  <A
-HREF="http://www.microsoft.com/NTServer/nts/downloads/winfeatures/NTSDistrFile/AdminGuide.asp"
-TARGET="_top"
->	Microsoft documentation</A
->. </P
+>11.5.3.2. Configure <TT
+CLASS="FILENAME"
+>nsswitch.conf</TT
+> and the 
+winbind libraries</H4
 ><P
->This document explains how to host a Dfs tree on a Unix 
-	machine (for Dfs-aware clients to browse) using Samba.</P
+>The libraries needed to run the <B
+CLASS="COMMAND"
+>winbindd</B
+> daemon 
+through nsswitch need to be copied to their proper locations, so</P
 ><P
->To enable SMB-based DFS for Samba, configure it with the 
-	<TT
-CLASS="PARAMETER"
-><I
->--with-msdfs</I
-></TT
-> option. Once built, a 
-	Samba server can be made a Dfs server by setting the global 
-	boolean <A
-HREF="smb.conf.5.html#HOSTMSDFS"
-TARGET="_top"
 ><TT
-CLASS="PARAMETER"
-><I
->	host msdfs</I
-></TT
-></A
-> parameter in the <TT
-CLASS="FILENAME"
->smb.conf
-	</TT
-> file. You designate a share as a Dfs root using the share 
-	level boolean <A
-HREF="smb.conf.5.html#MSDFSROOT"
-TARGET="_top"
+CLASS="PROMPT"
+>root#</TT
+> <B
+CLASS="COMMAND"
+>cp ../samba/source/nsswitch/libnss_winbind.so /lib</B
+></P
+><P
+>I also found it necessary to make the following symbolic link:</P
+><P
 ><TT
-CLASS="PARAMETER"
-><I
->	msdfs root</I
-></TT
-></A
-> parameter. A Dfs root directory on 
-	Samba hosts Dfs links in the form of symbolic links that point 
-	to other servers. For example, a symbolic link
-	<TT
-CLASS="FILENAME"
->junction-&gt;msdfs:storage1\share1</TT
-> in 
-	the share directory acts as the Dfs junction. When Dfs-aware 
-	clients attempt to access the junction link, they are redirected 
-	to the storage location (in this case, \\storage1\share1).</P
+CLASS="PROMPT"
+>root#</TT
+> <B
+CLASS="COMMAND"
+>ln -s /lib/libnss_winbind.so /lib/libnss_winbind.so.2</B
+></P
 ><P
->Dfs trees on Samba work with all Dfs-aware clients ranging 
-	from Windows 95 to 2000.</P
+>And, in the case of Sun solaris:</P
 ><P
->Here's an example of setting up a Dfs tree on a Samba 
-	server.</P
+><TT
+CLASS="PROMPT"
+>root#</TT
+> <B
+CLASS="COMMAND"
+>ln -s /usr/lib/libnss_winbind.so /usr/lib/libnss_winbind.so.1</B
+>
+<TT
+CLASS="PROMPT"
+>root#</TT
+> <B
+CLASS="COMMAND"
+>ln -s /usr/lib/libnss_winbind.so /usr/lib/nss_winbind.so.1</B
+>
+<TT
+CLASS="PROMPT"
+>root#</TT
+> <B
+CLASS="COMMAND"
+>ln -s /usr/lib/libnss_winbind.so /usr/lib/nss_winbind.so.2</B
+></P
+><P
+>Now, as root you need to edit <TT
+CLASS="FILENAME"
+>/etc/nsswitch.conf</TT
+> to 
+allow user and group entries to be visible from the <B
+CLASS="COMMAND"
+>winbindd</B
+> 
+daemon.  My <TT
+CLASS="FILENAME"
+>/etc/nsswitch.conf</TT
+> file look like 
+this after editing:</P
 ><P
 ><PRE
 CLASS="PROGRAMLISTING"
-># The smb.conf file:
-[global]
-	netbios name = SAMBA
-	host msdfs   = yes
-
-[dfs]
-	path = /export/dfsroot
-	msdfs root = yes
-	</PRE
+>	passwd:     files winbind
+	shadow:     files 
+	group:      files winbind</PRE
 ></P
 ><P
->In the /export/dfsroot directory we set up our dfs links to 
-	other servers on the network.</P
+>	
+The libraries needed by the winbind daemon will be automatically 
+entered into the <B
+CLASS="COMMAND"
+>ldconfig</B
+> cache the next time 
+your system reboots, but it 
+is faster (and you don't need to reboot) if you do it manually:</P
 ><P
 ><TT
 CLASS="PROMPT"
->root# </TT
-><TT
-CLASS="USERINPUT"
-><B
->cd /export/dfsroot</B
-></TT
+>root#</TT
+> <B
+CLASS="COMMAND"
+>/sbin/ldconfig -v | grep winbind</B
 ></P
 ><P
-><TT
-CLASS="PROMPT"
->root# </TT
-><TT
-CLASS="USERINPUT"
-><B
->chown root /export/dfsroot</B
-></TT
-></P
+>This makes <TT
+CLASS="FILENAME"
+>libnss_winbind</TT
+> available to winbindd 
+and echos back a check to you.</P
+></DIV
+><DIV
+CLASS="SECT3"
+><HR><H4
+CLASS="SECT3"
+><A
+NAME="AEN1562"
+></A
+>11.5.3.3. Configure smb.conf</H4
 ><P
-><TT
-CLASS="PROMPT"
->root# </TT
-><TT
-CLASS="USERINPUT"
-><B
->chmod 755 /export/dfsroot</B
-></TT
+>Several parameters are needed in the smb.conf file to control 
+the behavior of <B
+CLASS="COMMAND"
+>winbindd</B
+>. Configure 
+<TT
+CLASS="FILENAME"
+>smb.conf</TT
+> These are described in more detail in 
+the <A
+HREF="winbindd.8.html"
+TARGET="_top"
+>winbindd(8)</A
+> man page.  My 
+<TT
+CLASS="FILENAME"
+>smb.conf</TT
+> file was modified to
+include the following entries in the [global] section:</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>[global]
+     &#60;...&#62;
+     # separate domain and username with '+', like DOMAIN+username
+     <A
+HREF="winbindd.8.html#WINBINDSEPARATOR"
+TARGET="_top"
+>winbind separator</A
+> = +
+     # use uids from 10000 to 20000 for domain users
+     <A
+HREF="winbindd.8.html#WINBINDUID"
+TARGET="_top"
+>winbind uid</A
+> = 10000-20000
+     # use gids from 10000 to 20000 for domain groups
+     <A
+HREF="winbindd.8.html#WINBINDGID"
+TARGET="_top"
+>winbind gid</A
+> = 10000-20000
+     # allow enumeration of winbind users and groups
+     <A
+HREF="winbindd.8.html#WINBINDENUMUSERS"
+TARGET="_top"
+>winbind enum users</A
+> = yes
+     <A
+HREF="winbindd.8.html#WINBINDENUMGROUP"
+TARGET="_top"
+>winbind enum groups</A
+> = yes
+     # give winbind users a real shell (only needed if they have telnet access)
+     <A
+HREF="winbindd.8.html#TEMPLATEHOMEDIR"
+TARGET="_top"
+>template homedir</A
+> = /home/winnt/%D/%U
+     <A
+HREF="winbindd.8.html#TEMPLATESHELL"
+TARGET="_top"
+>template shell</A
+> = /bin/bash</PRE
 ></P
+></DIV
+><DIV
+CLASS="SECT3"
+><HR><H4
+CLASS="SECT3"
+><A
+NAME="AEN1578"
+></A
+>11.5.3.4. Join the SAMBA server to the PDC domain</H4
 ><P
-><TT
-CLASS="PROMPT"
->root# </TT
-><TT
-CLASS="USERINPUT"
-><B
->ln -s msdfs:storageA\\shareA linka</B
+>Enter the following command to make the SAMBA server join the 
+PDC domain, where <TT
+CLASS="REPLACEABLE"
+><I
+>DOMAIN</I
 ></TT
-></P
+> is the name of 
+your Windows domain and <TT
+CLASS="REPLACEABLE"
+><I
+>Administrator</I
+></TT
+> is 
+a domain user who has administrative privileges in the domain.</P
 ><P
 ><TT
 CLASS="PROMPT"
->root# </TT
-><TT
-CLASS="USERINPUT"
-><B
->ln -s msdfs:serverB\\share,serverC\\share linkb</B
-></TT
+>root#</TT
+> <B
+CLASS="COMMAND"
+>/usr/local/samba/bin/net rpc join -s PDC -U Administrator</B
 ></P
 ><P
->You should set up the permissions and ownership of 
-	the directory acting as the Dfs root such that only designated 
-	users can create, delete or modify the msdfs links. Also note 
-	that symlink names should be all lowercase. This limitation exists 
-	to have Samba avoid trying all the case combinations to get at 
-	the link name. Finally set up the symbolic links to point to the 
-	network shares you want, and start Samba.</P
-><P
->Users on Dfs-aware clients can now browse the Dfs tree 
-	on the Samba server at \\samba\dfs. Accessing 
-	links linka or linkb (which appear as directories to the client) 
-	takes users directly to the appropriate shares on the network.</P
+>The proper response to the command should be: "Joined the domain 
+<TT
+CLASS="REPLACEABLE"
+><I
+>DOMAIN</I
+></TT
+>" where <TT
+CLASS="REPLACEABLE"
+><I
+>DOMAIN</I
+></TT
+> 
+is your DOMAIN name.</P
+></DIV
 ><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
+CLASS="SECT3"
+><HR><H4
+CLASS="SECT3"
 ><A
-NAME="AEN1882"
+NAME="AEN1589"
 ></A
->13.1.1. Notes</H3
+>11.5.3.5. Start up the winbindd daemon and test it!</H4
 ><P
-></P
-><UL
-><LI
+>Eventually, you will want to modify your smb startup script to 
+automatically invoke the winbindd daemon when the other parts of 
+SAMBA start, but it is possible to test out just the winbind
+portion first.  To start up winbind services, enter the following 
+command as root:</P
 ><P
->Windows clients need to be rebooted 
-			if a previously mounted non-dfs share is made a dfs 
-			root or vice versa. A better way is to introduce a 
-			new share and make it the dfs root.</P
-></LI
-><LI
+><TT
+CLASS="PROMPT"
+>root#</TT
+> <B
+CLASS="COMMAND"
+>/usr/local/samba/bin/winbindd</B
+></P
 ><P
->Currently there's a restriction that msdfs 
-			symlink names should all be lowercase.</P
-></LI
-><LI
+>I'm always paranoid and like to make sure the daemon 
+is really running...</P
 ><P
->For security purposes, the directory 
-			acting as the root of the Dfs tree should have ownership 
-			and permissions set so that only designated users can 
-			modify the symbolic links in the directory.</P
-></LI
-></UL
-></DIV
-></DIV
-></DIV
-><DIV
-CLASS="CHAPTER"
-><HR><H1
-><A
-NAME="PRINTING"
-></A
->Chapter 14. Printing Support</H1
-><DIV
-CLASS="SECT1"
-><H2
-CLASS="SECT1"
-><A
-NAME="AEN1908"
-></A
->14.1. Introduction</H2
+><TT
+CLASS="PROMPT"
+>root#</TT
+> <B
+CLASS="COMMAND"
+>ps -ae | grep winbindd</B
+></P
 ><P
->Beginning with the 2.2.0 release, Samba supports 
-the native Windows NT printing mechanisms implemented via 
-MS-RPC (i.e. the SPOOLSS named pipe).  Previous versions of 
-Samba only supported LanMan printing calls.</P
+>This command should produce output like this, if the daemon is running</P
 ><P
->The additional functionality provided by the new 
-SPOOLSS support includes:</P
+>3025 ?        00:00:00 winbindd</P
+><P
+>Now... for the real test, try to get some information about the 
+users on your PDC</P
 ><P
+><TT
+CLASS="PROMPT"
+>root#</TT
+> <B
+CLASS="COMMAND"
+>/usr/local/samba/bin/wbinfo -u</B
 ></P
-><UL
-><LI
 ><P
->Support for downloading printer driver 
-	files to Windows 95/98/NT/2000 clients upon demand.
-	</P
-></LI
-><LI
+>	
+This should echo back a list of users on your Windows users on 
+your PDC.  For example, I get the following response:</P
 ><P
->Uploading of printer drivers via the 
-	Windows NT Add Printer Wizard (APW) or the 
-	Imprints tool set (refer to <A
-HREF="http://imprints.sourceforge.net"
-TARGET="_top"
->http://imprints.sourceforge.net</A
->). 
-	</P
-></LI
-><LI
+><PRE
+CLASS="PROGRAMLISTING"
+>CEO+Administrator
+CEO+burdell
+CEO+Guest
+CEO+jt-ad
+CEO+krbtgt
+CEO+TsInternetUser</PRE
+></P
 ><P
->Support for the native MS-RPC printing 
-	calls such as StartDocPrinter, EnumJobs(), etc...  (See 
-	the MSDN documentation at <A
-HREF="http://msdn.microsoft.com/"
-TARGET="_top"
->http://msdn.microsoft.com/</A
-> 
-	for more information on the Win32 printing API)
-	</P
-></LI
-><LI
+>Obviously, I have named my domain 'CEO' and my <TT
+CLASS="PARAMETER"
+><I
+>winbind
+separator</I
+></TT
+> is '+'.</P
 ><P
->Support for NT Access Control Lists (ACL) 
-	on printer objects</P
-></LI
-><LI
+>You can do the same sort of thing to get group information from 
+the PDC:</P
 ><P
->Improved support for printer queue manipulation 
-	through the use of an internal databases for spooled job 
-	information</P
-></LI
-></UL
+><PRE
+CLASS="PROGRAMLISTING"
+><TT
+CLASS="PROMPT"
+>root#</TT
+> <B
+CLASS="COMMAND"
+>/usr/local/samba/bin/wbinfo -g</B
+>
+CEO+Domain Admins
+CEO+Domain Users
+CEO+Domain Guests
+CEO+Domain Computers
+CEO+Domain Controllers
+CEO+Cert Publishers
+CEO+Schema Admins
+CEO+Enterprise Admins
+CEO+Group Policy Creator Owners</PRE
+></P
 ><P
->There has been some initial confusion about what all this means
-and whether or not it is a requirement for printer drivers to be 
-installed on a Samba host in order to support printing from Windows 
-clients. As a side note, Samba does not use these drivers in any way to process 
-spooled files.  They are utilized entirely by the clients.</P
+>The function 'getent' can now be used to get unified 
+lists of both local and PDC users and groups.
+Try the following command:</P
 ><P
->The following MS KB article, may be of some help if you are dealing with
-Windows 2000 clients:  <SPAN
-CLASS="emphasis"
-><I
-CLASS="EMPHASIS"
->How to Add Printers with No User 
-Interaction in Windows 2000</I
-></SPAN
+><TT
+CLASS="PROMPT"
+>root#</TT
+> <B
+CLASS="COMMAND"
+>getent passwd</B
 ></P
 ><P
-><A
-HREF="http://support.microsoft.com/support/kb/articles/Q189/1/05.ASP"
-TARGET="_top"
->http://support.microsoft.com/support/kb/articles/Q189/1/05.ASP</A
+>You should get a list that looks like your <TT
+CLASS="FILENAME"
+>/etc/passwd</TT
+> 
+list followed by the domain users with their new uids, gids, home 
+directories and default shells.</P
+><P
+>The same thing can be done for groups with the command</P
+><P
+><TT
+CLASS="PROMPT"
+>root#</TT
+> <B
+CLASS="COMMAND"
+>getent group</B
 ></P
 ></DIV
 ><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
+CLASS="SECT3"
+><HR><H4
+CLASS="SECT3"
 ><A
-NAME="AEN1930"
+NAME="AEN1625"
 ></A
->14.2. Configuration</H2
+>11.5.3.6. Fix the init.d startup scripts</H4
 ><DIV
-CLASS="WARNING"
-><P
-></P
-><TABLE
-CLASS="WARNING"
-WIDTH="100%"
-BORDER="0"
-><TR
-><TD
-WIDTH="25"
-ALIGN="CENTER"
-VALIGN="TOP"
-><IMG
-SRC="/docbook-dsssl/warning.gif"
-HSPACE="5"
-ALT="Warning"></TD
-><TH
-ALIGN="LEFT"
-VALIGN="CENTER"
-><B
->[print$] vs. [printer$]</B
-></TH
-></TR
-><TR
-><TD
->&nbsp;</TD
-><TD
-ALIGN="LEFT"
-VALIGN="TOP"
+CLASS="SECT4"
+><H5
+CLASS="SECT4"
+><A
+NAME="AEN1627"
+></A
+>11.5.3.6.1. Linux</H5
 ><P
->Previous versions of Samba recommended using a share named [printer$].  
-This name was taken from the printer$ service created by Windows 9x 
-clients when a printer was shared.  Windows 9x printer servers always have 
-a printer$ service which provides read-only access via no 
-password in order to support printer driver downloads.</P
+>The <B
+CLASS="COMMAND"
+>winbindd</B
+> daemon needs to start up after the 
+<B
+CLASS="COMMAND"
+>smbd</B
+> and <B
+CLASS="COMMAND"
+>nmbd</B
+> daemons are running.  
+To accomplish this task, you need to modify the startup scripts of your system. They are located at <TT
+CLASS="FILENAME"
+>/etc/init.d/smb</TT
+> in RedHat and 
+<TT
+CLASS="FILENAME"
+>/etc/init.d/samba</TT
+> in Debian.
+script to add commands to invoke this daemon in the proper sequence.  My 
+startup script starts up <B
+CLASS="COMMAND"
+>smbd</B
+>, 
+<B
+CLASS="COMMAND"
+>nmbd</B
+>, and <B
+CLASS="COMMAND"
+>winbindd</B
+> from the 
+<TT
+CLASS="FILENAME"
+>/usr/local/samba/bin</TT
+> directory directly.  The 'start' 
+function in the script looks like this:</P
 ><P
->However, the initial implementation allowed for a 
-parameter named <TT
-CLASS="PARAMETER"
-><I
->printer driver location</I
-></TT
-> 
-to be used on a per share basis to specify the location of 
-the driver files associated with that printer.  Another 
-parameter named <TT
-CLASS="PARAMETER"
-><I
->printer driver</I
-></TT
-> provided 
-a means of defining the printer driver name to be sent to 
-the client.</P
-></TD
-></TR
-></TABLE
+><PRE
+CLASS="PROGRAMLISTING"
+>start() {
+        KIND="SMB"
+        echo -n $"Starting $KIND services: "
+        daemon /usr/local/samba/bin/smbd $SMBDOPTIONS
+        RETVAL=$?
+        echo
+        KIND="NMB"
+        echo -n $"Starting $KIND services: "
+        daemon /usr/local/samba/bin/nmbd $NMBDOPTIONS
+        RETVAL2=$?
+        echo
+        KIND="Winbind"
+        echo -n $"Starting $KIND services: "
+        daemon /usr/local/samba/bin/winbindd
+        RETVAL3=$?
+        echo
+        [ $RETVAL -eq 0 -a $RETVAL2 -eq 0 -a $RETVAL3 -eq 0 ] &#38;&#38; touch /var/lock/subsys/smb || \
+           RETVAL=1
+        return $RETVAL
+}</PRE
+></P
+><P
+>The 'stop' function has a corresponding entry to shut down the 
+services and look s like this:</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>stop() {
+        KIND="SMB"
+        echo -n $"Shutting down $KIND services: "
+        killproc smbd
+        RETVAL=$?
+        echo
+        KIND="NMB"
+        echo -n $"Shutting down $KIND services: "
+        killproc nmbd
+        RETVAL2=$?
+        echo
+        KIND="Winbind"
+        echo -n $"Shutting down $KIND services: "
+        killproc winbindd
+        RETVAL3=$?
+        [ $RETVAL -eq 0 -a $RETVAL2 -eq 0 -a $RETVAL3 -eq 0 ] &#38;&#38; rm -f /var/lock/subsys/smb
+        echo ""
+        return $RETVAL
+}</PRE
+></P
 ></DIV
 ><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
+CLASS="SECT4"
+><HR><H5
+CLASS="SECT4"
 ><A
-NAME="AEN1938"
+NAME="AEN1644"
 ></A
->14.2.1. Creating [print$]</H3
-><P
->In order to support the uploading of printer driver 
-files, you must first configure a file share named [print$].  
-The name of this share is hard coded in Samba's internals so 
-the name is very important (print$ is the service used by 
-Windows NT print servers to provide support for printer driver 
-download).</P
+>11.5.3.6.2. Solaris</H5
 ><P
->You should modify the server's smb.conf file to add the global
-parameters and to create the 
-following file share (of course, some of the parameter values,
-such as 'path' are arbitrary and should be replaced with
-appropriate values for your site):</P
+>On solaris, you need to modify the 
+<TT
+CLASS="FILENAME"
+>/etc/init.d/samba.server</TT
+> startup script. It usually 
+only starts smbd and nmbd but should now start winbindd too. If you 
+have samba installed in <TT
+CLASS="FILENAME"
+>/usr/local/samba/bin</TT
+>, 
+the file could contains something like this:</P
 ><P
 ><PRE
 CLASS="PROGRAMLISTING"
->[global]
-    ; members of the ntadmin group should be able
-    ; to add drivers and set printer properties
-    ; root is implicitly a 'printer admin'
-    printer admin = @ntadmin
+>##
+## samba.server
+##
 
-[print$]
-    path = /usr/local/samba/printers
-    guest ok = yes
-    browseable = yes
-    read only = yes
-    ; since this share is configured as read only, then we need
-    ; a 'write list'.  Check the file system permissions to make
-    ; sure this account can copy files to the share.  If this
-    ; is setup to a non-root account, then it should also exist
-    ; as a 'printer admin'
-    write list = @ntadmin,root</PRE
+if [ ! -d /usr/bin ]
+then                    # /usr not mounted
+        exit
+fi
+
+killproc() {            # kill the named process(es)
+        pid=`/usr/bin/ps -e |
+             /usr/bin/grep -w $1 |
+             /usr/bin/sed -e 's/^  *//' -e 's/ .*//'`
+        [ "$pid" != "" ] &#38;&#38; kill $pid
+}
+ 
+# Start/stop processes required for samba server
+
+case "$1" in
+
+'start')
+#
+# Edit these lines to suit your installation (paths, workgroup, host)
+#
+echo Starting SMBD
+   /usr/local/samba/bin/smbd -D -s \
+	/usr/local/samba/smb.conf
+
+echo Starting NMBD
+   /usr/local/samba/bin/nmbd -D -l \
+	/usr/local/samba/var/log -s /usr/local/samba/smb.conf
+
+echo Starting Winbind Daemon
+   /usr/local/samba/bin/winbindd
+   ;;
+
+'stop')
+   killproc nmbd
+   killproc smbd
+   killproc winbindd
+   ;;
+
+*)
+   echo "Usage: /etc/init.d/samba.server { start | stop }"
+   ;;
+esac</PRE
 ></P
-><P
->The <A
-HREF="smb.conf.5.html#WRITELIST"
-TARGET="_top"
-><TT
-CLASS="PARAMETER"
-><I
->write list</I
-></TT
+></DIV
+><DIV
+CLASS="SECT4"
+><HR><H5
+CLASS="SECT4"
+><A
+NAME="AEN1651"
 ></A
-> is used to allow administrative 
-level user accounts to have write access in order to update files 
-on the share.  See the <A
-HREF="smb.conf.5.html"
-TARGET="_top"
->smb.conf(5) 
-man page</A
-> for more information on configuring file shares.</P
+>11.5.3.6.3. Restarting</H5
 ><P
->The requirement for <A
-HREF="smb.conf.5.html#GUESTOK"
-TARGET="_top"
-><B
+>If you restart the <B
 CLASS="COMMAND"
->guest 
-ok = yes</B
-></A
-> depends upon how your
-site is configured.  If users will be guaranteed to have 
-an account on the Samba host, then this is a non-issue.</P
+>smbd</B
+>, <B
+CLASS="COMMAND"
+>nmbd</B
+>, 
+and <B
+CLASS="COMMAND"
+>winbindd</B
+> daemons at this point, you
+should be able to connect to the samba server as a domain member just as
+if you were a local user.</P
+></DIV
+></DIV
 ><DIV
-CLASS="NOTE"
+CLASS="SECT3"
+><HR><H4
+CLASS="SECT3"
+><A
+NAME="AEN1657"
+></A
+>11.5.3.7. Configure Winbind and PAM</H4
+><P
+>If you have made it this far, you know that winbindd and samba are working
+together.  If you want to use winbind to provide authentication for other 
+services, keep reading.  The pam configuration files need to be altered in
+this step.  (Did you remember to make backups of your original 
+<TT
+CLASS="FILENAME"
+>/etc/pam.d</TT
+> files? If not, do it now.)</P
+><P
+>You will need a pam module to use winbindd with these other services.  This 
+module will be compiled in the <TT
+CLASS="FILENAME"
+>../source/nsswitch</TT
+> directory
+by invoking the command</P
 ><P
+><TT
+CLASS="PROMPT"
+>root#</TT
+> <B
+CLASS="COMMAND"
+>make nsswitch/pam_winbind.so</B
 ></P
-><TABLE
-CLASS="NOTE"
-WIDTH="100%"
-BORDER="0"
-><TR
-><TD
-WIDTH="25"
-ALIGN="CENTER"
-VALIGN="TOP"
-><IMG
-SRC="/docbook-dsssl/note.gif"
-HSPACE="5"
-ALT="Note"></TD
-><TH
-ALIGN="LEFT"
-VALIGN="CENTER"
-><B
->Author's Note</B
-></TH
-></TR
-><TR
-><TD
->&nbsp;</TD
-><TD
-ALIGN="LEFT"
-VALIGN="TOP"
 ><P
->The non-issue is that if all your Windows NT users are guaranteed to be 
-authenticated by the Samba server (such as a domain member server and the NT 
-user has already been validated by the Domain Controller in 
-order to logon to the Windows NT console), then guest access 
-is not necessary.  Of course, in a workgroup environment where 
-you just want to be able to print without worrying about 
-silly accounts and security, then configure the share for 
-guest access.  You'll probably want to add <A
-HREF="smb.conf.5.html#MAPTOGUEST"
-TARGET="_top"
-><B
+>from the <TT
+CLASS="FILENAME"
+>../source</TT
+> directory.  The
+<TT
+CLASS="FILENAME"
+>pam_winbind.so</TT
+> file should be copied to the location of
+your other pam security modules.  On my RedHat system, this was the
+<TT
+CLASS="FILENAME"
+>/lib/security</TT
+> directory. On Solaris, the pam security 
+modules reside in <TT
+CLASS="FILENAME"
+>/usr/lib/security</TT
+>.</P
+><P
+><TT
+CLASS="PROMPT"
+>root#</TT
+> <B
 CLASS="COMMAND"
->map to guest = Bad User</B
+>cp ../samba/source/nsswitch/pam_winbind.so /lib/security</B
+></P
+><DIV
+CLASS="SECT4"
+><HR><H5
+CLASS="SECT4"
+><A
+NAME="AEN1674"
 ></A
-> in the [global] section as well.  Make sure 
-you understand what this parameter does before using it 
-though. --jerry</P
-></TD
-></TR
-></TABLE
-></DIV
+>11.5.3.7.1. Linux/FreeBSD-specific PAM configuration</H5
 ><P
->In order for a Windows NT print server to support 
-the downloading of driver files by multiple client architectures,
-it must create subdirectories within the [print$] service
-which correspond to each of the supported client architectures.
-Samba follows this model as well.</P
+>The <TT
+CLASS="FILENAME"
+>/etc/pam.d/samba</TT
+> file does not need to be changed. I 
+just left this fileas it was:</P
 ><P
->Next create the directory tree below the [print$] share 
-for each architecture you wish to support.</P
+><PRE
+CLASS="PROGRAMLISTING"
+>auth    required        /lib/security/pam_stack.so service=system-auth
+account required        /lib/security/pam_stack.so service=system-auth</PRE
+></P
+><P
+>The other services that I modified to allow the use of winbind 
+as an authentication service were the normal login on the console (or a terminal 
+session), telnet logins, and ftp service.  In order to enable these 
+services, you may first need to change the entries in 
+<TT
+CLASS="FILENAME"
+>/etc/xinetd.d</TT
+> (or <TT
+CLASS="FILENAME"
+>/etc/inetd.conf</TT
+>).  
+RedHat 7.1 uses the new xinetd.d structure, in this case you need 
+to change the lines in <TT
+CLASS="FILENAME"
+>/etc/xinetd.d/telnet</TT
+> 
+and <TT
+CLASS="FILENAME"
+>/etc/xinetd.d/wu-ftp</TT
+> from </P
 ><P
 ><PRE
 CLASS="PROGRAMLISTING"
->[print$]-----
-        |-W32X86           ; "Windows NT x86"
-        |-WIN40            ; "Windows 95/98"
-        |-W32ALPHA         ; "Windows NT Alpha_AXP"
-        |-W32MIPS          ; "Windows NT R4000"
-        |-W32PPC           ; "Windows NT PowerPC"</PRE
+>enable = no</PRE
 ></P
-><DIV
-CLASS="WARNING"
 ><P
+>to</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>enable = yes</PRE
 ></P
-><TABLE
-CLASS="WARNING"
-WIDTH="100%"
-BORDER="0"
-><TR
-><TD
-WIDTH="25"
-ALIGN="CENTER"
-VALIGN="TOP"
-><IMG
-SRC="/docbook-dsssl/warning.gif"
-HSPACE="5"
-ALT="Warning"></TD
-><TH
-ALIGN="LEFT"
-VALIGN="CENTER"
-><B
->ATTENTION!  REQUIRED PERMISSIONS</B
-></TH
-></TR
-><TR
-><TD
->&nbsp;</TD
-><TD
-ALIGN="LEFT"
-VALIGN="TOP"
 ><P
->In order to currently add a new driver to you Samba host, 
-one of two conditions must hold true:</P
+>	
+For ftp services to work properly, you will also need to either 
+have individual directories for the domain users already present on 
+the server, or change the home directory template to a general
+directory for all domain users.  These can be easily set using 
+the <TT
+CLASS="FILENAME"
+>smb.conf</TT
+> global entry 
+<B
+CLASS="COMMAND"
+>template homedir</B
+>.</P
+><P
+>The <TT
+CLASS="FILENAME"
+>/etc/pam.d/ftp</TT
+> file can be changed 
+to allow winbind ftp access in a manner similar to the
+samba file.  My <TT
+CLASS="FILENAME"
+>/etc/pam.d/ftp</TT
+> file was 
+changed to look like this:</P
 ><P
+><PRE
+CLASS="PROGRAMLISTING"
+>auth       required     /lib/security/pam_listfile.so item=user sense=deny file=/etc/ftpusers onerr=succeed
+auth       sufficient   /lib/security/pam_winbind.so
+auth       required     /lib/security/pam_stack.so service=system-auth
+auth       required     /lib/security/pam_shells.so
+account    sufficient   /lib/security/pam_winbind.so
+account    required     /lib/security/pam_stack.so service=system-auth
+session    required     /lib/security/pam_stack.so service=system-auth</PRE
 ></P
-><UL
-><LI
 ><P
->The account used to connect to the Samba host 
-	must have a uid of 0 (i.e. a root account)</P
-></LI
-><LI
+>The <TT
+CLASS="FILENAME"
+>/etc/pam.d/login</TT
+> file can be changed nearly the 
+same way.  It now looks like this:</P
 ><P
->The account used to connect to the Samba host
-	must be a member of the <A
-HREF="smb.conf.5.html#PRINTERADMIN"
-TARGET="_top"
-><TT
-CLASS="PARAMETER"
-><I
->printer 
-	admin</I
-></TT
+><PRE
+CLASS="PROGRAMLISTING"
+>auth       required     /lib/security/pam_securetty.so
+auth       sufficient   /lib/security/pam_winbind.so
+auth       sufficient   /lib/security/pam_unix.so use_first_pass
+auth       required     /lib/security/pam_stack.so service=system-auth
+auth       required     /lib/security/pam_nologin.so
+account    sufficient   /lib/security/pam_winbind.so
+account    required     /lib/security/pam_stack.so service=system-auth
+password   required     /lib/security/pam_stack.so service=system-auth
+session    required     /lib/security/pam_stack.so service=system-auth
+session    optional     /lib/security/pam_console.so</PRE
+></P
+><P
+>In this case, I added the <B
+CLASS="COMMAND"
+>auth sufficient /lib/security/pam_winbind.so</B
+> 
+lines as before, but also added the <B
+CLASS="COMMAND"
+>required pam_securetty.so</B
+> 
+above it, to disallow root logins over the network.  I also added a 
+<B
+CLASS="COMMAND"
+>sufficient /lib/security/pam_unix.so use_first_pass</B
+>
+line after the <B
+CLASS="COMMAND"
+>winbind.so</B
+> line to get rid of annoying 
+double prompts for passwords.</P
+></DIV
+><DIV
+CLASS="SECT4"
+><HR><H5
+CLASS="SECT4"
+><A
+NAME="AEN1707"
 ></A
-> list.</P
-></LI
-></UL
+>11.5.3.7.2. Solaris-specific configuration</H5
+><P
+>The /etc/pam.conf needs to be changed. I changed this file so that my Domain
+users can logon both locally as well as telnet.The following are the changes
+that I made.You can customize the pam.conf file as per your requirements,but
+be sure of those changes because in the worst case it will leave your system
+nearly impossible to boot.</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>#
+#ident	"@(#)pam.conf	1.14	99/09/16 SMI"
+#
+# Copyright (c) 1996-1999, Sun Microsystems, Inc.
+# All Rights Reserved.
+#
+# PAM configuration
+#
+# Authentication management
+#
+login   auth required   /usr/lib/security/pam_winbind.so
+login	auth required 	/usr/lib/security/$ISA/pam_unix.so.1 try_first_pass 
+login	auth required 	/usr/lib/security/$ISA/pam_dial_auth.so.1 try_first_pass 
+#
+rlogin  auth sufficient /usr/lib/security/pam_winbind.so
+rlogin  auth sufficient /usr/lib/security/$ISA/pam_rhosts_auth.so.1
+rlogin	auth required 	/usr/lib/security/$ISA/pam_unix.so.1 try_first_pass
+#
+dtlogin auth sufficient /usr/lib/security/pam_winbind.so
+dtlogin	auth required 	/usr/lib/security/$ISA/pam_unix.so.1 try_first_pass
+#
+rsh	auth required	/usr/lib/security/$ISA/pam_rhosts_auth.so.1
+other   auth sufficient /usr/lib/security/pam_winbind.so
+other	auth required	/usr/lib/security/$ISA/pam_unix.so.1 try_first_pass
+#
+# Account management
+#
+login   account sufficient      /usr/lib/security/pam_winbind.so
+login	account requisite	/usr/lib/security/$ISA/pam_roles.so.1 
+login	account required	/usr/lib/security/$ISA/pam_unix.so.1 
+#
+dtlogin account sufficient      /usr/lib/security/pam_winbind.so
+dtlogin	account requisite	/usr/lib/security/$ISA/pam_roles.so.1 
+dtlogin	account required	/usr/lib/security/$ISA/pam_unix.so.1 
+#
+other   account sufficient      /usr/lib/security/pam_winbind.so
+other	account requisite	/usr/lib/security/$ISA/pam_roles.so.1 
+other	account required	/usr/lib/security/$ISA/pam_unix.so.1 
+#
+# Session management
+#
+other	session required	/usr/lib/security/$ISA/pam_unix.so.1 
+#
+# Password management
+#
+#other   password sufficient     /usr/lib/security/pam_winbind.so
+other	password required	/usr/lib/security/$ISA/pam_unix.so.1 
+dtsession auth required	/usr/lib/security/$ISA/pam_unix.so.1
+#
+# Support for Kerberos V5 authentication (uncomment to use Kerberos)
+#
+#rlogin	auth optional	/usr/lib/security/$ISA/pam_krb5.so.1 try_first_pass
+#login	auth optional	/usr/lib/security/$ISA/pam_krb5.so.1 try_first_pass
+#dtlogin	auth optional	/usr/lib/security/$ISA/pam_krb5.so.1 try_first_pass
+#other	auth optional	/usr/lib/security/$ISA/pam_krb5.so.1 try_first_pass
+#dtlogin	account optional /usr/lib/security/$ISA/pam_krb5.so.1
+#other	account optional /usr/lib/security/$ISA/pam_krb5.so.1
+#other	session optional /usr/lib/security/$ISA/pam_krb5.so.1
+#other	password optional /usr/lib/security/$ISA/pam_krb5.so.1 try_first_pass</PRE
+></P
 ><P
->Of course, the connected account must still possess access
-to add files to the subdirectories beneath [print$]. Remember
-that all file shares are set to 'read only' by default.</P
-></TD
-></TR
-></TABLE
-></DIV
+>I also added a try_first_pass line after the winbind.so line to get rid of
+annoying double prompts for passwords.</P
 ><P
->Once you have created the required [print$] service and 
-associated subdirectories, simply log onto the Samba server using 
-a root (or <TT
-CLASS="PARAMETER"
-><I
->printer admin</I
-></TT
->) account
-from a Windows NT 4.0/2k client.  Open "Network Neighbourhood" or
-"My Network Places" and browse for the Samba host.  Once you have located
-the server, navigate to the "Printers..." folder.
-You should see an initial listing of printers
-that matches the printer shares defined on your Samba host.</P
+>Now restart your Samba &#38; try connecting through your application that you
+configured in the pam.conf.</P
+></DIV
+></DIV
+></DIV
 ></DIV
 ><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
 ><A
-NAME="AEN1973"
+NAME="AEN1714"
 ></A
->14.2.2. Setting Drivers for Existing Printers</H3
-><P
->The initial listing of printers in the Samba host's 
-Printers folder will have no real printer driver assigned 
-to them. This defaults to a NULL string to allow the use
-of the local Add Printer Wizard on NT/2000 clients.
-Attempting to view the printer properties for a printer
-which has this default driver assigned will result in 
-the error message:</P
-><P
-><SPAN
-CLASS="emphasis"
-><I
-CLASS="EMPHASIS"
->Device settings cannot be displayed.  The driver 
-for the specified printer is not installed, only spooler 
-properties will be displayed.  Do you want to install the 
-driver now?</I
-></SPAN
-></P
+>11.6. Limitations</H2
 ><P
->Click "No" in the error dialog and you will be presented with
-the printer properties window.  The way to assign a driver to a 
-printer is to either</P
+>Winbind has a number of limitations in its current 
+	released version that we hope to overcome in future 
+	releases:</P
 ><P
 ></P
 ><UL
 ><LI
 ><P
->Use the "New Driver..." button to install 
-	a new printer driver, or</P
+>Winbind is currently only available for 
+		the Linux operating system, although ports to other operating 
+		systems are certainly possible. For such ports to be feasible, 
+		we require the C library of the target operating system to 
+		support the Name Service Switch and Pluggable Authentication
+		Modules systems. This is becoming more common as NSS and 
+		PAM gain	support among UNIX vendors.</P
 ></LI
 ><LI
 ><P
->Select a driver from the popup list of 
-	installed drivers.  Initially this list will be empty.</P
+>The mappings of Windows NT RIDs to UNIX ids 
+		is not made algorithmically and depends on the order in which 
+		unmapped users or groups are seen by winbind. It may be difficult 
+		to recover the mappings of rid to UNIX id mapping if the file 
+		containing this information is corrupted or destroyed.</P
 ></LI
-></UL
-><P
->If you wish to install printer drivers for client 
-operating systems other than "Windows NT x86", you will need 
-to use the "Sharing" tab of the printer properties dialog.</P
-><P
->Assuming you have connected with a root account, you 
-will also be able modify other printer properties such as 
-ACLs and device settings using this dialog box.</P
+><LI
 ><P
->A few closing comments for this section, it is possible 
-on a Windows NT print server to have printers
-listed in the Printers folder which are not shared.  Samba does
-not make this distinction.  By definition, the only printers of
-which Samba is aware are those which are specified as shares in
-<TT
-CLASS="FILENAME"
->smb.conf</TT
->.</P
+>Currently the winbind PAM module does not take 
+		into account possible workstation and logon time restrictions 
+		that may be been set for Windows NT users.</P
+></LI
+></UL
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
+><A
+NAME="AEN1724"
+></A
+>11.7. Conclusion</H2
 ><P
->Another interesting side note is that Windows NT clients do
-not use the SMB printer share, but rather can print directly 
-to any printer on another Windows NT host using MS-RPC.  This
-of course assumes that the printing client has the necessary
-privileges on the remote host serving the printer.  The default
-permissions assigned by Windows NT to a printer gives the "Print"
-permissions to the "Everyone" well-known group.</P
+>The winbind system, through the use of the Name Service 
+	Switch, Pluggable Authentication Modules, and appropriate 
+	Microsoft RPC calls have allowed us to provide seamless 
+	integration of Microsoft Windows NT domain users on a
+	UNIX system. The result is a great reduction in the administrative 
+	cost of running a mixed UNIX and NT network.</P
+></DIV
 ></DIV
 ><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
+CLASS="CHAPTER"
+><HR><H1
+><A
+NAME="SAMBA-PDC"
+></A
+>Chapter 12. How to Configure Samba 2.2 as a Primary Domain Controller</H1
+><DIV
+CLASS="SECT1"
+><H2
+CLASS="SECT1"
 ><A
-NAME="AEN1989"
+NAME="AEN1744"
 ></A
->14.2.3. Support a large number of printers</H3
+>12.1. Prerequisite Reading</H2
 ><P
->One issue that has arisen during the development
-phase of Samba 2.2 is the need to support driver downloads for
-100's of printers.  Using the Windows NT APW is somewhat 
-awkward to say the list.  If more than one printer are using the 
-same driver, the <A
-HREF="rpcclient.1.html"
+>Before you continue reading in this chapter, please make sure 
+that you are comfortable with configuring basic files services
+in smb.conf and how to enable and administer password 
+encryption in Samba.  Theses two topics are covered in the
+<A
+HREF="smb.conf.5.html"
 TARGET="_top"
-><B
-CLASS="COMMAND"
->rpcclient's
-setdriver command</B
+><TT
+CLASS="FILENAME"
+>smb.conf(5)</TT
 ></A
-> can be used to set the driver
-associated with an installed driver.  The following is example
-of how this could be accomplished:</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
 > 
-<TT
-CLASS="PROMPT"
->$ </TT
->rpcclient pogo -U root%secret -c "enumdrivers"
-Domain=[NARNIA] OS=[Unix] Server=[Samba 2.2.0-alpha3]
- 
-[Windows NT x86]
-Printer Driver Info 1:
-     Driver Name: [HP LaserJet 4000 Series PS]
- 
-Printer Driver Info 1:
-     Driver Name: [HP LaserJet 2100 Series PS]
- 
-Printer Driver Info 1:
-     Driver Name: [HP LaserJet 4Si/4SiMX PS]
-				  
-<TT
-CLASS="PROMPT"
->$ </TT
->rpcclient pogo -U root%secret -c "enumprinters"
-Domain=[NARNIA] OS=[Unix] Server=[Samba 2.2.0-alpha3]
-     flags:[0x800000]
-     name:[\\POGO\hp-print]
-     description:[POGO\\POGO\hp-print,NO DRIVER AVAILABLE FOR THIS PRINTER,]
-     comment:[]
-				  
-<TT
-CLASS="PROMPT"
->$ </TT
->rpcclient pogo -U root%secret \
-<TT
-CLASS="PROMPT"
->&gt; </TT
-> -c "setdriver hp-print \"HP LaserJet 4000 Series PS\""
-Domain=[NARNIA] OS=[Unix] Server=[Samba 2.2.0-alpha3]
-Successfully set hp-print to driver HP LaserJet 4000 Series PS.</PRE
-></P
+manpage and the <A
+HREF="ENCRYPTION.html"
+TARGET="_top"
+>Encryption chapter</A
+> 
+of this HOWTO Collection.</P
 ></DIV
 ><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
 ><A
-NAME="AEN2000"
+NAME="AEN1750"
 ></A
->14.2.4. Adding New Printers via the Windows NT APW</H3
+>12.2. Background</H2
+><DIV
+CLASS="NOTE"
+><P
+></P
+><TABLE
+CLASS="NOTE"
+WIDTH="100%"
+BORDER="0"
+><TR
+><TD
+WIDTH="25"
+ALIGN="CENTER"
+VALIGN="TOP"
+><IMG
+SRC="/docbook-dsssl/note.gif"
+HSPACE="5"
+ALT="Note"></TD
+><TD
+ALIGN="LEFT"
+VALIGN="TOP"
+><P
+><SPAN
+CLASS="emphasis"
+><I
+CLASS="EMPHASIS"
+>Author's Note:</I
+></SPAN
+> This document is a combination 
+of David Bannon's "Samba 2.2 PDC HOWTO" and "Samba NT Domain FAQ". 
+Both documents are superseded by this one.</P
+></TD
+></TR
+></TABLE
+></DIV
+><P
+>Versions of Samba prior to release 2.2 had marginal capabilities to act
+as a Windows NT 4.0 Primary Domain Controller
+
+(PDC).  With Samba 2.2.0, we are proud to announce official support for
+Windows NT 4.0-style domain logons from Windows NT 4.0 and Windows 
+2000 clients.  This article outlines the steps
+necessary for configuring Samba as a PDC.  It is necessary to have a
+working Samba server prior to implementing the PDC functionality.  If
+you have not followed the steps outlined in <A
+HREF="UNIX_INSTALL.html"
+TARGET="_top"
+> UNIX_INSTALL.html</A
+>, please make sure
+that your server is configured correctly before proceeding.  Another
+good resource in the <A
+HREF="smb.conf.5.html"
+TARGET="_top"
+>smb.conf(5) man
+page</A
+>. The following functionality should work in 2.2:</P
 ><P
->By default, Samba offers all printer shares defined in <TT
-CLASS="FILENAME"
->smb.conf</TT
->
-in the "Printers..." folder.  Also existing in this folder is the Windows NT 
-Add Printer Wizard icon.  The APW will be show only if</P
+></P
+><UL
+><LI
+><P
+>	domain logons for Windows NT 4.0/2000 clients.
+	</P
+></LI
+><LI
+><P
+>	placing a Windows 9x client in user level security
+	</P
+></LI
+><LI
+><P
+>	retrieving a list of users and groups from a Samba PDC to
+	Windows 9x/NT/2000 clients
+	</P
+></LI
+><LI
+><P
+>	roving (roaming) user profiles
+	</P
+></LI
+><LI
+><P
+>	Windows NT 4.0-style system policies
+	</P
+></LI
+></UL
+><P
+>The following pieces of functionality are not included in the 2.2 release:</P
 ><P
 ></P
 ><UL
 ><LI
 ><P
->The connected user is able to successfully
-	execute an OpenPrinterEx(\\server) with administrative
-	privileges (i.e. root or <TT
-CLASS="PARAMETER"
-><I
->printer admin</I
-></TT
->).
+>	Windows NT 4 domain trusts
 	</P
 ></LI
 ><LI
 ><P
-><A
-HREF="smb.conf.5.html#SHOWADDPRINTERWIZARD"
-TARGET="_top"
-><TT
-CLASS="PARAMETER"
-><I
->show 
-	add printer wizard = yes</I
-></TT
-></A
-> (the default).
+>	SAM replication with Windows NT 4.0 Domain Controllers
+	(i.e. a Samba PDC and a Windows NT BDC or vice versa) 
+	</P
+></LI
+><LI
+><P
+>	Adding users via the User Manager for Domains
+	</P
+></LI
+><LI
+><P
+>	Acting as a Windows 2000 Domain Controller (i.e. Kerberos and 
+	Active Directory)
 	</P
 ></LI
 ></UL
 ><P
->In order to be able to use the APW to successfully add a printer to a Samba 
-server, the <A
-HREF="smb.conf.5.html#ADDPRINTERCOMMAND"
-TARGET="_top"
-><TT
-CLASS="PARAMETER"
-><I
->add 
-printer command</I
-></TT
+>Please note that Windows 9x clients are not true members of a domain
+for reasons outlined in this article.  Therefore the protocol for
+support Windows 9x-style domain logons is completely different
+from NT4 domain logons and has been officially supported for some 
+time.</P
+><P
+>Implementing a Samba PDC can basically be divided into 2 broad
+steps.</P
+><P
+></P
+><OL
+TYPE="1"
+><LI
+><P
+>	Configuring the Samba PDC
+	</P
+></LI
+><LI
+><P
+>	Creating machine trust accounts	and joining clients 
+	to the domain
+	</P
+></LI
+></OL
+><P
+>There are other minor details such as user profiles, system
+policies, etc...  However, these are not necessarily specific
+to a Samba PDC as much as they are related to Windows NT networking
+concepts.  They will be mentioned only briefly here.</P
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
+><A
+NAME="AEN1789"
 ></A
-> must have a defined value.  The program
-hook must successfully add the printer to the system (i.e. 
-<TT
-CLASS="FILENAME"
->/etc/printcap</TT
-> or appropriate files) and 
-<TT
+>12.3. Configuring the Samba Domain Controller</H2
+><P
+>The first step in creating a working Samba PDC is to 
+understand the parameters necessary in smb.conf.  I will not
+attempt to re-explain the parameters here as they are more that
+adequately covered in <A
+HREF="smb.conf.5.html"
+TARGET="_top"
+> the smb.conf
+man page</A
+>.  For convenience, the parameters have been
+linked with the actual smb.conf description.</P
+><P
+>Here is an example <TT
 CLASS="FILENAME"
 >smb.conf</TT
-> if necessary.</P
+> for acting as a PDC:</P
 ><P
->When using the APW from a client, if the named printer share does 
-not exist, <B
-CLASS="COMMAND"
->smbd</B
-> will execute the <TT
-CLASS="PARAMETER"
+><PRE
+CLASS="PROGRAMLISTING"
+>[global]
+    ; Basic server settings
+    <A
+HREF="smb.conf.5.html#NETBIOSNAME"
+TARGET="_top"
+>netbios name</A
+> = <TT
+CLASS="REPLACEABLE"
+><I
+>POGO</I
+></TT
+>
+    <A
+HREF="smb.conf.5.html#WORKGROUP"
+TARGET="_top"
+>workgroup</A
+> = <TT
+CLASS="REPLACEABLE"
+><I
+>NARNIA</I
+></TT
+>
+
+    ; we should act as the domain and local master browser
+    <A
+HREF="smb.conf.5.html#OSLEVEL"
+TARGET="_top"
+>os level</A
+> = 64
+    <A
+HREF="smb.conf.5.html#PERFERREDMASTER"
+TARGET="_top"
+>preferred master</A
+> = yes
+    <A
+HREF="smb.conf.5.html#DOMAINMASTER"
+TARGET="_top"
+>domain master</A
+> = yes
+    <A
+HREF="smb.conf.5.html#LOCALMASTER"
+TARGET="_top"
+>local master</A
+> = yes
+    
+    ; security settings (must user security = user)
+    <A
+HREF="smb.conf.5.html#SECURITYEQUALSUSER"
+TARGET="_top"
+>security</A
+> = user
+    
+    ; encrypted passwords are a requirement for a PDC
+    <A
+HREF="smb.conf.5.html#ENCRYPTPASSWORDS"
+TARGET="_top"
+>encrypt passwords</A
+> = yes
+    
+    ; support domain logons
+    <A
+HREF="smb.conf.5.html#DOMAINLOGONS"
+TARGET="_top"
+>domain logons</A
+> = yes
+    
+    ; where to store user profiles?
+    <A
+HREF="smb.conf.5.html#LOGONPATH"
+TARGET="_top"
+>logon path</A
+> = \\%N\profiles\%u
+    
+    ; where is a user's home directory and where should it
+    ; be mounted at?
+    <A
+HREF="smb.conf.5.html#LOGONDRIVE"
+TARGET="_top"
+>logon drive</A
+> = H:
+    <A
+HREF="smb.conf.5.html#LOGONHOME"
+TARGET="_top"
+>logon home</A
+> = \\homeserver\%u
+    
+    ; specify a generic logon script for all users
+    ; this is a relative **DOS** path to the [netlogon] share
+    <A
+HREF="smb.conf.5.html#LOGONSCRIPT"
+TARGET="_top"
+>logon script</A
+> = logon.cmd
+
+; necessary share for domain controller
+[netlogon]
+    <A
+HREF="smb.conf.5.html#PATH"
+TARGET="_top"
+>path</A
+> = /usr/local/samba/lib/netlogon
+    <A
+HREF="smb.conf.5.html#READONLY"
+TARGET="_top"
+>read only</A
+> = yes
+    <A
+HREF="smb.conf.5.html#WRITELIST"
+TARGET="_top"
+>write list</A
+> = <TT
+CLASS="REPLACEABLE"
 ><I
->add printer 
-command</I
+>ntadmin</I
 ></TT
-> and reparse to the <TT
-CLASS="FILENAME"
->smb.conf</TT
 >
-to attempt to locate the new printer share.  If the share is still not defined,
-an error of "Access Denied" is returned to the client.  Note that the 
-<TT
-CLASS="PARAMETER"
-><I
->add printer program</I
-></TT
-> is executed under the context
-of the connected user, not necessarily a root account.</P
-><P
->There is a complementary <A
-HREF="smb.conf.5.html#DELETEPRINTERCOMMAND"
+    
+; share for storing user profiles
+[profiles]
+    <A
+HREF="smb.conf.5.html#PATH"
 TARGET="_top"
-><TT
-CLASS="PARAMETER"
-><I
->delete
-printer command</I
-></TT
-></A
-> for removing entries from the "Printers..."
-folder.</P
-><P
->The following is an example <A
-HREF="smb.conf.5.html#ADDPRINTERCOMMAN"
+>path</A
+> = /export/smb/ntprofile
+    <A
+HREF="smb.conf.5.html#READONLY"
 TARGET="_top"
-><TT
-CLASS="PARAMETER"
-><I
->add printer command</I
-></TT
-></A
-> script. It adds the appropriate entries to <TT
-CLASS="FILENAME"
->/etc/printcap.local</TT
-> (change that to what you need) and returns a line of 'Done' which is needed for the whole process to work.</P
-><PRE
-CLASS="PROGRAMLISTING"
->#!/bin/sh
-
-# Script to insert a new printer entry into printcap.local
-#
-# $1, printer name, used as the descriptive name
-# $2, share name, used as the printer name for Linux
-# $3, port name
-# $4, driver name
-# $5, location, used for the device file of the printer
-# $6, win9x location
-
-#
-# Make sure we use the location that RedHat uses for local printer defs
-PRINTCAP=/etc/printcap.local
-DATE=`date +%Y%m%d-%H%M%S`
-LP=lp
-RESTART="service lpd restart"
-
-# Keep a copy
-cp $PRINTCAP $PRINTCAP.$DATE
-# Add the printer to $PRINTCAP
-echo ""				 			&#62;&#62; $PRINTCAP
-echo "$2|$1:\\" 					&#62;&#62; $PRINTCAP
-echo "  :sd=/var/spool/lpd/$2:\\" 			&#62;&#62; $PRINTCAP
-echo "  :mx=0:ml=0:sh:\\" 				&#62;&#62; $PRINTCAP
-echo "  :lp=/usr/local/samba/var/print/$5.prn:" 	&#62;&#62; $PRINTCAP
-
-touch "/usr/local/samba/var/print/$5.prn" &#62;&#62; /tmp/printadd.$$ 2&#62;&#38;1
-chown $LP "/usr/local/samba/var/print/$5.prn" &#62;&#62; /tmp/printadd.$$ 2&#62;&#38;1
-
-mkdir /var/spool/lpd/$2
-chmod 700 /var/spool/lpd/$2
-chown $LP /var/spool/lpd/$2
-#echo $1 &#62;&#62; "/usr/local/samba/var/print/$5.prn"
-#echo $2 &#62;&#62; "/usr/local/samba/var/print/$5.prn"
-#echo $3 &#62;&#62; "/usr/local/samba/var/print/$5.prn"
-#echo $4 &#62;&#62; "/usr/local/samba/var/print/$5.prn"
-#echo $5 &#62;&#62; "/usr/local/samba/var/print/$5.prn"
-#echo $6 &#62;&#62; "/usr/local/samba/var/print/$5.prn"
-$RESTART &#62;&#62; "/usr/local/samba/var/print/$5.prn"
-# Not sure if this is needed
-touch /usr/local/samba/lib/smb.conf
-#
-# You need to return a value, but I am not sure what it means.
-#
-echo "Done"
-exit 0</PRE
-></DIV
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN2030"
-></A
->14.2.5. Samba and Printer Ports</H3
-><P
->Windows NT/2000 print servers associate a port with each printer.  These normally
-take the form of LPT1:, COM1:, FILE:, etc...  Samba must also support the
-concept of ports associated with a printer.  By default, only one printer port,
-named "Samba Printer Port", exists on a system.  Samba does not really a port in
-order to print, rather it is a requirement of Windows clients.  </P
-><P
->Note that Samba does not support the concept of "Printer Pooling" internally 
-either.  This is when a logical printer is assigned to multiple ports as 
-a form of load balancing or fail over.</P
-><P
->If you require that multiple ports be defined for some reason,
-<TT
-CLASS="FILENAME"
->smb.conf</TT
-> possesses a <A
-HREF="smb.conf.5.html#ENUMPORTSCOMMAND"
+>read only</A
+> = no
+    <A
+HREF="smb.conf.5.html#CREATEMASK"
 TARGET="_top"
-><TT
-CLASS="PARAMETER"
-><I
->enumports 
-command</I
-></TT
-></A
-> which can be used to define an external program 
-that generates a listing of ports on a system.</P
-></DIV
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN2038"
-></A
->14.3. The Imprints Toolset</H2
-><P
->The Imprints tool set provides a UNIX equivalent of the 
-	Windows NT Add Printer Wizard.  For complete information, please 
-	refer to the Imprints web site at <A
-HREF="http://imprints.sourceforge.net/"
+>create mask</A
+> = 0600
+    <A
+HREF="smb.conf.5.html#DIRECTORYMASK"
 TARGET="_top"
->	http://imprints.sourceforge.net/</A
-> as well as the documentation 
-	included with the imprints source distribution.  This section will 
-	only provide a brief introduction to the features of Imprints.</P
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN2042"
-></A
->14.3.1. What is Imprints?</H3
+>directory mask</A
+> = 0700</PRE
+></P
 ><P
->Imprints is a collection of tools for supporting the goals 
-		of</P
+>There are a couple of points to emphasize in the above configuration.</P
 ><P
 ></P
 ><UL
 ><LI
 ><P
->Providing a central repository information 
-			regarding Windows NT and 95/98 printer driver packages</P
+>	Encrypted passwords must be enabled.  For more details on how 
+	to do this, refer to <A
+HREF="ENCRYPTION.html"
+TARGET="_top"
+>ENCRYPTION.html</A
+>.
+	</P
 ></LI
 ><LI
 ><P
->Providing the tools necessary for creating 
-			the Imprints printer driver packages.</P
+>	The server must support domain logons and a
+	<TT
+CLASS="FILENAME"
+>[netlogon]</TT
+> share
+	</P
 ></LI
 ><LI
 ><P
->Providing an installation client which 
-			will obtain and install printer drivers on remote Samba 
-			and Windows NT 4 print servers.</P
+>	The server must be the domain master browser in order for Windows 
+	client to locate the server as a DC.  Please refer to the various 
+	Network Browsing documentation included with this distribution for 
+	details.
+	</P
 ></LI
 ></UL
-></DIV
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN2052"
-></A
->14.3.2. Creating Printer Driver Packages</H3
-><P
->The process of creating printer driver packages is beyond
-		the scope of this document (refer to Imprints.txt also included
-		with the Samba distribution for more information).  In short,
-		an Imprints driver package is a gzipped tarball containing the
-		driver files, related INF files, and a control file needed by the
-		installation client.</P
-></DIV
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN2055"
-></A
->14.3.3. The Imprints server</H3
 ><P
->The Imprints server is really a database server that 
-		may be queried via standard HTTP mechanisms.  Each printer 
-		entry in the database has an associated URL for the actual
-		downloading of the package.  Each package is digitally signed
-		via GnuPG which can be used to verify that package downloaded
-		is actually the one referred in the Imprints database.  It is 
-		<SPAN
-CLASS="emphasis"
-><I
-CLASS="EMPHASIS"
->not</I
-></SPAN
-> recommended that this security check 
-		be disabled.</P
+>As Samba 2.2 does not offer a complete implementation of group mapping
+between Windows NT groups and Unix groups (this is really quite
+complicated to explain in a short space), you should refer to the
+<A
+HREF="smb.conf.5.html#DOMAINADMINGROUP"
+TARGET="_top"
+>domain admin
+group</A
+> smb.conf parameter for information of creating "Domain
+Admins" style accounts.</P
 ></DIV
 ><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
 ><A
-NAME="AEN2059"
+NAME="AEN1832"
 ></A
->14.3.4. The Installation Client</H3
+>12.4. Creating Machine Trust Accounts and Joining Clients to the
+Domain</H2
 ><P
->More information regarding the Imprints installation client 
-		is available in the <TT
-CLASS="FILENAME"
->Imprints-Client-HOWTO.ps</TT
-> 
-		file included with the imprints source package.</P
+>A machine trust account is a Samba account that is used to
+authenticate a client machine (rather than a user) to the Samba
+server.  In Windows terminology, this is known as a "Computer
+Account."</P
 ><P
->The Imprints installation client comes in two forms.</P
+>The password of a machine trust account acts as the shared secret for
+secure communication with the Domain Controller.  This is a security
+feature to prevent an unauthorized machine with the same NetBIOS name
+from joining the domain and gaining access to domain user/group
+accounts.  Windows NT and 2000 clients use machine trust accounts, but
+Windows 9x clients do not.  Hence, a Windows 9x client is never a true
+member of a domain because it does not possess a machine trust
+account, and thus has no shared secret with the domain controller.</P
 ><P
+>A Windows PDC stores each machine trust account in the Windows
+Registry.  A Samba PDC, however, stores each machine trust account 
+in two parts, as follows:
+
+<P
 ></P
 ><UL
 ><LI
 ><P
->a set of command line Perl scripts</P
+>A Samba account, stored in the same location as user
+    LanMan and NT password hashes (currently
+    <TT
+CLASS="FILENAME"
+>smbpasswd</TT
+>). The Samba account 
+    possesses and uses only the NT password hash.</P
 ></LI
 ><LI
 ><P
->a GTK+ based graphical interface to 
-			the command line perl scripts</P
+>A corresponding Unix account, typically stored in
+    <TT
+CLASS="FILENAME"
+>/etc/passwd</TT
+>. (Future releases will alleviate the need to
+    create <TT
+CLASS="FILENAME"
+>/etc/passwd</TT
+> entries.) </P
 ></LI
 ></UL
-><P
->The installation client (in both forms) provides a means
-		of querying the Imprints database server for a matching
-		list of known printer model names as well as a means to 
-		download and install the drivers on remote Samba and Windows
-		NT print servers.</P
-><P
->The basic installation process is in four steps and 
-		perl code is wrapped around <B
-CLASS="COMMAND"
->smbclient</B
-> 
-		and <B
-CLASS="COMMAND"
->rpcclient</B
->.</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->	
-foreach (supported architecture for a given driver)
-{
-     1.  rpcclient: Get the appropriate upload directory 
-         on the remote server
-     2.  smbclient: Upload the driver files
-     3.  rpcclient: Issues an AddPrinterDriver() MS-RPC
-}
-	
-4.  rpcclient: Issue an AddPrinterEx() MS-RPC to actually
-    create the printer</PRE
 ></P
 ><P
->One of the problems encountered when implementing 
-		the Imprints tool set was the name space issues between 
-		various supported client architectures.  For example, Windows 
-		NT includes a driver named "Apple LaserWriter II NTX v51.8" 
-		and Windows 95 calls its version of this driver "Apple 
-		LaserWriter II NTX"</P
-><P
->The problem is how to know what client drivers have 
-		been uploaded for a printer.  As astute reader will remember 
-		that the Windows NT Printer Properties dialog only includes 
-		space for one printer driver name.  A quick look in the 
-		Windows NT 4.0 system registry at</P
+>There are two ways to create machine trust accounts:</P
 ><P
-><TT
-CLASS="FILENAME"
->HKLM\System\CurrentControlSet\Control\Print\Environment
-		</TT
 ></P
+><UL
+><LI
 ><P
->will reveal that Windows NT always uses the NT driver 
-		name.  This is ok as Windows NT always requires that at least 
-		the Windows NT version of the printer driver is present.  
-		However, Samba does not have the requirement internally.  
-		Therefore, how can you use the NT driver name if is has not 
-		already been installed?</P
+> Manual creation. Both the Samba and corresponding
+	Unix account are created by hand.</P
+></LI
+><LI
 ><P
->The way of sidestepping this limitation is to require 
-		that all Imprints printer driver packages include both the Intel 
-		Windows NT and 95/98 printer drivers and that NT driver is 
-		installed first.</P
-></DIV
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN2081"
-></A
->14.4. Diagnosis</H2
+> "On-the-fly" creation. The Samba machine trust
+	account is automatically created by Samba at the time the client
+	is joined to the domain. (For security, this is the
+	recommended method.) The corresponding Unix account may be
+	created automatically or manually. </P
+></LI
+></UL
 ><DIV
 CLASS="SECT2"
-><H3
+><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN2083"
+NAME="AEN1851"
 ></A
->14.4.1. Introduction</H3
-><P
->This is a short description of how to debug printing problems with
-Samba. This describes how to debug problems with printing from a SMB
-client to a Samba server, not the other way around. For the reverse
-see the examples/printing directory.</P
-><P
->Ok, so you want to print to a Samba server from your PC. The first
-thing you need to understand is that Samba does not actually do any
-printing itself, it just acts as a middleman between your PC client
-and your Unix printing subsystem. Samba receives the file from the PC
-then passes the file to a external "print command". What print command
-you use is up to you.</P
+>12.4.1. Manual Creation of Machine Trust Accounts</H3
 ><P
->The whole things is controlled using options in smb.conf. The most
-relevant options (which you should look up in the smb.conf man page)
-are:</P
+>The first step in manually creating a machine trust account is to
+manually create the corresponding Unix account in
+<TT
+CLASS="FILENAME"
+>/etc/passwd</TT
+>.  This can be done using
+<B
+CLASS="COMMAND"
+>vipw</B
+> or other 'add user' command that is normally
+used to create new Unix accounts.  The following is an example for a
+Linux based Samba server:</P
 ><P
-><PRE
-CLASS="PROGRAMLISTING"
->      [global]
-        print command     - send a file to a spooler
-        lpq command       - get spool queue status
-        lprm command      - remove a job
-      [printers]
-        path = /var/spool/lpd/samba</PRE
+>  <TT
+CLASS="PROMPT"
+>root# </TT
+><B
+CLASS="COMMAND"
+>/usr/sbin/useradd -g 100 -d /dev/null -c <TT
+CLASS="REPLACEABLE"
+><I
+>"machine 
+nickname"</I
+></TT
+> -s /bin/false <TT
+CLASS="REPLACEABLE"
+><I
+>machine_name</I
+></TT
+>$ </B
 ></P
 ><P
->The following are nice to know about:</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->        queuepause command   - stop a printer or print queue
-        queueresume command  - start a printer or print queue</PRE
+><TT
+CLASS="PROMPT"
+>root# </TT
+><B
+CLASS="COMMAND"
+>passwd -l <TT
+CLASS="REPLACEABLE"
+><I
+>machine_name</I
+></TT
+>$</B
 ></P
 ><P
->Example:</P
+>The <TT
+CLASS="FILENAME"
+>/etc/passwd</TT
+> entry will list the machine name 
+with a "$" appended, won't have a password, will have a null shell and no 
+home directory. For example a machine named 'doppy' would have an 
+<TT
+CLASS="FILENAME"
+>/etc/passwd</TT
+> entry like this:</P
 ><P
 ><PRE
 CLASS="PROGRAMLISTING"
->        print command = /usr/bin/lpr -r -P%p %s
-        lpq command   = /usr/bin/lpq    -P%p %s
-        lprm command  = /usr/bin/lprm   -P%p %j
-        queuepause command = /usr/sbin/lpc -P%p stop
-        queuepause command = /usr/sbin/lpc -P%p start</PRE
+>doppy$:x:505:501:<TT
+CLASS="REPLACEABLE"
+><I
+>machine_nickname</I
+></TT
+>:/dev/null:/bin/false</PRE
 ></P
 ><P
->Samba should set reasonable defaults for these depending on your
-system type, but it isn't clairvoyant. It is not uncommon that you
-have to tweak these for local conditions.  The commands should
-always have fully specified pathnames,  as the smdb may not have
-the correct PATH values.</P
-><P
->When you send a job to Samba to be printed,  it will make a temporary
-copy of it in the directory specified in the [printers] section.
-and it should be periodically cleaned out.  The lpr -r option
-requests that the temporary copy be removed after printing; If
-printing fails then you might find leftover files in this directory,
-and it should be periodically cleaned out.  Samba used the lpq
-command to determine the "job number" assigned to your print job
-by the spooler.</P
+>Above, <TT
+CLASS="REPLACEABLE"
+><I
+>machine_nickname</I
+></TT
+> can be any
+descriptive name for the client, i.e., BasementComputer.
+<TT
+CLASS="REPLACEABLE"
+><I
+>machine_name</I
+></TT
+> absolutely must be the NetBIOS
+name of the client to be joined to the domain.  The "$" must be
+appended to the NetBIOS name of the client or Samba will not recognize
+this as a machine trust account.</P
 ><P
->The %&gt;letter&lt; are "macros" that get dynamically replaced with appropriate
-values when they are used. The %s gets replaced with the name of the spool
-file that Samba creates and the %p gets replaced with the name of the
-printer. The %j gets replaced with the "job number" which comes from
-the lpq output.</P
-></DIV
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN2099"
+>Now that the corresponding Unix account has been created, the next step is to create 
+the Samba account for the client containing the well-known initial 
+machine trust account password.  This can be done using the <A
+HREF="smbpasswd.8.html"
+TARGET="_top"
+><B
+CLASS="COMMAND"
+>smbpasswd(8)</B
 ></A
->14.4.2. Debugging printer problems</H3
-><P
->One way to debug printing problems is to start by replacing these
-command with shell scripts that record the arguments and the contents
-of the print file. A simple example of this kind of things might
-be:</P
+> command 
+as shown here:</P
 ><P
-><PRE
-CLASS="PROGRAMLISTING"
->	print command = /tmp/saveprint %p %s
-
-    #!/bin/saveprint
-    # we make sure that we are the right user
-    /usr/bin/id -p &#62;/tmp/tmp.print
-    # we run the command and save the error messages
-    # replace the command with the one appropriate for your system
-    /usr/bin/lpr -r -P$1 $2 2&#62;&#62;&#38;/tmp/tmp.print</PRE
+><TT
+CLASS="PROMPT"
+>root# </TT
+><B
+CLASS="COMMAND"
+>smbpasswd -a -m <TT
+CLASS="REPLACEABLE"
+><I
+>machine_name</I
+></TT
+></B
 ></P
 ><P
->Then you print a file and try removing it.  You may find that the
-print queue needs to be stopped in order to see the queue status
-and remove the job:</P
+>where <TT
+CLASS="REPLACEABLE"
+><I
+>machine_name</I
+></TT
+> is the machine's NetBIOS
+name.  The RID of the new machine account is generated from the UID of 
+the corresponding Unix account.</P
+><DIV
+CLASS="WARNING"
 ><P
-><PRE
-CLASS="PROGRAMLISTING"
->&#13;h4: {42} % echo hi &#62;/tmp/hi
-h4: {43} % smbclient //localhost/lw4
-added interface ip=10.0.0.4 bcast=10.0.0.255 nmask=255.255.255.0
-Password: 
-Domain=[ASTART] OS=[Unix] Server=[Samba 2.0.7]
-smb: \&#62; print /tmp/hi
-putting file /tmp/hi as hi-17534 (0.0 kb/s) (average 0.0 kb/s)
-smb: \&#62; queue
-1049     3            hi-17534
-smb: \&#62; cancel 1049
-Error cancelling job 1049 : code 0
-smb: \&#62; cancel 1049
-Job 1049 cancelled
-smb: \&#62; queue
-smb: \&#62; exit</PRE
 ></P
+><TABLE
+CLASS="WARNING"
+WIDTH="100%"
+BORDER="0"
+><TR
+><TD
+WIDTH="25"
+ALIGN="CENTER"
+VALIGN="TOP"
+><IMG
+SRC="/docbook-dsssl/warning.gif"
+HSPACE="5"
+ALT="Warning"></TD
+><TH
+ALIGN="LEFT"
+VALIGN="CENTER"
+><B
+>Join the client to the domain immediately</B
+></TH
+></TR
+><TR
+><TD
+>&nbsp;</TD
+><TD
+ALIGN="LEFT"
+VALIGN="TOP"
 ><P
->The 'code 0' indicates that the job was removed.  The comment
-by the  smbclient is a bit misleading on this.
-You can observe the command output and then and look at the
-/tmp/tmp.print file to see what the results are.  You can quickly
-find out if the problem is with your printing system.  Often people
-have problems with their /etc/printcap file or permissions on
-various print queues.</P
+>	Manually creating a machine trust account using this method is the 
+	equivalent of creating a machine trust account on a Windows NT PDC using 
+	the "Server Manager".  From the time at which the account is created
+	to the time which the client joins the domain and changes the password,
+	your domain is vulnerable to an intruder joining your domain using a
+	a machine with the same NetBIOS name.  A PDC inherently trusts
+	members of the domain and will serve out a large degree of user 
+	information to such clients.  You have been warned!
+	</P
+></TD
+></TR
+></TABLE
+></DIV
 ></DIV
 ><DIV
 CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN2108"
+NAME="AEN1886"
 ></A
->14.4.3. What printers do I have?</H3
+>12.4.2. "On-the-Fly" Creation of Machine Trust Accounts</H3
 ><P
->You can use the 'testprns' program to check to see if the printer
-name you are using is recognized by Samba.  For example,  you can
-use:</P
+>The second (and recommended) way of creating machine trust accounts is
+simply to allow the Samba server to create them as needed when the client
+is joined to the domain. </P
 ><P
-><PRE
-CLASS="PROGRAMLISTING"
->    testprns printer /etc/printcap</PRE
-></P
+>Since each Samba machine trust account requires a corresponding
+Unix account, a method for automatically creating the
+Unix account is usually supplied; this requires configuration of the
+<A
+HREF="smb.conf.5.html#ADDUSERSCRIPT"
+TARGET="_top"
+>add user script</A
+> 
+option in <TT
+CLASS="FILENAME"
+>smb.conf</TT
+>.  This
+method is not required, however; corresponding Unix accounts may also
+be created manually.</P
 ><P
->Samba can get its printcap information from a file or from a program.
-You can try the following to see the format of the extracted
-information:</P
+>Below is an example for a RedHat 6.2 Linux system.</P
 ><P
 ><PRE
 CLASS="PROGRAMLISTING"
->    testprns -a printer /etc/printcap
-
-    testprns -a printer '|/bin/cat printcap'</PRE
+>[global]
+   # &#60;...remainder of parameters...&#62;
+   add user script = /usr/sbin/useradd -d /dev/null -g 100 -s /bin/false -M %u </PRE
 ></P
 ></DIV
 ><DIV
@@ -11429,2097 +9294,2043 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN2116"
+NAME="AEN1895"
 ></A
->14.4.4. Setting up printcap and print servers</H3
-><P
->You may need to set up some printcaps for your Samba system to use.
-It is strongly recommended that you use the facilities provided by
-the print spooler to set up queues and printcap information.</P
-><P
->Samba requires either a printcap or program to deliver printcap
-information.  This printcap information has the format:</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->  name|alias1|alias2...:option=value:...</PRE
-></P
-><P
->For almost all printing systems, the printer 'name' must be composed
-only of alphanumeric or underscore '_' characters.  Some systems also
-allow hyphens ('-') as well.  An alias is an alternative name for the
-printer,  and an alias with a space in it is used as a 'comment'
-about the printer.  The printcap format optionally uses a \ at the end of lines
-to extend the printcap to multiple lines.</P
-><P
->Here are some examples of printcap files:</P
+>12.4.3. Joining the Client to the Domain</H3
 ><P
+>The procedure for joining a client to the domain varies with the
+version of Windows.</P
 ><P
 ></P
-><OL
-TYPE="1"
-><LI
-><P
->pr              just printer name</P
-></LI
+><UL
 ><LI
 ><P
->pr|alias        printer name and alias</P
-></LI
-><LI
+><SPAN
+CLASS="emphasis"
+><I
+CLASS="EMPHASIS"
+>Windows 2000</I
+></SPAN
+></P
 ><P
->pr|My Printer   printer name, alias used as comment</P
-></LI
-><LI
+> When the user elects to join the client to a domain, Windows prompts for
+	an account and password that is privileged to join the domain.  A
+	Samba administrative account (i.e., a Samba account that has root
+	privileges on the Samba server) must be entered here; the
+	operation will fail if an ordinary user account is given. 
+	The password for this account should be
+	set to a different password than the associated
+	<TT
+CLASS="FILENAME"
+>/etc/passwd</TT
+> entry, for security
+	reasons. </P
 ><P
->pr:sh:\        Same as pr:sh:cm= testing
-  :cm= \ 
-  testing</P
+>The session key of the Samba administrative account acts as an
+	encryption key for setting the password of the machine trust
+	account. The machine trust account will be created on-the-fly, or
+	updated if it already exists.</P
 ></LI
 ><LI
 ><P
->pr:sh           Same as pr:sh:cm= testing
-  :cm= testing</P
-></LI
-></OL
-></P
-><P
->Samba reads the printcap information when first started.  If you make
-changes in the printcap information, then you must do the following:</P
-><P
+><SPAN
+CLASS="emphasis"
+><I
+CLASS="EMPHASIS"
+>Windows NT</I
+></SPAN
 ></P
-><OL
-TYPE="1"
-><LI
-><P
->make sure that the print spooler is aware of these changes.
-The LPRng system uses the 'lpc reread' command to do this.</P
-></LI
-><LI
 ><P
->make sure that the spool queues, etc., exist and have the
-correct permissions.  The LPRng system uses the 'checkpc -f'
-command to do this.</P
-></LI
-><LI
+> If the machine trust account was created manually, on the
+	Identification Changes menu enter the domain name, but do not
+	check the box "Create a Computer Account in the Domain."  In this case,
+	the existing machine trust account is used to join the machine to
+	the domain.</P
 ><P
->You now should send a SIGHUP signal to the smbd server to have
-it reread the printcap information.</P
+> If the machine trust account is to be created
+	on-the-fly, on the Identification Changes menu enter the domain
+	name, and check the box "Create a Computer Account in the Domain."  In
+	this case, joining the domain proceeds as above for Windows 2000
+	(i.e., you must supply a Samba administrative account when
+	prompted).</P
 ></LI
-></OL
+></UL
+></DIV
 ></DIV
 ><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN2144"
-></A
->14.4.5. Job sent, no output</H3
-><P
->This is the most frustrating part of printing.  You may have sent the
-job,  verified that the job was forwarded,  set up a wrapper around
-the command to send the file,  but there was no output from the printer.</P
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
+><A
+NAME="AEN1910"
+></A
+>12.5. Common Problems and Errors</H2
 ><P
->First,  check to make sure that the job REALLY is getting to the
-right print queue.  If you are using a BSD or LPRng print spooler,
-you can temporarily stop the printing of jobs.  Jobs can still be
-submitted, but they will not be printed.  Use:</P
+></P
 ><P
-><PRE
-CLASS="PROGRAMLISTING"
->  lpc -Pprinter stop</PRE
 ></P
+><UL
+><LI
 ><P
->Now submit a print job and then use 'lpq -Pprinter' to see if the
-job is in the print queue.  If it is not in the print queue then
-you will have to find out why it is not being accepted for printing.</P
+>	<SPAN
+CLASS="emphasis"
+><I
+CLASS="EMPHASIS"
+>I cannot include a '$' in a machine name.</I
+></SPAN
+>
+	</P
 ><P
->Next, you may want to check to see what the format of the job really
-was.  With the assistance of the system administrator you can view
-the submitted jobs files.  You may be surprised to find that these
-are not in what you would expect to call a printable format.
-You can use the UNIX 'file' utitily to determine what the job
-format actually is:</P
+>	A 'machine name' in (typically) <TT
+CLASS="FILENAME"
+>/etc/passwd</TT
+> 	
+	of the machine name with a '$' appended. FreeBSD (and other BSD 
+	systems?) won't create a user with a '$' in their name.
+	</P
 ><P
-><PRE
-CLASS="PROGRAMLISTING"
->    cd /var/spool/lpd/printer   # spool directory of print jobs
-    ls                          # find job files
-    file dfA001myhost</PRE
-></P
+>	The problem is only in the program used to make the entry, once 
+	made, it works perfectly. So create a user without the '$' and 
+	use <B
+CLASS="COMMAND"
+>vipw</B
+> to edit the entry, adding the '$'. Or create 
+	the whole entry with vipw if you like, make sure you use a 
+	unique User ID !
+	</P
+></LI
+><LI
 ><P
->You should make sure that your printer supports this format OR that
-your system administrator has installed a 'print filter' that will
-convert the file to a format appropriate for your printer.</P
-></DIV
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN2155"
-></A
->14.4.6. Job sent, strange output</H3
+>	<SPAN
+CLASS="emphasis"
+><I
+CLASS="EMPHASIS"
+>I get told "You already have a connection to the Domain...." 
+	or "Cannot join domain, the credentials supplied conflict with an 
+	existing set.." when creating a machine trust account.</I
+></SPAN
+>
+	</P
 ><P
->Once you have the job printing, you can then start worrying about
-making it print nicely.</P
+>	This happens if you try to create a machine trust account from the 
+	machine itself and already have a connection (e.g. mapped drive) 
+	to a share (or IPC$) on the Samba PDC.  The following command
+	will remove all network drive connections:
+	</P
 ><P
->The most common problem is extra pages of output: banner pages
-OR blank pages at the end.</P
+>	<TT
+CLASS="PROMPT"
+>C:\WINNT\&#62;</TT
+> <B
+CLASS="COMMAND"
+>net use * /d</B
+>
+	</P
 ><P
->If you are getting banner pages,  check and make sure that the
-printcap option or printer option is configured for no banners.
-If you have a printcap,  this is the :sh (suppress header or banner
-page) option.  You should have the following in your printer.</P
+>	Further, if the machine is a already a 'member of a workgroup' that 
+	is the same name as the domain you are joining (bad idea) you will 
+	get this message.  Change the workgroup name to something else, it 
+	does not matter what, reboot, and try again.
+	</P
+></LI
+><LI
 ><P
-><PRE
-CLASS="PROGRAMLISTING"
->   printer: ... :sh</PRE
-></P
+>	<SPAN
+CLASS="emphasis"
+><I
+CLASS="EMPHASIS"
+>The system can not log you on (C000019B)....</I
+></SPAN
+>
+	</P
 ><P
->If you have this option and are still getting banner pages,  there
-is a strong chance that your printer is generating them for you
-automatically.  You should make sure that banner printing is disabled
-for the printer.  This usually requires using the printer setup software
-or procedures supplied by the printer manufacturer.</P
+>I joined the domain successfully but after upgrading 
+	to a newer version of the Samba code I get the message, "The system 
+	can not log you on (C000019B), Please try a gain or consult your 
+	system administrator" when attempting to logon.
+	</P
 ><P
->If you get an extra page of output,  this could be due to problems
-with your job format,  or if you are generating PostScript jobs,
-incorrect setting on your printer driver on the MicroSoft client.
-For example, under Win95 there is a option:</P
+>	This occurs when the domain SID stored in 
+	<TT
+CLASS="FILENAME"
+>private/WORKGROUP.SID</TT
+> is 
+	changed.  For example, you remove the file and <B
+CLASS="COMMAND"
+>smbd</B
+> automatically 
+	creates a new one.  Or you are swapping back and forth between 
+	versions 2.0.7, TNG and the HEAD branch code (not recommended).  The 
+	only way to correct the problem is to restore the original domain 
+	SID or remove the domain client from the domain and rejoin.
+	</P
+></LI
+><LI
 ><P
-><PRE
-CLASS="PROGRAMLISTING"
->  Printers|Printer Name|(Right Click)Properties|Postscript|Advanced|</PRE
-></P
+>	<SPAN
+CLASS="emphasis"
+><I
+CLASS="EMPHASIS"
+>The machine trust account for this computer either does not 
+	exist or is not accessible.</I
+></SPAN
+>
+	</P
 ><P
->that allows you to choose if a Ctrl-D is appended to all jobs.
-This is a very bad thing to do, as most spooling systems will
-automatically add a ^D to the end of the job if it is detected as
-PostScript.  The multiple ^D may cause an additional page of output.</P
-></DIV
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN2167"
-></A
->14.4.7. Raw PostScript printed</H3
+>	When I try to join the domain I get the message "The machine account 
+	for this computer either does not exist or is not accessible". What's 
+	wrong?
+	</P
 ><P
->This is a problem that is usually caused by either the print spooling
-system putting information at the start of the print job that makes
-the printer think the job is a text file, or your printer simply
-does not support PostScript.  You may need to enable 'Automatic
-Format Detection' on your printer.</P
-></DIV
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN2170"
-></A
->14.4.8. Advanced Printing</H3
+>	This problem is caused by the PDC not having a suitable machine trust account. 
+	If you are using the <TT
+CLASS="PARAMETER"
+><I
+>add user script</I
+></TT
+> method to create 
+	accounts then this would indicate that it has not worked. Ensure the domain 
+	admin user system is working.
+	</P
 ><P
->Note that you can do some pretty magic things by using your
-imagination with the "print command" option and some shell scripts.
-Doing print accounting is easy by passing the %U option to a print
-command shell script. You could even make the print command detect
-the type of output and its size and send it to an appropriate
-printer.</P
-></DIV
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN2173"
-></A
->14.4.9. Real debugging</H3
+>	Alternatively if you are creating account entries manually then they 
+	have not been created correctly. Make sure that you have the entry 
+	correct for the machine trust account in smbpasswd file on the Samba PDC. 
+	If you added the account using an editor rather than using the smbpasswd 
+	utility, make sure that the account name is the machine NetBIOS name 
+	with a '$' appended to it ( i.e. computer_name$ ). There must be an entry 
+	in both /etc/passwd and the smbpasswd file. Some people have reported 
+	that inconsistent subnet masks between the Samba server and the NT 
+	client have caused this problem.   Make sure that these are consistent 
+	for both client and server.
+	</P
+></LI
+><LI
 ><P
->If the above debug tips don't help, then maybe you need to bring in
-the bug guns, system tracing. See Tracing.txt in this directory.</P
-></DIV
-></DIV
-></DIV
-><DIV
-CLASS="CHAPTER"
-><HR><H1
-><A
-NAME="SECURITYLEVELS"
-></A
->Chapter 15. Security levels</H1
-><DIV
-CLASS="SECT1"
-><H2
-CLASS="SECT1"
-><A
-NAME="AEN2186"
-></A
->15.1. Introduction</H2
+>	<SPAN
+CLASS="emphasis"
+><I
+CLASS="EMPHASIS"
+>When I attempt to login to a Samba Domain from a NT4/W2K workstation,
+	I get a message about my account being disabled.</I
+></SPAN
+>
+	</P
 ><P
->Samba supports the following options to the global smb.conf parameter</P
+>	This problem is caused by a PAM related bug in Samba 2.2.0.  This bug is 
+	fixed in 2.2.1.  Other symptoms could be unaccessible shares on 
+	NT/W2K member servers in the domain or the following error in your smbd.log:
+	passdb/pampass.c:pam_account(268) PAM: UNKNOWN ERROR for User: %user%
+	</P
+><P
+>	At first be ensure to enable the useraccounts with <B
+CLASS="COMMAND"
+>smbpasswd -e 
+	%user%</B
+>, this is normally done, when you create an account.
+	</P
 ><P
-><PRE
-CLASS="PROGRAMLISTING"
->[global]
-<A
-HREF="smb.conf.5.html#SECURITY"
-TARGET="_top"
-><TT
+>	In order to work around this problem in 2.2.0, configure the 
+	<TT
 CLASS="PARAMETER"
 ><I
->security</I
+>account</I
 ></TT
-></A
-> = [share|user(default)|server|domain|ads]</PRE
-></P
+> control flag in 
+	<TT
+CLASS="FILENAME"
+>/etc/pam.d/samba</TT
+> file as follows:
+	</P
 ><P
->Please refer to the smb.conf man page for usage information and to the document
-<A
-HREF="DOMAIN_MEMBER.html"
-TARGET="_top"
->DOMAIN_MEMBER.html</A
-> for further background details
-on domain mode security.  The Windows 2000 Kerberos domain security model
-(security = ads) is described in the <A
-HREF="ADS-HOWTO.html"
-TARGET="_top"
->ADS-HOWTO.html</A
->.</P
+><PRE
+CLASS="PROGRAMLISTING"
+>	account required        pam_permit.so
+	</PRE
+></P
 ><P
->Of the above, "security = server" means that Samba reports to clients that
-it is running in "user mode" but actually passes off all authentication
-requests to another "user mode" server. This requires an additional
-parameter "password server =" that points to the real authentication server.
-That real authentication server can be another Samba server or can be a
-Windows NT server, the later natively capable of encrypted password support.</P
+>	If you want to remain backward compatibility to samba 2.0.x use
+	<TT
+CLASS="FILENAME"
+>pam_permit.so</TT
+>, it's also possible to use 
+	<TT
+CLASS="FILENAME"
+>pam_pwdb.so</TT
+>. There are some bugs if you try to 
+	use <TT
+CLASS="FILENAME"
+>pam_unix.so</TT
+>, if you need this, be ensure to use
+	the most recent version of this file.
+	</P
+></LI
+></UL
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN2197"
+NAME="AEN1958"
 ></A
->15.2. More complete description of security levels</H2
+>12.6. System Policies and Profiles</H2
 ><P
->A SMB server tells the client at startup what "security level" it is
-running. There are two options "share level" and "user level". Which
-of these two the client receives affects the way the client then tries
-to authenticate itself. It does not directly affect (to any great
-extent) the way the Samba server does security. I know this is
-strange, but it fits in with the client/server approach of SMB. In SMB
-everything is initiated and controlled by the client, and the server
-can only tell the client what is available and whether an action is
-allowed. </P
+>Much of the information necessary to implement System Policies and
+Roving User Profiles in a Samba domain is the same as that for 
+implementing these same items in a Windows NT 4.0 domain. 
+You should read the white paper <A
+HREF="http://www.microsoft.com/ntserver/management/deployment/planguide/prof_policies.asp"
+TARGET="_top"
+>Implementing
+Profiles and Policies in Windows NT 4.0</A
+> available from Microsoft.</P
 ><P
->I'll describe user level security first, as its simpler. In user level
-security the client will send a "session setup" command directly after
-the protocol negotiation. This contains a username and password. The
-server can either accept or reject that username/password
-combination. Note that at this stage the server has no idea what
-share the client will eventually try to connect to, so it can't base
-the "accept/reject" on anything other than:</P
+>Here are some additional details:</P
 ><P
 ></P
-><OL
-TYPE="1"
-><LI
-><P
->the username/password</P
-></LI
+><UL
 ><LI
 ><P
->the machine that the client is coming from</P
-></LI
-></OL
-><P
->If the server accepts the username/password then the client expects to
-be able to mount any share (using a "tree connection") without
-specifying a password. It expects that all access rights will be as
-the username/password specified in the "session setup". </P
+>	<SPAN
+CLASS="emphasis"
+><I
+CLASS="EMPHASIS"
+>What about Windows NT Policy Editor?</I
+></SPAN
+>
+	</P
 ><P
->It is also possible for a client to send multiple "session setup"
-requests. When the server responds it gives the client a "uid" to use
-as an authentication tag for that username/password. The client can
-maintain multiple authentication contexts in this way (WinDD is an
-example of an application that does this)</P
+>	To create or edit <TT
+CLASS="FILENAME"
+>ntconfig.pol</TT
+> you must use 
+	the NT Server Policy Editor, <B
+CLASS="COMMAND"
+>poledit.exe</B
+>	which 
+	is included with NT Server but <SPAN
+CLASS="emphasis"
+><I
+CLASS="EMPHASIS"
+>not NT Workstation</I
+></SPAN
+>. 
+	There is a Policy Editor on a NTws 
+	but it is not suitable for creating <SPAN
+CLASS="emphasis"
+><I
+CLASS="EMPHASIS"
+>Domain Policies</I
+></SPAN
+>. 
+	Further, although the Windows 95 
+	Policy Editor can be installed on an NT Workstation/Server, it will not
+	work with NT policies because the registry key that are set by the policy templates. 
+	However, the files from the NT Server will run happily enough on an NTws. 	
+	You need <TT
+CLASS="FILENAME"
+>poledit.exe, common.adm</TT
+> and <TT
+CLASS="FILENAME"
+>winnt.adm</TT
+>. It is convenient
+	to put the two *.adm files in <TT
+CLASS="FILENAME"
+>c:\winnt\inf</TT
+> which is where
+	the binary will look for them unless told otherwise. Note also that that 
+	directory is 'hidden'.
+	</P
 ><P
->Ok, now for share level security. In share level security the client
-authenticates itself separately for each share. It will send a
-password along with each "tree connection" (share mount). It does not
-explicitly send a username with this operation. The client is
-expecting a password to be associated with each share, independent of
-the user. This means that samba has to work out what username the
-client probably wants to use. It is never explicitly sent the
-username. Some commercial SMB servers such as NT actually associate
-passwords directly with shares in share level security, but samba
-always uses the unix authentication scheme where it is a
-username/password that is authenticated, not a "share/password".</P
+>	The Windows NT policy editor is also included with the Service Pack 3 (and 
+	later) for Windows NT 4.0. Extract the files using <B
+CLASS="COMMAND"
+>servicepackname /x</B
+>, 
+	i.e. that's <B
+CLASS="COMMAND"
+>Nt4sp6ai.exe /x</B
+> for service pack 6a.  The policy editor, 
+	<B
+CLASS="COMMAND"
+>poledit.exe</B
+> and the associated template files (*.adm) should
+	be extracted as well.  It is also possible to downloaded the policy template 
+	files for Office97 and get a copy of the policy editor.  Another possible 
+	location is with the Zero Administration Kit available for download from Microsoft.
+	</P
+></LI
+><LI
 ><P
->Many clients send a "session setup" even if the server is in share
-level security. They normally send a valid username but no
-password. Samba records this username in a list of "possible
-usernames". When the client then does a "tree connection" it also adds
-to this list the name of the share they try to connect to (useful for
-home directories) and any users listed in the "user =" smb.conf
-line. The password is then checked in turn against these "possible
-usernames". If a match is found then the client is authenticated as
-that user.</P
+>	<SPAN
+CLASS="emphasis"
+><I
+CLASS="EMPHASIS"
+>Can Win95 do Policies?</I
+></SPAN
+>
+	</P
 ><P
->Finally "server level" security. In server level security the samba
-server reports to the client that it is in user level security. The
-client then does a "session setup" as described earlier. The samba
-server takes the username/password that the client sends and attempts
-to login to the "password server" by sending exactly the same
-username/password that it got from the client. If that server is in
-user level security and accepts the password then samba accepts the
-clients connection. This allows the samba server to use another SMB
-server as the "password server". </P
+>	Install the group policy handler for Win9x to pick up group 
+	policies.   Look on the Win98 CD in <TT
+CLASS="FILENAME"
+>\tools\reskit\netadmin\poledit</TT
+>. 
+	Install group policies on a Win9x client by double-clicking 
+	<TT
+CLASS="FILENAME"
+>grouppol.inf</TT
+>. Log off and on again a couple of 
+	times and see if Win98 picks up group policies.  Unfortunately this needs 
+	to be done on every Win9x machine that uses group policies....
+	</P
 ><P
->You should also note that at the very start of all this, where the
-server tells the client what security level it is in, it also tells
-the client if it supports encryption. If it does then it supplies the
-client with a random "cryptkey". The client will then send all
-passwords in encrypted form. You have to compile samba with encryption
-enabled to support this feature, and you have to maintain a separate
-smbpasswd file with SMB style encrypted passwords. It is
-cryptographically impossible to translate from unix style encryption
-to SMB style encryption, although there are some fairly simple management
-schemes by which the two could be kept in sync.</P
-></DIV
-></DIV
-><DIV
-CLASS="CHAPTER"
-><HR><H1
-><A
-NAME="WINBIND"
-></A
->Chapter 16. Unified Logons between Windows NT and UNIX using Winbind</H1
-><DIV
-CLASS="SECT1"
-><H2
-CLASS="SECT1"
-><A
-NAME="AEN2249"
-></A
->16.1. Abstract</H2
+>	If group policies don't work one reports suggests getting the updated 
+	(read: working) grouppol.dll for Windows 9x. The group list is grabbed 
+	from /etc/group.
+	</P
+></LI
+><LI
 ><P
->Integration of UNIX and Microsoft Windows NT through 
-	a unified logon has been considered a "holy grail" in heterogeneous 
-	computing environments for a long time. We present 
-	<SPAN
+>	<SPAN
 CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
->winbind</I
+>How do I get 'User Manager' and 'Server Manager'</I
 ></SPAN
->, a component of the Samba suite 
-	of programs as a solution to the unified logon problem. Winbind 
-	uses a UNIX implementation 
-	of Microsoft RPC calls, Pluggable Authentication Modules, and the Name 
-	Service Switch to allow Windows NT domain users to appear and operate 
-	as UNIX users on a UNIX machine. This paper describes the winbind 
-	system, explaining the functionality it provides, how it is configured, 
-	and how it works internally.</P
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN2253"
-></A
->16.2. Introduction</H2
-><P
->It is well known that UNIX and Microsoft Windows NT have 
-	different models for representing user and group information and 
-	use different technologies for implementing them. This fact has 
-	made it difficult to integrate the two systems in a satisfactory 
-	manner.</P
+>
+	</P
 ><P
->One common solution in use today has been to create 
-	identically named user accounts on both the UNIX and Windows systems 
-	and use the Samba suite of programs to provide file and print services 
-	between the two. This solution is far from perfect however, as 
-	adding and deleting users on both sets of machines becomes a chore 
-	and two sets of passwords are required both of which
-	can lead to synchronization problems between the UNIX and Windows 
-	systems and confusion for users.</P
+>	Since I don't need to buy an NT Server CD now, how do I get 
+	the 'User Manager for Domains', the 'Server Manager'?
+	</P
 ><P
->We divide the unified logon problem for UNIX machines into 
-	three smaller problems:</P
+>	Microsoft distributes a version of these tools called nexus for 
+	installation on Windows 95 systems.  The tools set includes
+	</P
 ><P
 ></P
 ><UL
 ><LI
 ><P
->Obtaining Windows NT user and group information
-		</P
+>Server Manager</P
 ></LI
 ><LI
 ><P
->Authenticating Windows NT users
-		</P
+>User Manager for Domains</P
 ></LI
 ><LI
 ><P
->Password changing for Windows NT users
-		</P
+>Event Viewer</P
 ></LI
 ></UL
 ><P
->Ideally, a prospective solution to the unified logon problem 
-	would satisfy all the above components without duplication of 
-	information on the UNIX machines and without creating additional 
-	tasks for the system administrator when maintaining users and 
-	groups on either system. The winbind system provides a simple 
-	and elegant solution to all three components of the unified logon 
-	problem.</P
+>	Click here to download the archived file <A
+HREF="ftp://ftp.microsoft.com/Softlib/MSLFILES/NEXUS.EXE"
+TARGET="_top"
+>ftp://ftp.microsoft.com/Softlib/MSLFILES/NEXUS.EXE</A
+>
+	</P
+><P
+>	The Windows NT 4.0 version of the 'User Manager for 
+	Domains' and 'Server Manager' are available from Microsoft via ftp 
+	from <A
+HREF="ftp://ftp.microsoft.com/Softlib/MSLFILES/SRVTOOLS.EXE"
+TARGET="_top"
+>ftp://ftp.microsoft.com/Softlib/MSLFILES/SRVTOOLS.EXE</A
+>
+	</P
+></LI
+></UL
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN2266"
+NAME="AEN2002"
 ></A
->16.3. What Winbind Provides</H2
-><P
->Winbind unifies UNIX and Windows NT account management by 
-	allowing a UNIX box to become a full member of a NT domain. Once 
-	this is done the UNIX box will see NT users and groups as if 
-	they were native UNIX users and groups, allowing the NT domain 
-	to be used in much the same manner that NIS+ is used within 
-	UNIX-only environments.</P
+>12.7. What other help can I get?</H2
 ><P
->The end result is that whenever any 
-	program on the UNIX machine asks the operating system to lookup 
-	a user or group name, the query will be resolved by asking the 
-	NT domain controller for the specified domain to do the lookup.
-	Because Winbind hooks into the operating system at a low level 
-	(via the NSS name resolution modules in the C library) this 
-	redirection to the NT domain controller is completely 
-	transparent.</P
+>There are many sources of information available in the form 
+of mailing lists, RFC's and documentation.  The docs that come 
+with the samba distribution contain very good explanations of 
+general SMB topics such as browsing.</P
 ><P
->Users on the UNIX machine can then use NT user and group 
-	names as they would use "native" UNIX names. They can chown files 
-	so that they are owned by NT domain users or even login to the 
-	UNIX machine and run a UNIX X-Window session as a domain user.</P
+></P
+><UL
+><LI
 ><P
->The only obvious indication that Winbind is being used is 
-	that user and group names take the form DOMAIN\user and 
-	DOMAIN\group. This is necessary as it allows Winbind to determine 
-	that redirection to a domain controller is wanted for a particular 
-	lookup and which trusted domain is being referenced.</P
+>	<SPAN
+CLASS="emphasis"
+><I
+CLASS="EMPHASIS"
+>What are some diagnostics tools I can use to debug the domain logon 
+	process and where can I	find them?</I
+></SPAN
+>
+	</P
 ><P
->Additionally, Winbind provides an authentication service 
-	that hooks into the Pluggable Authentication Modules (PAM) system 
-	to provide authentication via a NT domain to any PAM enabled 
-	applications. This capability solves the problem of synchronizing 
-	passwords between systems since all passwords are stored in a single 
-	location (on the domain controller).</P
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN2273"
-></A
->16.3.1. Target Uses</H3
+>	One of the best diagnostic tools for debugging problems is Samba itself.  
+	You can use the -d option for both smbd and nmbd to specify what 
+	'debug level' at which to run.  See the man pages on smbd, nmbd  and 
+	smb.conf for more information on debugging options.  The debug 
+	level can range from 1 (the default) to 10 (100 for debugging passwords).
+	</P
 ><P
->Winbind is targeted at organizations that have an 
-		existing NT based domain infrastructure into which they wish 
-		to put UNIX workstations or servers. Winbind will allow these 
-		organizations to deploy UNIX workstations without having to 
-		maintain a separate account infrastructure. This greatly 
-		simplifies the administrative overhead of deploying UNIX 
-		workstations into a NT based organization.</P
+>	Another helpful method of debugging is to compile samba using the 
+	<B
+CLASS="COMMAND"
+>gcc -g </B
+> flag.   This will include debug 
+	information in the binaries and allow you to attach gdb to the 
+	running smbd / nmbd process.  In order to attach gdb to an smbd 
+	process for an NT workstation, first get the workstation to make the 
+	connection. Pressing ctrl-alt-delete and going down to the domain box 
+	is sufficient (at least, on the first time you join the domain) to 
+	generate a 'LsaEnumTrustedDomains'. Thereafter, the workstation 
+	maintains an open connection, and therefore there will be an smbd 
+	process running (assuming that you haven't set a really short smbd 
+	idle timeout)  So, in between pressing ctrl alt delete, and actually 
+	typing in your password, you can gdb attach and continue.
+	</P
 ><P
->Another interesting way in which we expect Winbind to 
-		be used is as a central part of UNIX based appliances. Appliances 
-		that provide file and print services to Microsoft based networks 
-		will be able to use Winbind to provide seamless integration of 
-		the appliance into the domain.</P
-></DIV
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN2277"
-></A
->16.4. How Winbind Works</H2
+>	Some useful samba commands worth investigating:
+	</P
 ><P
->The winbind system is designed around a client/server 
-	architecture. A long running <B
-CLASS="COMMAND"
->winbindd</B
-> daemon 
-	listens on a UNIX domain socket waiting for requests
-	to arrive. These requests are generated by the NSS and PAM 
-	clients and processed sequentially.</P
+></P
+><UL
+><LI
 ><P
->The technologies used to implement winbind are described 
-	in detail below.</P
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN2282"
-></A
->16.4.1. Microsoft Remote Procedure Calls</H3
+>testparam | more</P
+></LI
+><LI
 ><P
->Over the last two years, efforts have been underway 
-		by various Samba Team members to decode various aspects of 
-		the Microsoft Remote Procedure Call (MSRPC) system. This 
-		system is used for most network related operations between 
-		Windows NT machines including remote management, user authentication
-		and print spooling. Although initially this work was done 
-		to aid the implementation of Primary Domain Controller (PDC) 
-		functionality in Samba, it has also yielded a body of code which 
-		can be used for other purposes.</P
+>smbclient -L //{netbios name of server}</P
+></LI
+></UL
 ><P
->Winbind uses various MSRPC calls to enumerate domain users 
-		and groups and to obtain detailed information about individual 
-		users or groups. Other MSRPC calls can be used to authenticate 
-		NT domain users and to change user passwords. By directly querying 
-		a Windows PDC for user and group information, winbind maps the 
-		NT account information onto UNIX user and group names.</P
-></DIV
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN2286"
-></A
->16.4.2. Name Service Switch</H3
+>	An SMB enabled version of tcpdump is available from 
+	<A
+HREF="http://www.tcpdump.org/"
+TARGET="_top"
+>http://www.tcpdup.org/</A
+>.
+	Ethereal, another good packet sniffer for Unix and Win32
+	hosts, can be downloaded from <A
+HREF="http://www.ethereal.com/"
+TARGET="_top"
+>http://www.ethereal.com</A
+>.
+	</P
 ><P
->The Name Service Switch, or NSS, is a feature that is 
-		present in many UNIX operating systems. It allows system 
-		information such as hostnames, mail aliases and user information 
-		to be resolved from different sources. For example, a standalone 
-		UNIX workstation may resolve system information from a series of 
-		flat files stored on the local filesystem. A networked workstation 
-		may first attempt to resolve system information from local files, 
-		and then consult a NIS database for user information or a DNS server 
-		for hostname information.</P
+>	For tracing things on the Microsoft Windows NT, Network Monitor 
+	(aka. netmon) is available on the Microsoft Developer Network CD's, 
+	the Windows NT Server install CD and the SMS CD's.  The version of 
+	netmon that ships with SMS allows for dumping packets between any two 
+	computers (i.e. placing the network interface in promiscuous mode).  
+	The version on the NT Server install CD will only allow monitoring 
+	of network traffic directed to the local NT box and broadcasts on the 
+	local subnet.  Be aware that Ethereal can read and write netmon 
+	formatted files.
+	</P
+></LI
+><LI
 ><P
->The NSS application programming interface allows winbind 
-		to present itself as a source of system information when 
-		resolving UNIX usernames and groups.  Winbind uses this interface, 
-		and information obtained from a Windows NT server using MSRPC 
-		calls to provide a new source of account enumeration.  Using standard 
-		UNIX library calls, one can enumerate the users and groups on
-		a UNIX machine running winbind and see all users and groups in 
-		a NT domain plus any trusted domain as though they were local 
-		users and groups.</P
+>	<SPAN
+CLASS="emphasis"
+><I
+CLASS="EMPHASIS"
+>How do I install 'Network Monitor' on an NT Workstation 
+	or a Windows 9x box?</I
+></SPAN
+>
+	</P
 ><P
->The primary control file for NSS is 
-		<TT
-CLASS="FILENAME"
->/etc/nsswitch.conf</TT
->. 
-		When a UNIX application makes a request to do a lookup 
-		the C library looks in <TT
-CLASS="FILENAME"
->/etc/nsswitch.conf</TT
-> 
-		for a line which matches the service type being requested, for 
-		example the "passwd" service type is used when user or group names 
-		are looked up. This	config line species which implementations 
-		of that service should be tried and in what order. If the passwd 
-		config line is:</P
+>	Installing netmon on an NT workstation requires a couple 
+	of steps.  The following are for installing Netmon V4.00.349, which comes 
+	with Microsoft Windows NT Server 4.0, on Microsoft Windows NT 
+	Workstation 4.0.  The process should be similar for other version of 
+	Windows NT / Netmon.  You will need both the Microsoft Windows 
+	NT Server 4.0 Install CD and the Workstation 4.0 Install CD.
+	</P
 ><P
-><B
-CLASS="COMMAND"
->passwd: files example</B
-></P
+>	Initially you will need to install 'Network Monitor Tools and Agent' 
+	on the NT Server.  To do this 
+	</P
 ><P
->then the C library will first load a module called 
-		<TT
-CLASS="FILENAME"
->/lib/libnss_files.so</TT
-> followed by
-		the module <TT
-CLASS="FILENAME"
->/lib/libnss_example.so</TT
->. The 
-		C library will dynamically load each of these modules in turn 
-		and call resolver functions within the modules to try to resolve 
-		the request. Once the request is resolved the C library returns the
-		result to the application.</P
+></P
+><UL
+><LI
 ><P
->This NSS interface provides a very easy way for Winbind 
-		to hook into the operating system. All that needs to be done 
-		is to put <TT
-CLASS="FILENAME"
->libnss_winbind.so</TT
-> in <TT
-CLASS="FILENAME"
->/lib/</TT
-> 
-		then add "winbind" into <TT
-CLASS="FILENAME"
->/etc/nsswitch.conf</TT
-> at 
-		the appropriate place. The C library will then call Winbind to 
-		resolve user and group names.</P
-></DIV
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN2302"
-></A
->16.4.3. Pluggable Authentication Modules</H3
+>Goto Start - Settings - Control Panel - 
+		Network - Services - Add </P
+></LI
+><LI
 ><P
->Pluggable Authentication Modules, also known as PAM, 
-		is a system for abstracting authentication and authorization 
-		technologies. With a PAM module it is possible to specify different 
-		authentication methods for different system applications without 
-		having to recompile these applications. PAM is also useful
-		for implementing a particular policy for authorization. For example, 
-		a system administrator may only allow console logins from users 
-		stored in the local password file but only allow users resolved from 
-		a NIS database to log in over the network.</P
+>Select the 'Network Monitor Tools and Agent' and 
+		click on 'OK'.</P
+></LI
+><LI
 ><P
->Winbind uses the authentication management and password 
-		management PAM interface to integrate Windows NT users into a 
-		UNIX system. This allows Windows NT users to log in to a UNIX 
-		machine and be authenticated against a suitable Primary Domain 
-		Controller. These users can also change their passwords and have 
-		this change take effect directly on the Primary Domain Controller.
+>Click 'OK' on the Network Control Panel.
 		</P
+></LI
+><LI
 ><P
->PAM is configured by providing control files in the directory 
-		<TT
+>Insert the Windows NT Server 4.0 install CD 
+		when prompted.</P
+></LI
+></UL
+><P
+>	At this point the Netmon files should exist in 
+	<TT
 CLASS="FILENAME"
->/etc/pam.d/</TT
-> for each of the services that 
-		require authentication. When an authentication request is made 
-		by an application the PAM code in the C library looks up this
-		control file to determine what modules to load to do the 
-		authentication check and in what order. This interface makes adding 
-		a new authentication service for Winbind very easy, all that needs 
-		to be done is that the <TT
+>%SYSTEMROOT%\System32\netmon\*.*</TT
+>.    
+	Two subdirectories exist as well, <TT
 CLASS="FILENAME"
->pam_winbind.so</TT
-> module 
-		is copied to <TT
+>parsers\</TT
+> 
+	which contains the necessary DLL's for parsing the netmon packet 
+	dump, and <TT
 CLASS="FILENAME"
->/lib/security/</TT
-> and the PAM 
-		control files for relevant services are updated to allow 
-		authentication via winbind. See the PAM documentation
-		for more details.</P
-></DIV
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN2310"
-></A
->16.4.4. User and Group ID Allocation</H3
+>captures\</TT
+>.
+	</P
 ><P
->When a user or group is created under Windows NT 
-		is it allocated a numerical relative identifier (RID). This is 
-		slightly different to UNIX which has a range of numbers that are 
-		used to identify users, and the same range in which to identify 
-		groups. It is winbind's job to convert RIDs to UNIX id numbers and
-		vice versa.  When winbind is configured it is given part of the UNIX 
-		user id space and a part of the UNIX group id space in which to 
-		store Windows NT users and groups. If a Windows NT user is 
-		resolved for the first time, it is allocated the next UNIX id from 
-		the range. The same process applies for Windows NT groups. Over 
-		time, winbind will have mapped all Windows NT users and groups
-		to UNIX user ids and group ids.</P
+>	In order to install the Netmon tools on an NT Workstation, you will 
+	first need to install the 'Network  Monitor Agent' from the Workstation 
+	install CD.
+	</P
 ><P
->The results of this mapping are stored persistently in 
-		an ID mapping database held in a tdb database). This ensures that 
-		RIDs are mapped to UNIX IDs in a consistent way.</P
-></DIV
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN2314"
-></A
->16.4.5. Result Caching</H3
+></P
+><UL
+><LI
 ><P
->An active system can generate a lot of user and group 
-		name lookups. To reduce the network cost of these lookups winbind 
-		uses a caching scheme based on the SAM sequence number supplied 
-		by NT domain controllers.  User or group information returned 
-		by a PDC is cached by winbind along with a sequence number also 
-		returned by the PDC. This sequence number is incremented by 
-		Windows NT whenever any user or group information is modified. If 
-		a cached entry has expired, the sequence number is requested from 
-		the PDC and compared against the sequence number of the cached entry. 
-		If the sequence numbers do not match, then the cached information 
-		is discarded and up to date information is requested directly 
-		from the PDC.</P
-></DIV
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN2317"
-></A
->16.5. Installation and Configuration</H2
+>Goto Start - Settings - Control Panel - 
+		Network - Services - Add</P
+></LI
+><LI
 ><P
->Many thanks to John Trostel <A
-HREF="mailto:jtrostel@snapserver.com"
-TARGET="_top"
->jtrostel@snapserver.com</A
->
-for providing the HOWTO for this section.</P
+>Select the 'Network Monitor Agent' and click 
+		on 'OK'.</P
+></LI
+><LI
 ><P
->This HOWTO describes how to get winbind services up and running 
-to control access and authenticate users on your Linux box using 
-the winbind services which come with SAMBA 2.2.2.</P
+>Click 'OK' on the Network Control Panel.
+		</P
+></LI
+><LI
 ><P
->There is also some Solaris specific information in 
-<TT
-CLASS="FILENAME"
->docs/textdocs/Solaris-Winbind-HOWTO.txt</TT
->.
-Future revisions of this document will incorporate that
-information.</P
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN2324"
-></A
->16.5.1. Introduction</H3
+>Insert the Windows NT Workstation 4.0 install 
+		CD when prompted.</P
+></LI
+></UL
 ><P
->This HOWTO describes the procedures used to get winbind up and 
-running on my RedHat 7.1 system.  Winbind is capable of providing access 
-and authentication control for Windows Domain users through an NT 
-or Win2K PDC for 'regular' services, such as telnet a nd ftp, as
-well for SAMBA services.</P
+>	Now copy the files from the NT Server in %SYSTEMROOT%\System32\netmon\*.* 
+	to %SYSTEMROOT%\System32\netmon\*.* on the Workstation and set 
+	permissions as  you deem appropriate for your site. You will need 
+	administrative rights on the NT box to run netmon.
+	</P
+><P
+>	To install Netmon on a Windows 9x box install the network monitor agent 
+	from the Windows 9x CD (\admin\nettools\netmon).  There is a readme 
+	file located with the netmon driver files on the CD if you need 
+	information on how to do this.  Copy the files from a working 
+	Netmon installation.
+	</P
+></LI
+><LI
 ><P
->This HOWTO has been written from a 'RedHat-centric' perspective, so if 
-you are using another distribution, you may have to modify the instructions 
-somewhat to fit the way your distribution works.</P
+>	The following is a list if helpful URLs and other links:
+	</P
 ><P
 ></P
 ><UL
 ><LI
 ><P
->	<SPAN
+>Home of Samba site <A
+HREF="http://samba.org"
+TARGET="_top"
+>        http://samba.org</A
+>. We have a mirror near you !</P
+></LI
+><LI
+><P
+> The <SPAN
 CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
->Why should I to this?</I
+>Development</I
 ></SPAN
->
-	</P
+> document 
+	on the Samba mirrors might mention your problem. If so,
+	it might mean that the developers are working on it.</P
+></LI
+><LI
 ><P
->This allows the SAMBA administrator to rely on the 
-	authentication mechanisms on the NT/Win2K PDC for the authentication 
-	of domain members.  NT/Win2K users no longer need to have separate 
-	accounts on the SAMBA server.
-	</P
+>See how Scott Merrill simulates a BDC behavior at 
+        <A
+HREF="http://www.skippy.net/linux/smb-howto.html"
+TARGET="_top"
+>        http://www.skippy.net/linux/smb-howto.html</A
+>. </P
+></LI
+><LI
+><P
+>Although 2.0.7 has almost had its day as a PDC, David Bannon will
+        keep the 2.0.7 PDC pages at <A
+HREF="http://bioserve.latrobe.edu.au/samba"
+TARGET="_top"
+>        http://bioserve.latrobe.edu.au/samba</A
+> going for a while yet.</P
+></LI
+><LI
+><P
+>Misc links to CIFS information 
+        <A
+HREF="http://samba.org/cifs/"
+TARGET="_top"
+>http://samba.org/cifs/</A
+></P
+></LI
+><LI
+><P
+>NT Domains for Unix <A
+HREF="http://mailhost.cb1.com/~lkcl/ntdom/"
+TARGET="_top"
+>        http://mailhost.cb1.com/~lkcl/ntdom/</A
+></P
+></LI
+><LI
+><P
+>FTP site for older SMB specs: 
+        <A
+HREF="ftp://ftp.microsoft.com/developr/drg/CIFS/"
+TARGET="_top"
+>        ftp://ftp.microsoft.com/developr/drg/CIFS/</A
+></P
+></LI
+></UL
 ></LI
+></UL
+><P
+></P
+><UL
 ><LI
 ><P
 >	<SPAN
 CLASS="emphasis"
 ><I
 CLASS="EMPHASIS"
->Who should be reading this document?</I
+>How do I get help from the mailing lists?</I
 ></SPAN
 >
 	</P
 ><P
->	This HOWTO is designed for system administrators.  If you are 
-	implementing SAMBA on a file server and wish to (fairly easily) 
-	integrate existing NT/Win2K users from your PDC onto the
-	SAMBA server, this HOWTO is for you.  That said, I am no NT or PAM 
-	expert, so you may find a better or easier way to accomplish 
-	these tasks.
+>	There are a number of Samba related mailing lists. Go to <A
+HREF="http://samba.org"
+TARGET="_top"
+>http://samba.org</A
+>, click on your nearest mirror
+	and then click on <B
+CLASS="COMMAND"
+>Support</B
+> and then click on <B
+CLASS="COMMAND"
+>	Samba related mailing lists</B
+>.
+	</P
+><P
+>	For questions relating to Samba TNG go to
+	<A
+HREF="http://www.samba-tng.org/"
+TARGET="_top"
+>http://www.samba-tng.org/</A
+> 
+	It has been requested that you don't post questions about Samba-TNG to the
+	main stream Samba lists.</P
+><P
+>	If you post a message to one of the lists please observe the following guide lines :
 	</P
-></LI
-></UL
-></DIV
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN2337"
-></A
->16.5.2. Requirements</H3
 ><P
->If you have a samba configuration file that you are currently 
-using... <SPAN
-CLASS="emphasis"
-><I
-CLASS="EMPHASIS"
->BACK IT UP!</I
-></SPAN
->  If your system already uses PAM, 
-<SPAN
-CLASS="emphasis"
-><I
-CLASS="EMPHASIS"
->back up the <TT
-CLASS="FILENAME"
->/etc/pam.d</TT
-> directory 
-contents!</I
-></SPAN
-> If you haven't already made a boot disk, 
-<SPAN
-CLASS="emphasis"
-><I
-CLASS="EMPHASIS"
->MAKE ONE NOW!</I
-></SPAN
 ></P
+><UL
+><LI
 ><P
->Messing with the pam configuration files can make it nearly impossible 
-to log in to yourmachine. That's why you want to be able to boot back 
-into your machine in single user mode and restore your 
-<TT
-CLASS="FILENAME"
->/etc/pam.d</TT
-> back to the original state they were in if 
-you get frustrated with the way things are going.  ;-)</P
+> Always remember that the developers are volunteers, they are 
+		not paid and they never guarantee to produce a particular feature at 
+		a particular time. Any time lines are 'best guess' and nothing more.
+		</P
+></LI
+><LI
 ><P
->The latest version of SAMBA (version 3.0 as of this writing), now 
-includes a functioning winbindd daemon.  Please refer to the 
-<A
-HREF="http://samba.org/"
-TARGET="_top"
->main SAMBA web page</A
-> or, 
-better yet, your closest SAMBA mirror site for instructions on 
-downloading the source code.</P
+> Always mention what version of samba you are using and what 
+		operating system its running under. You should probably list the
+        relevant sections of your smb.conf file, at least the options 
+        in [global] that affect PDC support.</P
+></LI
+><LI
 ><P
->To allow Domain users the ability to access SAMBA shares and 
-files, as well as potentially other services provided by your 
-SAMBA machine, PAM (pluggable authentication modules) must
-be setup properly on your machine.  In order to compile the 
-winbind modules, you should have at least the pam libraries resident 
-on your system.  For recent RedHat systems (7.1, for instance), that 
-means <TT
-CLASS="FILENAME"
->pam-0.74-22</TT
->.  For best results, it is helpful to also
-install the development packages in <TT
-CLASS="FILENAME"
->pam-devel-0.74-22</TT
->.</P
-></DIV
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN2351"
-></A
->16.5.3. Testing Things Out</H3
+>In addition to the version, if you obtained Samba via
+        CVS mention the date when you last checked it out.</P
+></LI
+><LI
 ><P
->Before starting, it is probably best to kill off all the SAMBA 
-related daemons running on your server.  Kill off all <B
-CLASS="COMMAND"
->smbd</B
->, 
-<B
-CLASS="COMMAND"
->nmbd</B
->, and <B
-CLASS="COMMAND"
->winbindd</B
-> processes that may 
-be running.  To use PAM, you will want to make sure that you have the 
-standard PAM package (for RedHat) which supplies the <TT
-CLASS="FILENAME"
->/etc/pam.d</TT
-> 
-directory structure, including the pam modules are used by pam-aware 
-services, several pam libraries, and the <TT
-CLASS="FILENAME"
->/usr/doc</TT
-> 
-and <TT
-CLASS="FILENAME"
->/usr/man</TT
-> entries for pam.  Winbind built better 
-in SAMBA if the pam-devel package was also installed.  This package includes 
-the header files needed to compile pam-aware applications. For instance, 
-my RedHat system has both <TT
-CLASS="FILENAME"
->pam-0.74-22</TT
-> and
-<TT
-CLASS="FILENAME"
->pam-devel-0.74-22</TT
-> RPMs installed.</P
-><DIV
-CLASS="SECT3"
-><HR><H4
-CLASS="SECT3"
-><A
-NAME="AEN2362"
-></A
->16.5.3.1. Configure and compile SAMBA</H4
+> Try and make your question clear and brief, lots of long, 
+		convoluted questions get deleted before	they are completely read ! 
+		Don't post html encoded messages (if you can select colour or font 
+		size its html).</P
+></LI
+><LI
 ><P
->The configuration and compilation of SAMBA is pretty straightforward.
-The first three steps may not be necessary depending upon
-whether or not you have previously built the Samba binaries.</P
+> If you run one of those nifty 'I'm on holidays' things when 
+		you are away, make sure its configured	to not answer mailing lists.
+		</P
+></LI
+><LI
 ><P
-><PRE
-CLASS="PROGRAMLISTING"
-><TT
-CLASS="PROMPT"
->root#</TT
-> <B
-CLASS="COMMAND"
->autoconf</B
->
-<TT
-CLASS="PROMPT"
->root#</TT
-> <B
-CLASS="COMMAND"
->make clean</B
+> Don't cross post. Work out which is the best list to post to 
+		and see what happens, i.e. don't post to both samba-ntdom and samba-technical.
+        Many people active on the lists subscribe to more 
+		than one list and get annoyed to see the same message two or more times. 
+		Often someone will see a message and thinking it would be better dealt 
+		with on another, will forward it on for you.</P
+></LI
+><LI
+><P
+>You might include <SPAN
+CLASS="emphasis"
+><I
+CLASS="EMPHASIS"
+>partial</I
+></SPAN
 >
-<TT
-CLASS="PROMPT"
->root#</TT
-> <B
-CLASS="COMMAND"
->rm config.cache</B
+        log files written at a debug level set to as much as 20.  
+        Please don't send the entire log but enough to give the context of the 
+        error messages.</P
+></LI
+><LI
+><P
+>(Possibly) If you have a complete netmon trace ( from the opening of 
+        the pipe to the error ) you can send the *.CAP file as well.</P
+></LI
+><LI
+><P
+>Please think carefully before attaching a document to an email.
+        Consider pasting the relevant parts into the body of the message. The samba
+        mailing lists go to a huge number of people, do they all need a copy of your 
+        smb.conf in their attach directory?</P
+></LI
+></UL
+></LI
+><LI
+><P
+>	<SPAN
+CLASS="emphasis"
+><I
+CLASS="EMPHASIS"
+>How do I get off the mailing lists?</I
+></SPAN
 >
-<TT
-CLASS="PROMPT"
->root#</TT
-> <B
+	</P
+><P
+>To have your name removed from a samba mailing list, go to the
+	same place you went to to get on it. Go to <A
+HREF="http://lists.samba.org/"
+TARGET="_top"
+>http://lists.samba.org</A
+>, 
+	click on your nearest mirror and then click on <B
 CLASS="COMMAND"
->./configure --with-winbind</B
->
-<TT
-CLASS="PROMPT"
->root#</TT
-> <B
+>Support</B
+> and 
+	then click on <B
 CLASS="COMMAND"
->make</B
+> Samba related mailing lists</B
+>. Or perhaps see 
+	<A
+HREF="http://lists.samba.org/mailman/roster/samba-ntdom"
+TARGET="_top"
+>here</A
 >
-<TT
-CLASS="PROMPT"
->root#</TT
-> <B
-CLASS="COMMAND"
->make install</B
-></PRE
-></P
+	</P
 ><P
->This will, by default, install SAMBA in <TT
-CLASS="FILENAME"
->/usr/local/samba</TT
->.
-See the main SAMBA documentation if you want to install SAMBA somewhere else.
-It will also build the winbindd executable and libraries. </P
+>	Please don't post messages to the list asking to be removed, you will just
+	be referred to the above address (unless that process failed in some way...)
+	</P
+></LI
+></UL
 ></DIV
 ><DIV
-CLASS="SECT3"
-><HR><H4
-CLASS="SECT3"
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
 ><A
-NAME="AEN2381"
+NAME="AEN2116"
 ></A
->16.5.3.2. Configure <TT
-CLASS="FILENAME"
->nsswitch.conf</TT
-> and the 
-winbind libraries</H4
-><P
->The libraries needed to run the <B
-CLASS="COMMAND"
->winbindd</B
-> daemon 
-through nsswitch need to be copied to their proper locations, so</P
+>12.8. Domain Control for Windows 9x/ME</H2
+><DIV
+CLASS="NOTE"
 ><P
-><TT
-CLASS="PROMPT"
->root#</TT
-> <B
-CLASS="COMMAND"
->cp ../samba/source/nsswitch/libnss_winbind.so /lib</B
 ></P
+><TABLE
+CLASS="NOTE"
+WIDTH="100%"
+BORDER="0"
+><TR
+><TD
+WIDTH="25"
+ALIGN="CENTER"
+VALIGN="TOP"
+><IMG
+SRC="/docbook-dsssl/note.gif"
+HSPACE="5"
+ALT="Note"></TD
+><TD
+ALIGN="LEFT"
+VALIGN="TOP"
 ><P
->I also found it necessary to make the following symbolic link:</P
+>The following section contains much of the original 
+DOMAIN.txt file previously included with Samba.  Much of 
+the material is based on what went into the book <SPAN
+CLASS="emphasis"
+><I
+CLASS="EMPHASIS"
+>Special 
+Edition, Using Samba</I
+></SPAN
+>, by Richard Sharpe.</P
+></TD
+></TR
+></TABLE
+></DIV
 ><P
-><TT
-CLASS="PROMPT"
->root#</TT
-> <B
-CLASS="COMMAND"
->ln -s /lib/libnss_winbind.so /lib/libnss_winbind.so.2</B
-></P
+>A domain and a workgroup are exactly the same thing in terms of network
+browsing.  The difference is that a distributable authentication
+database is associated with a domain, for secure login access to a
+network.  Also, different access rights can be granted to users if they
+successfully authenticate against a domain logon server (NT server and 
+other systems based on NT server support this, as does at least Samba TNG now).</P
 ><P
->And, in the case of Sun solaris:</P
+>The SMB client logging on to a domain has an expectation that every other
+server in the domain should accept the same authentication information.
+Network browsing functionality of domains and workgroups is
+identical and is explained in BROWSING.txt. It should be noted, that browsing
+is totally orthogonal to logon support.</P
+><P
+>Issues related to the single-logon network model are discussed in this
+section.  Samba supports domain logons, network logon scripts, and user
+profiles for MS Windows for workgroups and MS Windows 9X/ME clients
+which will be the focus of this section.</P
+><P
+>When an SMB client in a domain wishes to logon it broadcast requests for a
+logon server.  The first one to reply gets the job, and validates its
+password using whatever mechanism the Samba administrator has installed.
+It is possible (but very stupid) to create a domain where the user
+database is not shared between servers, i.e. they are effectively workgroup
+servers advertising themselves as participating in a domain.  This
+demonstrates how authentication is quite different from but closely
+involved with domains.</P
+><P
+>Using these features you can make your clients verify their logon via
+the Samba server; make clients run a batch file when they logon to
+the network and download their preferences, desktop and start menu.</P
+><P
+>Before launching into the configuration instructions, it is 
+worthwhile lookingat how a Windows 9x/ME client performs a logon:</P
 ><P
-><TT
-CLASS="PROMPT"
->root#</TT
-> <B
-CLASS="COMMAND"
->ln -s /usr/lib/libnss_winbind.so /usr/lib/libnss_winbind.so.1</B
->
-<TT
-CLASS="PROMPT"
->root#</TT
-> <B
-CLASS="COMMAND"
->ln -s /usr/lib/libnss_winbind.so /usr/lib/nss_winbind.so.1</B
->
-<TT
-CLASS="PROMPT"
->root#</TT
-> <B
-CLASS="COMMAND"
->ln -s /usr/lib/libnss_winbind.so /usr/lib/nss_winbind.so.2</B
 ></P
+><OL
+TYPE="1"
+><LI
 ><P
->Now, as root you need to edit <TT
-CLASS="FILENAME"
->/etc/nsswitch.conf</TT
-> to 
-allow user and group entries to be visible from the <B
-CLASS="COMMAND"
->winbindd</B
-> 
-daemon.  My <TT
-CLASS="FILENAME"
->/etc/nsswitch.conf</TT
-> file look like 
-this after editing:</P
+>	The client broadcasts (to the IP broadcast address of the subnet it is in)
+	a NetLogon request. This is sent to the NetBIOS name DOMAIN&#60;1c&#62; at the
+	NetBIOS layer.  The client chooses the first response it receives, which
+	contains the NetBIOS name of the logon server to use in the format of 
+	\\SERVER.
+	</P
+></LI
+><LI
+><P
+>	The client then connects to that server, logs on (does an SMBsessetupX) and
+	then connects to the IPC$ share (using an SMBtconX).
+	</P
+></LI
+><LI
 ><P
-><PRE
-CLASS="PROGRAMLISTING"
->	passwd:     files winbind
-	shadow:     files 
-	group:      files winbind</PRE
-></P
+>	The client then does a NetWkstaUserLogon request, which retrieves the name
+	of the user's logon script. 
+	</P
+></LI
+><LI
 ><P
->	
-The libraries needed by the winbind daemon will be automatically 
-entered into the <B
-CLASS="COMMAND"
->ldconfig</B
-> cache the next time 
-your system reboots, but it 
-is faster (and you don't need to reboot) if you do it manually:</P
+>	The client then connects to the NetLogon share and searches for this 	
+	and if it is found and can be read, is retrieved and executed by the client.
+	After this, the client disconnects from the NetLogon share.
+	</P
+></LI
+><LI
 ><P
-><TT
-CLASS="PROMPT"
->root#</TT
-> <B
-CLASS="COMMAND"
->/sbin/ldconfig -v | grep winbind</B
-></P
+>	The client then sends a NetUserGetInfo request to the server, to retrieve
+	the user's home share, which is used to search for profiles. Since the
+	response to the NetUserGetInfo request does not contain much more 	
+	the user's home share, profiles for Win9X clients MUST reside in the user
+	home directory.
+	</P
+></LI
+><LI
 ><P
->This makes <TT
-CLASS="FILENAME"
->libnss_winbind</TT
-> available to winbindd 
-and echos back a check to you.</P
-></DIV
+>	The client then connects to the user's home share and searches for the 
+	user's profile. As it turns out, you can specify the user's home share as
+	a sharename and path. For example, \\server\fred\.profile.
+	If the profiles are found, they are implemented.
+	</P
+></LI
+><LI
+><P
+>	The client then disconnects from the user's home share, and reconnects to
+	the NetLogon share and looks for CONFIG.POL, the policies file. If this is
+	found, it is read and implemented.
+	</P
+></LI
+></OL
 ><DIV
-CLASS="SECT3"
-><HR><H4
-CLASS="SECT3"
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
 ><A
-NAME="AEN2414"
+NAME="AEN2142"
 ></A
->16.5.3.3. Configure smb.conf</H4
+>12.8.1. Configuration Instructions:	Network Logons</H3
 ><P
->Several parameters are needed in the smb.conf file to control 
-the behavior of <B
-CLASS="COMMAND"
->winbindd</B
->. Configure 
-<TT
-CLASS="FILENAME"
->smb.conf</TT
-> These are described in more detail in 
-the <A
-HREF="winbindd.8.html"
-TARGET="_top"
->winbindd(8)</A
-> man page.  My 
-<TT
-CLASS="FILENAME"
->smb.conf</TT
-> file was modified to
-include the following entries in the [global] section:</P
+>The main difference between a PDC and a Windows 9x logon 
+server configuration is that</P
 ><P
-><PRE
-CLASS="PROGRAMLISTING"
->[global]
-     &#60;...&#62;
-     # separate domain and username with '+', like DOMAIN+username
-     <A
-HREF="winbindd.8.html#WINBINDSEPARATOR"
-TARGET="_top"
->winbind separator</A
-> = +
-     # use uids from 10000 to 20000 for domain users
-     <A
-HREF="winbindd.8.html#WINBINDUID"
-TARGET="_top"
->winbind uid</A
-> = 10000-20000
-     # use gids from 10000 to 20000 for domain groups
-     <A
-HREF="winbindd.8.html#WINBINDGID"
-TARGET="_top"
->winbind gid</A
-> = 10000-20000
-     # allow enumeration of winbind users and groups
-     <A
-HREF="winbindd.8.html#WINBINDENUMUSERS"
-TARGET="_top"
->winbind enum users</A
-> = yes
-     <A
-HREF="winbindd.8.html#WINBINDENUMGROUP"
-TARGET="_top"
->winbind enum groups</A
-> = yes
-     # give winbind users a real shell (only needed if they have telnet access)
-     <A
-HREF="winbindd.8.html#TEMPLATEHOMEDIR"
-TARGET="_top"
->template homedir</A
-> = /home/winnt/%D/%U
-     <A
-HREF="winbindd.8.html#TEMPLATESHELL"
-TARGET="_top"
->template shell</A
-> = /bin/bash</PRE
 ></P
-></DIV
-><DIV
-CLASS="SECT3"
-><HR><H4
-CLASS="SECT3"
-><A
-NAME="AEN2430"
-></A
->16.5.3.4. Join the SAMBA server to the PDC domain</H4
+><UL
+><LI
 ><P
->Enter the following command to make the SAMBA server join the 
-PDC domain, where <TT
-CLASS="REPLACEABLE"
-><I
->DOMAIN</I
-></TT
-> is the name of 
-your Windows domain and <TT
-CLASS="REPLACEABLE"
-><I
->Administrator</I
-></TT
-> is 
-a domain user who has administrative privileges in the domain.</P
+>Password encryption is not required for a Windows 9x logon server.</P
+></LI
+><LI
+><P
+>Windows 9x/ME clients do not possess machine trust accounts.</P
+></LI
+></UL
+><P
+>Therefore, a Samba PDC will also act as a Windows 9x logon 
+server.</P
+><DIV
+CLASS="WARNING"
 ><P
-><TT
-CLASS="PROMPT"
->root#</TT
-> <B
-CLASS="COMMAND"
->/usr/local/samba/bin/net rpc join -S PDC -U Administrator</B
 ></P
+><TABLE
+CLASS="WARNING"
+WIDTH="100%"
+BORDER="0"
+><TR
+><TD
+WIDTH="25"
+ALIGN="CENTER"
+VALIGN="TOP"
+><IMG
+SRC="/docbook-dsssl/warning.gif"
+HSPACE="5"
+ALT="Warning"></TD
+><TH
+ALIGN="LEFT"
+VALIGN="CENTER"
+><B
+>security mode and master browsers</B
+></TH
+></TR
+><TR
+><TD
+>&nbsp;</TD
+><TD
+ALIGN="LEFT"
+VALIGN="TOP"
 ><P
->The proper response to the command should be: "Joined the domain 
-<TT
-CLASS="REPLACEABLE"
-><I
->DOMAIN</I
-></TT
->" where <TT
-CLASS="REPLACEABLE"
-><I
->DOMAIN</I
-></TT
-> 
-is your DOMAIN name.</P
+>There are a few comments to make in order to tie up some 
+loose ends.  There has been much debate over the issue of whether
+or not it is ok to configure Samba as a Domain Controller in security
+modes other than <TT
+CLASS="CONSTANT"
+>USER</TT
+>.  The only security mode 
+which  will not work due to technical reasons is <TT
+CLASS="CONSTANT"
+>SHARE</TT
+>
+mode security.  <TT
+CLASS="CONSTANT"
+>DOMAIN</TT
+> and <TT
+CLASS="CONSTANT"
+>SERVER</TT
+>
+mode security is really just a variation on SMB user level security.</P
+><P
+>Actually, this issue is also closely tied to the debate on whether 
+or not Samba must be the domain master browser for its workgroup
+when operating as a DC.  While it may technically be possible
+to configure a server as such (after all, browsing and domain logons
+are two distinctly different functions), it is not a good idea to
+so.  You should remember that the DC must register the DOMAIN#1b NetBIOS 
+name.  This is the name used by Windows clients to locate the DC.
+Windows clients do not distinguish between the DC and the DMB.
+For this reason, it is very wise to configure the Samba DC as the DMB.</P
+><P
+>Now back to the issue of configuring a Samba DC to use a mode other
+than "security = user".  If a Samba host is configured to use 
+another SMB server or DC in order to validate user connection 
+requests, then it is a fact that some other machine on the network 
+(the "password server") knows more about user than the Samba host.
+99% of the time, this other host is a domain controller.  Now 
+in order to operate in domain mode security, the "workgroup" parameter
+must be set to the name of the Windows NT domain (which already 
+has a domain controller, right?)</P
+><P
+>Therefore configuring a Samba box as a DC for a domain that 
+already by definition has a PDC is asking for trouble.
+Therefore, you should always configure the Samba DC to be the DMB
+for its domain.</P
+></TD
+></TR
+></TABLE
+></DIV
 ></DIV
 ><DIV
-CLASS="SECT3"
-><HR><H4
-CLASS="SECT3"
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
 ><A
-NAME="AEN2441"
+NAME="AEN2161"
 ></A
->16.5.3.5. Start up the winbindd daemon and test it!</H4
-><P
->Eventually, you will want to modify your smb startup script to 
-automatically invoke the winbindd daemon when the other parts of 
-SAMBA start, but it is possible to test out just the winbind
-portion first.  To start up winbind services, enter the following 
-command as root:</P
-><P
-><TT
-CLASS="PROMPT"
->root#</TT
-> <B
-CLASS="COMMAND"
->/usr/local/samba/bin/winbindd</B
-></P
-><P
->I'm always paranoid and like to make sure the daemon 
-is really running...</P
+>12.8.2. Configuration Instructions:	Setting up Roaming User Profiles</H3
+><DIV
+CLASS="WARNING"
 ><P
-><TT
-CLASS="PROMPT"
->root#</TT
-> <B
-CLASS="COMMAND"
->ps -ae | grep winbindd</B
 ></P
+><TABLE
+CLASS="WARNING"
+WIDTH="100%"
+BORDER="0"
+><TR
+><TD
+WIDTH="25"
+ALIGN="CENTER"
+VALIGN="TOP"
+><IMG
+SRC="/docbook-dsssl/warning.gif"
+HSPACE="5"
+ALT="Warning"></TD
+><TD
+ALIGN="LEFT"
+VALIGN="TOP"
 ><P
->This command should produce output like this, if the daemon is running</P
-><P
->3025 ?        00:00:00 winbindd</P
-><P
->Now... for the real test, try to get some information about the 
-users on your PDC</P
-><P
-><TT
-CLASS="PROMPT"
->root#</TT
-> <B
-CLASS="COMMAND"
->/usr/local/samba/bin/wbinfo -u</B
-></P
+><SPAN
+CLASS="emphasis"
+><I
+CLASS="EMPHASIS"
+>NOTE!</I
+></SPAN
+> Roaming profiles support is different 
+for Win9X and WinNT.</P
+></TD
+></TR
+></TABLE
+></DIV
 ><P
->	
-This should echo back a list of users on your Windows users on 
-your PDC.  For example, I get the following response:</P
+>Before discussing how to configure roaming profiles, it is useful to see how
+Win9X and WinNT clients implement these features.</P
 ><P
-><PRE
-CLASS="PROGRAMLISTING"
->CEO+Administrator
-CEO+burdell
-CEO+Guest
-CEO+jt-ad
-CEO+krbtgt
-CEO+TsInternetUser</PRE
-></P
+>Win9X clients send a NetUserGetInfo request to the server to get the user's
+profiles location. However, the response does not have room for a separate 
+profiles location field, only the user's home share. This means that Win9X 
+profiles are restricted to being in the user's home directory.</P
 ><P
->Obviously, I have named my domain 'CEO' and my <TT
-CLASS="PARAMETER"
-><I
->winbind
-separator</I
-></TT
-> is '+'.</P
+>WinNT clients send a NetSAMLogon RPC request, which contains many fields, 
+including a separate field for the location of the user's profiles. 
+This means that support for profiles is different for Win9X and WinNT.</P
+><DIV
+CLASS="SECT3"
+><HR><H4
+CLASS="SECT3"
+><A
+NAME="AEN2169"
+></A
+>12.8.2.1. Windows NT Configuration</H4
 ><P
->You can do the same sort of thing to get group information from 
-the PDC:</P
+>To support WinNT clients, in the [global] section of smb.conf set the
+following (for example):</P
 ><P
 ><PRE
 CLASS="PROGRAMLISTING"
-><TT
-CLASS="PROMPT"
->root#</TT
-> <B
-CLASS="COMMAND"
->/usr/local/samba/bin/wbinfo -g</B
->
-CEO+Domain Admins
-CEO+Domain Users
-CEO+Domain Guests
-CEO+Domain Computers
-CEO+Domain Controllers
-CEO+Cert Publishers
-CEO+Schema Admins
-CEO+Enterprise Admins
-CEO+Group Policy Creator Owners</PRE
+>logon path = \\profileserver\profileshare\profilepath\%U\moreprofilepath</PRE
 ></P
 ><P
->The function 'getent' can now be used to get unified 
-lists of both local and PDC users and groups.
-Try the following command:</P
+>The default for this option is \\%N\%U\profile, namely
+\\sambaserver\username\profile.  The \\N%\%U service is created
+automatically by the [homes] service.
+If you are using a samba server for the profiles, you _must_ make the
+share specified in the logon path browseable. </P
+><DIV
+CLASS="NOTE"
 ><P
-><TT
-CLASS="PROMPT"
->root#</TT
-> <B
-CLASS="COMMAND"
->getent passwd</B
 ></P
+><TABLE
+CLASS="NOTE"
+WIDTH="100%"
+BORDER="0"
+><TR
+><TD
+WIDTH="25"
+ALIGN="CENTER"
+VALIGN="TOP"
+><IMG
+SRC="/docbook-dsssl/note.gif"
+HSPACE="5"
+ALT="Note"></TD
+><TD
+ALIGN="LEFT"
+VALIGN="TOP"
 ><P
->You should get a list that looks like your <TT
-CLASS="FILENAME"
->/etc/passwd</TT
-> 
-list followed by the domain users with their new uids, gids, home 
-directories and default shells.</P
-><P
->The same thing can be done for groups with the command</P
-><P
-><TT
-CLASS="PROMPT"
->root#</TT
-> <B
-CLASS="COMMAND"
->getent group</B
-></P
+>[lkcl 26aug96 - we have discovered a problem where Windows clients can
+maintain a connection to the [homes] share in between logins.  The
+[homes] share must NOT therefore be used in a profile path.]</P
+></TD
+></TR
+></TABLE
+></DIV
 ></DIV
 ><DIV
 CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN2477"
-></A
->16.5.3.6. Fix the init.d startup scripts</H4
-><DIV
-CLASS="SECT4"
-><H5
-CLASS="SECT4"
-><A
-NAME="AEN2479"
+NAME="AEN2177"
 ></A
->16.5.3.6.1. Linux</H5
-><P
->The <B
-CLASS="COMMAND"
->winbindd</B
-> daemon needs to start up after the 
-<B
-CLASS="COMMAND"
->smbd</B
-> and <B
-CLASS="COMMAND"
->nmbd</B
-> daemons are running.  
-To accomplish this task, you need to modify the startup scripts of your system. They are located at <TT
-CLASS="FILENAME"
->/etc/init.d/smb</TT
-> in RedHat and 
-<TT
-CLASS="FILENAME"
->/etc/init.d/samba</TT
-> in Debian.
-script to add commands to invoke this daemon in the proper sequence.  My 
-startup script starts up <B
-CLASS="COMMAND"
->smbd</B
->, 
-<B
-CLASS="COMMAND"
->nmbd</B
->, and <B
-CLASS="COMMAND"
->winbindd</B
-> from the 
-<TT
-CLASS="FILENAME"
->/usr/local/samba/bin</TT
-> directory directly.  The 'start' 
-function in the script looks like this:</P
+>12.8.2.2. Windows 9X Configuration</H4
 ><P
-><PRE
-CLASS="PROGRAMLISTING"
->start() {
-        KIND="SMB"
-        echo -n $"Starting $KIND services: "
-        daemon /usr/local/samba/bin/smbd $SMBDOPTIONS
-        RETVAL=$?
-        echo
-        KIND="NMB"
-        echo -n $"Starting $KIND services: "
-        daemon /usr/local/samba/bin/nmbd $NMBDOPTIONS
-        RETVAL2=$?
-        echo
-        KIND="Winbind"
-        echo -n $"Starting $KIND services: "
-        daemon /usr/local/samba/bin/winbindd
-        RETVAL3=$?
-        echo
-        [ $RETVAL -eq 0 -a $RETVAL2 -eq 0 -a $RETVAL3 -eq 0 ] &#38;&#38; touch /var/lock/subsys/smb || \
-           RETVAL=1
-        return $RETVAL
-}</PRE
-></P
+>To support Win9X clients, you must use the "logon home" parameter. Samba has
+now been fixed so that "net use/home" now works as well, and it, too, relies
+on the "logon home" parameter.</P
 ><P
->The 'stop' function has a corresponding entry to shut down the 
-services and look s like this:</P
+>By using the logon home parameter, you are restricted to putting Win9X 
+profiles in the user's home directory.   But wait! There is a trick you 
+can use. If you set the following in the [global] section of your 
+smb.conf file:</P
 ><P
 ><PRE
 CLASS="PROGRAMLISTING"
->stop() {
-        KIND="SMB"
-        echo -n $"Shutting down $KIND services: "
-        killproc smbd
-        RETVAL=$?
-        echo
-        KIND="NMB"
-        echo -n $"Shutting down $KIND services: "
-        killproc nmbd
-        RETVAL2=$?
-        echo
-        KIND="Winbind"
-        echo -n $"Shutting down $KIND services: "
-        killproc winbindd
-        RETVAL3=$?
-        [ $RETVAL -eq 0 -a $RETVAL2 -eq 0 -a $RETVAL3 -eq 0 ] &#38;&#38; rm -f /var/lock/subsys/smb
-        echo ""
-        return $RETVAL
-}</PRE
+>logon home = \\%L\%U\.profiles</PRE
 ></P
+><P
+>then your Win9X clients will dutifully put their clients in a subdirectory
+of your home directory called .profiles (thus making them hidden).</P
+><P
+>Not only that, but 'net use/home' will also work, because of a feature in 
+Win9X. It removes any directory stuff off the end of the home directory area
+and only uses the server and share portion. That is, it looks like you
+specified \\%L\%U for "logon home".</P
 ></DIV
 ><DIV
-CLASS="SECT4"
-><HR><H5
-CLASS="SECT4"
+CLASS="SECT3"
+><HR><H4
+CLASS="SECT3"
 ><A
-NAME="AEN2496"
+NAME="AEN2185"
 ></A
->16.5.3.6.2. Solaris</H5
+>12.8.2.3. Win9X and WinNT Configuration</H4
 ><P
->On solaris, you need to modify the 
-<TT
-CLASS="FILENAME"
->/etc/init.d/samba.server</TT
-> startup script. It usually 
-only starts smbd and nmbd but should now start winbindd too. If you 
-have samba installed in <TT
-CLASS="FILENAME"
->/usr/local/samba/bin</TT
->, 
-the file could contains something like this:</P
+>You can support profiles for both Win9X and WinNT clients by setting both the
+"logon home" and "logon path" parameters. For example:</P
 ><P
 ><PRE
 CLASS="PROGRAMLISTING"
->##
-## samba.server
-##
-
-if [ ! -d /usr/bin ]
-then                    # /usr not mounted
-        exit
-fi
-
-killproc() {            # kill the named process(es)
-        pid=`/usr/bin/ps -e |
-             /usr/bin/grep -w $1 |
-             /usr/bin/sed -e 's/^  *//' -e 's/ .*//'`
-        [ "$pid" != "" ] &#38;&#38; kill $pid
-}
- 
-# Start/stop processes required for samba server
-
-case "$1" in
-
-'start')
-#
-# Edit these lines to suit your installation (paths, workgroup, host)
-#
-echo Starting SMBD
-   /usr/local/samba/bin/smbd -D -s \
-	/usr/local/samba/smb.conf
-
-echo Starting NMBD
-   /usr/local/samba/bin/nmbd -D -l \
-	/usr/local/samba/var/log -s /usr/local/samba/smb.conf
-
-echo Starting Winbind Daemon
-   /usr/local/samba/bin/winbindd
-   ;;
-
-'stop')
-   killproc nmbd
-   killproc smbd
-   killproc winbindd
-   ;;
-
-*)
-   echo "Usage: /etc/init.d/samba.server { start | stop }"
-   ;;
-esac</PRE
+>logon home = \\%L\%U\.profiles
+logon path = \\%L\profiles\%U</PRE
+></P
+><DIV
+CLASS="NOTE"
+><P
 ></P
+><TABLE
+CLASS="NOTE"
+WIDTH="100%"
+BORDER="0"
+><TR
+><TD
+WIDTH="25"
+ALIGN="CENTER"
+VALIGN="TOP"
+><IMG
+SRC="/docbook-dsssl/note.gif"
+HSPACE="5"
+ALT="Note"></TD
+><TD
+ALIGN="LEFT"
+VALIGN="TOP"
+><P
+>I have not checked what 'net use /home' does on NT when "logon home" is
+set as above.</P
+></TD
+></TR
+></TABLE
+></DIV
 ></DIV
 ><DIV
-CLASS="SECT4"
-><HR><H5
-CLASS="SECT4"
+CLASS="SECT3"
+><HR><H4
+CLASS="SECT3"
 ><A
-NAME="AEN2503"
+NAME="AEN2192"
 ></A
->16.5.3.6.3. Restarting</H5
+>12.8.2.4. Windows 9X Profile Setup</H4
+><P
+>When a user first logs in on Windows 9X, the file user.DAT is created,
+as are folders "Start Menu", "Desktop", "Programs" and "Nethood".  
+These directories and their contents will be merged with the local
+versions stored in c:\windows\profiles\username on subsequent logins,
+taking the most recent from each.  You will need to use the [global]
+options "preserve case = yes", "short preserve case = yes" and
+"case sensitive = no" in order to maintain capital letters in shortcuts
+in any of the profile folders.</P
+><P
+>The user.DAT file contains all the user's preferences.  If you wish to
+enforce a set of preferences, rename their user.DAT file to user.MAN,
+and deny them write access to this file.</P
+><P
+></P
+><OL
+TYPE="1"
+><LI
+><P
+>	On the Windows 95 machine, go to Control Panel | Passwords and
+	select the User Profiles tab.  Select the required level of
+	roaming preferences.  Press OK, but do _not_ allow the computer
+	to reboot.
+	</P
+></LI
+><LI
+><P
+>	On the Windows 95 machine, go to Control Panel | Network |
+	Client for Microsoft Networks | Preferences.  Select 'Log on to
+	NT Domain'.  Then, ensure that the Primary Logon is 'Client for
+	Microsoft Networks'.  Press OK, and this time allow the computer
+	to reboot.
+	</P
+></LI
+></OL
+><P
+>Under Windows 95, Profiles are downloaded from the Primary Logon.
+If you have the Primary Logon as 'Client for Novell Networks', then
+the profiles and logon script will be downloaded from your Novell
+Server.  If you have the Primary Logon as 'Windows Logon', then the
+profiles will be loaded from the local machine - a bit against the
+concept of roaming profiles, if you ask me.</P
+><P
+>You will now find that the Microsoft Networks Login box contains
+[user, password, domain] instead of just [user, password].  Type in
+the samba server's domain name (or any other domain known to exist,
+but bear in mind that the user will be authenticated against this
+domain and profiles downloaded from it, if that domain logon server
+supports it), user name and user's password.</P
+><P
+>Once the user has been successfully validated, the Windows 95 machine
+will inform you that 'The user has not logged on before' and asks you
+if you wish to save the user's preferences?  Select 'yes'.</P
+><P
+>Once the Windows 95 client comes up with the desktop, you should be able
+to examine the contents of the directory specified in the "logon path"
+on the samba server and verify that the "Desktop", "Start Menu",
+"Programs" and "Nethood" folders have been created.</P
+><P
+>These folders will be cached locally on the client, and updated when
+the user logs off (if you haven't made them read-only by then :-).
+You will find that if the user creates further folders or short-cuts,
+that the client will merge the profile contents downloaded with the
+contents of the profile directory already on the local client, taking
+the newest folders and short-cuts from each set.</P
+><P
+>If you have made the folders / files read-only on the samba server,
+then you will get errors from the w95 machine on logon and logout, as
+it attempts to merge the local and the remote profile.  Basically, if
+you have any errors reported by the w95 machine, check the Unix file
+permissions and ownership rights on the profile directory contents,
+on the samba server.</P
+><P
+>If you have problems creating user profiles, you can reset the user's
+local desktop cache, as shown below.  When this user then next logs in,
+they will be told that they are logging in "for the first time".</P
+><P
+></P
+><OL
+TYPE="1"
+><LI
+><P
+>	instead of logging in under the [user, password, domain] dialog,
+	press escape.
+	</P
+></LI
+><LI
+><P
+>	run the regedit.exe program, and look in:
+	</P
+><P
+>	HKEY_LOCAL_MACHINE\Windows\CurrentVersion\ProfileList
+	</P
+><P
+>	you will find an entry, for each user, of ProfilePath.  Note the
+	contents of this key (likely to be c:\windows\profiles\username),
+	then delete the key ProfilePath for the required user.
+	</P
+><P
+>	[Exit the registry editor].
+	</P
+></LI
+><LI
+><P
+>	<SPAN
+CLASS="emphasis"
+><I
+CLASS="EMPHASIS"
+>WARNING</I
+></SPAN
+> - before deleting the contents of the 
+	directory listed in
+   the ProfilePath (this is likely to be c:\windows\profiles\username),
+   ask them if they have any important files stored on their desktop
+   or in their start menu.  delete the contents of the directory
+   ProfilePath (making a backup if any of the files are needed).
+	</P
+><P
+>   This will have the effect of removing the local (read-only hidden
+   system file) user.DAT in their profile directory, as well as the
+   local "desktop", "nethood", "start menu" and "programs" folders.
+	</P
+></LI
+><LI
 ><P
->If you restart the <B
-CLASS="COMMAND"
->smbd</B
->, <B
-CLASS="COMMAND"
->nmbd</B
->, 
-and <B
-CLASS="COMMAND"
->winbindd</B
-> daemons at this point, you
-should be able to connect to the samba server as a domain member just as
-if you were a local user.</P
-></DIV
+>	search for the user's .PWL password-caching file in the c:\windows
+	directory, and delete it.
+	</P
+></LI
+><LI
+><P
+>	log off the windows 95 client.
+	</P
+></LI
+><LI
+><P
+>	check the contents of the profile path (see "logon path" described
+	above), and delete the user.DAT or user.MAN file for the user,
+	making a backup if required.  
+	</P
+></LI
+></OL
+><P
+>If all else fails, increase samba's debug log levels to between 3 and 10,
+and / or run a packet trace program such as tcpdump or netmon.exe, and
+look for any error reports.</P
+><P
+>If you have access to an NT server, then first set up roaming profiles
+and / or netlogons on the NT server.  Make a packet trace, or examine
+the example packet traces provided with NT server, and see what the
+differences are with the equivalent samba trace.</P
 ></DIV
 ><DIV
 CLASS="SECT3"
 ><HR><H4
 CLASS="SECT3"
 ><A
-NAME="AEN2509"
+NAME="AEN2228"
 ></A
->16.5.3.7. Configure Winbind and PAM</H4
-><P
->If you have made it this far, you know that winbindd and samba are working
-together.  If you want to use winbind to provide authentication for other 
-services, keep reading.  The pam configuration files need to be altered in
-this step.  (Did you remember to make backups of your original 
-<TT
-CLASS="FILENAME"
->/etc/pam.d</TT
-> files? If not, do it now.)</P
+>12.8.2.5. Windows NT Workstation 4.0</H4
 ><P
->You will need a pam module to use winbindd with these other services.  This 
-module will be compiled in the <TT
-CLASS="FILENAME"
->../source/nsswitch</TT
-> directory
-by invoking the command</P
+>When a user first logs in to a Windows NT Workstation, the profile
+NTuser.DAT is created.  The profile location can be now specified
+through the "logon path" parameter.  </P
+><DIV
+CLASS="NOTE"
 ><P
-><TT
-CLASS="PROMPT"
->root#</TT
-> <B
-CLASS="COMMAND"
->make nsswitch/pam_winbind.so</B
 ></P
+><TABLE
+CLASS="NOTE"
+WIDTH="100%"
+BORDER="0"
+><TR
+><TD
+WIDTH="25"
+ALIGN="CENTER"
+VALIGN="TOP"
+><IMG
+SRC="/docbook-dsssl/note.gif"
+HSPACE="5"
+ALT="Note"></TD
+><TD
+ALIGN="LEFT"
+VALIGN="TOP"
 ><P
->from the <TT
-CLASS="FILENAME"
->../source</TT
-> directory.  The
-<TT
-CLASS="FILENAME"
->pam_winbind.so</TT
-> file should be copied to the location of
-your other pam security modules.  On my RedHat system, this was the
-<TT
-CLASS="FILENAME"
->/lib/security</TT
-> directory. On Solaris, the pam security 
-modules reside in <TT
-CLASS="FILENAME"
->/usr/lib/security</TT
->.</P
+>[lkcl 10aug97 - i tried setting the path to
+\\samba-server\homes\profile, and discovered that this fails because
+a background process maintains the connection to the [homes] share
+which does _not_ close down in between user logins.  you have to
+have \\samba-server\%L\profile, where user is the username created
+from the [homes] share].</P
+></TD
+></TR
+></TABLE
+></DIV
 ><P
-><TT
-CLASS="PROMPT"
->root#</TT
-> <B
-CLASS="COMMAND"
->cp ../samba/source/nsswitch/pam_winbind.so /lib/security</B
-></P
-><DIV
-CLASS="SECT4"
-><HR><H5
-CLASS="SECT4"
-><A
-NAME="AEN2526"
-></A
->16.5.3.7.1. Linux/FreeBSD-specific PAM configuration</H5
+>There is a parameter that is now available for use with NT Profiles:
+"logon drive".  This should be set to "h:" or any other drive, and
+should be used in conjunction with the new "logon home" parameter.</P
 ><P
->The <TT
-CLASS="FILENAME"
->/etc/pam.d/samba</TT
-> file does not need to be changed. I 
-just left this fileas it was:</P
+>The entry for the NT 4.0 profile is a _directory_ not a file.  The NT
+help on profiles mentions that a directory is also created with a .PDS
+extension.  The user, while logging in, must have write permission to
+create the full profile path (and the folder with the .PDS extension)
+[lkcl 10aug97 - i found that the creation of the .PDS directory failed,
+and had to create these manually for each user, with a shell script.
+also, i presume, but have not tested, that the full profile path must
+be browseable just as it is for w95, due to the manner in which they
+attempt to create the full profile path: test existence of each path
+component; create path component].</P
 ><P
-><PRE
-CLASS="PROGRAMLISTING"
->auth    required        /lib/security/pam_stack.so service=system-auth
-account required        /lib/security/pam_stack.so service=system-auth</PRE
-></P
+>In the profile directory, NT creates more folders than 95.  It creates
+"Application Data" and others, as well as "Desktop", "Nethood",
+"Start Menu" and "Programs".  The profile itself is stored in a file
+NTuser.DAT.  Nothing appears to be stored in the .PDS directory, and
+its purpose is currently unknown.</P
 ><P
->The other services that I modified to allow the use of winbind 
-as an authentication service were the normal login on the console (or a terminal 
-session), telnet logins, and ftp service.  In order to enable these 
-services, you may first need to change the entries in 
-<TT
-CLASS="FILENAME"
->/etc/xinetd.d</TT
-> (or <TT
-CLASS="FILENAME"
->/etc/inetd.conf</TT
->).  
-RedHat 7.1 uses the new xinetd.d structure, in this case you need 
-to change the lines in <TT
-CLASS="FILENAME"
->/etc/xinetd.d/telnet</TT
-> 
-and <TT
-CLASS="FILENAME"
->/etc/xinetd.d/wu-ftp</TT
-> from </P
+>You can use the System Control Panel to copy a local profile onto
+a samba server (see NT Help on profiles: it is also capable of firing
+up the correct location in the System Control Panel for you).  The
+NT Help file also mentions that renaming NTuser.DAT to NTuser.MAN
+turns a profile into a mandatory one.</P
+><DIV
+CLASS="NOTE"
 ><P
-><PRE
-CLASS="PROGRAMLISTING"
->enable = no</PRE
 ></P
+><TABLE
+CLASS="NOTE"
+WIDTH="100%"
+BORDER="0"
+><TR
+><TD
+WIDTH="25"
+ALIGN="CENTER"
+VALIGN="TOP"
+><IMG
+SRC="/docbook-dsssl/note.gif"
+HSPACE="5"
+ALT="Note"></TD
+><TD
+ALIGN="LEFT"
+VALIGN="TOP"
 ><P
->to</P
+>[lkcl 10aug97 - i notice that NT Workstation tells me that it is
+downloading a profile from a slow link.  whether this is actually the
+case, or whether there is some configuration issue, as yet unknown,
+that makes NT Workstation _think_ that the link is a slow one is a
+matter to be resolved].</P
+><P
+>[lkcl 20aug97 - after samba digest correspondence, one user found, and
+another confirmed, that profiles cannot be loaded from a samba server
+unless "security = user" and "encrypt passwords = yes" (see the file
+ENCRYPTION.txt) or "security = server" and "password server = ip.address.
+of.yourNTserver" are used.  Either of these options will allow the NT
+workstation to access the samba server using LAN manager encrypted
+passwords, without the user intervention normally required by NT
+workstation for clear-text passwords].</P
+><P
+>[lkcl 25aug97 - more comments received about NT profiles: the case of
+the profile _matters_.  the file _must_ be called NTuser.DAT or, for
+a mandatory profile, NTuser.MAN].</P
+></TD
+></TR
+></TABLE
+></DIV
+></DIV
+><DIV
+CLASS="SECT3"
+><HR><H4
+CLASS="SECT3"
+><A
+NAME="AEN2241"
+></A
+>12.8.2.6. Windows NT Server</H4
+><P
+>There is nothing to stop you specifying any path that you like for the
+location of users' profiles.  Therefore, you could specify that the
+profile be stored on a samba server, or any other SMB server, as long as
+that SMB server supports encrypted passwords.</P
+></DIV
+><DIV
+CLASS="SECT3"
+><HR><H4
+CLASS="SECT3"
+><A
+NAME="AEN2244"
+></A
+>12.8.2.7. Sharing Profiles between W95 and NT Workstation 4.0</H4
+><DIV
+CLASS="WARNING"
 ><P
-><PRE
-CLASS="PROGRAMLISTING"
->enable = yes</PRE
 ></P
+><TABLE
+CLASS="WARNING"
+WIDTH="100%"
+BORDER="0"
+><TR
+><TD
+WIDTH="25"
+ALIGN="CENTER"
+VALIGN="TOP"
+><IMG
+SRC="/docbook-dsssl/warning.gif"
+HSPACE="5"
+ALT="Warning"></TD
+><TH
+ALIGN="LEFT"
+VALIGN="CENTER"
+><B
+>Potentially outdated or incorrect material follows</B
+></TH
+></TR
+><TR
+><TD
+>&nbsp;</TD
+><TD
+ALIGN="LEFT"
+VALIGN="TOP"
 ><P
->	
-For ftp services to work properly, you will also need to either 
-have individual directories for the domain users already present on 
-the server, or change the home directory template to a general
-directory for all domain users.  These can be easily set using 
-the <TT
-CLASS="FILENAME"
->smb.conf</TT
-> global entry 
-<B
-CLASS="COMMAND"
->template homedir</B
->.</P
+>I think this is all bogus, but have not deleted it. (Richard Sharpe)</P
+></TD
+></TR
+></TABLE
+></DIV
 ><P
->The <TT
-CLASS="FILENAME"
->/etc/pam.d/ftp</TT
-> file can be changed 
-to allow winbind ftp access in a manner similar to the
-samba file.  My <TT
-CLASS="FILENAME"
->/etc/pam.d/ftp</TT
-> file was 
-changed to look like this:</P
+>The default logon path is \\%N\%U.  NT Workstation will attempt to create
+a directory "\\samba-server\username.PDS" if you specify the logon path
+as "\\samba-server\username" with the NT User Manager.  Therefore, you
+will need to specify (for example) "\\samba-server\username\profile".
+NT 4.0 will attempt to create "\\samba-server\username\profile.PDS", which
+is more likely to succeed.</P
 ><P
-><PRE
-CLASS="PROGRAMLISTING"
->auth       required     /lib/security/pam_listfile.so item=user sense=deny file=/etc/ftpusers onerr=succeed
-auth       sufficient   /lib/security/pam_winbind.so
-auth       required     /lib/security/pam_stack.so service=system-auth
-auth       required     /lib/security/pam_shells.so
-account    sufficient   /lib/security/pam_winbind.so
-account    required     /lib/security/pam_stack.so service=system-auth
-session    required     /lib/security/pam_stack.so service=system-auth</PRE
-></P
+>If you then want to share the same Start Menu / Desktop with W95, you will
+need to specify "logon path = \\samba-server\username\profile" [lkcl 10aug97
+this has its drawbacks: i created a shortcut to telnet.exe, which attempts
+to run from the c:\winnt\system32 directory.  this directory is obviously
+unlikely to exist on a Win95-only host].</P
 ><P
->The <TT
-CLASS="FILENAME"
->/etc/pam.d/login</TT
-> file can be changed nearly the 
-same way.  It now looks like this:</P
+>&#13;If you have this set up correctly, you will find separate user.DAT and
+NTuser.DAT files in the same profile directory.</P
+><DIV
+CLASS="NOTE"
 ><P
-><PRE
-CLASS="PROGRAMLISTING"
->auth       required     /lib/security/pam_securetty.so
-auth       sufficient   /lib/security/pam_winbind.so
-auth       sufficient   /lib/security/pam_unix.so use_first_pass
-auth       required     /lib/security/pam_stack.so service=system-auth
-auth       required     /lib/security/pam_nologin.so
-account    sufficient   /lib/security/pam_winbind.so
-account    required     /lib/security/pam_stack.so service=system-auth
-password   required     /lib/security/pam_stack.so service=system-auth
-session    required     /lib/security/pam_stack.so service=system-auth
-session    optional     /lib/security/pam_console.so</PRE
 ></P
+><TABLE
+CLASS="NOTE"
+WIDTH="100%"
+BORDER="0"
+><TR
+><TD
+WIDTH="25"
+ALIGN="CENTER"
+VALIGN="TOP"
+><IMG
+SRC="/docbook-dsssl/note.gif"
+HSPACE="5"
+ALT="Note"></TD
+><TD
+ALIGN="LEFT"
+VALIGN="TOP"
 ><P
->In this case, I added the <B
-CLASS="COMMAND"
->auth sufficient /lib/security/pam_winbind.so</B
-> 
-lines as before, but also added the <B
-CLASS="COMMAND"
->required pam_securetty.so</B
-> 
-above it, to disallow root logins over the network.  I also added a 
-<B
-CLASS="COMMAND"
->sufficient /lib/security/pam_unix.so use_first_pass</B
->
-line after the <B
-CLASS="COMMAND"
->winbind.so</B
-> line to get rid of annoying 
-double prompts for passwords.</P
+>[lkcl 25aug97 - there are some issues to resolve with downloading of
+NT profiles, probably to do with time/date stamps.  i have found that
+NTuser.DAT is never updated on the workstation after the first time that
+it is copied to the local workstation profile directory.  this is in
+contrast to w95, where it _does_ transfer / update profiles correctly].</P
+></TD
+></TR
+></TABLE
+></DIV
+></DIV
+></DIV
 ></DIV
 ><DIV
-CLASS="SECT4"
-><HR><H5
-CLASS="SECT4"
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
 ><A
-NAME="AEN2559"
+NAME="AEN2254"
 ></A
->16.5.3.7.2. Solaris-specific configuration</H5
-><P
->The /etc/pam.conf needs to be changed. I changed this file so that my Domain
-users can logon both locally as well as telnet.The following are the changes
-that I made.You can customize the pam.conf file as per your requirements,but
-be sure of those changes because in the worst case it will leave your system
-nearly impossible to boot.</P
+>12.9. DOMAIN_CONTROL.txt : Windows NT Domain Control &#38; Samba</H2
+><DIV
+CLASS="WARNING"
 ><P
-><PRE
-CLASS="PROGRAMLISTING"
->#
-#ident	"@(#)pam.conf	1.14	99/09/16 SMI"
-#
-# Copyright (c) 1996-1999, Sun Microsystems, Inc.
-# All Rights Reserved.
-#
-# PAM configuration
-#
-# Authentication management
-#
-login   auth required   /usr/lib/security/pam_winbind.so
-login	auth required 	/usr/lib/security/$ISA/pam_unix.so.1 try_first_pass 
-login	auth required 	/usr/lib/security/$ISA/pam_dial_auth.so.1 try_first_pass 
-#
-rlogin  auth sufficient /usr/lib/security/pam_winbind.so
-rlogin  auth sufficient /usr/lib/security/$ISA/pam_rhosts_auth.so.1
-rlogin	auth required 	/usr/lib/security/$ISA/pam_unix.so.1 try_first_pass
-#
-dtlogin auth sufficient /usr/lib/security/pam_winbind.so
-dtlogin	auth required 	/usr/lib/security/$ISA/pam_unix.so.1 try_first_pass
-#
-rsh	auth required	/usr/lib/security/$ISA/pam_rhosts_auth.so.1
-other   auth sufficient /usr/lib/security/pam_winbind.so
-other	auth required	/usr/lib/security/$ISA/pam_unix.so.1 try_first_pass
-#
-# Account management
-#
-login   account sufficient      /usr/lib/security/pam_winbind.so
-login	account requisite	/usr/lib/security/$ISA/pam_roles.so.1 
-login	account required	/usr/lib/security/$ISA/pam_unix.so.1 
-#
-dtlogin account sufficient      /usr/lib/security/pam_winbind.so
-dtlogin	account requisite	/usr/lib/security/$ISA/pam_roles.so.1 
-dtlogin	account required	/usr/lib/security/$ISA/pam_unix.so.1 
-#
-other   account sufficient      /usr/lib/security/pam_winbind.so
-other	account requisite	/usr/lib/security/$ISA/pam_roles.so.1 
-other	account required	/usr/lib/security/$ISA/pam_unix.so.1 
-#
-# Session management
-#
-other	session required	/usr/lib/security/$ISA/pam_unix.so.1 
-#
-# Password management
-#
-#other   password sufficient     /usr/lib/security/pam_winbind.so
-other	password required	/usr/lib/security/$ISA/pam_unix.so.1 
-dtsession auth required	/usr/lib/security/$ISA/pam_unix.so.1
-#
-# Support for Kerberos V5 authentication (uncomment to use Kerberos)
-#
-#rlogin	auth optional	/usr/lib/security/$ISA/pam_krb5.so.1 try_first_pass
-#login	auth optional	/usr/lib/security/$ISA/pam_krb5.so.1 try_first_pass
-#dtlogin	auth optional	/usr/lib/security/$ISA/pam_krb5.so.1 try_first_pass
-#other	auth optional	/usr/lib/security/$ISA/pam_krb5.so.1 try_first_pass
-#dtlogin	account optional /usr/lib/security/$ISA/pam_krb5.so.1
-#other	account optional /usr/lib/security/$ISA/pam_krb5.so.1
-#other	session optional /usr/lib/security/$ISA/pam_krb5.so.1
-#other	password optional /usr/lib/security/$ISA/pam_krb5.so.1 try_first_pass</PRE
 ></P
+><TABLE
+CLASS="WARNING"
+WIDTH="100%"
+BORDER="0"
+><TR
+><TD
+WIDTH="25"
+ALIGN="CENTER"
+VALIGN="TOP"
+><IMG
+SRC="/docbook-dsssl/warning.gif"
+HSPACE="5"
+ALT="Warning"></TD
+><TH
+ALIGN="LEFT"
+VALIGN="CENTER"
+><B
+>Possibly Outdated Material</B
+></TH
+></TR
+><TR
+><TD
+>&nbsp;</TD
+><TD
+ALIGN="LEFT"
+VALIGN="TOP"
+><P
+>	This appendix was originally authored by John H Terpstra of 
+	the Samba Team and is included here for posterity.
+	</P
+></TD
+></TR
+></TABLE
+></DIV
+><P
+><SPAN
+CLASS="emphasis"
+><I
+CLASS="EMPHASIS"
+>NOTE :</I
+></SPAN
+> 
+The term "Domain Controller" and those related to it refer to one specific
+method of authentication that can underly an SMB domain. Domain Controllers
+prior to Windows NT Server 3.1 were sold by various companies and based on 
+private extensions to the LAN Manager 2.1 protocol. Windows NT introduced
+Microsoft-specific ways of distributing the user authentication database.
+See DOMAIN.txt for examples of how Samba can participate in or create
+SMB domains based on shared authentication database schemes other than the 
+Windows NT SAM.</P
+><P
+>Windows NT Server can be installed as either a plain file and print server
+(WORKGROUP workstation or server) or as a server that participates in Domain
+Control (DOMAIN member, Primary Domain controller or Backup Domain controller).
+The same is true for OS/2 Warp Server, Digital Pathworks and other similar
+products, all of which can participate in Domain Control along with Windows NT.</P
 ><P
->I also added a try_first_pass line after the winbind.so line to get rid of
-annoying double prompts for passwords.</P
+>To many people these terms can be confusing, so let's try to clear the air.</P
 ><P
->Now restart your Samba &#38; try connecting through your application that you
-configured in the pam.conf.</P
-></DIV
-></DIV
-></DIV
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN2566"
-></A
->16.6. Limitations</H2
+>Every Windows NT system (workstation or server) has a registry database.
+The registry contains entries that describe the initialization information
+for all services (the equivalent of Unix Daemons) that run within the Windows
+NT environment. The registry also contains entries that tell application
+software where to find dynamically loadable libraries that they depend upon.
+In fact, the registry contains entries that describes everything that anything
+may need to know to interact with the rest of the system.</P
 ><P
->Winbind has a number of limitations in its current 
-	released version that we hope to overcome in future 
-	releases:</P
+>The registry files can be located on any Windows NT machine by opening a
+command prompt and typing:</P
 ><P
-></P
-><UL
-><LI
+><TT
+CLASS="PROMPT"
+>C:\WINNT\&#62;</TT
+> dir %SystemRoot%\System32\config</P
 ><P
->Winbind is currently only available for 
-		the Linux operating system, although ports to other operating 
-		systems are certainly possible. For such ports to be feasible, 
-		we require the C library of the target operating system to 
-		support the Name Service Switch and Pluggable Authentication
-		Modules systems. This is becoming more common as NSS and 
-		PAM gain	support among UNIX vendors.</P
-></LI
-><LI
+>The environment variable %SystemRoot% value can be obtained by typing:</P
 ><P
->The mappings of Windows NT RIDs to UNIX ids 
-		is not made algorithmically and depends on the order in which 
-		unmapped users or groups are seen by winbind. It may be difficult 
-		to recover the mappings of rid to UNIX id mapping if the file 
-		containing this information is corrupted or destroyed.</P
-></LI
-><LI
+><TT
+CLASS="PROMPT"
+>C:\WINNT&#62;</TT
+>echo %SystemRoot%</P
 ><P
->Currently the winbind PAM module does not take 
-		into account possible workstation and logon time restrictions 
-		that may be been set for Windows NT users.</P
-></LI
-></UL
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN2576"
-></A
->16.7. Conclusion</H2
+>The active parts of the registry that you may want to be familiar with are
+the files called: default, system, software, sam and security.</P
 ><P
->The winbind system, through the use of the Name Service 
-	Switch, Pluggable Authentication Modules, and appropriate 
-	Microsoft RPC calls have allowed us to provide seamless 
-	integration of Microsoft Windows NT domain users on a
-	UNIX system. The result is a great reduction in the administrative 
-	cost of running a mixed UNIX and NT network.</P
+>In a domain environment, Microsoft Windows NT domain controllers participate
+in replication of the SAM and SECURITY files so that all controllers within
+the domain have an exactly identical copy of each.</P
+><P
+>The Microsoft Windows NT system is structured within a security model that
+says that all applications and services must authenticate themselves before
+they can obtain permission from the security manager to do what they set out
+to do.</P
+><P
+>The Windows NT User database also resides within the registry. This part of
+the registry contains the user's security identifier, home directory, group
+memberships, desktop profile, and so on.</P
+><P
+>Every Windows NT system (workstation as well as server) will have its own
+registry. Windows NT Servers that participate in Domain Security control
+have a database that they share in common - thus they do NOT own an
+independent full registry database of their own, as do Workstations and
+plain Servers.</P
+><P
+>The User database is called the SAM (Security Access Manager) database and
+is used for all user authentication as well as for authentication of inter-
+process authentication (i.e. to ensure that the service action a user has
+requested is permitted within the limits of that user's privileges).</P
+><P
+>The Samba team have produced a utility that can dump the Windows NT SAM into 
+smbpasswd format: see ENCRYPTION.txt for information on smbpasswd and
+/pub/samba/pwdump on your nearest Samba mirror for the utility. This 
+facility is useful but cannot be easily used to implement SAM replication
+to Samba systems.</P
+><P
+>Windows for Workgroups, Windows 95, and Windows NT Workstations and Servers
+can participate in a Domain security system that is controlled by Windows NT
+servers that have been correctly configured. Almost every domain will have
+ONE Primary Domain Controller (PDC). It is desirable that each domain will
+have at least one Backup Domain Controller (BDC).</P
+><P
+>The PDC and BDCs then participate in replication of the SAM database so that
+each Domain Controlling participant will have an up to date SAM component
+within its registry.</P
 ></DIV
 ></DIV
 ><DIV
 CLASS="CHAPTER"
 ><HR><H1
 ><A
-NAME="PDB-MYSQL"
+NAME="SAMBA-BDC"
 ></A
->Chapter 17. Passdb MySQL plugin</H1
+>Chapter 13. How to Act as a Backup Domain Controller in a Purely Samba Controlled Domain</H1
 ><DIV
 CLASS="SECT1"
 ><H2
 CLASS="SECT1"
 ><A
-NAME="AEN2590"
+NAME="AEN2290"
 ></A
->17.1. Building</H2
+>13.1. Prerequisite Reading</H2
 ><P
->To build the plugin, run <B
-CLASS="COMMAND"
->make bin/pdb_mysql.so</B
->
-in the <TT
-CLASS="FILENAME"
->source/</TT
-> directory of samba distribution. </P
-><P
->Next, copy pdb_mysql.so to any location you want. I 
-strongly recommend installing it in $PREFIX/lib or /usr/lib/samba/</P
+>Before you continue reading in this chapter, please make sure
+that you are comfortable with configuring a Samba PDC
+as described in the <A
+HREF="Samba-PDC-HOWTO.html"
+TARGET="_top"
+>Samba-PDC-HOWTO</A
+>.</P
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN2596"
+NAME="AEN2294"
 ></A
->17.2. Configuring</H2
+>13.2. Background</H2
 ><P
->This plugin lacks some good documentation, but here is some short info:</P
-><P
->Add a the following to the <B
-CLASS="COMMAND"
->passdb backend</B
-> variable in your <TT
-CLASS="FILENAME"
->smb.conf</TT
->:
-<PRE
-CLASS="PROGRAMLISTING"
->passdb backend = [other-plugins] plugin:/location/to/pdb_mysql.so:identifier [other-plugins]</PRE
-></P
+>What is a Domain Controller? It is a machine that is able to answer
+logon requests from workstations in a Windows NT Domain. Whenever a
+user logs into a Windows NT Workstation, the workstation connects to a
+Domain Controller and asks him whether the username and password the
+user typed in is correct.  The Domain Controller replies with a lot of
+information about the user, for example the place where the users
+profile is stored, the users full name of the user. All this
+information is stored in the NT user database, the so-called SAM.</P
 ><P
->The identifier can be any string you like, as long as it doesn't collide with 
-the identifiers of other plugins or other instances of pdb_mysql. If you 
-specify multiple pdb_mysql.so entries in 'passdb backend', you also need to 
-use different identifiers!</P
+>There are two kinds of Domain Controller in a NT 4 compatible Domain:
+A Primary Domain Controller (PDC) and one or more Backup Domain
+Controllers (BDC). The PDC contains the master copy of the
+SAM. Whenever the SAM has to change, for example when a user changes
+his password, this change has to be done on the PDC. A Backup Domain
+Controller is a machine that maintains a read-only copy of the
+SAM. This way it is able to reply to logon requests and authenticate
+users in case the PDC is not available. During this time no changes to
+the SAM are possible. Whenever changes to the SAM are done on the PDC,
+all BDC receive the changes from the PDC.</P
 ><P
->Additional options can be given thru the smb.conf file in the [global] section.</P
+>Since version 2.2 Samba officially supports domain logons for all
+current Windows Clients, including Windows 2000 and XP. This text
+assumes the domain to be named SAMBA. To be able to act as a PDC, some
+parameters in the [global]-section of the smb.conf have to be set:</P
 ><P
 ><PRE
 CLASS="PROGRAMLISTING"
->identifier:mysql host                     - host name, defaults to 'localhost'
-identifier:mysql password
-identifier:mysql user                     - defaults to 'samba'
-identifier:mysql database                 - defaults to 'samba'
-identifier:mysql port                     - defaults to 3306
-identifier:table                          - Name of the table containing users</PRE
+>workgroup = SAMBA
+domain master = yes
+domain logons = yes</PRE
 ></P
 ><P
->Names of the columns in this table(I've added column types those columns should have first):</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->identifier:logon time column             - int(9)
-identifier:logoff time column            - int(9)
-identifier:kickoff time column           - int(9)
-identifier:pass last set time column     - int(9)
-identifier:pass can change time column   - int(9)
-identifier:pass must change time column  - int(9)
-identifier:username column               - varchar(255) - unix username
-identifier:domain column                 - varchar(255) - NT domain user is part of
-identifier:nt username column            - varchar(255) - NT username
-identifier:fullname column            - varchar(255) - Full name of user
-identifier:home dir column               - varchar(255) - Unix homedir path
-identifier:dir drive column              - varchar(2) - Directory drive path (eg: 'H:')
-identifier:logon script column           - varchar(255) - Batch file to run on client side when logging on
-identifier:profile path column           - varchar(255) - Path of profile
-identifier:acct desc column              - varchar(255) - Some ASCII NT user data
-identifier:workstations column           - varchar(255) - Workstations user can logon to (or NULL for all)
-identifier:unknown string column         - varchar(255) - unknown string
-identifier:munged dial column            - varchar(255) - ?
-identifier:uid column                    - int(9) - Unix user ID (uid)
-identifier:gid column                    - int(9) - Unix user group (gid)
-identifier:user sid column               - varchar(255) - NT user SID
-identifier:group sid column              - varchar(255) - NT group ID
-identifier:lanman pass column            - varchar(255) - encrypted lanman password
-identifier:nt pass column                - varchar(255) - encrypted nt passwd
-identifier:plaintext pass column         - varchar(255) - plaintext password
-identifier:acct control column           - int(9) - nt user data
-identifier:unknown 3 column              - int(9) - unknown
-identifier:logon divs column             - int(9) - ?
-identifier:hours len column              - int(9) - ?
-identifier:unknown 5 column              - int(9) - unknown
-identifier:unknown 6 column              - int(9) - unknown</PRE
-></P
-><P
->Eventually, you can put a colon (:) after the name of each column, which 
-should specify the column to update when updating the table. You can also
-specify nothing behind the colon - then the data from the field will not be 
-updated. </P
+>Several other things like a [homes] and a [netlogon] share also may be
+set along with settings for the profile path, the users home drive and
+others. This will not be covered in this document.</P
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN2611"
+NAME="AEN2302"
+></A
+>13.3. What qualifies a Domain Controller on the network?</H2
+><P
+>Every machine that is a Domain Controller for the domain SAMBA has to
+register the NetBIOS group name SAMBA#1c with the WINS server and/or
+by broadcast on the local network. The PDC also registers the unique
+NetBIOS name SAMBA#1b with the WINS server. The name type #1b is
+normally reserved for the domain master browser, a role that has
+nothing to do with anything related to authentication, but the
+Microsoft Domain implementation requires the domain master browser to
+be on the same machine as the PDC.</P
+><DIV
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
+><A
+NAME="AEN2305"
+></A
+>13.3.1. How does a Workstation find its domain controller?</H3
+><P
+>A NT workstation in the domain SAMBA that wants a local user to be
+authenticated has to find the domain controller for SAMBA. It does
+this by doing a NetBIOS name query for the group name SAMBA#1c. It
+assumes that each of the machines it gets back from the queries is a
+domain controller and can answer logon requests. To not open security
+holes both the workstation and the selected (TODO: How is the DC
+chosen) domain controller authenticate each other. After that the
+workstation sends the user's credentials (his name and password) to
+the domain controller, asking for approval.</P
+></DIV
+><DIV
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
+><A
+NAME="AEN2308"
 ></A
->17.3. Using plaintext passwords or encrypted password</H2
+>13.3.2. When is the PDC needed?</H3
 ><P
->I strongly discourage the use of plaintext passwords, however, you can use them:</P
+>Whenever a user wants to change his password, this has to be done on
+the PDC. To find the PDC, the workstation does a NetBIOS name query
+for SAMBA#1b, assuming this machine maintains the master copy of the
+SAM. The workstation contacts the PDC, both mutually authenticate and
+the password change is done.</P
+></DIV
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
+><A
+NAME="AEN2311"
+></A
+>13.4. Can Samba be a Backup Domain Controller?</H2
 ><P
->If you would like to use plaintext passwords, set 'identifier:lanman pass column' and 'identifier:nt pass column' to 'NULL' (without the quotes) and 'identifier:plaintext pass column' to the name of the column containing the plaintext passwords. </P
+>With version 2.2, no. The native NT SAM replication protocols have
+not yet been fully implemented. The Samba Team is working on
+understanding and implementing the protocols, but this work has not
+been finished for version 2.2.</P
 ><P
->If you use encrypted passwords, set the 'identifier:plaintext pass column' to 'NULL' (without the quotes). This is the default.</P
+>Can I get the benefits of a BDC with Samba?  Yes. The main reason for
+implementing a BDC is availability. If the PDC is a Samba machine,
+a second Samba machine can be set up to
+service logon requests whenever the PDC is down.</P
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN2616"
+NAME="AEN2315"
 ></A
->17.4. Getting non-column data from the table</H2
+>13.5. How do I set up a Samba BDC?</H2
+><P
+>Several things have to be done:</P
+><P
+></P
+><UL
+><LI
+><P
+>The domain SID has to be the same on the PDC and the BDC. This used to
+be stored in the file private/MACHINE.SID. This file is not created
+anymore since Samba 2.2.5 or even earlier. Nowadays the domain SID is
+stored in the file private/secrets.tdb. Simply copying the secrets.tdb
+from the PDC to the BDC does not work, as the BDC would
+generate a new SID for itself and override the domain SID with this
+new BDC SID.</P
+><P
+>To retrieve the domain SID from the PDC or an existing BDC and store it in the
+secrets.tdb, execute 'net rpc getsid' on the BDC.</P
+></LI
+><LI
+><P
+>The Unix user database has to be synchronized from the PDC to the
+BDC. This means that both the /etc/passwd and /etc/group have to be
+replicated from the PDC to the BDC. This can be done manually
+whenever changes are made, or the PDC is set up as a NIS master
+server and the BDC as a NIS slave server. To set up the BDC as a
+mere NIS client would not be enough, as the BDC would not be able to
+access its user database in case of a PDC failure.</P
+></LI
+><LI
+><P
+>The Samba password database in the file private/smbpasswd has to be
+replicated from the PDC to the BDC. This is a bit tricky, see the
+next section.</P
+></LI
+><LI
 ><P
->It is possible to have not all data in the database and making some 'constant'.</P
+>Any netlogon share has to be replicated from the PDC to the
+BDC. This can be done manually whenever login scripts are changed,
+or it can be done automatically together with the smbpasswd
+synchronization.</P
+></LI
+></UL
 ><P
->For example, you can set 'identifier:fullname column' to : 
-<B
-CLASS="COMMAND"
->CONCAT(First_name,' ',Sur_name)</B
-></P
+>Finally, the BDC has to be found by the workstations. This can be done
+by setting</P
 ><P
->Or, set 'identifier:workstations column' to :
-<B
-CLASS="COMMAND"
->NULL</B
+><PRE
+CLASS="PROGRAMLISTING"
+>workgroup = samba
+domain master = no
+domain logons = yes</PRE
 ></P
 ><P
->See the MySQL documentation for more language constructs.</P
-></DIV
-></DIV
-><DIV
-CLASS="CHAPTER"
-><HR><H1
-><A
-NAME="PDB-XML"
-></A
->Chapter 18. Passdb XML plugin</H1
+>in the [global]-section of the smb.conf of the BDC. This makes the BDC
+only register the name SAMBA#1c with the WINS server. This is no
+problem as the name SAMBA#1c is a NetBIOS group name that is meant to
+be registered by more than one machine. The parameter 'domain master =
+no' forces the BDC not to register SAMBA#1b which as a unique NetBIOS
+name is reserved for the Primary Domain Controller.</P
 ><DIV
-CLASS="SECT1"
-><H2
-CLASS="SECT1"
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
 ><A
-NAME="AEN2635"
+NAME="AEN2332"
 ></A
->18.1. Building</H2
+>13.5.1. How do I replicate the smbpasswd file?</H3
 ><P
->This module requires libxml2 to be installed.</P
+>Replication of the smbpasswd file is sensitive. It has to be done
+whenever changes to the SAM are made. Every user's password change is
+done in the smbpasswd file and has to be replicated to the BDC. So
+replicating the smbpasswd file very often is necessary.</P
 ><P
->To build pdb_xml, run: <B
-CLASS="COMMAND"
->make bin/pdb_xml.so</B
-> in 
-the directory <TT
-CLASS="FILENAME"
->source/</TT
->. </P
+>As the smbpasswd file contains plain text password equivalents, it
+must not be sent unencrypted over the wire. The best way to set up
+smbpasswd replication from the PDC to the BDC is to use the utility
+rsync. rsync can use ssh as a transport. ssh itself can be set up to
+accept *only* rsync transfer without requiring the user to type a
+password.</P
 ></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN2641"
-></A
->18.2. Usage</H2
-><P
->The usage of pdb_xml is pretty straightforward. To export data, use:
-
-<B
-CLASS="COMMAND"
->pdbedit -e plugin:/usr/lib/samba/pdb_xml.so:filename</B
->
-
-(where filename is the name of the file to put the data in)</P
-><P
->To import data, use:
-<B
-CLASS="COMMAND"
->pdbedit -i plugin:/usr/lib/samba/pdb_xml.so:filename -e current-pdb</B
->
-
-Where filename is the name to read the data from and current-pdb to put it in.</P
 ></DIV
 ></DIV
 ><DIV
@@ -13528,15 +11339,15 @@ CLASS="CHAPTER"
 ><A
 NAME="SAMBA-LDAP-HOWTO"
 ></A
->Chapter 19. Storing Samba's User/Machine Account information in an LDAP Directory</H1
+>Chapter 14. Storing Samba's User/Machine Account information in an LDAP Directory</H1
 ><DIV
 CLASS="SECT1"
 ><H2
 CLASS="SECT1"
 ><A
-NAME="AEN2664"
+NAME="AEN2353"
 ></A
->19.1. Purpose</H2
+>14.1. Purpose</H2
 ><P
 >This document describes how to use an LDAP directory for storing Samba user
 account information traditionally stored in the smbpasswd(5) file.  It is
@@ -13602,9 +11413,9 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN2684"
+NAME="AEN2373"
 ></A
->19.2. Introduction</H2
+>14.2. Introduction</H2
 ><P
 >Traditionally, when configuring <A
 HREF="smb.conf.5.html#ENCRYPTPASSWORDS"
@@ -13683,433 +11494,788 @@ an LDAP directory.  In reality, this is very easy to understand.  If you are
 comfortable with using an smbpasswd file, simply replace "smbpasswd" with
 "LDAP directory" in all the documentation.</P
 ><P
->There are a few points to stress about what the <TT
+>There are a few points to stress about what the <TT
+CLASS="PARAMETER"
+><I
+>--with-ldapsam</I
+></TT
+>
+does not provide.  The LDAP support referred to in the this documentation does not
+include:</P
+><P
+></P
+><UL
+><LI
+><P
+>A means of retrieving user account information from
+	an Windows 2000 Active Directory server.</P
+></LI
+><LI
+><P
+>A means of replacing /etc/passwd.</P
+></LI
+></UL
+><P
+>The second item can be accomplished by using LDAP NSS and PAM modules.  LGPL
+versions of these libraries can be obtained from PADL Software
+(<A
+HREF="http://www.padl.com/"
+TARGET="_top"
+>http://www.padl.com/</A
+>).  However,
+the details of configuring these packages are beyond the scope of this document.</P
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
+><A
+NAME="AEN2402"
+></A
+>14.3. Supported LDAP Servers</H2
+><P
+>The LDAP samdb code in 2.2.3 has been developed and tested using the OpenLDAP
+2.0 server and client libraries.  The same code should be able to work with
+Netscape's Directory Server and client SDK. However, due to lack of testing
+so far, there are bound to be compile errors and bugs.  These should not be
+hard to fix. If you are so inclined, please be sure to forward all patches to
+<A
+HREF="samba-patches@samba.org"
+TARGET="_top"
+>samba-patches@samba.org</A
+> and
+<A
+HREF="jerry@samba.org"
+TARGET="_top"
+>jerry@samba.org</A
+>.</P
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
+><A
+NAME="AEN2407"
+></A
+>14.4. Schema and Relationship to the RFC 2307 posixAccount</H2
+><P
+>Samba 2.2.3 includes the necessary schema file for OpenLDAP 2.0 in
+<TT
+CLASS="FILENAME"
+>examples/LDAP/samba.schema</TT
+>.  (Note that this schema
+file has been modified since the experimental support initially included
+in 2.2.2).  The sambaAccount objectclass is given here:</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>objectclass ( 1.3.1.5.1.4.1.7165.2.2.2 NAME 'sambaAccount' SUP top STRUCTURAL
+     DESC 'Samba Account'
+     MUST ( uid $ rid )
+     MAY  ( cn $ lmPassword $ ntPassword $ pwdLastSet $ logonTime $
+            logoffTime $ kickoffTime $ pwdCanChange $ pwdMustChange $ acctFlags $
+            displayName $ smbHome $ homeDrive $ scriptPath $ profilePath $
+            description $ userWorkstations $ primaryGroupID $ domain ))</PRE
+></P
+><P
+>The samba.schema file has been formatted for OpenLDAP 2.0.  The OID's are
+owned by the Samba Team and as such is legal to be openly published.
+If you translate the schema to be used with Netscape DS, please
+submit the modified schema file as a patch to <A
+HREF="jerry@samba.org"
+TARGET="_top"
+>jerry@samba.org</A
+></P
+><P
+>Just as the smbpasswd file is mean to store information which supplements a
+user's <TT
+CLASS="FILENAME"
+>/etc/passwd</TT
+> entry, so is the sambaAccount object
+meant to supplement the UNIX user account information.  A sambaAccount is a
+<TT
+CLASS="CONSTANT"
+>STRUCTURAL</TT
+> objectclass so it can be stored individually
+in the directory.  However, there are several fields (e.g. uid) which overlap
+with the posixAccount objectclass outlined in RFC2307.  This is by design.</P
+><P
+>In order to store all user account information (UNIX and Samba) in the directory,
+it is necessary to use the sambaAccount and posixAccount objectclasses in
+combination.  However, smbd will still obtain the user's UNIX account
+information via the standard C library calls (e.g. getpwnam(), et. al.).
+This means that the Samba server must also have the LDAP NSS library installed
+and functioning correctly.  This division of information makes it possible to
+store all Samba account information in LDAP, but still maintain UNIX account
+information in NIS while the network is transitioning to a full LDAP infrastructure.</P
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
+><A
+NAME="AEN2419"
+></A
+>14.5. Configuring Samba with LDAP</H2
+><DIV
+CLASS="SECT2"
+><H3
+CLASS="SECT2"
+><A
+NAME="AEN2421"
+></A
+>14.5.1. OpenLDAP configuration</H3
+><P
+>To include support for the sambaAccount object in an OpenLDAP directory
+server, first copy the samba.schema file to slapd's configuration directory.</P
+><P
+><TT
+CLASS="PROMPT"
+>root# </TT
+><B
+CLASS="COMMAND"
+>cp samba.schema /etc/openldap/schema/</B
+></P
+><P
+>Next, include the <TT
+CLASS="FILENAME"
+>samba.schema</TT
+> file in <TT
+CLASS="FILENAME"
+>slapd.conf</TT
+>.
+The sambaAccount object contains two attributes which depend upon other schema
+files.  The 'uid' attribute is defined in <TT
+CLASS="FILENAME"
+>cosine.schema</TT
+> and
+the 'displayName' attribute is defined in the <TT
+CLASS="FILENAME"
+>inetorgperson.schema</TT
+>
+file.  Both of these must be included before the <TT
+CLASS="FILENAME"
+>samba.schema</TT
+> file.</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>## /etc/openldap/slapd.conf
+
+## schema files (core.schema is required by default)
+include	           /etc/openldap/schema/core.schema
+
+## needed for sambaAccount
+include            /etc/openldap/schema/cosine.schema
+include            /etc/openldap/schema/inetorgperson.schema
+include            /etc/openldap/schema/samba.schema
+
+## uncomment this line if you want to support the RFC2307 (NIS) schema
+## include         /etc/openldap/schema/nis.schema
+
+....</PRE
+></P
+><P
+>It is recommended that you maintain some indices on some of the most usefull attributes,
+like in the following example, to speed up searches made on sambaAccount objectclasses
+(and possibly posixAccount and posixGroup as well).</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+># Indices to maintain
+## required by OpenLDAP 2.0
+index objectclass   eq
+
+## support pb_getsampwnam()
+index uid           pres,eq
+## support pdb_getsambapwrid()
+index rid           eq
+
+## uncomment these if you are storing posixAccount and
+## posixGroup entries in the directory as well
+##index uidNumber     eq
+##index gidNumber     eq
+##index cn            eq
+##index memberUid     eq</PRE
+></P
+></DIV
+><DIV
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
+><A
+NAME="AEN2438"
+></A
+>14.5.2. Configuring Samba</H3
+><P
+>The following parameters are available in smb.conf only with <TT
 CLASS="PARAMETER"
 ><I
 >--with-ldapsam</I
 ></TT
 >
-does not provide.  The LDAP support referred to in the this documentation does not
-include:</P
+was included with compiling Samba.</P
 ><P
 ></P
 ><UL
 ><LI
 ><P
->A means of retrieving user account information from
-	an Windows 2000 Active Directory server.</P
+><A
+HREF="smb.conf.5.html#LDAPSSL"
+TARGET="_top"
+>ldap ssl</A
+></P
 ></LI
 ><LI
 ><P
->A means of replacing /etc/passwd.</P
+><A
+HREF="smb.conf.5.html#LDAPSERVER"
+TARGET="_top"
+>ldap server</A
+></P
 ></LI
-></UL
+><LI
 ><P
->The second item can be accomplished by using LDAP NSS and PAM modules.  LGPL
-versions of these libraries can be obtained from PADL Software
-(<A
-HREF="http://www.padl.com/"
+><A
+HREF="smb.conf.5.html#LDAPADMINDN"
 TARGET="_top"
->http://www.padl.com/</A
->).  However,
-the details of configuring these packages are beyond the scope of this document.</P
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
+>ldap admin dn</A
+></P
+></LI
+><LI
+><P
 ><A
-NAME="AEN2713"
-></A
->19.3. Supported LDAP Servers</H2
+HREF="smb.conf.5.html#LDAPSUFFIX"
+TARGET="_top"
+>ldap suffix</A
+></P
+></LI
+><LI
 ><P
->The LDAP samdb code in 2.2.3 has been developed and tested using the OpenLDAP
-2.0 server and client libraries.  The same code should be able to work with
-Netscape's Directory Server and client SDK. However, due to lack of testing
-so far, there are bound to be compile errors and bugs.  These should not be
-hard to fix. If you are so inclined, please be sure to forward all patches to
-<A
-HREF="samba-patches@samba.org"
+><A
+HREF="smb.conf.5.html#LDAPFILTER"
 TARGET="_top"
->samba-patches@samba.org</A
-> and
-<A
-HREF="jerry@samba.org"
+>ldap filter</A
+></P
+></LI
+><LI
+><P
+><A
+HREF="smb.conf.5.html#LDAPPORT"
 TARGET="_top"
->jerry@samba.org</A
->.</P
+>ldap port</A
+></P
+></LI
+></UL
+><P
+>These are described in the <A
+HREF="smb.conf.5.html"
+TARGET="_top"
+>smb.conf(5)</A
+> man
+page and so will not be repeated here.  However, a sample smb.conf file for
+use with an LDAP directory could appear as</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>## /usr/local/samba/lib/smb.conf
+[global]
+     security = user
+     encrypt passwords = yes
+
+     netbios name = TASHTEGO
+     workgroup = NARNIA
+
+     # ldap related parameters
+
+     # define the DN to use when binding to the directory servers
+     # The password for this DN is not stored in smb.conf.  Rather it
+     # must be set by using 'smbpasswd -w <TT
+CLASS="REPLACEABLE"
+><I
+>secretpw</I
+></TT
+>' to store the
+     # passphrase in the secrets.tdb file.  If the "ldap admin dn" values
+     # changes, this password will need to be reset.
+     ldap admin dn = "cn=Samba Manager,ou=people,dc=samba,dc=org"
+
+     #  specify the LDAP server's hostname (defaults to locahost)
+     ldap server = ahab.samba.org
+
+     # Define the SSL option when connecting to the directory
+     # ('off', 'start tls', or 'on' (default))
+     ldap ssl = start tls
+
+     # define the port to use in the LDAP session (defaults to 636 when
+     # "ldap ssl = on")
+     ldap port = 389
+
+     # specify the base DN to use when searching the directory
+     ldap suffix = "ou=people,dc=samba,dc=org"
+
+     # generally the default ldap search filter is ok
+     # ldap filter = "(&amp;(uid=%u)(objectclass=sambaAccount))"</PRE
+></P
+></DIV
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN2718"
+NAME="AEN2466"
 ></A
->19.4. Schema and Relationship to the RFC 2307 posixAccount</H2
-><P
->Samba 2.2.3 includes the necessary schema file for OpenLDAP 2.0 in
-<TT
-CLASS="FILENAME"
->examples/LDAP/samba.schema</TT
->.  (Note that this schema
-file has been modified since the experimental support initially included
-in 2.2.2).  The sambaAccount objectclass is given here:</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->objectclass ( 1.3.1.5.1.4.1.7165.2.2.2 NAME 'sambaAccount' SUP top STRUCTURAL
-     DESC 'Samba Account'
-     MUST ( uid $ rid )
-     MAY  ( cn $ lmPassword $ ntPassword $ pwdLastSet $ logonTime $
-            logoffTime $ kickoffTime $ pwdCanChange $ pwdMustChange $ acctFlags $
-            displayName $ smbHome $ homeDrive $ scriptPath $ profilePath $
-            description $ userWorkstations $ primaryGroupID $ domain ))</PRE
-></P
+>14.6. Accounts and Groups management</H2
 ><P
->The samba.schema file has been formatted for OpenLDAP 2.0.  The OID's are
-owned by the Samba Team and as such is legal to be openly published.
-If you translate the schema to be used with Netscape DS, please
-submit the modified schema file as a patch to <A
-HREF="jerry@samba.org"
-TARGET="_top"
->jerry@samba.org</A
-></P
+>As users accounts are managed thru the sambaAccount objectclass, you should
+modify you existing administration tools to deal with sambaAccount attributes.</P
 ><P
->Just as the smbpasswd file is mean to store information which supplements a
-user's <TT
-CLASS="FILENAME"
->/etc/passwd</TT
-> entry, so is the sambaAccount object
-meant to supplement the UNIX user account information.  A sambaAccount is a
-<TT
-CLASS="CONSTANT"
->STRUCTURAL</TT
-> objectclass so it can be stored individually
-in the directory.  However, there are several fields (e.g. uid) which overlap
-with the posixAccount objectclass outlined in RFC2307.  This is by design.</P
+>Machines accounts are managed with the sambaAccount objectclass, just
+like users accounts. However, it's up to you to stored thoses accounts
+in a different tree of you LDAP namespace: you should use
+"ou=Groups,dc=plainjoe,dc=org" to store groups and
+"ou=People,dc=plainjoe,dc=org" to store users. Just configure your
+NSS and PAM accordingly (usually, in the /etc/ldap.conf configuration
+file).</P
 ><P
->In order to store all user account information (UNIX and Samba) in the directory,
-it is necessary to use the sambaAccount and posixAccount objectclasses in
-combination.  However, smbd will still obtain the user's UNIX account
-information via the standard C library calls (e.g. getpwnam(), et. al.).
-This means that the Samba server must also have the LDAP NSS library installed
-and functioning correctly.  This division of information makes it possible to
-store all Samba account information in LDAP, but still maintain UNIX account
-information in NIS while the network is transitioning to a full LDAP infrastructure.</P
+>In Samba release 2.2.3, the group management system is based on posix
+groups. This meand that Samba make usage of the posixGroup objectclass.
+For now, there is no NT-like group system management (global and local
+groups).</P
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN2730"
-></A
->19.5. Configuring Samba with LDAP</H2
-><DIV
-CLASS="SECT2"
-><H3
-CLASS="SECT2"
-><A
-NAME="AEN2732"
+NAME="AEN2471"
 ></A
->19.5.1. OpenLDAP configuration</H3
+>14.7. Security and sambaAccount</H2
 ><P
->To include support for the sambaAccount object in an OpenLDAP directory
-server, first copy the samba.schema file to slapd's configuration directory.</P
+>There are two important points to remember when discussing the security
+of sambaAccount entries in the directory.</P
 ><P
-><TT
-CLASS="PROMPT"
->root# </TT
-><B
+></P
+><UL
+><LI
+><P
+><SPAN
+CLASS="emphasis"
+><I
+CLASS="EMPHASIS"
+>Never</I
+></SPAN
+> retrieve the lmPassword or
+	ntPassword attribute values over an unencrypted LDAP session.</P
+></LI
+><LI
+><P
+><SPAN
+CLASS="emphasis"
+><I
+CLASS="EMPHASIS"
+>Never</I
+></SPAN
+> allow non-admin users to
+	view the lmPassword or ntPassword attribute values.</P
+></LI
+></UL
+><P
+>These password hashes are clear text equivalents and can be used to impersonate
+the user without deriving the original clear text strings.  For more information
+on the details of LM/NT password hashes, refer to the <A
+HREF="ENCRYPTION.html"
+TARGET="_top"
+>ENCRYPTION chapter</A
+> of the Samba-HOWTO-Collection.</P
+><P
+>To remedy the first security issue, the "ldap ssl" smb.conf parameter defaults
+to require an encrypted session (<B
+CLASS="COMMAND"
+>ldap ssl = on</B
+>) using
+the default port of 636
+when contacting the directory server.  When using an OpenLDAP 2.0 server, it
+is possible to use the use the StartTLS LDAP extended  operation in the place of
+LDAPS.  In either case, you are strongly discouraged to disable this security
+(<B
 CLASS="COMMAND"
->cp samba.schema /etc/openldap/schema/</B
-></P
+>ldap ssl = off</B
+>).</P
 ><P
->Next, include the <TT
-CLASS="FILENAME"
->samba.schema</TT
-> file in <TT
+>Note that the LDAPS protocol is deprecated in favor of the LDAPv3 StartTLS
+extended operation.  However, the OpenLDAP library still provides support for
+the older method of securing communication between clients and servers.</P
+><P
+>The second security precaution is to prevent non-administrative users from
+harvesting password hashes from the directory.  This can be done using the
+following ACL in <TT
 CLASS="FILENAME"
 >slapd.conf</TT
->.
-The sambaAccount object contains two attributes which depend upon other schema
-files.  The 'uid' attribute is defined in <TT
-CLASS="FILENAME"
->cosine.schema</TT
-> and
-the 'displayName' attribute is defined in the <TT
-CLASS="FILENAME"
->inetorgperson.schema</TT
->
-file.  Both of these must be included before the <TT
-CLASS="FILENAME"
->samba.schema</TT
-> file.</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->## /etc/openldap/slapd.conf
-
-## schema files (core.schema is required by default)
-include	           /etc/openldap/schema/core.schema
-
-## needed for sambaAccount
-include            /etc/openldap/schema/cosine.schema
-include            /etc/openldap/schema/inetorgperson.schema
-include            /etc/openldap/schema/samba.schema
-
-## uncomment this line if you want to support the RFC2307 (NIS) schema
-## include         /etc/openldap/schema/nis.schema
-
-....</PRE
-></P
-><P
->It is recommended that you maintain some indices on some of the most usefull attributes,
-like in the following example, to speed up searches made on sambaAccount objectclasses
-(and possibly posixAccount and posixGroup as well).</P
+>:</P
 ><P
 ><PRE
 CLASS="PROGRAMLISTING"
-># Indices to maintain
-## required by OpenLDAP 2.0
-index objectclass   eq
-
-## support pb_getsampwnam()
-index uid           pres,eq
-## support pdb_getsambapwrid()
-index rid           eq
-
-## uncomment these if you are storing posixAccount and
-## posixGroup entries in the directory as well
-##index uidNumber     eq
-##index gidNumber     eq
-##index cn            eq
-##index memberUid     eq</PRE
+>## allow the "ldap admin dn" access, but deny everyone else
+access to attrs=lmPassword,ntPassword
+     by dn="cn=Samba Admin,ou=people,dc=plainjoe,dc=org" write
+     by * none</PRE
 ></P
 ></DIV
 ><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
 ><A
-NAME="AEN2749"
+NAME="AEN2491"
 ></A
->19.5.2. Configuring Samba</H3
+>14.8. LDAP specials attributes for sambaAccounts</H2
 ><P
->The following parameters are available in smb.conf only with <TT
-CLASS="PARAMETER"
-><I
->--with-ldapsam</I
-></TT
->
-was included with compiling Samba.</P
+>The sambaAccount objectclass is composed of the following attributes:</P
 ><P
 ></P
 ><UL
 ><LI
 ><P
-><A
-HREF="smb.conf.5.html#LDAPSSL"
-TARGET="_top"
->ldap ssl</A
-></P
+><TT
+CLASS="CONSTANT"
+>lmPassword</TT
+>: the LANMAN password 16-byte hash stored as a character
+	representation of a hexidecimal string.</P
 ></LI
 ><LI
 ><P
-><A
-HREF="smb.conf.5.html#LDAPSERVER"
-TARGET="_top"
->ldap server</A
-></P
+><TT
+CLASS="CONSTANT"
+>ntPassword</TT
+>: the NT password hash 16-byte stored as a character
+	representation of a hexidecimal string.</P
 ></LI
 ><LI
 ><P
-><A
-HREF="smb.conf.5.html#LDAPADMINDN"
-TARGET="_top"
->ldap admin dn</A
-></P
+><TT
+CLASS="CONSTANT"
+>pwdLastSet</TT
+>: The integer time in seconds since 1970 when the
+	<TT
+CLASS="CONSTANT"
+>lmPassword</TT
+> and <TT
+CLASS="CONSTANT"
+>ntPassword</TT
+> attributes were last set.
+	</P
 ></LI
 ><LI
 ><P
-><A
-HREF="smb.conf.5.html#LDAPSUFFIX"
-TARGET="_top"
->ldap suffix</A
-></P
+><TT
+CLASS="CONSTANT"
+>acctFlags</TT
+>: string of 11 characters surrounded by square brackets []
+	representing account flags such as U (user), W(workstation), X(no password expiration), and
+	D(disabled).</P
 ></LI
 ><LI
 ><P
-><A
-HREF="smb.conf.5.html#LDAPFILTER"
+><TT
+CLASS="CONSTANT"
+>logonTime</TT
+>: Integer value currently unused</P
+></LI
+><LI
+><P
+><TT
+CLASS="CONSTANT"
+>logoffTime</TT
+>: Integer value currently unused</P
+></LI
+><LI
+><P
+><TT
+CLASS="CONSTANT"
+>kickoffTime</TT
+>: Integer value currently unused</P
+></LI
+><LI
+><P
+><TT
+CLASS="CONSTANT"
+>pwdCanChange</TT
+>: Integer value currently unused</P
+></LI
+><LI
+><P
+><TT
+CLASS="CONSTANT"
+>pwdMustChange</TT
+>: Integer value currently unused</P
+></LI
+><LI
+><P
+><TT
+CLASS="CONSTANT"
+>homeDrive</TT
+>: specifies the drive letter to which to map the
+	UNC path specified by homeDirectory. The drive letter must be specified in the form "X:"
+	where X is the letter of the drive to map. Refer to the "logon drive" parameter in the
+	smb.conf(5) man page for more information.</P
+></LI
+><LI
+><P
+><TT
+CLASS="CONSTANT"
+>scriptPath</TT
+>: The scriptPath property specifies the path of
+	the user's logon script, .CMD, .EXE, or .BAT file. The string can be null. The path
+	is relative to the netlogon share.  Refer to the "logon script" parameter in the
+	smb.conf(5) man page for more information.</P
+></LI
+><LI
+><P
+><TT
+CLASS="CONSTANT"
+>profilePath</TT
+>: specifies a path to the user's profile.
+	This value can be a null string, a local absolute path, or a UNC path.  Refer to the
+	"logon path" parameter in the smb.conf(5) man page for more information.</P
+></LI
+><LI
+><P
+><TT
+CLASS="CONSTANT"
+>smbHome</TT
+>: The homeDirectory property specifies the path of
+	the home directory for the user. The string can be null. If homeDrive is set and specifies
+	a drive letter, homeDirectory should be a UNC path. The path must be a network
+	UNC path of the form \\server\share\directory. This value can be a null string.
+	Refer to the "logon home" parameter in the smb.conf(5) man page for more information.
+	</P
+></LI
+><LI
+><P
+><TT
+CLASS="CONSTANT"
+>userWorkstation</TT
+>: character string value currently unused.
+	</P
+></LI
+><LI
+><P
+><TT
+CLASS="CONSTANT"
+>rid</TT
+>: the integer representation of the user's relative identifier
+	(RID).</P
+></LI
+><LI
+><P
+><TT
+CLASS="CONSTANT"
+>primaryGroupID</TT
+>: the relative identifier (RID) of the primary group
+	of the user.</P
+></LI
+></UL
+><P
+>The majority of these parameters are only used when Samba is acting as a PDC of
+a domain (refer to the <A
+HREF="Samba-PDC-HOWTO.html"
 TARGET="_top"
->ldap filter</A
+>Samba-PDC-HOWTO</A
+> for details on
+how to configure Samba as a Primary Domain Controller). The following four attributes
+are only stored with the sambaAccount entry if the values are non-default values:</P
+><P
 ></P
+><UL
+><LI
+><P
+>smbHome</P
+></LI
+><LI
+><P
+>scriptPath</P
 ></LI
 ><LI
 ><P
-><A
-HREF="smb.conf.5.html#LDAPPORT"
-TARGET="_top"
->ldap port</A
-></P
+>logonPath</P
 ></LI
-></UL
+><LI
 ><P
->These are described in the <A
-HREF="smb.conf.5.html"
-TARGET="_top"
->smb.conf(5)</A
-> man
-page and so will not be repeated here.  However, a sample smb.conf file for
-use with an LDAP directory could appear as</P
+>homeDrive</P
+></LI
+></UL
 ><P
-><PRE
-CLASS="PROGRAMLISTING"
->## /usr/local/samba/lib/smb.conf
-[global]
-     security = user
-     encrypt passwords = yes
-
-     netbios name = TASHTEGO
-     workgroup = NARNIA
-
-     # ldap related parameters
-
-     # define the DN to use when binding to the directory servers
-     # The password for this DN is not stored in smb.conf.  Rather it
-     # must be set by using 'smbpasswd -w <TT
-CLASS="REPLACEABLE"
+>These attributes are only stored with the sambaAccount entry if
+the values are non-default values.  For example, assume TASHTEGO has now been
+configured as a PDC and that <B
+CLASS="COMMAND"
+>logon home = \\%L\%u</B
+> was defined in
+its <TT
+CLASS="FILENAME"
+>smb.conf</TT
+> file. When a user named "becky" logons to the domain,
+the <TT
+CLASS="PARAMETER"
 ><I
->secretpw</I
+>logon home</I
 ></TT
->' to store the
-     # passphrase in the secrets.tdb file.  If the "ldap admin dn" values
-     # changes, this password will need to be reset.
-     ldap admin dn = "cn=Samba Manager,ou=people,dc=samba,dc=org"
-
-     #  specify the LDAP server's hostname (defaults to locahost)
-     ldap server = ahab.samba.org
-
-     # Define the SSL option when connecting to the directory
-     # ('off', 'start tls', or 'on' (default))
-     ldap ssl = start tls
-
-     # define the port to use in the LDAP session (defaults to 636 when
-     # "ldap ssl = on")
-     ldap port = 389
-
-     # specify the base DN to use when searching the directory
-     ldap suffix = "ou=people,dc=samba,dc=org"
-
-     # generally the default ldap search filter is ok
-     # ldap filter = "(&amp;(uid=%u)(objectclass=sambaAccount))"</PRE
-></P
-></DIV
+> string is expanded to \\TASHTEGO\becky.
+If the smbHome attribute exists in the entry "uid=becky,ou=people,dc=samba,dc=org",
+this value is used.  However, if this attribute does not exist, then the value
+of the <TT
+CLASS="PARAMETER"
+><I
+>logon home</I
+></TT
+> parameter is used in its place.  Samba
+will only write the attribute value to the directory entry is the value is
+something other than the default (e.g. \\MOBY\becky).</P
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN2777"
+NAME="AEN2561"
 ></A
->19.6. Accounts and Groups management</H2
+>14.9. Example LDIF Entries for a sambaAccount</H2
 ><P
->As users accounts are managed thru the sambaAccount objectclass, you should
-modify you existing administration tools to deal with sambaAccount attributes.</P
+>The following is a working LDIF with the inclusion of the posixAccount objectclass:</P
 ><P
->Machines accounts are managed with the sambaAccount objectclass, just
-like users accounts. However, it's up to you to stored thoses accounts
-in a different tree of you LDAP namespace: you should use
-"ou=Groups,dc=plainjoe,dc=org" to store groups and
-"ou=People,dc=plainjoe,dc=org" to store users. Just configure your
-NSS and PAM accordingly (usually, in the /etc/ldap.conf configuration
-file).</P
+><PRE
+CLASS="PROGRAMLISTING"
+>dn: uid=guest2, ou=people,dc=plainjoe,dc=org
+ntPassword: 878D8014606CDA29677A44EFA1353FC7
+pwdMustChange: 2147483647
+primaryGroupID: 1201
+lmPassword: 552902031BEDE9EFAAD3B435B51404EE
+pwdLastSet: 1010179124
+logonTime: 0
+objectClass: sambaAccount
+uid: guest2
+kickoffTime: 2147483647
+acctFlags: [UX         ]
+logoffTime: 2147483647
+rid: 19006
+pwdCanChange: 0</PRE
+></P
 ><P
->In Samba release 2.2.3, the group management system is based on posix
-groups. This meand that Samba make usage of the posixGroup objectclass.
-For now, there is no NT-like group system management (global and local
-groups).</P
+>The following is an LDIF entry for using both the sambaAccount and
+posixAccount objectclasses:</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>dn: uid=gcarter, ou=people,dc=plainjoe,dc=org
+logonTime: 0
+displayName: Gerald Carter
+lmPassword: 552902031BEDE9EFAAD3B435B51404EE
+primaryGroupID: 1201
+objectClass: posixAccount
+objectClass: sambaAccount
+acctFlags: [UX         ]
+userPassword: {crypt}BpM2ej8Rkzogo
+uid: gcarter
+uidNumber: 9000
+cn: Gerald Carter
+loginShell: /bin/bash
+logoffTime: 2147483647
+gidNumber: 100
+kickoffTime: 2147483647
+pwdLastSet: 1010179230
+rid: 19000
+homeDirectory: /home/tashtego/gcarter
+pwdCanChange: 0
+pwdMustChange: 2147483647
+ntPassword: 878D8014606CDA29677A44EFA1353FC7</PRE
+></P
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN2782"
+NAME="AEN2569"
 ></A
->19.7. Security and sambaAccount</H2
-><P
->There are two important points to remember when discussing the security
-of sambaAccount entries in the directory.</P
-><P
-></P
-><UL
-><LI
-><P
-><SPAN
-CLASS="emphasis"
-><I
-CLASS="EMPHASIS"
->Never</I
-></SPAN
-> retrieve the lmPassword or
-	ntPassword attribute values over an unencrypted LDAP session.</P
-></LI
-><LI
-><P
-><SPAN
-CLASS="emphasis"
-><I
-CLASS="EMPHASIS"
->Never</I
-></SPAN
-> allow non-admin users to
-	view the lmPassword or ntPassword attribute values.</P
-></LI
-></UL
+>14.10. Comments</H2
 ><P
->These password hashes are clear text equivalents and can be used to impersonate
-the user without deriving the original clear text strings.  For more information
-on the details of LM/NT password hashes, refer to the <A
-HREF="ENCRYPTION.html"
+>Please mail all comments regarding this HOWTO to <A
+HREF="mailto:jerry@samba.org"
 TARGET="_top"
->ENCRYPTION chapter</A
-> of the Samba-HOWTO-Collection.</P
+>jerry@samba.org</A
+>.  This documents was
+last updated to reflect the Samba 2.2.3 release.&#13;</P
+></DIV
+></DIV
+><DIV
+CLASS="CHAPTER"
+><HR><H1
+><A
+NAME="ADS"
+></A
+>Chapter 15. Using samba 3.0 with ActiveDirectory support</H1
 ><P
->To remedy the first security issue, the "ldap ssl" smb.conf parameter defaults
-to require an encrypted session (<B
-CLASS="COMMAND"
->ldap ssl = on</B
->) using
-the default port of 636
-when contacting the directory server.  When using an OpenLDAP 2.0 server, it
-is possible to use the use the StartTLS LDAP extended  operation in the place of
-LDAPS.  In either case, you are strongly discouraged to disable this security
-(<B
-CLASS="COMMAND"
->ldap ssl = off</B
->).</P
+>This is a VERY ROUGH guide to setting up the current (November 2001)
+pre-alpha version of Samba 3.0 with kerberos authentication against a
+Windows2000 KDC. The procedures listed here are likely to change as
+the code develops.</P
 ><P
->Note that the LDAPS protocol is deprecated in favor of the LDAPv3 StartTLS
-extended operation.  However, the OpenLDAP library still provides support for
-the older method of securing communication between clients and servers.</P
+>Pieces you need before you begin:
+<P
+></P
+><TABLE
+BORDER="0"
+><TBODY
+><TR
+><TD
+>a Windows 2000 server.</TD
+></TR
+><TR
+><TD
+>samba 3.0 or higher.</TD
+></TR
+><TR
+><TD
+>the MIT kerberos development libraries (either install from the above sources or use a package). The heimdal libraries will not work.</TD
+></TR
+><TR
+><TD
+>the OpenLDAP development libraries.</TD
+></TR
+></TBODY
+></TABLE
 ><P
->The second security precaution is to prevent non-administrative users from
-harvesting password hashes from the directory.  This can be done using the
-following ACL in <TT
-CLASS="FILENAME"
->slapd.conf</TT
->:</P
+></P
+></P
+><DIV
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
+><A
+NAME="AEN2587"
+></A
+>15.1. Installing the required packages for Debian</H2
+><P
+>On Debian you need to install the following packages:
+<P
+></P
+><TABLE
+BORDER="0"
+><TBODY
+><TR
+><TD
+>libkrb5-dev</TD
+></TR
+><TR
+><TD
+>krb5-user</TD
+></TR
+></TBODY
+></TABLE
 ><P
-><PRE
-CLASS="PROGRAMLISTING"
->## allow the "ldap admin dn" access, but deny everyone else
-access to attrs=lmPassword,ntPassword
-     by dn="cn=Samba Admin,ou=people,dc=plainjoe,dc=org" write
-     by * none</PRE
+></P
 ></P
 ></DIV
 ><DIV
@@ -14117,1540 +12283,1467 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN2802"
+NAME="AEN2593"
 ></A
->19.8. LDAP specials attributes for sambaAccounts</H2
+>15.2. Installing the required packages for RedHat</H2
 ><P
->The sambaAccount objectclass is composed of the following attributes:</P
+>On RedHat this means you should have at least: 
+<P
+></P
+><TABLE
+BORDER="0"
+><TBODY
+><TR
+><TD
+>krb5-workstation (for kinit)</TD
+></TR
+><TR
+><TD
+>krb5-libs (for linking with)</TD
+></TR
+><TR
+><TD
+>krb5-devel (because you are compiling from source)</TD
+></TR
+></TBODY
+></TABLE
 ><P
 ></P
-><UL
-><LI
+></P
 ><P
-><TT
-CLASS="CONSTANT"
->lmPassword</TT
->: the LANMAN password 16-byte hash stored as a character
-	representation of a hexidecimal string.</P
-></LI
-><LI
+>in addition to the standard development environment.</P
 ><P
-><TT
-CLASS="CONSTANT"
->ntPassword</TT
->: the NT password hash 16-byte stored as a character
-	representation of a hexidecimal string.</P
-></LI
-><LI
+>Note that these are not standard on a RedHat install, and you may need 
+to get them off CD2.</P
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
+><A
+NAME="AEN2602"
+></A
+>15.3. Compile Samba</H2
 ><P
-><TT
-CLASS="CONSTANT"
->pwdLastSet</TT
->: The integer time in seconds since 1970 when the
-	<TT
-CLASS="CONSTANT"
->lmPassword</TT
-> and <TT
-CLASS="CONSTANT"
->ntPassword</TT
-> attributes were last set.
-	</P
-></LI
-><LI
+>If your kerberos libraries are in a non-standard location then
+  remember to add the configure option --with-krb5=DIR.</P
 ><P
-><TT
-CLASS="CONSTANT"
->acctFlags</TT
->: string of 11 characters surrounded by square brackets []
-	representing account flags such as U (user), W(workstation), X(no password expiration), and
-	D(disabled).</P
-></LI
-><LI
+>After you run configure make sure that include/config.h contains 
+  lines like this:</P
 ><P
-><TT
-CLASS="CONSTANT"
->logonTime</TT
->: Integer value currently unused</P
-></LI
-><LI
+><PRE
+CLASS="PROGRAMLISTING"
+>#define HAVE_KRB5 1
+#define HAVE_LDAP 1</PRE
+></P
 ><P
-><TT
-CLASS="CONSTANT"
->logoffTime</TT
->: Integer value currently unused</P
-></LI
-><LI
+>If it doesn't then configure did not find your krb5 libraries or
+  your ldap libraries. Look in config.log to figure out why and fix
+  it.</P
 ><P
-><TT
-CLASS="CONSTANT"
->kickoffTime</TT
->: Integer value currently unused</P
-></LI
-><LI
+>Then compile and install Samba as usual. You must use at least the
+  following 3 options in smb.conf:</P
 ><P
-><TT
-CLASS="CONSTANT"
->pwdCanChange</TT
->: Integer value currently unused</P
-></LI
-><LI
+><PRE
+CLASS="PROGRAMLISTING"
+>  realm = YOUR.KERBEROS.REALM
+  ads server = your.kerberos.server
+  security = ADS
+  encrypt passwords = yes</PRE
+></P
 ><P
-><TT
-CLASS="CONSTANT"
->pwdMustChange</TT
->: Integer value currently unused</P
-></LI
-><LI
+>Strictly speaking, you can omit the realm name and you can use an IP
+  address for the ads server. In that case Samba will auto-detect these.</P
 ><P
-><TT
-CLASS="CONSTANT"
->homeDrive</TT
->: specifies the drive letter to which to map the
-	UNC path specified by homeDirectory. The drive letter must be specified in the form "X:"
-	where X is the letter of the drive to map. Refer to the "logon drive" parameter in the
-	smb.conf(5) man page for more information.</P
-></LI
-><LI
+>You do *not* need a smbpasswd file, although it won't do any harm
+  and if you have one then Samba will be able to fall back to normal
+  password security for older clients. I expect that the above
+  required options will change soon when we get better active
+  directory integration.</P
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
+><A
+NAME="AEN2614"
+></A
+>15.4. Setup your /etc/krb5.conf</H2
 ><P
-><TT
-CLASS="CONSTANT"
->scriptPath</TT
->: The scriptPath property specifies the path of
-	the user's logon script, .CMD, .EXE, or .BAT file. The string can be null. The path
-	is relative to the netlogon share.  Refer to the "logon script" parameter in the
-	smb.conf(5) man page for more information.</P
-></LI
-><LI
+>The minimal configuration for krb5.conf is:</P
 ><P
-><TT
-CLASS="CONSTANT"
->profilePath</TT
->: specifies a path to the user's profile.
-	This value can be a null string, a local absolute path, or a UNC path.  Refer to the
-	"logon path" parameter in the smb.conf(5) man page for more information.</P
-></LI
-><LI
+><PRE
+CLASS="PROGRAMLISTING"
+>	[realms]
+    YOUR.KERBEROS.REALM = {
+	kdc = your.kerberos.server
+    }</PRE
+></P
 ><P
-><TT
-CLASS="CONSTANT"
->smbHome</TT
->: The homeDirectory property specifies the path of
-	the home directory for the user. The string can be null. If homeDrive is set and specifies
-	a drive letter, homeDirectory should be a UNC path. The path must be a network
-	UNC path of the form \\server\share\directory. This value can be a null string.
-	Refer to the "logon home" parameter in the smb.conf(5) man page for more information.
-	</P
-></LI
-><LI
+>Test your config by doing a "kinit USERNAME@REALM" and making sure that
+  your password is accepted by the Win2000 KDC. </P
 ><P
-><TT
-CLASS="CONSTANT"
->userWorkstation</TT
->: character string value currently unused.
-	</P
-></LI
-><LI
+>NOTE: The realm must be uppercase. </P
 ><P
-><TT
-CLASS="CONSTANT"
->rid</TT
->: the integer representation of the user's relative identifier
-	(RID).</P
-></LI
-><LI
+>You also must ensure that you can do a reverse DNS lookup on the IP
+address of your KDC. Also, the name that this reverse lookup maps to
+must either be the netbios name of the KDC (ie. the hostname with no
+domain attached) or it can alternatively be the netbios name
+followed by the realm. </P
 ><P
-><TT
-CLASS="CONSTANT"
->primaryGroupID</TT
->: the relative identifier (RID) of the primary group
-	of the user.</P
-></LI
-></UL
+>The easiest way to ensure you get this right is to add a /etc/hosts
+entry mapping the IP address of your KDC to its netbios name. If you
+don't get this right then you will get a "local error" when you try
+to join the realm.</P
 ><P
->The majority of these parameters are only used when Samba is acting as a PDC of
-a domain (refer to the <A
-HREF="Samba-PDC-HOWTO.html"
-TARGET="_top"
->Samba-PDC-HOWTO</A
-> for details on
-how to configure Samba as a Primary Domain Controller). The following four attributes
-are only stored with the sambaAccount entry if the values are non-default values:</P
+>If all you want is kerberos support in smbclient then you can skip
+straight to step 5 now. Step 3 is only needed if you want kerberos
+support in smbd.</P
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
+><A
+NAME="AEN2624"
+></A
+>15.5. Create the computer account</H2
 ><P
-></P
-><UL
-><LI
+>Do a "kinit" as a user that has authority to change arbitrary
+passwords on the KDC ("Administrator" is a good choice). Then as a
+user that has write permission on the Samba private directory
+(usually root) run:
+<B
+CLASS="COMMAND"
+>net ads join</B
+></P
+><DIV
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
+><A
+NAME="AEN2628"
+></A
+>15.5.1. Possible errors</H3
 ><P
->smbHome</P
-></LI
-><LI
 ><P
->scriptPath</P
-></LI
-><LI
+></P
+><DIV
+CLASS="VARIABLELIST"
+><DL
+><DT
+>"bash: kinit: command not found"</DT
+><DD
 ><P
->logonPath</P
-></LI
-><LI
+>kinit is in the krb5-workstation RPM on RedHat systems, and is in /usr/kerberos/bin, so it won't be in the path until you log in again (or open a new terminal)</P
+></DD
+><DT
+>"ADS support not compiled in"</DT
+><DD
 ><P
->homeDrive</P
-></LI
-></UL
+>Samba must be reconfigured (remove config.cache) and recompiled (make clean all install) after the kerberos libs and headers are installed.</P
+></DD
+></DL
+></DIV
+></P
+></DIV
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
+><A
+NAME="AEN2640"
+></A
+>15.6. Test your server setup</H2
 ><P
->These attributes are only stored with the sambaAccount entry if
-the values are non-default values.  For example, assume TASHTEGO has now been
-configured as a PDC and that <B
+>On a Windows 2000 client try <B
 CLASS="COMMAND"
->logon home = \\%L\%u</B
-> was defined in
-its <TT
-CLASS="FILENAME"
->smb.conf</TT
-> file. When a user named "becky" logons to the domain,
-the <TT
-CLASS="PARAMETER"
-><I
->logon home</I
-></TT
-> string is expanded to \\TASHTEGO\becky.
-If the smbHome attribute exists in the entry "uid=becky,ou=people,dc=samba,dc=org",
-this value is used.  However, if this attribute does not exist, then the value
-of the <TT
-CLASS="PARAMETER"
-><I
->logon home</I
-></TT
-> parameter is used in its place.  Samba
-will only write the attribute value to the directory entry is the value is
-something other than the default (e.g. \\MOBY\becky).</P
+>net use * \\server\share</B
+>. You should
+be logged in with kerberos without needing to know a password. If
+this fails then run <B
+CLASS="COMMAND"
+>klist tickets</B
+>. Did you get a ticket for the
+server? Does it have an encoding type of DES-CBC-MD5 ? </P
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN2872"
+NAME="AEN2645"
 ></A
->19.9. Example LDIF Entries for a sambaAccount</H2
-><P
->The following is a working LDIF with the inclusion of the posixAccount objectclass:</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->dn: uid=guest2, ou=people,dc=plainjoe,dc=org
-ntPassword: 878D8014606CDA29677A44EFA1353FC7
-pwdMustChange: 2147483647
-primaryGroupID: 1201
-lmPassword: 552902031BEDE9EFAAD3B435B51404EE
-pwdLastSet: 1010179124
-logonTime: 0
-objectClass: sambaAccount
-uid: guest2
-kickoffTime: 2147483647
-acctFlags: [UX         ]
-logoffTime: 2147483647
-rid: 19006
-pwdCanChange: 0</PRE
-></P
-><P
->The following is an LDIF entry for using both the sambaAccount and
-posixAccount objectclasses:</P
+>15.7. Testing with smbclient</H2
 ><P
-><PRE
-CLASS="PROGRAMLISTING"
->dn: uid=gcarter, ou=people,dc=plainjoe,dc=org
-logonTime: 0
-displayName: Gerald Carter
-lmPassword: 552902031BEDE9EFAAD3B435B51404EE
-primaryGroupID: 1201
-objectClass: posixAccount
-objectClass: sambaAccount
-acctFlags: [UX         ]
-userPassword: {crypt}BpM2ej8Rkzogo
-uid: gcarter
-uidNumber: 9000
-cn: Gerald Carter
-loginShell: /bin/bash
-logoffTime: 2147483647
-gidNumber: 100
-kickoffTime: 2147483647
-pwdLastSet: 1010179230
-rid: 19000
-homeDirectory: /home/tashtego/gcarter
-pwdCanChange: 0
-pwdMustChange: 2147483647
-ntPassword: 878D8014606CDA29677A44EFA1353FC7</PRE
-></P
+>On your Samba server try to login to a Win2000 server or your Samba
+server using smbclient and kerberos. Use smbclient as usual, but
+specify the -k option to choose kerberos authentication.</P
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN2880"
+NAME="AEN2648"
 ></A
->19.10. Comments</H2
+>15.8. Notes</H2
 ><P
->Please mail all comments regarding this HOWTO to <A
-HREF="mailto:jerry@samba.org"
-TARGET="_top"
->jerry@samba.org</A
->.  This documents was
-last updated to reflect the Samba 2.2.3 release.&#13;</P
+>You must change administrator password at least once after DC install,
+ to create the right encoding types</P
+><P
+>w2k doesn't seem to create the _kerberos._udp and _ldap._tcp in
+   their defaults DNS setup. Maybe fixed in service packs?</P
 ></DIV
 ></DIV
 ><DIV
 CLASS="CHAPTER"
 ><HR><H1
 ><A
-NAME="CVS-ACCESS"
+NAME="IMPROVED-BROWSING"
 ></A
->Chapter 20. HOWTO Access Samba source code via CVS</H1
+>Chapter 16. Improved browsing in samba</H1
 ><DIV
 CLASS="SECT1"
 ><H2
 CLASS="SECT1"
 ><A
-NAME="AEN2891"
+NAME="AEN2659"
 ></A
->20.1. Introduction</H2
+>16.1. Overview of browsing</H2
 ><P
->Samba is developed in an open environment.  Developers use CVS
-(Concurrent Versioning System) to "checkin" (also known as 
-"commit") new source code.  Samba's various CVS branches can
-be accessed via anonymous CVS using the instructions
-detailed in this chapter.</P
+>SMB networking provides a mechanism by which clients can access a list
+of machines in a network, a so-called "browse list".  This list
+contains machines that are ready to offer file and/or print services
+to other machines within the network. Thus it does not include
+machines which aren't currently able to do server tasks.  The browse
+list is heavily used by all SMB clients.  Configuration of SMB
+browsing has been problematic for some Samba users, hence this
+document.</P
 ><P
->This document is a modified version of the instructions found at
-<A
-HREF="http://samba.org/samba/cvs.html"
-TARGET="_top"
->http://samba.org/samba/cvs.html</A
-></P
+>Browsing will NOT work if name resolution from NetBIOS names to IP
+addresses does not function correctly. Use of a WINS server is highly
+recommended to aid the resolution of NetBIOS (SMB) names to IP addresses.
+WINS allows remote segment clients to obtain NetBIOS name_type information
+that can NOT be provided by any other means of name resolution.</P
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
+><A
+NAME="AEN2663"
+></A
+>16.2. Browsing support in samba</H2
+><P
+>Samba now fully supports browsing.  The browsing is supported by nmbd
+and is also controlled by options in the smb.conf file (see smb.conf(5)).</P
+><P
+>Samba can act as a local browse master for a workgroup and the ability
+for samba to support domain logons and scripts is now available.  See
+DOMAIN.txt for more information on domain logons.</P
+><P
+>Samba can also act as a domain master browser for a workgroup.  This
+means that it will collate lists from local browse masters into a
+wide area network server list.  In order for browse clients to
+resolve the names they may find in this list, it is recommended that
+both samba and your clients use a WINS server.</P
+><P
+>Note that you should NOT set Samba to be the domain master for a
+workgroup that has the same name as an NT Domain: on each wide area
+network, you must only ever have one domain master browser per workgroup,
+regardless of whether it is NT, Samba or any other type of domain master
+that is providing this service.</P
+><P
+>[Note that nmbd can be configured as a WINS server, but it is not
+necessary to specifically use samba as your WINS server.  NTAS can
+be configured as your WINS server.  In a mixed NT server and
+samba environment on a Wide Area Network, it is recommended that
+you use the NT server's WINS server capabilities.  In a samba-only
+environment, it is recommended that you use one and only one nmbd
+as your WINS server].</P
+><P
+>To get browsing to work you need to run nmbd as usual, but will need
+to use the "workgroup" option in smb.conf to control what workgroup
+Samba becomes a part of.</P
+><P
+>Samba also has a useful option for a Samba server to offer itself for
+browsing on another subnet.  It is recommended that this option is only
+used for 'unusual' purposes: announcements over the internet, for
+example.  See "remote announce" in the smb.conf man page.  </P
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
+><A
+NAME="AEN2672"
+></A
+>16.3. Problem resolution</H2
+><P
+>If something doesn't work then hopefully the log.nmb file will help
+you track down the problem.  Try a debug level of 2 or 3 for finding
+problems. Also note that the current browse list usually gets stored
+in text form in a file called browse.dat.</P
+><P
+>Note that if it doesn't work for you, then you should still be able to
+type the server name as \\SERVER in filemanager then hit enter and
+filemanager should display the list of available shares.</P
+><P
+>Some people find browsing fails because they don't have the global
+"guest account" set to a valid account.  Remember that the IPC$
+connection that lists the shares is done as guest, and thus you must
+have a valid guest account.</P
+><P
+>Also, a lot of people are getting bitten by the problem of too many
+parameters on the command line of nmbd in inetd.conf.  This trick is to
+not use spaces between the option and the parameter (eg: -d2 instead
+of -d 2), and to not use the -B and -N options.  New versions of nmbd
+are now far more likely to correctly find your broadcast and network
+address, so in most cases these aren't needed.</P
+><P
+>The other big problem people have is that their broadcast address,
+netmask or IP address is wrong (specified with the "interfaces" option
+in smb.conf)</P
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN2896"
+NAME="AEN2679"
 ></A
->20.2. CVS Access to samba.org</H2
+>16.4. Browsing across subnets</H2
+><P
+>With the release of Samba 1.9.17(alpha1 and above) Samba has been
+updated to enable it to support the replication of browse lists
+across subnet boundaries.  New code and options have been added to
+achieve this.  This section describes how to set this feature up
+in different settings.</P
+><P
+>To see browse lists that span TCP/IP subnets (ie.  networks separated
+by routers that don't pass broadcast traffic) you must set up at least
+one WINS server.  The WINS server acts as a DNS for NetBIOS names, allowing
+NetBIOS name to IP address translation to be done by doing a direct
+query of the WINS server.  This is done via a directed UDP packet on
+port 137 to the WINS server machine.  The reason for a WINS server is
+that by default, all NetBIOS name to IP address translation is done
+by broadcasts from the querying machine.  This means that machines
+on one subnet will not be able to resolve the names of machines on
+another subnet without using a WINS server.</P
 ><P
->The machine samba.org runs a publicly accessible CVS 
-repository for access to the source code of several packages, 
-including samba, rsync and jitterbug. There are two main ways of 
-accessing the CVS server on this host.</P
+>Remember, for browsing across subnets to work correctly, all machines,
+be they Windows 95, Windows NT, or Samba servers must have the IP address
+of a WINS server given to them by a DHCP server, or by manual configuration 
+(for Win95 and WinNT, this is in the TCP/IP Properties, under Network 
+settings) for Samba this is in the smb.conf file.</P
 ><DIV
 CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN2899"
+NAME="AEN2684"
 ></A
->20.2.1. Access via CVSweb</H3
+>16.4.1. How does cross subnet browsing work ?</H3
 ><P
->You can access the source code via your 
-favourite WWW browser. This allows you to access the contents of 
-individual files in the repository and also to look at the revision 
-history and commit logs of individual files. You can also ask for a diff 
-listing between any two versions on the repository.</P
+>Cross subnet browsing is a complicated dance, containing multiple
+moving parts.  It has taken Microsoft several years to get the code
+that achieves this correct, and Samba lags behind in some areas.
+However, with the 1.9.17 release, Samba is capable of cross subnet
+browsing when configured correctly.</P
 ><P
->Use the URL : <A
-HREF="http://samba.org/cgi-bin/cvsweb"
-TARGET="_top"
->http://samba.org/cgi-bin/cvsweb</A
+>Consider a network set up as follows :</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>                                   (DMB)
+             N1_A      N1_B        N1_C       N1_D        N1_E
+              |          |           |          |           |
+          -------------------------------------------------------
+            |          subnet 1                       |
+          +---+                                      +---+
+          |R1 | Router 1                  Router 2   |R2 |
+          +---+                                      +---+
+            |                                          |
+            |  subnet 2              subnet 3          |
+  --------------------------       ------------------------------------
+  |     |     |      |               |        |         |           |
+ N2_A  N2_B  N2_C   N2_D           N3_A     N3_B      N3_C        N3_D 
+                    (WINS)</PRE
 ></P
-></DIV
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN2904"
-></A
->20.2.2. Access via cvs</H3
 ><P
->You can also access the source code via a 
-normal cvs client.  This gives you much more control over you can 
-do with the repository and allows you to checkout whole source trees 
-and keep them up to date via normal cvs commands. This is the 
-preferred method of access if you are a developer and not
-just a casual browser.</P
+>Consisting of 3 subnets (1, 2, 3) connected by two routers
+(R1, R2) - these do not pass broadcasts.  Subnet 1 has 5 machines
+on it, subnet 2 has 4 machines, subnet 3 has 4 machines.  Assume
+for the moment that all these machines are configured to be in the
+same workgroup (for simplicities sake).  Machine N1_C on subnet 1
+is configured as Domain Master Browser (ie.  it will collate the
+browse lists for the workgroup).  Machine N2_D is configured as
+WINS server and all the other machines are configured to register
+their NetBIOS names with it.</P
 ><P
->To download the latest cvs source code, point your
-browser at the URL : <A
-HREF="http://www.cyclic.com/"
-TARGET="_top"
->http://www.cyclic.com/</A
->.
-and click on the 'How to get cvs' link. CVS is free software under 
-the GNU GPL (as is Samba).  Note that there are several graphical CVS clients
-which provide a graphical interface to the sometimes mundane CVS commands.
-Links to theses clients are also available from http://www.cyclic.com.</P
+>As all these machines are booted up, elections for master browsers
+will take place on each of the three subnets.  Assume that machine
+N1_C wins on subnet 1, N2_B wins on subnet 2, and N3_D wins on
+subnet 3 - these machines are known as local master browsers for
+their particular subnet.  N1_C has an advantage in winning as the
+local master browser on subnet 1 as it is set up as Domain Master
+Browser.</P
 ><P
->To gain access via anonymous cvs use the following steps. 
-For this example it is assumed that you want a copy of the 
-samba source code. For the other source code repositories 
-on this system just substitute the correct package name</P
+>On each of the three networks, machines that are configured to 
+offer sharing services will broadcast that they are offering
+these services.  The local master browser on each subnet will
+receive these broadcasts and keep a record of the fact that
+the machine is offering a service.  This list of records is
+the basis of the browse list.  For this case, assume that
+all the machines are configured to offer services so all machines
+will be on the browse list.</P
+><P
+>For each network, the local master browser on that network is
+considered 'authoritative' for all the names it receives via
+local broadcast.  This is because a machine seen by the local
+master browser via a local broadcast must be on the same 
+network as the local master browser and thus is a 'trusted'
+and 'verifiable' resource.  Machines on other networks that
+the local master browsers learn about when collating their
+browse lists have not been directly seen - these records are
+called 'non-authoritative'.</P
+><P
+>At this point the browse lists look as follows (these are 
+the machines you would see in your network neighborhood if
+you looked in it on a particular network right now).</P
 ><P
+><PRE
+CLASS="PROGRAMLISTING"
+>Subnet           Browse Master   List
+------           -------------   ----
+Subnet1          N1_C            N1_A, N1_B, N1_C, N1_D, N1_E
+
+Subnet2          N2_B            N2_A, N2_B, N2_C, N2_D
+
+Subnet3          N3_D            N3_A, N3_B, N3_C, N3_D</PRE
 ></P
-><OL
-TYPE="1"
-><LI
 ><P
->	Install a recent copy of cvs. All you really need is a 
-	copy of the cvs client binary. 
-	</P
-></LI
-><LI
+>Note that at this point all the subnets are separate, no
+machine is seen across any of the subnets.</P
 ><P
->	Run the command 
-	</P
+>Now examine subnet 2.  As soon as N2_B has become the local
+master browser it looks for a Domain master browser to synchronize
+its browse list with.  It does this by querying the WINS server
+(N2_D) for the IP address associated with the NetBIOS name 
+WORKGROUP&gt;1B&lt;.  This name was registerd by the Domain master
+browser (N1_C) with the WINS server as soon as it was booted.</P
 ><P
->	<B
-CLASS="COMMAND"
->cvs -d :pserver:cvs@samba.org:/cvsroot login</B
->
-	</P
+>Once N2_B knows the address of the Domain master browser it
+tells it that is the local master browser for subnet 2 by
+sending a MasterAnnouncement packet as a UDP port 138 packet.
+It then synchronizes with it by doing a NetServerEnum2 call.  This
+tells the Domain Master Browser to send it all the server
+names it knows about.  Once the domain master browser receives
+the MasterAnnouncement packet it schedules a synchronization
+request to the sender of that packet.  After both synchronizations
+are done the browse lists look like :</P
 ><P
->	When it asks you for a password type <TT
-CLASS="USERINPUT"
-><B
->cvs</B
-></TT
->.
-	</P
-></LI
-><LI
+><PRE
+CLASS="PROGRAMLISTING"
+>Subnet           Browse Master   List
+------           -------------   ----
+Subnet1          N1_C            N1_A, N1_B, N1_C, N1_D, N1_E, 
+                                 N2_A(*), N2_B(*), N2_C(*), N2_D(*)
+
+Subnet2          N2_B            N2_A, N2_B, N2_C, N2_D
+                                 N1_A(*), N1_B(*), N1_C(*), N1_D(*), N1_E(*)
+
+Subnet3          N3_D            N3_A, N3_B, N3_C, N3_D
+
+Servers with a (*) after them are non-authoritative names.</PRE
+></P
 ><P
->	Run the command 
-	</P
+>At this point users looking in their network neighborhood on
+subnets 1 or 2 will see all the servers on both, users on
+subnet 3 will still only see the servers on their own subnet.</P
 ><P
->	<B
-CLASS="COMMAND"
->cvs -d :pserver:cvs@samba.org:/cvsroot co samba</B
->
-	</P
+>The same sequence of events that occured for N2_B now occurs
+for the local master browser on subnet 3 (N3_D).  When it
+synchronizes browse lists with the domain master browser (N1_A)
+it gets both the server entries on subnet 1, and those on
+subnet 2.  After N3_D has synchronized with N1_C and vica-versa
+the browse lists look like.</P
 ><P
->	This will create a directory called samba containing the 
-	latest samba source code (i.e. the HEAD tagged cvs branch). This 
-	currently corresponds to the 3.0 development tree. 
-	</P
+><PRE
+CLASS="PROGRAMLISTING"
+>Subnet           Browse Master   List
+------           -------------   ----
+Subnet1          N1_C            N1_A, N1_B, N1_C, N1_D, N1_E, 
+                                 N2_A(*), N2_B(*), N2_C(*), N2_D(*),
+                                 N3_A(*), N3_B(*), N3_C(*), N3_D(*)
+
+Subnet2          N2_B            N2_A, N2_B, N2_C, N2_D
+                                 N1_A(*), N1_B(*), N1_C(*), N1_D(*), N1_E(*)
+
+Subnet3          N3_D            N3_A, N3_B, N3_C, N3_D
+                                 N1_A(*), N1_B(*), N1_C(*), N1_D(*), N1_E(*),
+                                 N2_A(*), N2_B(*), N2_C(*), N2_D(*)
+
+Servers with a (*) after them are non-authoritative names.</PRE
+></P
 ><P
->	CVS branches other HEAD can be obtained by using the <TT
-CLASS="PARAMETER"
-><I
->-r</I
-></TT
->
-	and defining a tag name.  A list of branch tag names can be found on the
-	"Development" page of the samba web site.  A common request is to obtain the
-	latest 2.2 release code.  This could be done by using the following command.
-	</P
+>At this point users looking in their network neighborhood on
+subnets 1 or 3 will see all the servers on all sunbets, users on
+subnet 2 will still only see the servers on subnets 1 and 2, but not 3.</P
+><P
+>Finally, the local master browser for subnet 2 (N2_B) will sync again
+with the domain master browser (N1_C) and will recieve the missing
+server entries.  Finally - and as a steady state (if no machines
+are removed or shut off) the browse lists will look like :</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>Subnet           Browse Master   List
+------           -------------   ----
+Subnet1          N1_C            N1_A, N1_B, N1_C, N1_D, N1_E, 
+                                 N2_A(*), N2_B(*), N2_C(*), N2_D(*),
+                                 N3_A(*), N3_B(*), N3_C(*), N3_D(*)
+
+Subnet2          N2_B            N2_A, N2_B, N2_C, N2_D
+                                 N1_A(*), N1_B(*), N1_C(*), N1_D(*), N1_E(*)
+                                 N3_A(*), N3_B(*), N3_C(*), N3_D(*)
+
+Subnet3          N3_D            N3_A, N3_B, N3_C, N3_D
+                                 N1_A(*), N1_B(*), N1_C(*), N1_D(*), N1_E(*),
+                                 N2_A(*), N2_B(*), N2_C(*), N2_D(*)
+	
+Servers with a (*) after them are non-authoritative names.</PRE
+></P
+><P
+>Synchronizations between the domain master browser and local
+master browsers will continue to occur, but this should be a
+steady state situation.</P
+><P
+>If either router R1 or R2 fails the following will occur:</P
+><P
+></P
+><OL
+TYPE="1"
+><LI
 ><P
->	<B
-CLASS="COMMAND"
->cvs -d :pserver:cvs@samba.org:/cvsroot co -r SAMBA_2_2 samba</B
->
+>	Names of computers on each side of the inaccessible network fragments
+	will be maintained for as long as 36 minutes, in the network neighbourhood
+	lists.
 	</P
 ></LI
 ><LI
 ><P
->	Whenever you want to merge in the latest code changes use 
-	the following command from within the samba directory: 
+>	Attempts to connect to these inaccessible computers will fail, but the
+	names will not be removed from the network neighbourhood lists.
 	</P
+></LI
+><LI
 ><P
->	<B
-CLASS="COMMAND"
->cvs update -d -P</B
->
+>	If one of the fragments is cut off from the WINS server, it will only
+	be able to access servers on its local subnet, by using subnet-isolated
+	broadcast NetBIOS name resolution.  The effects are similar to that of
+	losing access to a DNS server.
 	</P
 ></LI
 ></OL
 ></DIV
 ></DIV
-></DIV
 ><DIV
-CLASS="CHAPTER"
-><HR><H1
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
 ><A
-NAME="GROUPMAPPING"
+NAME="AEN2719"
 ></A
->Chapter 21. Group mapping HOWTO</H1
+>16.5. Setting up a WINS server</H2
 ><P
-> 
-Starting with Samba 3.0 alpha 2, a new group mapping function is available. The
-current method (likely to change) to manage the groups is a new command called
-<B
-CLASS="COMMAND"
->smbgroupedit</B
->.</P
+>Either a Samba machine or a Windows NT Server machine may be set up
+as a WINS server.  To set a Samba machine to be a WINS server you must
+add the following option to the smb.conf file on the selected machine :
+in the [globals] section add the line </P
 ><P
->The first immediate reason to use the group mapping on a PDC, is that
-the <B
+><B
 CLASS="COMMAND"
->domain admin group</B
-> of <TT
-CLASS="FILENAME"
->smb.conf</TT
-> is 
-now gone. This parameter was used to give the listed users local admin rights 
-on their workstations. It was some magic stuff that simply worked but didn't
-scale very well for complex setups.</P
-><P
->Let me explain how it works on NT/W2K, to have this magic fade away.
-When installing NT/W2K on a computer, the installer program creates some users
-and groups. Notably the 'Administrators' group, and gives to that group some
-privileges like the ability to change the date and time or to kill any process
-(or close too) running on the local machine. The 'Administrator' user is a
-member of the 'Administrators' group, and thus 'inherit' the 'Administrators'
-group privileges. If a 'joe' user is created and become a member of the
-'Administrator' group, 'joe' has exactly the same rights as 'Administrator'.</P
-><P
->When a NT/W2K machine is joined to a domain, during that phase, the "Domain
-Administrators' group of the PDC is added to the 'Administrators' group of the
-workstation. Every members of the 'Domain Administrators' group 'inherit' the
-rights of the 'Administrators' group when logging on the workstation.</P
-><P
->You are now wondering how to make some of your samba PDC users members of the
-'Domain Administrators' ? That's really easy.</P
-><P
+>		wins support = yes</B
 ></P
-><OL
-TYPE="1"
-><LI
-><P
->create a unix group (usually in <TT
-CLASS="FILENAME"
->/etc/group</TT
->), let's call it domadm</P
-></LI
-><LI
-><P
->add to this group the users that must be Administrators. For example if you want joe,john and mary, your entry in <TT
-CLASS="FILENAME"
->/etc/group</TT
-> will look like:</P
 ><P
-><PRE
-CLASS="PROGRAMLISTING"
->domadm:x:502:joe,john,mary</PRE
-></P
-></LI
-><LI
+>Versions of Samba previous to 1.9.17 had this parameter default to
+yes.  If you have any older versions of Samba on your network it is
+strongly suggested you upgrade to 1.9.17 or above, or at the very
+least set the parameter to 'no' on all these machines.</P
 ><P
->Map this domadm group to the <B
+>Machines with "<B
 CLASS="COMMAND"
->domain admins</B
-> group by running the command:</P
+>wins support = yes</B
+>" will keep a list of 
+all NetBIOS names registered with them, acting as a DNS for NetBIOS names.</P
 ><P
-><B
+>You should set up only ONE wins server.  Do NOT set the
+"<B
 CLASS="COMMAND"
->smbgroupedit -c "Domain Admins" -u domadm</B
-></P
-></LI
-></OL
+>wins support = yes</B
+>" option on more than one Samba 
+server.</P
 ><P
->You're set, joe, john and mary are domain administrators !</P
+>To set up a Windows NT Server as a WINS server you need to set up
+the WINS service - see your NT documentation for details.  Note that
+Windows NT WINS Servers can replicate to each other, allowing more
+than one to be set up in a complex subnet environment.  As Microsoft
+refuse to document these replication protocols Samba cannot currently
+participate in these replications.  It is possible in the future that
+a Samba-&#62;Samba WINS replication protocol may be defined, in which
+case more than one Samba machine could be set up as a WINS server
+but currently only one Samba server should have the "wins support = yes"
+parameter set.</P
 ><P
->Like the Domain Admins group, you can map any arbitrary Unix group to any NT
-group. You can also make any Unix group a domain group. For example, on a domain
-member machine (an NT/W2K or a samba server running winbind), you would like to
-give access to a certain directory to some users who are member of a group on
-your samba PDC. Flag that group as a domain group by running:</P
+>After the WINS server has been configured you must ensure that all
+machines participating on the network are configured with the address
+of this WINS server.  If your WINS server is a Samba machine, fill in
+the Samba machine IP address in the "Primary WINS Server" field of
+the "Control Panel-&#62;Network-&#62;Protocols-&#62;TCP-&#62;WINS Server" dialogs
+in Windows 95 or Windows NT.  To tell a Samba server the IP address
+of the WINS server add the following line to the [global] section of
+all smb.conf files :</P
 ><P
 ><B
 CLASS="COMMAND"
->smbgroupedit -a unixgroup -td</B
+>		wins server = &gt;name or IP address&lt;</B
 ></P
 ><P
->You can list the various groups in the mapping database like this</P
+>where &gt;name or IP address&lt; is either the DNS name of the WINS server
+machine or its IP address.</P
 ><P
-><B
+>Note that this line MUST NOT BE SET in the smb.conf file of the Samba
+server acting as the WINS server itself.  If you set both the
+"<B
 CLASS="COMMAND"
->smbgroupedit -v</B
-></P
-></DIV
-><DIV
-CLASS="CHAPTER"
-><HR><H1
-><A
-NAME="SPEED"
-></A
->Chapter 22. Samba performance issues</H1
-><DIV
-CLASS="SECT1"
-><H2
-CLASS="SECT1"
-><A
-NAME="AEN2982"
-></A
->22.1. Comparisons</H2
-><P
->The Samba server uses TCP to talk to the client. Thus if you are
-trying to see if it performs well you should really compare it to
-programs that use the same protocol. The most readily available
-programs for file transfer that use TCP are ftp or another TCP based
-SMB server.</P
-><P
->If you want to test against something like a NT or WfWg server then
-you will have to disable all but TCP on either the client or
-server. Otherwise you may well be using a totally different protocol
-(such as Netbeui) and comparisons may not be valid.</P
-><P
->Generally you should find that Samba performs similarly to ftp at raw
-transfer speed. It should perform quite a bit faster than NFS,
-although this very much depends on your system.</P
+>wins support = yes</B
+>" option and the 
+"<B
+CLASS="COMMAND"
+>wins server = &gt;name&lt;</B
+>" option then
+nmbd will fail to start.</P
 ><P
->Several people have done comparisons between Samba and Novell, NFS or
-WinNT. In some cases Samba performed the best, in others the worst. I
-suspect the biggest factor is not Samba vs some other system but the
-hardware and drivers used on the various systems. Given similar
-hardware Samba should certainly be competitive in speed with other
-systems.</P
+>There are two possible scenarios for setting up cross subnet browsing.
+The first details setting up cross subnet browsing on a network containing
+Windows 95, Samba and Windows NT machines that are not configured as
+part of a Windows NT Domain.  The second details setting up cross subnet
+browsing on networks that contain NT Domains.</P
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN2988"
-></A
->22.2. Oplocks</H2
-><DIV
-CLASS="SECT2"
-><H3
-CLASS="SECT2"
-><A
-NAME="AEN2990"
+NAME="AEN2738"
 ></A
->22.2.1. Overview</H3
+>16.6. Setting up Browsing in a WORKGROUP</H2
 ><P
->Oplocks are the way that SMB clients get permission from a server to
-locally cache file operations. If a server grants an oplock
-(opportunistic lock) then the client is free to assume that it is the
-only one accessing the file and it will agressively cache file
-data. With some oplock types the client may even cache file open/close
-operations. This can give enormous performance benefits.</P
+>To set up cross subnet browsing on a network containing machines
+in up to be in a WORKGROUP, not an NT Domain you need to set up one
+Samba server to be the Domain Master Browser (note that this is *NOT*
+the same as a Primary Domain Controller, although in an NT Domain the
+same machine plays both roles).  The role of a Domain master browser is
+to collate the browse lists from local master browsers on all the
+subnets that have a machine participating in the workgroup.  Without
+one machine configured as a domain master browser each subnet would
+be an isolated workgroup, unable to see any machines on any other
+subnet.  It is the presense of a domain master browser that makes
+cross subnet browsing possible for a workgroup.</P
 ><P
->With the release of Samba 1.9.18 we now correctly support opportunistic 
-locks. This is turned on by default, and can be turned off on a share-
-by-share basis by setting the parameter :</P
+>In an WORKGROUP environment the domain master browser must be a
+Samba server, and there must only be one domain master browser per
+workgroup name.  To set up a Samba server as a domain master browser,
+set the following option in the [global] section of the smb.conf file :</P
 ><P
 ><B
 CLASS="COMMAND"
->oplocks = False</B
+>		domain master = yes</B
 ></P
 ><P
->We recommend that you leave oplocks on however, as current benchmark
-tests with NetBench seem to give approximately a 30% improvement in
-speed with them on. This is on average however, and the actual 
-improvement seen can be orders of magnitude greater, depending on
-what the client redirector is doing.</P
+>The domain master browser should also preferrably be the local master
+browser for its own subnet.  In order to achieve this set the following
+options in the [global] section of the smb.conf file :</P
 ><P
->Previous to Samba 1.9.18 there was a 'fake oplocks' option. This
-option has been left in the code for backwards compatibility reasons
-but it's use is now deprecated. A short summary of what the old
-code did follows.</P
-></DIV
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN2998"
-></A
->22.2.2. Level2 Oplocks</H3
+><PRE
+CLASS="PROGRAMLISTING"
+>        domain master = yes
+        local master = yes
+        preferred master = yes
+        os level = 65</PRE
+></P
+><P
+>The domain master browser may be the same machine as the WINS
+server, if you require.</P
 ><P
->With Samba 2.0.5 a new capability - level2 (read only) oplocks is
-supported (although the option is off by default - see the smb.conf
-man page for details). Turning on level2 oplocks (on a share-by-share basis)
-by setting the parameter :</P
+>Next, you should ensure that each of the subnets contains a
+machine that can act as a local master browser for the
+workgroup.  Any NT machine should be able to do this, as will
+Windows 95 machines (although these tend to get rebooted more
+often, so it's not such a good idea to use these).  To make a 
+Samba server a local master browser set the following
+options in the [global] section of the smb.conf file :</P
 ><P
-><B
-CLASS="COMMAND"
->level2 oplocks = true</B
+><PRE
+CLASS="PROGRAMLISTING"
+>        domain master = no
+        local master = yes
+        preferred master = yes
+        os level = 65</PRE
 ></P
 ><P
->should speed concurrent access to files that are not commonly written
-to, such as application serving shares (ie. shares that contain common
-.EXE files - such as a Microsoft Office share) as it allows clients to
-read-ahread cache copies of these files.</P
-></DIV
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN3004"
-></A
->22.2.3. Old 'fake oplocks' option - deprecated</H3
+>Do not do this for more than one Samba server on each subnet,
+or they will war with each other over which is to be the local
+master browser.</P
 ><P
->Samba can also fake oplocks, by granting a oplock whenever a client 
-asks for one. This is controlled using the smb.conf option "fake 
-oplocks". If you set "fake oplocks = yes" then you are telling the 
-client that it may agressively cache the file data for all opens.</P
+>The "local master" parameter allows Samba to act as a local master
+browser.  The "preferred master" causes nmbd to force a browser
+election on startup and the "os level" parameter sets Samba high
+enough so that it should win any browser elections.</P
 ><P
->Enabling 'fake oplocks' on all read-only shares or shares that you know
-will only be accessed from one client at a time you will see a big
-performance improvement on many operations. If you enable this option
-on shares where multiple clients may be accessing the files read-write
-at the same time you can get data corruption.</P
-></DIV
+>If you have an NT machine on the subnet that you wish to
+be the local master browser then you can disable Samba from
+becoming a local master browser by setting the following
+options in the [global] section of the smb.conf file :</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>        domain master = no
+        local master = no
+        preferred master = no
+        os level = 0</PRE
+></P
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN3008"
+NAME="AEN2756"
 ></A
->22.3. Socket options</H2
+>16.7. Setting up Browsing in a DOMAIN</H2
 ><P
->There are a number of socket options that can greatly affect the
-performance of a TCP based server like Samba.</P
+>If you are adding Samba servers to a Windows NT Domain then
+you must not set up a Samba server as a domain master browser.
+By default, a Windows NT Primary Domain Controller for a Domain
+name is also the Domain master browser for that name, and many
+things will break if a Samba server registers the Domain master
+browser NetBIOS name (DOMAIN&gt;1B&lt;) with WINS instead of the PDC.</P
 ><P
->The socket options that Samba uses are settable both on the command
-line with the -O option, or in the smb.conf file.</P
+>For subnets other than the one containing the Windows NT PDC
+you may set up Samba servers as local master browsers as
+described.  To make a Samba server a local master browser set 
+the following options in the [global] section of the smb.conf 
+file :</P
 ><P
->The "socket options" section of the smb.conf manual page describes how
-to set these and gives recommendations.</P
+><PRE
+CLASS="PROGRAMLISTING"
+>        domain master = no
+        local master = yes
+        preferred master = yes
+        os level = 65</PRE
+></P
 ><P
->Getting the socket options right can make a big difference to your
-performance, but getting them wrong can degrade it by just as
-much. The correct settings are very dependent on your local network.</P
+>If you wish to have a Samba server fight the election with machines
+on the same subnet you may set the "os level" parameter to lower
+levels.  By doing this you can tune the order of machines that
+will become local master browsers if they are running.  For
+more details on this see the section "FORCING SAMBA TO BE THE MASTER"
+below.</P
 ><P
->The socket option TCP_NODELAY is the one that seems to make the
-biggest single difference for most networks. Many people report that
-adding "socket options = TCP_NODELAY" doubles the read performance of
-a Samba drive. The best explanation I have seen for this is that the
-Microsoft TCP/IP stack is slow in sending tcp ACKs.</P
+>If you have Windows NT machines that are members of the domain
+on all subnets, and you are sure they will always be running then
+you can disable Samba from taking part in browser elections and
+ever becoming a local master browser by setting following options 
+in the [global] section of the smb.conf file :</P
+><P
+><B
+CLASS="COMMAND"
+>        domain master = no
+        local master = no
+        preferred master = no
+        os level = 0</B
+></P
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN3015"
+NAME="AEN2766"
 ></A
->22.4. Read size</H2
+>16.8. Forcing samba to be the master</H2
 ><P
->The option "read size" affects the overlap of disk reads/writes with
-network reads/writes. If the amount of data being transferred in
-several of the SMB commands (currently SMBwrite, SMBwriteX and
-SMBreadbraw) is larger than this value then the server begins writing
-the data before it has received the whole packet from the network, or
-in the case of SMBreadbraw, it begins writing to the network before
-all the data has been read from disk.</P
+>Who becomes the "master browser" is determined by an election process
+using broadcasts.  Each election packet contains a number of parameters
+which determine what precedence (bias) a host should have in the
+election.  By default Samba uses a very low precedence and thus loses
+elections to just about anyone else.</P
 ><P
->This overlapping works best when the speeds of disk and network access
-are similar, having very little effect when the speed of one is much
-greater than the other.</P
+>If you want Samba to win elections then just set the "os level" global
+option in smb.conf to a higher number.  It defaults to 0.  Using 34
+would make it win all elections over every other system (except other
+samba systems!)</P
 ><P
->The default value is 16384, but very little experimentation has been
-done yet to determine the optimal value, and it is likely that the best
-value will vary greatly between systems anyway. A value over 65536 is
-pointless and will cause you to allocate memory unnecessarily.</P
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN3020"
-></A
->22.5. Max xmit</H2
+>A "os level" of 2 would make it beat WfWg and Win95, but not NTAS.  A
+NTAS domain controller uses level 32.</P
 ><P
->At startup the client and server negotiate a "maximum transmit" size,
-which limits the size of nearly all SMB commands. You can set the
-maximum size that Samba will negotiate using the "max xmit = " option
-in smb.conf. Note that this is the maximum size of SMB request that 
-Samba will accept, but not the maximum size that the *client* will accept.
-The client maximum receive size is sent to Samba by the client and Samba
-honours this limit.</P
+>The maximum os level is 255</P
 ><P
->It defaults to 65536 bytes (the maximum), but it is possible that some
-clients may perform better with a smaller transmit unit. Trying values
-of less than 2048 is likely to cause severe problems.</P
+>If you want samba to force an election on startup, then set the
+"preferred master" global option in smb.conf to "yes".  Samba will
+then have a slight advantage over other potential master browsers
+that are not preferred master browsers.  Use this parameter with
+care, as if you have two hosts (whether they are windows 95 or NT or
+samba) on the same local subnet both set with "preferred master" to
+"yes", then periodically and continually they will force an election
+in order to become the local master browser.</P
 ><P
->In most cases the default is the best option.</P
+>If you want samba to be a "domain master browser", then it is
+recommended that you also set "preferred master" to "yes", because
+samba will not become a domain master browser for the whole of your
+LAN or WAN if it is not also a local master browser on its own
+broadcast isolated subnet.</P
+><P
+>It is possible to configure two samba servers to attempt to become
+the domain master browser for a domain.  The first server that comes
+up will be the domain master browser.  All other samba servers will
+attempt to become the domain master browser every 5 minutes.  They
+will find that another samba server is already the domain master
+browser and will fail.  This provides automatic redundancy, should
+the current domain master browser fail.</P
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN3025"
+NAME="AEN2775"
 ></A
->22.6. Locking</H2
+>16.9. Making samba the domain master</H2
 ><P
->By default Samba does not implement strict locking on each read/write
-call (although it did in previous versions). If you enable strict
-locking (using "strict locking = yes") then you may find that you
-suffer a severe performance hit on some systems.</P
+>The domain master is responsible for collating the browse lists of
+multiple subnets so that browsing can occur between subnets.  You can
+make samba act as the domain master by setting "domain master = yes"
+in smb.conf.  By default it will not be a domain master.</P
 ><P
->The performance hit will probably be greater on NFS mounted
-filesystems, but could be quite high even on local disks.</P
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN3029"
-></A
->22.7. Share modes</H2
+>Note that you should NOT set Samba to be the domain master for a
+workgroup that has the same name as an NT Domain.</P
 ><P
->Some people find that opening files is very slow. This is often
-because of the "share modes" code needed to fully implement the dos
-share modes stuff. You can disable this code using "share modes =
-no". This will gain you a lot in opening and closing files but will
-mean that (in some cases) the system won't force a second user of a
-file to open the file read-only if the first has it open
-read-write. For many applications that do their own locking this
-doesn't matter, but for some it may. Most Windows applications
-depend heavily on "share modes" working correctly and it is
-recommended that the Samba share mode support be left at the
-default of "on".</P
+>When samba is the domain master and the master browser it will listen
+for master announcements (made roughly every twelve minutes) from local
+master browsers on other subnets and then contact them to synchronise
+browse lists.</P
 ><P
->The share mode code in Samba has been re-written in the 1.9.17
-release following tests with the Ziff-Davis NetBench PC Benchmarking
-tool. It is now believed that Samba 1.9.17 implements share modes
-similarly to Windows NT.</P
+>If you want samba to be the domain master then I suggest you also set
+the "os level" high enough to make sure it wins elections, and set
+"preferred master" to "yes", to get samba to force an election on
+startup.</P
+><P
+>Note that all your servers (including samba) and clients should be
+using a WINS server to resolve NetBIOS names.  If your clients are only
+using broadcasting to resolve NetBIOS names, then two things will occur:</P
+><P
+></P
+><OL
+TYPE="1"
+><LI
+><P
+>	your local master browsers will be unable to find a domain master
+	browser, as it will only be looking on the local subnet.
+	</P
+></LI
+><LI
+><P
+>	if a client happens to get hold of a domain-wide browse list, and
+	a user attempts to access a host in that list, it will be unable to
+	resolve the NetBIOS name of that host.
+	</P
+></LI
+></OL
+><P
+>If, however, both samba and your clients are using a WINS server, then:</P
+><P
+></P
+><OL
+TYPE="1"
+><LI
+><P
+>	your local master browsers will contact the WINS server and, as long as
+	samba has registered that it is a domain master browser with the WINS
+	server, your local master browser will receive samba's ip address
+	as its domain master browser.
+	</P
+></LI
+><LI
 ><P
->NOTE: In the most recent versions of Samba there is an option to use
-shared memory via mmap() to implement the share modes. This makes
-things much faster. See the Makefile for how to enable this.</P
+>	when a client receives a domain-wide browse list, and a user attempts
+	to access a host in that list, it will contact the WINS server to
+	resolve the NetBIOS name of that host.  as long as that host has
+	registered its NetBIOS name with the same WINS server, the user will
+	be able to see that host.  
+	</P
+></LI
+></OL
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN3034"
+NAME="AEN2793"
 ></A
->22.8. Log level</H2
+>16.10. Note about broadcast addresses</H2
 ><P
->If you set the log level (also known as "debug level") higher than 2
-then you may suffer a large drop in performance. This is because the
-server flushes the log file after each operation, which can be very
-expensive. </P
+>If your network uses a "0" based broadcast address (for example if it
+ends in a 0) then you will strike problems.  Windows for Workgroups
+does not seem to support a 0's broadcast and you will probably find
+that browsing and name lookups won't work.</P
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN3037"
+NAME="AEN2796"
 ></A
->22.9. Wide lines</H2
+>16.11. Multiple interfaces</H2
 ><P
->The "wide links" option is now enabled by default, but if you disable
-it (for better security) then you may suffer a performance hit in
-resolving filenames. The performance loss is lessened if you have
-"getwd cache = yes", which is now the default.</P
+>Samba now supports machines with multiple network interfaces.  If you
+have multiple interfaces then you will need to use the "interfaces"
+option in smb.conf to configure them.  See smb.conf(5) for details.</P
+></DIV
 ></DIV
 ><DIV
+CLASS="CHAPTER"
+><HR><H1
+><A
+NAME="SPEED"
+></A
+>Chapter 17. Samba performance issues</H1
+><DIV
 CLASS="SECT1"
-><HR><H2
+><H2
 CLASS="SECT1"
 ><A
-NAME="AEN3040"
+NAME="AEN2814"
 ></A
->22.10. Read raw</H2
+>17.1. Comparisons</H2
 ><P
->The "read raw" operation is designed to be an optimised, low-latency
-file read operation. A server may choose to not support it,
-however. and Samba makes support for "read raw" optional, with it
-being enabled by default.</P
+>The Samba server uses TCP to talk to the client. Thus if you are
+trying to see if it performs well you should really compare it to
+programs that use the same protocol. The most readily available
+programs for file transfer that use TCP are ftp or another TCP based
+SMB server.</P
 ><P
->In some cases clients don't handle "read raw" very well and actually
-get lower performance using it than they get using the conventional
-read operations. </P
+>If you want to test against something like a NT or WfWg server then
+you will have to disable all but TCP on either the client or
+server. Otherwise you may well be using a totally different protocol
+(such as Netbeui) and comparisons may not be valid.</P
 ><P
->So you might like to try "read raw = no" and see what happens on your
-network. It might lower, raise or not affect your performance. Only
-testing can really tell.</P
+>Generally you should find that Samba performs similarly to ftp at raw
+transfer speed. It should perform quite a bit faster than NFS,
+although this very much depends on your system.</P
+><P
+>Several people have done comparisons between Samba and Novell, NFS or
+WinNT. In some cases Samba performed the best, in others the worst. I
+suspect the biggest factor is not Samba vs some other system but the
+hardware and drivers used on the various systems. Given similar
+hardware Samba should certainly be competitive in speed with other
+systems.</P
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN3045"
+NAME="AEN2820"
 ></A
->22.11. Write raw</H2
-><P
->The "write raw" operation is designed to be an optimised, low-latency
-file write operation. A server may choose to not support it,
-however. and Samba makes support for "write raw" optional, with it
-being enabled by default.</P
-><P
->Some machines may find "write raw" slower than normal write, in which
-case you may wish to change this option.</P
-></DIV
+>17.2. Oplocks</H2
 ><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
+CLASS="SECT2"
+><H3
+CLASS="SECT2"
 ><A
-NAME="AEN3049"
+NAME="AEN2822"
 ></A
->22.12. Read prediction</H2
+>17.2.1. Overview</H3
 ><P
->Samba can do read prediction on some of the SMB commands. Read
-prediction means that Samba reads some extra data on the last file it
-read while waiting for the next SMB command to arrive. It can then
-respond more quickly when the next read request arrives.</P
+>Oplocks are the way that SMB clients get permission from a server to
+locally cache file operations. If a server grants an oplock
+(opportunistic lock) then the client is free to assume that it is the
+only one accessing the file and it will agressively cache file
+data. With some oplock types the client may even cache file open/close
+operations. This can give enormous performance benefits.</P
 ><P
->This is disabled by default. You can enable it by using "read
-prediction = yes".</P
+>With the release of Samba 1.9.18 we now correctly support opportunistic 
+locks. This is turned on by default, and can be turned off on a share-
+by-share basis by setting the parameter :</P
 ><P
->Note that read prediction is only used on files that were opened read
-only.</P
+><B
+CLASS="COMMAND"
+>oplocks = False</B
+></P
 ><P
->Read prediction should particularly help for those silly clients (such
-as "Write" under NT) which do lots of very small reads on a file.</P
+>We recommend that you leave oplocks on however, as current benchmark
+tests with NetBench seem to give approximately a 30% improvement in
+speed with them on. This is on average however, and the actual 
+improvement seen can be orders of magnitude greater, depending on
+what the client redirector is doing.</P
 ><P
->Samba will not read ahead more data than the amount specified in the
-"read size" option. It always reads ahead on 1k block boundaries.</P
+>Previous to Samba 1.9.18 there was a 'fake oplocks' option. This
+option has been left in the code for backwards compatibility reasons
+but it's use is now deprecated. A short summary of what the old
+code did follows.</P
 ></DIV
 ><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
 ><A
-NAME="AEN3056"
+NAME="AEN2830"
 ></A
->22.13. Memory mapping</H2
+>17.2.2. Level2 Oplocks</H3
 ><P
->Samba supports reading files via memory mapping them. One some
-machines this can give a large boost to performance, on others it
-makes not difference at all, and on some it may reduce performance.</P
+>With Samba 2.0.5 a new capability - level2 (read only) oplocks is
+supported (although the option is off by default - see the smb.conf
+man page for details). Turning on level2 oplocks (on a share-by-share basis)
+by setting the parameter :</P
 ><P
->To enable you you have to recompile Samba with the -DUSE_MMAP option
-on the FLAGS line of the Makefile.</P
+><B
+CLASS="COMMAND"
+>level2 oplocks = true</B
+></P
 ><P
->Note that memory mapping is only used on files opened read only, and
-is not used by the "read raw" operation. Thus you may find memory
-mapping is more effective if you disable "read raw" using "read raw =
-no".</P
+>should speed concurrent access to files that are not commonly written
+to, such as application serving shares (ie. shares that contain common
+.EXE files - such as a Microsoft Office share) as it allows clients to
+read-ahread cache copies of these files.</P
 ></DIV
 ><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
 ><A
-NAME="AEN3061"
+NAME="AEN2836"
 ></A
->22.14. Slow Clients</H2
+>17.2.3. Old 'fake oplocks' option - deprecated</H3
 ><P
->One person has reported that setting the protocol to COREPLUS rather
-than LANMAN2 gave a dramatic speed improvement (from 10k/s to 150k/s).</P
+>Samba can also fake oplocks, by granting a oplock whenever a client 
+asks for one. This is controlled using the smb.conf option "fake 
+oplocks". If you set "fake oplocks = yes" then you are telling the 
+client that it may agressively cache the file data for all opens.</P
 ><P
->I suspect that his PC's (386sx16 based) were asking for more data than
-they could chew. I suspect a similar speed could be had by setting
-"read raw = no" and "max xmit = 2048", instead of changing the
-protocol. Lowering the "read size" might also help.</P
+>Enabling 'fake oplocks' on all read-only shares or shares that you know
+will only be accessed from one client at a time you will see a big
+performance improvement on many operations. If you enable this option
+on shares where multiple clients may be accessing the files read-write
+at the same time you can get data corruption.</P
 ></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN3065"
-></A
->22.15. Slow Logins</H2
-><P
->Slow logins are almost always due to the password checking time. Using
-the lowest practical "password level" will improve things a lot. You
-could also enable the "UFC crypt" option in the Makefile.</P
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN3068"
+NAME="AEN2840"
 ></A
->22.16. Client tuning</H2
-><P
->Often a speed problem can be traced to the client. The client (for
-example Windows for Workgroups) can often be tuned for better TCP
-performance.</P
-><P
->See your client docs for details. In particular, I have heard rumours
-that the WfWg options TCPWINDOWSIZE and TCPSEGMENTSIZE can have a
-large impact on performance.</P
-><P
->Also note that some people have found that setting DefaultRcvWindow in
-the [MSTCP] section of the SYSTEM.INI file under WfWg to 3072 gives a
-big improvement. I don't know why.</P
-><P
->My own experience wth DefaultRcvWindow is that I get much better
-performance with a large value (16384 or larger). Other people have
-reported that anything over 3072 slows things down enourmously. One
-person even reported a speed drop of a factor of 30 when he went from
-3072 to 8192. I don't know why.</P
-><P
->It probably depends a lot on your hardware, and the type of unix box
-you have at the other end of the link.</P
-><P
->Paul Cochrane has done some testing on client side tuning and come 
-to the following conclusions:</P
-><P
->Install the W2setup.exe file from www.microsoft.com. This is an 
-update for the winsock stack and utilities which improve performance.</P
-><P
->Configure the win95 TCPIP registry settings to give better 
-perfomance. I use a program called MTUSPEED.exe which I got off the 
-net. There are various other utilities of this type freely available. 
-The setting which give the best performance for me are:</P
-><P
-></P
-><OL
-TYPE="1"
-><LI
-><P
->MaxMTU                  Remove</P
-></LI
-><LI
-><P
->RWIN                    Remove</P
-></LI
-><LI
-><P
->MTUAutoDiscover         Disable</P
-></LI
-><LI
-><P
->MTUBlackHoleDetect      Disable</P
-></LI
-><LI
-><P
->Time To Live            Enabled</P
-></LI
-><LI
-><P
->Time To Live - HOPS     32</P
-></LI
-><LI
-><P
->NDI Cache Size          0</P
-></LI
-></OL
-><P
->I tried virtually all of the items mentioned in the document and 
-the only one which made a difference to me was the socket options. It 
-turned out I was better off without any!!!!!</P
-><P
->In terms of overall speed of transfer, between various win95 clients 
-and a DX2-66 20MB server with a crappy NE2000 compatible and old IDE 
-drive (Kernel 2.0.30). The transfer rate was reasonable for 10 baseT.</P
+>17.3. Socket options</H2
 ><P
->FIXME
-The figures are:          Put              Get 
-P166 client 3Com card:    420-440kB/s      500-520kB/s
-P100 client 3Com card:    390-410kB/s      490-510kB/s
-DX4-75 client NE2000:     370-380kB/s      330-350kB/s</P
+>There are a number of socket options that can greatly affect the
+performance of a TCP based server like Samba.</P
 ><P
->I based these test on transfer two files a 4.5MB text file and a 15MB 
-textfile. The results arn't bad considering the hardware Samba is 
-running on. It's a crap machine!!!!</P
+>The socket options that Samba uses are settable both on the command
+line with the -O option, or in the smb.conf file.</P
 ><P
->The updates mentioned in 1 and 2 brought up the transfer rates from 
-just over 100kB/s in some clients.</P
+>The "socket options" section of the smb.conf manual page describes how
+to set these and gives recommendations.</P
 ><P
->A new client is a P333 connected via a 100MB/s card and hub. The 
-transfer rates from this were good: 450-500kB/s on put and 600+kB/s 
-on get.</P
+>Getting the socket options right can make a big difference to your
+performance, but getting them wrong can degrade it by just as
+much. The correct settings are very dependent on your local network.</P
 ><P
->Looking at standard FTP throughput, Samba is a bit slower (100kB/s 
-upwards). I suppose there is more going on in the samba protocol, but 
-if it could get up to the rate of FTP the perfomance would be quite 
-staggering.</P
+>The socket option TCP_NODELAY is the one that seems to make the
+biggest single difference for most networks. Many people report that
+adding "socket options = TCP_NODELAY" doubles the read performance of
+a Samba drive. The best explanation I have seen for this is that the
+Microsoft TCP/IP stack is slow in sending tcp ACKs.</P
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN3100"
+NAME="AEN2847"
 ></A
->22.17. My Results</H2
-><P
->Some people want to see real numbers in a document like this, so here
-they are. I have a 486sx33 client running WfWg 3.11 with the 3.11b
-tcp/ip stack. It has a slow IDE drive and 20Mb of ram. It has a SMC
-Elite-16 ISA bus ethernet card. The only WfWg tuning I've done is to
-set DefaultRcvWindow in the [MSTCP] section of system.ini to 16384. My
-server is a 486dx3-66 running Linux. It also has 20Mb of ram and a SMC
-Elite-16 card. You can see my server config in the examples/tridge/
-subdirectory of the distribution.</P
+>17.4. Read size</H2
 ><P
->I get 490k/s on reading a 8Mb file with copy.
-I get 441k/s writing the same file to the samba server.</P
+>The option "read size" affects the overlap of disk reads/writes with
+network reads/writes. If the amount of data being transferred in
+several of the SMB commands (currently SMBwrite, SMBwriteX and
+SMBreadbraw) is larger than this value then the server begins writing
+the data before it has received the whole packet from the network, or
+in the case of SMBreadbraw, it begins writing to the network before
+all the data has been read from disk.</P
 ><P
->Of course, there's a lot more to benchmarks than 2 raw throughput
-figures, but it gives you a ballpark figure.</P
+>This overlapping works best when the speeds of disk and network access
+are similar, having very little effect when the speed of one is much
+greater than the other.</P
 ><P
->I've also tested Win95 and WinNT, and found WinNT gave me the best
-speed as a samba client. The fastest client of all (for me) is
-smbclient running on another linux box. Maybe I'll add those results
-here someday ...</P
-></DIV
-></DIV
+>The default value is 16384, but very little experimentation has been
+done yet to determine the optimal value, and it is likely that the best
+value will vary greatly between systems anyway. A value over 65536 is
+pointless and will cause you to allocate memory unnecessarily.</P
 ></DIV
 ><DIV
-CLASS="PART"
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
 ><A
-NAME="AEN3106"
+NAME="AEN2852"
 ></A
+>17.5. Max xmit</H2
+><P
+>At startup the client and server negotiate a "maximum transmit" size,
+which limits the size of nearly all SMB commands. You can set the
+maximum size that Samba will negotiate using the "max xmit = " option
+in smb.conf. Note that this is the maximum size of SMB request that 
+Samba will accept, but not the maximum size that the *client* will accept.
+The client maximum receive size is sent to Samba by the client and Samba
+honours this limit.</P
+><P
+>It defaults to 65536 bytes (the maximum), but it is possible that some
+clients may perform better with a smaller transmit unit. Trying values
+of less than 2048 is likely to cause severe problems.</P
+><P
+>In most cases the default is the best option.</P
+></DIV
 ><DIV
-CLASS="TITLEPAGE"
-><H1
-CLASS="TITLE"
->IV. Appendixes</H1
-><DIV
-CLASS="TOC"
-><DL
-><DT
-><B
->Table of Contents</B
-></DT
-><DT
->23. <A
-HREF="#PORTABILITY"
->Portability</A
-></DT
-><DD
-><DL
-><DT
->23.1. <A
-HREF="#AEN3115"
->HPUX</A
-></DT
-><DT
->23.2. <A
-HREF="#AEN3121"
->SCO Unix</A
-></DT
-><DT
->23.3. <A
-HREF="#AEN3125"
->DNIX</A
-></DT
-><DT
->23.4. <A
-HREF="#AEN3154"
->RedHat Linux Rembrandt-II</A
-></DT
-></DL
-></DD
-><DT
->24. <A
-HREF="#OTHER-CLIENTS"
->Samba and other CIFS clients</A
-></DT
-><DD
-><DL
-><DT
->24.1. <A
-HREF="#AEN3175"
->Macintosh clients?</A
-></DT
-><DT
->24.2. <A
-HREF="#AEN3184"
->OS2 Client</A
-></DT
-><DD
-><DL
-><DT
->24.2.1. <A
-HREF="#AEN3186"
->How can I configure OS/2 Warp Connect or 
-		OS/2 Warp 4 as a client for Samba?</A
-></DT
-><DT
->24.2.2. <A
-HREF="#AEN3201"
->How can I configure OS/2 Warp 3 (not Connect), 
-		OS/2 1.2, 1.3 or 2.x for Samba?</A
-></DT
-><DT
->24.2.3. <A
-HREF="#AEN3210"
->Are there any other issues when OS/2 (any version) 
-		is used as a client?</A
-></DT
-><DT
->24.2.4. <A
-HREF="#AEN3214"
->How do I get printer driver download working 
-		for OS/2 clients?</A
-></DT
-></DL
-></DD
-><DT
->24.3. <A
-HREF="#AEN3224"
->Windows for Workgroups</A
-></DT
-><DD
-><DL
-><DT
->24.3.1. <A
-HREF="#AEN3226"
->Use latest TCP/IP stack from Microsoft</A
-></DT
-><DT
->24.3.2. <A
-HREF="#AEN3231"
->Delete .pwl files after password change</A
-></DT
-><DT
->24.3.3. <A
-HREF="#AEN3236"
->Configure WfW password handling</A
-></DT
-><DT
->24.3.4. <A
-HREF="#AEN3240"
->Case handling of passwords</A
-></DT
-></DL
-></DD
-><DT
->24.4. <A
-HREF="#AEN3245"
->Windows '95/'98</A
-></DT
-><DT
->24.5. <A
-HREF="#AEN3261"
->Windows 2000 Service Pack 2</A
-></DT
-></DL
-></DD
-><DT
->25. <A
-HREF="#BUGREPORT"
->Reporting Bugs</A
-></DT
-><DD
-><DL
-><DT
->25.1. <A
-HREF="#AEN3285"
->Introduction</A
-></DT
-><DT
->25.2. <A
-HREF="#AEN3295"
->General info</A
-></DT
-><DT
->25.3. <A
-HREF="#AEN3301"
->Debug levels</A
-></DT
-><DT
->25.4. <A
-HREF="#AEN3318"
->Internal errors</A
-></DT
-><DT
->25.5. <A
-HREF="#AEN3328"
->Attaching to a running process</A
-></DT
-><DT
->25.6. <A
-HREF="#AEN3331"
->Patches</A
-></DT
-></DL
-></DD
-><DT
->26. <A
-HREF="#DIAGNOSIS"
->Diagnosing your samba server</A
-></DT
-><DD
-><DL
-><DT
->26.1. <A
-HREF="#AEN3354"
->Introduction</A
-></DT
-><DT
->26.2. <A
-HREF="#AEN3359"
->Assumptions</A
-></DT
-><DT
->26.3. <A
-HREF="#AEN3369"
->Tests</A
-></DT
-><DD
-><DL
-><DT
->26.3.1. <A
-HREF="#AEN3371"
->Test 1</A
-></DT
-><DT
->26.3.2. <A
-HREF="#AEN3377"
->Test 2</A
-></DT
-><DT
->26.3.3. <A
-HREF="#AEN3383"
->Test 3</A
-></DT
-><DT
->26.3.4. <A
-HREF="#AEN3398"
->Test 4</A
-></DT
-><DT
->26.3.5. <A
-HREF="#AEN3403"
->Test 5</A
-></DT
-><DT
->26.3.6. <A
-HREF="#AEN3409"
->Test 6</A
-></DT
-><DT
->26.3.7. <A
-HREF="#AEN3417"
->Test 7</A
-></DT
-><DT
->26.3.8. <A
-HREF="#AEN3443"
->Test 8</A
-></DT
-><DT
->26.3.9. <A
-HREF="#AEN3460"
->Test 9</A
-></DT
-><DT
->26.3.10. <A
-HREF="#AEN3468"
->Test 10</A
-></DT
-><DT
->26.3.11. <A
-HREF="#AEN3474"
->Test 11</A
-></DT
-></DL
-></DD
-><DT
->26.4. <A
-HREF="#AEN3479"
->Still having troubles?</A
-></DT
-></DL
-></DD
-></DL
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
+><A
+NAME="AEN2857"
+></A
+>17.6. Locking</H2
+><P
+>By default Samba does not implement strict locking on each read/write
+call (although it did in previous versions). If you enable strict
+locking (using "strict locking = yes") then you may find that you
+suffer a severe performance hit on some systems.</P
+><P
+>The performance hit will probably be greater on NFS mounted
+filesystems, but could be quite high even on local disks.</P
 ></DIV
+><DIV
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
+><A
+NAME="AEN2861"
+></A
+>17.7. Share modes</H2
+><P
+>Some people find that opening files is very slow. This is often
+because of the "share modes" code needed to fully implement the dos
+share modes stuff. You can disable this code using "share modes =
+no". This will gain you a lot in opening and closing files but will
+mean that (in some cases) the system won't force a second user of a
+file to open the file read-only if the first has it open
+read-write. For many applications that do their own locking this
+doesn't matter, but for some it may. Most Windows applications
+depend heavily on "share modes" working correctly and it is
+recommended that the Samba share mode support be left at the
+default of "on".</P
+><P
+>The share mode code in Samba has been re-written in the 1.9.17
+release following tests with the Ziff-Davis NetBench PC Benchmarking
+tool. It is now believed that Samba 1.9.17 implements share modes
+similarly to Windows NT.</P
+><P
+>NOTE: In the most recent versions of Samba there is an option to use
+shared memory via mmap() to implement the share modes. This makes
+things much faster. See the Makefile for how to enable this.</P
 ></DIV
 ><DIV
-CLASS="CHAPTER"
-><HR><H1
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
 ><A
-NAME="PORTABILITY"
+NAME="AEN2866"
 ></A
->Chapter 23. Portability</H1
+>17.8. Log level</H2
 ><P
->Samba works on a wide range of platforms but the interface all the 
-platforms provide is not always compatible. This chapter contains 
-platform-specific information about compiling and using samba.</P
+>If you set the log level (also known as "debug level") higher than 2
+then you may suffer a large drop in performance. This is because the
+server flushes the log file after each operation, which can be very
+expensive. </P
+></DIV
 ><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN3115"
+NAME="AEN2869"
 ></A
->23.1. HPUX</H2
+>17.9. Wide lines</H2
 ><P
->HP's implementation of supplementary groups is, er, non-standard (for
-hysterical reasons).  There are two group files, /etc/group and
-/etc/logingroup; the system maps UIDs to numbers using the former, but
-initgroups() reads the latter.  Most system admins who know the ropes
-symlink /etc/group to /etc/logingroup (hard link doesn't work for reasons
-too stupid to go into here).  initgroups() will complain if one of the
-groups you're in in /etc/logingroup has what it considers to be an invalid
-ID, which means outside the range [0..UID_MAX], where UID_MAX is (I think)
-60000 currently on HP-UX.  This precludes -2 and 65534, the usual 'nobody'
-GIDs.</P
+>The "wide links" option is now enabled by default, but if you disable
+it (for better security) then you may suffer a performance hit in
+resolving filenames. The performance loss is lessened if you have
+"getwd cache = yes", which is now the default.</P
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
+><A
+NAME="AEN2872"
+></A
+>17.10. Read raw</H2
 ><P
->If you encounter this problem, make sure that the programs that are failing 
-to initgroups() be run as users not in any groups with GIDs outside the 
-allowed range.</P
+>The "read raw" operation is designed to be an optimised, low-latency
+file read operation. A server may choose to not support it,
+however. and Samba makes support for "read raw" optional, with it
+being enabled by default.</P
 ><P
->This is documented in the HP manual pages under setgroups(2) and passwd(4).</P
+>In some cases clients don't handle "read raw" very well and actually
+get lower performance using it than they get using the conventional
+read operations. </P
 ><P
->On HPUX you must use gcc or the HP Ansi compiler. The free compiler
-that comes with HP-UX is not Ansi compliant and cannot compile
-Samba.</P
+>So you might like to try "read raw = no" and see what happens on your
+network. It might lower, raise or not affect your performance. Only
+testing can really tell.</P
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN3121"
+NAME="AEN2877"
 ></A
->23.2. SCO Unix</H2
+>17.11. Write raw</H2
 ><P
-> 
-If you run an old version of  SCO Unix then you may need to get important 
-TCP/IP patches for Samba to work correctly. Without the patch, you may 
-encounter corrupt data transfers using samba.</P
+>The "write raw" operation is designed to be an optimised, low-latency
+file write operation. A server may choose to not support it,
+however. and Samba makes support for "write raw" optional, with it
+being enabled by default.</P
 ><P
->The patch you need is UOD385 Connection Drivers SLS. It is available from
-SCO (ftp.sco.com, directory SLS, files uod385a.Z and uod385a.ltr.Z).</P
+>Some machines may find "write raw" slower than normal write, in which
+case you may wish to change this option.</P
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN3125"
+NAME="AEN2881"
 ></A
->23.3. DNIX</H2
+>17.12. Read prediction</H2
 ><P
->DNIX has a problem with seteuid() and setegid(). These routines are
-needed for Samba to work correctly, but they were left out of the DNIX
-C library for some reason.</P
+>Samba can do read prediction on some of the SMB commands. Read
+prediction means that Samba reads some extra data on the last file it
+read while waiting for the next SMB command to arrive. It can then
+respond more quickly when the next read request arrives.</P
 ><P
->For this reason Samba by default defines the macro NO_EID in the DNIX
-section of includes.h. This works around the problem in a limited way,
-but it is far from ideal, some things still won't work right.</P
+>This is disabled by default. You can enable it by using "read
+prediction = yes".</P
 ><P
-> 
-To fix the problem properly you need to assemble the following two
-functions and then either add them to your C library or link them into
-Samba.</P
+>Note that read prediction is only used on files that were opened read
+only.</P
 ><P
-> 
-put this in the file <TT
-CLASS="FILENAME"
->setegid.s</TT
->:</P
+>Read prediction should particularly help for those silly clients (such
+as "Write" under NT) which do lots of very small reads on a file.</P
 ><P
-><PRE
-CLASS="PROGRAMLISTING"
->        .globl  _setegid
-_setegid:
-        moveq   #47,d0
-        movl    #100,a0
-        moveq   #1,d1
-        movl    4(sp),a1
-        trap    #9
-        bccs    1$
-        jmp     cerror
-1$:
-        clrl    d0
-        rts</PRE
-></P
+>Samba will not read ahead more data than the amount specified in the
+"read size" option. It always reads ahead on 1k block boundaries.</P
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
+><A
+NAME="AEN2888"
+></A
+>17.13. Memory mapping</H2
 ><P
->put this in the file <TT
-CLASS="FILENAME"
->seteuid.s</TT
->:</P
+>Samba supports reading files via memory mapping them. One some
+machines this can give a large boost to performance, on others it
+makes not difference at all, and on some it may reduce performance.</P
+><P
+>To enable you you have to recompile Samba with the -DUSE_MMAP option
+on the FLAGS line of the Makefile.</P
+><P
+>Note that memory mapping is only used on files opened read only, and
+is not used by the "read raw" operation. Thus you may find memory
+mapping is more effective if you disable "read raw" using "read raw =
+no".</P
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
+><A
+NAME="AEN2893"
+></A
+>17.14. Slow Clients</H2
+><P
+>One person has reported that setting the protocol to COREPLUS rather
+than LANMAN2 gave a dramatic speed improvement (from 10k/s to 150k/s).</P
+><P
+>I suspect that his PC's (386sx16 based) were asking for more data than
+they could chew. I suspect a similar speed could be had by setting
+"read raw = no" and "max xmit = 2048", instead of changing the
+protocol. Lowering the "read size" might also help.</P
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
+><A
+NAME="AEN2897"
+></A
+>17.15. Slow Logins</H2
+><P
+>Slow logins are almost always due to the password checking time. Using
+the lowest practical "password level" will improve things a lot. You
+could also enable the "UFC crypt" option in the Makefile.</P
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
+><A
+NAME="AEN2900"
+></A
+>17.16. Client tuning</H2
+><P
+>Often a speed problem can be traced to the client. The client (for
+example Windows for Workgroups) can often be tuned for better TCP
+performance.</P
+><P
+>See your client docs for details. In particular, I have heard rumours
+that the WfWg options TCPWINDOWSIZE and TCPSEGMENTSIZE can have a
+large impact on performance.</P
+><P
+>Also note that some people have found that setting DefaultRcvWindow in
+the [MSTCP] section of the SYSTEM.INI file under WfWg to 3072 gives a
+big improvement. I don't know why.</P
+><P
+>My own experience wth DefaultRcvWindow is that I get much better
+performance with a large value (16384 or larger). Other people have
+reported that anything over 3072 slows things down enourmously. One
+person even reported a speed drop of a factor of 30 when he went from
+3072 to 8192. I don't know why.</P
+><P
+>It probably depends a lot on your hardware, and the type of unix box
+you have at the other end of the link.</P
+><P
+>Paul Cochrane has done some testing on client side tuning and come 
+to the following conclusions:</P
+><P
+>Install the W2setup.exe file from www.microsoft.com. This is an 
+update for the winsock stack and utilities which improve performance.</P
+><P
+>Configure the win95 TCPIP registry settings to give better 
+perfomance. I use a program called MTUSPEED.exe which I got off the 
+net. There are various other utilities of this type freely available. 
+The setting which give the best performance for me are:</P
 ><P
-><PRE
-CLASS="PROGRAMLISTING"
->        .globl  _seteuid
-_seteuid:
-        moveq   #47,d0
-        movl    #100,a0
-        moveq   #0,d1
-        movl    4(sp),a1
-        trap    #9
-        bccs    1$
-        jmp     cerror
-1$:
-        clrl    d0
-        rts</PRE
 ></P
+><OL
+TYPE="1"
+><LI
+><P
+>MaxMTU                  Remove</P
+></LI
+><LI
+><P
+>RWIN                    Remove</P
+></LI
+><LI
+><P
+>MTUAutoDiscover         Disable</P
+></LI
+><LI
+><P
+>MTUBlackHoleDetect      Disable</P
+></LI
+><LI
 ><P
->after creating the above files you then assemble them using</P
+>Time To Live            Enabled</P
+></LI
+><LI
 ><P
-><B
-CLASS="COMMAND"
->as seteuid.s</B
-></P
+>Time To Live - HOPS     32</P
+></LI
+><LI
 ><P
-><B
-CLASS="COMMAND"
->as setegid.s</B
-></P
+>NDI Cache Size          0</P
+></LI
+></OL
 ><P
->that should produce the files <TT
-CLASS="FILENAME"
->seteuid.o</TT
-> and 
-<TT
-CLASS="FILENAME"
->setegid.o</TT
-></P
+>I tried virtually all of the items mentioned in the document and 
+the only one which made a difference to me was the socket options. It 
+turned out I was better off without any!!!!!</P
 ><P
->then you need to add these to the LIBSM line in the DNIX section of
-the Samba Makefile. Your LIBSM line will then look something like this:</P
+>In terms of overall speed of transfer, between various win95 clients 
+and a DX2-66 20MB server with a crappy NE2000 compatible and old IDE 
+drive (Kernel 2.0.30). The transfer rate was reasonable for 10 baseT.</P
 ><P
-><PRE
-CLASS="PROGRAMLISTING"
->LIBSM = setegid.o seteuid.o -ln</PRE
-></P
+>FIXME
+The figures are:          Put              Get 
+P166 client 3Com card:    420-440kB/s      500-520kB/s
+P100 client 3Com card:    390-410kB/s      490-510kB/s
+DX4-75 client NE2000:     370-380kB/s      330-350kB/s</P
 ><P
-> 
-You should then remove the line:</P
+>I based these test on transfer two files a 4.5MB text file and a 15MB 
+textfile. The results arn't bad considering the hardware Samba is 
+running on. It's a crap machine!!!!</P
 ><P
-><PRE
-CLASS="PROGRAMLISTING"
->#define NO_EID</PRE
-></P
+>The updates mentioned in 1 and 2 brought up the transfer rates from 
+just over 100kB/s in some clients.</P
 ><P
->from the DNIX section of <TT
-CLASS="FILENAME"
->includes.h</TT
-></P
+>A new client is a P333 connected via a 100MB/s card and hub. The 
+transfer rates from this were good: 450-500kB/s on put and 600+kB/s 
+on get.</P
+><P
+>Looking at standard FTP throughput, Samba is a bit slower (100kB/s 
+upwards). I suppose there is more going on in the samba protocol, but 
+if it could get up to the rate of FTP the perfomance would be quite 
+staggering.</P
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN3154"
+NAME="AEN2932"
 ></A
->23.4. RedHat Linux Rembrandt-II</H2
+>17.17. My Results</H2
 ><P
->By default RedHat Rembrandt-II during installation adds an
-entry to /etc/hosts as follows:
-<PRE
-CLASS="PROGRAMLISTING"
->	127.0.0.1 loopback "hostname"."domainname"</PRE
-></P
+>Some people want to see real numbers in a document like this, so here
+they are. I have a 486sx33 client running WfWg 3.11 with the 3.11b
+tcp/ip stack. It has a slow IDE drive and 20Mb of ram. It has a SMC
+Elite-16 ISA bus ethernet card. The only WfWg tuning I've done is to
+set DefaultRcvWindow in the [MSTCP] section of system.ini to 16384. My
+server is a 486dx3-66 running Linux. It also has 20Mb of ram and a SMC
+Elite-16 card. You can see my server config in the examples/tridge/
+subdirectory of the distribution.</P
+><P
+>I get 490k/s on reading a 8Mb file with copy.
+I get 441k/s writing the same file to the samba server.</P
 ><P
->This causes Samba to loop back onto the loopback interface.
-The result is that Samba fails to communicate correctly with
-the world and therefor may fail to correctly negotiate who
-is the master browse list holder and who is the master browser.</P
+>Of course, there's a lot more to benchmarks than 2 raw throughput
+figures, but it gives you a ballpark figure.</P
 ><P
->Corrective Action:	Delete the entry after the word loopback
-	in the line starting 127.0.0.1</P
+>I've also tested Win95 and WinNT, and found WinNT gave me the best
+speed as a samba client. The fastest client of all (for me) is
+smbclient running on another linux box. Maybe I'll add those results
+here someday ...</P
 ></DIV
 ></DIV
 ><DIV
@@ -15659,7 +13752,7 @@ CLASS="CHAPTER"
 ><A
 NAME="OTHER-CLIENTS"
 ></A
->Chapter 24. Samba and other CIFS clients</H1
+>Chapter 18. Samba and other CIFS clients</H1
 ><P
 >This chapter contains client-specific information.</P
 ><DIV
@@ -15667,9 +13760,9 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN3175"
+NAME="AEN2953"
 ></A
->24.1. Macintosh clients?</H2
+>18.1. Macintosh clients?</H2
 ><P
 >Yes. <A
 HREF="http://www.thursby.com/"
@@ -15713,17 +13806,17 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN3184"
+NAME="AEN2962"
 ></A
->24.2. OS2 Client</H2
+>18.2. OS2 Client</H2
 ><DIV
 CLASS="SECT2"
 ><H3
 CLASS="SECT2"
 ><A
-NAME="AEN3186"
+NAME="AEN2964"
 ></A
->24.2.1. How can I configure OS/2 Warp Connect or 
+>18.2.1. How can I configure OS/2 Warp Connect or 
 		OS/2 Warp 4 as a client for Samba?</H3
 ><P
 >A more complete answer to this question can be 
@@ -15780,9 +13873,9 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN3201"
+NAME="AEN2979"
 ></A
->24.2.2. How can I configure OS/2 Warp 3 (not Connect), 
+>18.2.2. How can I configure OS/2 Warp 3 (not Connect), 
 		OS/2 1.2, 1.3 or 2.x for Samba?</H3
 ><P
 >You can use the free Microsoft LAN Manager 2.2c Client 
@@ -15824,9 +13917,9 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN3210"
+NAME="AEN2988"
 ></A
->24.2.3. Are there any other issues when OS/2 (any version) 
+>18.2.3. Are there any other issues when OS/2 (any version) 
 		is used as a client?</H3
 ><P
 >When you do a NET VIEW or use the "File and Print 
@@ -15846,9 +13939,9 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN3214"
+NAME="AEN2992"
 ></A
->24.2.4. How do I get printer driver download working 
+>18.2.4. How do I get printer driver download working 
 		for OS/2 clients?</H3
 ><P
 >First, create a share called [PRINTDRV] that is 
@@ -15897,17 +13990,17 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN3224"
+NAME="AEN3002"
 ></A
->24.3. Windows for Workgroups</H2
+>18.3. Windows for Workgroups</H2
 ><DIV
 CLASS="SECT2"
 ><H3
 CLASS="SECT2"
 ><A
-NAME="AEN3226"
+NAME="AEN3004"
 ></A
->24.3.1. Use latest TCP/IP stack from Microsoft</H3
+>18.3.1. Use latest TCP/IP stack from Microsoft</H3
 ><P
 >Use the latest TCP/IP stack from microsoft if you use Windows
 for workgroups.</P
@@ -15927,9 +14020,9 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN3231"
+NAME="AEN3009"
 ></A
->24.3.2. Delete .pwl files after password change</H3
+>18.3.2. Delete .pwl files after password change</H3
 ><P
 >WfWg does a lousy job with passwords. I find that if I change my
 password on either the unix box or the PC the safest thing to do is to
@@ -15947,9 +14040,9 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN3236"
+NAME="AEN3014"
 ></A
->24.3.3. Configure WfW password handling</H3
+>18.3.3. Configure WfW password handling</H3
 ><P
 >There is a program call admincfg.exe
 on the last disk (disk 8) of the WFW 3.11 disk set.  To install it
@@ -15966,9 +14059,9 @@ CLASS="SECT2"
 ><HR><H3
 CLASS="SECT2"
 ><A
-NAME="AEN3240"
+NAME="AEN3018"
 ></A
->24.3.4. Case handling of passwords</H3
+>18.3.4. Case handling of passwords</H3
 ><P
 >Windows for Workgroups uppercases the password before sending it to the server. Unix passwords can be case-sensitive though. Check the <A
 HREF="smb.conf.5.html"
@@ -15985,9 +14078,9 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN3245"
+NAME="AEN3023"
 ></A
->24.4. Windows '95/'98</H2
+>18.4. Windows '95/'98</H2
 ><P
 >When using Windows 95 OEM SR2 the following updates are recommended where Samba
 is being used. Please NOTE that the above change will affect you once these
@@ -16033,9 +14126,9 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN3261"
+NAME="AEN3039"
 ></A
->24.5. Windows 2000 Service Pack 2</H2
+>18.5. Windows 2000 Service Pack 2</H2
 ><P
 > 
 There are several annoyances with Windows 2000 SP2. One of which
@@ -16115,28 +14208,191 @@ create accounts on the Samba host for Domain users.</I
 CLASS="CHAPTER"
 ><HR><H1
 ><A
-NAME="BUGREPORT"
+NAME="CVS-ACCESS"
 ></A
->Chapter 25. Reporting Bugs</H1
+>Chapter 19. HOWTO Access Samba source code via CVS</H1
 ><DIV
 CLASS="SECT1"
 ><H2
 CLASS="SECT1"
 ><A
-NAME="AEN3285"
+NAME="AEN3063"
 ></A
->25.1. Introduction</H2
+>19.1. Introduction</H2
+><P
+>Samba is developed in an open environment.  Developers use CVS
+(Concurrent Versioning System) to "checkin" (also known as 
+"commit") new source code.  Samba's various CVS branches can
+be accessed via anonymous CVS using the instructions
+detailed in this chapter.</P
 ><P
->The email address for bug reports for stable releases is <A
-HREF="samba@samba.org"
+>This document is a modified version of the instructions found at
+<A
+HREF="http://samba.org/samba/cvs.html"
 TARGET="_top"
->samba@samba.org</A
->. 
-Bug reports for alpha releases should go to <A
-HREF="mailto:samba-technical@samba.org"
+>http://samba.org/samba/cvs.html</A
+></P
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
+><A
+NAME="AEN3068"
+></A
+>19.2. CVS Access to samba.org</H2
+><P
+>The machine samba.org runs a publicly accessible CVS 
+repository for access to the source code of several packages, 
+including samba, rsync and jitterbug. There are two main ways of 
+accessing the CVS server on this host.</P
+><DIV
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
+><A
+NAME="AEN3071"
+></A
+>19.2.1. Access via CVSweb</H3
+><P
+>You can access the source code via your 
+favourite WWW browser. This allows you to access the contents of 
+individual files in the repository and also to look at the revision 
+history and commit logs of individual files. You can also ask for a diff 
+listing between any two versions on the repository.</P
+><P
+>Use the URL : <A
+HREF="http://samba.org/cgi-bin/cvsweb"
 TARGET="_top"
->samba-technical@samba.org</A
->.</P
+>http://samba.org/cgi-bin/cvsweb</A
+></P
+></DIV
+><DIV
+CLASS="SECT2"
+><HR><H3
+CLASS="SECT2"
+><A
+NAME="AEN3076"
+></A
+>19.2.2. Access via cvs</H3
+><P
+>You can also access the source code via a 
+normal cvs client.  This gives you much more control over you can 
+do with the repository and allows you to checkout whole source trees 
+and keep them up to date via normal cvs commands. This is the 
+preferred method of access if you are a developer and not
+just a casual browser.</P
+><P
+>To download the latest cvs source code, point your
+browser at the URL : <A
+HREF="http://www.cyclic.com/"
+TARGET="_top"
+>http://www.cyclic.com/</A
+>.
+and click on the 'How to get cvs' link. CVS is free software under 
+the GNU GPL (as is Samba).  Note that there are several graphical CVS clients
+which provide a graphical interface to the sometimes mundane CVS commands.
+Links to theses clients are also available from http://www.cyclic.com.</P
+><P
+>To gain access via anonymous cvs use the following steps. 
+For this example it is assumed that you want a copy of the 
+samba source code. For the other source code repositories 
+on this system just substitute the correct package name</P
+><P
+></P
+><OL
+TYPE="1"
+><LI
+><P
+>	Install a recent copy of cvs. All you really need is a 
+	copy of the cvs client binary. 
+	</P
+></LI
+><LI
+><P
+>	Run the command 
+	</P
+><P
+>	<B
+CLASS="COMMAND"
+>cvs -d :pserver:cvs@samba.org:/cvsroot login</B
+>
+	</P
+><P
+>	When it asks you for a password type <TT
+CLASS="USERINPUT"
+><B
+>cvs</B
+></TT
+>.
+	</P
+></LI
+><LI
+><P
+>	Run the command 
+	</P
+><P
+>	<B
+CLASS="COMMAND"
+>cvs -d :pserver:cvs@samba.org:/cvsroot co samba</B
+>
+	</P
+><P
+>	This will create a directory called samba containing the 
+	latest samba source code (i.e. the HEAD tagged cvs branch). This 
+	currently corresponds to the 3.0 development tree. 
+	</P
+><P
+>	CVS branches other HEAD can be obtained by using the <TT
+CLASS="PARAMETER"
+><I
+>-r</I
+></TT
+>
+	and defining a tag name.  A list of branch tag names can be found on the
+	"Development" page of the samba web site.  A common request is to obtain the
+	latest 2.2 release code.  This could be done by using the following command.
+	</P
+><P
+>	<B
+CLASS="COMMAND"
+>cvs -d :pserver:cvs@samba.org:/cvsroot co -r SAMBA_2_2 samba</B
+>
+	</P
+></LI
+><LI
+><P
+>	Whenever you want to merge in the latest code changes use 
+	the following command from within the samba directory: 
+	</P
+><P
+>	<B
+CLASS="COMMAND"
+>cvs update -d -P</B
+>
+	</P
+></LI
+></OL
+></DIV
+></DIV
+></DIV
+><DIV
+CLASS="CHAPTER"
+><HR><H1
+><A
+NAME="BUGREPORT"
+></A
+>Chapter 20. Reporting Bugs</H1
+><DIV
+CLASS="SECT1"
+><H2
+CLASS="SECT1"
+><A
+NAME="AEN3111"
+></A
+>20.1. Introduction</H2
+><P
+>The email address for bug reports is samba@samba.org</P
 ><P
 >Please take the time to read this file before you submit a bug
 report. Also, please see if it has changed between releases, as we
@@ -16157,20 +14413,16 @@ that list that may be able to help you.</P
 ><P
 >You may also like to look though the recent mailing list archives,
 which are conveniently accessible on the Samba web pages
-at <A
-HREF="http://samba.org/samba/"
-TARGET="_top"
->http://samba.org/samba/</A
->.</P
+at http://samba.org/samba/ </P
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN3295"
+NAME="AEN3118"
 ></A
->25.2. General info</H2
+>20.2. General info</H2
 ><P
 >Before submitting a bug report check your config for silly
 errors. Look in your log files for obvious messages that tell you that
@@ -16193,9 +14445,9 @@ CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN3301"
+NAME="AEN3124"
 ></A
->25.3. Debug levels</H2
+>20.3. Debug levels</H2
 ><P
 >If the bug has anything to do with Samba behaving incorrectly as a
 server (like refusing to open a file) then the log files will probably
@@ -16254,626 +14506,354 @@ CLASS="COMMAND"
 >log level =</B
 > value is increased you will record 
 a significantly increasing level of debugging information. For most 
-debugging operations you may not need a setting higher than 3. Nearly 
-all bugs can be tracked at a setting of 10, but be prepared for a VERY 
-large volume of log data.</P
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN3318"
-></A
->25.4. Internal errors</H2
-><P
->If you get a "INTERNAL ERROR" message in your log files it means that
-Samba got an unexpected signal while running. It is probably a
-segmentation fault and almost certainly means a bug in Samba (unless
-you have faulty hardware or system software)</P
-><P
->If the message came from smbd then it will probably be accompanied by
-a message which details the last SMB message received by smbd. This
-info is often very useful in tracking down the problem so please
-include it in your bug report.</P
-><P
->You should also detail how to reproduce the problem, if
-possible. Please make this reasonably detailed.</P
-><P
->You may also find that a core file appeared in a "corefiles"
-subdirectory of the directory where you keep your samba log
-files. This file is the most useful tool for tracking down the bug. To
-use it you do this:</P
-><P
-><B
-CLASS="COMMAND"
->gdb smbd core</B
-></P
-><P
->adding appropriate paths to smbd and core so gdb can find them. If you
-don't have gdb then try "dbx". Then within the debugger use the
-command "where" to give a stack trace of where the problem
-occurred. Include this in your mail.</P
-><P
->If you known any assembly language then do a "disass" of the routine
-where the problem occurred (if its in a library routine then
-disassemble the routine that called it) and try to work out exactly
-where the problem is by looking at the surrounding code. Even if you
-don't know assembly then incuding this info in the bug report can be
-useful. </P
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN3328"
-></A
->25.5. Attaching to a running process</H2
-><P
->Unfortunately some unixes (in particular some recent linux kernels)
-refuse to dump a core file if the task has changed uid (which smbd
-does often). To debug with this sort of system you could try to attach
-to the running process using "gdb smbd PID" where you get PID from
-smbstatus. Then use "c" to continue and try to cause the core dump
-using the client. The debugger should catch the fault and tell you
-where it occurred.</P
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN3331"
-></A
->25.6. Patches</H2
-><P
->The best sort of bug report is one that includes a fix! If you send us
-patches please use <B
-CLASS="COMMAND"
->diff -u</B
-> format if your version of 
-diff supports it, otherwise use <B
-CLASS="COMMAND"
->diff -c4</B
->. Make sure 
-your do the diff against a clean version of the source and let me know 
-exactly what version you used. </P
-></DIV
-></DIV
-><DIV
-CLASS="CHAPTER"
-><HR><H1
-><A
-NAME="DIAGNOSIS"
-></A
->Chapter 26. Diagnosing your samba server</H1
-><DIV
-CLASS="SECT1"
-><H2
-CLASS="SECT1"
-><A
-NAME="AEN3354"
-></A
->26.1. Introduction</H2
-><P
->This file contains a list of tests you can perform to validate your
-Samba server. It also tells you what the likely cause of the problem
-is if it fails any one of these steps. If it passes all these tests
-then it is probably working fine.</P
-><P
->You should do ALL the tests, in the order shown. We have tried to
-carefully choose them so later tests only use capabilities verified in
-the earlier tests.</P
-><P
->If you send one of the samba mailing lists  an email saying "it doesn't work"
-and you have not followed this test procedure then you should not be surprised
-your email is ignored.</P
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN3359"
-></A
->26.2. Assumptions</H2
-><P
->In all of the tests it is assumed you have a Samba server called 
-BIGSERVER and a PC called ACLIENT both in workgroup TESTGROUP.</P
-><P
->The procedure is similar for other types of clients.</P
-><P
->It is also assumed you know the name of an available share in your
-smb.conf. I will assume this share is called "tmp". You can add a
-"tmp" share like by adding the following to smb.conf:</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->&#13;[tmp]
- comment = temporary files 
- path = /tmp
- read only = yes&#13;</PRE
-></P
-><P
->THESE TESTS ASSUME VERSION 3.0.0 OR LATER OF THE SAMBA SUITE. SOME
-COMMANDS SHOWN DID NOT EXIST IN EARLIER VERSIONS</P
-><P
->Please pay attention to the error messages you receive. If any error message
-reports that your server is being unfriendly you should first check that you
-IP name resolution is correctly set up. eg: Make sure your /etc/resolv.conf
-file points to name servers that really do exist.</P
-><P
->Also, if you do not have DNS server access for name resolution please check
-that the settings for your smb.conf file results in "dns proxy = no". The
-best way to check this is with "testparm smb.conf"</P
-></DIV
-><DIV
-CLASS="SECT1"
-><HR><H2
-CLASS="SECT1"
-><A
-NAME="AEN3369"
-></A
->26.3. Tests</H2
-><DIV
-CLASS="SECT2"
-><H3
-CLASS="SECT2"
-><A
-NAME="AEN3371"
-></A
->26.3.1. Test 1</H3
-><P
->In the directory in which you store your smb.conf file, run the command
-"testparm smb.conf". If it reports any errors then your smb.conf
-configuration file is faulty.</P
-><P
->Note:	Your smb.conf file may be located in: <TT
-CLASS="FILENAME"
->/etc/samba</TT
->
-	Or in:   <TT
-CLASS="FILENAME"
->/usr/local/samba/lib</TT
-></P
-></DIV
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN3377"
-></A
->26.3.2. Test 2</H3
-><P
->Run the command "ping BIGSERVER" from the PC and "ping ACLIENT" from
-the unix box. If you don't get a valid response then your TCP/IP
-software is not correctly installed. </P
-><P
->Note that you will need to start a "dos prompt" window on the PC to
-run ping.</P
-><P
->If you get a message saying "host not found" or similar then your DNS
-software or /etc/hosts file is not correctly setup. It is possible to
-run samba without DNS entries for the server and client, but I assume
-you do have correct entries for the remainder of these tests. </P
-><P
->Another reason why ping might fail is if your host is running firewall 
-software. You will need to relax the rules to let in the workstation
-in question, perhaps by allowing access from another subnet (on Linux
-this is done via the ipfwadm program.)</P
-></DIV
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN3383"
-></A
->26.3.3. Test 3</H3
-><P
->Run the command "smbclient -L BIGSERVER" on the unix box. You
-should get a list of available shares back. </P
-><P
->If you get a error message containing the string "Bad password" then
-you probably have either an incorrect "hosts allow", "hosts deny" or
-"valid users" line in your smb.conf, or your guest account is not
-valid. Check what your guest account is using "testparm" and
-temporarily remove any "hosts allow", "hosts deny", "valid users" or
-"invalid users" lines.</P
-><P
->If you get a "connection refused" response then the smbd server may
-not be running. If you installed it in inetd.conf then you probably edited
-that file incorrectly. If you installed it as a daemon then check that
-it is running, and check that the netbios-ssn port is in a LISTEN
-state using "netstat -a".</P
-><P
->If you get a "session request failed" then the server refused the
-connection. If it says "Your server software is being unfriendly" then
-its probably because you have invalid command line parameters to smbd,
-or a similar fatal problem with the initial startup of smbd. Also
-check your config file (smb.conf) for syntax errors with "testparm"
-and that the various directories where samba keeps its log and lock
-files exist.</P
-><P
->There are a number of reasons for which smbd may refuse or decline
-a session request. The most common of these involve one or more of
-the following smb.conf file entries:</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->	hosts deny = ALL
-	hosts allow = xxx.xxx.xxx.xxx/yy
-	bind interfaces only = Yes</PRE
-></P
-><P
->In the above, no allowance has been made for any session requests that
-will automatically translate to the loopback adaptor address 127.0.0.1.
-To solve this problem change these lines to:</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->	hosts deny = ALL
-	hosts allow = xxx.xxx.xxx.xxx/yy 127.</PRE
-></P
-><P
->Do NOT use the "bind interfaces only" parameter where you may wish to
-use the samba password change facility, or where smbclient may need to
-access local service for name resolution or for local resource
-connections. (Note: the "bind interfaces only" parameter deficiency
-where it will not allow connections to the loopback address will be
-fixed soon).</P
-><P
->Another common cause of these two errors is having something already running 
-on port 139, such as Samba (ie: smbd is running from inetd already) or
-something like Digital's Pathworks. Check your inetd.conf file before trying
-to start smbd as a daemon, it can avoid a lot of frustration!</P
-><P
->And yet another possible cause for failure of TEST 3 is when the subnet mask
-and / or broadcast address settings are incorrect. Please check that the
-network interface IP Address / Broadcast Address / Subnet Mask settings are
-correct and that Samba has correctly noted these in the log.nmb file.</P
+debugging operations you may not need a setting higher than 3. Nearly 
+all bugs can be tracked at a setting of 10, but be prepared for a VERY 
+large volume of log data.</P
 ></DIV
 ><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
 ><A
-NAME="AEN3398"
+NAME="AEN3141"
 ></A
->26.3.4. Test 4</H3
+>20.4. Internal errors</H2
 ><P
->Run the command "nmblookup -B BIGSERVER __SAMBA__". You should get the
-IP address of your Samba server back.</P
+>If you get a "INTERNAL ERROR" message in your log files it means that
+Samba got an unexpected signal while running. It is probably a
+segmentation fault and almost certainly means a bug in Samba (unless
+you have faulty hardware or system software)</P
 ><P
->If you don't then nmbd is incorrectly installed. Check your inetd.conf
-if you run it from there, or that the daemon is running and listening
-to udp port 137.</P
+>If the message came from smbd then it will probably be accompanied by
+a message which details the last SMB message received by smbd. This
+info is often very useful in tracking down the problem so please
+include it in your bug report.</P
 ><P
->One common problem is that many inetd implementations can't take many
-parameters on the command line. If this is the case then create a
-one-line script that contains the right parameters and run that from
-inetd.</P
-></DIV
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN3403"
-></A
->26.3.5. Test 5</H3
+>You should also detail how to reproduce the problem, if
+possible. Please make this reasonably detailed.</P
 ><P
->run the command <B
+>You may also find that a core file appeared in a "corefiles"
+subdirectory of the directory where you keep your samba log
+files. This file is the most useful tool for tracking down the bug. To
+use it you do this:</P
+><P
+><B
 CLASS="COMMAND"
->nmblookup -B ACLIENT '*'</B
+>gdb smbd core</B
 ></P
 ><P
->You should get the PCs IP address back. If you don't then the client
-software on the PC isn't installed correctly, or isn't started, or you
-got the name of the PC wrong. </P
+>adding appropriate paths to smbd and core so gdb can find them. If you
+don't have gdb then try "dbx". Then within the debugger use the
+command "where" to give a stack trace of where the problem
+occurred. Include this in your mail.</P
 ><P
->If ACLIENT doesn't resolve via DNS then use the IP address of the
-client in the above test.</P
+>If you known any assembly language then do a "disass" of the routine
+where the problem occurred (if its in a library routine then
+disassemble the routine that called it) and try to work out exactly
+where the problem is by looking at the surrounding code. Even if you
+don't know assembly then incuding this info in the bug report can be
+useful. </P
 ></DIV
 ><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
 ><A
-NAME="AEN3409"
+NAME="AEN3151"
 ></A
->26.3.6. Test 6</H3
-><P
->Run the command <B
-CLASS="COMMAND"
->nmblookup -d 2 '*'</B
-></P
-><P
->This time we are trying the same as the previous test but are trying
-it via a broadcast to the default broadcast address. A number of
-Netbios/TCPIP hosts on the network should respond, although Samba may
-not catch all of the responses in the short time it listens. You
-should see "got a positive name query response" messages from several
-hosts.</P
-><P
->If this doesn't give a similar result to the previous test then
-nmblookup isn't correctly getting your broadcast address through its
-automatic mechanism. In this case you should experiment use the
-"interfaces" option in smb.conf to manually configure your IP
-address, broadcast and netmask. </P
-><P
->If your PC and server aren't on the same subnet then you will need to
-use the -B option to set the broadcast address to the that of the PCs
-subnet.</P
+>20.5. Attaching to a running process</H2
 ><P
->This test will probably fail if your subnet mask and broadcast address are
-not correct. (Refer to TEST 3 notes above).</P
+>Unfortunately some unixes (in particular some recent linux kernels)
+refuse to dump a core file if the task has changed uid (which smbd
+does often). To debug with this sort of system you could try to attach
+to the running process using "gdb smbd PID" where you get PID from
+smbstatus. Then use "c" to continue and try to cause the core dump
+using the client. The debugger should catch the fault and tell you
+where it occurred.</P
 ></DIV
 ><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
 ><A
-NAME="AEN3417"
+NAME="AEN3154"
 ></A
->26.3.7. Test 7</H3
-><P
->Run the command <B
-CLASS="COMMAND"
->smbclient //BIGSERVER/TMP</B
->. You should 
-then be prompted for a password. You should use the password of the account
-you are logged into the unix box with. If you want to test with
-another account then add the -U &gt;accountname&lt; option to the end of
-the command line.  eg: 
-<B
-CLASS="COMMAND"
->smbclient //bigserver/tmp -Ujohndoe</B
-></P
-><P
->Note: It is possible to specify the password along with the username
-as follows:
-<B
-CLASS="COMMAND"
->smbclient //bigserver/tmp -Ujohndoe%secret</B
-></P
-><P
->Once you enter the password you should get the "smb&#62;" prompt. If you
-don't then look at the error message. If it says "invalid network
-name" then the service "tmp" is not correctly setup in your smb.conf.</P
-><P
->If it says "bad password" then the likely causes are:</P
-><P
-></P
-><OL
-TYPE="1"
-><LI
-><P
->	you have shadow passords (or some other password system) but didn't
-	compile in support for them in smbd
-	</P
-></LI
-><LI
-><P
->	your "valid users" configuration is incorrect
-	</P
-></LI
-><LI
-><P
->	you have a mixed case password and you haven't enabled the "password
-	level" option at a high enough level
-	</P
-></LI
-><LI
-><P
->	the "path =" line in smb.conf is incorrect. Check it with testparm
-	</P
-></LI
-><LI
-><P
->	you enabled password encryption but didn't create the SMB encrypted
-	password file
-	</P
-></LI
-></OL
+>20.6. Patches</H2
 ><P
->Once connected you should be able to use the commands 
-<B
-CLASS="COMMAND"
->dir</B
-> <B
-CLASS="COMMAND"
->get</B
-> <B
-CLASS="COMMAND"
->put</B
-> etc. 
-Type <B
+>The best sort of bug report is one that includes a fix! If you send us
+patches please use <B
 CLASS="COMMAND"
->help &gt;command&lt;</B
-> for instructions. You should
-especially check that the amount of free disk space shown is correct
-when you type <B
+>diff -u</B
+> format if your version of 
+diff supports it, otherwise use <B
 CLASS="COMMAND"
->dir</B
->.</P
+>diff -c4</B
+>. Make sure 
+your do the diff against a clean version of the source and let me know 
+exactly what version you used. </P
+></DIV
 ></DIV
 ><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
+CLASS="CHAPTER"
+><HR><H1
 ><A
-NAME="AEN3443"
+NAME="GROUPMAPPING"
 ></A
->26.3.8. Test 8</H3
+>Chapter 21. Group mapping HOWTO</H1
 ><P
->On the PC type the command <B
+> 
+Starting with Samba 3.0 alpha 2, a new group mapping function is available. The
+current method (likely to change) to manage the groups is a new command called
+<B
 CLASS="COMMAND"
->net view \\BIGSERVER</B
->. You will 
-need to do this from within a "dos prompt" window. You should get back a 
-list of available shares on the server.</P
+>smbgroupedit</B
+>.</P
 ><P
->If you get a "network name not found" or similar error then netbios
-name resolution is not working. This is usually caused by a problem in
-nmbd. To overcome it you could do one of the following (you only need
-to choose one of them):</P
+>The first immediate reason to use the group mapping on a PDC, is that
+the <B
+CLASS="COMMAND"
+>domain admin group</B
+> of <TT
+CLASS="FILENAME"
+>smb.conf</TT
+> is 
+now gone. This parameter was used to give the listed users local admin rights 
+on their workstations. It was some magic stuff that simply worked but didn't
+scale very well for complex setups.</P
+><P
+>Let me explain how it works on NT/W2K, to have this magic fade away.
+When installing NT/W2K on a computer, the installer program creates some users
+and groups. Notably the 'Administrators' group, and gives to that group some
+privileges like the ability to change the date and time or to kill any process
+(or close too) running on the local machine. The 'Administrator' user is a
+member of the 'Administrators' group, and thus 'inherit' the 'Administrators'
+group privileges. If a 'joe' user is created and become a member of the
+'Administrator' group, 'joe' has exactly the same rights as 'Administrator'.</P
+><P
+>When a NT/W2K machine is joined to a domain, during that phase, the "Domain
+Administrators' group of the PDC is added to the 'Administrators' group of the
+workstation. Every members of the 'Domain Administrators' group 'inherit' the
+rights of the 'Administrators' group when logging on the workstation.</P
+><P
+>You are now wondering how to make some of your samba PDC users members of the
+'Domain Administrators' ? That's really easy.</P
 ><P
 ></P
 ><OL
 TYPE="1"
 ><LI
 ><P
->	fixup the nmbd installation</P
+>create a unix group (usually in <TT
+CLASS="FILENAME"
+>/etc/group</TT
+>), let's call it domadm</P
 ></LI
 ><LI
 ><P
->	add the IP address of BIGSERVER to the "wins server" box in the
-	advanced tcp/ip setup on the PC.</P
+>add to this group the users that must be Administrators. For example if you want joe,john and mary, your entry in <TT
+CLASS="FILENAME"
+>/etc/group</TT
+> will look like:</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>domadm:x:502:joe,john,mary</PRE
+></P
 ></LI
 ><LI
 ><P
->	enable windows name resolution via DNS in the advanced section of
-	the tcp/ip setup</P
-></LI
-><LI
+>Map this domadm group to the <B
+CLASS="COMMAND"
+>domain admins</B
+> group by running the command:</P
 ><P
->	add BIGSERVER to your lmhosts file on the PC.</P
+><B
+CLASS="COMMAND"
+>smbgroupedit -c "Domain Admins" -u domadm</B
+></P
 ></LI
 ></OL
 ><P
->If you get a "invalid network name" or "bad password error" then the
-same fixes apply as they did for the "smbclient -L" test above. In
-particular, make sure your "hosts allow" line is correct (see the man
-pages)</P
-><P
->Also, do not overlook that fact that when the workstation requests the
-connection to the samba server it will attempt to connect using the 
-name with which you logged onto your Windows machine. You need to make
-sure that an account exists on your Samba server with that exact same
-name and password.</P
+>You're set, joe, john and mary are domain administrators !</P
 ><P
->If you get "specified computer is not receiving requests" or similar
-it probably means that the host is not contactable via tcp services.
-Check to see if the host is running tcp wrappers, and if so add an entry in
-the hosts.allow file for your client (or subnet, etc.)</P
-></DIV
-><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
-><A
-NAME="AEN3460"
-></A
->26.3.9. Test 9</H3
+>Like the Domain Admins group, you can map any arbitrary Unix group to any NT
+group. You can also make any Unix group a domain group. For example, on a domain
+member machine (an NT/W2K or a samba server running winbind), you would like to
+give access to a certain directory to some users who are member of a group on
+your samba PDC. Flag that group as a domain group by running:</P
 ><P
->Run the command <B
+><B
 CLASS="COMMAND"
->net use x: \\BIGSERVER\TMP</B
->. You should 
-be prompted for a password then you should get a "command completed 
-successfully" message. If not then your PC software is incorrectly 
-installed or your smb.conf is incorrect. make sure your "hosts allow" 
-and other config lines in smb.conf are correct.</P
+>smbgroupedit -a unixgroup -td</B
+></P
 ><P
->It's also possible that the server can't work out what user name to
-connect you as. To see if this is the problem add the line "user =
-USERNAME" to the [tmp] section of smb.conf where "USERNAME" is the
-username corresponding to the password you typed. If you find this
-fixes things you may need the username mapping option. </P
+>You can list the various groups in the mapping database like this</P
 ><P
->It might also be the case that your client only sends encrypted passwords 
-and you have <B
+><B
 CLASS="COMMAND"
->encrypt passwords = no</B
-> in <TT
-CLASS="FILENAME"
->smb.conf</TT
->.
-Turn it back on to fix.</P
+>smbgroupedit -v</B
+></P
 ></DIV
 ><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
+CLASS="CHAPTER"
+><HR><H1
 ><A
-NAME="AEN3468"
+NAME="PORTABILITY"
 ></A
->26.3.10. Test 10</H3
+>Chapter 22. Portability</H1
 ><P
->Run the command <B
-CLASS="COMMAND"
->nmblookup -M TESTGROUP</B
-> where 
-TESTGROUP is the name of the workgroup that your Samba server and 
-Windows PCs belong to. You should get back the IP address of the 
-master browser for that workgroup.</P
+>Samba works on a wide range of platforms but the interface all the 
+platforms provide is not always compatible. This chapter contains 
+platform-specific information about compiling and using samba.</P
+><DIV
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
+><A
+NAME="AEN3201"
+></A
+>22.1. HPUX</H2
 ><P
->If you don't then the election process has failed. Wait a minute to
-see if it is just being slow then try again. If it still fails after
-that then look at the browsing options you have set in smb.conf. Make
-sure you have <B
-CLASS="COMMAND"
->preferred master = yes</B
-> to ensure that 
-an election is held at startup.</P
+>HP's implementation of supplementary groups is, er, non-standard (for
+hysterical reasons).  There are two group files, /etc/group and
+/etc/logingroup; the system maps UIDs to numbers using the former, but
+initgroups() reads the latter.  Most system admins who know the ropes
+symlink /etc/group to /etc/logingroup (hard link doesn't work for reasons
+too stupid to go into here).  initgroups() will complain if one of the
+groups you're in in /etc/logingroup has what it considers to be an invalid
+ID, which means outside the range [0..UID_MAX], where UID_MAX is (I think)
+60000 currently on HP-UX.  This precludes -2 and 65534, the usual 'nobody'
+GIDs.</P
+><P
+>If you encounter this problem, make sure that the programs that are failing 
+to initgroups() be run as users not in any groups with GIDs outside the 
+allowed range.</P
+><P
+>This is documented in the HP manual pages under setgroups(2) and passwd(4).</P
 ></DIV
 ><DIV
-CLASS="SECT2"
-><HR><H3
-CLASS="SECT2"
+CLASS="SECT1"
+><HR><H2
+CLASS="SECT1"
 ><A
-NAME="AEN3474"
+NAME="AEN3206"
 ></A
->26.3.11. Test 11</H3
+>22.2. SCO Unix</H2
 ><P
->From file manager try to browse the server. Your samba server should
-appear in the browse list of your local workgroup (or the one you
-specified in smb.conf). You should be able to double click on the name
-of the server and get a list of shares. If you get a "invalid
-password" error when you do then you are probably running WinNT and it
-is refusing to browse a server that has no encrypted password
-capability and is in user level security mode. In this case either set
-<B
-CLASS="COMMAND"
->security = server</B
-> AND 
-<B
-CLASS="COMMAND"
->password server = Windows_NT_Machine</B
-> in your
-smb.conf file, or enable encrypted passwords AFTER compiling in support
-for encrypted passwords (refer to the Makefile).</P
-></DIV
+> 
+If you run an old version of  SCO Unix then you may need to get important 
+TCP/IP patches for Samba to work correctly. Without the patch, you may 
+encounter corrupt data transfers using samba.</P
+><P
+>The patch you need is UOD385 Connection Drivers SLS. It is available from
+SCO (ftp.sco.com, directory SLS, files uod385a.Z and uod385a.ltr.Z).</P
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><HR><H2
 CLASS="SECT1"
 ><A
-NAME="AEN3479"
+NAME="AEN3210"
 ></A
->26.4. Still having troubles?</H2
+>22.3. DNIX</H2
 ><P
->Try the mailing list or newsgroup, or use the ethereal utility to
-sniff the problem. The official samba mailing list can be reached at
-<A
-HREF="mailto:samba@samba.org"
-TARGET="_top"
->samba@samba.org</A
->. To find 
-out more about samba and how to subscribe to the mailing list check 
-out the samba web page at 
-<A
-HREF="http://samba.org/samba"
-TARGET="_top"
->http://samba.org/samba</A
+>DNIX has a problem with seteuid() and setegid(). These routines are
+needed for Samba to work correctly, but they were left out of the DNIX
+C library for some reason.</P
+><P
+>For this reason Samba by default defines the macro NO_EID in the DNIX
+section of includes.h. This works around the problem in a limited way,
+but it is far from ideal, some things still won't work right.</P
+><P
+> 
+To fix the problem properly you need to assemble the following two
+functions and then either add them to your C library or link them into
+Samba.</P
+><P
+> 
+put this in the file <TT
+CLASS="FILENAME"
+>setegid.s</TT
+>:</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>        .globl  _setegid
+_setegid:
+        moveq   #47,d0
+        movl    #100,a0
+        moveq   #1,d1
+        movl    4(sp),a1
+        trap    #9
+        bccs    1$
+        jmp     cerror
+1$:
+        clrl    d0
+        rts</PRE
 ></P
 ><P
->Also look at the other docs in the Samba package!</P
-></DIV
+>put this in the file <TT
+CLASS="FILENAME"
+>seteuid.s</TT
+>:</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>        .globl  _seteuid
+_seteuid:
+        moveq   #47,d0
+        movl    #100,a0
+        moveq   #0,d1
+        movl    4(sp),a1
+        trap    #9
+        bccs    1$
+        jmp     cerror
+1$:
+        clrl    d0
+        rts</PRE
+></P
+><P
+>after creating the above files you then assemble them using</P
+><P
+><B
+CLASS="COMMAND"
+>as seteuid.s</B
+></P
+><P
+><B
+CLASS="COMMAND"
+>as setegid.s</B
+></P
+><P
+>that should produce the files <TT
+CLASS="FILENAME"
+>seteuid.o</TT
+> and 
+<TT
+CLASS="FILENAME"
+>setegid.o</TT
+></P
+><P
+>then you need to add these to the LIBSM line in the DNIX section of
+the Samba Makefile. Your LIBSM line will then look something like this:</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>LIBSM = setegid.o seteuid.o -ln</PRE
+></P
+><P
+> 
+You should then remove the line:</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>#define NO_EID</PRE
+></P
+><P
+>from the DNIX section of <TT
+CLASS="FILENAME"
+>includes.h</TT
+></P
 ></DIV
 ></DIV
 ></DIV
diff --git a/docs/htmldocs/Samba-HOWTO.html b/docs/htmldocs/Samba-HOWTO.html
new file mode 100644
index 00000000000..da69705bc33
--- /dev/null
+++ b/docs/htmldocs/Samba-HOWTO.html
@@ -0,0 +1,1440 @@
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
+<HTML
+><HEAD
+><TITLE
+>SAMBA Project Documentation</TITLE
+><META
+NAME="GENERATOR"
+CONTENT="Modular DocBook HTML Stylesheet Version 1.76b+
+"><LINK
+REL="NEXT"
+TITLE="How to Install and Test SAMBA"
+HREF="install.html"></HEAD
+><BODY
+CLASS="BOOK"
+BGCOLOR="#FFFFFF"
+TEXT="#000000"
+LINK="#0000FF"
+VLINK="#840084"
+ALINK="#0000FF"
+><DIV
+CLASS="BOOK"
+><A
+NAME="SAMBA-PROJECT-DOCUMENTATION"><DIV
+CLASS="TITLEPAGE"
+><H1
+CLASS="TITLE"
+><A
+NAME="SAMBA-PROJECT-DOCUMENTATION">SAMBA Project Documentation</H1
+><H3
+CLASS="AUTHOR"
+><A
+NAME="AEN4">SAMBA Team</H3
+><HR></DIV
+><H1
+><A
+NAME="AEN8">Abstract</H1
+><P
+><SPAN
+CLASS="emphasis"
+><I
+CLASS="EMPHASIS"
+>Last Update</I
+></SPAN
+> : Thu Aug 15 12:48:45 CDT 2002</P
+><P
+>This book is a collection of HOWTOs added to Samba documentation over the years.
+I try to ensure that all are current, but sometimes the is a larger job
+than one person can maintain.  The most recent version of this document
+can be found at <A
+HREF="http://www.samba.org/"
+TARGET="_top"
+>http://www.samba.org/</A
+>
+on the "Documentation" page.  Please send updates to <A
+HREF="mailto:jerry@samba.org"
+TARGET="_top"
+>jerry@samba.org</A
+>.</P
+><P
+>This documentation is distributed under the GNU General Public License (GPL) 
+version 2.  A copy of the license is included with the Samba source
+distribution.  A copy can be found on-line at <A
+HREF="http://www.fsf.org/licenses/gpl.txt"
+TARGET="_top"
+>http://www.fsf.org/licenses/gpl.txt</A
+></P
+><P
+>Cheers, jerry</P
+><DIV
+CLASS="TOC"
+><DL
+><DT
+><B
+>Table of Contents</B
+></DT
+><DT
+>1. <A
+HREF="install.html"
+>How to Install and Test SAMBA</A
+></DT
+><DD
+><DL
+><DT
+>1.1. <A
+HREF="install.html#AEN20"
+>Step 0: Read the man pages</A
+></DT
+><DT
+>1.2. <A
+HREF="install.html#AEN28"
+>Step 1: Building the Binaries</A
+></DT
+><DT
+>1.3. <A
+HREF="install.html#AEN56"
+>Step 2: The all important step</A
+></DT
+><DT
+>1.4. <A
+HREF="install.html#AEN60"
+>Step 3: Create the smb configuration file.</A
+></DT
+><DT
+>1.5. <A
+HREF="install.html#AEN74"
+>Step 4: Test your config file with 
+	<B
+CLASS="COMMAND"
+>testparm</B
+></A
+></DT
+><DT
+>1.6. <A
+HREF="install.html#AEN80"
+>Step 5: Starting the smbd and nmbd</A
+></DT
+><DD
+><DL
+><DT
+>1.6.1. <A
+HREF="install.html#AEN90"
+>Step 5a: Starting from inetd.conf</A
+></DT
+><DT
+>1.6.2. <A
+HREF="install.html#AEN119"
+>Step 5b. Alternative: starting it as a daemon</A
+></DT
+></DL
+></DD
+><DT
+>1.7. <A
+HREF="install.html#AEN135"
+>Step 6: Try listing the shares available on your 
+	server</A
+></DT
+><DT
+>1.8. <A
+HREF="install.html#AEN144"
+>Step 7: Try connecting with the unix client</A
+></DT
+><DT
+>1.9. <A
+HREF="install.html#AEN160"
+>Step 8: Try connecting from a DOS, WfWg, Win9x, WinNT, 
+	Win2k, OS/2, etc... client</A
+></DT
+><DT
+>1.10. <A
+HREF="install.html#AEN174"
+>What If Things Don't Work?</A
+></DT
+><DD
+><DL
+><DT
+>1.10.1. <A
+HREF="install.html#AEN179"
+>Diagnosing Problems</A
+></DT
+><DT
+>1.10.2. <A
+HREF="install.html#AEN183"
+>Scope IDs</A
+></DT
+><DT
+>1.10.3. <A
+HREF="install.html#AEN186"
+>Choosing the Protocol Level</A
+></DT
+><DT
+>1.10.4. <A
+HREF="install.html#AEN195"
+>Printing from UNIX to a Client PC</A
+></DT
+><DT
+>1.10.5. <A
+HREF="install.html#AEN200"
+>Locking</A
+></DT
+><DT
+>1.10.6. <A
+HREF="install.html#AEN209"
+>Mapping Usernames</A
+></DT
+></DL
+></DD
+></DL
+></DD
+><DT
+>2. <A
+HREF="diagnosis.html"
+>Diagnosing your samba server</A
+></DT
+><DD
+><DL
+><DT
+>2.1. <A
+HREF="diagnosis.html#AEN223"
+>Introduction</A
+></DT
+><DT
+>2.2. <A
+HREF="diagnosis.html#AEN228"
+>Assumptions</A
+></DT
+><DT
+>2.3. <A
+HREF="diagnosis.html#AEN238"
+>Tests</A
+></DT
+><DD
+><DL
+><DT
+>2.3.1. <A
+HREF="diagnosis.html#AEN240"
+>Test 1</A
+></DT
+><DT
+>2.3.2. <A
+HREF="diagnosis.html#AEN246"
+>Test 2</A
+></DT
+><DT
+>2.3.3. <A
+HREF="diagnosis.html#AEN252"
+>Test 3</A
+></DT
+><DT
+>2.3.4. <A
+HREF="diagnosis.html#AEN267"
+>Test 4</A
+></DT
+><DT
+>2.3.5. <A
+HREF="diagnosis.html#AEN272"
+>Test 5</A
+></DT
+><DT
+>2.3.6. <A
+HREF="diagnosis.html#AEN278"
+>Test 6</A
+></DT
+><DT
+>2.3.7. <A
+HREF="diagnosis.html#AEN286"
+>Test 7</A
+></DT
+><DT
+>2.3.8. <A
+HREF="diagnosis.html#AEN312"
+>Test 8</A
+></DT
+><DT
+>2.3.9. <A
+HREF="diagnosis.html#AEN329"
+>Test 9</A
+></DT
+><DT
+>2.3.10. <A
+HREF="diagnosis.html#AEN334"
+>Test 10</A
+></DT
+><DT
+>2.3.11. <A
+HREF="diagnosis.html#AEN340"
+>Test 11</A
+></DT
+></DL
+></DD
+><DT
+>2.4. <A
+HREF="diagnosis.html#AEN345"
+>Still having troubles?</A
+></DT
+></DL
+></DD
+><DT
+>3. <A
+HREF="integrate-ms-networks.html"
+>Integrating MS Windows networks with Samba</A
+></DT
+><DD
+><DL
+><DT
+>3.1. <A
+HREF="integrate-ms-networks.html#AEN362"
+>Agenda</A
+></DT
+><DT
+>3.2. <A
+HREF="integrate-ms-networks.html#AEN384"
+>Name Resolution in a pure Unix/Linux world</A
+></DT
+><DD
+><DL
+><DT
+>3.2.1. <A
+HREF="integrate-ms-networks.html#AEN400"
+><TT
+CLASS="FILENAME"
+>/etc/hosts</TT
+></A
+></DT
+><DT
+>3.2.2. <A
+HREF="integrate-ms-networks.html#AEN416"
+><TT
+CLASS="FILENAME"
+>/etc/resolv.conf</TT
+></A
+></DT
+><DT
+>3.2.3. <A
+HREF="integrate-ms-networks.html#AEN427"
+><TT
+CLASS="FILENAME"
+>/etc/host.conf</TT
+></A
+></DT
+><DT
+>3.2.4. <A
+HREF="integrate-ms-networks.html#AEN435"
+><TT
+CLASS="FILENAME"
+>/etc/nsswitch.conf</TT
+></A
+></DT
+></DL
+></DD
+><DT
+>3.3. <A
+HREF="integrate-ms-networks.html#AEN447"
+>Name resolution as used within MS Windows networking</A
+></DT
+><DD
+><DL
+><DT
+>3.3.1. <A
+HREF="integrate-ms-networks.html#AEN459"
+>The NetBIOS Name Cache</A
+></DT
+><DT
+>3.3.2. <A
+HREF="integrate-ms-networks.html#AEN464"
+>The LMHOSTS file</A
+></DT
+><DT
+>3.3.3. <A
+HREF="integrate-ms-networks.html#AEN472"
+>HOSTS file</A
+></DT
+><DT
+>3.3.4. <A
+HREF="integrate-ms-networks.html#AEN477"
+>DNS Lookup</A
+></DT
+><DT
+>3.3.5. <A
+HREF="integrate-ms-networks.html#AEN480"
+>WINS Lookup</A
+></DT
+></DL
+></DD
+><DT
+>3.4. <A
+HREF="integrate-ms-networks.html#AEN492"
+>How browsing functions and how to deploy stable and 
+dependable browsing using Samba</A
+></DT
+><DT
+>3.5. <A
+HREF="integrate-ms-networks.html#AEN502"
+>MS Windows security options and how to configure 
+Samba for seemless integration</A
+></DT
+><DD
+><DL
+><DT
+>3.5.1. <A
+HREF="integrate-ms-networks.html#AEN530"
+>Use MS Windows NT as an authentication server</A
+></DT
+><DT
+>3.5.2. <A
+HREF="integrate-ms-networks.html#AEN538"
+>Make Samba a member of an MS Windows NT security domain</A
+></DT
+><DT
+>3.5.3. <A
+HREF="integrate-ms-networks.html#AEN555"
+>Configure Samba as an authentication server</A
+></DT
+></DL
+></DD
+><DT
+>3.6. <A
+HREF="integrate-ms-networks.html#AEN572"
+>Conclusions</A
+></DT
+></DL
+></DD
+><DT
+>4. <A
+HREF="pam.html"
+>Configuring PAM for distributed but centrally 
+managed authentication</A
+></DT
+><DD
+><DL
+><DT
+>4.1. <A
+HREF="pam.html#AEN593"
+>Samba and PAM</A
+></DT
+><DT
+>4.2. <A
+HREF="pam.html#AEN637"
+>Distributed Authentication</A
+></DT
+><DT
+>4.3. <A
+HREF="pam.html#AEN644"
+>PAM Configuration in smb.conf</A
+></DT
+></DL
+></DD
+><DT
+>5. <A
+HREF="msdfs.html"
+>Hosting a Microsoft Distributed File System tree on Samba</A
+></DT
+><DD
+><DL
+><DT
+>5.1. <A
+HREF="msdfs.html#AEN664"
+>Instructions</A
+></DT
+><DD
+><DL
+><DT
+>5.1.1. <A
+HREF="msdfs.html#AEN699"
+>Notes</A
+></DT
+></DL
+></DD
+></DL
+></DD
+><DT
+>6. <A
+HREF="unix-permissions.html"
+>UNIX Permission Bits and Windows NT Access Control Lists</A
+></DT
+><DD
+><DL
+><DT
+>6.1. <A
+HREF="unix-permissions.html#AEN719"
+>Viewing and changing UNIX permissions using the NT 
+	security dialogs</A
+></DT
+><DT
+>6.2. <A
+HREF="unix-permissions.html#AEN728"
+>How to view file security on a Samba share</A
+></DT
+><DT
+>6.3. <A
+HREF="unix-permissions.html#AEN739"
+>Viewing file ownership</A
+></DT
+><DT
+>6.4. <A
+HREF="unix-permissions.html#AEN759"
+>Viewing file or directory permissions</A
+></DT
+><DD
+><DL
+><DT
+>6.4.1. <A
+HREF="unix-permissions.html#AEN774"
+>File Permissions</A
+></DT
+><DT
+>6.4.2. <A
+HREF="unix-permissions.html#AEN788"
+>Directory Permissions</A
+></DT
+></DL
+></DD
+><DT
+>6.5. <A
+HREF="unix-permissions.html#AEN795"
+>Modifying file or directory permissions</A
+></DT
+><DT
+>6.6. <A
+HREF="unix-permissions.html#AEN817"
+>Interaction with the standard Samba create mask 
+	parameters</A
+></DT
+><DT
+>6.7. <A
+HREF="unix-permissions.html#AEN881"
+>Interaction with the standard Samba file attribute 
+	mapping</A
+></DT
+></DL
+></DD
+><DT
+>7. <A
+HREF="printing.html"
+>Printing Support in Samba 2.2.x</A
+></DT
+><DD
+><DL
+><DT
+>7.1. <A
+HREF="printing.html#AEN902"
+>Introduction</A
+></DT
+><DT
+>7.2. <A
+HREF="printing.html#AEN924"
+>Configuration</A
+></DT
+><DD
+><DL
+><DT
+>7.2.1. <A
+HREF="printing.html#AEN935"
+>Creating [print$]</A
+></DT
+><DT
+>7.2.2. <A
+HREF="printing.html#AEN970"
+>Setting Drivers for Existing Printers</A
+></DT
+><DT
+>7.2.3. <A
+HREF="printing.html#AEN987"
+>Support a large number of printers</A
+></DT
+><DT
+>7.2.4. <A
+HREF="printing.html#AEN998"
+>Adding New Printers via the Windows NT APW</A
+></DT
+><DT
+>7.2.5. <A
+HREF="printing.html#AEN1028"
+>Samba and Printer Ports</A
+></DT
+></DL
+></DD
+><DT
+>7.3. <A
+HREF="printing.html#AEN1036"
+>The Imprints Toolset</A
+></DT
+><DD
+><DL
+><DT
+>7.3.1. <A
+HREF="printing.html#AEN1040"
+>What is Imprints?</A
+></DT
+><DT
+>7.3.2. <A
+HREF="printing.html#AEN1050"
+>Creating Printer Driver Packages</A
+></DT
+><DT
+>7.3.3. <A
+HREF="printing.html#AEN1053"
+>The Imprints server</A
+></DT
+><DT
+>7.3.4. <A
+HREF="printing.html#AEN1057"
+>The Installation Client</A
+></DT
+></DL
+></DD
+><DT
+>7.4. <A
+HREF="printing.html#AEN1079"
+><A
+NAME="MIGRATION"
+></A
+>Migration to from Samba 2.0.x to 2.2.x</A
+></DT
+></DL
+></DD
+><DT
+>8. <A
+HREF="printingdebug.html"
+>Debugging Printing Problems</A
+></DT
+><DD
+><DL
+><DT
+>8.1. <A
+HREF="printingdebug.html#AEN1125"
+>Introduction</A
+></DT
+><DT
+>8.2. <A
+HREF="printingdebug.html#AEN1141"
+>Debugging printer problems</A
+></DT
+><DT
+>8.3. <A
+HREF="printingdebug.html#AEN1150"
+>What printers do I have?</A
+></DT
+><DT
+>8.4. <A
+HREF="printingdebug.html#AEN1158"
+>Setting up printcap and print servers</A
+></DT
+><DT
+>8.5. <A
+HREF="printingdebug.html#AEN1186"
+>Job sent, no output</A
+></DT
+><DT
+>8.6. <A
+HREF="printingdebug.html#AEN1197"
+>Job sent, strange output</A
+></DT
+><DT
+>8.7. <A
+HREF="printingdebug.html#AEN1209"
+>Raw PostScript printed</A
+></DT
+><DT
+>8.8. <A
+HREF="printingdebug.html#AEN1212"
+>Advanced Printing</A
+></DT
+><DT
+>8.9. <A
+HREF="printingdebug.html#AEN1215"
+>Real debugging</A
+></DT
+></DL
+></DD
+><DT
+>9. <A
+HREF="securitylevels.html"
+>Security levels</A
+></DT
+><DD
+><DL
+><DT
+>9.1. <A
+HREF="securitylevels.html#AEN1228"
+>Introduction</A
+></DT
+><DT
+>9.2. <A
+HREF="securitylevels.html#AEN1239"
+>More complete description of security levels</A
+></DT
+></DL
+></DD
+><DT
+>10. <A
+HREF="domain-security.html"
+>security = domain in Samba 2.x</A
+></DT
+><DD
+><DL
+><DT
+>10.1. <A
+HREF="domain-security.html#AEN1272"
+>Joining an NT Domain with Samba 2.2</A
+></DT
+><DT
+>10.2. <A
+HREF="domain-security.html#AEN1336"
+>Samba and Windows 2000 Domains</A
+></DT
+><DT
+>10.3. <A
+HREF="domain-security.html#AEN1341"
+>Why is this better than security = server?</A
+></DT
+></DL
+></DD
+><DT
+>11. <A
+HREF="winbind.html"
+>Unified Logons between Windows NT and UNIX using Winbind</A
+></DT
+><DD
+><DL
+><DT
+>11.1. <A
+HREF="winbind.html#AEN1394"
+>Abstract</A
+></DT
+><DT
+>11.2. <A
+HREF="winbind.html#AEN1398"
+>Introduction</A
+></DT
+><DT
+>11.3. <A
+HREF="winbind.html#AEN1411"
+>What Winbind Provides</A
+></DT
+><DD
+><DL
+><DT
+>11.3.1. <A
+HREF="winbind.html#AEN1418"
+>Target Uses</A
+></DT
+></DL
+></DD
+><DT
+>11.4. <A
+HREF="winbind.html#AEN1422"
+>How Winbind Works</A
+></DT
+><DD
+><DL
+><DT
+>11.4.1. <A
+HREF="winbind.html#AEN1427"
+>Microsoft Remote Procedure Calls</A
+></DT
+><DT
+>11.4.2. <A
+HREF="winbind.html#AEN1431"
+>Name Service Switch</A
+></DT
+><DT
+>11.4.3. <A
+HREF="winbind.html#AEN1447"
+>Pluggable Authentication Modules</A
+></DT
+><DT
+>11.4.4. <A
+HREF="winbind.html#AEN1455"
+>User and Group ID Allocation</A
+></DT
+><DT
+>11.4.5. <A
+HREF="winbind.html#AEN1459"
+>Result Caching</A
+></DT
+></DL
+></DD
+><DT
+>11.5. <A
+HREF="winbind.html#AEN1462"
+>Installation and Configuration</A
+></DT
+><DD
+><DL
+><DT
+>11.5.1. <A
+HREF="winbind.html#AEN1469"
+>Introduction</A
+></DT
+><DT
+>11.5.2. <A
+HREF="winbind.html#AEN1482"
+>Requirements</A
+></DT
+><DT
+>11.5.3. <A
+HREF="winbind.html#AEN1496"
+>Testing Things Out</A
+></DT
+></DL
+></DD
+><DT
+>11.6. <A
+HREF="winbind.html#AEN1711"
+>Limitations</A
+></DT
+><DT
+>11.7. <A
+HREF="winbind.html#AEN1721"
+>Conclusion</A
+></DT
+></DL
+></DD
+><DT
+>12. <A
+HREF="samba-pdc.html"
+>How to Configure Samba 2.2 as a Primary Domain Controller</A
+></DT
+><DD
+><DL
+><DT
+>12.1. <A
+HREF="samba-pdc.html#AEN1741"
+>Prerequisite Reading</A
+></DT
+><DT
+>12.2. <A
+HREF="samba-pdc.html#AEN1747"
+>Background</A
+></DT
+><DT
+>12.3. <A
+HREF="samba-pdc.html#AEN1786"
+>Configuring the Samba Domain Controller</A
+></DT
+><DT
+>12.4. <A
+HREF="samba-pdc.html#AEN1829"
+>Creating Machine Trust Accounts and Joining Clients to the
+Domain</A
+></DT
+><DD
+><DL
+><DT
+>12.4.1. <A
+HREF="samba-pdc.html#AEN1848"
+>Manual Creation of Machine Trust Accounts</A
+></DT
+><DT
+>12.4.2. <A
+HREF="samba-pdc.html#AEN1883"
+>"On-the-Fly" Creation of Machine Trust Accounts</A
+></DT
+><DT
+>12.4.3. <A
+HREF="samba-pdc.html#AEN1892"
+>Joining the Client to the Domain</A
+></DT
+></DL
+></DD
+><DT
+>12.5. <A
+HREF="samba-pdc.html#AEN1907"
+>Common Problems and Errors</A
+></DT
+><DT
+>12.6. <A
+HREF="samba-pdc.html#AEN1955"
+>System Policies and Profiles</A
+></DT
+><DT
+>12.7. <A
+HREF="samba-pdc.html#AEN1999"
+>What other help can I get?</A
+></DT
+><DT
+>12.8. <A
+HREF="samba-pdc.html#AEN2113"
+>Domain Control for Windows 9x/ME</A
+></DT
+><DD
+><DL
+><DT
+>12.8.1. <A
+HREF="samba-pdc.html#AEN2139"
+>Configuration Instructions:	Network Logons</A
+></DT
+><DT
+>12.8.2. <A
+HREF="samba-pdc.html#AEN2158"
+>Configuration Instructions:	Setting up Roaming User Profiles</A
+></DT
+></DL
+></DD
+><DT
+>12.9. <A
+HREF="samba-pdc.html#AEN2251"
+>DOMAIN_CONTROL.txt : Windows NT Domain Control &#38; Samba</A
+></DT
+></DL
+></DD
+><DT
+>13. <A
+HREF="samba-bdc.html"
+>How to Act as a Backup Domain Controller in a Purely Samba Controlled Domain</A
+></DT
+><DD
+><DL
+><DT
+>13.1. <A
+HREF="samba-bdc.html#AEN2287"
+>Prerequisite Reading</A
+></DT
+><DT
+>13.2. <A
+HREF="samba-bdc.html#AEN2291"
+>Background</A
+></DT
+><DT
+>13.3. <A
+HREF="samba-bdc.html#AEN2299"
+>What qualifies a Domain Controller on the network?</A
+></DT
+><DD
+><DL
+><DT
+>13.3.1. <A
+HREF="samba-bdc.html#AEN2302"
+>How does a Workstation find its domain controller?</A
+></DT
+><DT
+>13.3.2. <A
+HREF="samba-bdc.html#AEN2305"
+>When is the PDC needed?</A
+></DT
+></DL
+></DD
+><DT
+>13.4. <A
+HREF="samba-bdc.html#AEN2308"
+>Can Samba be a Backup Domain Controller?</A
+></DT
+><DT
+>13.5. <A
+HREF="samba-bdc.html#AEN2312"
+>How do I set up a Samba BDC?</A
+></DT
+><DD
+><DL
+><DT
+>13.5.1. <A
+HREF="samba-bdc.html#AEN2329"
+>How do I replicate the smbpasswd file?</A
+></DT
+></DL
+></DD
+></DL
+></DD
+><DT
+>14. <A
+HREF="samba-ldap-howto.html"
+>Storing Samba's User/Machine Account information in an LDAP Directory</A
+></DT
+><DD
+><DL
+><DT
+>14.1. <A
+HREF="samba-ldap-howto.html#AEN2350"
+>Purpose</A
+></DT
+><DT
+>14.2. <A
+HREF="samba-ldap-howto.html#AEN2370"
+>Introduction</A
+></DT
+><DT
+>14.3. <A
+HREF="samba-ldap-howto.html#AEN2399"
+>Supported LDAP Servers</A
+></DT
+><DT
+>14.4. <A
+HREF="samba-ldap-howto.html#AEN2404"
+>Schema and Relationship to the RFC 2307 posixAccount</A
+></DT
+><DT
+>14.5. <A
+HREF="samba-ldap-howto.html#AEN2416"
+>Configuring Samba with LDAP</A
+></DT
+><DD
+><DL
+><DT
+>14.5.1. <A
+HREF="samba-ldap-howto.html#AEN2418"
+>OpenLDAP configuration</A
+></DT
+><DT
+>14.5.2. <A
+HREF="samba-ldap-howto.html#AEN2435"
+>Configuring Samba</A
+></DT
+></DL
+></DD
+><DT
+>14.6. <A
+HREF="samba-ldap-howto.html#AEN2463"
+>Accounts and Groups management</A
+></DT
+><DT
+>14.7. <A
+HREF="samba-ldap-howto.html#AEN2468"
+>Security and sambaAccount</A
+></DT
+><DT
+>14.8. <A
+HREF="samba-ldap-howto.html#AEN2488"
+>LDAP specials attributes for sambaAccounts</A
+></DT
+><DT
+>14.9. <A
+HREF="samba-ldap-howto.html#AEN2558"
+>Example LDIF Entries for a sambaAccount</A
+></DT
+><DT
+>14.10. <A
+HREF="samba-ldap-howto.html#AEN2566"
+>Comments</A
+></DT
+></DL
+></DD
+><DT
+>15. <A
+HREF="improved-browsing.html"
+>Improved browsing in samba</A
+></DT
+><DD
+><DL
+><DT
+>15.1. <A
+HREF="improved-browsing.html#AEN2577"
+>Overview of browsing</A
+></DT
+><DT
+>15.2. <A
+HREF="improved-browsing.html#AEN2581"
+>Browsing support in samba</A
+></DT
+><DT
+>15.3. <A
+HREF="improved-browsing.html#AEN2590"
+>Problem resolution</A
+></DT
+><DT
+>15.4. <A
+HREF="improved-browsing.html#AEN2597"
+>Browsing across subnets</A
+></DT
+><DD
+><DL
+><DT
+>15.4.1. <A
+HREF="improved-browsing.html#AEN2602"
+>How does cross subnet browsing work ?</A
+></DT
+></DL
+></DD
+><DT
+>15.5. <A
+HREF="improved-browsing.html#AEN2637"
+>Setting up a WINS server</A
+></DT
+><DT
+>15.6. <A
+HREF="improved-browsing.html#AEN2656"
+>Setting up Browsing in a WORKGROUP</A
+></DT
+><DT
+>15.7. <A
+HREF="improved-browsing.html#AEN2674"
+>Setting up Browsing in a DOMAIN</A
+></DT
+><DT
+>15.8. <A
+HREF="improved-browsing.html#AEN2684"
+>Forcing samba to be the master</A
+></DT
+><DT
+>15.9. <A
+HREF="improved-browsing.html#AEN2693"
+>Making samba the domain master</A
+></DT
+><DT
+>15.10. <A
+HREF="improved-browsing.html#AEN2711"
+>Note about broadcast addresses</A
+></DT
+><DT
+>15.11. <A
+HREF="improved-browsing.html#AEN2714"
+>Multiple interfaces</A
+></DT
+></DL
+></DD
+><DT
+>16. <A
+HREF="speed.html"
+>Samba performance issues</A
+></DT
+><DD
+><DL
+><DT
+>16.1. <A
+HREF="speed.html#AEN2732"
+>Comparisons</A
+></DT
+><DT
+>16.2. <A
+HREF="speed.html#AEN2738"
+>Oplocks</A
+></DT
+><DD
+><DL
+><DT
+>16.2.1. <A
+HREF="speed.html#AEN2740"
+>Overview</A
+></DT
+><DT
+>16.2.2. <A
+HREF="speed.html#AEN2748"
+>Level2 Oplocks</A
+></DT
+><DT
+>16.2.3. <A
+HREF="speed.html#AEN2754"
+>Old 'fake oplocks' option - deprecated</A
+></DT
+></DL
+></DD
+><DT
+>16.3. <A
+HREF="speed.html#AEN2758"
+>Socket options</A
+></DT
+><DT
+>16.4. <A
+HREF="speed.html#AEN2765"
+>Read size</A
+></DT
+><DT
+>16.5. <A
+HREF="speed.html#AEN2770"
+>Max xmit</A
+></DT
+><DT
+>16.6. <A
+HREF="speed.html#AEN2775"
+>Locking</A
+></DT
+><DT
+>16.7. <A
+HREF="speed.html#AEN2779"
+>Share modes</A
+></DT
+><DT
+>16.8. <A
+HREF="speed.html#AEN2784"
+>Log level</A
+></DT
+><DT
+>16.9. <A
+HREF="speed.html#AEN2787"
+>Wide lines</A
+></DT
+><DT
+>16.10. <A
+HREF="speed.html#AEN2790"
+>Read raw</A
+></DT
+><DT
+>16.11. <A
+HREF="speed.html#AEN2795"
+>Write raw</A
+></DT
+><DT
+>16.12. <A
+HREF="speed.html#AEN2799"
+>Read prediction</A
+></DT
+><DT
+>16.13. <A
+HREF="speed.html#AEN2806"
+>Memory mapping</A
+></DT
+><DT
+>16.14. <A
+HREF="speed.html#AEN2811"
+>Slow Clients</A
+></DT
+><DT
+>16.15. <A
+HREF="speed.html#AEN2815"
+>Slow Logins</A
+></DT
+><DT
+>16.16. <A
+HREF="speed.html#AEN2818"
+>Client tuning</A
+></DT
+><DT
+>16.17. <A
+HREF="speed.html#AEN2850"
+>My Results</A
+></DT
+></DL
+></DD
+><DT
+>17. <A
+HREF="other-clients.html"
+>Samba and other CIFS clients</A
+></DT
+><DD
+><DL
+><DT
+>17.1. <A
+HREF="other-clients.html#AEN2871"
+>Macintosh clients?</A
+></DT
+><DT
+>17.2. <A
+HREF="other-clients.html#AEN2880"
+>OS2 Client</A
+></DT
+><DD
+><DL
+><DT
+>17.2.1. <A
+HREF="other-clients.html#AEN2882"
+>How can I configure OS/2 Warp Connect or 
+		OS/2 Warp 4 as a client for Samba?</A
+></DT
+><DT
+>17.2.2. <A
+HREF="other-clients.html#AEN2897"
+>How can I configure OS/2 Warp 3 (not Connect), 
+		OS/2 1.2, 1.3 or 2.x for Samba?</A
+></DT
+><DT
+>17.2.3. <A
+HREF="other-clients.html#AEN2906"
+>Are there any other issues when OS/2 (any version) 
+		is used as a client?</A
+></DT
+><DT
+>17.2.4. <A
+HREF="other-clients.html#AEN2910"
+>How do I get printer driver download working 
+		for OS/2 clients?</A
+></DT
+></DL
+></DD
+><DT
+>17.3. <A
+HREF="other-clients.html#AEN2920"
+>Windows for Workgroups</A
+></DT
+><DD
+><DL
+><DT
+>17.3.1. <A
+HREF="other-clients.html#AEN2922"
+>Use latest TCP/IP stack from Microsoft</A
+></DT
+><DT
+>17.3.2. <A
+HREF="other-clients.html#AEN2927"
+>Delete .pwl files after password change</A
+></DT
+><DT
+>17.3.3. <A
+HREF="other-clients.html#AEN2932"
+>Configure WfW password handling</A
+></DT
+><DT
+>17.3.4. <A
+HREF="other-clients.html#AEN2936"
+>Case handling of passwords</A
+></DT
+></DL
+></DD
+><DT
+>17.4. <A
+HREF="other-clients.html#AEN2941"
+>Windows '95/'98</A
+></DT
+><DT
+>17.5. <A
+HREF="other-clients.html#AEN2957"
+>Windows 2000 Service Pack 2</A
+></DT
+></DL
+></DD
+><DT
+>18. <A
+HREF="cvs-access.html"
+>HOWTO Access Samba source code via CVS</A
+></DT
+><DD
+><DL
+><DT
+>18.1. <A
+HREF="cvs-access.html#AEN2981"
+>Introduction</A
+></DT
+><DT
+>18.2. <A
+HREF="cvs-access.html#AEN2986"
+>CVS Access to samba.org</A
+></DT
+><DD
+><DL
+><DT
+>18.2.1. <A
+HREF="cvs-access.html#AEN2989"
+>Access via CVSweb</A
+></DT
+><DT
+>18.2.2. <A
+HREF="cvs-access.html#AEN2994"
+>Access via cvs</A
+></DT
+></DL
+></DD
+></DL
+></DD
+><DT
+>19. <A
+HREF="bugreport.html"
+>Reporting Bugs</A
+></DT
+><DD
+><DL
+><DT
+>19.1. <A
+HREF="bugreport.html#AEN3029"
+>Introduction</A
+></DT
+><DT
+>19.2. <A
+HREF="bugreport.html#AEN3036"
+>General info</A
+></DT
+><DT
+>19.3. <A
+HREF="bugreport.html#AEN3042"
+>Debug levels</A
+></DT
+><DT
+>19.4. <A
+HREF="bugreport.html#AEN3059"
+>Internal errors</A
+></DT
+><DT
+>19.5. <A
+HREF="bugreport.html#AEN3069"
+>Attaching to a running process</A
+></DT
+><DT
+>19.6. <A
+HREF="bugreport.html#AEN3072"
+>Patches</A
+></DT
+></DL
+></DD
+><DT
+>20. <A
+HREF="groupmapping.html"
+>Group mapping HOWTO</A
+></DT
+><DT
+>21. <A
+HREF="portability.html"
+>Portability</A
+></DT
+><DD
+><DL
+><DT
+>21.1. <A
+HREF="portability.html#AEN3119"
+>HPUX</A
+></DT
+><DT
+>21.2. <A
+HREF="portability.html#AEN3124"
+>SCO Unix</A
+></DT
+><DT
+>21.3. <A
+HREF="portability.html#AEN3128"
+>DNIX</A
+></DT
+></DL
+></DD
+></DL
+></DIV
+></DIV
+><DIV
+CLASS="NAVFOOTER"
+><HR
+ALIGN="LEFT"
+WIDTH="100%"><TABLE
+SUMMARY="Footer navigation table"
+WIDTH="100%"
+BORDER="0"
+CELLPADDING="0"
+CELLSPACING="0"
+><TR
+><TD
+WIDTH="33%"
+ALIGN="left"
+VALIGN="top"
+>&nbsp;</TD
+><TD
+WIDTH="34%"
+ALIGN="center"
+VALIGN="top"
+>&nbsp;</TD
+><TD
+WIDTH="33%"
+ALIGN="right"
+VALIGN="top"
+><A
+HREF="install.html"
+ACCESSKEY="N"
+>Next</A
+></TD
+></TR
+><TR
+><TD
+WIDTH="33%"
+ALIGN="left"
+VALIGN="top"
+>&nbsp;</TD
+><TD
+WIDTH="34%"
+ALIGN="center"
+VALIGN="top"
+>&nbsp;</TD
+><TD
+WIDTH="33%"
+ALIGN="right"
+VALIGN="top"
+>How to Install and Test SAMBA</TD
+></TR
+></TABLE
+></DIV
+></BODY
+></HTML
+>
\ No newline at end of file
diff --git a/docs/htmldocs/Samba-PDC-HOWTO.html b/docs/htmldocs/Samba-PDC-HOWTO.html
new file mode 100644
index 00000000000..ae4f545800a
--- /dev/null
+++ b/docs/htmldocs/Samba-PDC-HOWTO.html
@@ -0,0 +1,2284 @@
+<HTML
+><HEAD
+><TITLE
+>How to Configure Samba 2.2 as a Primary Domain Controller</TITLE
+><META
+NAME="GENERATOR"
+CONTENT="Modular DocBook HTML Stylesheet Version 1.57"></HEAD
+><BODY
+CLASS="ARTICLE"
+BGCOLOR="#FFFFFF"
+TEXT="#000000"
+LINK="#0000FF"
+VLINK="#840084"
+ALINK="#0000FF"
+><DIV
+CLASS="ARTICLE"
+><DIV
+CLASS="TITLEPAGE"
+><H1
+CLASS="TITLE"
+><A
+NAME="SAMBA-PDC"
+>How to Configure Samba 2.2 as a Primary Domain Controller</A
+></H1
+><HR></DIV
+><DIV
+CLASS="SECT1"
+><H1
+CLASS="SECT1"
+><A
+NAME="AEN3"
+>Prerequisite Reading</A
+></H1
+><P
+>Before you continue reading in this chapter, please make sure 
+that you are comfortable with configuring basic files services
+in smb.conf and how to enable and administer password 
+encryption in Samba.  Theses two topics are covered in the
+<A
+HREF="smb.conf.5.html"
+TARGET="_top"
+><TT
+CLASS="FILENAME"
+>smb.conf(5)</TT
+></A
+> 
+manpage and the <A
+HREF="ENCRYPTION.html"
+TARGET="_top"
+>Encryption chapter</A
+> 
+of this HOWTO Collection.</P
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H1
+CLASS="SECT1"
+><A
+NAME="AEN9"
+>Background</A
+></H1
+><DIV
+CLASS="NOTE"
+><BLOCKQUOTE
+CLASS="NOTE"
+><P
+><B
+>Note: </B
+><I
+CLASS="EMPHASIS"
+>Author's Note:</I
+> This document is a combination 
+of David Bannon's "Samba 2.2 PDC HOWTO" and "Samba NT Domain FAQ". 
+Both documents are superseded by this one.</P
+></BLOCKQUOTE
+></DIV
+><P
+>Versions of Samba prior to release 2.2 had marginal capabilities to act
+as a Windows NT 4.0 Primary Domain Controller
+
+(PDC).  With Samba 2.2.0, we are proud to announce official support for
+Windows NT 4.0-style domain logons from Windows NT 4.0 and Windows 
+2000 clients.  This article outlines the steps
+necessary for configuring Samba as a PDC.  It is necessary to have a
+working Samba server prior to implementing the PDC functionality.  If
+you have not followed the steps outlined in <A
+HREF="UNIX_INSTALL.html"
+TARGET="_top"
+> UNIX_INSTALL.html</A
+>, please make sure
+that your server is configured correctly before proceeding.  Another
+good resource in the <A
+HREF="smb.conf.5.html"
+TARGET="_top"
+>smb.conf(5) man
+page</A
+>. The following functionality should work in 2.2:</P
+><P
+></P
+><UL
+><LI
+><P
+>	domain logons for Windows NT 4.0/2000 clients.
+	</P
+></LI
+><LI
+><P
+>	placing a Windows 9x client in user level security
+	</P
+></LI
+><LI
+><P
+>	retrieving a list of users and groups from a Samba PDC to
+	Windows 9x/NT/2000 clients
+	</P
+></LI
+><LI
+><P
+>	roving (roaming) user profiles
+	</P
+></LI
+><LI
+><P
+>	Windows NT 4.0-style system policies
+	</P
+></LI
+></UL
+><P
+>The following pieces of functionality are not included in the 2.2 release:</P
+><P
+></P
+><UL
+><LI
+><P
+>	Windows NT 4 domain trusts
+	</P
+></LI
+><LI
+><P
+>	SAM replication with Windows NT 4.0 Domain Controllers
+	(i.e. a Samba PDC and a Windows NT BDC or vice versa) 
+	</P
+></LI
+><LI
+><P
+>	Adding users via the User Manager for Domains
+	</P
+></LI
+><LI
+><P
+>	Acting as a Windows 2000 Domain Controller (i.e. Kerberos and 
+	Active Directory)
+	</P
+></LI
+></UL
+><P
+>Please note that Windows 9x clients are not true members of a domain
+for reasons outlined in this article.  Therefore the protocol for
+support Windows 9x-style domain logons is completely different
+from NT4 domain logons and has been officially supported for some 
+time.</P
+><P
+>Implementing a Samba PDC can basically be divided into 2 broad
+steps.</P
+><P
+></P
+><OL
+TYPE="1"
+><LI
+><P
+>	Configuring the Samba PDC
+	</P
+></LI
+><LI
+><P
+>	Creating machine trust accounts	and joining clients 
+	to the domain
+	</P
+></LI
+></OL
+><P
+>There are other minor details such as user profiles, system
+policies, etc...  However, these are not necessarily specific
+to a Samba PDC as much as they are related to Windows NT networking
+concepts.  They will be mentioned only briefly here.</P
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H1
+CLASS="SECT1"
+><A
+NAME="AEN48"
+>Configuring the Samba Domain Controller</A
+></H1
+><P
+>The first step in creating a working Samba PDC is to 
+understand the parameters necessary in smb.conf.  I will not
+attempt to re-explain the parameters here as they are more that
+adequately covered in <A
+HREF="smb.conf.5.html"
+TARGET="_top"
+> the smb.conf
+man page</A
+>.  For convenience, the parameters have been
+linked with the actual smb.conf description.</P
+><P
+>Here is an example <TT
+CLASS="FILENAME"
+>smb.conf</TT
+> for acting as a PDC:</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>[global]
+    ; Basic server settings
+    <A
+HREF="smb.conf.5.html#NETBIOSNAME"
+TARGET="_top"
+>netbios name</A
+> = <TT
+CLASS="REPLACEABLE"
+><I
+>POGO</I
+></TT
+>
+    <A
+HREF="smb.conf.5.html#WORKGROUP"
+TARGET="_top"
+>workgroup</A
+> = <TT
+CLASS="REPLACEABLE"
+><I
+>NARNIA</I
+></TT
+>
+
+    ; we should act as the domain and local master browser
+    <A
+HREF="smb.conf.5.html#OSLEVEL"
+TARGET="_top"
+>os level</A
+> = 64
+    <A
+HREF="smb.conf.5.html#PERFERREDMASTER"
+TARGET="_top"
+>preferred master</A
+> = yes
+    <A
+HREF="smb.conf.5.html#DOMAINMASTER"
+TARGET="_top"
+>domain master</A
+> = yes
+    <A
+HREF="smb.conf.5.html#LOCALMASTER"
+TARGET="_top"
+>local master</A
+> = yes
+    
+    ; security settings (must user security = user)
+    <A
+HREF="smb.conf.5.html#SECURITYEQUALSUSER"
+TARGET="_top"
+>security</A
+> = user
+    
+    ; encrypted passwords are a requirement for a PDC
+    <A
+HREF="smb.conf.5.html#ENCRYPTPASSWORDS"
+TARGET="_top"
+>encrypt passwords</A
+> = yes
+    
+    ; support domain logons
+    <A
+HREF="smb.conf.5.html#DOMAINLOGONS"
+TARGET="_top"
+>domain logons</A
+> = yes
+    
+    ; where to store user profiles?
+    <A
+HREF="smb.conf.5.html#LOGONPATH"
+TARGET="_top"
+>logon path</A
+> = \\%N\profiles\%u
+    
+    ; where is a user's home directory and where should it
+    ; be mounted at?
+    <A
+HREF="smb.conf.5.html#LOGONDRIVE"
+TARGET="_top"
+>logon drive</A
+> = H:
+    <A
+HREF="smb.conf.5.html#LOGONHOME"
+TARGET="_top"
+>logon home</A
+> = \\homeserver\%u
+    
+    ; specify a generic logon script for all users
+    ; this is a relative **DOS** path to the [netlogon] share
+    <A
+HREF="smb.conf.5.html#LOGONSCRIPT"
+TARGET="_top"
+>logon script</A
+> = logon.cmd
+
+; necessary share for domain controller
+[netlogon]
+    <A
+HREF="smb.conf.5.html#PATH"
+TARGET="_top"
+>path</A
+> = /usr/local/samba/lib/netlogon
+    <A
+HREF="smb.conf.5.html#READONLY"
+TARGET="_top"
+>read only</A
+> = yes
+    <A
+HREF="smb.conf.5.html#WRITELIST"
+TARGET="_top"
+>write list</A
+> = <TT
+CLASS="REPLACEABLE"
+><I
+>ntadmin</I
+></TT
+>
+    
+; share for storing user profiles
+[profiles]
+    <A
+HREF="smb.conf.5.html#PATH"
+TARGET="_top"
+>path</A
+> = /export/smb/ntprofile
+    <A
+HREF="smb.conf.5.html#READONLY"
+TARGET="_top"
+>read only</A
+> = no
+    <A
+HREF="smb.conf.5.html#CREATEMASK"
+TARGET="_top"
+>create mask</A
+> = 0600
+    <A
+HREF="smb.conf.5.html#DIRECTORYMASK"
+TARGET="_top"
+>directory mask</A
+> = 0700</PRE
+></P
+><P
+>There are a couple of points to emphasize in the above configuration.</P
+><P
+></P
+><UL
+><LI
+><P
+>	Encrypted passwords must be enabled.  For more details on how 
+	to do this, refer to <A
+HREF="ENCRYPTION.html"
+TARGET="_top"
+>ENCRYPTION.html</A
+>.
+	</P
+></LI
+><LI
+><P
+>	The server must support domain logons and a
+	<TT
+CLASS="FILENAME"
+>[netlogon]</TT
+> share
+	</P
+></LI
+><LI
+><P
+>	The server must be the domain master browser in order for Windows 
+	client to locate the server as a DC.  Please refer to the various 
+	Network Browsing documentation included with this distribution for 
+	details.
+	</P
+></LI
+></UL
+><P
+>As Samba 2.2 does not offer a complete implementation of group mapping
+between Windows NT groups and Unix groups (this is really quite
+complicated to explain in a short space), you should refer to the
+<A
+HREF="smb.conf.5.html#DOMAINADMINGROUP"
+TARGET="_top"
+>domain admin
+group</A
+> smb.conf parameter for information of creating "Domain
+Admins" style accounts.</P
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H1
+CLASS="SECT1"
+><A
+NAME="AEN91"
+>Creating Machine Trust Accounts and Joining Clients to the
+Domain</A
+></H1
+><P
+>A machine trust account is a Samba account that is used to
+authenticate a client machine (rather than a user) to the Samba
+server.  In Windows terminology, this is known as a "Computer
+Account."</P
+><P
+>The password of a machine trust account acts as the shared secret for
+secure communication with the Domain Controller.  This is a security
+feature to prevent an unauthorized machine with the same NetBIOS name
+from joining the domain and gaining access to domain user/group
+accounts.  Windows NT and 2000 clients use machine trust accounts, but
+Windows 9x clients do not.  Hence, a Windows 9x client is never a true
+member of a domain because it does not possess a machine trust
+account, and thus has no shared secret with the domain controller.</P
+><P
+>A Windows PDC stores each machine trust account in the Windows
+Registry.  A Samba PDC, however, stores each machine trust account 
+in two parts, as follows:
+
+<P
+></P
+><UL
+><LI
+><P
+>A Samba account, stored in the same location as user
+    LanMan and NT password hashes (currently
+    <TT
+CLASS="FILENAME"
+>smbpasswd</TT
+>). The Samba account 
+    possesses and uses only the NT password hash.</P
+></LI
+><LI
+><P
+>A corresponding Unix account, typically stored in
+    <TT
+CLASS="FILENAME"
+>/etc/passwd</TT
+>. (Future releases will alleviate the need to
+    create <TT
+CLASS="FILENAME"
+>/etc/passwd</TT
+> entries.) </P
+></LI
+></UL
+></P
+><P
+>There are two ways to create machine trust accounts:</P
+><P
+></P
+><UL
+><LI
+><P
+> Manual creation. Both the Samba and corresponding
+	Unix account are created by hand.</P
+></LI
+><LI
+><P
+> "On-the-fly" creation. The Samba machine trust
+	account is automatically created by Samba at the time the client
+	is joined to the domain. (For security, this is the
+	recommended method.) The corresponding Unix account may be
+	created automatically or manually. </P
+></LI
+></UL
+><DIV
+CLASS="SECT2"
+><HR><H2
+CLASS="SECT2"
+><A
+NAME="AEN110"
+>Manual Creation of Machine Trust Accounts</A
+></H2
+><P
+>The first step in manually creating a machine trust account is to
+manually create the corresponding Unix account in
+<TT
+CLASS="FILENAME"
+>/etc/passwd</TT
+>.  This can be done using
+<B
+CLASS="COMMAND"
+>vipw</B
+> or other 'add user' command that is normally
+used to create new Unix accounts.  The following is an example for a
+Linux based Samba server:</P
+><P
+>  <TT
+CLASS="PROMPT"
+>root# </TT
+><B
+CLASS="COMMAND"
+>/usr/sbin/useradd -g 100 -d /dev/null -c <TT
+CLASS="REPLACEABLE"
+><I
+>"machine 
+nickname"</I
+></TT
+> -s /bin/false <TT
+CLASS="REPLACEABLE"
+><I
+>machine_name</I
+></TT
+>$ </B
+></P
+><P
+><TT
+CLASS="PROMPT"
+>root# </TT
+><B
+CLASS="COMMAND"
+>passwd -l <TT
+CLASS="REPLACEABLE"
+><I
+>machine_name</I
+></TT
+>$</B
+></P
+><P
+>The <TT
+CLASS="FILENAME"
+>/etc/passwd</TT
+> entry will list the machine name 
+with a "$" appended, won't have a password, will have a null shell and no 
+home directory. For example a machine named 'doppy' would have an 
+<TT
+CLASS="FILENAME"
+>/etc/passwd</TT
+> entry like this:</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>doppy$:x:505:501:<TT
+CLASS="REPLACEABLE"
+><I
+>machine_nickname</I
+></TT
+>:/dev/null:/bin/false</PRE
+></P
+><P
+>Above, <TT
+CLASS="REPLACEABLE"
+><I
+>machine_nickname</I
+></TT
+> can be any
+descriptive name for the client, i.e., BasementComputer.
+<TT
+CLASS="REPLACEABLE"
+><I
+>machine_name</I
+></TT
+> absolutely must be the NetBIOS
+name of the client to be joined to the domain.  The "$" must be
+appended to the NetBIOS name of the client or Samba will not recognize
+this as a machine trust account.</P
+><P
+>Now that the corresponding Unix account has been created, the next step is to create 
+the Samba account for the client containing the well-known initial 
+machine trust account password.  This can be done using the <A
+HREF="smbpasswd.8.html"
+TARGET="_top"
+><B
+CLASS="COMMAND"
+>smbpasswd(8)</B
+></A
+> command 
+as shown here:</P
+><P
+><TT
+CLASS="PROMPT"
+>root# </TT
+><B
+CLASS="COMMAND"
+>smbpasswd -a -m <TT
+CLASS="REPLACEABLE"
+><I
+>machine_name</I
+></TT
+></B
+></P
+><P
+>where <TT
+CLASS="REPLACEABLE"
+><I
+>machine_name</I
+></TT
+> is the machine's NetBIOS
+name.  The RID of the new machine account is generated from the UID of 
+the corresponding Unix account.</P
+><DIV
+CLASS="WARNING"
+><P
+></P
+><TABLE
+CLASS="WARNING"
+BORDER="1"
+WIDTH="100%"
+><TR
+><TD
+ALIGN="CENTER"
+><B
+>Join the client to the domain immediately</B
+></TD
+></TR
+><TR
+><TD
+ALIGN="LEFT"
+><P
+>	Manually creating a machine trust account using this method is the 
+	equivalent of creating a machine trust account on a Windows NT PDC using 
+	the "Server Manager".  From the time at which the account is created
+	to the time which the client joins the domain and changes the password,
+	your domain is vulnerable to an intruder joining your domain using a
+	a machine with the same NetBIOS name.  A PDC inherently trusts
+	members of the domain and will serve out a large degree of user 
+	information to such clients.  You have been warned!
+	</P
+></TD
+></TR
+></TABLE
+></DIV
+></DIV
+><DIV
+CLASS="SECT2"
+><HR><H2
+CLASS="SECT2"
+><A
+NAME="AEN145"
+>"On-the-Fly" Creation of Machine Trust Accounts</A
+></H2
+><P
+>The second (and recommended) way of creating machine trust accounts is
+simply to allow the Samba server to create them as needed when the client
+is joined to the domain. </P
+><P
+>Since each Samba machine trust account requires a corresponding
+Unix account, a method for automatically creating the
+Unix account is usually supplied; this requires configuration of the
+<A
+HREF="smb.conf.5.html#ADDUSERSCRIPT"
+TARGET="_top"
+>add user script</A
+> 
+option in <TT
+CLASS="FILENAME"
+>smb.conf</TT
+>.  This
+method is not required, however; corresponding Unix accounts may also
+be created manually.</P
+><P
+>Below is an example for a RedHat 6.2 Linux system.</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>[global]
+   # &#60;...remainder of parameters...&#62;
+   add user script = /usr/sbin/useradd -d /dev/null -g 100 -s /bin/false -M %u </PRE
+></P
+></DIV
+><DIV
+CLASS="SECT2"
+><HR><H2
+CLASS="SECT2"
+><A
+NAME="AEN154"
+>Joining the Client to the Domain</A
+></H2
+><P
+>The procedure for joining a client to the domain varies with the
+version of Windows.</P
+><P
+></P
+><UL
+><LI
+><P
+><I
+CLASS="EMPHASIS"
+>Windows 2000</I
+></P
+><P
+> When the user elects to join the client to a domain, Windows prompts for
+	an account and password that is privileged to join the domain.  A
+	Samba administrative account (i.e., a Samba account that has root
+	privileges on the Samba server) must be entered here; the
+	operation will fail if an ordinary user account is given. 
+	The password for this account should be
+	set to a different password than the associated
+	<TT
+CLASS="FILENAME"
+>/etc/passwd</TT
+> entry, for security
+	reasons. </P
+><P
+>The session key of the Samba administrative account acts as an
+	encryption key for setting the password of the machine trust
+	account. The machine trust account will be created on-the-fly, or
+	updated if it already exists.</P
+></LI
+><LI
+><P
+><I
+CLASS="EMPHASIS"
+>Windows NT</I
+></P
+><P
+> If the machine trust account was created manually, on the
+	Identification Changes menu enter the domain name, but do not
+	check the box "Create a Computer Account in the Domain."  In this case,
+	the existing machine trust account is used to join the machine to
+	the domain.</P
+><P
+> If the machine trust account is to be created
+	on-the-fly, on the Identification Changes menu enter the domain
+	name, and check the box "Create a Computer Account in the Domain."  In
+	this case, joining the domain proceeds as above for Windows 2000
+	(i.e., you must supply a Samba administrative account when
+	prompted).</P
+></LI
+></UL
+></DIV
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H1
+CLASS="SECT1"
+><A
+NAME="AEN169"
+>Common Problems and Errors</A
+></H1
+><P
+></P
+><P
+></P
+><UL
+><LI
+><P
+>	<I
+CLASS="EMPHASIS"
+>I cannot include a '$' in a machine name.</I
+>
+	</P
+><P
+>	A 'machine name' in (typically) <TT
+CLASS="FILENAME"
+>/etc/passwd</TT
+> 	
+	of the machine name with a '$' appended. FreeBSD (and other BSD 
+	systems?) won't create a user with a '$' in their name.
+	</P
+><P
+>	The problem is only in the program used to make the entry, once 
+	made, it works perfectly. So create a user without the '$' and 
+	use <B
+CLASS="COMMAND"
+>vipw</B
+> to edit the entry, adding the '$'. Or create 
+	the whole entry with vipw if you like, make sure you use a 
+	unique User ID !
+	</P
+></LI
+><LI
+><P
+>	<I
+CLASS="EMPHASIS"
+>I get told "You already have a connection to the Domain...." 
+	or "Cannot join domain, the credentials supplied conflict with an 
+	existing set.." when creating a machine trust account.</I
+>
+	</P
+><P
+>	This happens if you try to create a machine trust account from the 
+	machine itself and already have a connection (e.g. mapped drive) 
+	to a share (or IPC$) on the Samba PDC.  The following command
+	will remove all network drive connections:
+	</P
+><P
+>	<TT
+CLASS="PROMPT"
+>C:\WINNT\&#62;</TT
+> <B
+CLASS="COMMAND"
+>net use * /d</B
+>
+	</P
+><P
+>	Further, if the machine is a already a 'member of a workgroup' that 
+	is the same name as the domain you are joining (bad idea) you will 
+	get this message.  Change the workgroup name to something else, it 
+	does not matter what, reboot, and try again.
+	</P
+></LI
+><LI
+><P
+>	<I
+CLASS="EMPHASIS"
+>The system can not log you on (C000019B)....</I
+>
+	</P
+><P
+>I joined the domain successfully but after upgrading 
+	to a newer version of the Samba code I get the message, "The system 
+	can not log you on (C000019B), Please try a gain or consult your 
+	system administrator" when attempting to logon.
+	</P
+><P
+>	This occurs when the domain SID stored in 
+	<TT
+CLASS="FILENAME"
+>private/WORKGROUP.SID</TT
+> is 
+	changed.  For example, you remove the file and <B
+CLASS="COMMAND"
+>smbd</B
+> automatically 
+	creates a new one.  Or you are swapping back and forth between 
+	versions 2.0.7, TNG and the HEAD branch code (not recommended).  The 
+	only way to correct the problem is to restore the original domain 
+	SID or remove the domain client from the domain and rejoin.
+	</P
+></LI
+><LI
+><P
+>	<I
+CLASS="EMPHASIS"
+>The machine trust account for this computer either does not 
+	exist or is not accessible.</I
+>
+	</P
+><P
+>	When I try to join the domain I get the message "The machine account 
+	for this computer either does not exist or is not accessible". What's 
+	wrong?
+	</P
+><P
+>	This problem is caused by the PDC not having a suitable machine trust account. 
+	If you are using the <TT
+CLASS="PARAMETER"
+><I
+>add user script</I
+></TT
+> method to create 
+	accounts then this would indicate that it has not worked. Ensure the domain 
+	admin user system is working.
+	</P
+><P
+>	Alternatively if you are creating account entries manually then they 
+	have not been created correctly. Make sure that you have the entry 
+	correct for the machine trust account in smbpasswd file on the Samba PDC. 
+	If you added the account using an editor rather than using the smbpasswd 
+	utility, make sure that the account name is the machine NetBIOS name 
+	with a '$' appended to it ( i.e. computer_name$ ). There must be an entry 
+	in both /etc/passwd and the smbpasswd file. Some people have reported 
+	that inconsistent subnet masks between the Samba server and the NT 
+	client have caused this problem.   Make sure that these are consistent 
+	for both client and server.
+	</P
+></LI
+><LI
+><P
+>	<I
+CLASS="EMPHASIS"
+>When I attempt to login to a Samba Domain from a NT4/W2K workstation,
+	I get a message about my account being disabled.</I
+>
+	</P
+><P
+>	This problem is caused by a PAM related bug in Samba 2.2.0.  This bug is 
+	fixed in 2.2.1.  Other symptoms could be unaccessible shares on 
+	NT/W2K member servers in the domain or the following error in your smbd.log:
+	passdb/pampass.c:pam_account(268) PAM: UNKNOWN ERROR for User: %user%
+	</P
+><P
+>	At first be ensure to enable the useraccounts with <B
+CLASS="COMMAND"
+>smbpasswd -e 
+	%user%</B
+>, this is normally done, when you create an account.
+	</P
+><P
+>	In order to work around this problem in 2.2.0, configure the 
+	<TT
+CLASS="PARAMETER"
+><I
+>account</I
+></TT
+> control flag in 
+	<TT
+CLASS="FILENAME"
+>/etc/pam.d/samba</TT
+> file as follows:
+	</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>	account required        pam_permit.so
+	</PRE
+></P
+><P
+>	If you want to remain backward compatibility to samba 2.0.x use
+	<TT
+CLASS="FILENAME"
+>pam_permit.so</TT
+>, it's also possible to use 
+	<TT
+CLASS="FILENAME"
+>pam_pwdb.so</TT
+>. There are some bugs if you try to 
+	use <TT
+CLASS="FILENAME"
+>pam_unix.so</TT
+>, if you need this, be ensure to use
+	the most recent version of this file.
+	</P
+></LI
+></UL
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H1
+CLASS="SECT1"
+><A
+NAME="AEN217"
+>System Policies and Profiles</A
+></H1
+><P
+>Much of the information necessary to implement System Policies and
+Roving User Profiles in a Samba domain is the same as that for 
+implementing these same items in a Windows NT 4.0 domain. 
+You should read the white paper <A
+HREF="http://www.microsoft.com/ntserver/management/deployment/planguide/prof_policies.asp"
+TARGET="_top"
+>Implementing
+Profiles and Policies in Windows NT 4.0</A
+> available from Microsoft.</P
+><P
+>Here are some additional details:</P
+><P
+></P
+><UL
+><LI
+><P
+>	<I
+CLASS="EMPHASIS"
+>What about Windows NT Policy Editor?</I
+>
+	</P
+><P
+>	To create or edit <TT
+CLASS="FILENAME"
+>ntconfig.pol</TT
+> you must use 
+	the NT Server Policy Editor, <B
+CLASS="COMMAND"
+>poledit.exe</B
+>	which 
+	is included with NT Server but <I
+CLASS="EMPHASIS"
+>not NT Workstation</I
+>. 
+	There is a Policy Editor on a NTws 
+	but it is not suitable for creating <I
+CLASS="EMPHASIS"
+>Domain Policies</I
+>. 
+	Further, although the Windows 95 
+	Policy Editor can be installed on an NT Workstation/Server, it will not
+	work with NT policies because the registry key that are set by the policy templates. 
+	However, the files from the NT Server will run happily enough on an NTws. 	
+	You need <TT
+CLASS="FILENAME"
+>poledit.exe, common.adm</TT
+> and <TT
+CLASS="FILENAME"
+>winnt.adm</TT
+>. It is convenient
+	to put the two *.adm files in <TT
+CLASS="FILENAME"
+>c:\winnt\inf</TT
+> which is where
+	the binary will look for them unless told otherwise. Note also that that 
+	directory is 'hidden'.
+	</P
+><P
+>	The Windows NT policy editor is also included with the Service Pack 3 (and 
+	later) for Windows NT 4.0. Extract the files using <B
+CLASS="COMMAND"
+>servicepackname /x</B
+>, 
+	i.e. that's <B
+CLASS="COMMAND"
+>Nt4sp6ai.exe /x</B
+> for service pack 6a.  The policy editor, 
+	<B
+CLASS="COMMAND"
+>poledit.exe</B
+> and the associated template files (*.adm) should
+	be extracted as well.  It is also possible to downloaded the policy template 
+	files for Office97 and get a copy of the policy editor.  Another possible 
+	location is with the Zero Administration Kit available for download from Microsoft.
+	</P
+></LI
+><LI
+><P
+>	<I
+CLASS="EMPHASIS"
+>Can Win95 do Policies?</I
+>
+	</P
+><P
+>	Install the group policy handler for Win9x to pick up group 
+	policies.   Look on the Win98 CD in <TT
+CLASS="FILENAME"
+>\tools\reskit\netadmin\poledit</TT
+>. 
+	Install group policies on a Win9x client by double-clicking 
+	<TT
+CLASS="FILENAME"
+>grouppol.inf</TT
+>. Log off and on again a couple of 
+	times and see if Win98 picks up group policies.  Unfortunately this needs 
+	to be done on every Win9x machine that uses group policies....
+	</P
+><P
+>	If group policies don't work one reports suggests getting the updated 
+	(read: working) grouppol.dll for Windows 9x. The group list is grabbed 
+	from /etc/group.
+	</P
+></LI
+><LI
+><P
+>	<I
+CLASS="EMPHASIS"
+>How do I get 'User Manager' and 'Server Manager'</I
+>
+	</P
+><P
+>	Since I don't need to buy an NT Server CD now, how do I get 
+	the 'User Manager for Domains', the 'Server Manager'?
+	</P
+><P
+>	Microsoft distributes a version of these tools called nexus for 
+	installation on Windows 95 systems.  The tools set includes
+	</P
+><P
+></P
+><UL
+><LI
+><P
+>Server Manager</P
+></LI
+><LI
+><P
+>User Manager for Domains</P
+></LI
+><LI
+><P
+>Event Viewer</P
+></LI
+></UL
+><P
+>	Click here to download the archived file <A
+HREF="ftp://ftp.microsoft.com/Softlib/MSLFILES/NEXUS.EXE"
+TARGET="_top"
+>ftp://ftp.microsoft.com/Softlib/MSLFILES/NEXUS.EXE</A
+>
+	</P
+><P
+>	The Windows NT 4.0 version of the 'User Manager for 
+	Domains' and 'Server Manager' are available from Microsoft via ftp 
+	from <A
+HREF="ftp://ftp.microsoft.com/Softlib/MSLFILES/SRVTOOLS.EXE"
+TARGET="_top"
+>ftp://ftp.microsoft.com/Softlib/MSLFILES/SRVTOOLS.EXE</A
+>
+	</P
+></LI
+></UL
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H1
+CLASS="SECT1"
+><A
+NAME="AEN261"
+>What other help can I get?</A
+></H1
+><P
+>There are many sources of information available in the form 
+of mailing lists, RFC's and documentation.  The docs that come 
+with the samba distribution contain very good explanations of 
+general SMB topics such as browsing.</P
+><P
+></P
+><UL
+><LI
+><P
+>	<I
+CLASS="EMPHASIS"
+>What are some diagnostics tools I can use to debug the domain logon 
+	process and where can I	find them?</I
+>
+	</P
+><P
+>	One of the best diagnostic tools for debugging problems is Samba itself.  
+	You can use the -d option for both smbd and nmbd to specify what 
+	'debug level' at which to run.  See the man pages on smbd, nmbd  and 
+	smb.conf for more information on debugging options.  The debug 
+	level can range from 1 (the default) to 10 (100 for debugging passwords).
+	</P
+><P
+>	Another helpful method of debugging is to compile samba using the 
+	<B
+CLASS="COMMAND"
+>gcc -g </B
+> flag.   This will include debug 
+	information in the binaries and allow you to attach gdb to the 
+	running smbd / nmbd process.  In order to attach gdb to an smbd 
+	process for an NT workstation, first get the workstation to make the 
+	connection. Pressing ctrl-alt-delete and going down to the domain box 
+	is sufficient (at least, on the first time you join the domain) to 
+	generate a 'LsaEnumTrustedDomains'. Thereafter, the workstation 
+	maintains an open connection, and therefore there will be an smbd 
+	process running (assuming that you haven't set a really short smbd 
+	idle timeout)  So, in between pressing ctrl alt delete, and actually 
+	typing in your password, you can gdb attach and continue.
+	</P
+><P
+>	Some useful samba commands worth investigating:
+	</P
+><P
+></P
+><UL
+><LI
+><P
+>testparam | more</P
+></LI
+><LI
+><P
+>smbclient -L //{netbios name of server}</P
+></LI
+></UL
+><P
+>	An SMB enabled version of tcpdump is available from 
+	<A
+HREF="http://www.tcpdump.org/"
+TARGET="_top"
+>http://www.tcpdup.org/</A
+>.
+	Ethereal, another good packet sniffer for Unix and Win32
+	hosts, can be downloaded from <A
+HREF="http://www.ethereal.com/"
+TARGET="_top"
+>http://www.ethereal.com</A
+>.
+	</P
+><P
+>	For tracing things on the Microsoft Windows NT, Network Monitor 
+	(aka. netmon) is available on the Microsoft Developer Network CD's, 
+	the Windows NT Server install CD and the SMS CD's.  The version of 
+	netmon that ships with SMS allows for dumping packets between any two 
+	computers (i.e. placing the network interface in promiscuous mode).  
+	The version on the NT Server install CD will only allow monitoring 
+	of network traffic directed to the local NT box and broadcasts on the 
+	local subnet.  Be aware that Ethereal can read and write netmon 
+	formatted files.
+	</P
+></LI
+><LI
+><P
+>	<I
+CLASS="EMPHASIS"
+>How do I install 'Network Monitor' on an NT Workstation 
+	or a Windows 9x box?</I
+>
+	</P
+><P
+>	Installing netmon on an NT workstation requires a couple 
+	of steps.  The following are for installing Netmon V4.00.349, which comes 
+	with Microsoft Windows NT Server 4.0, on Microsoft Windows NT 
+	Workstation 4.0.  The process should be similar for other version of 
+	Windows NT / Netmon.  You will need both the Microsoft Windows 
+	NT Server 4.0 Install CD and the Workstation 4.0 Install CD.
+	</P
+><P
+>	Initially you will need to install 'Network Monitor Tools and Agent' 
+	on the NT Server.  To do this 
+	</P
+><P
+></P
+><UL
+><LI
+><P
+>Goto Start - Settings - Control Panel - 
+		Network - Services - Add </P
+></LI
+><LI
+><P
+>Select the 'Network Monitor Tools and Agent' and 
+		click on 'OK'.</P
+></LI
+><LI
+><P
+>Click 'OK' on the Network Control Panel.
+		</P
+></LI
+><LI
+><P
+>Insert the Windows NT Server 4.0 install CD 
+		when prompted.</P
+></LI
+></UL
+><P
+>	At this point the Netmon files should exist in 
+	<TT
+CLASS="FILENAME"
+>%SYSTEMROOT%\System32\netmon\*.*</TT
+>.    
+	Two subdirectories exist as well, <TT
+CLASS="FILENAME"
+>parsers\</TT
+> 
+	which contains the necessary DLL's for parsing the netmon packet 
+	dump, and <TT
+CLASS="FILENAME"
+>captures\</TT
+>.
+	</P
+><P
+>	In order to install the Netmon tools on an NT Workstation, you will 
+	first need to install the 'Network  Monitor Agent' from the Workstation 
+	install CD.
+	</P
+><P
+></P
+><UL
+><LI
+><P
+>Goto Start - Settings - Control Panel - 
+		Network - Services - Add</P
+></LI
+><LI
+><P
+>Select the 'Network Monitor Agent' and click 
+		on 'OK'.</P
+></LI
+><LI
+><P
+>Click 'OK' on the Network Control Panel.
+		</P
+></LI
+><LI
+><P
+>Insert the Windows NT Workstation 4.0 install 
+		CD when prompted.</P
+></LI
+></UL
+><P
+>	Now copy the files from the NT Server in %SYSTEMROOT%\System32\netmon\*.* 
+	to %SYSTEMROOT%\System32\netmon\*.* on the Workstation and set 
+	permissions as  you deem appropriate for your site. You will need 
+	administrative rights on the NT box to run netmon.
+	</P
+><P
+>	To install Netmon on a Windows 9x box install the network monitor agent 
+	from the Windows 9x CD (\admin\nettools\netmon).  There is a readme 
+	file located with the netmon driver files on the CD if you need 
+	information on how to do this.  Copy the files from a working 
+	Netmon installation.
+	</P
+></LI
+><LI
+><P
+>	The following is a list if helpful URLs and other links:
+	</P
+><P
+></P
+><UL
+><LI
+><P
+>Home of Samba site <A
+HREF="http://samba.org"
+TARGET="_top"
+>        http://samba.org</A
+>. We have a mirror near you !</P
+></LI
+><LI
+><P
+> The <I
+CLASS="EMPHASIS"
+>Development</I
+> document 
+	on the Samba mirrors might mention your problem. If so,
+	it might mean that the developers are working on it.</P
+></LI
+><LI
+><P
+>See how Scott Merrill simulates a BDC behavior at 
+        <A
+HREF="http://www.skippy.net/linux/smb-howto.html"
+TARGET="_top"
+>        http://www.skippy.net/linux/smb-howto.html</A
+>. </P
+></LI
+><LI
+><P
+>Although 2.0.7 has almost had its day as a PDC, David Bannon will
+        keep the 2.0.7 PDC pages at <A
+HREF="http://bioserve.latrobe.edu.au/samba"
+TARGET="_top"
+>        http://bioserve.latrobe.edu.au/samba</A
+> going for a while yet.</P
+></LI
+><LI
+><P
+>Misc links to CIFS information 
+        <A
+HREF="http://samba.org/cifs/"
+TARGET="_top"
+>http://samba.org/cifs/</A
+></P
+></LI
+><LI
+><P
+>NT Domains for Unix <A
+HREF="http://mailhost.cb1.com/~lkcl/ntdom/"
+TARGET="_top"
+>        http://mailhost.cb1.com/~lkcl/ntdom/</A
+></P
+></LI
+><LI
+><P
+>FTP site for older SMB specs: 
+        <A
+HREF="ftp://ftp.microsoft.com/developr/drg/CIFS/"
+TARGET="_top"
+>        ftp://ftp.microsoft.com/developr/drg/CIFS/</A
+></P
+></LI
+></UL
+></LI
+></UL
+><P
+></P
+><UL
+><LI
+><P
+>	<I
+CLASS="EMPHASIS"
+>How do I get help from the mailing lists?</I
+>
+	</P
+><P
+>	There are a number of Samba related mailing lists. Go to <A
+HREF="http://samba.org"
+TARGET="_top"
+>http://samba.org</A
+>, click on your nearest mirror
+	and then click on <B
+CLASS="COMMAND"
+>Support</B
+> and then click on <B
+CLASS="COMMAND"
+>	Samba related mailing lists</B
+>.
+	</P
+><P
+>	For questions relating to Samba TNG go to
+	<A
+HREF="http://www.samba-tng.org/"
+TARGET="_top"
+>http://www.samba-tng.org/</A
+> 
+	It has been requested that you don't post questions about Samba-TNG to the
+	main stream Samba lists.</P
+><P
+>	If you post a message to one of the lists please observe the following guide lines :
+	</P
+><P
+></P
+><UL
+><LI
+><P
+> Always remember that the developers are volunteers, they are 
+		not paid and they never guarantee to produce a particular feature at 
+		a particular time. Any time lines are 'best guess' and nothing more.
+		</P
+></LI
+><LI
+><P
+> Always mention what version of samba you are using and what 
+		operating system its running under. You should probably list the
+        relevant sections of your smb.conf file, at least the options 
+        in [global] that affect PDC support.</P
+></LI
+><LI
+><P
+>In addition to the version, if you obtained Samba via
+        CVS mention the date when you last checked it out.</P
+></LI
+><LI
+><P
+> Try and make your question clear and brief, lots of long, 
+		convoluted questions get deleted before	they are completely read ! 
+		Don't post html encoded messages (if you can select colour or font 
+		size its html).</P
+></LI
+><LI
+><P
+> If you run one of those nifty 'I'm on holidays' things when 
+		you are away, make sure its configured	to not answer mailing lists.
+		</P
+></LI
+><LI
+><P
+> Don't cross post. Work out which is the best list to post to 
+		and see what happens, i.e. don't post to both samba-ntdom and samba-technical.
+        Many people active on the lists subscribe to more 
+		than one list and get annoyed to see the same message two or more times. 
+		Often someone will see a message and thinking it would be better dealt 
+		with on another, will forward it on for you.</P
+></LI
+><LI
+><P
+>You might include <I
+CLASS="EMPHASIS"
+>partial</I
+>
+        log files written at a debug level set to as much as 20.  
+        Please don't send the entire log but enough to give the context of the 
+        error messages.</P
+></LI
+><LI
+><P
+>(Possibly) If you have a complete netmon trace ( from the opening of 
+        the pipe to the error ) you can send the *.CAP file as well.</P
+></LI
+><LI
+><P
+>Please think carefully before attaching a document to an email.
+        Consider pasting the relevant parts into the body of the message. The samba
+        mailing lists go to a huge number of people, do they all need a copy of your 
+        smb.conf in their attach directory?</P
+></LI
+></UL
+></LI
+><LI
+><P
+>	<I
+CLASS="EMPHASIS"
+>How do I get off the mailing lists?</I
+>
+	</P
+><P
+>To have your name removed from a samba mailing list, go to the
+	same place you went to to get on it. Go to <A
+HREF="http://lists.samba.org/"
+TARGET="_top"
+>http://lists.samba.org</A
+>, 
+	click on your nearest mirror and then click on <B
+CLASS="COMMAND"
+>Support</B
+> and 
+	then click on <B
+CLASS="COMMAND"
+> Samba related mailing lists</B
+>. Or perhaps see 
+	<A
+HREF="http://lists.samba.org/mailman/roster/samba-ntdom"
+TARGET="_top"
+>here</A
+>
+	</P
+><P
+>	Please don't post messages to the list asking to be removed, you will just
+	be referred to the above address (unless that process failed in some way...)
+	</P
+></LI
+></UL
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H1
+CLASS="SECT1"
+><A
+NAME="AEN375"
+>Domain Control for Windows 9x/ME</A
+></H1
+><DIV
+CLASS="NOTE"
+><BLOCKQUOTE
+CLASS="NOTE"
+><P
+><B
+>Note: </B
+>The following section contains much of the original 
+DOMAIN.txt file previously included with Samba.  Much of 
+the material is based on what went into the book <I
+CLASS="EMPHASIS"
+>Special 
+Edition, Using Samba</I
+>, by Richard Sharpe.</P
+></BLOCKQUOTE
+></DIV
+><P
+>A domain and a workgroup are exactly the same thing in terms of network
+browsing.  The difference is that a distributable authentication
+database is associated with a domain, for secure login access to a
+network.  Also, different access rights can be granted to users if they
+successfully authenticate against a domain logon server (NT server and 
+other systems based on NT server support this, as does at least Samba TNG now).</P
+><P
+>The SMB client logging on to a domain has an expectation that every other
+server in the domain should accept the same authentication information.
+Network browsing functionality of domains and workgroups is
+identical and is explained in BROWSING.txt. It should be noted, that browsing
+is totally orthogonal to logon support.</P
+><P
+>Issues related to the single-logon network model are discussed in this
+section.  Samba supports domain logons, network logon scripts, and user
+profiles for MS Windows for workgroups and MS Windows 9X/ME clients
+which will be the focus of this section.</P
+><P
+>When an SMB client in a domain wishes to logon it broadcast requests for a
+logon server.  The first one to reply gets the job, and validates its
+password using whatever mechanism the Samba administrator has installed.
+It is possible (but very stupid) to create a domain where the user
+database is not shared between servers, i.e. they are effectively workgroup
+servers advertising themselves as participating in a domain.  This
+demonstrates how authentication is quite different from but closely
+involved with domains.</P
+><P
+>Using these features you can make your clients verify their logon via
+the Samba server; make clients run a batch file when they logon to
+the network and download their preferences, desktop and start menu.</P
+><P
+>Before launching into the configuration instructions, it is 
+worthwhile lookingat how a Windows 9x/ME client performs a logon:</P
+><P
+></P
+><OL
+TYPE="1"
+><LI
+><P
+>	The client broadcasts (to the IP broadcast address of the subnet it is in)
+	a NetLogon request. This is sent to the NetBIOS name DOMAIN&#60;1c&#62; at the
+	NetBIOS layer.  The client chooses the first response it receives, which
+	contains the NetBIOS name of the logon server to use in the format of 
+	\\SERVER.
+	</P
+></LI
+><LI
+><P
+>	The client then connects to that server, logs on (does an SMBsessetupX) and
+	then connects to the IPC$ share (using an SMBtconX).
+	</P
+></LI
+><LI
+><P
+>	The client then does a NetWkstaUserLogon request, which retrieves the name
+	of the user's logon script. 
+	</P
+></LI
+><LI
+><P
+>	The client then connects to the NetLogon share and searches for this 	
+	and if it is found and can be read, is retrieved and executed by the client.
+	After this, the client disconnects from the NetLogon share.
+	</P
+></LI
+><LI
+><P
+>	The client then sends a NetUserGetInfo request to the server, to retrieve
+	the user's home share, which is used to search for profiles. Since the
+	response to the NetUserGetInfo request does not contain much more 	
+	the user's home share, profiles for Win9X clients MUST reside in the user
+	home directory.
+	</P
+></LI
+><LI
+><P
+>	The client then connects to the user's home share and searches for the 
+	user's profile. As it turns out, you can specify the user's home share as
+	a sharename and path. For example, \\server\fred\.profile.
+	If the profiles are found, they are implemented.
+	</P
+></LI
+><LI
+><P
+>	The client then disconnects from the user's home share, and reconnects to
+	the NetLogon share and looks for CONFIG.POL, the policies file. If this is
+	found, it is read and implemented.
+	</P
+></LI
+></OL
+><DIV
+CLASS="SECT2"
+><HR><H2
+CLASS="SECT2"
+><A
+NAME="AEN401"
+>Configuration Instructions:	Network Logons</A
+></H2
+><P
+>The main difference between a PDC and a Windows 9x logon 
+server configuration is that</P
+><P
+></P
+><UL
+><LI
+><P
+>Password encryption is not required for a Windows 9x logon server.</P
+></LI
+><LI
+><P
+>Windows 9x/ME clients do not possess machine trust accounts.</P
+></LI
+></UL
+><P
+>Therefore, a Samba PDC will also act as a Windows 9x logon 
+server.</P
+><DIV
+CLASS="WARNING"
+><P
+></P
+><TABLE
+CLASS="WARNING"
+BORDER="1"
+WIDTH="100%"
+><TR
+><TD
+ALIGN="CENTER"
+><B
+>security mode and master browsers</B
+></TD
+></TR
+><TR
+><TD
+ALIGN="LEFT"
+><P
+>There are a few comments to make in order to tie up some 
+loose ends.  There has been much debate over the issue of whether
+or not it is ok to configure Samba as a Domain Controller in security
+modes other than <TT
+CLASS="CONSTANT"
+>USER</TT
+>.  The only security mode 
+which  will not work due to technical reasons is <TT
+CLASS="CONSTANT"
+>SHARE</TT
+>
+mode security.  <TT
+CLASS="CONSTANT"
+>DOMAIN</TT
+> and <TT
+CLASS="CONSTANT"
+>SERVER</TT
+>
+mode security is really just a variation on SMB user level security.</P
+><P
+>Actually, this issue is also closely tied to the debate on whether 
+or not Samba must be the domain master browser for its workgroup
+when operating as a DC.  While it may technically be possible
+to configure a server as such (after all, browsing and domain logons
+are two distinctly different functions), it is not a good idea to
+so.  You should remember that the DC must register the DOMAIN#1b NetBIOS 
+name.  This is the name used by Windows clients to locate the DC.
+Windows clients do not distinguish between the DC and the DMB.
+For this reason, it is very wise to configure the Samba DC as the DMB.</P
+><P
+>Now back to the issue of configuring a Samba DC to use a mode other
+than "security = user".  If a Samba host is configured to use 
+another SMB server or DC in order to validate user connection 
+requests, then it is a fact that some other machine on the network 
+(the "password server") knows more about user than the Samba host.
+99% of the time, this other host is a domain controller.  Now 
+in order to operate in domain mode security, the "workgroup" parameter
+must be set to the name of the Windows NT domain (which already 
+has a domain controller, right?)</P
+><P
+>Therefore configuring a Samba box as a DC for a domain that 
+already by definition has a PDC is asking for trouble.
+Therefore, you should always configure the Samba DC to be the DMB
+for its domain.</P
+></TD
+></TR
+></TABLE
+></DIV
+></DIV
+><DIV
+CLASS="SECT2"
+><HR><H2
+CLASS="SECT2"
+><A
+NAME="AEN420"
+>Configuration Instructions:	Setting up Roaming User Profiles</A
+></H2
+><DIV
+CLASS="WARNING"
+><P
+></P
+><TABLE
+CLASS="WARNING"
+BORDER="1"
+WIDTH="100%"
+><TR
+><TD
+ALIGN="CENTER"
+><B
+>Warning</B
+></TD
+></TR
+><TR
+><TD
+ALIGN="LEFT"
+><P
+><I
+CLASS="EMPHASIS"
+>NOTE!</I
+> Roaming profiles support is different 
+for Win9X and WinNT.</P
+></TD
+></TR
+></TABLE
+></DIV
+><P
+>Before discussing how to configure roaming profiles, it is useful to see how
+Win9X and WinNT clients implement these features.</P
+><P
+>Win9X clients send a NetUserGetInfo request to the server to get the user's
+profiles location. However, the response does not have room for a separate 
+profiles location field, only the user's home share. This means that Win9X 
+profiles are restricted to being in the user's home directory.</P
+><P
+>WinNT clients send a NetSAMLogon RPC request, which contains many fields, 
+including a separate field for the location of the user's profiles. 
+This means that support for profiles is different for Win9X and WinNT.</P
+><DIV
+CLASS="SECT3"
+><HR><H3
+CLASS="SECT3"
+><A
+NAME="AEN428"
+>Windows NT Configuration</A
+></H3
+><P
+>To support WinNT clients, in the [global] section of smb.conf set the
+following (for example):</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>logon path = \\profileserver\profileshare\profilepath\%U\moreprofilepath</PRE
+></P
+><P
+>The default for this option is \\%N\%U\profile, namely
+\\sambaserver\username\profile.  The \\N%\%U service is created
+automatically by the [homes] service.
+If you are using a samba server for the profiles, you _must_ make the
+share specified in the logon path browseable. </P
+><DIV
+CLASS="NOTE"
+><BLOCKQUOTE
+CLASS="NOTE"
+><P
+><B
+>Note: </B
+>[lkcl 26aug96 - we have discovered a problem where Windows clients can
+maintain a connection to the [homes] share in between logins.  The
+[homes] share must NOT therefore be used in a profile path.]</P
+></BLOCKQUOTE
+></DIV
+></DIV
+><DIV
+CLASS="SECT3"
+><HR><H3
+CLASS="SECT3"
+><A
+NAME="AEN436"
+>Windows 9X Configuration</A
+></H3
+><P
+>To support Win9X clients, you must use the "logon home" parameter. Samba has
+now been fixed so that "net use/home" now works as well, and it, too, relies
+on the "logon home" parameter.</P
+><P
+>By using the logon home parameter, you are restricted to putting Win9X 
+profiles in the user's home directory.   But wait! There is a trick you 
+can use. If you set the following in the [global] section of your 
+smb.conf file:</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>logon home = \\%L\%U\.profiles</PRE
+></P
+><P
+>then your Win9X clients will dutifully put their clients in a subdirectory
+of your home directory called .profiles (thus making them hidden).</P
+><P
+>Not only that, but 'net use/home' will also work, because of a feature in 
+Win9X. It removes any directory stuff off the end of the home directory area
+and only uses the server and share portion. That is, it looks like you
+specified \\%L\%U for "logon home".</P
+></DIV
+><DIV
+CLASS="SECT3"
+><HR><H3
+CLASS="SECT3"
+><A
+NAME="AEN444"
+>Win9X and WinNT Configuration</A
+></H3
+><P
+>You can support profiles for both Win9X and WinNT clients by setting both the
+"logon home" and "logon path" parameters. For example:</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>logon home = \\%L\%U\.profiles
+logon path = \\%L\profiles\%U</PRE
+></P
+><DIV
+CLASS="NOTE"
+><BLOCKQUOTE
+CLASS="NOTE"
+><P
+><B
+>Note: </B
+>I have not checked what 'net use /home' does on NT when "logon home" is
+set as above.</P
+></BLOCKQUOTE
+></DIV
+></DIV
+><DIV
+CLASS="SECT3"
+><HR><H3
+CLASS="SECT3"
+><A
+NAME="AEN451"
+>Windows 9X Profile Setup</A
+></H3
+><P
+>When a user first logs in on Windows 9X, the file user.DAT is created,
+as are folders "Start Menu", "Desktop", "Programs" and "Nethood".  
+These directories and their contents will be merged with the local
+versions stored in c:\windows\profiles\username on subsequent logins,
+taking the most recent from each.  You will need to use the [global]
+options "preserve case = yes", "short preserve case = yes" and
+"case sensitive = no" in order to maintain capital letters in shortcuts
+in any of the profile folders.</P
+><P
+>The user.DAT file contains all the user's preferences.  If you wish to
+enforce a set of preferences, rename their user.DAT file to user.MAN,
+and deny them write access to this file.</P
+><P
+></P
+><OL
+TYPE="1"
+><LI
+><P
+>	On the Windows 95 machine, go to Control Panel | Passwords and
+	select the User Profiles tab.  Select the required level of
+	roaming preferences.  Press OK, but do _not_ allow the computer
+	to reboot.
+	</P
+></LI
+><LI
+><P
+>	On the Windows 95 machine, go to Control Panel | Network |
+	Client for Microsoft Networks | Preferences.  Select 'Log on to
+	NT Domain'.  Then, ensure that the Primary Logon is 'Client for
+	Microsoft Networks'.  Press OK, and this time allow the computer
+	to reboot.
+	</P
+></LI
+></OL
+><P
+>Under Windows 95, Profiles are downloaded from the Primary Logon.
+If you have the Primary Logon as 'Client for Novell Networks', then
+the profiles and logon script will be downloaded from your Novell
+Server.  If you have the Primary Logon as 'Windows Logon', then the
+profiles will be loaded from the local machine - a bit against the
+concept of roaming profiles, if you ask me.</P
+><P
+>You will now find that the Microsoft Networks Login box contains
+[user, password, domain] instead of just [user, password].  Type in
+the samba server's domain name (or any other domain known to exist,
+but bear in mind that the user will be authenticated against this
+domain and profiles downloaded from it, if that domain logon server
+supports it), user name and user's password.</P
+><P
+>Once the user has been successfully validated, the Windows 95 machine
+will inform you that 'The user has not logged on before' and asks you
+if you wish to save the user's preferences?  Select 'yes'.</P
+><P
+>Once the Windows 95 client comes up with the desktop, you should be able
+to examine the contents of the directory specified in the "logon path"
+on the samba server and verify that the "Desktop", "Start Menu",
+"Programs" and "Nethood" folders have been created.</P
+><P
+>These folders will be cached locally on the client, and updated when
+the user logs off (if you haven't made them read-only by then :-).
+You will find that if the user creates further folders or short-cuts,
+that the client will merge the profile contents downloaded with the
+contents of the profile directory already on the local client, taking
+the newest folders and short-cuts from each set.</P
+><P
+>If you have made the folders / files read-only on the samba server,
+then you will get errors from the w95 machine on logon and logout, as
+it attempts to merge the local and the remote profile.  Basically, if
+you have any errors reported by the w95 machine, check the Unix file
+permissions and ownership rights on the profile directory contents,
+on the samba server.</P
+><P
+>If you have problems creating user profiles, you can reset the user's
+local desktop cache, as shown below.  When this user then next logs in,
+they will be told that they are logging in "for the first time".</P
+><P
+></P
+><OL
+TYPE="1"
+><LI
+><P
+>	instead of logging in under the [user, password, domain] dialog,
+	press escape.
+	</P
+></LI
+><LI
+><P
+>	run the regedit.exe program, and look in:
+	</P
+><P
+>	HKEY_LOCAL_MACHINE\Windows\CurrentVersion\ProfileList
+	</P
+><P
+>	you will find an entry, for each user, of ProfilePath.  Note the
+	contents of this key (likely to be c:\windows\profiles\username),
+	then delete the key ProfilePath for the required user.
+	</P
+><P
+>	[Exit the registry editor].
+	</P
+></LI
+><LI
+><P
+>	<I
+CLASS="EMPHASIS"
+>WARNING</I
+> - before deleting the contents of the 
+	directory listed in
+   the ProfilePath (this is likely to be c:\windows\profiles\username),
+   ask them if they have any important files stored on their desktop
+   or in their start menu.  delete the contents of the directory
+   ProfilePath (making a backup if any of the files are needed).
+	</P
+><P
+>   This will have the effect of removing the local (read-only hidden
+   system file) user.DAT in their profile directory, as well as the
+   local "desktop", "nethood", "start menu" and "programs" folders.
+	</P
+></LI
+><LI
+><P
+>	search for the user's .PWL password-caching file in the c:\windows
+	directory, and delete it.
+	</P
+></LI
+><LI
+><P
+>	log off the windows 95 client.
+	</P
+></LI
+><LI
+><P
+>	check the contents of the profile path (see "logon path" described
+	above), and delete the user.DAT or user.MAN file for the user,
+	making a backup if required.  
+	</P
+></LI
+></OL
+><P
+>If all else fails, increase samba's debug log levels to between 3 and 10,
+and / or run a packet trace program such as tcpdump or netmon.exe, and
+look for any error reports.</P
+><P
+>If you have access to an NT server, then first set up roaming profiles
+and / or netlogons on the NT server.  Make a packet trace, or examine
+the example packet traces provided with NT server, and see what the
+differences are with the equivalent samba trace.</P
+></DIV
+><DIV
+CLASS="SECT3"
+><HR><H3
+CLASS="SECT3"
+><A
+NAME="AEN487"
+>Windows NT Workstation 4.0</A
+></H3
+><P
+>When a user first logs in to a Windows NT Workstation, the profile
+NTuser.DAT is created.  The profile location can be now specified
+through the "logon path" parameter.  </P
+><DIV
+CLASS="NOTE"
+><BLOCKQUOTE
+CLASS="NOTE"
+><P
+><B
+>Note: </B
+>[lkcl 10aug97 - i tried setting the path to
+\\samba-server\homes\profile, and discovered that this fails because
+a background process maintains the connection to the [homes] share
+which does _not_ close down in between user logins.  you have to
+have \\samba-server\%L\profile, where user is the username created
+from the [homes] share].</P
+></BLOCKQUOTE
+></DIV
+><P
+>There is a parameter that is now available for use with NT Profiles:
+"logon drive".  This should be set to "h:" or any other drive, and
+should be used in conjunction with the new "logon home" parameter.</P
+><P
+>The entry for the NT 4.0 profile is a _directory_ not a file.  The NT
+help on profiles mentions that a directory is also created with a .PDS
+extension.  The user, while logging in, must have write permission to
+create the full profile path (and the folder with the .PDS extension)
+[lkcl 10aug97 - i found that the creation of the .PDS directory failed,
+and had to create these manually for each user, with a shell script.
+also, i presume, but have not tested, that the full profile path must
+be browseable just as it is for w95, due to the manner in which they
+attempt to create the full profile path: test existence of each path
+component; create path component].</P
+><P
+>In the profile directory, NT creates more folders than 95.  It creates
+"Application Data" and others, as well as "Desktop", "Nethood",
+"Start Menu" and "Programs".  The profile itself is stored in a file
+NTuser.DAT.  Nothing appears to be stored in the .PDS directory, and
+its purpose is currently unknown.</P
+><P
+>You can use the System Control Panel to copy a local profile onto
+a samba server (see NT Help on profiles: it is also capable of firing
+up the correct location in the System Control Panel for you).  The
+NT Help file also mentions that renaming NTuser.DAT to NTuser.MAN
+turns a profile into a mandatory one.</P
+><DIV
+CLASS="NOTE"
+><BLOCKQUOTE
+CLASS="NOTE"
+><P
+><B
+>Note: </B
+>[lkcl 10aug97 - i notice that NT Workstation tells me that it is
+downloading a profile from a slow link.  whether this is actually the
+case, or whether there is some configuration issue, as yet unknown,
+that makes NT Workstation _think_ that the link is a slow one is a
+matter to be resolved].</P
+><P
+>[lkcl 20aug97 - after samba digest correspondence, one user found, and
+another confirmed, that profiles cannot be loaded from a samba server
+unless "security = user" and "encrypt passwords = yes" (see the file
+ENCRYPTION.txt) or "security = server" and "password server = ip.address.
+of.yourNTserver" are used.  Either of these options will allow the NT
+workstation to access the samba server using LAN manager encrypted
+passwords, without the user intervention normally required by NT
+workstation for clear-text passwords].</P
+><P
+>[lkcl 25aug97 - more comments received about NT profiles: the case of
+the profile _matters_.  the file _must_ be called NTuser.DAT or, for
+a mandatory profile, NTuser.MAN].</P
+></BLOCKQUOTE
+></DIV
+></DIV
+><DIV
+CLASS="SECT3"
+><HR><H3
+CLASS="SECT3"
+><A
+NAME="AEN500"
+>Windows NT Server</A
+></H3
+><P
+>There is nothing to stop you specifying any path that you like for the
+location of users' profiles.  Therefore, you could specify that the
+profile be stored on a samba server, or any other SMB server, as long as
+that SMB server supports encrypted passwords.</P
+></DIV
+><DIV
+CLASS="SECT3"
+><HR><H3
+CLASS="SECT3"
+><A
+NAME="AEN503"
+>Sharing Profiles between W95 and NT Workstation 4.0</A
+></H3
+><DIV
+CLASS="WARNING"
+><P
+></P
+><TABLE
+CLASS="WARNING"
+BORDER="1"
+WIDTH="100%"
+><TR
+><TD
+ALIGN="CENTER"
+><B
+>Potentially outdated or incorrect material follows</B
+></TD
+></TR
+><TR
+><TD
+ALIGN="LEFT"
+><P
+>I think this is all bogus, but have not deleted it. (Richard Sharpe)</P
+></TD
+></TR
+></TABLE
+></DIV
+><P
+>The default logon path is \\%N\%U.  NT Workstation will attempt to create
+a directory "\\samba-server\username.PDS" if you specify the logon path
+as "\\samba-server\username" with the NT User Manager.  Therefore, you
+will need to specify (for example) "\\samba-server\username\profile".
+NT 4.0 will attempt to create "\\samba-server\username\profile.PDS", which
+is more likely to succeed.</P
+><P
+>If you then want to share the same Start Menu / Desktop with W95, you will
+need to specify "logon path = \\samba-server\username\profile" [lkcl 10aug97
+this has its drawbacks: i created a shortcut to telnet.exe, which attempts
+to run from the c:\winnt\system32 directory.  this directory is obviously
+unlikely to exist on a Win95-only host].</P
+><P
+>&#13;If you have this set up correctly, you will find separate user.DAT and
+NTuser.DAT files in the same profile directory.</P
+><DIV
+CLASS="NOTE"
+><BLOCKQUOTE
+CLASS="NOTE"
+><P
+><B
+>Note: </B
+>[lkcl 25aug97 - there are some issues to resolve with downloading of
+NT profiles, probably to do with time/date stamps.  i have found that
+NTuser.DAT is never updated on the workstation after the first time that
+it is copied to the local workstation profile directory.  this is in
+contrast to w95, where it _does_ transfer / update profiles correctly].</P
+></BLOCKQUOTE
+></DIV
+></DIV
+></DIV
+></DIV
+><DIV
+CLASS="SECT1"
+><HR><H1
+CLASS="SECT1"
+><A
+NAME="AEN513"
+>DOMAIN_CONTROL.txt : Windows NT Domain Control &#38; Samba</A
+></H1
+><DIV
+CLASS="WARNING"
+><P
+></P
+><TABLE
+CLASS="WARNING"
+BORDER="1"
+WIDTH="100%"
+><TR
+><TD
+ALIGN="CENTER"
+><B
+>Possibly Outdated Material</B
+></TD
+></TR
+><TR
+><TD
+ALIGN="LEFT"
+><P
+>	This appendix was originally authored by John H Terpstra of 
+	the Samba Team and is included here for posterity.
+	</P
+></TD
+></TR
+></TABLE
+></DIV
+><P
+><I
+CLASS="EMPHASIS"
+>NOTE :</I
+> 
+The term "Domain Controller" and those related to it refer to one specific
+method of authentication that can underly an SMB domain. Domain Controllers
+prior to Windows NT Server 3.1 were sold by various companies and based on 
+private extensions to the LAN Manager 2.1 protocol. Windows NT introduced
+Microsoft-specific ways of distributing the user authentication database.
+See DOMAIN.txt for examples of how Samba can participate in or create
+SMB domains based on shared authentication database schemes other than the 
+Windows NT SAM.</P
+><P
+>Windows NT Server can be installed as either a plain file and print server
+(WORKGROUP workstation or server) or as a server that participates in Domain
+Control (DOMAIN member, Primary Domain controller or Backup Domain controller).
+The same is true for OS/2 Warp Server, Digital Pathworks and other similar
+products, all of which can participate in Domain Control along with Windows NT.</P
+><P
+>To many people these terms can be confusing, so let's try to clear the air.</P
+><P
+>Every Windows NT system (workstation or server) has a registry database.
+The registry contains entries that describe the initialization information
+for all services (the equivalent of Unix Daemons) that run within the Windows
+NT environment. The registry also contains entries that tell application
+software where to find dynamically loadable libraries that they depend upon.
+In fact, the registry contains entries that describes everything that anything
+may need to know to interact with the rest of the system.</P
+><P
+>The registry files can be located on any Windows NT machine by opening a
+command prompt and typing:</P
+><P
+><TT
+CLASS="PROMPT"
+>C:\WINNT\&#62;</TT
+> dir %SystemRoot%\System32\config</P
+><P
+>The environment variable %SystemRoot% value can be obtained by typing:</P
+><P
+><TT
+CLASS="PROMPT"
+>C:\WINNT&#62;</TT
+>echo %SystemRoot%</P
+><P
+>The active parts of the registry that you may want to be familiar with are
+the files called: default, system, software, sam and security.</P
+><P
+>In a domain environment, Microsoft Windows NT domain controllers participate
+in replication of the SAM and SECURITY files so that all controllers within
+the domain have an exactly identical copy of each.</P
+><P
+>The Microsoft Windows NT system is structured within a security model that
+says that all applications and services must authenticate themselves before
+they can obtain permission from the security manager to do what they set out
+to do.</P
+><P
+>The Windows NT User database also resides within the registry. This part of
+the registry contains the user's security identifier, home directory, group
+memberships, desktop profile, and so on.</P
+><P
+>Every Windows NT system (workstation as well as server) will have its own
+registry. Windows NT Servers that participate in Domain Security control
+have a database that they share in common - thus they do NOT own an
+independent full registry database of their own, as do Workstations and
+plain Servers.</P
+><P
+>The User database is called the SAM (Security Access Manager) database and
+is used for all user authentication as well as for authentication of inter-
+process authentication (i.e. to ensure that the service action a user has
+requested is permitted within the limits of that user's privileges).</P
+><P
+>The Samba team have produced a utility that can dump the Windows NT SAM into 
+smbpasswd format: see ENCRYPTION.txt for information on smbpasswd and
+/pub/samba/pwdump on your nearest Samba mirror for the utility. This 
+facility is useful but cannot be easily used to implement SAM replication
+to Samba systems.</P
+><P
+>Windows for Workgroups, Windows 95, and Windows NT Workstations and Servers
+can participate in a Domain security system that is controlled by Windows NT
+servers that have been correctly configured. Almost every domain will have
+ONE Primary Domain Controller (PDC). It is desirable that each domain will
+have at least one Backup Domain Controller (BDC).</P
+><P
+>The PDC and BDCs then participate in replication of the SAM database so that
+each Domain Controlling participant will have an up to date SAM component
+within its registry.</P
+></DIV
+></DIV
+></BODY
+></HTML
+>
\ No newline at end of file
diff --git a/docs/htmldocs/browsing-quick.html b/docs/htmldocs/browsing-quick.html
index cc703d217f5..340302a1029 100644
--- a/docs/htmldocs/browsing-quick.html
+++ b/docs/htmldocs/browsing-quick.html
@@ -9,15 +9,12 @@ CONTENT="Modular DocBook HTML Stylesheet Version 1.77"><LINK
 REL="HOME"
 TITLE="SAMBA Project Documentation"
 HREF="samba-howto-collection.html"><LINK
-REL="UP"
-TITLE="General installation"
-HREF="introduction.html"><LINK
 REL="PREVIOUS"
-TITLE="Oplocks"
-HREF="oplocks.html"><LINK
+TITLE="Improved browsing in samba"
+HREF="improved-browsing.html"><LINK
 REL="NEXT"
-TITLE="LanMan and NT Password Encryption in Samba"
-HREF="pwencrypt.html"></HEAD
+TITLE="Samba performance issues"
+HREF="speed.html"></HEAD
 ><BODY
 CLASS="CHAPTER"
 BGCOLOR="#FFFFFF"
@@ -45,7 +42,7 @@ WIDTH="10%"
 ALIGN="left"
 VALIGN="bottom"
 ><A
-HREF="oplocks.html"
+HREF="improved-browsing.html"
 ACCESSKEY="P"
 >Prev</A
 ></TD
@@ -59,7 +56,7 @@ WIDTH="10%"
 ALIGN="right"
 VALIGN="bottom"
 ><A
-HREF="pwencrypt.html"
+HREF="speed.html"
 ACCESSKEY="N"
 >Next</A
 ></TD
@@ -74,7 +71,7 @@ CLASS="CHAPTER"
 ><A
 NAME="BROWSING-QUICK"
 ></A
->Chapter 4. Quick Cross Subnet Browsing / Cross Workgroup Browsing guide</H1
+>Chapter 16. Quick Cross Subnet Browsing / Cross Workgroup Browsing guide</H1
 ><P
 >This document should be read in conjunction with Browsing and may
 be taken as the fast track guide to implementing browsing across subnets
@@ -86,9 +83,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN393"
+NAME="AEN2665"
 ></A
->4.1. Discussion</H1
+>16.1. Discussion</H1
 ><P
 >Firstly, all MS Windows networking is based on SMB (Server Message
 Block) based messaging. SMB messaging is implemented using NetBIOS. Samba
@@ -132,9 +129,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN401"
+NAME="AEN2673"
 ></A
->4.2. Use of the "Remote Announce" parameter</H1
+>16.2. Use of the "Remote Announce" parameter</H1
 ><P
 >The "remote announce" parameter of smb.conf can be used to forcibly ensure
 that all the NetBIOS names on a network get announced to a remote network.
@@ -190,9 +187,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN415"
+NAME="AEN2687"
 ></A
->4.3. Use of the "Remote Browse Sync" parameter</H1
+>16.3. Use of the "Remote Browse Sync" parameter</H1
 ><P
 >The "remote browse sync" parameter of smb.conf is used to announce to
 another LMB that it must synchronise it's NetBIOS name list with our
@@ -212,9 +209,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN420"
+NAME="AEN2692"
 ></A
->4.4. Use of WINS</H1
+>16.4. Use of WINS</H1
 ><P
 >Use of WINS (either Samba WINS _or_ MS Windows NT Server WINS) is highly
 recommended. Every NetBIOS machine registers it's name together with a
@@ -274,9 +271,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN431"
+NAME="AEN2703"
 ></A
->4.5. Do NOT use more than one (1) protocol on MS Windows machines</H1
+>16.5. Do NOT use more than one (1) protocol on MS Windows machines</H1
 ><P
 >A very common cause of browsing problems results from installing more than
 one protocol on an MS Windows machine.</P
@@ -304,9 +301,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN437"
+NAME="AEN2709"
 ></A
->4.6. Name Resolution Order</H1
+>16.6. Name Resolution Order</H1
 ><P
 >Resolution of NetBIOS names to IP addresses can take place using a number
 of methods. The only ones that can provide NetBIOS name_type information
@@ -401,7 +398,7 @@ WIDTH="33%"
 ALIGN="left"
 VALIGN="top"
 ><A
-HREF="oplocks.html"
+HREF="improved-browsing.html"
 ACCESSKEY="P"
 >Prev</A
 ></TD
@@ -419,7 +416,7 @@ WIDTH="33%"
 ALIGN="right"
 VALIGN="top"
 ><A
-HREF="pwencrypt.html"
+HREF="speed.html"
 ACCESSKEY="N"
 >Next</A
 ></TD
@@ -429,21 +426,17 @@ ACCESSKEY="N"
 WIDTH="33%"
 ALIGN="left"
 VALIGN="top"
->Oplocks</TD
+>Improved browsing in samba</TD
 ><TD
 WIDTH="34%"
 ALIGN="center"
 VALIGN="top"
-><A
-HREF="introduction.html"
-ACCESSKEY="U"
->Up</A
-></TD
+>&nbsp;</TD
 ><TD
 WIDTH="33%"
 ALIGN="right"
 VALIGN="top"
->LanMan and NT Password Encryption in Samba</TD
+>Samba performance issues</TD
 ></TR
 ></TABLE
 ></DIV
diff --git a/docs/htmldocs/bugreport.html b/docs/htmldocs/bugreport.html
index 9e21f48556c..b5058f0d61e 100644
--- a/docs/htmldocs/bugreport.html
+++ b/docs/htmldocs/bugreport.html
@@ -9,15 +9,12 @@ CONTENT="Modular DocBook HTML Stylesheet Version 1.77"><LINK
 REL="HOME"
 TITLE="SAMBA Project Documentation"
 HREF="samba-howto-collection.html"><LINK
-REL="UP"
-TITLE="Appendixes"
-HREF="appendixes.html"><LINK
 REL="PREVIOUS"
-TITLE="Samba and other CIFS clients"
-HREF="other-clients.html"><LINK
+TITLE="HOWTO Access Samba source code via CVS"
+HREF="cvs-access.html"><LINK
 REL="NEXT"
-TITLE="Diagnosing your samba server"
-HREF="diagnosis.html"></HEAD
+TITLE="Group mapping HOWTO"
+HREF="groupmapping.html"></HEAD
 ><BODY
 CLASS="CHAPTER"
 BGCOLOR="#FFFFFF"
@@ -45,7 +42,7 @@ WIDTH="10%"
 ALIGN="left"
 VALIGN="bottom"
 ><A
-HREF="other-clients.html"
+HREF="cvs-access.html"
 ACCESSKEY="P"
 >Prev</A
 ></TD
@@ -59,7 +56,7 @@ WIDTH="10%"
 ALIGN="right"
 VALIGN="bottom"
 ><A
-HREF="diagnosis.html"
+HREF="groupmapping.html"
 ACCESSKEY="N"
 >Next</A
 ></TD
@@ -74,26 +71,17 @@ CLASS="CHAPTER"
 ><A
 NAME="BUGREPORT"
 ></A
->Chapter 26. Reporting Bugs</H1
+>Chapter 19. Reporting Bugs</H1
 ><DIV
 CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN3368"
+NAME="AEN2921"
 ></A
->26.1. Introduction</H1
+>19.1. Introduction</H1
 ><P
->The email address for bug reports for stable releases is <A
-HREF="samba@samba.org"
-TARGET="_top"
->samba@samba.org</A
->. 
-Bug reports for alpha releases should go to <A
-HREF="mailto:samba-technical@samba.org"
-TARGET="_top"
->samba-technical@samba.org</A
->.</P
+>The email address for bug reports is samba@samba.org</P
 ><P
 >Please take the time to read this file before you submit a bug
 report. Also, please see if it has changed between releases, as we
@@ -114,20 +102,16 @@ that list that may be able to help you.</P
 ><P
 >You may also like to look though the recent mailing list archives,
 which are conveniently accessible on the Samba web pages
-at <A
-HREF="http://samba.org/samba/"
-TARGET="_top"
->http://samba.org/samba/</A
->.</P
+at http://samba.org/samba/ </P
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN3378"
+NAME="AEN2928"
 ></A
->26.2. General info</H1
+>19.2. General info</H1
 ><P
 >Before submitting a bug report check your config for silly
 errors. Look in your log files for obvious messages that tell you that
@@ -150,9 +134,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN3384"
+NAME="AEN2934"
 ></A
->26.3. Debug levels</H1
+>19.3. Debug levels</H1
 ><P
 >If the bug has anything to do with Samba behaving incorrectly as a
 server (like refusing to open a file) then the log files will probably
@@ -220,9 +204,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN3401"
+NAME="AEN2951"
 ></A
->26.4. Internal errors</H1
+>19.4. Internal errors</H1
 ><P
 >If you get a "INTERNAL ERROR" message in your log files it means that
 Samba got an unexpected signal while running. It is probably a
@@ -264,9 +248,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN3411"
+NAME="AEN2961"
 ></A
->26.5. Attaching to a running process</H1
+>19.5. Attaching to a running process</H1
 ><P
 >Unfortunately some unixes (in particular some recent linux kernels)
 refuse to dump a core file if the task has changed uid (which smbd
@@ -281,9 +265,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN3414"
+NAME="AEN2964"
 ></A
->26.6. Patches</H1
+>19.6. Patches</H1
 ><P
 >The best sort of bug report is one that includes a fix! If you send us
 patches please use <B
@@ -314,7 +298,7 @@ WIDTH="33%"
 ALIGN="left"
 VALIGN="top"
 ><A
-HREF="other-clients.html"
+HREF="cvs-access.html"
 ACCESSKEY="P"
 >Prev</A
 ></TD
@@ -332,7 +316,7 @@ WIDTH="33%"
 ALIGN="right"
 VALIGN="top"
 ><A
-HREF="diagnosis.html"
+HREF="groupmapping.html"
 ACCESSKEY="N"
 >Next</A
 ></TD
@@ -342,21 +326,17 @@ ACCESSKEY="N"
 WIDTH="33%"
 ALIGN="left"
 VALIGN="top"
->Samba and other CIFS clients</TD
+>HOWTO Access Samba source code via CVS</TD
 ><TD
 WIDTH="34%"
 ALIGN="center"
 VALIGN="top"
-><A
-HREF="appendixes.html"
-ACCESSKEY="U"
->Up</A
-></TD
+>&nbsp;</TD
 ><TD
 WIDTH="33%"
 ALIGN="right"
 VALIGN="top"
->Diagnosing your samba server</TD
+>Group mapping HOWTO</TD
 ></TR
 ></TABLE
 ></DIV
diff --git a/docs/htmldocs/cvs-access.html b/docs/htmldocs/cvs-access.html
index fe82189ebae..fba42db7b4f 100644
--- a/docs/htmldocs/cvs-access.html
+++ b/docs/htmldocs/cvs-access.html
@@ -9,15 +9,12 @@ CONTENT="Modular DocBook HTML Stylesheet Version 1.77"><LINK
 REL="HOME"
 TITLE="SAMBA Project Documentation"
 HREF="samba-howto-collection.html"><LINK
-REL="UP"
-TITLE="Optional configuration"
-HREF="optional.html"><LINK
 REL="PREVIOUS"
-TITLE="Storing Samba's User/Machine Account information in an LDAP Directory"
-HREF="samba-ldap-howto.html"><LINK
+TITLE="Samba performance issues"
+HREF="speed.html"><LINK
 REL="NEXT"
-TITLE="Group mapping HOWTO"
-HREF="groupmapping.html"></HEAD
+TITLE="Reporting Bugs"
+HREF="bugreport.html"></HEAD
 ><BODY
 CLASS="CHAPTER"
 BGCOLOR="#FFFFFF"
@@ -45,7 +42,7 @@ WIDTH="10%"
 ALIGN="left"
 VALIGN="bottom"
 ><A
-HREF="samba-ldap-howto.html"
+HREF="speed.html"
 ACCESSKEY="P"
 >Prev</A
 ></TD
@@ -59,7 +56,7 @@ WIDTH="10%"
 ALIGN="right"
 VALIGN="bottom"
 ><A
-HREF="groupmapping.html"
+HREF="bugreport.html"
 ACCESSKEY="N"
 >Next</A
 ></TD
@@ -74,15 +71,15 @@ CLASS="CHAPTER"
 ><A
 NAME="CVS-ACCESS"
 ></A
->Chapter 21. HOWTO Access Samba source code via CVS</H1
+>Chapter 18. HOWTO Access Samba source code via CVS</H1
 ><DIV
 CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN2974"
+NAME="AEN2873"
 ></A
->21.1. Introduction</H1
+>18.1. Introduction</H1
 ><P
 >Samba is developed in an open environment.  Developers use CVS
 (Concurrent Versioning System) to "checkin" (also known as 
@@ -102,9 +99,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN2979"
+NAME="AEN2878"
 ></A
->21.2. CVS Access to samba.org</H1
+>18.2. CVS Access to samba.org</H1
 ><P
 >The machine samba.org runs a publicly accessible CVS 
 repository for access to the source code of several packages, 
@@ -115,9 +112,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN2982"
+NAME="AEN2881"
 ></A
->21.2.1. Access via CVSweb</H2
+>18.2.1. Access via CVSweb</H2
 ><P
 >You can access the source code via your 
 favourite WWW browser. This allows you to access the contents of 
@@ -136,9 +133,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN2987"
+NAME="AEN2886"
 ></A
->21.2.2. Access via cvs</H2
+>18.2.2. Access via cvs</H2
 ><P
 >You can also access the source code via a 
 normal cvs client.  This gives you much more control over you can 
@@ -256,7 +253,7 @@ WIDTH="33%"
 ALIGN="left"
 VALIGN="top"
 ><A
-HREF="samba-ldap-howto.html"
+HREF="speed.html"
 ACCESSKEY="P"
 >Prev</A
 ></TD
@@ -274,7 +271,7 @@ WIDTH="33%"
 ALIGN="right"
 VALIGN="top"
 ><A
-HREF="groupmapping.html"
+HREF="bugreport.html"
 ACCESSKEY="N"
 >Next</A
 ></TD
@@ -284,21 +281,17 @@ ACCESSKEY="N"
 WIDTH="33%"
 ALIGN="left"
 VALIGN="top"
->Storing Samba's User/Machine Account information in an LDAP Directory</TD
+>Samba performance issues</TD
 ><TD
 WIDTH="34%"
 ALIGN="center"
 VALIGN="top"
-><A
-HREF="optional.html"
-ACCESSKEY="U"
->Up</A
-></TD
+>&nbsp;</TD
 ><TD
 WIDTH="33%"
 ALIGN="right"
 VALIGN="top"
->Group mapping HOWTO</TD
+>Reporting Bugs</TD
 ></TR
 ></TABLE
 ></DIV
diff --git a/docs/htmldocs/diagnosis.html b/docs/htmldocs/diagnosis.html
index eaa550dc30a..5ddf6b7a499 100644
--- a/docs/htmldocs/diagnosis.html
+++ b/docs/htmldocs/diagnosis.html
@@ -9,12 +9,9 @@ CONTENT="Modular DocBook HTML Stylesheet Version 1.77"><LINK
 REL="HOME"
 TITLE="SAMBA Project Documentation"
 HREF="samba-howto-collection.html"><LINK
-REL="UP"
-TITLE="Appendixes"
-HREF="appendixes.html"><LINK
 REL="PREVIOUS"
-TITLE="Reporting Bugs"
-HREF="bugreport.html"></HEAD
+TITLE="Samba and other CIFS clients"
+HREF="other-clients.html"></HEAD
 ><BODY
 CLASS="CHAPTER"
 BGCOLOR="#FFFFFF"
@@ -42,7 +39,7 @@ WIDTH="10%"
 ALIGN="left"
 VALIGN="bottom"
 ><A
-HREF="bugreport.html"
+HREF="other-clients.html"
 ACCESSKEY="P"
 >Prev</A
 ></TD
@@ -67,44 +64,47 @@ CLASS="CHAPTER"
 ><A
 NAME="DIAGNOSIS"
 ></A
->Chapter 27. Diagnosing your samba server</H1
+>Chapter 23. Diagnosing your samba server</H1
 ><DIV
 CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN3437"
+NAME="AEN3184"
 ></A
->27.1. Introduction</H1
+>23.1. Introduction</H1
 ><P
 >This file contains a list of tests you can perform to validate your
 Samba server. It also tells you what the likely cause of the problem
 is if it fails any one of these steps. If it passes all these tests
 then it is probably working fine.</P
 ><P
->You should do ALL the tests, in the order shown. We have tried to
+>You should do ALL the tests, in the order shown. I have tried to
 carefully choose them so later tests only use capabilities verified in
 the earlier tests.</P
 ><P
->If you send one of the samba mailing lists  an email saying "it doesn't work"
-and you have not followed this test procedure then you should not be surprised
-your email is ignored.</P
+>If you send me an email saying "it doesn't work" and you have not
+followed this test procedure then you should not be surprised if I
+ignore your email.</P
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN3442"
+NAME="AEN3189"
 ></A
->27.2. Assumptions</H1
+>23.2. Assumptions</H1
 ><P
->In all of the tests it is assumed you have a Samba server called 
-BIGSERVER and a PC called ACLIENT both in workgroup TESTGROUP.</P
+>In all of the tests I assume you have a Samba server called BIGSERVER
+and a PC called ACLIENT both in workgroup TESTGROUP. I also assume the
+PC is running windows for workgroups with a recent copy of the
+microsoft tcp/ip stack. Alternatively, your PC may be running Windows
+95 or Windows NT (Workstation or Server).</P
 ><P
 >The procedure is similar for other types of clients.</P
 ><P
->It is also assumed you know the name of an available share in your
+>I also assume you know the name of an available share in your
 smb.conf. I will assume this share is called "tmp". You can add a
 "tmp" share like by adding the following to smb.conf:</P
 ><P
@@ -116,7 +116,7 @@ CLASS="PROGRAMLISTING"
  read only = yes&#13;</PRE
 ></P
 ><P
->THESE TESTS ASSUME VERSION 3.0.0 OR LATER OF THE SAMBA SUITE. SOME
+>THESE TESTS ASSUME VERSION 2.0.6 OR LATER OF THE SAMBA SUITE. SOME
 COMMANDS SHOWN DID NOT EXIST IN EARLIER VERSIONS</P
 ><P
 >Please pay attention to the error messages you receive. If any error message
@@ -133,17 +133,17 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN3452"
+NAME="AEN3199"
 ></A
->27.3. Tests</H1
+>23.3. Tests</H1
 ><DIV
 CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN3454"
+NAME="AEN3201"
 ></A
->27.3.1. Test 1</H2
+>23.3.1. Test 1</H2
 ><P
 >In the directory in which you store your smb.conf file, run the command
 "testparm smb.conf". If it reports any errors then your smb.conf
@@ -151,7 +151,7 @@ configuration file is faulty.</P
 ><P
 >Note:	Your smb.conf file may be located in: <TT
 CLASS="FILENAME"
->/etc/samba</TT
+>/etc</TT
 >
 	Or in:   <TT
 CLASS="FILENAME"
@@ -163,9 +163,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN3460"
+NAME="AEN3207"
 ></A
->27.3.2. Test 2</H2
+>23.3.2. Test 2</H2
 ><P
 >Run the command "ping BIGSERVER" from the PC and "ping ACLIENT" from
 the unix box. If you don't get a valid response then your TCP/IP
@@ -189,9 +189,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN3466"
+NAME="AEN3213"
 ></A
->27.3.3. Test 3</H2
+>23.3.3. Test 3</H2
 ><P
 >Run the command "smbclient -L BIGSERVER" on the unix box. You
 should get a list of available shares back. </P
@@ -260,9 +260,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN3481"
+NAME="AEN3228"
 ></A
->27.3.4. Test 4</H2
+>23.3.4. Test 4</H2
 ><P
 >Run the command "nmblookup -B BIGSERVER __SAMBA__". You should get the
 IP address of your Samba server back.</P
@@ -281,9 +281,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN3486"
+NAME="AEN3233"
 ></A
->27.3.5. Test 5</H2
+>23.3.5. Test 5</H2
 ><P
 >run the command <B
 CLASS="COMMAND"
@@ -302,9 +302,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN3492"
+NAME="AEN3239"
 ></A
->27.3.6. Test 6</H2
+>23.3.6. Test 6</H2
 ><P
 >Run the command <B
 CLASS="COMMAND"
@@ -336,9 +336,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN3500"
+NAME="AEN3247"
 ></A
->27.3.7. Test 7</H2
+>23.3.7. Test 7</H2
 ><P
 >Run the command <B
 CLASS="COMMAND"
@@ -425,9 +425,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN3526"
+NAME="AEN3273"
 ></A
->27.3.8. Test 8</H2
+>23.3.8. Test 8</H2
 ><P
 >On the PC type the command <B
 CLASS="COMMAND"
@@ -485,9 +485,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN3543"
+NAME="AEN3290"
 ></A
->27.3.9. Test 9</H2
+>23.3.9. Test 9</H2
 ><P
 >Run the command <B
 CLASS="COMMAND"
@@ -519,9 +519,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN3551"
+NAME="AEN3298"
 ></A
->27.3.10. Test 10</H2
+>23.3.10. Test 10</H2
 ><P
 >Run the command <B
 CLASS="COMMAND"
@@ -545,9 +545,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN3557"
+NAME="AEN3304"
 ></A
->27.3.11. Test 11</H2
+>23.3.11. Test 11</H2
 ><P
 >From file manager try to browse the server. Your samba server should
 appear in the browse list of your local workgroup (or the one you
@@ -573,9 +573,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN3562"
+NAME="AEN3309"
 ></A
->27.4. Still having troubles?</H1
+>23.4. Still having troubles?</H1
 ><P
 >Try the mailing list or newsgroup, or use the ethereal utility to
 sniff the problem. The official samba mailing list can be reached at
@@ -611,7 +611,7 @@ WIDTH="33%"
 ALIGN="left"
 VALIGN="top"
 ><A
-HREF="bugreport.html"
+HREF="other-clients.html"
 ACCESSKEY="P"
 >Prev</A
 ></TD
@@ -635,16 +635,12 @@ VALIGN="top"
 WIDTH="33%"
 ALIGN="left"
 VALIGN="top"
->Reporting Bugs</TD
+>Samba and other CIFS clients</TD
 ><TD
 WIDTH="34%"
 ALIGN="center"
 VALIGN="top"
-><A
-HREF="appendixes.html"
-ACCESSKEY="U"
->Up</A
-></TD
+>&nbsp;</TD
 ><TD
 WIDTH="33%"
 ALIGN="right"
diff --git a/docs/htmldocs/domain-security.html b/docs/htmldocs/domain-security.html
index 1a10767235c..82735257100 100644
--- a/docs/htmldocs/domain-security.html
+++ b/docs/htmldocs/domain-security.html
@@ -2,22 +2,19 @@
 <HTML
 ><HEAD
 ><TITLE
->Samba as a NT4 domain member</TITLE
+>security = domain in Samba 2.x</TITLE
 ><META
 NAME="GENERATOR"
 CONTENT="Modular DocBook HTML Stylesheet Version 1.77"><LINK
 REL="HOME"
 TITLE="SAMBA Project Documentation"
 HREF="samba-howto-collection.html"><LINK
-REL="UP"
-TITLE="Type of installation"
-HREF="type.html"><LINK
 REL="PREVIOUS"
-TITLE="Samba as a ADS domain member"
-HREF="ads.html"><LINK
+TITLE="Security levels"
+HREF="securitylevels.html"><LINK
 REL="NEXT"
-TITLE="Optional configuration"
-HREF="optional.html"></HEAD
+TITLE="Unified Logons between Windows NT and UNIX using Winbind"
+HREF="winbind.html"></HEAD
 ><BODY
 CLASS="CHAPTER"
 BGCOLOR="#FFFFFF"
@@ -45,7 +42,7 @@ WIDTH="10%"
 ALIGN="left"
 VALIGN="bottom"
 ><A
-HREF="ads.html"
+HREF="securitylevels.html"
 ACCESSKEY="P"
 >Prev</A
 ></TD
@@ -59,7 +56,7 @@ WIDTH="10%"
 ALIGN="right"
 VALIGN="bottom"
 ><A
-HREF="optional.html"
+HREF="winbind.html"
 ACCESSKEY="N"
 >Next</A
 ></TD
@@ -74,15 +71,15 @@ CLASS="CHAPTER"
 ><A
 NAME="DOMAIN-SECURITY"
 ></A
->Chapter 10. Samba as a NT4 domain member</H1
+>Chapter 9. security = domain in Samba 2.x</H1
 ><DIV
 CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN1286"
+NAME="AEN1133"
 ></A
->10.1. Joining an NT Domain with Samba 2.2</H1
+>9.1. Joining an NT Domain with Samba 2.2</H1
 ><P
 >Assume you have a Samba 2.x server with a NetBIOS name of 
 	<TT
@@ -311,12 +308,12 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN1350"
+NAME="AEN1197"
 ></A
->10.2. Samba and Windows 2000 Domains</H1
+>9.2. Samba and Windows 2000 Domains</H1
 ><P
 >Many people have asked regarding the state of Samba's ability to participate in
-a Windows 2000 Domain.  Samba 3.0 is able to act as a member server of a Windows
+a Windows 2000 Domain.  Samba 2.2 is able to act as a member server of a Windows
 2000 domain operating in mixed or native mode.</P
 ><P
 >There is much confusion between the circumstances that require a "mixed" mode
@@ -336,9 +333,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN1355"
+NAME="AEN1202"
 ></A
->10.3. Why is this better than security = server?</H1
+>9.3. Why is this better than security = server?</H1
 ><P
 >Currently, domain security in Samba doesn't free you from 
 	having to create local Unix users to represent the users attaching 
@@ -438,7 +435,7 @@ WIDTH="33%"
 ALIGN="left"
 VALIGN="top"
 ><A
-HREF="ads.html"
+HREF="securitylevels.html"
 ACCESSKEY="P"
 >Prev</A
 ></TD
@@ -456,7 +453,7 @@ WIDTH="33%"
 ALIGN="right"
 VALIGN="top"
 ><A
-HREF="optional.html"
+HREF="winbind.html"
 ACCESSKEY="N"
 >Next</A
 ></TD
@@ -466,21 +463,17 @@ ACCESSKEY="N"
 WIDTH="33%"
 ALIGN="left"
 VALIGN="top"
->Samba as a ADS domain member</TD
+>Security levels</TD
 ><TD
 WIDTH="34%"
 ALIGN="center"
 VALIGN="top"
-><A
-HREF="type.html"
-ACCESSKEY="U"
->Up</A
-></TD
+>&nbsp;</TD
 ><TD
 WIDTH="33%"
 ALIGN="right"
 VALIGN="top"
->Optional configuration</TD
+>Unified Logons between Windows NT and UNIX using Winbind</TD
 ></TR
 ></TABLE
 ></DIV
diff --git a/docs/htmldocs/findsmb.1.html b/docs/htmldocs/findsmb.1.html
index 618363c1042..08fffb47b69 100644
--- a/docs/htmldocs/findsmb.1.html
+++ b/docs/htmldocs/findsmb.1.html
@@ -193,7 +193,7 @@ NAME="AEN48"
 ><H2
 >VERSION</H2
 ><P
->This man page is correct for version 3.0 of 
+>This man page is correct for version 2.2 of 
 	the Samba suite.</P
 ></DIV
 ><DIV
diff --git a/docs/htmldocs/groupmapping.html b/docs/htmldocs/groupmapping.html
index c23a2094be2..6ad9a3ad635 100644
--- a/docs/htmldocs/groupmapping.html
+++ b/docs/htmldocs/groupmapping.html
@@ -9,15 +9,12 @@ CONTENT="Modular DocBook HTML Stylesheet Version 1.77"><LINK
 REL="HOME"
 TITLE="SAMBA Project Documentation"
 HREF="samba-howto-collection.html"><LINK
-REL="UP"
-TITLE="Optional configuration"
-HREF="optional.html"><LINK
 REL="PREVIOUS"
-TITLE="HOWTO Access Samba source code via CVS"
-HREF="cvs-access.html"><LINK
+TITLE="Reporting Bugs"
+HREF="bugreport.html"><LINK
 REL="NEXT"
-TITLE="Samba performance issues"
-HREF="speed.html"></HEAD
+TITLE="Portability"
+HREF="portability.html"></HEAD
 ><BODY
 CLASS="CHAPTER"
 BGCOLOR="#FFFFFF"
@@ -45,7 +42,7 @@ WIDTH="10%"
 ALIGN="left"
 VALIGN="bottom"
 ><A
-HREF="cvs-access.html"
+HREF="bugreport.html"
 ACCESSKEY="P"
 >Prev</A
 ></TD
@@ -59,7 +56,7 @@ WIDTH="10%"
 ALIGN="right"
 VALIGN="bottom"
 ><A
-HREF="speed.html"
+HREF="portability.html"
 ACCESSKEY="N"
 >Next</A
 ></TD
@@ -74,7 +71,7 @@ CLASS="CHAPTER"
 ><A
 NAME="GROUPMAPPING"
 ></A
->Chapter 22. Group mapping HOWTO</H1
+>Chapter 20. Group mapping HOWTO</H1
 ><P
 > 
 Starting with Samba 3.0 alpha 2, a new group mapping function is available. The
@@ -185,7 +182,7 @@ WIDTH="33%"
 ALIGN="left"
 VALIGN="top"
 ><A
-HREF="cvs-access.html"
+HREF="bugreport.html"
 ACCESSKEY="P"
 >Prev</A
 ></TD
@@ -203,7 +200,7 @@ WIDTH="33%"
 ALIGN="right"
 VALIGN="top"
 ><A
-HREF="speed.html"
+HREF="portability.html"
 ACCESSKEY="N"
 >Next</A
 ></TD
@@ -213,21 +210,17 @@ ACCESSKEY="N"
 WIDTH="33%"
 ALIGN="left"
 VALIGN="top"
->HOWTO Access Samba source code via CVS</TD
+>Reporting Bugs</TD
 ><TD
 WIDTH="34%"
 ALIGN="center"
 VALIGN="top"
-><A
-HREF="optional.html"
-ACCESSKEY="U"
->Up</A
-></TD
+>&nbsp;</TD
 ><TD
 WIDTH="33%"
 ALIGN="right"
 VALIGN="top"
->Samba performance issues</TD
+>Portability</TD
 ></TR
 ></TABLE
 ></DIV
diff --git a/docs/htmldocs/improved-browsing.html b/docs/htmldocs/improved-browsing.html
index 7609ce69cd6..3fad127ef07 100644
--- a/docs/htmldocs/improved-browsing.html
+++ b/docs/htmldocs/improved-browsing.html
@@ -9,15 +9,12 @@ CONTENT="Modular DocBook HTML Stylesheet Version 1.77"><LINK
 REL="HOME"
 TITLE="SAMBA Project Documentation"
 HREF="samba-howto-collection.html"><LINK
-REL="UP"
-TITLE="General installation"
-HREF="introduction.html"><LINK
 REL="PREVIOUS"
-TITLE="How to Install and Test SAMBA"
-HREF="install.html"><LINK
+TITLE="Using samba 3.0 with ActiveDirectory support"
+HREF="ads.html"><LINK
 REL="NEXT"
-TITLE="Oplocks"
-HREF="oplocks.html"></HEAD
+TITLE="Quick Cross Subnet Browsing / Cross Workgroup Browsing guide"
+HREF="browsing-quick.html"></HEAD
 ><BODY
 CLASS="CHAPTER"
 BGCOLOR="#FFFFFF"
@@ -45,7 +42,7 @@ WIDTH="10%"
 ALIGN="left"
 VALIGN="bottom"
 ><A
-HREF="install.html"
+HREF="ads.html"
 ACCESSKEY="P"
 >Prev</A
 ></TD
@@ -59,7 +56,7 @@ WIDTH="10%"
 ALIGN="right"
 VALIGN="bottom"
 ><A
-HREF="oplocks.html"
+HREF="browsing-quick.html"
 ACCESSKEY="N"
 >Next</A
 ></TD
@@ -74,15 +71,15 @@ CLASS="CHAPTER"
 ><A
 NAME="IMPROVED-BROWSING"
 ></A
->Chapter 2. Improved browsing in samba</H1
+>Chapter 15. Improved browsing in samba</H1
 ><DIV
 CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN229"
+NAME="AEN2517"
 ></A
->2.1. Overview of browsing</H1
+>15.1. Overview of browsing</H1
 ><P
 >SMB networking provides a mechanism by which clients can access a list
 of machines in a network, a so-called "browse list".  This list
@@ -104,9 +101,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN233"
+NAME="AEN2521"
 ></A
->2.2. Browsing support in samba</H1
+>15.2. Browsing support in samba</H1
 ><P
 >Samba now fully supports browsing.  The browsing is supported by nmbd
 and is also controlled by options in the smb.conf file (see smb.conf(5)).</P
@@ -149,9 +146,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN242"
+NAME="AEN2530"
 ></A
->2.3. Problem resolution</H1
+>15.3. Problem resolution</H1
 ><P
 >If something doesn't work then hopefully the log.nmb file will help
 you track down the problem.  Try a debug level of 2 or 3 for finding
@@ -183,9 +180,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN249"
+NAME="AEN2537"
 ></A
->2.4. Browsing across subnets</H1
+>15.4. Browsing across subnets</H1
 ><P
 >With the release of Samba 1.9.17(alpha1 and above) Samba has been
 updated to enable it to support the replication of browse lists
@@ -214,9 +211,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN254"
+NAME="AEN2542"
 ></A
->2.4.1. How does cross subnet browsing work ?</H2
+>15.4.1. How does cross subnet browsing work ?</H2
 ><P
 >Cross subnet browsing is a complicated dance, containing multiple
 moving parts.  It has taken Microsoft several years to get the code
@@ -426,9 +423,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN289"
+NAME="AEN2577"
 ></A
->2.5. Setting up a WINS server</H1
+>15.5. Setting up a WINS server</H1
 ><P
 >Either a Samba machine or a Windows NT Server machine may be set up
 as a WINS server.  To set a Samba machine to be a WINS server you must
@@ -480,7 +477,7 @@ all smb.conf files :</P
 ><P
 ><B
 CLASS="COMMAND"
->wins server = &gt;name or IP address&lt;</B
+>		wins server = &gt;name or IP address&lt;</B
 ></P
 ><P
 >where &gt;name or IP address&lt; is either the DNS name of the WINS server
@@ -509,9 +506,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN308"
+NAME="AEN2596"
 ></A
->2.6. Setting up Browsing in a WORKGROUP</H1
+>15.6. Setting up Browsing in a WORKGROUP</H1
 ><P
 >To set up cross subnet browsing on a network containing machines
 in up to be in a WORKGROUP, not an NT Domain you need to set up one
@@ -532,7 +529,7 @@ set the following option in the [global] section of the smb.conf file :</P
 ><P
 ><B
 CLASS="COMMAND"
->domain master = yes</B
+>		domain master = yes</B
 ></P
 ><P
 >The domain master browser should also preferrably be the local master
@@ -593,9 +590,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN326"
+NAME="AEN2614"
 ></A
->2.7. Setting up Browsing in a DOMAIN</H1
+>15.7. Setting up Browsing in a DOMAIN</H1
 ><P
 >If you are adding Samba servers to a Windows NT Domain then
 you must not set up a Samba server as a domain master browser.
@@ -644,9 +641,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN336"
+NAME="AEN2624"
 ></A
->2.8. Forcing samba to be the master</H1
+>15.8. Forcing samba to be the master</H1
 ><P
 >Who becomes the "master browser" is determined by an election process
 using broadcasts.  Each election packet contains a number of parameters
@@ -692,9 +689,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN345"
+NAME="AEN2633"
 ></A
->2.9. Making samba the domain master</H1
+>15.9. Making samba the domain master</H1
 ><P
 >The domain master is responsible for collating the browse lists of
 multiple subnets so that browsing can occur between subnets.  You can
@@ -765,9 +762,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN363"
+NAME="AEN2651"
 ></A
->2.10. Note about broadcast addresses</H1
+>15.10. Note about broadcast addresses</H1
 ><P
 >If your network uses a "0" based broadcast address (for example if it
 ends in a 0) then you will strike problems.  Windows for Workgroups
@@ -779,9 +776,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN366"
+NAME="AEN2654"
 ></A
->2.11. Multiple interfaces</H1
+>15.11. Multiple interfaces</H1
 ><P
 >Samba now supports machines with multiple network interfaces.  If you
 have multiple interfaces then you will need to use the "interfaces"
@@ -804,7 +801,7 @@ WIDTH="33%"
 ALIGN="left"
 VALIGN="top"
 ><A
-HREF="install.html"
+HREF="ads.html"
 ACCESSKEY="P"
 >Prev</A
 ></TD
@@ -822,7 +819,7 @@ WIDTH="33%"
 ALIGN="right"
 VALIGN="top"
 ><A
-HREF="oplocks.html"
+HREF="browsing-quick.html"
 ACCESSKEY="N"
 >Next</A
 ></TD
@@ -832,21 +829,17 @@ ACCESSKEY="N"
 WIDTH="33%"
 ALIGN="left"
 VALIGN="top"
->How to Install and Test SAMBA</TD
+>Using samba 3.0 with ActiveDirectory support</TD
 ><TD
 WIDTH="34%"
 ALIGN="center"
 VALIGN="top"
-><A
-HREF="introduction.html"
-ACCESSKEY="U"
->Up</A
-></TD
+>&nbsp;</TD
 ><TD
 WIDTH="33%"
 ALIGN="right"
 VALIGN="top"
->Oplocks</TD
+>Quick Cross Subnet Browsing / Cross Workgroup Browsing guide</TD
 ></TR
 ></TABLE
 ></DIV
diff --git a/docs/htmldocs/install.html b/docs/htmldocs/install.html
index 22cd3f32c5f..f78a6f85bd4 100644
--- a/docs/htmldocs/install.html
+++ b/docs/htmldocs/install.html
@@ -9,15 +9,12 @@ CONTENT="Modular DocBook HTML Stylesheet Version 1.77"><LINK
 REL="HOME"
 TITLE="SAMBA Project Documentation"
 HREF="samba-howto-collection.html"><LINK
-REL="UP"
-TITLE="General installation"
-HREF="introduction.html"><LINK
 REL="PREVIOUS"
-TITLE="General installation"
-HREF="introduction.html"><LINK
+TITLE="SAMBA Project Documentation"
+HREF="samba-howto-collection.html"><LINK
 REL="NEXT"
-TITLE="Improved browsing in samba"
-HREF="improved-browsing.html"></HEAD
+TITLE="Integrating MS Windows networks with Samba"
+HREF="integrate-ms-networks.html"></HEAD
 ><BODY
 CLASS="CHAPTER"
 BGCOLOR="#FFFFFF"
@@ -45,7 +42,7 @@ WIDTH="10%"
 ALIGN="left"
 VALIGN="bottom"
 ><A
-HREF="introduction.html"
+HREF="samba-howto-collection.html"
 ACCESSKEY="P"
 >Prev</A
 ></TD
@@ -59,7 +56,7 @@ WIDTH="10%"
 ALIGN="right"
 VALIGN="bottom"
 ><A
-HREF="improved-browsing.html"
+HREF="integrate-ms-networks.html"
 ACCESSKEY="N"
 >Next</A
 ></TD
@@ -80,9 +77,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN26"
+NAME="AEN20"
 ></A
->1.1. Read the man pages</H1
+>1.1. Step 0: Read the man pages</H1
 ><P
 >The man pages distributed with SAMBA contain 
 	lots of useful info that will help to get you started. 
@@ -95,20 +92,10 @@ CLASS="PROMPT"
 ><TT
 CLASS="USERINPUT"
 ><B
->man smbd.8</B
-></TT
->
-	or 
-	<TT
-CLASS="PROMPT"
->$ </TT
-><TT
-CLASS="USERINPUT"
-><B
 >nroff -man smbd.8 | more
 	</B
 ></TT
-> on older unixes.</P
+></P
 ><P
 >Other sources of information are pointed to 
 	by the Samba web site,<A
@@ -122,9 +109,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN36"
+NAME="AEN28"
 ></A
->1.2. Building the Binaries</H1
+>1.2. Step 1: Building the Binaries</H1
 ><P
 >To do this, first run the program <B
 CLASS="COMMAND"
@@ -221,9 +208,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN64"
+NAME="AEN56"
 ></A
->1.3. The all important step</H1
+>1.3. Step 2: The all important step</H1
 ><P
 >At this stage you must fetch yourself a 
 	coffee or other drink you find stimulating. Getting the rest 
@@ -238,9 +225,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN68"
+NAME="AEN60"
 ></A
->1.4. Create the smb configuration file.</H1
+>1.4. Step 3: Create the smb configuration file.</H1
 ><P
 >There are sample configuration files in the examples 
 	subdirectory in the distribution. I suggest you read them 
@@ -294,9 +281,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN82"
+NAME="AEN74"
 ></A
->1.5. Test your config file with 
+>1.5. Step 4: Test your config file with 
 	<B
 CLASS="COMMAND"
 >testparm</B
@@ -312,21 +299,15 @@ CLASS="FILENAME"
 ><P
 >Make sure it runs OK and that the services look 
 	reasonable before proceeding. </P
-><P
->Always run testparm again when you change 
-	<TT
-CLASS="FILENAME"
->smb.conf</TT
->!</P
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN90"
+NAME="AEN80"
 ></A
->1.6. Starting the smbd and nmbd</H1
+>1.6. Step 5: Starting the smbd and nmbd</H1
 ><P
 >You must choose to start smbd and nmbd either
 	as daemons or from <B
@@ -364,9 +345,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN100"
+NAME="AEN90"
 ></A
->1.6.1. Starting from inetd.conf</H2
+>1.6.1. Step 5a: Starting from inetd.conf</H2
 ><P
 >NOTE; The following will be different if 
 		you use NIS or NIS+ to distributed services maps.</P
@@ -468,9 +449,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN129"
+NAME="AEN119"
 ></A
->1.6.2. Alternative: starting it as a daemon</H2
+>1.6.2. Step 5b. Alternative: starting it as a daemon</H2
 ><P
 >To start the server as a daemon you should create 
 		a script something like this one, perhaps calling 
@@ -525,9 +506,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN145"
+NAME="AEN135"
 ></A
->1.7. Try listing the shares available on your 
+>1.7. Step 6: Try listing the shares available on your 
 	server</H1
 ><P
 ><TT
@@ -566,9 +547,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN154"
+NAME="AEN144"
 ></A
->1.8. Try connecting with the unix client</H1
+>1.8. Step 7: Try connecting with the unix client</H1
 ><P
 ><TT
 CLASS="PROMPT"
@@ -629,9 +610,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN170"
+NAME="AEN160"
 ></A
->1.9. Try connecting from a DOS, WfWg, Win9x, WinNT, 
+>1.9. Step 8: Try connecting from a DOS, WfWg, Win9x, WinNT, 
 	Win2k, OS/2, etc... client</H1
 ><P
 >Try mounting disks. eg:</P
@@ -678,7 +659,7 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN184"
+NAME="AEN174"
 ></A
 >1.10. What If Things Don't Work?</H1
 ><P
@@ -701,16 +682,15 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN189"
+NAME="AEN179"
 ></A
 >1.10.1. Diagnosing Problems</H2
 ><P
->If you have installation problems then go to the
-		<A
-HREF="Diagnosis.html"
-TARGET="_top"
->Diagnosis</A
-> chapter to try to find the 
+>If you have installation problems then go to 
+		<TT
+CLASS="FILENAME"
+>DIAGNOSIS.txt</TT
+> to try to find the 
 		problem.</P
 ></DIV
 ><DIV
@@ -718,7 +698,7 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN193"
+NAME="AEN183"
 ></A
 >1.10.2. Scope IDs</H2
 ><P
@@ -734,7 +714,7 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN196"
+NAME="AEN186"
 ></A
 >1.10.3. Choosing the Protocol Level</H2
 ><P
@@ -775,7 +755,7 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN205"
+NAME="AEN195"
 ></A
 >1.10.4. Printing from UNIX to a Client PC</H2
 ><P
@@ -796,7 +776,7 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN210"
+NAME="AEN200"
 ></A
 >1.10.5. Locking</H2
 ><P
@@ -856,7 +836,7 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN219"
+NAME="AEN209"
 ></A
 >1.10.6. Mapping Usernames</H2
 ><P
@@ -882,7 +862,7 @@ WIDTH="33%"
 ALIGN="left"
 VALIGN="top"
 ><A
-HREF="introduction.html"
+HREF="samba-howto-collection.html"
 ACCESSKEY="P"
 >Prev</A
 ></TD
@@ -900,7 +880,7 @@ WIDTH="33%"
 ALIGN="right"
 VALIGN="top"
 ><A
-HREF="improved-browsing.html"
+HREF="integrate-ms-networks.html"
 ACCESSKEY="N"
 >Next</A
 ></TD
@@ -910,21 +890,17 @@ ACCESSKEY="N"
 WIDTH="33%"
 ALIGN="left"
 VALIGN="top"
->General installation</TD
+>SAMBA Project Documentation</TD
 ><TD
 WIDTH="34%"
 ALIGN="center"
 VALIGN="top"
-><A
-HREF="introduction.html"
-ACCESSKEY="U"
->Up</A
-></TD
+>&nbsp;</TD
 ><TD
 WIDTH="33%"
 ALIGN="right"
 VALIGN="top"
->Improved browsing in samba</TD
+>Integrating MS Windows networks with Samba</TD
 ></TR
 ></TABLE
 ></DIV
diff --git a/docs/htmldocs/integrate-ms-networks.html b/docs/htmldocs/integrate-ms-networks.html
index a3b51283d0d..2412da9c4ab 100644
--- a/docs/htmldocs/integrate-ms-networks.html
+++ b/docs/htmldocs/integrate-ms-networks.html
@@ -9,15 +9,13 @@ CONTENT="Modular DocBook HTML Stylesheet Version 1.77"><LINK
 REL="HOME"
 TITLE="SAMBA Project Documentation"
 HREF="samba-howto-collection.html"><LINK
-REL="UP"
-TITLE="Optional configuration"
-HREF="optional.html"><LINK
 REL="PREVIOUS"
-TITLE="Optional configuration"
-HREF="optional.html"><LINK
+TITLE="How to Install and Test SAMBA"
+HREF="install.html"><LINK
 REL="NEXT"
-TITLE="UNIX Permission Bits and Windows NT Access Control Lists"
-HREF="unix-permissions.html"></HEAD
+TITLE="Configuring PAM for distributed but centrally 
+managed authentication"
+HREF="pam.html"></HEAD
 ><BODY
 CLASS="CHAPTER"
 BGCOLOR="#FFFFFF"
@@ -45,7 +43,7 @@ WIDTH="10%"
 ALIGN="left"
 VALIGN="bottom"
 ><A
-HREF="optional.html"
+HREF="install.html"
 ACCESSKEY="P"
 >Prev</A
 ></TD
@@ -59,7 +57,7 @@ WIDTH="10%"
 ALIGN="right"
 VALIGN="bottom"
 ><A
-HREF="unix-permissions.html"
+HREF="pam.html"
 ACCESSKEY="N"
 >Next</A
 ></TD
@@ -74,15 +72,15 @@ CLASS="CHAPTER"
 ><A
 NAME="INTEGRATE-MS-NETWORKS"
 ></A
->Chapter 11. Integrating MS Windows networks with Samba</H1
+>Chapter 2. Integrating MS Windows networks with Samba</H1
 ><DIV
 CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN1387"
+NAME="AEN223"
 ></A
->11.1. Agenda</H1
+>2.1. Agenda</H1
 ><P
 >To identify the key functional mechanisms of MS Windows networking 
 to enable the deployment of Samba as a means of extending and/or 
@@ -147,9 +145,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN1409"
+NAME="AEN245"
 ></A
->11.2. Name Resolution in a pure Unix/Linux world</H1
+>2.2. Name Resolution in a pure Unix/Linux world</H1
 ><P
 >The key configuration files covered in this section are:</P
 ><P
@@ -189,9 +187,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN1425"
+NAME="AEN261"
 ></A
->11.2.1. <TT
+>2.2.1. <TT
 CLASS="FILENAME"
 >/etc/hosts</TT
 ></H2
@@ -270,9 +268,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN1441"
+NAME="AEN277"
 ></A
->11.2.2. <TT
+>2.2.2. <TT
 CLASS="FILENAME"
 >/etc/resolv.conf</TT
 ></H2
@@ -308,9 +306,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN1452"
+NAME="AEN288"
 ></A
->11.2.3. <TT
+>2.2.3. <TT
 CLASS="FILENAME"
 >/etc/host.conf</TT
 ></H2
@@ -337,9 +335,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN1460"
+NAME="AEN296"
 ></A
->11.2.4. <TT
+>2.2.4. <TT
 CLASS="FILENAME"
 >/etc/nsswitch.conf</TT
 ></H2
@@ -378,7 +376,7 @@ facilities and/or services are correctly configured.</P
 sent, TCP/IP networks are silent. All TCP/IP communications assumes a 
 principal of speaking only when necessary.</P
 ><P
->Starting with version 2.2.0 samba has Linux support for extensions to 
+>Samba version 2.2.0 will add Linux support for extensions to 
 the name service switch infrastructure so that linux clients will 
 be able to obtain resolution of MS Windows NetBIOS names to IP 
 Addresses. To gain this functionality Samba needs to be compiled 
@@ -406,9 +404,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN1472"
+NAME="AEN308"
 ></A
->11.3. Name resolution as used within MS Windows networking</H1
+>2.3. Name resolution as used within MS Windows networking</H1
 ><P
 >MS Windows networking is predicated about the name each machine 
 is given. This name is known variously (and inconsistently) as 
@@ -491,9 +489,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN1484"
+NAME="AEN320"
 ></A
->11.3.1. The NetBIOS Name Cache</H2
+>2.3.1. The NetBIOS Name Cache</H2
 ><P
 >All MS Windows machines employ an in memory buffer in which is 
 stored the NetBIOS names and IP addresses for all external 
@@ -518,9 +516,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN1489"
+NAME="AEN325"
 ></A
->11.3.2. The LMHOSTS file</H2
+>2.3.2. The LMHOSTS file</H2
 ><P
 >This file is usually located in MS Windows NT 4.0 or 
 2000 in <TT
@@ -621,9 +619,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN1497"
+NAME="AEN333"
 ></A
->11.3.3. HOSTS file</H2
+>2.3.3. HOSTS file</H2
 ><P
 >This file is usually located in MS Windows NT 4.0 or 2000 in 
 <TT
@@ -643,9 +641,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN1502"
+NAME="AEN338"
 ></A
->11.3.4. DNS Lookup</H2
+>2.3.4. DNS Lookup</H2
 ><P
 >This capability is configured in the TCP/IP setup area in the network 
 configuration facility. If enabled an elaborate name resolution sequence 
@@ -663,9 +661,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN1505"
+NAME="AEN341"
 ></A
->11.3.5. WINS Lookup</H2
+>2.3.5. WINS Lookup</H2
 ><P
 >A WINS (Windows Internet Name Server) service is the equivaent of the 
 rfc1001/1002 specified NBNS (NetBIOS Name Server). A WINS server stores 
@@ -706,9 +704,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN1517"
+NAME="AEN353"
 ></A
->11.4. How browsing functions and how to deploy stable and 
+>2.4. How browsing functions and how to deploy stable and 
 dependable browsing using Samba</H1
 ><P
 >As stated above, MS Windows machines register their NetBIOS names 
@@ -773,9 +771,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN1527"
+NAME="AEN363"
 ></A
->11.5. MS Windows security options and how to configure 
+>2.5. MS Windows security options and how to configure 
 Samba for seemless integration</H1
 ><P
 >MS Windows clients may use encrypted passwords as part of a 
@@ -910,9 +908,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN1555"
+NAME="AEN391"
 ></A
->11.5.1. Use MS Windows NT as an authentication server</H2
+>2.5.1. Use MS Windows NT as an authentication server</H2
 ><P
 >This method involves the additions of the following parameters 
 in the smb.conf file:</P
@@ -946,9 +944,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN1563"
+NAME="AEN399"
 ></A
->11.5.2. Make Samba a member of an MS Windows NT security domain</H2
+>2.5.2. Make Samba a member of an MS Windows NT security domain</H2
 ><P
 >This method involves additon of the following paramters in the smb.conf file:</P
 ><P
@@ -1009,9 +1007,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN1580"
+NAME="AEN416"
 ></A
->11.5.3. Configure Samba as an authentication server</H2
+>2.5.3. Configure Samba as an authentication server</H2
 ><P
 >This mode of authentication demands that there be on the 
 Unix/Linux system both a Unix style account as well as an 
@@ -1046,9 +1044,9 @@ CLASS="SECT3"
 ><H3
 CLASS="SECT3"
 ><A
-NAME="AEN1587"
+NAME="AEN423"
 ></A
->11.5.3.1. Users</H3
+>2.5.3.1. Users</H3
 ><P
 >A user account that may provide a home directory should be 
 created. The following Linux system commands are typical of 
@@ -1069,9 +1067,9 @@ CLASS="SECT3"
 ><H3
 CLASS="SECT3"
 ><A
-NAME="AEN1592"
+NAME="AEN428"
 ></A
->11.5.3.2. MS Windows NT Machine Accounts</H3
+>2.5.3.2. MS Windows NT Machine Accounts</H3
 ><P
 >These are required only when Samba is used as a domain 
 controller.  Refer to the Samba-PDC-HOWTO for more details.</P
@@ -1090,9 +1088,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN1597"
+NAME="AEN433"
 ></A
->11.6. Conclusions</H1
+>2.6. Conclusions</H1
 ><P
 >Samba provides a flexible means to operate as...</P
 ><P
@@ -1138,7 +1136,7 @@ WIDTH="33%"
 ALIGN="left"
 VALIGN="top"
 ><A
-HREF="optional.html"
+HREF="install.html"
 ACCESSKEY="P"
 >Prev</A
 ></TD
@@ -1156,7 +1154,7 @@ WIDTH="33%"
 ALIGN="right"
 VALIGN="top"
 ><A
-HREF="unix-permissions.html"
+HREF="pam.html"
 ACCESSKEY="N"
 >Next</A
 ></TD
@@ -1166,21 +1164,18 @@ ACCESSKEY="N"
 WIDTH="33%"
 ALIGN="left"
 VALIGN="top"
->Optional configuration</TD
+>How to Install and Test SAMBA</TD
 ><TD
 WIDTH="34%"
 ALIGN="center"
 VALIGN="top"
-><A
-HREF="optional.html"
-ACCESSKEY="U"
->Up</A
-></TD
+>&nbsp;</TD
 ><TD
 WIDTH="33%"
 ALIGN="right"
 VALIGN="top"
->UNIX Permission Bits and Windows NT Access Control Lists</TD
+>Configuring PAM for distributed but centrally 
+managed authentication</TD
 ></TR
 ></TABLE
 ></DIV
diff --git a/docs/htmldocs/msdfs.html b/docs/htmldocs/msdfs.html
index 832187d19f2..47628ccf856 100644
--- a/docs/htmldocs/msdfs.html
+++ b/docs/htmldocs/msdfs.html
@@ -9,16 +9,13 @@ CONTENT="Modular DocBook HTML Stylesheet Version 1.77"><LINK
 REL="HOME"
 TITLE="SAMBA Project Documentation"
 HREF="samba-howto-collection.html"><LINK
-REL="UP"
-TITLE="Optional configuration"
-HREF="optional.html"><LINK
 REL="PREVIOUS"
 TITLE="Configuring PAM for distributed but centrally 
 managed authentication"
 HREF="pam.html"><LINK
 REL="NEXT"
-TITLE="Printing Support"
-HREF="printing.html"></HEAD
+TITLE="UNIX Permission Bits and Windows NT Access Control Lists"
+HREF="unix-permissions.html"></HEAD
 ><BODY
 CLASS="CHAPTER"
 BGCOLOR="#FFFFFF"
@@ -60,7 +57,7 @@ WIDTH="10%"
 ALIGN="right"
 VALIGN="bottom"
 ><A
-HREF="printing.html"
+HREF="unix-permissions.html"
 ACCESSKEY="N"
 >Next</A
 ></TD
@@ -75,15 +72,15 @@ CLASS="CHAPTER"
 ><A
 NAME="MSDFS"
 ></A
->Chapter 14. Hosting a Microsoft Distributed File System tree on Samba</H1
+>Chapter 4. Hosting a Microsoft Distributed File System tree on Samba</H1
 ><DIV
 CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN1872"
+NAME="AEN525"
 ></A
->14.1. Instructions</H1
+>4.1. Instructions</H1
 ><P
 >The Distributed File System (or Dfs) provides a means of 
 	separating the logical view of files and directories that users 
@@ -229,9 +226,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN1907"
+NAME="AEN560"
 ></A
->14.1.1. Notes</H2
+>4.1.1. Notes</H2
 ><P
 ></P
 ><UL
@@ -292,7 +289,7 @@ WIDTH="33%"
 ALIGN="right"
 VALIGN="top"
 ><A
-HREF="printing.html"
+HREF="unix-permissions.html"
 ACCESSKEY="N"
 >Next</A
 ></TD
@@ -308,16 +305,12 @@ managed authentication</TD
 WIDTH="34%"
 ALIGN="center"
 VALIGN="top"
-><A
-HREF="optional.html"
-ACCESSKEY="U"
->Up</A
-></TD
+>&nbsp;</TD
 ><TD
 WIDTH="33%"
 ALIGN="right"
 VALIGN="top"
->Printing Support</TD
+>UNIX Permission Bits and Windows NT Access Control Lists</TD
 ></TR
 ></TABLE
 ></DIV
diff --git a/docs/htmldocs/nmbd.8.html b/docs/htmldocs/nmbd.8.html
index c9cdb5908be..05bf860124d 100644
--- a/docs/htmldocs/nmbd.8.html
+++ b/docs/htmldocs/nmbd.8.html
@@ -38,12 +38,12 @@ NAME="AEN8"
 ><B
 CLASS="COMMAND"
 >nmbd</B
->  [-D] [-a] [-i] [-o] [-h] [-V] [-d &lt;debug level&gt;] [-H &lt;lmhosts file&gt;] [-l &lt;log directory&gt;] [-n &lt;primary netbios name&gt;] [-p &lt;port number&gt;] [-s &lt;configuration file&gt;]</P
+>  [-D] [-a] [-i] [-o] [-P] [-h] [-V] [-d &lt;debug level&gt;] [-H &lt;lmhosts file&gt;] [-l &lt;log directory&gt;] [-n &lt;primary netbios name&gt;] [-p &lt;port number&gt;] [-s &lt;configuration file&gt;]</P
 ></DIV
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN23"
+NAME="AEN24"
 ></A
 ><H2
 >DESCRIPTION</H2
@@ -56,7 +56,7 @@ CLASS="COMMAND"
 > is a server that understands 
 	and can reply to NetBIOS over IP name service requests, like 
 	those produced by SMB/CIFS clients such as Windows 95/98/ME, 
-	Windows NT, Windows 2000, Windows XP and LanManager clients. It also
+	Windows NT, Windows 2000, and LanManager clients. It also
 	participates in the browsing protocols which make up the 
 	Windows "Network Neighborhood" view.</P
 ><P
@@ -117,7 +117,7 @@ CLASS="COMMAND"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN40"
+NAME="AEN41"
 ></A
 ><H2
 >OPTIONS</H2
@@ -400,7 +400,7 @@ CLASS="FILENAME"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN130"
+NAME="AEN131"
 ></A
 ><H2
 >FILES</H2
@@ -559,7 +559,7 @@ CLASS="FILENAME"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN177"
+NAME="AEN178"
 ></A
 ><H2
 >SIGNALS</H2
@@ -624,18 +624,18 @@ CLASS="COMMAND"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN193"
+NAME="AEN194"
 ></A
 ><H2
 >VERSION</H2
 ><P
->This man page is correct for version 3.0 of 
+>This man page is correct for version 2.2 of 
 	the Samba suite.</P
 ></DIV
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN196"
+NAME="AEN197"
 ></A
 ><H2
 >SEE ALSO</H2
@@ -700,7 +700,7 @@ TARGET="_top"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN213"
+NAME="AEN214"
 ></A
 ><H2
 >AUTHOR</H2
diff --git a/docs/htmldocs/nmblookup.1.html b/docs/htmldocs/nmblookup.1.html
index 2ce322990f3..0209c4bd2bd 100644
--- a/docs/htmldocs/nmblookup.1.html
+++ b/docs/htmldocs/nmblookup.1.html
@@ -38,12 +38,12 @@ NAME="AEN8"
 ><B
 CLASS="COMMAND"
 >nmblookup</B
->  [-M] [-R] [-S] [-r] [-A] [-h] [-B &lt;broadcast address&gt;] [-U &lt;unicast address&gt;] [-d &lt;debug level&gt;] [-s &lt;smb config file&gt;] [-i &lt;NetBIOS scope&gt;] [-T] [-f] {name}</P
+>  [-M] [-R] [-S] [-r] [-A] [-h] [-B &lt;broadcast address&gt;] [-U &lt;unicast address&gt;] [-d &lt;debug level&gt;] [-s &lt;smb config file&gt;] [-i &lt;NetBIOS scope&gt;] [-T] {name}</P
 ></DIV
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN25"
+NAME="AEN24"
 ></A
 ><H2
 >DESCRIPTION</H2
@@ -66,7 +66,7 @@ CLASS="COMMAND"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN31"
+NAME="AEN30"
 ></A
 ><H2
 >OPTIONS</H2
@@ -286,15 +286,6 @@ CLASS="EMPHASIS"
 > pair that is the normal output.</P
 ></DD
 ><DT
->-f</DT
-><DD
-><P
->		Show which flags apply to the name that has been looked up. Possible 
-		answers are zero or more of: Response, Authoritative, 
-		Truncated, Recursion_Desired, Recursion_Available, Broadcast.
-		</P
-></DD
-><DT
 >name</DT
 ><DD
 ><P
@@ -311,7 +302,7 @@ CLASS="EMPHASIS"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN115"
+NAME="AEN110"
 ></A
 ><H2
 >EXAMPLES</H2
@@ -348,18 +339,18 @@ CLASS="COMMAND"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN127"
+NAME="AEN122"
 ></A
 ><H2
 >VERSION</H2
 ><P
->This man page is correct for version 3.0 of 
+>This man page is correct for version 2.2 of 
 	the Samba suite.</P
 ></DIV
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN130"
+NAME="AEN125"
 ></A
 ><H2
 >SEE ALSO</H2
@@ -386,7 +377,7 @@ TARGET="_top"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN137"
+NAME="AEN132"
 ></A
 ><H2
 >AUTHOR</H2
diff --git a/docs/htmldocs/other-clients.html b/docs/htmldocs/other-clients.html
index 892509a591e..4f6c5fe70a2 100644
--- a/docs/htmldocs/other-clients.html
+++ b/docs/htmldocs/other-clients.html
@@ -9,15 +9,12 @@ CONTENT="Modular DocBook HTML Stylesheet Version 1.77"><LINK
 REL="HOME"
 TITLE="SAMBA Project Documentation"
 HREF="samba-howto-collection.html"><LINK
-REL="UP"
-TITLE="Appendixes"
-HREF="appendixes.html"><LINK
 REL="PREVIOUS"
 TITLE="Portability"
 HREF="portability.html"><LINK
 REL="NEXT"
-TITLE="Reporting Bugs"
-HREF="bugreport.html"></HEAD
+TITLE="Diagnosing your samba server"
+HREF="diagnosis.html"></HEAD
 ><BODY
 CLASS="CHAPTER"
 BGCOLOR="#FFFFFF"
@@ -59,7 +56,7 @@ WIDTH="10%"
 ALIGN="right"
 VALIGN="bottom"
 ><A
-HREF="bugreport.html"
+HREF="diagnosis.html"
 ACCESSKEY="N"
 >Next</A
 ></TD
@@ -74,7 +71,7 @@ CLASS="CHAPTER"
 ><A
 NAME="OTHER-CLIENTS"
 ></A
->Chapter 25. Samba and other CIFS clients</H1
+>Chapter 22. Samba and other CIFS clients</H1
 ><P
 >This chapter contains client-specific information.</P
 ><DIV
@@ -82,9 +79,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN3258"
+NAME="AEN3070"
 ></A
->25.1. Macintosh clients?</H1
+>22.1. Macintosh clients?</H1
 ><P
 >Yes. <A
 HREF="http://www.thursby.com/"
@@ -128,17 +125,17 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN3267"
+NAME="AEN3079"
 ></A
->25.2. OS2 Client</H1
+>22.2. OS2 Client</H1
 ><DIV
 CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN3269"
+NAME="AEN3081"
 ></A
->25.2.1. How can I configure OS/2 Warp Connect or 
+>22.2.1. How can I configure OS/2 Warp Connect or 
 		OS/2 Warp 4 as a client for Samba?</H2
 ><P
 >A more complete answer to this question can be 
@@ -195,9 +192,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN3284"
+NAME="AEN3096"
 ></A
->25.2.2. How can I configure OS/2 Warp 3 (not Connect), 
+>22.2.2. How can I configure OS/2 Warp 3 (not Connect), 
 		OS/2 1.2, 1.3 or 2.x for Samba?</H2
 ><P
 >You can use the free Microsoft LAN Manager 2.2c Client 
@@ -239,9 +236,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN3293"
+NAME="AEN3105"
 ></A
->25.2.3. Are there any other issues when OS/2 (any version) 
+>22.2.3. Are there any other issues when OS/2 (any version) 
 		is used as a client?</H2
 ><P
 >When you do a NET VIEW or use the "File and Print 
@@ -261,9 +258,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN3297"
+NAME="AEN3109"
 ></A
->25.2.4. How do I get printer driver download working 
+>22.2.4. How do I get printer driver download working 
 		for OS/2 clients?</H2
 ><P
 >First, create a share called [PRINTDRV] that is 
@@ -312,17 +309,17 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN3307"
+NAME="AEN3119"
 ></A
->25.3. Windows for Workgroups</H1
+>22.3. Windows for Workgroups</H1
 ><DIV
 CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN3309"
+NAME="AEN3121"
 ></A
->25.3.1. Use latest TCP/IP stack from Microsoft</H2
+>22.3.1. Use latest TCP/IP stack from Microsoft</H2
 ><P
 >Use the latest TCP/IP stack from microsoft if you use Windows
 for workgroups.</P
@@ -342,9 +339,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN3314"
+NAME="AEN3126"
 ></A
->25.3.2. Delete .pwl files after password change</H2
+>22.3.2. Delete .pwl files after password change</H2
 ><P
 >WfWg does a lousy job with passwords. I find that if I change my
 password on either the unix box or the PC the safest thing to do is to
@@ -362,9 +359,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN3319"
+NAME="AEN3131"
 ></A
->25.3.3. Configure WfW password handling</H2
+>22.3.3. Configure WfW password handling</H2
 ><P
 >There is a program call admincfg.exe
 on the last disk (disk 8) of the WFW 3.11 disk set.  To install it
@@ -381,9 +378,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN3323"
+NAME="AEN3135"
 ></A
->25.3.4. Case handling of passwords</H2
+>22.3.4. Case handling of passwords</H2
 ><P
 >Windows for Workgroups uppercases the password before sending it to the server. Unix passwords can be case-sensitive though. Check the <A
 HREF="smb.conf.5.html"
@@ -400,9 +397,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN3328"
+NAME="AEN3140"
 ></A
->25.4. Windows '95/'98</H1
+>22.4. Windows '95/'98</H1
 ><P
 >When using Windows 95 OEM SR2 the following updates are recommended where Samba
 is being used. Please NOTE that the above change will affect you once these
@@ -448,9 +445,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN3344"
+NAME="AEN3156"
 ></A
->25.5. Windows 2000 Service Pack 2</H1
+>22.5. Windows 2000 Service Pack 2</H1
 ><P
 > 
 There are several annoyances with Windows 2000 SP2. One of which
@@ -560,7 +557,7 @@ WIDTH="33%"
 ALIGN="right"
 VALIGN="top"
 ><A
-HREF="bugreport.html"
+HREF="diagnosis.html"
 ACCESSKEY="N"
 >Next</A
 ></TD
@@ -575,16 +572,12 @@ VALIGN="top"
 WIDTH="34%"
 ALIGN="center"
 VALIGN="top"
-><A
-HREF="appendixes.html"
-ACCESSKEY="U"
->Up</A
-></TD
+>&nbsp;</TD
 ><TD
 WIDTH="33%"
 ALIGN="right"
 VALIGN="top"
->Reporting Bugs</TD
+>Diagnosing your samba server</TD
 ></TR
 ></TABLE
 ></DIV
diff --git a/docs/htmldocs/pam.html b/docs/htmldocs/pam.html
index 30b49b69441..3caf52d456b 100644
--- a/docs/htmldocs/pam.html
+++ b/docs/htmldocs/pam.html
@@ -10,12 +10,9 @@ CONTENT="Modular DocBook HTML Stylesheet Version 1.77"><LINK
 REL="HOME"
 TITLE="SAMBA Project Documentation"
 HREF="samba-howto-collection.html"><LINK
-REL="UP"
-TITLE="Optional configuration"
-HREF="optional.html"><LINK
 REL="PREVIOUS"
-TITLE="UNIX Permission Bits and Windows NT Access Control Lists"
-HREF="unix-permissions.html"><LINK
+TITLE="Integrating MS Windows networks with Samba"
+HREF="integrate-ms-networks.html"><LINK
 REL="NEXT"
 TITLE="Hosting a Microsoft Distributed File System tree on Samba"
 HREF="msdfs.html"></HEAD
@@ -46,7 +43,7 @@ WIDTH="10%"
 ALIGN="left"
 VALIGN="bottom"
 ><A
-HREF="unix-permissions.html"
+HREF="integrate-ms-networks.html"
 ACCESSKEY="P"
 >Prev</A
 ></TD
@@ -75,16 +72,16 @@ CLASS="CHAPTER"
 ><A
 NAME="PAM"
 ></A
->Chapter 13. Configuring PAM for distributed but centrally 
+>Chapter 3. Configuring PAM for distributed but centrally 
 managed authentication</H1
 ><DIV
 CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN1801"
+NAME="AEN454"
 ></A
->13.1. Samba and PAM</H1
+>3.1. Samba and PAM</H1
 ><P
 >A number of Unix systems (eg: Sun Solaris), as well as the 
 xxxxBSD family and Linux, now utilize the Pluggable Authentication 
@@ -296,9 +293,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN1845"
+NAME="AEN498"
 ></A
->13.2. Distributed Authentication</H1
+>3.2. Distributed Authentication</H1
 ><P
 >The astute administrator will realize from this that the 
 combination of <TT
@@ -329,9 +326,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN1852"
+NAME="AEN505"
 ></A
->13.3. PAM Configuration in smb.conf</H1
+>3.3. PAM Configuration in smb.conf</H1
 ><P
 >There is an option in smb.conf called <A
 HREF="smb.conf.5.html#OBEYPAMRESTRICTIONS"
@@ -381,7 +378,7 @@ WIDTH="33%"
 ALIGN="left"
 VALIGN="top"
 ><A
-HREF="unix-permissions.html"
+HREF="integrate-ms-networks.html"
 ACCESSKEY="P"
 >Prev</A
 ></TD
@@ -409,16 +406,12 @@ ACCESSKEY="N"
 WIDTH="33%"
 ALIGN="left"
 VALIGN="top"
->UNIX Permission Bits and Windows NT Access Control Lists</TD
+>Integrating MS Windows networks with Samba</TD
 ><TD
 WIDTH="34%"
 ALIGN="center"
 VALIGN="top"
-><A
-HREF="optional.html"
-ACCESSKEY="U"
->Up</A
-></TD
+>&nbsp;</TD
 ><TD
 WIDTH="33%"
 ALIGN="right"
diff --git a/docs/htmldocs/pdbedit.8.html b/docs/htmldocs/pdbedit.8.html
index 7adae978b87..3ed3dfe8e9b 100644
--- a/docs/htmldocs/pdbedit.8.html
+++ b/docs/htmldocs/pdbedit.8.html
@@ -37,12 +37,12 @@ NAME="AEN8"
 ><B
 CLASS="COMMAND"
 >pdbedit</B
->  [-l] [-v] [-w] [-u username] [-f fullname] [-h homedir] [-D drive] [-S script] [-p profile] [-a] [-m] [-x] [-i passdb-backend] [-e passdb-backend] [-b passdb-backend] [-d debuglevel] [-s configfile] [-P account-policy] [-V value]</P
+>  [-l] [-v] [-w] [-u username] [-f fullname] [-h homedir] [-d drive] [-s script] [-p profile] [-a] [-m] [-x] [-i passdb-backend] [-e passdb-backend] [-b passdb-backend] [-D debuglevel]</P
 ></DIV
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN30"
+NAME="AEN27"
 ></A
 ><H2
 >DESCRIPTION</H2
@@ -68,7 +68,7 @@ TARGET="_top"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN37"
+NAME="AEN34"
 ></A
 ><H2
 >OPTIONS</H2
@@ -215,7 +215,7 @@ CLASS="COMMAND"
 		</P
 ></DD
 ><DT
->-D drive</DT
+>-d drive</DT
 ><DD
 ><P
 >This option can be used while adding or
@@ -229,7 +229,7 @@ CLASS="COMMAND"
 		</P
 ></DD
 ><DT
->-S script</DT
+>-s script</DT
 ><DD
 ><P
 >This option can be used while adding or
@@ -352,130 +352,13 @@ CLASS="COMMAND"
 >pdbedit -b xml:/root/pdb-backup.xml -l</B
 ></P
 ></DD
-><DT
->-P account-policy</DT
-><DD
-><P
->Display an account policy</P
-><P
->Valid policies are: minimum password age, reset count minutes, disconnect time,
-		user must logon to change password, password history, lockout duration, min password length,
-		maximum password age and bad lockout attempt.
-
-		</P
-><P
->Example: <B
-CLASS="COMMAND"
->pdbedit -P "bad lockout attempt"</B
-></P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->		account policy value for bad lockout attempt is 0
-		</PRE
-></P
-></DD
-><DT
->-V account-policy-value</DT
-><DD
-><P
->Sets an account policy to a specified value. 
-		This option may only be used in conjunction
-		with the <TT
-CLASS="PARAMETER"
-><I
->-P</I
-></TT
-> option.
-
-		</P
-><P
->Example: <B
-CLASS="COMMAND"
->pdbedit -P "bad lockout attempt" -V 3</B
-></P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->		account policy value for bad lockout attempt was 0
-		account policy value for bad lockout attempt is now 3
-		</PRE
-></P
-></DD
-><DT
->-d|--debug=debuglevel</DT
-><DD
-><P
-><TT
-CLASS="REPLACEABLE"
-><I
->debuglevel</I
-></TT
-> is an integer 
-from 0 to 10.  The default value if this parameter is 
-not specified is zero.</P
-><P
->The higher this value, the more detail will be 
-logged to the log files about the activities of the 
-server. At level 0, only critical errors and serious 
-warnings will be logged. Level 1 is a reasonable level for
-day to day running - it generates a small amount of 
-information about operations carried out.</P
-><P
->Levels above 1 will generate considerable 
-amounts of log data, and should only be used when 
-investigating a problem. Levels above 3 are designed for 
-use only by developers and generate HUGE amounts of log
-data, most of which is extremely cryptic.</P
-><P
->Note that specifying this parameter here will 
-override the <A
-HREF="smb.conf.5.html#loglevel"
-TARGET="_top"
->log
-level</A
-> parameter in the <A
-HREF="smb.conf.5.html"
-TARGET="_top"
-><TT
-CLASS="FILENAME"
->smb.conf(5)</TT
-></A
-> file.</P
-></DD
-><DT
->-h|--help</DT
-><DD
-><P
->Print a summary of command line options.</P
-></DD
-><DT
->-s &lt;configuration file&gt;</DT
-><DD
-><P
->The file specified contains the 
-configuration details required by the server.  The 
-information in this file includes server-specific
-information such as what printcap file to use, as well 
-as descriptions of all the services that the server is 
-to provide. See <A
-HREF="smb.conf.5.html"
-TARGET="_top"
-><TT
-CLASS="FILENAME"
->smb.conf(5)</TT
-></A
-> for more information.
-The default configuration file name is determined at 
-compile time.</P
-></DD
 ></DL
 ></DIV
 ></DIV
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN182"
+NAME="AEN140"
 ></A
 ><H2
 >NOTES</H2
@@ -485,7 +368,7 @@ NAME="AEN182"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN185"
+NAME="AEN143"
 ></A
 ><H2
 >VERSION</H2
@@ -496,7 +379,7 @@ NAME="AEN185"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN188"
+NAME="AEN146"
 ></A
 ><H2
 >SEE ALSO</H2
@@ -516,7 +399,7 @@ TARGET="_top"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN193"
+NAME="AEN151"
 ></A
 ><H2
 >AUTHOR</H2
diff --git a/docs/htmldocs/portability.html b/docs/htmldocs/portability.html
index 25c24a3a2c5..cc83f616940 100644
--- a/docs/htmldocs/portability.html
+++ b/docs/htmldocs/portability.html
@@ -9,12 +9,9 @@ CONTENT="Modular DocBook HTML Stylesheet Version 1.77"><LINK
 REL="HOME"
 TITLE="SAMBA Project Documentation"
 HREF="samba-howto-collection.html"><LINK
-REL="UP"
-TITLE="Appendixes"
-HREF="appendixes.html"><LINK
 REL="PREVIOUS"
-TITLE="Appendixes"
-HREF="appendixes.html"><LINK
+TITLE="Group mapping HOWTO"
+HREF="groupmapping.html"><LINK
 REL="NEXT"
 TITLE="Samba and other CIFS clients"
 HREF="other-clients.html"></HEAD
@@ -45,7 +42,7 @@ WIDTH="10%"
 ALIGN="left"
 VALIGN="bottom"
 ><A
-HREF="appendixes.html"
+HREF="groupmapping.html"
 ACCESSKEY="P"
 >Prev</A
 ></TD
@@ -74,7 +71,7 @@ CLASS="CHAPTER"
 ><A
 NAME="PORTABILITY"
 ></A
->Chapter 24. Portability</H1
+>Chapter 21. Portability</H1
 ><P
 >Samba works on a wide range of platforms but the interface all the 
 platforms provide is not always compatible. This chapter contains 
@@ -84,9 +81,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN3198"
+NAME="AEN3011"
 ></A
->24.1. HPUX</H1
+>21.1. HPUX</H1
 ><P
 >HP's implementation of supplementary groups is, er, non-standard (for
 hysterical reasons).  There are two group files, /etc/group and
@@ -104,19 +101,15 @@ to initgroups() be run as users not in any groups with GIDs outside the
 allowed range.</P
 ><P
 >This is documented in the HP manual pages under setgroups(2) and passwd(4).</P
-><P
->On HPUX you must use gcc or the HP Ansi compiler. The free compiler
-that comes with HP-UX is not Ansi compliant and cannot compile
-Samba.</P
 ></DIV
 ><DIV
 CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN3204"
+NAME="AEN3016"
 ></A
->24.2. SCO Unix</H1
+>21.2. SCO Unix</H1
 ><P
 > 
 If you run an old version of  SCO Unix then you may need to get important 
@@ -131,9 +124,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN3208"
+NAME="AEN3020"
 ></A
->24.3. DNIX</H1
+>21.3. DNIX</H1
 ><P
 >DNIX has a problem with seteuid() and setegid(). These routines are
 needed for Samba to work correctly, but they were left out of the DNIX
@@ -238,9 +231,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN3237"
+NAME="AEN3049"
 ></A
->24.4. RedHat Linux Rembrandt-II</H1
+>21.4. RedHat Linux Rembrandt-II</H1
 ><P
 >By default RedHat Rembrandt-II during installation adds an
 entry to /etc/hosts as follows:
@@ -274,7 +267,7 @@ WIDTH="33%"
 ALIGN="left"
 VALIGN="top"
 ><A
-HREF="appendixes.html"
+HREF="groupmapping.html"
 ACCESSKEY="P"
 >Prev</A
 ></TD
@@ -302,16 +295,12 @@ ACCESSKEY="N"
 WIDTH="33%"
 ALIGN="left"
 VALIGN="top"
->Appendixes</TD
+>Group mapping HOWTO</TD
 ><TD
 WIDTH="34%"
 ALIGN="center"
 VALIGN="top"
-><A
-HREF="appendixes.html"
-ACCESSKEY="U"
->Up</A
-></TD
+>&nbsp;</TD
 ><TD
 WIDTH="33%"
 ALIGN="right"
diff --git a/docs/htmldocs/printing.html b/docs/htmldocs/printing.html
index b2b893afec3..7ae20acb434 100644
--- a/docs/htmldocs/printing.html
+++ b/docs/htmldocs/printing.html
@@ -2,22 +2,19 @@
 <HTML
 ><HEAD
 ><TITLE
->Printing Support</TITLE
+>Printing Support in Samba 2.2.x</TITLE
 ><META
 NAME="GENERATOR"
 CONTENT="Modular DocBook HTML Stylesheet Version 1.77"><LINK
 REL="HOME"
 TITLE="SAMBA Project Documentation"
 HREF="samba-howto-collection.html"><LINK
-REL="UP"
-TITLE="Optional configuration"
-HREF="optional.html"><LINK
 REL="PREVIOUS"
-TITLE="Hosting a Microsoft Distributed File System tree on Samba"
-HREF="msdfs.html"><LINK
+TITLE="UNIX Permission Bits and Windows NT Access Control Lists"
+HREF="unix-permissions.html"><LINK
 REL="NEXT"
-TITLE="Unified Logons between Windows NT and UNIX using Winbind"
-HREF="winbind.html"></HEAD
+TITLE="Debugging Printing Problems"
+HREF="printingdebug.html"></HEAD
 ><BODY
 CLASS="CHAPTER"
 BGCOLOR="#FFFFFF"
@@ -45,7 +42,7 @@ WIDTH="10%"
 ALIGN="left"
 VALIGN="bottom"
 ><A
-HREF="msdfs.html"
+HREF="unix-permissions.html"
 ACCESSKEY="P"
 >Prev</A
 ></TD
@@ -59,7 +56,7 @@ WIDTH="10%"
 ALIGN="right"
 VALIGN="bottom"
 ><A
-HREF="winbind.html"
+HREF="printingdebug.html"
 ACCESSKEY="N"
 >Next</A
 ></TD
@@ -74,15 +71,15 @@ CLASS="CHAPTER"
 ><A
 NAME="PRINTING"
 ></A
->Chapter 15. Printing Support</H1
+>Chapter 6. Printing Support in Samba 2.2.x</H1
 ><DIV
 CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN1933"
+NAME="AEN763"
 ></A
->15.1. Introduction</H1
+>6.1. Introduction</H1
 ><P
 >Beginning with the 2.2.0 release, Samba supports 
 the native Windows NT printing mechanisms implemented via 
@@ -139,7 +136,12 @@ TARGET="_top"
 >There has been some initial confusion about what all this means
 and whether or not it is a requirement for printer drivers to be 
 installed on a Samba host in order to support printing from Windows 
-clients. As a side note, Samba does not use these drivers in any way to process 
+clients.  A bug existed in Samba 2.2.0 which made Windows NT/2000 clients 
+require that the Samba server possess a valid driver for the printer.  
+This is fixed in Samba 2.2.1 and once again, Windows NT/2000 clients
+can use the local APW for installing drivers to be used with a Samba 
+served printer.  This is the same behavior exhibited by Windows 9x clients.
+As a side note, Samba does not use these drivers in any way to process 
 spooled files.  They are utilized entirely by the clients.</P
 ><P
 >The following MS KB article, may be of some help if you are dealing with
@@ -163,9 +165,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN1955"
+NAME="AEN785"
 ></A
->15.2. Configuration</H1
+>6.2. Configuration</H1
 ><DIV
 CLASS="WARNING"
 ><P
@@ -220,6 +222,20 @@ CLASS="PARAMETER"
 > provided 
 a means of defining the printer driver name to be sent to 
 the client.</P
+><P
+>These parameters, including <TT
+CLASS="PARAMETER"
+><I
+>printer driver
+file</I
+></TT
+> parameter, are being deprecated and should not 
+be used in new installations.  For more information on this change, 
+you should refer to the <A
+HREF="printing.html#MIGRATION"
+>Migration section</A
+>
+of this document.</P
 ></TD
 ></TR
 ></TABLE
@@ -229,9 +245,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN1963"
+NAME="AEN796"
 ></A
->15.2.1. Creating [print$]</H2
+>6.2.1. Creating [print$]</H2
 ><P
 >In order to support the uploading of printer driver 
 files, you must first configure a file share named [print$].  
@@ -452,14 +468,22 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN1998"
+NAME="AEN831"
 ></A
->15.2.2. Setting Drivers for Existing Printers</H2
+>6.2.2. Setting Drivers for Existing Printers</H2
 ><P
 >The initial listing of printers in the Samba host's 
 Printers folder will have no real printer driver assigned 
-to them. This defaults to a NULL string to allow the use
-of the local Add Printer Wizard on NT/2000 clients.
+to them.  By default, in Samba 2.2.0 this driver name was set to 
+<SPAN
+CLASS="emphasis"
+><I
+CLASS="EMPHASIS"
+>NO PRINTER DRIVER AVAILABLE FOR THIS PRINTER</I
+></SPAN
+>.
+Later versions changed this to a NULL string to allow the use
+tof the local Add Printer Wizard on NT/2000 clients.
 Attempting to view the printer properties for a printer
 which has this default driver assigned will result in 
 the error message:</P
@@ -524,9 +548,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN2014"
+NAME="AEN848"
 ></A
->15.2.3. Support a large number of printers</H2
+>6.2.3. Support a large number of printers</H2
 ><P
 >One issue that has arisen during the development
 phase of Samba 2.2 is the need to support driver downloads for
@@ -590,9 +614,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN2025"
+NAME="AEN859"
 ></A
->15.2.4. Adding New Printers via the Windows NT APW</H2
+>6.2.4. Adding New Printers via the Windows NT APW</H2
 ><P
 >By default, Samba offers all printer shares defined in <TT
 CLASS="FILENAME"
@@ -759,9 +783,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN2055"
+NAME="AEN889"
 ></A
->15.2.5. Samba and Printer Ports</H2
+>6.2.5. Samba and Printer Ports</H2
 ><P
 >Windows NT/2000 print servers associate a port with each printer.  These normally
 take the form of LPT1:, COM1:, FILE:, etc...  Samba must also support the
@@ -796,9 +820,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN2063"
+NAME="AEN897"
 ></A
->15.3. The Imprints Toolset</H1
+>6.3. The Imprints Toolset</H1
 ><P
 >The Imprints tool set provides a UNIX equivalent of the 
 	Windows NT Add Printer Wizard.  For complete information, please 
@@ -814,9 +838,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN2067"
+NAME="AEN901"
 ></A
->15.3.1. What is Imprints?</H2
+>6.3.1. What is Imprints?</H2
 ><P
 >Imprints is a collection of tools for supporting the goals 
 		of</P
@@ -846,9 +870,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN2077"
+NAME="AEN911"
 ></A
->15.3.2. Creating Printer Driver Packages</H2
+>6.3.2. Creating Printer Driver Packages</H2
 ><P
 >The process of creating printer driver packages is beyond
 		the scope of this document (refer to Imprints.txt also included
@@ -862,9 +886,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN2080"
+NAME="AEN914"
 ></A
->15.3.3. The Imprints server</H2
+>6.3.3. The Imprints server</H2
 ><P
 >The Imprints server is really a database server that 
 		may be queried via standard HTTP mechanisms.  Each printer 
@@ -886,9 +910,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN2084"
+NAME="AEN918"
 ></A
->15.3.4. The Installation Client</H2
+>6.3.4. The Installation Client</H2
 ><P
 >More information regarding the Imprints installation client 
 		is available in the <TT
@@ -980,388 +1004,168 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN2106"
+NAME="AEN940"
 ></A
->15.4. Diagnosis</H1
-><DIV
-CLASS="SECT2"
-><H2
-CLASS="SECT2"
-><A
-NAME="AEN2108"
+>6.4. <A
+NAME="MIGRATION"
 ></A
->15.4.1. Introduction</H2
-><P
->This is a short description of how to debug printing problems with
-Samba. This describes how to debug problems with printing from a SMB
-client to a Samba server, not the other way around. For the reverse
-see the examples/printing directory.</P
+>Migration to from Samba 2.0.x to 2.2.x</H1
 ><P
->Ok, so you want to print to a Samba server from your PC. The first
-thing you need to understand is that Samba does not actually do any
-printing itself, it just acts as a middleman between your PC client
-and your Unix printing subsystem. Samba receives the file from the PC
-then passes the file to a external "print command". What print command
-you use is up to you.</P
+>Given that printer driver management has changed (we hope improved) in 
+2.2 over prior releases, migration from an existing setup to 2.2 can 
+follow several paths. Here are the possible scenarios for 
+migration:</P
 ><P
->The whole things is controlled using options in smb.conf. The most
-relevant options (which you should look up in the smb.conf man page)
-are:</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->      [global]
-        print command     - send a file to a spooler
-        lpq command       - get spool queue status
-        lprm command      - remove a job
-      [printers]
-        path = /var/spool/lpd/samba</PRE
-></P
-><P
->The following are nice to know about:</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->        queuepause command   - stop a printer or print queue
-        queueresume command  - start a printer or print queue</PRE
 ></P
-><P
->Example:</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->        print command = /usr/bin/lpr -r -P%p %s
-        lpq command   = /usr/bin/lpq    -P%p %s
-        lprm command  = /usr/bin/lprm   -P%p %j
-        queuepause command = /usr/sbin/lpc -P%p stop
-        queuepause command = /usr/sbin/lpc -P%p start</PRE
-></P
-><P
->Samba should set reasonable defaults for these depending on your
-system type, but it isn't clairvoyant. It is not uncommon that you
-have to tweak these for local conditions.  The commands should
-always have fully specified pathnames,  as the smdb may not have
-the correct PATH values.</P
-><P
->When you send a job to Samba to be printed,  it will make a temporary
-copy of it in the directory specified in the [printers] section.
-and it should be periodically cleaned out.  The lpr -r option
-requests that the temporary copy be removed after printing; If
-printing fails then you might find leftover files in this directory,
-and it should be periodically cleaned out.  Samba used the lpq
-command to determine the "job number" assigned to your print job
-by the spooler.</P
-><P
->The %&gt;letter&lt; are "macros" that get dynamically replaced with appropriate
-values when they are used. The %s gets replaced with the name of the spool
-file that Samba creates and the %p gets replaced with the name of the
-printer. The %j gets replaced with the "job number" which comes from
-the lpq output.</P
-></DIV
-><DIV
-CLASS="SECT2"
-><H2
-CLASS="SECT2"
-><A
-NAME="AEN2124"
-></A
->15.4.2. Debugging printer problems</H2
-><P
->One way to debug printing problems is to start by replacing these
-command with shell scripts that record the arguments and the contents
-of the print file. A simple example of this kind of things might
-be:</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->	print command = /tmp/saveprint %p %s
-
-    #!/bin/saveprint
-    # we make sure that we are the right user
-    /usr/bin/id -p &#62;/tmp/tmp.print
-    # we run the command and save the error messages
-    # replace the command with the one appropriate for your system
-    /usr/bin/lpr -r -P$1 $2 2&#62;&#62;&#38;/tmp/tmp.print</PRE
-></P
-><P
->Then you print a file and try removing it.  You may find that the
-print queue needs to be stopped in order to see the queue status
-and remove the job:</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->&#13;h4: {42} % echo hi &#62;/tmp/hi
-h4: {43} % smbclient //localhost/lw4
-added interface ip=10.0.0.4 bcast=10.0.0.255 nmask=255.255.255.0
-Password: 
-Domain=[ASTART] OS=[Unix] Server=[Samba 2.0.7]
-smb: \&#62; print /tmp/hi
-putting file /tmp/hi as hi-17534 (0.0 kb/s) (average 0.0 kb/s)
-smb: \&#62; queue
-1049     3            hi-17534
-smb: \&#62; cancel 1049
-Error cancelling job 1049 : code 0
-smb: \&#62; cancel 1049
-Job 1049 cancelled
-smb: \&#62; queue
-smb: \&#62; exit</PRE
-></P
-><P
->The 'code 0' indicates that the job was removed.  The comment
-by the  smbclient is a bit misleading on this.
-You can observe the command output and then and look at the
-/tmp/tmp.print file to see what the results are.  You can quickly
-find out if the problem is with your printing system.  Often people
-have problems with their /etc/printcap file or permissions on
-various print queues.</P
-></DIV
-><DIV
-CLASS="SECT2"
-><H2
-CLASS="SECT2"
-><A
-NAME="AEN2133"
-></A
->15.4.3. What printers do I have?</H2
-><P
->You can use the 'testprns' program to check to see if the printer
-name you are using is recognized by Samba.  For example,  you can
-use:</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->    testprns printer /etc/printcap</PRE
-></P
-><P
->Samba can get its printcap information from a file or from a program.
-You can try the following to see the format of the extracted
-information:</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->    testprns -a printer /etc/printcap
-
-    testprns -a printer '|/bin/cat printcap'</PRE
-></P
-></DIV
-><DIV
-CLASS="SECT2"
-><H2
-CLASS="SECT2"
-><A
-NAME="AEN2141"
-></A
->15.4.4. Setting up printcap and print servers</H2
-><P
->You may need to set up some printcaps for your Samba system to use.
-It is strongly recommended that you use the facilities provided by
-the print spooler to set up queues and printcap information.</P
-><P
->Samba requires either a printcap or program to deliver printcap
-information.  This printcap information has the format:</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->  name|alias1|alias2...:option=value:...</PRE
-></P
-><P
->For almost all printing systems, the printer 'name' must be composed
-only of alphanumeric or underscore '_' characters.  Some systems also
-allow hyphens ('-') as well.  An alias is an alternative name for the
-printer,  and an alias with a space in it is used as a 'comment'
-about the printer.  The printcap format optionally uses a \ at the end of lines
-to extend the printcap to multiple lines.</P
-><P
->Here are some examples of printcap files:</P
-><P
-><P
-></P
-><OL
-TYPE="1"
+><UL
 ><LI
 ><P
->pr              just printer name</P
+>If you do not desire the new Windows NT 
+	print driver support, nothing needs to be done.  
+	All existing parameters work the same.</P
 ></LI
 ><LI
 ><P
->pr|alias        printer name and alias</P
+>If you want to take advantage of NT printer 
+	driver support but do not want to migrate the 
+	9x drivers to the new setup, the leave the existing 
+	<TT
+CLASS="FILENAME"
+>printers.def</TT
+> file.  When smbd attempts 
+	to locate a 
+	9x driver for the printer in the TDB and fails it 
+	will drop down to using the printers.def (and all 
+	associated parameters).  The <B
+CLASS="COMMAND"
+>make_printerdef</B
+> 
+	tool will also remain for backwards compatibility but will 
+	be removed in the next major release.</P
 ></LI
 ><LI
 ><P
->pr|My Printer   printer name, alias used as comment</P
+>If you install a Windows 9x driver for a printer 
+	on your Samba host (in the printing TDB), this information will 
+	take precedence and the three old printing parameters
+	will be ignored (including print driver location).</P
 ></LI
 ><LI
 ><P
->pr:sh:\        Same as pr:sh:cm= testing
-  :cm= \ 
-  testing</P
+>If you want to migrate an existing <TT
+CLASS="FILENAME"
+>printers.def</TT
+> 
+	file into the new setup, the current only solution is to use the Windows 
+	NT APW to install the NT drivers and the 9x  drivers.  This can be scripted 
+	using <B
+CLASS="COMMAND"
+>smbclient</B
+> and <B
+CLASS="COMMAND"
+>rpcclient</B
+>.  See the 
+	Imprints installation client at <A
+HREF="http://imprints.sourceforge.net/"
+TARGET="_top"
+>http://imprints.sourceforge.net/</A
+> 
+	for an example.
+	</P
 ></LI
-><LI
+></UL
+><DIV
+CLASS="WARNING"
 ><P
->pr:sh           Same as pr:sh:cm= testing
-  :cm= testing</P
-></LI
-></OL
 ></P
+><TABLE
+CLASS="WARNING"
+WIDTH="100%"
+BORDER="0"
+><TR
+><TD
+WIDTH="25"
+ALIGN="CENTER"
+VALIGN="TOP"
+><IMG
+SRC="/docbook-dsssl/warning.gif"
+HSPACE="5"
+ALT="Warning"></TD
+><TH
+ALIGN="LEFT"
+VALIGN="CENTER"
+><B
+>Achtung!</B
+></TH
+></TR
+><TR
+><TD
+>&nbsp;</TD
+><TD
+ALIGN="LEFT"
+VALIGN="TOP"
 ><P
->Samba reads the printcap information when first started.  If you make
-changes in the printcap information, then you must do the following:</P
+>The following <TT
+CLASS="FILENAME"
+>smb.conf</TT
+> parameters are considered to 
+be deprecated and will be removed soon.  Do not use them in new 
+installations</P
 ><P
 ></P
-><OL
-TYPE="1"
+><UL
 ><LI
 ><P
->make sure that the print spooler is aware of these changes.
-The LPRng system uses the 'lpc reread' command to do this.</P
+><TT
+CLASS="PARAMETER"
+><I
+>printer driver file (G)</I
+></TT
+>
+	</P
 ></LI
 ><LI
 ><P
->make sure that the spool queues, etc., exist and have the
-correct permissions.  The LPRng system uses the 'checkpc -f'
-command to do this.</P
+><TT
+CLASS="PARAMETER"
+><I
+>printer driver (S)</I
+></TT
+>
+	</P
 ></LI
 ><LI
 ><P
->You now should send a SIGHUP signal to the smbd server to have
-it reread the printcap information.</P
+><TT
+CLASS="PARAMETER"
+><I
+>printer driver location (S)</I
+></TT
+>
+	</P
 ></LI
-></OL
-></DIV
-><DIV
-CLASS="SECT2"
-><H2
-CLASS="SECT2"
-><A
-NAME="AEN2169"
-></A
->15.4.5. Job sent, no output</H2
-><P
->This is the most frustrating part of printing.  You may have sent the
-job,  verified that the job was forwarded,  set up a wrapper around
-the command to send the file,  but there was no output from the printer.</P
-><P
->First,  check to make sure that the job REALLY is getting to the
-right print queue.  If you are using a BSD or LPRng print spooler,
-you can temporarily stop the printing of jobs.  Jobs can still be
-submitted, but they will not be printed.  Use:</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->  lpc -Pprinter stop</PRE
-></P
-><P
->Now submit a print job and then use 'lpq -Pprinter' to see if the
-job is in the print queue.  If it is not in the print queue then
-you will have to find out why it is not being accepted for printing.</P
-><P
->Next, you may want to check to see what the format of the job really
-was.  With the assistance of the system administrator you can view
-the submitted jobs files.  You may be surprised to find that these
-are not in what you would expect to call a printable format.
-You can use the UNIX 'file' utitily to determine what the job
-format actually is:</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->    cd /var/spool/lpd/printer   # spool directory of print jobs
-    ls                          # find job files
-    file dfA001myhost</PRE
-></P
-><P
->You should make sure that your printer supports this format OR that
-your system administrator has installed a 'print filter' that will
-convert the file to a format appropriate for your printer.</P
-></DIV
-><DIV
-CLASS="SECT2"
-><H2
-CLASS="SECT2"
-><A
-NAME="AEN2180"
-></A
->15.4.6. Job sent, strange output</H2
-><P
->Once you have the job printing, you can then start worrying about
-making it print nicely.</P
-><P
->The most common problem is extra pages of output: banner pages
-OR blank pages at the end.</P
-><P
->If you are getting banner pages,  check and make sure that the
-printcap option or printer option is configured for no banners.
-If you have a printcap,  this is the :sh (suppress header or banner
-page) option.  You should have the following in your printer.</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->   printer: ... :sh</PRE
-></P
-><P
->If you have this option and are still getting banner pages,  there
-is a strong chance that your printer is generating them for you
-automatically.  You should make sure that banner printing is disabled
-for the printer.  This usually requires using the printer setup software
-or procedures supplied by the printer manufacturer.</P
-><P
->If you get an extra page of output,  this could be due to problems
-with your job format,  or if you are generating PostScript jobs,
-incorrect setting on your printer driver on the MicroSoft client.
-For example, under Win95 there is a option:</P
-><P
-><PRE
-CLASS="PROGRAMLISTING"
->  Printers|Printer Name|(Right Click)Properties|Postscript|Advanced|</PRE
-></P
-><P
->that allows you to choose if a Ctrl-D is appended to all jobs.
-This is a very bad thing to do, as most spooling systems will
-automatically add a ^D to the end of the job if it is detected as
-PostScript.  The multiple ^D may cause an additional page of output.</P
-></DIV
-><DIV
-CLASS="SECT2"
-><H2
-CLASS="SECT2"
-><A
-NAME="AEN2192"
-></A
->15.4.7. Raw PostScript printed</H2
-><P
->This is a problem that is usually caused by either the print spooling
-system putting information at the start of the print job that makes
-the printer think the job is a text file, or your printer simply
-does not support PostScript.  You may need to enable 'Automatic
-Format Detection' on your printer.</P
-></DIV
-><DIV
-CLASS="SECT2"
-><H2
-CLASS="SECT2"
-><A
-NAME="AEN2195"
-></A
->15.4.8. Advanced Printing</H2
-><P
->Note that you can do some pretty magic things by using your
-imagination with the "print command" option and some shell scripts.
-Doing print accounting is easy by passing the %U option to a print
-command shell script. You could even make the print command detect
-the type of output and its size and send it to an appropriate
-printer.</P
+></UL
+></TD
+></TR
+></TABLE
 ></DIV
-><DIV
-CLASS="SECT2"
-><H2
-CLASS="SECT2"
-><A
-NAME="AEN2198"
-></A
->15.4.9. Real debugging</H2
 ><P
->If the above debug tips don't help, then maybe you need to bring in
-the bug guns, system tracing. See Tracing.txt in this directory.</P
-></DIV
+>The have been two new parameters add in Samba 2.2.2 to for 
+better support of Samba 2.0.x backwards capability (<TT
+CLASS="PARAMETER"
+><I
+>disable
+spoolss</I
+></TT
+>) and for using local printers drivers on Windows 
+NT/2000 clients (<TT
+CLASS="PARAMETER"
+><I
+>use client driver</I
+></TT
+>). Both of 
+these options are described in the smb.coinf(5) man page and are 
+disabled by default.</P
 ></DIV
 ></DIV
 ><DIV
@@ -1380,7 +1184,7 @@ WIDTH="33%"
 ALIGN="left"
 VALIGN="top"
 ><A
-HREF="msdfs.html"
+HREF="unix-permissions.html"
 ACCESSKEY="P"
 >Prev</A
 ></TD
@@ -1398,7 +1202,7 @@ WIDTH="33%"
 ALIGN="right"
 VALIGN="top"
 ><A
-HREF="winbind.html"
+HREF="printingdebug.html"
 ACCESSKEY="N"
 >Next</A
 ></TD
@@ -1408,21 +1212,17 @@ ACCESSKEY="N"
 WIDTH="33%"
 ALIGN="left"
 VALIGN="top"
->Hosting a Microsoft Distributed File System tree on Samba</TD
+>UNIX Permission Bits and Windows NT Access Control Lists</TD
 ><TD
 WIDTH="34%"
 ALIGN="center"
 VALIGN="top"
-><A
-HREF="optional.html"
-ACCESSKEY="U"
->Up</A
-></TD
+>&nbsp;</TD
 ><TD
 WIDTH="33%"
 ALIGN="right"
 VALIGN="top"
->Unified Logons between Windows NT and UNIX using Winbind</TD
+>Debugging Printing Problems</TD
 ></TR
 ></TABLE
 ></DIV
diff --git a/docs/htmldocs/printingdebug.html b/docs/htmldocs/printingdebug.html
new file mode 100644
index 00000000000..abb83cb692e
--- /dev/null
+++ b/docs/htmldocs/printingdebug.html
@@ -0,0 +1,515 @@
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
+<HTML
+><HEAD
+><TITLE
+>Debugging Printing Problems</TITLE
+><META
+NAME="GENERATOR"
+CONTENT="Modular DocBook HTML Stylesheet Version 1.77"><LINK
+REL="HOME"
+TITLE="SAMBA Project Documentation"
+HREF="samba-howto-collection.html"><LINK
+REL="PREVIOUS"
+TITLE="Printing Support in Samba 2.2.x"
+HREF="printing.html"><LINK
+REL="NEXT"
+TITLE="Security levels"
+HREF="securitylevels.html"></HEAD
+><BODY
+CLASS="CHAPTER"
+BGCOLOR="#FFFFFF"
+TEXT="#000000"
+LINK="#0000FF"
+VLINK="#840084"
+ALINK="#0000FF"
+><DIV
+CLASS="NAVHEADER"
+><TABLE
+SUMMARY="Header navigation table"
+WIDTH="100%"
+BORDER="0"
+CELLPADDING="0"
+CELLSPACING="0"
+><TR
+><TH
+COLSPAN="3"
+ALIGN="center"
+>SAMBA Project Documentation</TH
+></TR
+><TR
+><TD
+WIDTH="10%"
+ALIGN="left"
+VALIGN="bottom"
+><A
+HREF="printing.html"
+ACCESSKEY="P"
+>Prev</A
+></TD
+><TD
+WIDTH="80%"
+ALIGN="center"
+VALIGN="bottom"
+></TD
+><TD
+WIDTH="10%"
+ALIGN="right"
+VALIGN="bottom"
+><A
+HREF="securitylevels.html"
+ACCESSKEY="N"
+>Next</A
+></TD
+></TR
+></TABLE
+><HR
+ALIGN="LEFT"
+WIDTH="100%"></DIV
+><DIV
+CLASS="CHAPTER"
+><H1
+><A
+NAME="PRINTINGDEBUG"
+></A
+>Chapter 7. Debugging Printing Problems</H1
+><DIV
+CLASS="SECT1"
+><H1
+CLASS="SECT1"
+><A
+NAME="AEN986"
+></A
+>7.1. Introduction</H1
+><P
+>This is a short description of how to debug printing problems with
+Samba. This describes how to debug problems with printing from a SMB
+client to a Samba server, not the other way around. For the reverse
+see the examples/printing directory.</P
+><P
+>Ok, so you want to print to a Samba server from your PC. The first
+thing you need to understand is that Samba does not actually do any
+printing itself, it just acts as a middleman between your PC client
+and your Unix printing subsystem. Samba receives the file from the PC
+then passes the file to a external "print command". What print command
+you use is up to you.</P
+><P
+>The whole things is controlled using options in smb.conf. The most
+relevant options (which you should look up in the smb.conf man page)
+are:</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>      [global]
+        print command     - send a file to a spooler
+        lpq command       - get spool queue status
+        lprm command      - remove a job
+      [printers]
+        path = /var/spool/lpd/samba</PRE
+></P
+><P
+>The following are nice to know about:</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>        queuepause command   - stop a printer or print queue
+        queueresume command  - start a printer or print queue</PRE
+></P
+><P
+>Example:</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>        print command = /usr/bin/lpr -r -P%p %s
+        lpq command   = /usr/bin/lpq    -P%p %s
+        lprm command  = /usr/bin/lprm   -P%p %j
+        queuepause command = /usr/sbin/lpc -P%p stop
+        queuepause command = /usr/sbin/lpc -P%p start</PRE
+></P
+><P
+>Samba should set reasonable defaults for these depending on your
+system type, but it isn't clairvoyant. It is not uncommon that you
+have to tweak these for local conditions.  The commands should
+always have fully specified pathnames,  as the smdb may not have
+the correct PATH values.</P
+><P
+>When you send a job to Samba to be printed,  it will make a temporary
+copy of it in the directory specified in the [printers] section.
+and it should be periodically cleaned out.  The lpr -r option
+requests that the temporary copy be removed after printing; If
+printing fails then you might find leftover files in this directory,
+and it should be periodically cleaned out.  Samba used the lpq
+command to determine the "job number" assigned to your print job
+by the spooler.</P
+><P
+>The %&gt;letter&lt; are "macros" that get dynamically replaced with appropriate
+values when they are used. The %s gets replaced with the name of the spool
+file that Samba creates and the %p gets replaced with the name of the
+printer. The %j gets replaced with the "job number" which comes from
+the lpq output.</P
+></DIV
+><DIV
+CLASS="SECT1"
+><H1
+CLASS="SECT1"
+><A
+NAME="AEN1002"
+></A
+>7.2. Debugging printer problems</H1
+><P
+>One way to debug printing problems is to start by replacing these
+command with shell scripts that record the arguments and the contents
+of the print file. A simple example of this kind of things might
+be:</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>	print command = /tmp/saveprint %p %s
+
+    #!/bin/saveprint
+    # we make sure that we are the right user
+    /usr/bin/id -p &#62;/tmp/tmp.print
+    # we run the command and save the error messages
+    # replace the command with the one appropriate for your system
+    /usr/bin/lpr -r -P$1 $2 2&#62;&#62;&#38;/tmp/tmp.print</PRE
+></P
+><P
+>Then you print a file and try removing it.  You may find that the
+print queue needs to be stopped in order to see the queue status
+and remove the job:</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>&#13;h4: {42} % echo hi &#62;/tmp/hi
+h4: {43} % smbclient //localhost/lw4
+added interface ip=10.0.0.4 bcast=10.0.0.255 nmask=255.255.255.0
+Password: 
+Domain=[ASTART] OS=[Unix] Server=[Samba 2.0.7]
+smb: \&#62; print /tmp/hi
+putting file /tmp/hi as hi-17534 (0.0 kb/s) (average 0.0 kb/s)
+smb: \&#62; queue
+1049     3            hi-17534
+smb: \&#62; cancel 1049
+Error cancelling job 1049 : code 0
+smb: \&#62; cancel 1049
+Job 1049 cancelled
+smb: \&#62; queue
+smb: \&#62; exit</PRE
+></P
+><P
+>The 'code 0' indicates that the job was removed.  The comment
+by the  smbclient is a bit misleading on this.
+You can observe the command output and then and look at the
+/tmp/tmp.print file to see what the results are.  You can quickly
+find out if the problem is with your printing system.  Often people
+have problems with their /etc/printcap file or permissions on
+various print queues.</P
+></DIV
+><DIV
+CLASS="SECT1"
+><H1
+CLASS="SECT1"
+><A
+NAME="AEN1011"
+></A
+>7.3. What printers do I have?</H1
+><P
+>You can use the 'testprns' program to check to see if the printer
+name you are using is recognized by Samba.  For example,  you can
+use:</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>    testprns printer /etc/printcap</PRE
+></P
+><P
+>Samba can get its printcap information from a file or from a program.
+You can try the following to see the format of the extracted
+information:</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>    testprns -a printer /etc/printcap
+
+    testprns -a printer '|/bin/cat printcap'</PRE
+></P
+></DIV
+><DIV
+CLASS="SECT1"
+><H1
+CLASS="SECT1"
+><A
+NAME="AEN1019"
+></A
+>7.4. Setting up printcap and print servers</H1
+><P
+>You may need to set up some printcaps for your Samba system to use.
+It is strongly recommended that you use the facilities provided by
+the print spooler to set up queues and printcap information.</P
+><P
+>Samba requires either a printcap or program to deliver printcap
+information.  This printcap information has the format:</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>  name|alias1|alias2...:option=value:...</PRE
+></P
+><P
+>For almost all printing systems, the printer 'name' must be composed
+only of alphanumeric or underscore '_' characters.  Some systems also
+allow hyphens ('-') as well.  An alias is an alternative name for the
+printer,  and an alias with a space in it is used as a 'comment'
+about the printer.  The printcap format optionally uses a \ at the end of lines
+to extend the printcap to multiple lines.</P
+><P
+>Here are some examples of printcap files:</P
+><P
+><P
+></P
+><OL
+TYPE="1"
+><LI
+><P
+>pr              just printer name</P
+></LI
+><LI
+><P
+>pr|alias        printer name and alias</P
+></LI
+><LI
+><P
+>pr|My Printer   printer name, alias used as comment</P
+></LI
+><LI
+><P
+>pr:sh:\        Same as pr:sh:cm= testing
+  :cm= \ 
+  testing</P
+></LI
+><LI
+><P
+>pr:sh           Same as pr:sh:cm= testing
+  :cm= testing</P
+></LI
+></OL
+></P
+><P
+>Samba reads the printcap information when first started.  If you make
+changes in the printcap information, then you must do the following:</P
+><P
+></P
+><OL
+TYPE="1"
+><LI
+><P
+>make sure that the print spooler is aware of these changes.
+The LPRng system uses the 'lpc reread' command to do this.</P
+></LI
+><LI
+><P
+>make sure that the spool queues, etc., exist and have the
+correct permissions.  The LPRng system uses the 'checkpc -f'
+command to do this.</P
+></LI
+><LI
+><P
+>You now should send a SIGHUP signal to the smbd server to have
+it reread the printcap information.</P
+></LI
+></OL
+></DIV
+><DIV
+CLASS="SECT1"
+><H1
+CLASS="SECT1"
+><A
+NAME="AEN1047"
+></A
+>7.5. Job sent, no output</H1
+><P
+>This is the most frustrating part of printing.  You may have sent the
+job,  verified that the job was forwarded,  set up a wrapper around
+the command to send the file,  but there was no output from the printer.</P
+><P
+>First,  check to make sure that the job REALLY is getting to the
+right print queue.  If you are using a BSD or LPRng print spooler,
+you can temporarily stop the printing of jobs.  Jobs can still be
+submitted, but they will not be printed.  Use:</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>  lpc -Pprinter stop</PRE
+></P
+><P
+>Now submit a print job and then use 'lpq -Pprinter' to see if the
+job is in the print queue.  If it is not in the print queue then
+you will have to find out why it is not being accepted for printing.</P
+><P
+>Next, you may want to check to see what the format of the job really
+was.  With the assistance of the system administrator you can view
+the submitted jobs files.  You may be surprised to find that these
+are not in what you would expect to call a printable format.
+You can use the UNIX 'file' utitily to determine what the job
+format actually is:</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>    cd /var/spool/lpd/printer   # spool directory of print jobs
+    ls                          # find job files
+    file dfA001myhost</PRE
+></P
+><P
+>You should make sure that your printer supports this format OR that
+your system administrator has installed a 'print filter' that will
+convert the file to a format appropriate for your printer.</P
+></DIV
+><DIV
+CLASS="SECT1"
+><H1
+CLASS="SECT1"
+><A
+NAME="AEN1058"
+></A
+>7.6. Job sent, strange output</H1
+><P
+>Once you have the job printing, you can then start worrying about
+making it print nicely.</P
+><P
+>The most common problem is extra pages of output: banner pages
+OR blank pages at the end.</P
+><P
+>If you are getting banner pages,  check and make sure that the
+printcap option or printer option is configured for no banners.
+If you have a printcap,  this is the :sh (suppress header or banner
+page) option.  You should have the following in your printer.</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>   printer: ... :sh</PRE
+></P
+><P
+>If you have this option and are still getting banner pages,  there
+is a strong chance that your printer is generating them for you
+automatically.  You should make sure that banner printing is disabled
+for the printer.  This usually requires using the printer setup software
+or procedures supplied by the printer manufacturer.</P
+><P
+>If you get an extra page of output,  this could be due to problems
+with your job format,  or if you are generating PostScript jobs,
+incorrect setting on your printer driver on the MicroSoft client.
+For example, under Win95 there is a option:</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>  Printers|Printer Name|(Right Click)Properties|Postscript|Advanced|</PRE
+></P
+><P
+>that allows you to choose if a Ctrl-D is appended to all jobs.
+This is a very bad thing to do, as most spooling systems will
+automatically add a ^D to the end of the job if it is detected as
+PostScript.  The multiple ^D may cause an additional page of output.</P
+></DIV
+><DIV
+CLASS="SECT1"
+><H1
+CLASS="SECT1"
+><A
+NAME="AEN1070"
+></A
+>7.7. Raw PostScript printed</H1
+><P
+>This is a problem that is usually caused by either the print spooling
+system putting information at the start of the print job that makes
+the printer think the job is a text file, or your printer simply
+does not support PostScript.  You may need to enable 'Automatic
+Format Detection' on your printer.</P
+></DIV
+><DIV
+CLASS="SECT1"
+><H1
+CLASS="SECT1"
+><A
+NAME="AEN1073"
+></A
+>7.8. Advanced Printing</H1
+><P
+>Note that you can do some pretty magic things by using your
+imagination with the "print command" option and some shell scripts.
+Doing print accounting is easy by passing the %U option to a print
+command shell script. You could even make the print command detect
+the type of output and its size and send it to an appropriate
+printer.</P
+></DIV
+><DIV
+CLASS="SECT1"
+><H1
+CLASS="SECT1"
+><A
+NAME="AEN1076"
+></A
+>7.9. Real debugging</H1
+><P
+>If the above debug tips don't help, then maybe you need to bring in
+the bug guns, system tracing. See Tracing.txt in this directory.</P
+></DIV
+></DIV
+><DIV
+CLASS="NAVFOOTER"
+><HR
+ALIGN="LEFT"
+WIDTH="100%"><TABLE
+SUMMARY="Footer navigation table"
+WIDTH="100%"
+BORDER="0"
+CELLPADDING="0"
+CELLSPACING="0"
+><TR
+><TD
+WIDTH="33%"
+ALIGN="left"
+VALIGN="top"
+><A
+HREF="printing.html"
+ACCESSKEY="P"
+>Prev</A
+></TD
+><TD
+WIDTH="34%"
+ALIGN="center"
+VALIGN="top"
+><A
+HREF="samba-howto-collection.html"
+ACCESSKEY="H"
+>Home</A
+></TD
+><TD
+WIDTH="33%"
+ALIGN="right"
+VALIGN="top"
+><A
+HREF="securitylevels.html"
+ACCESSKEY="N"
+>Next</A
+></TD
+></TR
+><TR
+><TD
+WIDTH="33%"
+ALIGN="left"
+VALIGN="top"
+>Printing Support in Samba 2.2.x</TD
+><TD
+WIDTH="34%"
+ALIGN="center"
+VALIGN="top"
+>&nbsp;</TD
+><TD
+WIDTH="33%"
+ALIGN="right"
+VALIGN="top"
+>Security levels</TD
+></TR
+></TABLE
+></DIV
+></BODY
+></HTML
+>
\ No newline at end of file
diff --git a/docs/htmldocs/rpcclient.1.html b/docs/htmldocs/rpcclient.1.html
index e695663c8a5..3669e19b033 100644
--- a/docs/htmldocs/rpcclient.1.html
+++ b/docs/htmldocs/rpcclient.1.html
@@ -127,48 +127,20 @@ CLASS="PROGRAMLISTING"
 >-d|--debug=debuglevel</DT
 ><DD
 ><P
-><TT
-CLASS="REPLACEABLE"
-><I
->debuglevel</I
-></TT
-> is an integer 
-from 0 to 10.  The default value if this parameter is 
-not specified is zero.</P
-><P
->The higher this value, the more detail will be 
-logged to the log files about the activities of the 
-server. At level 0, only critical errors and serious 
-warnings will be logged. Level 1 is a reasonable level for
-day to day running - it generates a small amount of 
-information about operations carried out.</P
-><P
->Levels above 1 will generate considerable 
-amounts of log data, and should only be used when 
-investigating a problem. Levels above 3 are designed for 
-use only by developers and generate HUGE amounts of log
-data, most of which is extremely cryptic.</P
-><P
->Note that specifying this parameter here will 
-override the <A
-HREF="smb.conf.5.html#loglevel"
-TARGET="_top"
->log
-level</A
-> parameter in the <A
-HREF="smb.conf.5.html"
-TARGET="_top"
-><TT
+>set the debuglevel. Debug level 0 is the lowest 
+		and 100 being the highest. This should be set to 100 if you are
+		planning on submitting a bug report to the Samba team (see <TT
 CLASS="FILENAME"
->smb.conf(5)</TT
-></A
-> file.</P
+>BUGS.txt</TT
+>). 
+		</P
 ></DD
 ><DT
 >-h|--help</DT
 ><DD
 ><P
->Print a summary of command line options.</P
+>Print a summary of command line options.
+		</P
 ></DD
 ><DT
 >-I IP-address</DT
@@ -303,7 +275,7 @@ CLASS="COMMAND"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN107"
+NAME="AEN101"
 ></A
 ><H2
 >COMMANDS</H2
@@ -705,7 +677,7 @@ CLASS="COMMAND"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN227"
+NAME="AEN221"
 ></A
 ><H2
 >BUGS</H2
@@ -750,7 +722,7 @@ CLASS="COMMAND"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN237"
+NAME="AEN231"
 ></A
 ><H2
 >VERSION</H2
@@ -761,7 +733,7 @@ NAME="AEN237"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN240"
+NAME="AEN234"
 ></A
 ><H2
 >AUTHOR</H2
diff --git a/docs/htmldocs/samba-bdc.html b/docs/htmldocs/samba-bdc.html
index 85ec191a992..553e9d70d01 100644
--- a/docs/htmldocs/samba-bdc.html
+++ b/docs/htmldocs/samba-bdc.html
@@ -9,15 +9,12 @@ CONTENT="Modular DocBook HTML Stylesheet Version 1.77"><LINK
 REL="HOME"
 TITLE="SAMBA Project Documentation"
 HREF="samba-howto-collection.html"><LINK
-REL="UP"
-TITLE="Type of installation"
-HREF="type.html"><LINK
 REL="PREVIOUS"
-TITLE="How to Configure Samba as a NT4 Primary Domain Controller"
+TITLE="How to Configure Samba 2.2 as a Primary Domain Controller"
 HREF="samba-pdc.html"><LINK
 REL="NEXT"
-TITLE="Samba as a ADS domain member"
-HREF="ads.html"></HEAD
+TITLE="Storing Samba's User/Machine Account information in an LDAP Directory"
+HREF="samba-ldap-howto.html"></HEAD
 ><BODY
 CLASS="CHAPTER"
 BGCOLOR="#FFFFFF"
@@ -59,7 +56,7 @@ WIDTH="10%"
 ALIGN="right"
 VALIGN="bottom"
 ><A
-HREF="ads.html"
+HREF="samba-ldap-howto.html"
 ACCESSKEY="N"
 >Next</A
 ></TD
@@ -74,15 +71,15 @@ CLASS="CHAPTER"
 ><A
 NAME="SAMBA-BDC"
 ></A
->Chapter 8. How to Act as a Backup Domain Controller in a Purely Samba Controlled Domain</H1
+>Chapter 12. How to Act as a Backup Domain Controller in a Purely Samba Controlled Domain</H1
 ><DIV
 CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN1143"
+NAME="AEN2148"
 ></A
->8.1. Prerequisite Reading</H1
+>12.1. Prerequisite Reading</H1
 ><P
 >Before you continue reading in this chapter, please make sure
 that you are comfortable with configuring a Samba PDC
@@ -97,9 +94,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN1147"
+NAME="AEN2152"
 ></A
->8.2. Background</H1
+>12.2. Background</H1
 ><P
 >What is a Domain Controller? It is a machine that is able to answer
 logon requests from workstations in a Windows NT Domain. Whenever a
@@ -142,9 +139,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN1155"
+NAME="AEN2160"
 ></A
->8.3. What qualifies a Domain Controller on the network?</H1
+>12.3. What qualifies a Domain Controller on the network?</H1
 ><P
 >Every machine that is a Domain Controller for the domain SAMBA has to
 register the NetBIOS group name SAMBA#1c with the WINS server and/or
@@ -159,9 +156,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN1158"
+NAME="AEN2163"
 ></A
->8.3.1. How does a Workstation find its domain controller?</H2
+>12.3.1. How does a Workstation find its domain controller?</H2
 ><P
 >A NT workstation in the domain SAMBA that wants a local user to be
 authenticated has to find the domain controller for SAMBA. It does
@@ -178,9 +175,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN1161"
+NAME="AEN2166"
 ></A
->8.3.2. When is the PDC needed?</H2
+>12.3.2. When is the PDC needed?</H2
 ><P
 >Whenever a user wants to change his password, this has to be done on
 the PDC. To find the PDC, the workstation does a NetBIOS name query
@@ -194,9 +191,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN1164"
+NAME="AEN2169"
 ></A
->8.4. Can Samba be a Backup Domain Controller?</H1
+>12.4. Can Samba be a Backup Domain Controller?</H1
 ><P
 >With version 2.2, no. The native NT SAM replication protocols have
 not yet been fully implemented. The Samba Team is working on
@@ -213,9 +210,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN1168"
+NAME="AEN2173"
 ></A
->8.5. How do I set up a Samba BDC?</H1
+>12.5. How do I set up a Samba BDC?</H1
 ><P
 >Several things have to be done:</P
 ><P
@@ -280,9 +277,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN1185"
+NAME="AEN2190"
 ></A
->8.5.1. How do I replicate the smbpasswd file?</H2
+>12.5.1. How do I replicate the smbpasswd file?</H2
 ><P
 >Replication of the smbpasswd file is sensitive. It has to be done
 whenever changes to the SAM are made. Every user's password change is
@@ -332,7 +329,7 @@ WIDTH="33%"
 ALIGN="right"
 VALIGN="top"
 ><A
-HREF="ads.html"
+HREF="samba-ldap-howto.html"
 ACCESSKEY="N"
 >Next</A
 ></TD
@@ -342,21 +339,17 @@ ACCESSKEY="N"
 WIDTH="33%"
 ALIGN="left"
 VALIGN="top"
->How to Configure Samba as a NT4 Primary Domain Controller</TD
+>How to Configure Samba 2.2 as a Primary Domain Controller</TD
 ><TD
 WIDTH="34%"
 ALIGN="center"
 VALIGN="top"
-><A
-HREF="type.html"
-ACCESSKEY="U"
->Up</A
-></TD
+>&nbsp;</TD
 ><TD
 WIDTH="33%"
 ALIGN="right"
 VALIGN="top"
->Samba as a ADS domain member</TD
+>Storing Samba's User/Machine Account information in an LDAP Directory</TD
 ></TR
 ></TABLE
 ></DIV
diff --git a/docs/htmldocs/samba-ldap-howto.html b/docs/htmldocs/samba-ldap-howto.html
index 17f74b9bbc3..cefde0356d9 100644
--- a/docs/htmldocs/samba-ldap-howto.html
+++ b/docs/htmldocs/samba-ldap-howto.html
@@ -9,15 +9,12 @@ CONTENT="Modular DocBook HTML Stylesheet Version 1.77"><LINK
 REL="HOME"
 TITLE="SAMBA Project Documentation"
 HREF="samba-howto-collection.html"><LINK
-REL="UP"
-TITLE="Optional configuration"
-HREF="optional.html"><LINK
 REL="PREVIOUS"
-TITLE="Stackable VFS modules"
-HREF="vfs.html"><LINK
+TITLE="How to Act as a Backup Domain Controller in a Purely Samba Controlled Domain"
+HREF="samba-bdc.html"><LINK
 REL="NEXT"
-TITLE="HOWTO Access Samba source code via CVS"
-HREF="cvs-access.html"></HEAD
+TITLE="Using samba 3.0 with ActiveDirectory support"
+HREF="ads.html"></HEAD
 ><BODY
 CLASS="CHAPTER"
 BGCOLOR="#FFFFFF"
@@ -45,7 +42,7 @@ WIDTH="10%"
 ALIGN="left"
 VALIGN="bottom"
 ><A
-HREF="vfs.html"
+HREF="samba-bdc.html"
 ACCESSKEY="P"
 >Prev</A
 ></TD
@@ -59,7 +56,7 @@ WIDTH="10%"
 ALIGN="right"
 VALIGN="bottom"
 ><A
-HREF="cvs-access.html"
+HREF="ads.html"
 ACCESSKEY="N"
 >Next</A
 ></TD
@@ -74,15 +71,15 @@ CLASS="CHAPTER"
 ><A
 NAME="SAMBA-LDAP-HOWTO"
 ></A
->Chapter 20. Storing Samba's User/Machine Account information in an LDAP Directory</H1
+>Chapter 13. Storing Samba's User/Machine Account information in an LDAP Directory</H1
 ><DIV
 CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN2747"
+NAME="AEN2211"
 ></A
->20.1. Purpose</H1
+>13.1. Purpose</H1
 ><P
 >This document describes how to use an LDAP directory for storing Samba user
 account information traditionally stored in the smbpasswd(5) file.  It is
@@ -148,9 +145,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN2767"
+NAME="AEN2231"
 ></A
->20.2. Introduction</H1
+>13.2. Introduction</H1
 ><P
 >Traditionally, when configuring <A
 HREF="smb.conf.5.html#ENCRYPTPASSWORDS"
@@ -265,9 +262,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN2796"
+NAME="AEN2260"
 ></A
->20.3. Supported LDAP Servers</H1
+>13.3. Supported LDAP Servers</H1
 ><P
 >The LDAP samdb code in 2.2.3 has been developed and tested using the OpenLDAP
 2.0 server and client libraries.  The same code should be able to work with
@@ -290,9 +287,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN2801"
+NAME="AEN2265"
 ></A
->20.4. Schema and Relationship to the RFC 2307 posixAccount</H1
+>13.4. Schema and Relationship to the RFC 2307 posixAccount</H1
 ><P
 >Samba 2.2.3 includes the necessary schema file for OpenLDAP 2.0 in
 <TT
@@ -349,17 +346,17 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN2813"
+NAME="AEN2277"
 ></A
->20.5. Configuring Samba with LDAP</H1
+>13.5. Configuring Samba with LDAP</H1
 ><DIV
 CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN2815"
+NAME="AEN2279"
 ></A
->20.5.1. OpenLDAP configuration</H2
+>13.5.1. OpenLDAP configuration</H2
 ><P
 >To include support for the sambaAccount object in an OpenLDAP directory
 server, first copy the samba.schema file to slapd's configuration directory.</P
@@ -439,9 +436,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN2832"
+NAME="AEN2296"
 ></A
->20.5.2. Configuring Samba</H2
+>13.5.2. Configuring Samba</H2
 ><P
 >The following parameters are available in smb.conf only with <TT
 CLASS="PARAMETER"
@@ -559,9 +556,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN2860"
+NAME="AEN2324"
 ></A
->20.6. Accounts and Groups management</H1
+>13.6. Accounts and Groups management</H1
 ><P
 >As users accounts are managed thru the sambaAccount objectclass, you should
 modify you existing administration tools to deal with sambaAccount attributes.</P
@@ -584,9 +581,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN2865"
+NAME="AEN2329"
 ></A
->20.7. Security and sambaAccount</H1
+>13.7. Security and sambaAccount</H1
 ><P
 >There are two important points to remember when discussing the security
 of sambaAccount entries in the directory.</P
@@ -663,9 +660,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN2885"
+NAME="AEN2349"
 ></A
->20.8. LDAP specials attributes for sambaAccounts</H1
+>13.8. LDAP specials attributes for sambaAccounts</H1
 ><P
 >The sambaAccount objectclass is composed of the following attributes:</P
 ><P
@@ -874,9 +871,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN2955"
+NAME="AEN2419"
 ></A
->20.9. Example LDIF Entries for a sambaAccount</H1
+>13.9. Example LDIF Entries for a sambaAccount</H1
 ><P
 >The following is a working LDIF with the inclusion of the posixAccount objectclass:</P
 ><P
@@ -932,9 +929,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN2963"
+NAME="AEN2427"
 ></A
->20.10. Comments</H1
+>13.10. Comments</H1
 ><P
 >Please mail all comments regarding this HOWTO to <A
 HREF="mailto:jerry@samba.org"
@@ -960,7 +957,7 @@ WIDTH="33%"
 ALIGN="left"
 VALIGN="top"
 ><A
-HREF="vfs.html"
+HREF="samba-bdc.html"
 ACCESSKEY="P"
 >Prev</A
 ></TD
@@ -978,7 +975,7 @@ WIDTH="33%"
 ALIGN="right"
 VALIGN="top"
 ><A
-HREF="cvs-access.html"
+HREF="ads.html"
 ACCESSKEY="N"
 >Next</A
 ></TD
@@ -988,21 +985,17 @@ ACCESSKEY="N"
 WIDTH="33%"
 ALIGN="left"
 VALIGN="top"
->Stackable VFS modules</TD
+>How to Act as a Backup Domain Controller in a Purely Samba Controlled Domain</TD
 ><TD
 WIDTH="34%"
 ALIGN="center"
 VALIGN="top"
-><A
-HREF="optional.html"
-ACCESSKEY="U"
->Up</A
-></TD
+>&nbsp;</TD
 ><TD
 WIDTH="33%"
 ALIGN="right"
 VALIGN="top"
->HOWTO Access Samba source code via CVS</TD
+>Using samba 3.0 with ActiveDirectory support</TD
 ></TR
 ></TABLE
 ></DIV
diff --git a/docs/htmldocs/securitylevels.html b/docs/htmldocs/securitylevels.html
index f1e9297fca2..b9844268559 100644
--- a/docs/htmldocs/securitylevels.html
+++ b/docs/htmldocs/securitylevels.html
@@ -2,22 +2,19 @@
 <HTML
 ><HEAD
 ><TITLE
->User and Share security level (for servers not in a domain)</TITLE
+>Security levels</TITLE
 ><META
 NAME="GENERATOR"
 CONTENT="Modular DocBook HTML Stylesheet Version 1.77"><LINK
 REL="HOME"
 TITLE="SAMBA Project Documentation"
 HREF="samba-howto-collection.html"><LINK
-REL="UP"
-TITLE="Type of installation"
-HREF="type.html"><LINK
 REL="PREVIOUS"
-TITLE="Type of installation"
-HREF="type.html"><LINK
+TITLE="Debugging Printing Problems"
+HREF="printingdebug.html"><LINK
 REL="NEXT"
-TITLE="How to Configure Samba as a NT4 Primary Domain Controller"
-HREF="samba-pdc.html"></HEAD
+TITLE="security = domain in Samba 2.x"
+HREF="domain-security.html"></HEAD
 ><BODY
 CLASS="CHAPTER"
 BGCOLOR="#FFFFFF"
@@ -45,7 +42,7 @@ WIDTH="10%"
 ALIGN="left"
 VALIGN="bottom"
 ><A
-HREF="type.html"
+HREF="printingdebug.html"
 ACCESSKEY="P"
 >Prev</A
 ></TD
@@ -59,7 +56,7 @@ WIDTH="10%"
 ALIGN="right"
 VALIGN="bottom"
 ><A
-HREF="samba-pdc.html"
+HREF="domain-security.html"
 ACCESSKEY="N"
 >Next</A
 ></TD
@@ -74,7 +71,61 @@ CLASS="CHAPTER"
 ><A
 NAME="SECURITYLEVELS"
 ></A
->Chapter 6. User and Share security level (for servers not in a domain)</H1
+>Chapter 8. Security levels</H1
+><DIV
+CLASS="SECT1"
+><H1
+CLASS="SECT1"
+><A
+NAME="AEN1089"
+></A
+>8.1. Introduction</H1
+><P
+>Samba supports the following options to the global smb.conf parameter</P
+><P
+><PRE
+CLASS="PROGRAMLISTING"
+>[global]
+<A
+HREF="smb.conf.5.html#SECURITY"
+TARGET="_top"
+><TT
+CLASS="PARAMETER"
+><I
+>security</I
+></TT
+></A
+> = [share|user(default)|domain|ads]</PRE
+></P
+><P
+>Please refer to the smb.conf man page for usage information and to the document
+<A
+HREF="DOMAIN_MEMBER.html"
+TARGET="_top"
+>DOMAIN_MEMBER.html</A
+> for further background details
+on domain mode security.  The Windows 2000 Kerberos domain security model
+(security = ads) is described in the <A
+HREF="ADS-HOWTO.html"
+TARGET="_top"
+>ADS-HOWTO.html</A
+>.</P
+><P
+>Of the above, "security = server" means that Samba reports to clients that
+it is running in "user mode" but actually passes off all authentication
+requests to another "user mode" server. This requires an additional
+parameter "password server =" that points to the real authentication server.
+That real authentication server can be another Samba server or can be a
+Windows NT server, the later natively capable of encrypted password support.</P
+></DIV
+><DIV
+CLASS="SECT1"
+><H1
+CLASS="SECT1"
+><A
+NAME="AEN1100"
+></A
+>8.2. More complete description of security levels</H1
 ><P
 >A SMB server tells the client at startup what "security level" it is
 running. There are two options "share level" and "user level". Which
@@ -160,13 +211,7 @@ smbpasswd file with SMB style encrypted passwords. It is
 cryptographically impossible to translate from unix style encryption
 to SMB style encryption, although there are some fairly simple management
 schemes by which the two could be kept in sync.</P
-><P
->"security = server" means that Samba reports to clients that
-it is running in "user mode" but actually passes off all authentication
-requests to another "user mode" server. This requires an additional
-parameter "password server =" that points to the real authentication server.
-That real authentication server can be another Samba server or can be a
-Windows NT server, the later natively capable of encrypted password support.</P
+></DIV
 ></DIV
 ><DIV
 CLASS="NAVFOOTER"
@@ -184,7 +229,7 @@ WIDTH="33%"
 ALIGN="left"
 VALIGN="top"
 ><A
-HREF="type.html"
+HREF="printingdebug.html"
 ACCESSKEY="P"
 >Prev</A
 ></TD
@@ -202,7 +247,7 @@ WIDTH="33%"
 ALIGN="right"
 VALIGN="top"
 ><A
-HREF="samba-pdc.html"
+HREF="domain-security.html"
 ACCESSKEY="N"
 >Next</A
 ></TD
@@ -212,21 +257,17 @@ ACCESSKEY="N"
 WIDTH="33%"
 ALIGN="left"
 VALIGN="top"
->Type of installation</TD
+>Debugging Printing Problems</TD
 ><TD
 WIDTH="34%"
 ALIGN="center"
 VALIGN="top"
-><A
-HREF="type.html"
-ACCESSKEY="U"
->Up</A
-></TD
+>&nbsp;</TD
 ><TD
 WIDTH="33%"
 ALIGN="right"
 VALIGN="top"
->How to Configure Samba as a NT4 Primary Domain Controller</TD
+>security = domain in Samba 2.x</TD
 ></TR
 ></TABLE
 ></DIV
diff --git a/docs/htmldocs/smb.conf.5.html b/docs/htmldocs/smb.conf.5.html
index d409469e7cb..14820cb6237 100644
--- a/docs/htmldocs/smb.conf.5.html
+++ b/docs/htmldocs/smb.conf.5.html
@@ -531,6 +531,31 @@ NAME="AEN112"
 CLASS="VARIABLELIST"
 ><DL
 ><DT
+>%S</DT
+><DD
+><P
+>the name of the current service, if any.</P
+></DD
+><DT
+>%P</DT
+><DD
+><P
+>the root directory of the current service, 
+		if any.</P
+></DD
+><DT
+>%u</DT
+><DD
+><P
+>user name of the current service, if any.</P
+></DD
+><DT
+>%g</DT
+><DD
+><P
+>primary group name of %u.</P
+></DD
+><DT
 >%U</DT
 ><DD
 ><P
@@ -544,6 +569,19 @@ CLASS="VARIABLELIST"
 >primary group name of %U.</P
 ></DD
 ><DT
+>%H</DT
+><DD
+><P
+>the home directory of the user given 
+		by %u.</P
+></DD
+><DT
+>%v</DT
+><DD
+><P
+>the Samba version.</P
+></DD
+><DT
 >%h</DT
 ><DD
 ><P
@@ -576,6 +614,29 @@ CLASS="VARIABLELIST"
 		</P
 ></DD
 ><DT
+>%N</DT
+><DD
+><P
+>the name of your NIS home directory server.  
+		This is obtained from your NIS auto.map entry.  If you have 
+		not compiled Samba with the <SPAN
+CLASS="emphasis"
+><I
+CLASS="EMPHASIS"
+>--with-automount</I
+></SPAN
+> 
+		option then this value will be the same as %L.</P
+></DD
+><DT
+>%p</DT
+><DD
+><P
+>the path of the service's home directory, 
+		obtained from your NIS auto.map entry. The NIS auto.map entry 
+		is split up as "%N:%p".</P
+></DD
+><DT
 >%R</DT
 ><DD
 ><P
@@ -619,12 +680,6 @@ TARGET="_top"
 >the current date and time.</P
 ></DD
 ><DT
->%D</DT
-><DD
-><P
->Name of the domain or workgroup of the current user.</P
-></DD
-><DT
 >%$(<TT
 CLASS="REPLACEABLE"
 ><I
@@ -644,78 +699,13 @@ CLASS="REPLACEABLE"
 ></DL
 ></DIV
 ><P
->The following substitutes apply only to some configuration options(only those 
-	that are used when a connection has been established):</P
-><P
-></P
-><DIV
-CLASS="VARIABLELIST"
-><DL
-><DT
->%S</DT
-><DD
-><P
->the name of the current service, if any.</P
-></DD
-><DT
->%P</DT
-><DD
-><P
->the root directory of the current service, 
-		if any.</P
-></DD
-><DT
->%u</DT
-><DD
-><P
->user name of the current service, if any.</P
-></DD
-><DT
->%g</DT
-><DD
-><P
->primary group name of %u.</P
-></DD
-><DT
->%H</DT
-><DD
-><P
->the home directory of the user given 
-		by %u.</P
-></DD
-><DT
->%N</DT
-><DD
-><P
->the name of your NIS home directory server.  
-		This is obtained from your NIS auto.map entry.  If you have 
-		not compiled Samba with the <SPAN
-CLASS="emphasis"
-><I
-CLASS="EMPHASIS"
->--with-automount</I
-></SPAN
-> 
-		option then this value will be the same as %L.</P
-></DD
-><DT
->%p</DT
-><DD
-><P
->the path of the service's home directory, 
-		obtained from your NIS auto.map entry. The NIS auto.map entry 
-		is split up as "%N:%p".</P
-></DD
-></DL
-></DIV
-><P
 >There are some quite creative things that can be done 
 	with these substitutions and other smb.conf options.</P
 ></DIV
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN205"
+NAME="AEN203"
 ></A
 ><H2
 >NAME MANGLING</H2
@@ -814,13 +804,13 @@ CLASS="EMPHASIS"
 ></DL
 ></DIV
 ><P
->By default, Samba 3.0 has the same semantics as a Windows 
+>By default, Samba 2.2 has the same semantics as a Windows 
 	NT server, in that it is case insensitive but case preserving.</P
 ></DIV
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN238"
+NAME="AEN236"
 ></A
 ><H2
 >NOTE ABOUT USERNAME/PASSWORD VALIDATION</H2
@@ -898,7 +888,7 @@ CLASS="FILENAME"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN257"
+NAME="AEN255"
 ></A
 ><H2
 >COMPLETE LIST OF GLOBAL PARAMETERS</H2
@@ -1679,18 +1669,6 @@ CLASS="PARAMETER"
 ><LI
 ><P
 ><A
-HREF="#LDAPTRUSTIDS"
-><TT
-CLASS="PARAMETER"
-><I
->ldap trust ids</I
-></TT
-></A
-></P
-></LI
-><LI
-><P
-><A
 HREF="#LMANNOUNCE"
 ><TT
 CLASS="PARAMETER"
@@ -3169,7 +3147,7 @@ CLASS="PARAMETER"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN1013"
+NAME="AEN1007"
 ></A
 ><H2
 >COMPLETE LIST OF SERVICE PARAMETERS</H2
@@ -4672,7 +4650,7 @@ CLASS="PARAMETER"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN1513"
+NAME="AEN1507"
 ></A
 ><H2
 >EXPLANATION OF EACH PARAMETER</H2
@@ -5504,12 +5482,12 @@ NAME="ANNOUNCEVERSION"
 ><P
 >This specifies the major and minor version numbers 
 		that nmbd will use when announcing itself as a server. The default 
-		is 4.9.  Do not change this parameter unless you have a specific 
+		is 4.2.  Do not change this parameter unless you have a specific 
 		need to set a Samba server to be a downlevel server.</P
 ><P
 >Default: <B
 CLASS="COMMAND"
->announce version = 4.9</B
+>announce version = 4.5</B
 ></P
 ><P
 >Example: <B
@@ -5851,7 +5829,7 @@ TARGET="_top"
 		request has a time limit associated with it.</P
 ><P
 >If this parameter is set and the lock range requested 
-		cannot be immediately satisfied, samba will internally 
+		cannot be immediately satisfied, Samba 2.2 will internally 
 		queue the lock request, and periodically attempt to obtain 
 		the lock until the timeout period expires.</P
 ><P
@@ -5859,7 +5837,7 @@ TARGET="_top"
 CLASS="CONSTANT"
 >no</TT
 >, then 
-		samba will behave as previous versions of Samba would and 
+		Samba 2.2 will behave as previous versions of Samba would and 
 		will fail the lock request immediately if the lock range 
 		cannot be obtained.</P
 ><P
@@ -5975,7 +5953,7 @@ NAME="CASESENSITIVE"
 ><DD
 ><P
 >See the discussion in the section <A
-HREF="#AEN205"
+HREF="#AEN203"
 >NAME MANGLING</A
 >.</P
 ><P
@@ -6538,7 +6516,7 @@ NAME="DEBUGTIMESTAMP"
 >debug timestamp (G)</DT
 ><DD
 ><P
->Samba debug log messages are timestamped 
+>Samba 2.2 debug log messages are timestamped 
 		by default. If you are running at a high <A
 HREF="#DEBUGLEVEL"
 >		<TT
@@ -6626,7 +6604,7 @@ NAME="DEFAULTCASE"
 ><DD
 ><P
 >See the section on <A
-HREF="#AEN205"
+HREF="#AEN203"
 >		NAME MANGLING</A
 >. Also note the <A
 HREF="#SHORTPRESERVECASE"
@@ -8725,7 +8703,7 @@ CLASS="COMMAND"
 >		lp(1)</B
 >.</P
 ><P
->This parameter does not accept % macros, because
+>This paramater does not accept % macros, because
 	        many parts of the system require this value to be
 	        constant for correct operation.</P
 ><P
@@ -9994,54 +9972,40 @@ CLASS="PARAMETER"
 ><TT
 CLASS="PARAMETER"
 ><I
->Off</I
+>On</I
 ></TT
-> = Never use SSL when querying the directory.</P
-></LI
-><LI
-><P
-><TT
+>  =  Always use SSL when contacting the 
+			<TT
 CLASS="PARAMETER"
 ><I
->Start_tls</I
+>ldap	server</I
 ></TT
-> = Use the LDAPv3 StartTLS extended operation 
-			(RFC2830) for communicating with the directory server.</P
+>.</P
 ></LI
 ><LI
 ><P
 ><TT
 CLASS="PARAMETER"
 ><I
->On</I
-></TT
->  =
-			Use SSL on the ldaps port when contacting the 
-			<TT
-CLASS="PARAMETER"
-><I
->ldap	server</I
+>Off</I
 ></TT
->.  Only
-			available when the backwards-compatiblity <B
-CLASS="COMMAND"
->			--with-ldapsam</B
-> option is specified
-			to configure.  See <A
-HREF="#PASSDBBACKEND"
+> = Never use SSL when querying the directory.</P
+></LI
+><LI
+><P
 ><TT
 CLASS="PARAMETER"
 ><I
->passdb backend</I
+>Start_tls</I
 ></TT
-></A
-></P
+> = Use the LDAPv3 StartTLS extended operation 
+			(RFC2830) for communicating with the directory server.</P
 ></LI
 ></UL
 ><P
 >Default : <B
 CLASS="COMMAND"
->ldap ssl = start_tls</B
+>ldap ssl = on</B
 ></P
 ></DD
 ><DT
@@ -10051,14 +10015,6 @@ NAME="LDAPSUFFIX"
 >ldap suffix (G)</DT
 ><DD
 ><P
->Specifies where user and machine accounts are added to the tree. Can be overriden by <B
-CLASS="COMMAND"
->ldap user suffix</B
-> and <B
-CLASS="COMMAND"
->ldap machine suffix</B
->. It also used as the base dn for all ldap searches. </P
-><P
 >Default : <SPAN
 CLASS="emphasis"
 ><I
@@ -10164,35 +10120,6 @@ CLASS="COMMAND"
 ></DD
 ><DT
 ><A
-NAME="LDAPTRUSTIDS"
-></A
->ldap trust ids (G)</DT
-><DD
-><P
->Normally, Samba validates each entry
-		in the LDAP server against getpwnam().  This allows
-		LDAP to be used for Samba with the unix system using
-		NIS (for example) and also ensures that Samba does not
-		present accounts that do not otherwise exist.  </P
-><P
->This option is used to disable this functionality, and
-		instead to rely on the presence of the appropriate
-		attributes in LDAP directly, which can result in a
-		significant performance boost in some situations.  
-                Setting this option to yes effectivly assumes
-		that the local machine is running <B
-CLASS="COMMAND"
->nss_ldap</B
-> against the
-		same LDAP server.</P
-><P
->Default: <B
-CLASS="COMMAND"
->ldap trust ids = No</B
-></P
-></DD
-><DT
-><A
 NAME="LEVEL2OPLOCKS"
 ></A
 >level2 oplocks (S)</DT
@@ -11541,7 +11468,7 @@ NAME="MANGLECASE"
 ><DD
 ><P
 >See the section on <A
-HREF="#AEN205"
+HREF="#AEN203"
 >		NAME MANGLING</A
 ></P
 ><P
@@ -11617,7 +11544,7 @@ NAME="MANGLEDNAMES"
 		or whether non-DOS names should simply be ignored.</P
 ><P
 >See the section on <A
-HREF="#AEN205"
+HREF="#AEN203"
 >		NAME MANGLING</A
 > for details on how to control the mangling process.</P
 ><P
@@ -11704,39 +11631,17 @@ NAME="MANGLINGMETHOD"
 		a better algorithm (generates less collisions) in the names.
 		However, many Win32 applications store the mangled names and so
 		changing to the new algorithm must not be done
-		lightly as these applications may break unless reinstalled.</P
+		lightly as these applications may break unless reinstalled.
+		New installations of Samba may set the default to hash2.</P
 ><P
 >Default: <B
 CLASS="COMMAND"
->mangling method = hash2</B
-></P
-><P
->Example: <B
-CLASS="COMMAND"
 >mangling method = hash</B
 ></P
-></DD
-><DT
-><A
-NAME="MANGLEPREFIX"
-></A
->mangle prefix (G)</DT
-><DD
-><P
-> controls the number of prefix
-		characters from the original name used when generating
-		the mangled names. A larger value will give a weaker
-		hash and therefore more name collisions. The minimum
-		value is 1 and the maximum value is 6.</P
-><P
->Default: <B
-CLASS="COMMAND"
->mangle prefix = 1</B
-></P
 ><P
 >Example: <B
 CLASS="COMMAND"
->mangle prefix = 4</B
+>mangling method = hash2</B
 ></P
 ></DD
 ><DT
@@ -11791,7 +11696,7 @@ CLASS="EMPHASIS"
 >magic</I
 ></SPAN
 > character in <A
-HREF="#AEN205"
+HREF="#AEN203"
 >name mangling</A
 >. The default is a '~'
 		but this may interfere with some software. Use this option to set 
@@ -13772,41 +13677,15 @@ CLASS="COMMAND"
 >ldap://localhost</B
 >)</P
 ><P
->Note:  In this module, any account
-                        without a matching POSIX account is regarded
-                        as 'non unix'.
-                        </P
-><P
 >See also <A
 HREF="#NONUNIXACCOUNTRANGE"
 >                        <TT
 CLASS="PARAMETER"
 ><I
->non unix account
-                        range</I
+>non unix account range</I
 ></TT
 ></A
 ></P
-><P
->LDAP connections should be secured where
-                        possible.  This may be done using either
-                        Start-TLS (see <A
-HREF="#LDAPSSL"
->                        <TT
-CLASS="PARAMETER"
-><I
->ldap ssl</I
-></TT
-></A
->) or by
-                        specifying <TT
-CLASS="PARAMETER"
-><I
->ldaps://</I
-></TT
-> in
-                        the URL argument.  
-                        </P
 ></LI
 ><LI
 ><P
@@ -14902,7 +14781,7 @@ CLASS="COMMAND"
 ></P
 ><P
 >See the section on <A
-HREF="#AEN205"
+HREF="#AEN203"
 >NAME 
 		MANGLING</A
 > for a fuller discussion.</P
@@ -16668,7 +16547,7 @@ CLASS="EMPHASIS"
 		be used in granting access.</P
 ><P
 >See also the section <A
-HREF="#AEN238"
+HREF="#AEN236"
 >		NOTE ABOUT USERNAME/PASSWORD VALIDATION</A
 >.</P
 ><P
@@ -16761,7 +16640,7 @@ CLASS="PARAMETER"
 > parameter for details on doing this.</P
 ><P
 >See also the section <A
-HREF="#AEN238"
+HREF="#AEN236"
 >		NOTE ABOUT USERNAME/PASSWORD VALIDATION</A
 >.</P
 ><P
@@ -16853,7 +16732,7 @@ CLASS="PARAMETER"
 > parameter for details on doing this.</P
 ><P
 >See also the section <A
-HREF="#AEN238"
+HREF="#AEN236"
 >		NOTE ABOUT USERNAME/PASSWORD VALIDATION</A
 >.</P
 ><P
@@ -16992,7 +16871,7 @@ CLASS="COMMAND"
 		Domain Controller. This issue will be addressed in a future release.</P
 ><P
 >See also the section <A
-HREF="#AEN238"
+HREF="#AEN236"
 >		NOTE ABOUT USERNAME/PASSWORD VALIDATION</A
 >.</P
 ><P
@@ -17264,7 +17143,7 @@ CLASS="COMMAND"
 		names are lowered. </P
 ><P
 >See the section on <A
-HREF="#AEN205"
+HREF="#AEN203"
 >		NAME MANGLING</A
 >.</P
 ><P
@@ -18158,8 +18037,7 @@ NAME="UNICODE"
 ><DD
 ><P
 >Specifies whether Samba should try 
-		to use unicode on the wire by default. Note: This does NOT
-		mean that samba will assume that the unix machine uses unicode!
+		to use unicode on the wire by default. 
 		</P
 ><P
 >Default: <B
@@ -18183,11 +18061,6 @@ NAME="UNIXCHARSET"
 CLASS="COMMAND"
 >unix charset = ASCII</B
 ></P
-><P
->Example: <B
-CLASS="COMMAND"
->unix charset = UTF8</B
-></P
 ></DD
 ><DT
 ><A
@@ -18554,7 +18427,7 @@ CLASS="PARAMETER"
 		search.</P
 ><P
 >See the section <A
-HREF="#AEN238"
+HREF="#AEN236"
 >NOTE ABOUT 
 		USERNAME/PASSWORD VALIDATION</A
 > for more information on how 
@@ -19890,7 +19763,7 @@ CLASS="PARAMETER"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN6150"
+NAME="AEN6113"
 ></A
 ><H2
 >WARNINGS</H2
@@ -19920,18 +19793,18 @@ TARGET="_top"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN6156"
+NAME="AEN6119"
 ></A
 ><H2
 >VERSION</H2
 ><P
->This man page is correct for version 3.0 of 
+>This man page is correct for version 2.2 of 
 	the Samba suite.</P
 ></DIV
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN6159"
+NAME="AEN6122"
 ></A
 ><H2
 >SEE ALSO</H2
@@ -20010,7 +19883,7 @@ CLASS="COMMAND"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN6179"
+NAME="AEN6142"
 ></A
 ><H2
 >AUTHOR</H2
diff --git a/docs/htmldocs/smbclient.1.html b/docs/htmldocs/smbclient.1.html
index ca8cafd3129..1e251c2ca50 100644
--- a/docs/htmldocs/smbclient.1.html
+++ b/docs/htmldocs/smbclient.1.html
@@ -38,7 +38,7 @@ NAME="AEN8"
 ><B
 CLASS="COMMAND"
 >smbclient</B
->  {servicename} [password] [-b &lt;buffer size&gt;] [-d debuglevel] [-D Directory] [-U username] [-W workgroup] [-M &lt;netbios name&gt;] [-m maxprotocol] [-A authfile] [-N] [-l logfile] [-L &lt;netbios name&gt;] [-I destinationIP] [-E] [-c &lt;command string&gt;] [-i scope] [-O &lt;socket options&gt;] [-p port] [-R &lt;name resolve order&gt;] [-s &lt;smb config file&gt;] [-T&lt;c|x&gt;IXFqgbNan]</P
+>  {servicename} [password] [-b &lt;buffer size&gt;] [-d debuglevel] [-D Directory] [-U username] [-W workgroup] [-M &lt;netbios name&gt;] [-m maxprotocol] [-A authfile] [-N] [-l logfile] [-L &lt;netbios name&gt;] [-I destinationIP] [-E &lt;terminal code&gt;] [-c &lt;command string&gt;] [-i scope] [-O &lt;socket options&gt;] [-p port] [-R &lt;name resolve order&gt;] [-s &lt;smb config file&gt;] [-T&lt;c|x&gt;IXFqgbNan]</P
 ></DIV
 ><DIV
 CLASS="REFSECT1"
diff --git a/docs/htmldocs/smbpasswd.5.html b/docs/htmldocs/smbpasswd.5.html
index ac3ab946915..04fab30ed6d 100644
--- a/docs/htmldocs/smbpasswd.5.html
+++ b/docs/htmldocs/smbpasswd.5.html
@@ -301,7 +301,7 @@ NAME="AEN73"
 ><H2
 >VERSION</H2
 ><P
->This man page is correct for version 3.0 of 
+>This man page is correct for version 2.2 of 
 	the Samba suite.</P
 ></DIV
 ><DIV
diff --git a/docs/htmldocs/speed.html b/docs/htmldocs/speed.html
index 85562e3e89b..047929af48c 100644
--- a/docs/htmldocs/speed.html
+++ b/docs/htmldocs/speed.html
@@ -9,15 +9,12 @@ CONTENT="Modular DocBook HTML Stylesheet Version 1.77"><LINK
 REL="HOME"
 TITLE="SAMBA Project Documentation"
 HREF="samba-howto-collection.html"><LINK
-REL="UP"
-TITLE="Optional configuration"
-HREF="optional.html"><LINK
 REL="PREVIOUS"
-TITLE="Group mapping HOWTO"
-HREF="groupmapping.html"><LINK
+TITLE="Quick Cross Subnet Browsing / Cross Workgroup Browsing guide"
+HREF="browsing-quick.html"><LINK
 REL="NEXT"
-TITLE="Appendixes"
-HREF="appendixes.html"></HEAD
+TITLE="HOWTO Access Samba source code via CVS"
+HREF="cvs-access.html"></HEAD
 ><BODY
 CLASS="CHAPTER"
 BGCOLOR="#FFFFFF"
@@ -45,7 +42,7 @@ WIDTH="10%"
 ALIGN="left"
 VALIGN="bottom"
 ><A
-HREF="groupmapping.html"
+HREF="browsing-quick.html"
 ACCESSKEY="P"
 >Prev</A
 ></TD
@@ -59,7 +56,7 @@ WIDTH="10%"
 ALIGN="right"
 VALIGN="bottom"
 ><A
-HREF="appendixes.html"
+HREF="cvs-access.html"
 ACCESSKEY="N"
 >Next</A
 ></TD
@@ -74,15 +71,15 @@ CLASS="CHAPTER"
 ><A
 NAME="SPEED"
 ></A
->Chapter 23. Samba performance issues</H1
+>Chapter 17. Samba performance issues</H1
 ><DIV
 CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN3065"
+NAME="AEN2742"
 ></A
->23.1. Comparisons</H1
+>17.1. Comparisons</H1
 ><P
 >The Samba server uses TCP to talk to the client. Thus if you are
 trying to see if it performs well you should really compare it to
@@ -111,17 +108,17 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN3071"
+NAME="AEN2748"
 ></A
->23.2. Oplocks</H1
+>17.2. Oplocks</H1
 ><DIV
 CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN3073"
+NAME="AEN2750"
 ></A
->23.2.1. Overview</H2
+>17.2.1. Overview</H2
 ><P
 >Oplocks are the way that SMB clients get permission from a server to
 locally cache file operations. If a server grants an oplock
@@ -155,9 +152,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN3081"
+NAME="AEN2758"
 ></A
->23.2.2. Level2 Oplocks</H2
+>17.2.2. Level2 Oplocks</H2
 ><P
 >With Samba 2.0.5 a new capability - level2 (read only) oplocks is
 supported (although the option is off by default - see the smb.conf
@@ -179,9 +176,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN3087"
+NAME="AEN2764"
 ></A
->23.2.3. Old 'fake oplocks' option - deprecated</H2
+>17.2.3. Old 'fake oplocks' option - deprecated</H2
 ><P
 >Samba can also fake oplocks, by granting a oplock whenever a client 
 asks for one. This is controlled using the smb.conf option "fake 
@@ -200,9 +197,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN3091"
+NAME="AEN2768"
 ></A
->23.3. Socket options</H1
+>17.3. Socket options</H1
 ><P
 >There are a number of socket options that can greatly affect the
 performance of a TCP based server like Samba.</P
@@ -228,9 +225,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN3098"
+NAME="AEN2775"
 ></A
->23.4. Read size</H1
+>17.4. Read size</H1
 ><P
 >The option "read size" affects the overlap of disk reads/writes with
 network reads/writes. If the amount of data being transferred in
@@ -254,9 +251,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN3103"
+NAME="AEN2780"
 ></A
->23.5. Max xmit</H1
+>17.5. Max xmit</H1
 ><P
 >At startup the client and server negotiate a "maximum transmit" size,
 which limits the size of nearly all SMB commands. You can set the
@@ -277,9 +274,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN3108"
+NAME="AEN2785"
 ></A
->23.6. Locking</H1
+>17.6. Locking</H1
 ><P
 >By default Samba does not implement strict locking on each read/write
 call (although it did in previous versions). If you enable strict
@@ -294,9 +291,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN3112"
+NAME="AEN2789"
 ></A
->23.7. Share modes</H1
+>17.7. Share modes</H1
 ><P
 >Some people find that opening files is very slow. This is often
 because of the "share modes" code needed to fully implement the dos
@@ -324,9 +321,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN3117"
+NAME="AEN2794"
 ></A
->23.8. Log level</H1
+>17.8. Log level</H1
 ><P
 >If you set the log level (also known as "debug level") higher than 2
 then you may suffer a large drop in performance. This is because the
@@ -338,9 +335,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN3120"
+NAME="AEN2797"
 ></A
->23.9. Wide lines</H1
+>17.9. Wide lines</H1
 ><P
 >The "wide links" option is now enabled by default, but if you disable
 it (for better security) then you may suffer a performance hit in
@@ -352,9 +349,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN3123"
+NAME="AEN2800"
 ></A
->23.10. Read raw</H1
+>17.10. Read raw</H1
 ><P
 >The "read raw" operation is designed to be an optimised, low-latency
 file read operation. A server may choose to not support it,
@@ -374,9 +371,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN3128"
+NAME="AEN2805"
 ></A
->23.11. Write raw</H1
+>17.11. Write raw</H1
 ><P
 >The "write raw" operation is designed to be an optimised, low-latency
 file write operation. A server may choose to not support it,
@@ -391,9 +388,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN3132"
+NAME="AEN2809"
 ></A
->23.12. Read prediction</H1
+>17.12. Read prediction</H1
 ><P
 >Samba can do read prediction on some of the SMB commands. Read
 prediction means that Samba reads some extra data on the last file it
@@ -417,9 +414,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN3139"
+NAME="AEN2816"
 ></A
->23.13. Memory mapping</H1
+>17.13. Memory mapping</H1
 ><P
 >Samba supports reading files via memory mapping them. One some
 machines this can give a large boost to performance, on others it
@@ -438,9 +435,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN3144"
+NAME="AEN2821"
 ></A
->23.14. Slow Clients</H1
+>17.14. Slow Clients</H1
 ><P
 >One person has reported that setting the protocol to COREPLUS rather
 than LANMAN2 gave a dramatic speed improvement (from 10k/s to 150k/s).</P
@@ -455,9 +452,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN3148"
+NAME="AEN2825"
 ></A
->23.15. Slow Logins</H1
+>17.15. Slow Logins</H1
 ><P
 >Slow logins are almost always due to the password checking time. Using
 the lowest practical "password level" will improve things a lot. You
@@ -468,9 +465,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN3151"
+NAME="AEN2828"
 ></A
->23.16. Client tuning</H1
+>17.16. Client tuning</H1
 ><P
 >Often a speed problem can be traced to the client. The client (for
 example Windows for Workgroups) can often be tuned for better TCP
@@ -572,9 +569,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN3183"
+NAME="AEN2860"
 ></A
->23.17. My Results</H1
+>17.17. My Results</H1
 ><P
 >Some people want to see real numbers in a document like this, so here
 they are. I have a 486sx33 client running WfWg 3.11 with the 3.11b
@@ -613,7 +610,7 @@ WIDTH="33%"
 ALIGN="left"
 VALIGN="top"
 ><A
-HREF="groupmapping.html"
+HREF="browsing-quick.html"
 ACCESSKEY="P"
 >Prev</A
 ></TD
@@ -631,7 +628,7 @@ WIDTH="33%"
 ALIGN="right"
 VALIGN="top"
 ><A
-HREF="appendixes.html"
+HREF="cvs-access.html"
 ACCESSKEY="N"
 >Next</A
 ></TD
@@ -641,21 +638,17 @@ ACCESSKEY="N"
 WIDTH="33%"
 ALIGN="left"
 VALIGN="top"
->Group mapping HOWTO</TD
+>Quick Cross Subnet Browsing / Cross Workgroup Browsing guide</TD
 ><TD
 WIDTH="34%"
 ALIGN="center"
 VALIGN="top"
-><A
-HREF="optional.html"
-ACCESSKEY="U"
->Up</A
-></TD
+>&nbsp;</TD
 ><TD
 WIDTH="33%"
 ALIGN="right"
 VALIGN="top"
->Appendixes</TD
+>HOWTO Access Samba source code via CVS</TD
 ></TR
 ></TABLE
 ></DIV
diff --git a/docs/htmldocs/unix-permissions.html b/docs/htmldocs/unix-permissions.html
index 864fedea7bc..9faf0eba28c 100644
--- a/docs/htmldocs/unix-permissions.html
+++ b/docs/htmldocs/unix-permissions.html
@@ -9,16 +9,12 @@ CONTENT="Modular DocBook HTML Stylesheet Version 1.77"><LINK
 REL="HOME"
 TITLE="SAMBA Project Documentation"
 HREF="samba-howto-collection.html"><LINK
-REL="UP"
-TITLE="Optional configuration"
-HREF="optional.html"><LINK
 REL="PREVIOUS"
-TITLE="Integrating MS Windows networks with Samba"
-HREF="integrate-ms-networks.html"><LINK
+TITLE="Hosting a Microsoft Distributed File System tree on Samba"
+HREF="msdfs.html"><LINK
 REL="NEXT"
-TITLE="Configuring PAM for distributed but centrally 
-managed authentication"
-HREF="pam.html"></HEAD
+TITLE="Printing Support in Samba 2.2.x"
+HREF="printing.html"></HEAD
 ><BODY
 CLASS="CHAPTER"
 BGCOLOR="#FFFFFF"
@@ -46,7 +42,7 @@ WIDTH="10%"
 ALIGN="left"
 VALIGN="bottom"
 ><A
-HREF="integrate-ms-networks.html"
+HREF="msdfs.html"
 ACCESSKEY="P"
 >Prev</A
 ></TD
@@ -60,7 +56,7 @@ WIDTH="10%"
 ALIGN="right"
 VALIGN="bottom"
 ><A
-HREF="pam.html"
+HREF="printing.html"
 ACCESSKEY="N"
 >Next</A
 ></TD
@@ -75,15 +71,15 @@ CLASS="CHAPTER"
 ><A
 NAME="UNIX-PERMISSIONS"
 ></A
->Chapter 12. UNIX Permission Bits and Windows NT Access Control Lists</H1
+>Chapter 5. UNIX Permission Bits and Windows NT Access Control Lists</H1
 ><DIV
 CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN1618"
+NAME="AEN580"
 ></A
->12.1. Viewing and changing UNIX permissions using the NT 
+>5.1. Viewing and changing UNIX permissions using the NT 
 	security dialogs</H1
 ><P
 >New in the Samba 2.0.4 release is the ability for Windows 
@@ -120,9 +116,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN1627"
+NAME="AEN589"
 ></A
->12.2. How to view file security on a Samba share</H1
+>5.2. How to view file security on a Samba share</H1
 ><P
 >From an NT 4.0 client, single-click with the right 
 	mouse button on any file or directory in a Samba mounted 
@@ -190,9 +186,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN1638"
+NAME="AEN600"
 ></A
->12.3. Viewing file ownership</H1
+>5.3. Viewing file ownership</H1
 ><P
 >Clicking on the <B
 CLASS="COMMAND"
@@ -284,9 +280,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN1658"
+NAME="AEN620"
 ></A
->12.4. Viewing file or directory permissions</H1
+>5.4. Viewing file or directory permissions</H1
 ><P
 >The third button is the <B
 CLASS="COMMAND"
@@ -346,9 +342,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN1673"
+NAME="AEN635"
 ></A
->12.4.1. File Permissions</H2
+>5.4.1. File Permissions</H2
 ><P
 >The standard UNIX user/group/world triple and 
 		the corresponding "read", "write", "execute" permissions 
@@ -408,9 +404,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN1687"
+NAME="AEN649"
 ></A
->12.4.2. Directory Permissions</H2
+>5.4.2. Directory Permissions</H2
 ><P
 >Directories on an NT NTFS file system have two 
 		different sets of permissions. The first set of permissions 
@@ -440,9 +436,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN1694"
+NAME="AEN656"
 ></A
->12.5. Modifying file or directory permissions</H1
+>5.5. Modifying file or directory permissions</H1
 ><P
 >Modifying file and directory permissions is as simple 
 	as changing the displayed permissions in the dialog box, and 
@@ -538,9 +534,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN1716"
+NAME="AEN678"
 ></A
->12.6. Interaction with the standard Samba create mask 
+>5.6. Interaction with the standard Samba create mask 
 	parameters</H1
 ><P
 >Note that with Samba 2.0.5 there are four new parameters 
@@ -815,9 +811,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN1780"
+NAME="AEN742"
 ></A
->12.7. Interaction with the standard Samba file attribute 
+>5.7. Interaction with the standard Samba file attribute 
 	mapping</H1
 ><P
 >Samba maps some of the DOS attribute bits (such as "read 
@@ -874,7 +870,7 @@ WIDTH="33%"
 ALIGN="left"
 VALIGN="top"
 ><A
-HREF="integrate-ms-networks.html"
+HREF="msdfs.html"
 ACCESSKEY="P"
 >Prev</A
 ></TD
@@ -892,7 +888,7 @@ WIDTH="33%"
 ALIGN="right"
 VALIGN="top"
 ><A
-HREF="pam.html"
+HREF="printing.html"
 ACCESSKEY="N"
 >Next</A
 ></TD
@@ -902,22 +898,17 @@ ACCESSKEY="N"
 WIDTH="33%"
 ALIGN="left"
 VALIGN="top"
->Integrating MS Windows networks with Samba</TD
+>Hosting a Microsoft Distributed File System tree on Samba</TD
 ><TD
 WIDTH="34%"
 ALIGN="center"
 VALIGN="top"
-><A
-HREF="optional.html"
-ACCESSKEY="U"
->Up</A
-></TD
+>&nbsp;</TD
 ><TD
 WIDTH="33%"
 ALIGN="right"
 VALIGN="top"
->Configuring PAM for distributed but centrally 
-managed authentication</TD
+>Printing Support in Samba 2.2.x</TD
 ></TR
 ></TABLE
 ></DIV
diff --git a/docs/htmldocs/vfstest.1.html b/docs/htmldocs/vfstest.1.html
deleted file mode 100644
index 3db7ff3d977..00000000000
--- a/docs/htmldocs/vfstest.1.html
+++ /dev/null
@@ -1,496 +0,0 @@
-<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
-<HTML
-><HEAD
-><TITLE
->vfstest</TITLE
-><META
-NAME="GENERATOR"
-CONTENT="Modular DocBook HTML Stylesheet Version 1.77"></HEAD
-><BODY
-CLASS="REFENTRY"
-BGCOLOR="#FFFFFF"
-TEXT="#000000"
-LINK="#0000FF"
-VLINK="#840084"
-ALINK="#0000FF"
-><H1
-><A
-NAME="VFSTEST"
-></A
->vfstest</H1
-><DIV
-CLASS="REFNAMEDIV"
-><A
-NAME="AEN5"
-></A
-><H2
->Name</H2
->vfstest&nbsp;--&nbsp;tool for testing samba VFS modules </DIV
-><DIV
-CLASS="REFSYNOPSISDIV"
-><A
-NAME="AEN8"
-></A
-><H2
->Synopsis</H2
-><P
-><B
-CLASS="COMMAND"
->vfstest</B
->  [-d debuglevel] [-c command] [-l logfile] [-h]</P
-></DIV
-><DIV
-CLASS="REFSECT1"
-><A
-NAME="AEN15"
-></A
-><H2
->DESCRIPTION</H2
-><P
->This tool is part of the <A
-HREF="samba.7.html"
-TARGET="_top"
->	Samba</A
-> suite.</P
-><P
-><B
-CLASS="COMMAND"
->vfstest</B
-> is a small command line
-	utility that has the ability to test dso samba VFS modules. It gives the
-	user the ability to call the various VFS functions manually and
-	supports cascaded VFS modules.
-	</P
-></DIV
-><DIV
-CLASS="REFSECT1"
-><A
-NAME="AEN21"
-></A
-><H2
->OPTIONS</H2
-><P
-></P
-><DIV
-CLASS="VARIABLELIST"
-><DL
-><DT
->-c|--command=command</DT
-><DD
-><P
->Execute the specified (colon-seperated) commands.
-		See below for the commands that are available.
-		</P
-></DD
-><DT
->-d|--debug=debuglevel</DT
-><DD
-><P
-><TT
-CLASS="REPLACEABLE"
-><I
->debuglevel</I
-></TT
-> is an integer 
-from 0 to 10.  The default value if this parameter is 
-not specified is zero.</P
-><P
->The higher this value, the more detail will be 
-logged to the log files about the activities of the 
-server. At level 0, only critical errors and serious 
-warnings will be logged. Level 1 is a reasonable level for
-day to day running - it generates a small amount of 
-information about operations carried out.</P
-><P
->Levels above 1 will generate considerable 
-amounts of log data, and should only be used when 
-investigating a problem. Levels above 3 are designed for 
-use only by developers and generate HUGE amounts of log
-data, most of which is extremely cryptic.</P
-><P
->Note that specifying this parameter here will 
-override the <A
-HREF="smb.conf.5.html#loglevel"
-TARGET="_top"
->log
-level</A
-> parameter in the <A
-HREF="smb.conf.5.html"
-TARGET="_top"
-><TT
-CLASS="FILENAME"
->smb.conf(5)</TT
-></A
-> file.</P
-></DD
-><DT
->-h|--help</DT
-><DD
-><P
->Print a summary of command line options.</P
-></DD
-><DT
->-l|--logfile=logbasename</DT
-><DD
-><P
->File name for log/debug files. The extension
-		<TT
-CLASS="CONSTANT"
->'.client'</TT
-> will be appended. The log file is never removed
-		by the client.
-		</P
-></DD
-></DL
-></DIV
-></DIV
-><DIV
-CLASS="REFSECT1"
-><A
-NAME="AEN48"
-></A
-><H2
->COMMANDS</H2
-><P
-><SPAN
-CLASS="emphasis"
-><I
-CLASS="EMPHASIS"
->VFS COMMANDS</I
-></SPAN
-></P
-><P
-></P
-><UL
-><LI
-><P
-><B
-CLASS="COMMAND"
->load &lt;module.so&gt;</B
-> - Load specified VFS module </P
-></LI
-><LI
-><P
-><B
-CLASS="COMMAND"
->populate &lt;char&gt; &lt;size&gt;</B
-> - Populate a data buffer with the specified data
-		</P
-></LI
-><LI
-><P
-><B
-CLASS="COMMAND"
->showdata [&lt;offset&gt; &lt;len&gt;]</B
-> - Show data currently in data buffer
-		</P
-></LI
-><LI
-><P
-><B
-CLASS="COMMAND"
->connect</B
-> - VFS connect()</P
-></LI
-><LI
-><P
-><B
-CLASS="COMMAND"
->disconnect</B
-> - VFS disconnect()</P
-></LI
-><LI
-><P
-><B
-CLASS="COMMAND"
->disk_free</B
-> - VFS disk_free()</P
-></LI
-><LI
-><P
-><B
-CLASS="COMMAND"
->opendir</B
-> - VFS opendir()</P
-></LI
-><LI
-><P
-><B
-CLASS="COMMAND"
->readdir</B
-> - VFS readdir()</P
-></LI
-><LI
-><P
-><B
-CLASS="COMMAND"
->mkdir</B
-> - VFS mkdir()</P
-></LI
-><LI
-><P
-><B
-CLASS="COMMAND"
->rmdir</B
-> - VFS rmdir()</P
-></LI
-><LI
-><P
-><B
-CLASS="COMMAND"
->closedir</B
-> - VFS closedir()</P
-></LI
-><LI
-><P
-><B
-CLASS="COMMAND"
->open</B
-> - VFS open()</P
-></LI
-><LI
-><P
-><B
-CLASS="COMMAND"
->close</B
-> - VFS close()</P
-></LI
-><LI
-><P
-><B
-CLASS="COMMAND"
->read</B
-> - VFS read()</P
-></LI
-><LI
-><P
-><B
-CLASS="COMMAND"
->write</B
-> - VFS write()</P
-></LI
-><LI
-><P
-><B
-CLASS="COMMAND"
->lseek</B
-> - VFS lseek()</P
-></LI
-><LI
-><P
-><B
-CLASS="COMMAND"
->rename</B
-> - VFS rename()</P
-></LI
-><LI
-><P
-><B
-CLASS="COMMAND"
->fsync</B
-> - VFS fsync()</P
-></LI
-><LI
-><P
-><B
-CLASS="COMMAND"
->stat</B
-> - VFS stat()</P
-></LI
-><LI
-><P
-><B
-CLASS="COMMAND"
->fstat</B
-> - VFS fstat()</P
-></LI
-><LI
-><P
-><B
-CLASS="COMMAND"
->lstat</B
-> - VFS lstat()</P
-></LI
-><LI
-><P
-><B
-CLASS="COMMAND"
->unlink</B
-> - VFS unlink()</P
-></LI
-><LI
-><P
-><B
-CLASS="COMMAND"
->chmod</B
-> - VFS chmod()</P
-></LI
-><LI
-><P
-><B
-CLASS="COMMAND"
->fchmod</B
-> - VFS fchmod()</P
-></LI
-><LI
-><P
-><B
-CLASS="COMMAND"
->chown</B
-> - VFS chown()</P
-></LI
-><LI
-><P
-><B
-CLASS="COMMAND"
->fchown</B
-> - VFS fchown()</P
-></LI
-><LI
-><P
-><B
-CLASS="COMMAND"
->chdir</B
-> - VFS chdir()</P
-></LI
-><LI
-><P
-><B
-CLASS="COMMAND"
->getwd</B
-> - VFS getwd()</P
-></LI
-><LI
-><P
-><B
-CLASS="COMMAND"
->utime</B
-> - VFS utime()</P
-></LI
-><LI
-><P
-><B
-CLASS="COMMAND"
->ftruncate</B
-> - VFS ftruncate()</P
-></LI
-><LI
-><P
-><B
-CLASS="COMMAND"
->lock</B
-> - VFS lock()</P
-></LI
-><LI
-><P
-><B
-CLASS="COMMAND"
->symlink</B
-> - VFS symlink()</P
-></LI
-><LI
-><P
-><B
-CLASS="COMMAND"
->readlink</B
-> - VFS readlink()</P
-></LI
-><LI
-><P
-><B
-CLASS="COMMAND"
->link</B
-> - VFS link()</P
-></LI
-><LI
-><P
-><B
-CLASS="COMMAND"
->mknod</B
-> - VFS mknod()</P
-></LI
-><LI
-><P
-><B
-CLASS="COMMAND"
->realpath</B
-> - VFS realpath()</P
-></LI
-></UL
-><P
-><SPAN
-CLASS="emphasis"
-><I
-CLASS="EMPHASIS"
->GENERAL COMMANDS</I
-></SPAN
-></P
-><P
-></P
-><UL
-><LI
-><P
-><B
-CLASS="COMMAND"
->conf &lt;smb.conf&gt;</B
-> - Load a different configuration file</P
-></LI
-><LI
-><P
-><B
-CLASS="COMMAND"
->help [&lt;command&gt;]</B
-> - Get list of commands or info about specified command</P
-></LI
-><LI
-><P
-><B
-CLASS="COMMAND"
->debuglevel &lt;level&gt;</B
-> - Set debug level</P
-></LI
-><LI
-><P
-><B
-CLASS="COMMAND"
->freemem</B
-> - Free memory currently in use</P
-></LI
-><LI
-><P
-><B
-CLASS="COMMAND"
->exit</B
-> - Exit vfstest</P
-></LI
-></UL
-></DIV
-><DIV
-CLASS="REFSECT1"
-><A
-NAME="AEN179"
-></A
-><H2
->VERSION</H2
-><P
->This man page is correct for version 3.0 of the Samba
-	suite.</P
-></DIV
-><DIV
-CLASS="REFSECT1"
-><A
-NAME="AEN182"
-></A
-><H2
->AUTHOR</H2
-><P
->The original Samba software and related utilities
-	were created by Andrew Tridgell. Samba is now developed
-	by the Samba Team as an Open Source project similar
-	to the way the Linux kernel is developed.</P
-><P
->The vfstest man page was written by Jelmer Vernooij.</P
-></DIV
-></BODY
-></HTML
->
\ No newline at end of file
diff --git a/docs/htmldocs/wbinfo.1.html b/docs/htmldocs/wbinfo.1.html
index a8aa065eed8..26e098868e2 100644
--- a/docs/htmldocs/wbinfo.1.html
+++ b/docs/htmldocs/wbinfo.1.html
@@ -37,12 +37,12 @@ NAME="AEN8"
 ><B
 CLASS="COMMAND"
 >wbinfo</B
->  [-u] [-g] [-i ip] [-N netbios-name] [-n name] [-s sid] [-U uid] [-G gid] [-S sid] [-Y sid] [-t] [-m] [-r user] [-a user%password] [-A user%password] [-p]</P
+>  [-u] [-g] [-h name] [-i ip] [-n name] [-s sid] [-U uid] [-G gid] [-S sid] [-Y sid] [-t] [-m] [-r user] [-a user%password] [-A user%password]</P
 ></DIV
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN27"
+NAME="AEN26"
 ></A
 ><H2
 >DESCRIPTION</H2
@@ -79,7 +79,7 @@ CLASS="COMMAND"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN38"
+NAME="AEN37"
 ></A
 ><H2
 >OPTIONS</H2
@@ -123,13 +123,13 @@ CLASS="COMMAND"
 >. </P
 ></DD
 ><DT
->-N name</DT
+>-h name</DT
 ><DD
 ><P
 >The <TT
 CLASS="PARAMETER"
 ><I
->-N</I
+>-h</I
 ></TT
 > option 
 		queries <B
@@ -146,13 +146,13 @@ CLASS="PARAMETER"
 		</P
 ></DD
 ><DT
->-I ip</DT
+>-i ip</DT
 ><DD
 ><P
 >The <TT
 CLASS="PARAMETER"
 ><I
->-I</I
+>-i</I
 ></TT
 > option 
 		queries <B
@@ -308,7 +308,7 @@ CLASS="COMMAND"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN120"
+NAME="AEN119"
 ></A
 ><H2
 >EXIT STATUS</H2
@@ -327,18 +327,18 @@ CLASS="COMMAND"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN125"
+NAME="AEN124"
 ></A
 ><H2
 >VERSION</H2
 ><P
->This man page is correct for version 3.0 of 
+>This man page is correct for version 2.2 of 
 	the Samba suite.</P
 ></DIV
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN128"
+NAME="AEN127"
 ></A
 ><H2
 >SEE ALSO</H2
@@ -356,7 +356,7 @@ CLASS="COMMAND"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN133"
+NAME="AEN132"
 ></A
 ><H2
 >AUTHOR</H2
diff --git a/docs/htmldocs/wfw_slip.htm b/docs/htmldocs/wfw_slip.htm
new file mode 100644
index 00000000000..5b4a0a5e539
--- /dev/null
+++ b/docs/htmldocs/wfw_slip.htm
@@ -0,0 +1,175 @@
+<HTML>
+<HEAD>
+<TITLE>Peter Karrer Announces SLIP for WFW</TITLE>
+</HEAD>
+<BODY>
+<H1><I>Winserve</I></H1>
+<HR>
+<H2><I>Peter Karrer Announces SLIP for WFW</I></H2>
+[NEW 03-22-95)
+<HR>
+<B>Hello,</B>
+<P>
+I've discovered a way to run WfW's TCP/IP-32 over a SLIP packet driver. This
+allows WfW users to do Windows networking over dialup lines just like it is
+possible with NT and the Windows 95 beta!
+<P>
+For instance, you can mount Microsoft's FTP server as a network drive in File
+Manager or connect to an MS Mail post office over the Internet.  Of course,
+the usual Internet stuff works as well.  Another interesting site is
+WINSERVE.001; check out www.winserve.com.
+<HR>
+This method should work with any class 1 (Ethernet II) packet driver. However,
+I'm not in a position to try anything else than SLIPPER/CSLIPPER. 
+<HR>
+<H3>Files you need:</H3>
+<B>WFWT32.EXE:</B>   ftp://ftp.microsoft.com/bussys/msclient/wfw/wfwt32.exe
+<P>
+  Microsoft's free TCP/IP for WfW.  It's a self-extracting archive which
+  should be executed in an empty directory.
+<P>
+<B>SLIPPER.EXE:</B>  ftp://biocserver.bioc.cwru.edu/pub/dos/slipper/slippr15.zip
+<P>
+  Peter Tattam's SLIP packet driver. CSLIPPER.EXE is a variant which supports
+  VJ header compression.
+<P>
+<B>PDETHER.EXE:</B>  ftp://sjf-lwp.idz.sjf.novell.com/odi/pdether/pde105.zip
+<P>
+  Don Provan's ODI-over-Packet Driver shim. This *must* be version 1.05 (or
+  above).
+<P>
+<B>LSL.COM:</B>
+<P>
+  Novell's LAN Support Layer.  If you're an owner of Windows 3.10, you'll
+  have it on one of your install disks.  Use "expand a:lsl.co_ lsl.com" to
+  expand it.  Microsoft has stopped bundling LSL.COM with WfW 3.11, though.
+  The newest version of LSL.COM can be downloaded as part of
+    ftp://ftp.novell.com/pub/netware/nwos/dosclnt12/vlms/vlmup2.exe.
+  However, it's not clear if this one may be legally used outside Netware
+  environments.
+<P>
+<B>NET.CFG:</B>
+<P>
+  A configuration file for LSL and PDETHER. It should contain the following
+  text:
+<P>
+<PRE>
+Link Support
+        Buffers 8 1600
+Link Driver PDETHER
+        Int 60
+        Frame Ethernet_II
+        Protocol IP   800  Ethernet_II
+        Protocol ARP  806  Ethernet_II
+        Protocol RARP 8035 Ethernet_II
+</PRE> 
+<P>
+<B>DISCOMX.COM:</B>
+<P>
+  A little hack of mine to disable the COM port used by the SLIP packet driver.
+  Usage is e.g. "discomx 2" to disable COM2.  This should be run before
+  starting WfW, otherwise you'll get "device conflict" messages. Here it is:
+<P><PRE>
+begin 644 discomx.com
+F,=N)V8H.@`"P(+^!`/.N3XH="=MT!DN`XP/1XS')!R:)CP`$S2``
+`
+end
+ </PRE>
+  (Save this text to disk as <I>filename</I>, then run "uudecode <I>filename</I>".
+   uudecode can be found, for instance, at
+     ftp://ftp.switch.ch/mirror/simtel/msdos/starter/uudecode.com )
+<P>
+<B>LMHOSTS:</B>
+ <P> 
+  An optional file which should be stored in your Windows subdirectory. It is
+  used to map NetBIOS computer names to IP addresses. Example:
+<P>
+<PRE>
+198.105.232.1   ftp             #PRE  # ftp.microsoft.com
+204.118.34.11   winserve.001    #PRE  # Winserve
+</PRE>
+<HR>
+<H3>How to install it:</H3>
+<P>
+<UL>
+<LI>Put the files mentioned above into a directory, e.g. C:\SLIP.
+<P>
+<LI>Put the following lines into AUTOEXEC.BAT:
+<P><PRE>
+  cd \slip
+  slipper com1 vec=60 baud=57600 ether	(may vary with your modem setup)
+  lsl
+  pdether
+  discomx 1				(must correspond to SLIPPER's COM port)
+</PRE>
+  (If you use another vec= setting, you must update that in NET.CFG as well.)
+  Use CSLIPPER instead of SLIPPER if your SLIP provider supports VJC.
+<P>
+<LI>Start WfW.
+<UL>
+<LI>Under Windows Setup, choose "Change Network Settings".
+<LI>Select  "Install Microsoft Windows Network".  
+<LI>In "Drivers...", choose "Add Adapter"
+  and install the "IPXODI Support driver (Ethernet) [ODI/NDIS3]".  
+<LI>In "Add Protocols...", select "Unlisted or Updated Protocol". When asked for a
+  driver disk, enter the directory where you expanded WFWT32.EXE. 
+<LI>Configure TCP/IP (IP address, enable LMHOSTS lookup, try 204.118.34.11 as primary
+  WINS server). Remove all other protocols (NetBEUI, IPX/SPX).
+</UL>
+<P>
+<LI>Windows will probably update the first lines of AUTOEXEC.BAT with
+<P>
+<PRE>
+  c:\windows\net start
+  c:\windows\odihlp.exe.
+</PRE>
+  The "odihlp" line must be moved behind the "pdether" line.
+<P>
+<LI>Windows will also update NET.CFG with some "Frame" lines. These must
+  be removed (except "Frame Ethernet_II").
+<P>
+<LI>Somehow, you will have to dial in to your SLIP provider.  I do it manually
+  before slipper (or cslipper) gets loaded, using a DOS-based terminal program.
+  But there are some automatic dialers around.  I've seen recommendations for
+    ftp://mvmpc9.ciw.uni-karlsruhe.de/x-slip/slip_it.exe. 
+<P>
+<LI>To connect to Microsoft's FTP server (or Winserve) go into File Manager,
+  choose "Connect Network drive" and enter "\\ftp" or "\\winserve.001" into
+  the "Path:" field.
+</UL>
+<HR>
+<H3>How it works:</H3>
+<P>
+Microsoft's TCP/IP-32 requires an NDIS3 interface. NDIS is Microsoft's way
+to interface with a network.
+<P>
+WfW also contains an NDIS3-over-ODI "shim", whose real mode component is
+ODIHLP.EXE.  ODI is Novell's way to interface with a network.
+<P>
+SLIPPER is a Packet Driver (PD) for use over serial lines.  PDs are everybody
+else's way to interface with a network.  SLIPPER's "ether" option makes it
+look like an Ethernet PD to applications using it. 
+<P>
+A "shim" is a program which simulates a network application programming
+interface on top of another.
+<P>
+There is no NDIS SLIP driver which would work with WfW.
+<P>
+There is no NDIS-over-PD shim.
+<P>
+However, there's an ODI-over-PD shim (PDETHER) and an NDIS-over-ODI shim
+(ODIHLP etc.)
+<P>
+OK, so let's do NDIS-over-ODI-over-PD!
+   <P>
+This should have worked all the time; however, a non-feature in PDETHER
+versions < 1.05 has prevented the method from functioning until now.
+<HR>
+<B>Questions, suggestions etc. please to
+<P>
+<PRE>
+Peter Karrer		pkarrer@ife.ee.ethz.ch
+</PRE>
+</B>
+</BODY>
+</HTML>
diff --git a/docs/htmldocs/winbind.html b/docs/htmldocs/winbind.html
index df5a59f7719..cbec6e39a6d 100644
--- a/docs/htmldocs/winbind.html
+++ b/docs/htmldocs/winbind.html
@@ -9,15 +9,12 @@ CONTENT="Modular DocBook HTML Stylesheet Version 1.77"><LINK
 REL="HOME"
 TITLE="SAMBA Project Documentation"
 HREF="samba-howto-collection.html"><LINK
-REL="UP"
-TITLE="Optional configuration"
-HREF="optional.html"><LINK
 REL="PREVIOUS"
-TITLE="Printing Support"
-HREF="printing.html"><LINK
+TITLE="security = domain in Samba 2.x"
+HREF="domain-security.html"><LINK
 REL="NEXT"
-TITLE="Passdb MySQL plugin"
-HREF="pdb-mysql.html"></HEAD
+TITLE="How to Configure Samba 2.2 as a Primary Domain Controller"
+HREF="samba-pdc.html"></HEAD
 ><BODY
 CLASS="CHAPTER"
 BGCOLOR="#FFFFFF"
@@ -45,7 +42,7 @@ WIDTH="10%"
 ALIGN="left"
 VALIGN="bottom"
 ><A
-HREF="printing.html"
+HREF="domain-security.html"
 ACCESSKEY="P"
 >Prev</A
 ></TD
@@ -59,7 +56,7 @@ WIDTH="10%"
 ALIGN="right"
 VALIGN="bottom"
 ><A
-HREF="pdb-mysql.html"
+HREF="samba-pdc.html"
 ACCESSKEY="N"
 >Next</A
 ></TD
@@ -74,15 +71,15 @@ CLASS="CHAPTER"
 ><A
 NAME="WINBIND"
 ></A
->Chapter 16. Unified Logons between Windows NT and UNIX using Winbind</H1
+>Chapter 10. Unified Logons between Windows NT and UNIX using Winbind</H1
 ><DIV
 CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN2238"
+NAME="AEN1255"
 ></A
->16.1. Abstract</H1
+>10.1. Abstract</H1
 ><P
 >Integration of UNIX and Microsoft Windows NT through 
 	a unified logon has been considered a "holy grail" in heterogeneous 
@@ -107,9 +104,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN2242"
+NAME="AEN1259"
 ></A
->16.2. Introduction</H1
+>10.2. Introduction</H1
 ><P
 >It is well known that UNIX and Microsoft Windows NT have 
 	different models for representing user and group information and 
@@ -161,9 +158,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN2255"
+NAME="AEN1272"
 ></A
->16.3. What Winbind Provides</H1
+>10.3. What Winbind Provides</H1
 ><P
 >Winbind unifies UNIX and Windows NT account management by 
 	allowing a UNIX box to become a full member of a NT domain. Once 
@@ -203,9 +200,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN2262"
+NAME="AEN1279"
 ></A
->16.3.1. Target Uses</H2
+>10.3.1. Target Uses</H2
 ><P
 >Winbind is targeted at organizations that have an 
 		existing NT based domain infrastructure into which they wish 
@@ -227,9 +224,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN2266"
+NAME="AEN1283"
 ></A
->16.4. How Winbind Works</H1
+>10.4. How Winbind Works</H1
 ><P
 >The winbind system is designed around a client/server 
 	architecture. A long running <B
@@ -247,9 +244,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN2271"
+NAME="AEN1288"
 ></A
->16.4.1. Microsoft Remote Procedure Calls</H2
+>10.4.1. Microsoft Remote Procedure Calls</H2
 ><P
 >Over the last two years, efforts have been underway 
 		by various Samba Team members to decode various aspects of 
@@ -273,9 +270,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN2275"
+NAME="AEN1292"
 ></A
->16.4.2. Name Service Switch</H2
+>10.4.2. Name Service Switch</H2
 ><P
 >The Name Service Switch, or NSS, is a feature that is 
 		present in many UNIX operating systems. It allows system 
@@ -353,9 +350,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN2291"
+NAME="AEN1308"
 ></A
->16.4.3. Pluggable Authentication Modules</H2
+>10.4.3. Pluggable Authentication Modules</H2
 ><P
 >Pluggable Authentication Modules, also known as PAM, 
 		is a system for abstracting authentication and authorization 
@@ -402,9 +399,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN2299"
+NAME="AEN1316"
 ></A
->16.4.4. User and Group ID Allocation</H2
+>10.4.4. User and Group ID Allocation</H2
 ><P
 >When a user or group is created under Windows NT 
 		is it allocated a numerical relative identifier (RID). This is 
@@ -428,9 +425,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN2303"
+NAME="AEN1320"
 ></A
->16.4.5. Result Caching</H2
+>10.4.5. Result Caching</H2
 ><P
 >An active system can generate a lot of user and group 
 		name lookups. To reduce the network cost of these lookups winbind 
@@ -451,9 +448,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN2306"
+NAME="AEN1323"
 ></A
->16.5. Installation and Configuration</H1
+>10.5. Installation and Configuration</H1
 ><P
 >Many thanks to John Trostel <A
 HREF="mailto:jtrostel@snapserver.com"
@@ -478,9 +475,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN2313"
+NAME="AEN1330"
 ></A
->16.5.1. Introduction</H2
+>10.5.1. Introduction</H2
 ><P
 >This HOWTO describes the procedures used to get winbind up and 
 running on my RedHat 7.1 system.  Winbind is capable of providing access 
@@ -537,9 +534,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN2326"
+NAME="AEN1343"
 ></A
->16.5.2. Requirements</H2
+>10.5.2. Requirements</H2
 ><P
 >If you have a samba configuration file that you are currently 
 using... <SPAN
@@ -577,7 +574,7 @@ CLASS="FILENAME"
 > back to the original state they were in if 
 you get frustrated with the way things are going.  ;-)</P
 ><P
->The latest version of SAMBA (version 3.0 as of this writing), now 
+>The latest version of SAMBA (version 2.2.2 as of this writing), now 
 includes a functioning winbindd daemon.  Please refer to the 
 <A
 HREF="http://samba.org/"
@@ -607,9 +604,9 @@ CLASS="SECT2"
 ><H2
 CLASS="SECT2"
 ><A
-NAME="AEN2340"
+NAME="AEN1357"
 ></A
->16.5.3. Testing Things Out</H2
+>10.5.3. Testing Things Out</H2
 ><P
 >Before starting, it is probably best to kill off all the SAMBA 
 related daemons running on your server.  Kill off all <B
@@ -652,9 +649,9 @@ CLASS="SECT3"
 ><H3
 CLASS="SECT3"
 ><A
-NAME="AEN2351"
+NAME="AEN1368"
 ></A
->16.5.3.1. Configure and compile SAMBA</H3
+>10.5.3.1. Configure and compile SAMBA</H3
 ><P
 >The configuration and compilation of SAMBA is pretty straightforward.
 The first three steps may not be necessary depending upon
@@ -718,9 +715,9 @@ CLASS="SECT3"
 ><H3
 CLASS="SECT3"
 ><A
-NAME="AEN2370"
+NAME="AEN1387"
 ></A
->16.5.3.2. Configure <TT
+>10.5.3.2. Configure <TT
 CLASS="FILENAME"
 >nsswitch.conf</TT
 > and the 
@@ -823,9 +820,9 @@ CLASS="SECT3"
 ><H3
 CLASS="SECT3"
 ><A
-NAME="AEN2403"
+NAME="AEN1420"
 ></A
->16.5.3.3. Configure smb.conf</H3
+>10.5.3.3. Configure smb.conf</H3
 ><P
 >Several parameters are needed in the smb.conf file to control 
 the behavior of <B
@@ -898,9 +895,9 @@ CLASS="SECT3"
 ><H3
 CLASS="SECT3"
 ><A
-NAME="AEN2419"
+NAME="AEN1436"
 ></A
->16.5.3.4. Join the SAMBA server to the PDC domain</H3
+>10.5.3.4. Join the SAMBA server to the PDC domain</H3
 ><P
 >Enter the following command to make the SAMBA server join the 
 PDC domain, where <TT
@@ -922,7 +919,7 @@ CLASS="PROMPT"
 >root#</TT
 > <B
 CLASS="COMMAND"
->/usr/local/samba/bin/net rpc join -S PDC -U Administrator</B
+>/usr/local/samba/bin/net rpc join -s PDC -U Administrator</B
 ></P
 ><P
 >The proper response to the command should be: "Joined the domain 
@@ -944,9 +941,9 @@ CLASS="SECT3"
 ><H3
 CLASS="SECT3"
 ><A
-NAME="AEN2430"
+NAME="AEN1447"
 ></A
->16.5.3.5. Start up the winbindd daemon and test it!</H3
+>10.5.3.5. Start up the winbindd daemon and test it!</H3
 ><P
 >Eventually, you will want to modify your smb startup script to 
 automatically invoke the winbindd daemon when the other parts of 
@@ -1067,17 +1064,17 @@ CLASS="SECT3"
 ><H3
 CLASS="SECT3"
 ><A
-NAME="AEN2466"
+NAME="AEN1483"
 ></A
->16.5.3.6. Fix the init.d startup scripts</H3
+>10.5.3.6. Fix the init.d startup scripts</H3
 ><DIV
 CLASS="SECT4"
 ><H4
 CLASS="SECT4"
 ><A
-NAME="AEN2468"
+NAME="AEN1485"
 ></A
->16.5.3.6.1. Linux</H4
+>10.5.3.6.1. Linux</H4
 ><P
 >The <B
 CLASS="COMMAND"
@@ -1171,9 +1168,9 @@ CLASS="SECT4"
 ><H4
 CLASS="SECT4"
 ><A
-NAME="AEN2485"
+NAME="AEN1502"
 ></A
->16.5.3.6.2. Solaris</H4
+>10.5.3.6.2. Solaris</H4
 ><P
 >On solaris, you need to modify the 
 <TT
@@ -1242,9 +1239,9 @@ CLASS="SECT4"
 ><H4
 CLASS="SECT4"
 ><A
-NAME="AEN2492"
+NAME="AEN1509"
 ></A
->16.5.3.6.3. Restarting</H4
+>10.5.3.6.3. Restarting</H4
 ><P
 >If you restart the <B
 CLASS="COMMAND"
@@ -1266,9 +1263,9 @@ CLASS="SECT3"
 ><H3
 CLASS="SECT3"
 ><A
-NAME="AEN2498"
+NAME="AEN1515"
 ></A
->16.5.3.7. Configure Winbind and PAM</H3
+>10.5.3.7. Configure Winbind and PAM</H3
 ><P
 >If you have made it this far, you know that winbindd and samba are working
 together.  If you want to use winbind to provide authentication for other 
@@ -1324,9 +1321,9 @@ CLASS="SECT4"
 ><H4
 CLASS="SECT4"
 ><A
-NAME="AEN2515"
+NAME="AEN1532"
 ></A
->16.5.3.7.1. Linux/FreeBSD-specific PAM configuration</H4
+>10.5.3.7.1. Linux/FreeBSD-specific PAM configuration</H4
 ><P
 >The <TT
 CLASS="FILENAME"
@@ -1453,9 +1450,9 @@ CLASS="SECT4"
 ><H4
 CLASS="SECT4"
 ><A
-NAME="AEN2548"
+NAME="AEN1565"
 ></A
->16.5.3.7.2. Solaris-specific configuration</H4
+>10.5.3.7.2. Solaris-specific configuration</H4
 ><P
 >The /etc/pam.conf needs to be changed. I changed this file so that my Domain
 users can logon both locally as well as telnet.The following are the changes
@@ -1540,9 +1537,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN2555"
+NAME="AEN1572"
 ></A
->16.6. Limitations</H1
+>10.6. Limitations</H1
 ><P
 >Winbind has a number of limitations in its current 
 	released version that we hope to overcome in future 
@@ -1581,9 +1578,9 @@ CLASS="SECT1"
 ><H1
 CLASS="SECT1"
 ><A
-NAME="AEN2565"
+NAME="AEN1582"
 ></A
->16.7. Conclusion</H1
+>10.7. Conclusion</H1
 ><P
 >The winbind system, through the use of the Name Service 
 	Switch, Pluggable Authentication Modules, and appropriate 
@@ -1609,7 +1606,7 @@ WIDTH="33%"
 ALIGN="left"
 VALIGN="top"
 ><A
-HREF="printing.html"
+HREF="domain-security.html"
 ACCESSKEY="P"
 >Prev</A
 ></TD
@@ -1627,7 +1624,7 @@ WIDTH="33%"
 ALIGN="right"
 VALIGN="top"
 ><A
-HREF="pdb-mysql.html"
+HREF="samba-pdc.html"
 ACCESSKEY="N"
 >Next</A
 ></TD
@@ -1637,21 +1634,17 @@ ACCESSKEY="N"
 WIDTH="33%"
 ALIGN="left"
 VALIGN="top"
->Printing Support</TD
+>security = domain in Samba 2.x</TD
 ><TD
 WIDTH="34%"
 ALIGN="center"
 VALIGN="top"
-><A
-HREF="optional.html"
-ACCESSKEY="U"
->Up</A
-></TD
+>&nbsp;</TD
 ><TD
 WIDTH="33%"
 ALIGN="right"
 VALIGN="top"
->Passdb MySQL plugin</TD
+>How to Configure Samba 2.2 as a Primary Domain Controller</TD
 ></TR
 ></TABLE
 ></DIV
diff --git a/docs/htmldocs/winbindd.8.html b/docs/htmldocs/winbindd.8.html
index 09c3513c70d..3aecf62509e 100644
--- a/docs/htmldocs/winbindd.8.html
+++ b/docs/htmldocs/winbindd.8.html
@@ -38,12 +38,12 @@ NAME="AEN8"
 ><B
 CLASS="COMMAND"
 >winbindd</B
->  [-i] [-B] [-d &lt;debug level&gt;] [-s &lt;smb config file&gt;] [-n]</P
+>  [-i] [-d &lt;debug level&gt;] [-s &lt;smb config file&gt;]</P
 ></DIV
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN16"
+NAME="AEN14"
 ></A
 ><H2
 >DESCRIPTION</H2
@@ -192,7 +192,7 @@ CLASS="FILENAME"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN59"
+NAME="AEN57"
 ></A
 ><H2
 >OPTIONS</H2
@@ -225,46 +225,13 @@ CLASS="COMMAND"
 >winbindd</B
 > is required. </P
 ></DD
-><DT
->-n</DT
-><DD
-><P
->Disable caching. This means winbindd will 
-		always have to wait for a response from the domain controller 
-		before it can respond to a client and this thus makes things 
-		slower. The results will however be more accurate, since 
-		results from the cache might not be up-to-date. This 
-		might also temporarily hang winbindd if the DC doesn't respond.
-		</P
-></DD
-><DT
->-B</DT
-><DD
-><P
->Dual daemon mode. This means winbindd will run 
-		as 2 threads. The first will answer all requests from the cache, 
-		thus making responses to clients faster. The other will 
-		update the cache for the query that the first has just responded. 
-		Advantage of this is that responses are accurate and fast.
-		</P
-></DD
-><DT
->-s|--conf=smb.conf</DT
-><DD
-><P
->Specifies the location of the all-important
-		<TT
-CLASS="FILENAME"
->smb.conf</TT
-> file. </P
-></DD
 ></DL
 ></DIV
 ></DIV
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN85"
+NAME="AEN70"
 ></A
 ><H2
 >NAME AND ID RESOLUTION</H2
@@ -295,7 +262,7 @@ CLASS="COMMAND"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN91"
+NAME="AEN76"
 ></A
 ><H2
 >CONFIGURATION</H2
@@ -435,7 +402,7 @@ CLASS="PARAMETER"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN133"
+NAME="AEN118"
 ></A
 ><H2
 >EXAMPLE SETUP</H2
@@ -586,7 +553,7 @@ CLASS="COMMAND"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN172"
+NAME="AEN157"
 ></A
 ><H2
 >NOTES</H2
@@ -644,7 +611,7 @@ CLASS="COMMAND"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN188"
+NAME="AEN173"
 ></A
 ><H2
 >SIGNALS</H2
@@ -695,7 +662,7 @@ CLASS="COMMAND"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN205"
+NAME="AEN190"
 ></A
 ><H2
 >FILES</H2
@@ -771,18 +738,18 @@ CLASS="FILENAME"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN234"
+NAME="AEN219"
 ></A
 ><H2
 >VERSION</H2
 ><P
->This man page is correct for version 3.0 of
+>This man page is correct for version 2.2 of
         the Samba suite.</P
 ></DIV
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN237"
+NAME="AEN222"
 ></A
 ><H2
 >SEE ALSO</H2
@@ -810,7 +777,7 @@ TARGET="_top"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN244"
+NAME="AEN229"
 ></A
 ><H2
 >AUTHOR</H2
diff --git a/docs/manpages/findsmb.1 b/docs/manpages/findsmb.1
index 7bd2e53a72a..c5553267b5a 100644
--- a/docs/manpages/findsmb.1
+++ b/docs/manpages/findsmb.1
@@ -3,7 +3,7 @@
 .\" <http://shell.ipoline.com/~elmert/comp/docbook2X/> 
 .\" Please send any bug reports, improvements, comments, patches, 
 .\" etc. to Steve Cheng <steve@ggi-project.org>.
-.TH "FINDSMB" "1" "05 November 2002" "" ""
+.TH "FINDSMB" "1" "01 October 2002" "" ""
 .SH NAME
 findsmb \- list info about machines that respond to SMB  name queries on a subnet
 .SH SYNOPSIS
@@ -68,7 +68,7 @@ IP ADDR         NETBIOS NAME   WORKGROUP/OS/VERSION
 .fi
 .SH "VERSION"
 .PP
-This man page is correct for version 3.0 of 
+This man page is correct for version 2.2 of 
 the Samba suite.
 .SH "SEE ALSO"
 .PP
diff --git a/docs/manpages/lmhosts.5 b/docs/manpages/lmhosts.5
index e5443f61e8c..f13d8ff78ac 100644
--- a/docs/manpages/lmhosts.5
+++ b/docs/manpages/lmhosts.5
@@ -3,7 +3,7 @@
 .\" <http://shell.ipoline.com/~elmert/comp/docbook2X/> 
 .\" Please send any bug reports, improvements, comments, patches, 
 .\" etc. to Steve Cheng <steve@ggi-project.org>.
-.TH "LMHOSTS" "5" "05 November 2002" "" ""
+.TH "LMHOSTS" "5" "01 October 2002" "" ""
 .SH NAME
 lmhosts \- The Samba NetBIOS hosts file
 .SH SYNOPSIS
diff --git a/docs/manpages/net.8 b/docs/manpages/net.8
index bf2b13997cf..7a6a5c18c6a 100644
--- a/docs/manpages/net.8
+++ b/docs/manpages/net.8
@@ -3,7 +3,7 @@
 .\" <http://shell.ipoline.com/~elmert/comp/docbook2X/> 
 .\" Please send any bug reports, improvements, comments, patches, 
 .\" etc. to Steve Cheng <steve@ggi-project.org>.
-.TH "NET" "8" "05 November 2002" "" ""
+.TH "NET" "8" "03 October 2002" "" ""
 .SH NAME
 net \- Tool for administration of Samba and remote CIFS servers.
 .SH SYNOPSIS
diff --git a/docs/manpages/nmbd.8 b/docs/manpages/nmbd.8
index 0b52f48c7d3..d5662dbdb4c 100644
--- a/docs/manpages/nmbd.8
+++ b/docs/manpages/nmbd.8
@@ -3,12 +3,12 @@
 .\" <http://shell.ipoline.com/~elmert/comp/docbook2X/> 
 .\" Please send any bug reports, improvements, comments, patches, 
 .\" etc. to Steve Cheng <steve@ggi-project.org>.
-.TH "NMBD" "8" "05 November 2002" "" ""
+.TH "NMBD" "8" "01 October 2002" "" ""
 .SH NAME
 nmbd \- NetBIOS name server to provide NetBIOS  over IP naming services to clients
 .SH SYNOPSIS
 
-\fBnmbd\fR [ \fB-D\fR ] [ \fB-a\fR ] [ \fB-i\fR ] [ \fB-o\fR ] [ \fB-h\fR ] [ \fB-V\fR ] [ \fB-d <debug level>\fR ] [ \fB-H <lmhosts file>\fR ] [ \fB-l <log directory>\fR ] [ \fB-n <primary netbios name>\fR ] [ \fB-p <port number>\fR ] [ \fB-s <configuration file>\fR ]
+\fBnmbd\fR [ \fB-D\fR ] [ \fB-a\fR ] [ \fB-i\fR ] [ \fB-o\fR ] [ \fB-P\fR ] [ \fB-h\fR ] [ \fB-V\fR ] [ \fB-d <debug level>\fR ] [ \fB-H <lmhosts file>\fR ] [ \fB-l <log directory>\fR ] [ \fB-n <primary netbios name>\fR ] [ \fB-p <port number>\fR ] [ \fB-s <configuration file>\fR ]
 
 .SH "DESCRIPTION"
 .PP
@@ -17,7 +17,7 @@ This program is part of the Samba suite.
 \fBnmbd\fR is a server that understands 
 and can reply to NetBIOS over IP name service requests, like 
 those produced by SMB/CIFS clients such as Windows 95/98/ME, 
-Windows NT, Windows 2000, Windows XP and LanManager clients. It also
+Windows NT, Windows 2000, and LanManager clients. It also
 participates in the browsing protocols which make up the 
 Windows "Network Neighborhood" view.
 .PP
@@ -226,7 +226,7 @@ to allow transient problems to be diagnosed, whilst still running
 at a normally low log level.
 .SH "VERSION"
 .PP
-This man page is correct for version 3.0 of 
+This man page is correct for version 2.2 of 
 the Samba suite.
 .SH "SEE ALSO"
 .PP
diff --git a/docs/manpages/nmblookup.1 b/docs/manpages/nmblookup.1
index ecf10dfc1ff..49f602ab42f 100644
--- a/docs/manpages/nmblookup.1
+++ b/docs/manpages/nmblookup.1
@@ -3,12 +3,12 @@
 .\" <http://shell.ipoline.com/~elmert/comp/docbook2X/> 
 .\" Please send any bug reports, improvements, comments, patches, 
 .\" etc. to Steve Cheng <steve@ggi-project.org>.
-.TH "NMBLOOKUP" "1" "05 November 2002" "" ""
+.TH "NMBLOOKUP" "1" "01 October 2002" "" ""
 .SH NAME
 nmblookup \- NetBIOS over TCP/IP client used to lookup NetBIOS  names
 .SH SYNOPSIS
 
-\fBnmblookup\fR [ \fB-M\fR ] [ \fB-R\fR ] [ \fB-S\fR ] [ \fB-r\fR ] [ \fB-A\fR ] [ \fB-h\fR ] [ \fB-B <broadcast address>\fR ] [ \fB-U <unicast address>\fR ] [ \fB-d <debug level>\fR ] [ \fB-s <smb config file>\fR ] [ \fB-i <NetBIOS scope>\fR ] [ \fB-T\fR ] [ \fB-f\fR ] \fBname\fR
+\fBnmblookup\fR [ \fB-M\fR ] [ \fB-R\fR ] [ \fB-S\fR ] [ \fB-r\fR ] [ \fB-A\fR ] [ \fB-h\fR ] [ \fB-B <broadcast address>\fR ] [ \fB-U <unicast address>\fR ] [ \fB-d <debug level>\fR ] [ \fB-s <smb config file>\fR ] [ \fB-i <NetBIOS scope>\fR ] [ \fB-T\fR ] \fBname\fR
 
 .SH "DESCRIPTION"
 .PP
@@ -110,11 +110,6 @@ DNS name, and printed out before each
 
 pair that is the normal output.
 .TP
-\fB-f\fR
-Show which flags apply to the name that has been looked up. Possible 
-answers are zero or more of: Response, Authoritative, 
-Truncated, Recursion_Desired, Recursion_Available, Broadcast.
-.TP
 \fBname\fR
 This is the NetBIOS name being queried. Depending 
 upon the previous options this may be a NetBIOS name or IP address. 
@@ -139,7 +134,7 @@ would query the WINS server samba.org for the domain
 master browser (1B name type) for the IRIX workgroup.
 .SH "VERSION"
 .PP
-This man page is correct for version 3.0 of 
+This man page is correct for version 2.2 of 
 the Samba suite.
 .SH "SEE ALSO"
 .PP
diff --git a/docs/manpages/pdbedit.8 b/docs/manpages/pdbedit.8
index b3c1f72c33a..38e5efab597 100644
--- a/docs/manpages/pdbedit.8
+++ b/docs/manpages/pdbedit.8
@@ -3,12 +3,12 @@
 .\" <http://shell.ipoline.com/~elmert/comp/docbook2X/> 
 .\" Please send any bug reports, improvements, comments, patches, 
 .\" etc. to Steve Cheng <steve@ggi-project.org>.
-.TH "PDBEDIT" "8" "05 November 2002" "" ""
+.TH "PDBEDIT" "8" "01 October 2002" "" ""
 .SH NAME
 pdbedit \- manage the SAM database
 .SH SYNOPSIS
 
-\fBpdbedit\fR [ \fB-l\fR ] [ \fB-v\fR ] [ \fB-w\fR ] [ \fB-u username\fR ] [ \fB-f fullname\fR ] [ \fB-h homedir\fR ] [ \fB-D drive\fR ] [ \fB-S script\fR ] [ \fB-p profile\fR ] [ \fB-a\fR ] [ \fB-m\fR ] [ \fB-x\fR ] [ \fB-i passdb-backend\fR ] [ \fB-e passdb-backend\fR ] [ \fB-b passdb-backend\fR ] [ \fB-d debuglevel\fR ] [ \fB-s configfile\fR ] [ \fB-P account-policy\fR ] [ \fB-V value\fR ]
+\fBpdbedit\fR [ \fB-l\fR ] [ \fB-v\fR ] [ \fB-w\fR ] [ \fB-u username\fR ] [ \fB-f fullname\fR ] [ \fB-h homedir\fR ] [ \fB-d drive\fR ] [ \fB-s script\fR ] [ \fB-p profile\fR ] [ \fB-a\fR ] [ \fB-m\fR ] [ \fB-x\fR ] [ \fB-i passdb-backend\fR ] [ \fB-e passdb-backend\fR ] [ \fB-b passdb-backend\fR ] [ \fB-D debuglevel\fR ]
 
 .SH "DESCRIPTION"
 .PP
@@ -108,14 +108,14 @@ directory network path.
 
 Example: \fB-h "\\\\\\\\BERSERKER\\\\sorce"\fR
 .TP
-\fB-D drive\fR
+\fB-d drive\fR
 This option can be used while adding or
 modifing a user account. It will specify the windows drive
 letter to be used to map the home directory.
 
 Example: \fB-d "H:"\fR
 .TP
-\fB-S script\fR
+\fB-s script\fR
 This option can be used while adding or
 modifing a user account. It will specify the user's logon
 script path.
@@ -181,70 +181,6 @@ Example: \fBpdbedit -e smbpasswd:/root/samba-users.backup\fR
 Use a different default passdb backend. 
 
 Example: \fBpdbedit -b xml:/root/pdb-backup.xml -l\fR
-.TP
-\fB-P account-policy\fR
-Display an account policy
-
-Valid policies are: minimum password age, reset count minutes, disconnect time,
-user must logon to change password, password history, lockout duration, min password length,
-maximum password age and bad lockout attempt.
-
-Example: \fBpdbedit -P "bad lockout attempt"\fR
-
-
-.nf
-		account policy value for bad lockout attempt is 0
-		
-.fi
-.TP
-\fB-V account-policy-value\fR
-Sets an account policy to a specified value. 
-This option may only be used in conjunction
-with the \fI-P\fR option.
-
-Example: \fBpdbedit -P "bad lockout attempt" -V 3\fR
-
-
-.nf
-		account policy value for bad lockout attempt was 0
-		account policy value for bad lockout attempt is now 3
-		
-.fi
-.TP
-\fB-d|--debug=debuglevel\fR
-\fIdebuglevel\fR is an integer 
-from 0 to 10.  The default value if this parameter is 
-not specified is zero.
-
-The higher this value, the more detail will be 
-logged to the log files about the activities of the 
-server. At level 0, only critical errors and serious 
-warnings will be logged. Level 1 is a reasonable level for
-day to day running - it generates a small amount of 
-information about operations carried out.
-
-Levels above 1 will generate considerable 
-amounts of log data, and should only be used when 
-investigating a problem. Levels above 3 are designed for 
-use only by developers and generate HUGE amounts of log
-data, most of which is extremely cryptic.
-
-Note that specifying this parameter here will 
-override the log
-level file.
-.TP
-\fB-h|--help\fR
-Print a summary of command line options.
-.TP
-\fB-s <configuration file>\fR
-The file specified contains the 
-configuration details required by the server.  The 
-information in this file includes server-specific
-information such as what printcap file to use, as well 
-as descriptions of all the services that the server is 
-to provide. See \fIsmb.conf(5)\fR for more information.
-The default configuration file name is determined at 
-compile time.
 .SH "NOTES"
 .PP
 This command may be used only by root.
diff --git a/docs/manpages/rpcclient.1 b/docs/manpages/rpcclient.1
index e09892b5b99..083aef4f5f1 100644
--- a/docs/manpages/rpcclient.1
+++ b/docs/manpages/rpcclient.1
@@ -3,7 +3,7 @@
 .\" <http://shell.ipoline.com/~elmert/comp/docbook2X/> 
 .\" Please send any bug reports, improvements, comments, patches, 
 .\" etc. to Steve Cheng <steve@ggi-project.org>.
-.TH "RPCCLIENT" "1" "05 November 2002" "" ""
+.TH "RPCCLIENT" "1" "01 October 2002" "" ""
 .SH NAME
 rpcclient \- tool for executing client side  MS-RPC functions
 .SH SYNOPSIS
@@ -48,26 +48,9 @@ execute semicolon separated commands (listed
 below)) 
 .TP
 \fB-d|--debug=debuglevel\fR
-\fIdebuglevel\fR is an integer 
-from 0 to 10.  The default value if this parameter is 
-not specified is zero.
-
-The higher this value, the more detail will be 
-logged to the log files about the activities of the 
-server. At level 0, only critical errors and serious 
-warnings will be logged. Level 1 is a reasonable level for
-day to day running - it generates a small amount of 
-information about operations carried out.
-
-Levels above 1 will generate considerable 
-amounts of log data, and should only be used when 
-investigating a problem. Levels above 3 are designed for 
-use only by developers and generate HUGE amounts of log
-data, most of which is extremely cryptic.
-
-Note that specifying this parameter here will 
-override the log
-level file.
+set the debuglevel. Debug level 0 is the lowest 
+and 100 being the highest. This should be set to 100 if you are
+planning on submitting a bug report to the Samba team (see \fIBUGS.txt\fR). 
 .TP
 \fB-h|--help\fR
 Print a summary of command line options.
diff --git a/docs/manpages/samba.7 b/docs/manpages/samba.7
index 0635cc78841..c898b8ce737 100644
--- a/docs/manpages/samba.7
+++ b/docs/manpages/samba.7
@@ -3,7 +3,7 @@
 .\" <http://shell.ipoline.com/~elmert/comp/docbook2X/> 
 .\" Please send any bug reports, improvements, comments, patches, 
 .\" etc. to Steve Cheng <steve@ggi-project.org>.
-.TH "SAMBA" "7" "05 November 2002" "" ""
+.TH "SAMBA" "7" "01 October 2002" "" ""
 .SH NAME
 SAMBA \- A Windows SMB/CIFS fileserver for UNIX
 .SH SYNOPSIS
diff --git a/docs/manpages/smb.conf.5 b/docs/manpages/smb.conf.5
index 9afba79ef4d..dc2adaba476 100644
--- a/docs/manpages/smb.conf.5
+++ b/docs/manpages/smb.conf.5
@@ -3,7 +3,7 @@
 .\" <http://shell.ipoline.com/~elmert/comp/docbook2X/> 
 .\" Please send any bug reports, improvements, comments, patches, 
 .\" etc. to Steve Cheng <steve@ggi-project.org>.
-.TH "SMB.CONF" "5" "05 November 2002" "" ""
+.TH "SMB.CONF" "5" "03 October 2002" "" ""
 .SH NAME
 smb.conf \- The configuration file for the Samba suite
 .SH "SYNOPSIS"
@@ -303,6 +303,19 @@ These substitutions are mostly noted in the descriptions below,
 but there are some general substitutions which apply whenever they 
 might be relevant. These are:
 .TP
+\fB%S\fR
+the name of the current service, if any.
+.TP
+\fB%P\fR
+the root directory of the current service, 
+if any.
+.TP
+\fB%u\fR
+user name of the current service, if any.
+.TP
+\fB%g\fR
+primary group name of %u.
+.TP
 \fB%U\fR
 session user name (the user name that the client 
 wanted, not necessarily the same as the one they got).
@@ -310,6 +323,13 @@ wanted, not necessarily the same as the one they got).
 \fB%G\fR
 primary group name of %U.
 .TP
+\fB%H\fR
+the home directory of the user given 
+by %u.
+.TP
+\fB%v\fR
+the Samba version.
+.TP
 \fB%h\fR
 the Internet hostname that Samba is running 
 on.
@@ -329,6 +349,17 @@ on port 445, as clients no longer send this information
 \fB%M\fR
 the Internet name of the client machine.
 .TP
+\fB%N\fR
+the name of your NIS home directory server.  
+This is obtained from your NIS auto.map entry.  If you have 
+not compiled Samba with the \fB--with-automount\fR 
+option then this value will be the same as %L.
+.TP
+\fB%p\fR
+the path of the service's home directory, 
+obtained from your NIS auto.map entry. The NIS auto.map entry 
+is split up as "%N:%p".
+.TP
 \fB%R\fR
 the selected protocol level after 
 protocol negotiation. It can be one of CORE, COREPLUS, 
@@ -353,44 +384,10 @@ The IP address of the client machine.
 \fB%T\fR
 the current date and time.
 .TP
-\fB%D\fR
-Name of the domain or workgroup of the current user.
-.TP
 \fB%$(\fIenvvar\fB)\fR
 The value of the environment variable
 \fIenvar\fR.
 .PP
-The following substitutes apply only to some configuration options(only those 
-that are used when a connection has been established):
-.TP
-\fB%S\fR
-the name of the current service, if any.
-.TP
-\fB%P\fR
-the root directory of the current service, 
-if any.
-.TP
-\fB%u\fR
-user name of the current service, if any.
-.TP
-\fB%g\fR
-primary group name of %u.
-.TP
-\fB%H\fR
-the home directory of the user given 
-by %u.
-.TP
-\fB%N\fR
-the name of your NIS home directory server.  
-This is obtained from your NIS auto.map entry.  If you have 
-not compiled Samba with the \fB--with-automount\fR 
-option then this value will be the same as %L.
-.TP
-\fB%p\fR
-the path of the service's home directory, 
-obtained from your NIS auto.map entry. The NIS auto.map entry 
-is split up as "%N:%p".
-.PP
 There are some quite creative things that can be done 
 with these substitutions and other smb.conf options.
 .SH "NAME MANGLING"
@@ -436,7 +433,7 @@ case. This option can be use with "preserve case = yes"
 to permit long filenames to retain their case, while short names 
 are lowercased. Default \fByes\fR.
 .PP
-By default, Samba 3.0 has the same semantics as a Windows 
+By default, Samba 2.2 has the same semantics as a Windows 
 NT server, in that it is case insensitive but case preserving.
 .SH "NOTE ABOUT USERNAME/PASSWORD VALIDATION"
 .PP
@@ -688,9 +685,6 @@ each parameter for details.  Note that some are synonyms.
 \fIldap passwd sync\fR
 .TP 0.2i
 \(bu
-\fIldap trust ids\fR
-.TP 0.2i
-\(bu
 \fIlm announce\fR
 .TP 0.2i
 \(bu
@@ -1719,10 +1713,10 @@ Example: \fBannounce as = Win95\fR
 \fBannounce version (G)\fR
 This specifies the major and minor version numbers 
 that nmbd will use when announcing itself as a server. The default 
-is 4.9.  Do not change this parameter unless you have a specific 
+is 4.2.  Do not change this parameter unless you have a specific 
 need to set a Samba server to be a downlevel server.
 
-Default: \fBannounce version = 4.9\fR
+Default: \fBannounce version = 4.5\fR
 
 Example: \fBannounce version = 2.0\fR
 .TP
@@ -1812,12 +1806,12 @@ to obtain a byte range lock on a region of an open file, and the
 request has a time limit associated with it.
 
 If this parameter is set and the lock range requested 
-cannot be immediately satisfied, samba will internally 
+cannot be immediately satisfied, Samba 2.2 will internally 
 queue the lock request, and periodically attempt to obtain 
 the lock until the timeout period expires.
 
 If this parameter is set to no, then 
-samba will behave as previous versions of Samba would and 
+Samba 2.2 will behave as previous versions of Samba would and 
 will fail the lock request immediately if the lock range 
 cannot be obtained.
 
@@ -2075,7 +2069,7 @@ effect.
 Default: \fBdebug pid = no\fR
 .TP
 \fBdebug timestamp (G)\fR
-Samba debug log messages are timestamped 
+Samba 2.2 debug log messages are timestamped 
 by default. If you are running at a high   \fIdebug level\fR these timestamps
 can be distracting. This boolean parameter allows timestamping 
 to be turned off.
@@ -2939,7 +2933,7 @@ this by trying to log in as your guest user (perhaps by using the
 \fBsu -\fR command) and trying to print using the 
 system print command such as \fBlpr(1)\fR or \fB  lp(1)\fR.
 
-This parameter does not accept % macros, because
+This paramater does not accept % macros, because
 many parts of the system require this value to be
 constant for correct operation.
 
@@ -3397,25 +3391,20 @@ The \fIldap ssl\fR can be set to one of three values:
 .RS
 .TP 0.2i
 \(bu
+\fIOn\fR  =  Always use SSL when contacting the 
+\fIldap server\fR.
+.TP 0.2i
+\(bu
 \fIOff\fR = Never use SSL when querying the directory.
 .TP 0.2i
 \(bu
 \fIStart_tls\fR = Use the LDAPv3 StartTLS extended operation 
 (RFC2830) for communicating with the directory server.
-.TP 0.2i
-\(bu
-\fIOn\fR  =
-Use SSL on the ldaps port when contacting the 
-\fIldap server\fR.  Only
-available when the backwards-compatiblity \fB   --with-ldapsam\fR option is specified
-to configure.  See \fIpassdb backend\fR
 .RE
 
-Default : \fBldap ssl = start_tls\fR
+Default : \fBldap ssl = on\fR
 .TP
 \fBldap suffix (G)\fR
-Specifies where user and machine accounts are added to the tree. Can be overriden by \fBldap user suffix\fR and \fBldap machine suffix\fR. It also used as the base dn for all ldap searches. 
-
 Default : \fBnone\fR
 .TP
 \fBldap user suffix (G)\fR
@@ -3451,23 +3440,6 @@ The \fIldap passwd sync\fR can be set to one of three values:
 
 Default : \fBldap passwd sync = no\fR
 .TP
-\fBldap trust ids (G)\fR
-Normally, Samba validates each entry
-in the LDAP server against getpwnam().  This allows
-LDAP to be used for Samba with the unix system using
-NIS (for example) and also ensures that Samba does not
-present accounts that do not otherwise exist.  
-
-This option is used to disable this functionality, and
-instead to rely on the presence of the appropriate
-attributes in LDAP directly, which can result in a
-significant performance boost in some situations.  
-Setting this option to yes effectivly assumes
-that the local machine is running \fBnss_ldap\fR against the
-same LDAP server.
-
-Default: \fBldap trust ids = No\fR
-.TP
 \fBlevel2 oplocks (S)\fR
 This parameter controls whether Samba supports
 level2 (read-only) oplocks on a share.
@@ -4084,21 +4056,11 @@ a better algorithm (generates less collisions) in the names.
 However, many Win32 applications store the mangled names and so
 changing to the new algorithm must not be done
 lightly as these applications may break unless reinstalled.
+New installations of Samba may set the default to hash2.
 
-Default: \fBmangling method = hash2\fR
-
-Example: \fBmangling method = hash\fR
-.TP
-\fBmangle prefix (G)\fR
-controls the number of prefix
-characters from the original name used when generating
-the mangled names. A larger value will give a weaker
-hash and therefore more name collisions. The minimum
-value is 1 and the maximum value is 6.
-
-Default: \fBmangle prefix = 1\fR
+Default: \fBmangling method = hash\fR
 
-Example: \fBmangle prefix = 4\fR
+Example: \fBmangling method = hash2\fR
 .TP
 \fBmangled stack (G)\fR
 This parameter controls the number of mangled names 
@@ -4906,18 +4868,7 @@ backend.  Takes an LDAP URL as an optional argument (defaults to
 backend, with non unix account support.  Takes an LDAP URL as an optional argument (defaults to 
 \fBldap://localhost\fR)
 
-Note:  In this module, any account
-without a matching POSIX account is regarded
-as 'non unix'.
-
-See also                         \fInon unix account
-range\fR
-
-LDAP connections should be secured where
-possible.  This may be done using either
-Start-TLS (see                         \fIldap ssl\fR) or by
-specifying \fIldaps://\fR in
-the URL argument.  
+See also                         \fInon unix account range\fR
 .TP 0.2i
 \(bu
 \fBnisplussam\fR - The NIS+ based passdb backend. Takes name NIS domain as an optional argument. Only works with sun NIS+ servers. 
@@ -6602,8 +6553,7 @@ Example: \fBtotal print jobs = 5000\fR
 .TP
 \fBunicode (G)\fR
 Specifies whether Samba should try 
-to use unicode on the wire by default. Note: This does NOT
-mean that samba will assume that the unix machine uses unicode!
+to use unicode on the wire by default. 
 
 Default: \fBunicode = yes\fR
 .TP
@@ -6613,8 +6563,6 @@ Samba runs on uses. Samba needs to know this in order to be able to
 convert text to the charsets other SMB clients use.
 
 Default: \fBunix charset = ASCII\fR
-
-Example: \fBunix charset = UTF8\fR
 .TP
 \fBunix extensions(G)\fR
 This boolean parameter controls whether Samba 
@@ -7365,7 +7313,7 @@ sections. In particular, ensure that the permissions on spool
 directories are correct.
 .SH "VERSION"
 .PP
-This man page is correct for version 3.0 of 
+This man page is correct for version 2.2 of 
 the Samba suite.
 .SH "SEE ALSO"
 .PP
diff --git a/docs/manpages/smbcacls.1 b/docs/manpages/smbcacls.1
index 47be19d3d96..fccb6ec8876 100644
--- a/docs/manpages/smbcacls.1
+++ b/docs/manpages/smbcacls.1
@@ -3,7 +3,7 @@
 .\" <http://shell.ipoline.com/~elmert/comp/docbook2X/> 
 .\" Please send any bug reports, improvements, comments, patches, 
 .\" etc. to Steve Cheng <steve@ggi-project.org>.
-.TH "SMBCACLS" "1" "05 November 2002" "" ""
+.TH "SMBCACLS" "1" "01 October 2002" "" ""
 .SH NAME
 smbcacls \- Set or get ACLs on an NT file or directory names
 .SH SYNOPSIS
diff --git a/docs/manpages/smbclient.1 b/docs/manpages/smbclient.1
index 0c334750485..63d78658a6e 100644
--- a/docs/manpages/smbclient.1
+++ b/docs/manpages/smbclient.1
@@ -3,12 +3,12 @@
 .\" <http://shell.ipoline.com/~elmert/comp/docbook2X/> 
 .\" Please send any bug reports, improvements, comments, patches, 
 .\" etc. to Steve Cheng <steve@ggi-project.org>.
-.TH "SMBCLIENT" "1" "05 November 2002" "" ""
+.TH "SMBCLIENT" "1" "01 October 2002" "" ""
 .SH NAME
 smbclient \- ftp-like client to access SMB/CIFS resources  on servers
 .SH SYNOPSIS
 
-\fBsmbclient\fR \fBservicename\fR [ \fBpassword\fR ] [ \fB-b <buffer size>\fR ] [ \fB-d debuglevel\fR ] [ \fB-D Directory\fR ] [ \fB-U username\fR ] [ \fB-W workgroup\fR ] [ \fB-M <netbios name>\fR ] [ \fB-m maxprotocol\fR ] [ \fB-A authfile\fR ] [ \fB-N\fR ] [ \fB-l logfile\fR ] [ \fB-L <netbios name>\fR ] [ \fB-I destinationIP\fR ] [ \fB-E\fR ] [ \fB-c <command string>\fR ] [ \fB-i scope\fR ] [ \fB-O <socket options>\fR ] [ \fB-p port\fR ] [ \fB-R <name resolve order>\fR ] [ \fB-s <smb config file>\fR ] [ \fB-T<c|x>IXFqgbNan\fR ]
+\fBsmbclient\fR \fBservicename\fR [ \fBpassword\fR ] [ \fB-b <buffer size>\fR ] [ \fB-d debuglevel\fR ] [ \fB-D Directory\fR ] [ \fB-U username\fR ] [ \fB-W workgroup\fR ] [ \fB-M <netbios name>\fR ] [ \fB-m maxprotocol\fR ] [ \fB-A authfile\fR ] [ \fB-N\fR ] [ \fB-l logfile\fR ] [ \fB-L <netbios name>\fR ] [ \fB-I destinationIP\fR ] [ \fB-E <terminal code>\fR ] [ \fB-c <command string>\fR ] [ \fB-i scope\fR ] [ \fB-O <socket options>\fR ] [ \fB-p port\fR ] [ \fB-R <name resolve order>\fR ] [ \fB-s <smb config file>\fR ] [ \fB-T<c|x>IXFqgbNan\fR ]
 
 .SH "DESCRIPTION"
 .PP
diff --git a/docs/manpages/smbcontrol.1 b/docs/manpages/smbcontrol.1
index f78c4b96d4c..b60841dc942 100644
--- a/docs/manpages/smbcontrol.1
+++ b/docs/manpages/smbcontrol.1
@@ -3,7 +3,7 @@
 .\" <http://shell.ipoline.com/~elmert/comp/docbook2X/> 
 .\" Please send any bug reports, improvements, comments, patches, 
 .\" etc. to Steve Cheng <steve@ggi-project.org>.
-.TH "SMBCONTROL" "1" "05 November 2002" "" ""
+.TH "SMBCONTROL" "1" "01 October 2002" "" ""
 .SH NAME
 smbcontrol \- send messages to smbd, nmbd or winbindd processes
 .SH SYNOPSIS
diff --git a/docs/manpages/smbd.8 b/docs/manpages/smbd.8
index 5d1f6bc46ee..7e1b35d5aa6 100644
--- a/docs/manpages/smbd.8
+++ b/docs/manpages/smbd.8
@@ -3,7 +3,7 @@
 .\" <http://shell.ipoline.com/~elmert/comp/docbook2X/> 
 .\" Please send any bug reports, improvements, comments, patches, 
 .\" etc. to Steve Cheng <steve@ggi-project.org>.
-.TH "SMBD" "8" "05 November 2002" "" ""
+.TH "SMBD" "8" "01 October 2002" "" ""
 .SH NAME
 smbd \- server to provide SMB/CIFS services to clients
 .SH SYNOPSIS
diff --git a/docs/manpages/smbgroupedit.8 b/docs/manpages/smbgroupedit.8
index 0aebf3276e5..3ee7980e5d3 100644
--- a/docs/manpages/smbgroupedit.8
+++ b/docs/manpages/smbgroupedit.8
@@ -3,7 +3,7 @@
 .\" <http://shell.ipoline.com/~elmert/comp/docbook2X/> 
 .\" Please send any bug reports, improvements, comments, patches, 
 .\" etc. to Steve Cheng <steve@ggi-project.org>.
-.TH "SMBGROUPEDIT" "8" "05 November 2002" "" ""
+.TH "SMBGROUPEDIT" "8" "01 October 2002" "" ""
 .SH NAME
 smbgroupedit \- Query/set/change UNIX - Windows NT group mapping
 .SH SYNOPSIS
diff --git a/docs/manpages/smbmnt.8 b/docs/manpages/smbmnt.8
index 6f7d79ea5da..b316268b0cc 100644
--- a/docs/manpages/smbmnt.8
+++ b/docs/manpages/smbmnt.8
@@ -3,7 +3,7 @@
 .\" <http://shell.ipoline.com/~elmert/comp/docbook2X/> 
 .\" Please send any bug reports, improvements, comments, patches, 
 .\" etc. to Steve Cheng <steve@ggi-project.org>.
-.TH "SMBMNT" "8" "05 November 2002" "" ""
+.TH "SMBMNT" "8" "01 October 2002" "" ""
 .SH NAME
 smbmnt \- helper utility for mounting SMB filesystems
 .SH SYNOPSIS
diff --git a/docs/manpages/smbmount.8 b/docs/manpages/smbmount.8
index 525a10be7f2..ac67d0ee603 100644
--- a/docs/manpages/smbmount.8
+++ b/docs/manpages/smbmount.8
@@ -3,7 +3,7 @@
 .\" <http://shell.ipoline.com/~elmert/comp/docbook2X/> 
 .\" Please send any bug reports, improvements, comments, patches, 
 .\" etc. to Steve Cheng <steve@ggi-project.org>.
-.TH "SMBMOUNT" "8" "05 November 2002" "" ""
+.TH "SMBMOUNT" "8" "01 October 2002" "" ""
 .SH NAME
 smbmount \- mount an smbfs filesystem
 .SH SYNOPSIS
diff --git a/docs/manpages/smbpasswd.5 b/docs/manpages/smbpasswd.5
index 907e388beec..47eabcaec85 100644
--- a/docs/manpages/smbpasswd.5
+++ b/docs/manpages/smbpasswd.5
@@ -3,7 +3,7 @@
 .\" <http://shell.ipoline.com/~elmert/comp/docbook2X/> 
 .\" Please send any bug reports, improvements, comments, patches, 
 .\" etc. to Steve Cheng <steve@ggi-project.org>.
-.TH "SMBPASSWD" "5" "05 November 2002" "" ""
+.TH "SMBPASSWD" "5" "01 October 2002" "" ""
 .SH NAME
 smbpasswd \- The Samba encrypted password file
 .SH SYNOPSIS
@@ -135,7 +135,7 @@ in seconds since the epoch (1970) that the last change was made.
 All other colon separated fields are ignored at this time.
 .SH "VERSION"
 .PP
-This man page is correct for version 3.0 of 
+This man page is correct for version 2.2 of 
 the Samba suite.
 .SH "SEE ALSO"
 .PP
diff --git a/docs/manpages/smbpasswd.8 b/docs/manpages/smbpasswd.8
index e0fe91afe1a..ee097cf6f1d 100644
--- a/docs/manpages/smbpasswd.8
+++ b/docs/manpages/smbpasswd.8
@@ -3,7 +3,7 @@
 .\" <http://shell.ipoline.com/~elmert/comp/docbook2X/> 
 .\" Please send any bug reports, improvements, comments, patches, 
 .\" etc. to Steve Cheng <steve@ggi-project.org>.
-.TH "SMBPASSWD" "8" "05 November 2002" "" ""
+.TH "SMBPASSWD" "8" "01 October 2002" "" ""
 .SH NAME
 smbpasswd \- change a user's SMB password
 .SH SYNOPSIS
diff --git a/docs/manpages/smbsh.1 b/docs/manpages/smbsh.1
index 6aa70c470ca..b2eec12c814 100644
--- a/docs/manpages/smbsh.1
+++ b/docs/manpages/smbsh.1
@@ -3,7 +3,7 @@
 .\" <http://shell.ipoline.com/~elmert/comp/docbook2X/> 
 .\" Please send any bug reports, improvements, comments, patches, 
 .\" etc. to Steve Cheng <steve@ggi-project.org>.
-.TH "SMBSH" "1" "05 November 2002" "" ""
+.TH "SMBSH" "1" "01 October 2002" "" ""
 .SH NAME
 smbsh \- Allows access to Windows NT filesystem  using UNIX commands
 .SH SYNOPSIS
diff --git a/docs/manpages/smbspool.8 b/docs/manpages/smbspool.8
index 708b68b4d41..e9496e7a74f 100644
--- a/docs/manpages/smbspool.8
+++ b/docs/manpages/smbspool.8
@@ -3,7 +3,7 @@
 .\" <http://shell.ipoline.com/~elmert/comp/docbook2X/> 
 .\" Please send any bug reports, improvements, comments, patches, 
 .\" etc. to Steve Cheng <steve@ggi-project.org>.
-.TH "SMBSPOOL" "8" "05 November 2002" "" ""
+.TH "SMBSPOOL" "8" "01 October 2002" "" ""
 .SH NAME
 smbspool \- send a print file to an SMB printer
 .SH SYNOPSIS
diff --git a/docs/manpages/smbstatus.1 b/docs/manpages/smbstatus.1
index 0d2833025f6..fc452ae7313 100644
--- a/docs/manpages/smbstatus.1
+++ b/docs/manpages/smbstatus.1
@@ -3,7 +3,7 @@
 .\" <http://shell.ipoline.com/~elmert/comp/docbook2X/> 
 .\" Please send any bug reports, improvements, comments, patches, 
 .\" etc. to Steve Cheng <steve@ggi-project.org>.
-.TH "SMBSTATUS" "1" "05 November 2002" "" ""
+.TH "SMBSTATUS" "1" "01 October 2002" "" ""
 .SH NAME
 smbstatus \- report on current Samba connections
 .SH SYNOPSIS
diff --git a/docs/manpages/smbtar.1 b/docs/manpages/smbtar.1
index 93077fc16dc..bee874dcbad 100644
--- a/docs/manpages/smbtar.1
+++ b/docs/manpages/smbtar.1
@@ -3,7 +3,7 @@
 .\" <http://shell.ipoline.com/~elmert/comp/docbook2X/> 
 .\" Please send any bug reports, improvements, comments, patches, 
 .\" etc. to Steve Cheng <steve@ggi-project.org>.
-.TH "SMBTAR" "1" "05 November 2002" "" ""
+.TH "SMBTAR" "1" "01 October 2002" "" ""
 .SH NAME
 smbtar \- shell script for backing up SMB/CIFS shares  directly to UNIX tape drives
 .SH SYNOPSIS
diff --git a/docs/manpages/smbumount.8 b/docs/manpages/smbumount.8
index 013e5dd79e2..da16cc52881 100644
--- a/docs/manpages/smbumount.8
+++ b/docs/manpages/smbumount.8
@@ -3,7 +3,7 @@
 .\" <http://shell.ipoline.com/~elmert/comp/docbook2X/> 
 .\" Please send any bug reports, improvements, comments, patches, 
 .\" etc. to Steve Cheng <steve@ggi-project.org>.
-.TH "SMBUMOUNT" "8" "05 November 2002" "" ""
+.TH "SMBUMOUNT" "8" "01 October 2002" "" ""
 .SH NAME
 smbumount \- smbfs umount for normal users
 .SH SYNOPSIS
diff --git a/docs/manpages/swat.8 b/docs/manpages/swat.8
index 7ec1892131f..c097dd499b9 100644
--- a/docs/manpages/swat.8
+++ b/docs/manpages/swat.8
@@ -3,7 +3,7 @@
 .\" <http://shell.ipoline.com/~elmert/comp/docbook2X/> 
 .\" Please send any bug reports, improvements, comments, patches, 
 .\" etc. to Steve Cheng <steve@ggi-project.org>.
-.TH "SWAT" "8" "05 November 2002" "" ""
+.TH "SWAT" "8" "01 October 2002" "" ""
 .SH NAME
 swat \- Samba Web Administration Tool
 .SH SYNOPSIS
diff --git a/docs/manpages/testparm.1 b/docs/manpages/testparm.1
index a519fd69305..a53e066acf5 100644
--- a/docs/manpages/testparm.1
+++ b/docs/manpages/testparm.1
@@ -3,7 +3,7 @@
 .\" <http://shell.ipoline.com/~elmert/comp/docbook2X/> 
 .\" Please send any bug reports, improvements, comments, patches, 
 .\" etc. to Steve Cheng <steve@ggi-project.org>.
-.TH "TESTPARM" "1" "05 November 2002" "" ""
+.TH "TESTPARM" "1" "01 October 2002" "" ""
 .SH NAME
 testparm \- check an smb.conf configuration file for  internal correctness
 .SH SYNOPSIS
diff --git a/docs/manpages/testprns.1 b/docs/manpages/testprns.1
index dc44a7d1bfa..5d5cb97f315 100644
--- a/docs/manpages/testprns.1
+++ b/docs/manpages/testprns.1
@@ -3,7 +3,7 @@
 .\" <http://shell.ipoline.com/~elmert/comp/docbook2X/> 
 .\" Please send any bug reports, improvements, comments, patches, 
 .\" etc. to Steve Cheng <steve@ggi-project.org>.
-.TH "TESTPRNS" "1" "05 November 2002" "" ""
+.TH "TESTPRNS" "1" "01 October 2002" "" ""
 .SH NAME
 testprns \- check printer name for validity with smbd
 .SH SYNOPSIS
diff --git a/docs/manpages/vfstest.1 b/docs/manpages/vfstest.1
index c4958e3dd44..dc3092bc669 100644
--- a/docs/manpages/vfstest.1
+++ b/docs/manpages/vfstest.1
@@ -3,7 +3,7 @@
 .\" <http://shell.ipoline.com/~elmert/comp/docbook2X/> 
 .\" Please send any bug reports, improvements, comments, patches, 
 .\" etc. to Steve Cheng <steve@ggi-project.org>.
-.TH "VFSTEST" "1" "05 November 2002" "" ""
+.TH "VFSTEST" "1" "01 October 2002" "" ""
 .SH NAME
 vfstest \- tool for testing samba VFS modules
 .SH SYNOPSIS
@@ -25,26 +25,10 @@ Execute the specified (colon-seperated) commands.
 See below for the commands that are available.
 .TP
 \fB-d|--debug=debuglevel\fR
-\fIdebuglevel\fR is an integer 
-from 0 to 10.  The default value if this parameter is 
-not specified is zero.
-
-The higher this value, the more detail will be 
-logged to the log files about the activities of the 
-server. At level 0, only critical errors and serious 
-warnings will be logged. Level 1 is a reasonable level for
-day to day running - it generates a small amount of 
-information about operations carried out.
-
-Levels above 1 will generate considerable 
-amounts of log data, and should only be used when 
-investigating a problem. Levels above 3 are designed for 
-use only by developers and generate HUGE amounts of log
-data, most of which is extremely cryptic.
-
-Note that specifying this parameter here will 
-override the log
-level file.
+set the debuglevel. Debug level 0 is the lowest
+and 100 being the highest. This should be set to 100 if you are
+planning on submitting a bug report to the Samba team (see
+\fIBUGS.txt\fR).
 .TP
 \fB-h|--help\fR
 Print a summary of command line options.
diff --git a/docs/manpages/wbinfo.1 b/docs/manpages/wbinfo.1
index 312ef3acb23..96464987e3c 100644
--- a/docs/manpages/wbinfo.1
+++ b/docs/manpages/wbinfo.1
@@ -3,12 +3,12 @@
 .\" <http://shell.ipoline.com/~elmert/comp/docbook2X/> 
 .\" Please send any bug reports, improvements, comments, patches, 
 .\" etc. to Steve Cheng <steve@ggi-project.org>.
-.TH "WBINFO" "1" "05 November 2002" "" ""
+.TH "WBINFO" "1" "01 October 2002" "" ""
 .SH NAME
 wbinfo \- Query information from winbind daemon
 .SH SYNOPSIS
 
-\fBwbinfo\fR [ \fB-u\fR ] [ \fB-g\fR ] [ \fB-i ip\fR ] [ \fB-N netbios-name\fR ] [ \fB-n name\fR ] [ \fB-s sid\fR ] [ \fB-U uid\fR ] [ \fB-G gid\fR ] [ \fB-S sid\fR ] [ \fB-Y sid\fR ] [ \fB-t\fR ] [ \fB-m\fR ] [ \fB-r user\fR ] [ \fB-a user%password\fR ] [ \fB-A user%password\fR ] [ \fB-p\fR ]
+\fBwbinfo\fR [ \fB-u\fR ] [ \fB-g\fR ] [ \fB-h name\fR ] [ \fB-i ip\fR ] [ \fB-n name\fR ] [ \fB-s sid\fR ] [ \fB-U uid\fR ] [ \fB-G gid\fR ] [ \fB-S sid\fR ] [ \fB-Y sid\fR ] [ \fB-t\fR ] [ \fB-m\fR ] [ \fB-r user\fR ] [ \fB-a user%password\fR ] [ \fB-A user%password\fR ]
 
 .SH "DESCRIPTION"
 .PP
@@ -38,14 +38,14 @@ will also be listed.  Note that this operation does not assign
 group ids to any groups that have not already been seen by
 \fBwinbindd(8)\fR. 
 .TP
-\fB-N name\fR
-The \fI-N\fR option 
+\fB-h name\fR
+The \fI-h\fR option 
 queries \fBwinbindd(8)\fR to query the WINS
 server for the IP address associated with the NetBIOS name
 specified by the \fIname\fR parameter.
 .TP
-\fB-I ip\fR
-The \fI-I\fR option 
+\fB-i ip\fR
+The \fI-i\fR option 
 queries \fBwinbindd(8)\fR to send a node status
 request to get the NetBIOS name associated with the IP address
 specified by the \fIip\fR parameter.
@@ -119,7 +119,7 @@ succeeded, or 1 if the operation failed.  If the \fBwinbindd(8)
 failure. 
 .SH "VERSION"
 .PP
-This man page is correct for version 3.0 of 
+This man page is correct for version 2.2 of 
 the Samba suite.
 .SH "SEE ALSO"
 .PP
diff --git a/docs/manpages/winbindd.8 b/docs/manpages/winbindd.8
index 6ac186cbab7..fe02c424e11 100644
--- a/docs/manpages/winbindd.8
+++ b/docs/manpages/winbindd.8
@@ -3,12 +3,12 @@
 .\" <http://shell.ipoline.com/~elmert/comp/docbook2X/> 
 .\" Please send any bug reports, improvements, comments, patches, 
 .\" etc. to Steve Cheng <steve@ggi-project.org>.
-.TH "WINBINDD" "8" "05 November 2002" "" ""
+.TH "WINBINDD" "8" "01 October 2002" "" ""
 .SH NAME
 winbindd \- Name Service Switch daemon for resolving names  from NT servers
 .SH SYNOPSIS
 
-\fBwinbindd\fR [ \fB-i\fR ] [ \fB-B\fR ] [ \fB-d <debug level>\fR ] [ \fB-s <smb config file>\fR ] [ \fB-n\fR ]
+\fBwinbindd\fR [ \fB-i\fR ] [ \fB-d <debug level>\fR ] [ \fB-s <smb config file>\fR ]
 
 .SH "DESCRIPTION"
 .PP
@@ -85,25 +85,6 @@ Tells \fBwinbindd\fR to not
 become a daemon and detach from the current terminal. This 
 option is used by developers when interactive debugging 
 of \fBwinbindd\fR is required. 
-.TP
-\fB-n\fR
-Disable caching. This means winbindd will 
-always have to wait for a response from the domain controller 
-before it can respond to a client and this thus makes things 
-slower. The results will however be more accurate, since 
-results from the cache might not be up-to-date. This 
-might also temporarily hang winbindd if the DC doesn't respond.
-.TP
-\fB-B\fR
-Dual daemon mode. This means winbindd will run 
-as 2 threads. The first will answer all requests from the cache, 
-thus making responses to clients faster. The other will 
-update the cache for the query that the first has just responded. 
-Advantage of this is that responses are accurate and fast.
-.TP
-\fB-s|--conf=smb.conf\fR
-Specifies the location of the all-important
-\fIsmb.conf\fR file. 
 .SH "NAME AND ID RESOLUTION"
 .PP
 Users and groups on a Windows NT server are assigned 
@@ -310,7 +291,7 @@ This directory is by default \fI/usr/local/samba/var/locks
 Storage for cached user and group information.
 .SH "VERSION"
 .PP
-This man page is correct for version 3.0 of
+This man page is correct for version 2.2 of
 the Samba suite.
 .SH "SEE ALSO"
 .PP
diff --git a/docs/roadmap-3.html b/docs/roadmap-3.html
new file mode 100644
index 00000000000..00fd31b32e3
--- /dev/null
+++ b/docs/roadmap-3.html
@@ -0,0 +1,286 @@
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
+<HTML>
+<HEAD>
+<TITLE>SAMBA - opening windows to a wider world</TITLE>
+<META HTTP-EQUIV="Content-Type" content="text/html; charset=iso-8859-1">
+<META NAME="keywords" CONTENT="Samba,SMB,CIFS">
+<META NAME="description" CONTENT="Home of Samba, the SMB file server.">
+</HEAD>
+<BODY BGCOLOR="#ffffff" TEXT="#000000" VLINK="#292555" LINK="#292555" ALINK="#cc0033">
+
+
+<TABLE BORDER=0 WIDTH="85%" ALIGN="CENTER">
+  <tr VALIGN="middle">
+    <td ALIGN="left">
+	<ul>
+      <li><font size="-1"><a href="http://www.samba.org/samba/samba.html">home</a></font>
+      <li><font size="-1"><a href="http://www.samba.org/samba/index.html">mirrors</a></font>
+      <li><font size="-1"><a href="http://www.samba.org/samba/search.html">search</a></font>
+      <li><font size="-1"><a href="http://www.samba.org/samba/whatsnew/">announcements</a></font>
+      <li><font size="-1"><a href="http://www.samba.org/samba/archives.html">mailing&nbsp;lists</a></font>
+      <li><font size="-1"><a href="http://www.samba.org/samba/docs/">documentation</a></font>
+      <li><font size="-1"><a href="http://www.samba.org/samba/books.html">books</a></font>
+      <li><font size="-1"><a href="http://www.samba.org/samba/download.html">download</a></font>
+      <li><font size="-1"><a href="http://www.samba.org/samba/donations.html">donations</a></font>
+	</ul>
+    </td>
+    <td align="center">
+      <a href="http://www.samba.org/samba/samba.html"><img src="http://www.samba.org/samba/images/slmed.gif" 
+       width="226" height="107" border="0" alt="samba"></a>
+    </td>
+    <td align="left">
+	<ul>
+      <li><font size="-1"><a href="http://www.samba.org/samba/contacts.html">Contacts</a></font>
+      <li><font size="-1"><a href="http://www.samba.org/samba/team.html">Samba&nbsp;Team</a></font>
+      <li><font size="-1"><a href="http://www.samba.org/samba/devel/">development</a></font>
+      <li><font size="-1"><a href="http://www.samba.org/samba/support/">support</a></font>
+      <li><font size="-1"><a href="http://www.samba.org/samba/GUI/">gui&nbsp;interfaces</a></font>
+      <li><font size="-1"><a href="http://www.samba.org/samba/thanks.html">thanks</a></font>
+      <li><font size="-1"><a href="http://www.samba.org/samba/vendors/">vendors</a></font>
+      <li><font size="-1"><a href="http://samba-survey.sernet.de/">survey</a></font>
+      <li><font size="-1"><a href="http://www.samba.org/samba/tshirt.html">t-shirts,&nbsp;etc</a></font>
+	</ul>
+    </td>
+  </tr>
+
+  <TR ALIGN="center">
+    <TD COLSPAN="3"><BR>
+    <img src="http://www.samba.org/samba/images/bar1.gif" WIDTH="493" HEIGHT="26"
+    BORDER="0"
+    alt="=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=">
+    <br><br><br>
+    </TD>
+  </TR>
+
+<tr><td></td><TD ALIGN="left">
+
+
+<h3>Roadmap to 3.0</h3>
+<p><em>Page Last Updated</em> : $Date: 2002/11/01 15:24:20 $</em>
+<p><em>Estimated shipdate</em> : When it is ready.
+<p><em>Current Alpha Release</em> : <a href="http://www.samba.org/samba/ftp/alpha/samba-3.0alpha20.tar.gz">Samba-3.0alpha20</a>
+<p><em>Goals for 3.0alpha21 Release</em> :
+<ul>
+  <li>Produce RPMs for next alpha snapshot
+</ul>
+
+<h3>Road to 3.0</h3>
+
+<ul>
+  <li>(26th Sept, 2002) <em>SAMBA_3_0 cvs branch</em>
+  <p>With the release of 3.0alpha20, the SAMBA_3_0 cvs branch is now being
+  officially maintained in an effort to stablize certain features.  If you would
+  like to continue to test the soon-to-be-3.0 codease, please use this branch
+  tag when checking out the cvs tree.
+</ul>
+
+<h3>Roadmap Overview</h3>
+
+<p>This is a feature list/roadmap for the 3.0 release.  A lot of discussion
+has gone on about this.  Implementation is a separate discussion :-)
+If a feature is already done, I marked it as "Req".  It should be obvious
+from this roadmap that one the major hurdles for releasing the 3.0 code base
+is the completion of documentation updates.  
+
+<ul>
+  <li>X = done
+  <li>o = TODO
+  <li>- = unknown
+</ul>
+
+<p>
+Some features have been through basic testing that have
+<b>o</b>'s beneath testing column since we are not done.
+Items are ordered by maturity, not by importance.  If it
+is marked as <em>Required</em>, then it must be completed
+for a stable 3.0 release.
+
+<p>
+<table border="0" width="100%">
+  <tr>
+    <td width=50%><h3>Feature</h3></td>
+    <td align=center><h3>Required?</h3></td>
+    <td align=center><h3>Code</h3></td>
+    <td align=center><h3>Test</h3></td>
+    <td align=center><h3>Document</h3></td>
+  </tr>
+
+  <tr>
+    <td><em><u>Release Delaying Features</u></em></td>
+  </tr>
+
+  <tr>
+    <td width=50%>UNICODE support</td>
+    <td align=center>yes</td>
+    <td align=center>X</td>
+    <td align=center>X</td>
+    <td align=center>o</td>
+  </tr>
+
+  <tr>
+    <td width=50%>Windows 2000 AD client support</td>
+    <td align=center>yes</td>
+    <td align=center>X</td>
+    <td align=center>X</td>
+    <td align=center>o</td>
+  </tr>
+
+  <tr>
+    <td width=50%>winbind dual-daemon implementation</td>
+    <td align=center>yes</td>
+    <td align=center>X</td>
+    <td align=center>X</td>
+    <td align=center>o</td>
+  </tr>
+
+  <tr>
+    <td width=50%>pluggable passdb support</td>
+    <td align=center>yes</td>
+    <td align=center>X</td>
+    <td align=center>X</td>
+    <td align=center>o</td>
+  </tr>
+  
+  <tr>
+    <td width=50%>Windows NT 4.0 Style Trust Relationship</td>
+    <td align=center>yes</td>
+    <td align=center>X</td>
+    <td align=center>o</td>
+    <td align=center>o</td>
+  </tr>
+
+  <tr>
+    <td width=50%>NTLMv2</td>
+    <td align=center>yes</td>
+    <td align=center>X</td>
+    <td align=center>o</td>
+    <td align=center>o</td>
+  </tr>
+
+  <tr>
+    <td width=50%>One Time Migration script from a Windows NT
+      4.0 PDC to a Samba PDC</td>
+    <td align=center>yes</td>
+    <td align=center>X</td>
+    <td align=center>o</td>
+    <td align=center>o</td>
+  </tr>
+
+  <tr>
+    <td width=50%>Winbind working with Samba PDC</td>
+    <td align=center>yes</td>
+    <td align=center>X</td>
+    <td align=center>o</td>
+    <td align=center>o</td>
+  </tr>
+
+  <tr>
+    <td width=50%>Loadable RPC implementations</td>
+    <td align=center>yes</td>
+    <td align=center>o</td>
+    <td align=center>o</td>
+    <td align=center>o</td>
+  </tr>
+
+  <tr>
+    <td width=50%>hook for utilizing a centralized winbindd id map database</td>
+    <td align=center>yes</td>
+    <td align=center>o</td>
+    <td align=center>o</td>
+    <td align=center>o</td>
+  </tr>
+
+  <tr>
+    <td width=50%>Group Mapping support(privileges need some work, etc...)</td>
+    <td align=center>yes</td>
+    <td align=center>o</td>
+    <td align=center>o</td>
+    <td align=center>o</td>
+  </tr>
+
+  <tr>
+    <td><em><u>Non-Release Delaying Features</u></em></td>
+  </tr>
+
+  <tr>
+    <td width=50%>Stackable VFS</td>
+    <td align=center>no</td>
+    <td align=center>X</td>
+    <td align=center>o</td>
+    <td align=center>o</td>
+  </tr>
+
+  <tr>
+    <td width=50%>Publishing printers in AD (probably will make 3.0 but will not delay release)</td>
+    <td align=center>no</td>
+    <td align=center>o</td>
+    <td align=center>o</td>
+    <td align=center>o</td>
+  </tr>
+
+  <tr>
+    <td width=50%>SAM replication (full implementation still lacks
+      some decoding work; post 3.0)</td>
+    <td align=center>no</td>
+    <td align=center>-</td>
+    <td align=center>-</td>
+    <td align=center>-</td>
+  </tr>
+
+  <tr>
+    <td width=50%>SMB signing (needs more research; not a show stopper)</td>
+    <td align=center>no</td>
+    <td align=center>-</td>
+    <td align=center>-</td>
+    <td align=center>-</td>
+  </tr>
+
+  <tr>
+    <td width=50%>schannel, ntlmv2 sign &amp; seal (needs more research)</td>
+    <td align=center>no</td>
+    <td align=center>-</td>
+    <td align=center>-</td>
+    <td align=center>-</td>
+  </tr>
+
+</table>
+
+
+<p>
+Plus the following interesting, but non-show stopping projects
+
+<ul>
+  <li>background updates of print queues via a dedicated process
+  <li>WINS replication with Windows NT WINS servers
+  <li>alternative backend for WINS database
+</ul>
+
+
+
+</td>
+<td></td>
+</tr>
+
+  <TR ALIGN="center">
+    <TD COLSPAN="3"><BR><BR><BR><img src="http://www.samba.org/samba/images/bar1.gif" WIDTH="493" HEIGHT="26" BORDER="0" alt="=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-="></TD>
+  </TR>
+  <TR>
+    <TD COLSPAN="3" ALIGN="center">
+      <em>samba - opening windows to a wider world</em>
+    </TD>
+  </TR>
+</TABLE>
+
+<table align="center">
+<tr><td>
+<form method="post" action="http://de.samba.org/cgi-bin/htsearch">
+<input type="text" size="30" name="words" value="">
+<input type="submit" value="Search">
+</form>
+</td>
+</tr></table>
+
+
+</BODY>
+</HTML>
+
diff --git a/examples/LDAP/README b/examples/LDAP/README
index 42cf4ff33a2..281a66e65aa 100644
--- a/examples/LDAP/README
+++ b/examples/LDAP/README
@@ -5,7 +5,7 @@
 !==
 
 This is a quick and dirty means of storing smbpasswd entries
-in LDAP.  Samba 2.2.x does not have any ability to grab
+in smbpasswd.  Samba 2.2.x does not have any ability to grab
 this information directly from LDAP so you will need to
 periodically generate an smbpasswd from an ldapsearch
 "(objectclass=smbPasswordEntry)".
diff --git a/examples/VFS/.cvsignore b/examples/VFS/.cvsignore
index 92b494f978a..0b0923a496a 100644
--- a/examples/VFS/.cvsignore
+++ b/examples/VFS/.cvsignore
@@ -1,4 +1,2 @@
 .libs
 *.so
-*.o
-Makefile
diff --git a/examples/VFS/README b/examples/VFS/README
index 25254c1ffc6..1b099290591 100644
--- a/examples/VFS/README
+++ b/examples/VFS/README
@@ -1,14 +1,53 @@
-README for Samba Virtual File System (VFS) Example
+README for Samba Virtual File System (VFS) Examples
 ===================================================
 
-This directory contains a skeleton VFS module.  When used,
-this module simply passes all requests back to the disk functions
-(i.e it operates as a passthrough filter).  It should be
-useful as a starting point for developing new VFS
-modules. 
+This directory contains some sample code to demonstrate VFS
+construction.  The following VFS modules are given:
 
-Please read the VFS chapter in the HOWTO collection for general help 
-on the usage of VFS modules.
+	skel
+		A skeleton VFS module.  When used, this module simply
+		passes all requests back to the disk functions (i.e it
+		operates as a passthrough filter).  It should be
+		useful as a starting point for developing new VFS
+		modules. 
+
+	audit
+		A simple module to audit file access to the syslog
+		facility.  The following operations are logged: share
+		connect/disconnect, directory opens/create/remove,
+		file open/close/rename/unlink/chmod.
+
+	recycle
+		A recycle-bin like modules. When used any unlink call
+		will be intercepted and files moved to the recycle
+		directory nstead of beeing deleted.
+
+	block
+		A simple module to block access to certain mount points or 
+		directories. This module only hides the specified directories 
+		and all directories beneath them. It should NOT be used to
+		secure directories. If the name of a file in one of those
+		directories is known, the file can still be opened.
+
+	netatalk
+		A netatalk module, that will ease co-existence of samba and
+		netatalk file sharing services.
+		Looka t the README for more informations.
+
+You may have problems to compile these modules, as shared libraries are
+compiled and linked in different ways on different systems.
+I currently tested them against GNU/linux and IRIX.
+
+To use the VFS modules, create a share similar to the one below.  The
+important parameter is the 'vfs object' parameter which must point to
+the exact pathname of the shared library object.
+
+       [audit]
+                comment = Audited /data directory
+                path = /data
+                vfs object = /path/to/audit.so
+                writeable = yes
+                browseable = yes
 
 Further documentation on writing VFS modules for Samba can be found in
-Samba Developers Guide.
+docs directory of the Samba source distribution.
diff --git a/examples/VFS/README.OtherModules b/examples/VFS/README.OtherModules
new file mode 100644
index 00000000000..5693d2e3f43
--- /dev/null
+++ b/examples/VFS/README.OtherModules
@@ -0,0 +1,51 @@
+This file contains a listing of various other VFS modules that 
+have been posted but don't currently reside in the Samba CVS 
+tree for one reason ot another (e.g. it is easy for the maintainer 
+to have his or her own CVS tree).
+
+No statemets about the stability or functionality any module
+should be implied due to its presence here.
+
+
+------------------------------------------------------------
+URL: http://www.css.tayloru.edu/~elorimer/databasefs/index.php
+
+Date: Sat, 28 Sep 2002 23:41:31 -0500
+From: Eric Lorimer <elorimer@css.tayloru.edu>
+To: samba-technical@lists.samba.org
+Subject: DatabaseFS VFS module
+
+Hello,
+
+I have created a VFS module which implements a fairly complete read-only
+filesystem.  It presents information from a database as a filesystem in
+a modular and generic way to allow different databases to be used
+(originally designed for organizing MP3s under directories such as
+"Artists," "Song Keywords," etc... I have since applied it to a student
+roster database very easily).  The directory structure is stored in the
+database itself and the module makes no assumptions about the database
+structure beyond the table it requires to run.  You can find it at:
+
+http://www.css.tayloru.edu/~elorimer/databasefs/index.php
+
+
+Any feedback would be appreciated: comments, suggestions, patches,
+etc...  If nothing else, hopefully it might prove useful for someone
+else who wishes to create a virtual filesystem.
+
+Thanks for the great product and keep up the good work.
+
+
+- Eric Lorimer
+
+------------------------------------------------------------
+URL: http://www.openantivirus.org/
+
+"samba-vscan is a proof-of-concept module for Samba, which
+uses the VFS (virtual file system) features of Samba 2.2.x/3.0
+alphaX. Of couse, Samba has to be compiled with VFS support. 
+samba-vscan supports various virus scanners and is maintained 
+by Rainer Link".
+
+------------------------------------------------------------
+
diff --git a/examples/VFS/README.netatalk b/examples/VFS/README.netatalk
new file mode 100644
index 00000000000..70f6eea316d
--- /dev/null
+++ b/examples/VFS/README.netatalk
@@ -0,0 +1,18 @@
+There is the new netatalk module both for HEAD.
+This one has some difference from previous module:
+
+-- it doesn't care about creating of .AppleDouble forks, just keeps ones in
+sync;
+
+-- if share in smb.conf doesn't contain .AppleDouble item in hide or veto 
+list, it will be added automatically.
+
+To my way of thinking, module became more lightweight and speedy.
+
+How to compile: 
+
+you should place proper netatalk.c into examples/VFS/ then run 'configure'
+from source/ and then run 'make' from examples/VFS/.
+
+add string 'vfs object = <path_to_netatalk_so>/netatlk.so' to smb.conf. It may
+be defined either as global or as share-specific parameter.
diff --git a/examples/VFS/audit.c b/examples/VFS/audit.c
new file mode 100644
index 00000000000..92b78c1c32f
--- /dev/null
+++ b/examples/VFS/audit.c
@@ -0,0 +1,268 @@
+/* 
+ * Auditing VFS module for samba.  Log selected file operations to syslog
+ * facility.
+ *
+ * Copyright (C) Tim Potter, 1999-2000
+ * Copyright (C) Alexander Bokovoy, 2002
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *  
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *  
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, write to the Free Software
+ * Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
+ */
+
+#include "config.h"
+#include <stdio.h>
+#include <sys/stat.h>
+#ifdef HAVE_UTIME_H
+#include <utime.h>
+#endif
+#ifdef HAVE_DIRENT_H
+#include <dirent.h>
+#endif
+#include <syslog.h>
+#ifdef HAVE_FCNTL_H
+#include <fcntl.h>
+#endif
+#include <errno.h>
+#include <string.h>
+#include <includes.h>
+#include <vfs.h>
+
+#ifndef SYSLOG_FACILITY
+#define SYSLOG_FACILITY   LOG_USER
+#endif
+
+#ifndef SYSLOG_PRIORITY
+#define SYSLOG_PRIORITY   LOG_NOTICE
+#endif
+
+/* Function prototypes */
+
+static int audit_connect(struct connection_struct *conn, const char *svc, const char *user);
+static void audit_disconnect(struct connection_struct *conn);
+static DIR *audit_opendir(struct connection_struct *conn, const char *fname);
+static int audit_mkdir(struct connection_struct *conn, const char *path, mode_t mode);
+static int audit_rmdir(struct connection_struct *conn, const char *path);
+static int audit_open(struct connection_struct *conn, const char *fname, int flags, mode_t mode);
+static int audit_close(struct files_struct *fsp, int fd);
+static int audit_rename(struct connection_struct *conn, const char *old, const char *new);
+static int audit_unlink(struct connection_struct *conn, const char *path);
+static int audit_chmod(struct connection_struct *conn, const char *path, mode_t mode);
+static int audit_chmod_acl(struct connection_struct *conn, const char *name, mode_t mode);
+static int audit_fchmod(struct files_struct *fsp, int fd, mode_t mode);
+static int audit_fchmod_acl(struct files_struct *fsp, int fd, mode_t mode);
+
+/* VFS operations */
+
+static struct vfs_ops default_vfs_ops;   /* For passthrough operation */
+static struct smb_vfs_handle_struct *audit_handle;
+
+static vfs_op_tuple audit_ops[] = {
+    
+	/* Disk operations */
+
+	{audit_connect, 	SMB_VFS_OP_CONNECT, 	SMB_VFS_LAYER_LOGGER},
+	{audit_disconnect, 	SMB_VFS_OP_DISCONNECT, 	SMB_VFS_LAYER_LOGGER},
+
+	/* Directory operations */
+
+	{audit_opendir, 	SMB_VFS_OP_OPENDIR, 	SMB_VFS_LAYER_LOGGER},
+	{audit_mkdir, 		SMB_VFS_OP_MKDIR, 	SMB_VFS_LAYER_LOGGER},
+	{audit_rmdir, 		SMB_VFS_OP_RMDIR, 	SMB_VFS_LAYER_LOGGER},
+
+	/* File operations */
+
+	{audit_open, 		SMB_VFS_OP_OPEN, 	SMB_VFS_LAYER_LOGGER},
+	{audit_close, 		SMB_VFS_OP_CLOSE, 	SMB_VFS_LAYER_LOGGER},
+	{audit_rename, 		SMB_VFS_OP_RENAME, 	SMB_VFS_LAYER_LOGGER},
+	{audit_unlink, 		SMB_VFS_OP_UNLINK, 	SMB_VFS_LAYER_LOGGER},
+	{audit_chmod, 		SMB_VFS_OP_CHMOD, 	SMB_VFS_LAYER_LOGGER},
+	{audit_fchmod, 		SMB_VFS_OP_FCHMOD, 	SMB_VFS_LAYER_LOGGER},
+	{audit_chmod_acl, 	SMB_VFS_OP_CHMOD_ACL, 	SMB_VFS_LAYER_LOGGER},
+	{audit_fchmod_acl, 	SMB_VFS_OP_FCHMOD_ACL, 	SMB_VFS_LAYER_LOGGER},
+	
+	/* Finish VFS operations definition */
+	
+	{NULL, 			SMB_VFS_OP_NOOP, 	SMB_VFS_LAYER_NOOP}
+};
+
+/* VFS initialisation function.  Return vfs_op_tuple array back to SAMBA. */
+
+vfs_op_tuple *vfs_init(int *vfs_version, struct vfs_ops *def_vfs_ops, 
+			struct smb_vfs_handle_struct *vfs_handle)
+{
+	*vfs_version = SMB_VFS_INTERFACE_VERSION;
+	memcpy(&default_vfs_ops, def_vfs_ops, sizeof(struct vfs_ops));
+	
+	audit_handle = vfs_handle;
+
+	openlog("smbd_audit", LOG_PID, SYSLOG_FACILITY);
+	syslog(SYSLOG_PRIORITY, "VFS_INIT: vfs_ops loaded\n");
+	return audit_ops;
+}
+
+/* VFS finalization function. */
+void vfs_done(connection_struct *conn)
+{
+	syslog(SYSLOG_PRIORITY, "VFS_DONE: vfs module unloaded\n");
+}
+
+/* Implementation of vfs_ops.  Pass everything on to the default
+   operation but log event first. */
+
+static int audit_connect(struct connection_struct *conn, const char *svc, const char *user)
+{
+	syslog(SYSLOG_PRIORITY, "connect to service %s by user %s\n", 
+	       svc, user);
+
+	return default_vfs_ops.connect(conn, svc, user);
+}
+
+static void audit_disconnect(struct connection_struct *conn)
+{
+	syslog(SYSLOG_PRIORITY, "disconnected\n");
+	default_vfs_ops.disconnect(conn);
+}
+
+static DIR *audit_opendir(struct connection_struct *conn, const char *fname)
+{
+	DIR *result = default_vfs_ops.opendir(conn, fname);
+
+	syslog(SYSLOG_PRIORITY, "opendir %s %s%s\n",
+	       fname,
+	       (result == NULL) ? "failed: " : "",
+	       (result == NULL) ? strerror(errno) : "");
+
+	return result;
+}
+
+static int audit_mkdir(struct connection_struct *conn, const char *path, mode_t mode)
+{
+	int result = default_vfs_ops.mkdir(conn, path, mode);
+
+	syslog(SYSLOG_PRIORITY, "mkdir %s %s%s\n", 
+	       path,
+	       (result < 0) ? "failed: " : "",
+	       (result < 0) ? strerror(errno) : "");
+
+	return result;
+}
+
+static int audit_rmdir(struct connection_struct *conn, const char *path)
+{
+	int result = default_vfs_ops.rmdir(conn, path);
+
+	syslog(SYSLOG_PRIORITY, "rmdir %s %s%s\n", 
+	       path, 
+	       (result < 0) ? "failed: " : "",
+	       (result < 0) ? strerror(errno) : "");
+
+	return result;
+}
+
+static int audit_open(struct connection_struct *conn, const char *fname, int flags, mode_t mode)
+{
+	int result = default_vfs_ops.open(conn, fname, flags, mode);
+
+	syslog(SYSLOG_PRIORITY, "open %s (fd %d) %s%s%s\n", 
+	       fname, result,
+	       ((flags & O_WRONLY) || (flags & O_RDWR)) ? "for writing " : "", 
+	       (result < 0) ? "failed: " : "",
+	       (result < 0) ? strerror(errno) : "");
+
+	return result;
+}
+
+static int audit_close(struct files_struct *fsp, int fd)
+{
+	int result = default_vfs_ops.close(fsp, fd);
+
+	syslog(SYSLOG_PRIORITY, "close fd %d %s%s\n",
+	       fd,
+	       (result < 0) ? "failed: " : "",
+	       (result < 0) ? strerror(errno) : "");
+
+	return result;
+}
+
+static int audit_rename(struct connection_struct *conn, const char *old, const char *new)
+{
+	int result = default_vfs_ops.rename(conn, old, new);
+
+	syslog(SYSLOG_PRIORITY, "rename %s -> %s %s%s\n",
+	       old, new,
+	       (result < 0) ? "failed: " : "",
+	       (result < 0) ? strerror(errno) : "");
+
+	return result;    
+}
+
+static int audit_unlink(struct connection_struct *conn, const char *path)
+{
+	int result = default_vfs_ops.unlink(conn, path);
+
+	syslog(SYSLOG_PRIORITY, "unlink %s %s%s\n",
+	       path,
+	       (result < 0) ? "failed: " : "",
+	       (result < 0) ? strerror(errno) : "");
+
+	return result;
+}
+
+static int audit_chmod(struct connection_struct *conn, const char *path, mode_t mode)
+{
+	int result = default_vfs_ops.chmod(conn, path, mode);
+
+	syslog(SYSLOG_PRIORITY, "chmod %s mode 0x%x %s%s\n",
+	       path, mode,
+	       (result < 0) ? "failed: " : "",
+	       (result < 0) ? strerror(errno) : "");
+
+	return result;
+}
+
+static int audit_chmod_acl(struct connection_struct *conn, const char *path, mode_t mode)
+{
+	int result = default_vfs_ops.chmod_acl(conn, path, mode);
+
+	syslog(SYSLOG_PRIORITY, "chmod_acl %s mode 0x%x %s%s\n",
+	       path, mode,
+	       (result < 0) ? "failed: " : "",
+	       (result < 0) ? strerror(errno) : "");
+
+	return result;
+}
+
+static int audit_fchmod(struct files_struct *fsp, int fd, mode_t mode)
+{
+	int result = default_vfs_ops.fchmod(fsp, fd, mode);
+
+	syslog(SYSLOG_PRIORITY, "fchmod %s mode 0x%x %s%s\n",
+	       fsp->fsp_name, mode,
+	       (result < 0) ? "failed: " : "",
+	       (result < 0) ? strerror(errno) : "");
+
+	return result;
+}
+
+static int audit_fchmod_acl(struct files_struct *fsp, int fd, mode_t mode)
+{
+	int result = default_vfs_ops.fchmod_acl(fsp, fd, mode);
+
+	syslog(SYSLOG_PRIORITY, "fchmod_acl %s mode 0x%x %s%s\n",
+	       fsp->fsp_name, mode,
+	       (result < 0) ? "failed: " : "",
+	       (result < 0) ? strerror(errno) : "");
+
+	return result;
+}
diff --git a/examples/VFS/netatalk.c b/examples/VFS/netatalk.c
new file mode 100644
index 00000000000..353be36e6f0
--- /dev/null
+++ b/examples/VFS/netatalk.c
@@ -0,0 +1,430 @@
+/* 
+ * AppleTalk VFS module for Samba-3.x
+ *
+ * Copyright (C) Alexei Kotovich, 2002
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *  
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *  
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, write to the Free Software
+ * Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
+ */
+
+#include "config.h"
+#include <stdio.h>
+#include <sys/stat.h>
+#ifdef HAVE_UTIME_H
+#include <utime.h>
+#endif
+#ifdef HAVE_DIRENT_H
+#include <dirent.h>
+#endif
+#ifdef HAVE_FCNTL_H
+#include <fcntl.h>
+#endif
+#include <errno.h>
+#include <string.h>
+#include <includes.h>
+#include <vfs.h>
+
+#define APPLEDOUBLE	".AppleDouble"
+#define ADOUBLEMODE	0777
+
+/* atalk functions */
+
+static int atalk_build_paths(TALLOC_CTX *ctx, const char *path,
+  const char *fname, char **adbl_path, char **orig_path, 
+  SMB_STRUCT_STAT *adbl_info, SMB_STRUCT_STAT *orig_info);
+
+static int atalk_unlink_file(const char *path);
+
+static struct vfs_ops default_vfs_ops;	/* For passthrough operation */
+static struct smb_vfs_handle_struct *atalk_handle;
+
+static int atalk_get_path_ptr(char *path)
+{
+	int i   = 0;
+	int ptr = 0;
+	
+	for (i = 0; path[i]; i ++) {
+		if (path[i] == '/')
+			ptr = i;
+		/* get out some 'spam';) from win32's file name */
+		else if (path[i] == ':') {
+			path[i] = '\0';
+			break;
+		}
+	}
+	
+	return ptr;
+}
+
+static int atalk_build_paths(TALLOC_CTX *ctx, const char *path, const char *fname,
+                              char **adbl_path, char **orig_path,
+                              SMB_STRUCT_STAT *adbl_info, SMB_STRUCT_STAT *orig_info)
+{
+	int ptr0 = 0;
+	int ptr1 = 0;
+	char *dname = 0;
+	char *name  = 0;
+
+	if (!ctx || !path || !fname || !adbl_path || !orig_path ||
+		!adbl_info || !orig_info)
+		return -1;
+#if 0
+	DEBUG(3, ("ATALK: PATH: %s[%s]\n", path, fname));
+#endif
+	if (strstr(path, APPLEDOUBLE) || strstr(fname, APPLEDOUBLE)) {
+		DEBUG(3, ("ATALK: path %s[%s] already contains %s\n", path, fname, APPLEDOUBLE));
+		return -1;
+	}
+
+	if (fname[0] == '.') ptr0 ++;
+	if (fname[1] == '/') ptr0 ++;
+
+	*orig_path = talloc_asprintf(ctx, "%s/%s", path, &fname[ptr0]);
+
+	/* get pointer to last '/' */
+	ptr1 = atalk_get_path_ptr(*orig_path);
+
+	sys_lstat(*orig_path, orig_info);
+
+	if (S_ISDIR(orig_info->st_mode)) {
+		*adbl_path = talloc_asprintf(ctx, "%s/%s/%s/", 
+		  path, &fname[ptr0], APPLEDOUBLE);
+	} else {
+		dname = talloc_strdup(ctx, *orig_path);
+		dname[ptr1] = '\0';
+		name = *orig_path;
+		*adbl_path = talloc_asprintf(ctx, "%s/%s/%s", 
+		  dname, APPLEDOUBLE, &name[ptr1 + 1]);
+	}
+#if 0
+	DEBUG(3, ("ATALK: DEBUG:\n%s\n%s\n", *orig_path, *adbl_path)); 
+#endif
+	sys_lstat(*adbl_path, adbl_info);
+	return 0;
+}
+
+static int atalk_unlink_file(const char *path)
+{
+	int ret = 0;
+
+	become_root();
+	ret = unlink(path);
+	unbecome_root();
+	
+	return ret;
+}
+
+static void atalk_add_to_list(name_compare_entry **list)
+{
+	int i, count = 0;
+	name_compare_entry *new_list = 0;
+	name_compare_entry *cur_list = 0;
+
+	cur_list = *list;
+
+	if (cur_list) {
+		for (i = 0, count = 0; cur_list[i].name; i ++, count ++) {
+			if (strstr(cur_list[i].name, APPLEDOUBLE))
+				return;
+		}
+	}
+
+	if (!(new_list = calloc(1, 
+	  (count == 0 ? 1 : count + 1) * sizeof(name_compare_entry))))
+		return;
+
+	for (i = 0; i < count; i ++) {
+		new_list[i].name    = strdup(cur_list[i].name);
+		new_list[i].is_wild = cur_list[i].is_wild;
+	}
+
+	new_list[i].name    = strdup(APPLEDOUBLE);
+	new_list[i].is_wild = False;
+
+	free_namearray(*list);
+
+	*list = new_list;
+	new_list = 0;
+	cur_list = 0;
+}
+
+static void atalk_rrmdir(TALLOC_CTX *ctx, char *path)
+{
+	int n;
+	char *dpath;
+	struct dirent **namelist;
+
+	if (!path) return;
+
+	n = scandir(path, &namelist, 0, alphasort);
+	if (n < 0) {
+		return;
+	} else {
+		while (n --) {
+			if (strcmp(namelist[n]->d_name, ".") == 0 ||
+			  strcmp(namelist[n]->d_name, "..") == 0)
+				continue;
+			if (!(dpath = talloc_asprintf(ctx, "%s/%s", 
+			  path, namelist[n]->d_name)))
+				continue;
+			atalk_unlink_file(dpath);
+			free(namelist[n]);
+		}
+	}
+}
+
+/* Disk operations */
+
+/* Directory operations */
+
+DIR *atalk_opendir(struct connection_struct *conn, const char *fname)
+{
+	DIR *ret = 0;
+	
+	ret = default_vfs_ops.opendir(conn, fname);
+
+	/*
+	 * when we try to perform delete operation upon file which has fork
+	 * in ./.AppleDouble and this directory wasn't hidden by Samba,
+	 * MS Windows explorer causes the error: "Cannot find the specified file"
+	 * There is some workaround to avoid this situation, i.e. if
+	 * connection has not .AppleDouble entry in either veto or hide 
+	 * list then it would be nice to add one.
+	 */
+
+	atalk_add_to_list(&conn->hide_list);
+	atalk_add_to_list(&conn->veto_list);
+
+	return ret;
+}
+
+static int atalk_rmdir(struct connection_struct *conn, const char *path)
+{
+	BOOL add = False;
+	TALLOC_CTX *ctx = 0;
+	char *dpath;
+
+	if (!conn || !conn->origpath || !path) goto exit_rmdir;
+
+	/* due to there is no way to change bDeleteVetoFiles variable
+	 * from this module, gotta use talloc stuff..
+	 */
+
+	strstr(path, APPLEDOUBLE) ? (add = False) : (add = True);
+
+	if (!(ctx = talloc_init_named("remove_directory")))
+		goto exit_rmdir;
+
+	if (!(dpath = talloc_asprintf(ctx, "%s/%s%s", 
+	  conn->origpath, path, add ? "/"APPLEDOUBLE : "")))
+		goto exit_rmdir;
+
+	atalk_rrmdir(ctx, dpath);
+
+exit_rmdir:
+	talloc_destroy(ctx);
+	return default_vfs_ops.rmdir(conn, path);
+}
+
+/* File operations */
+
+static int atalk_rename(struct connection_struct *conn, const char *old, const char *new)
+{
+	int ret = 0;
+	char *adbl_path = 0;
+	char *orig_path = 0;
+	SMB_STRUCT_STAT adbl_info;
+	SMB_STRUCT_STAT orig_info;
+	TALLOC_CTX *ctx;
+
+	ret = default_vfs_ops.rename(conn, old, new);
+
+	if (!conn || !old) return ret;
+
+	if (!(ctx = talloc_init_named("rename_file")))
+		return ret;
+
+	if (atalk_build_paths(ctx, conn->origpath, old, &adbl_path, &orig_path, 
+	  &adbl_info, &orig_info) != 0)
+		return ret;
+
+	if (S_ISDIR(orig_info.st_mode) || S_ISREG(orig_info.st_mode)) {
+		DEBUG(3, ("ATALK: %s has passed..\n", adbl_path));		
+		goto exit_rename;
+	}
+
+	atalk_unlink_file(adbl_path);
+
+exit_rename:
+	talloc_destroy(ctx);
+	return ret;
+}
+
+static int atalk_unlink(struct connection_struct *conn, const char *path)
+{
+	int ret = 0, i;
+	char *adbl_path = 0;
+	char *orig_path = 0;
+	SMB_STRUCT_STAT adbl_info;
+	SMB_STRUCT_STAT orig_info;
+	TALLOC_CTX *ctx;
+
+	ret = default_vfs_ops.unlink(conn, path);
+
+	if (!conn || !path) return ret;
+
+	/* no .AppleDouble sync if veto or hide list is empty,
+	 * otherwise "Cannot find the specified file" error will be caused
+	 */
+
+	if (!conn->veto_list) return ret;
+	if (!conn->hide_list) return ret;
+
+	for (i = 0; conn->veto_list[i].name; i ++) {
+		if (strstr(conn->veto_list[i].name, APPLEDOUBLE))
+			break;
+	}
+
+	if (!conn->veto_list[i].name) {
+		for (i = 0; conn->hide_list[i].name; i ++) {
+			if (strstr(conn->hide_list[i].name, APPLEDOUBLE))
+				break;
+			else {
+				DEBUG(3, ("ATALK: %s is not hidden, skipped..\n",
+				  APPLEDOUBLE));		
+				return ret;
+			}
+		}
+	}
+
+	if (!(ctx = talloc_init_named("unlink_file")))
+		return ret;
+
+	if (atalk_build_paths(ctx, conn->origpath, path, &adbl_path, &orig_path, 
+	  &adbl_info, &orig_info) != 0)
+		return ret;
+
+	if (S_ISDIR(orig_info.st_mode) || S_ISREG(orig_info.st_mode)) {
+		DEBUG(3, ("ATALK: %s has passed..\n", adbl_path));
+		goto exit_unlink;
+	}
+
+	atalk_unlink_file(adbl_path);
+
+exit_unlink:	
+	talloc_destroy(ctx);
+	return ret;
+}
+
+static int atalk_chmod(struct connection_struct *conn, const char *path, mode_t mode)
+{
+	int ret = 0;
+	char *adbl_path = 0;
+	char *orig_path = 0;
+	SMB_STRUCT_STAT adbl_info;
+	SMB_STRUCT_STAT orig_info;
+	TALLOC_CTX *ctx;
+
+	ret = default_vfs_ops.chmod(conn, path, mode);
+
+	if (!conn || !path) return ret;
+
+	if (!(ctx = talloc_init_named("chmod_file")))
+		return ret;
+
+	if (atalk_build_paths(ctx, conn->origpath, path, &adbl_path, &orig_path,
+	  &adbl_info, &orig_info) != 0)
+		return ret;
+
+	if (!S_ISDIR(orig_info.st_mode) && !S_ISREG(orig_info.st_mode)) {
+		DEBUG(3, ("ATALK: %s has passed..\n", orig_path));		
+		goto exit_chmod;
+	}
+
+	chmod(adbl_path, ADOUBLEMODE);
+
+exit_chmod:	
+	talloc_destroy(ctx);
+	return ret;
+}
+
+static int atalk_chown(struct connection_struct *conn, const char *path, uid_t uid, gid_t gid)
+{
+	int ret = 0;
+	char *adbl_path = 0;
+	char *orig_path = 0;
+	SMB_STRUCT_STAT adbl_info;
+	SMB_STRUCT_STAT orig_info;
+	TALLOC_CTX *ctx;
+
+	ret = default_vfs_ops.chown(conn, path, uid, gid);
+
+	if (!conn || !path) return ret;
+
+	if (!(ctx = talloc_init_named("chown_file")))
+		return ret;
+
+	if (atalk_build_paths(ctx, conn->origpath, path, &adbl_path, &orig_path,
+	  &adbl_info, &orig_info) != 0)
+		return ret;
+
+	if (!S_ISDIR(orig_info.st_mode) && !S_ISREG(orig_info.st_mode)) {
+		DEBUG(3, ("ATALK: %s has passed..\n", orig_path));		
+		goto exit_chown;
+	}
+
+	chown(adbl_path, uid, gid);
+
+exit_chown:	
+	talloc_destroy(ctx);
+	return ret;
+}
+
+static vfs_op_tuple atalk_ops[] = {
+    
+	/* Directory operations */
+
+	{atalk_opendir, 	SMB_VFS_OP_OPENDIR, 	SMB_VFS_LAYER_TRANSPARENT},
+	{atalk_rmdir, 		SMB_VFS_OP_RMDIR, 	SMB_VFS_LAYER_TRANSPARENT},
+
+	/* File operations */
+
+	{atalk_rename, 		SMB_VFS_OP_RENAME, 	SMB_VFS_LAYER_TRANSPARENT},
+	{atalk_unlink, 		SMB_VFS_OP_UNLINK, 	SMB_VFS_LAYER_TRANSPARENT},
+	{atalk_chmod, 		SMB_VFS_OP_CHMOD, 	SMB_VFS_LAYER_TRANSPARENT},
+	{atalk_chown,		SMB_VFS_OP_CHOWN,	SMB_VFS_LAYER_TRANSPARENT},
+	
+	/* Finish VFS operations definition */
+	
+	{NULL, 			SMB_VFS_OP_NOOP, 	SMB_VFS_LAYER_NOOP}
+};
+
+/* VFS initialisation function.  Return vfs_op_tuple array back to SAMBA. */
+vfs_op_tuple *vfs_init(int *vfs_version, struct vfs_ops *def_vfs_ops,
+  struct smb_vfs_handle_struct *vfs_handle)
+{
+	*vfs_version = SMB_VFS_INTERFACE_VERSION;
+	memcpy(&default_vfs_ops, def_vfs_ops, sizeof(struct vfs_ops));
+	
+	atalk_handle = vfs_handle;
+
+	DEBUG(3, ("ATALK: vfs module loaded\n"));
+	return atalk_ops;
+}
+
+/* VFS finalization function. */
+void vfs_done(connection_struct *conn)
+{
+	DEBUG(3, ("ATALK: vfs module unloaded\n"));
+}
diff --git a/examples/VFS/recycle.c b/examples/VFS/recycle.c
new file mode 100644
index 00000000000..b59cb92a28f
--- /dev/null
+++ b/examples/VFS/recycle.c
@@ -0,0 +1,559 @@
+/*
+ * Recycle bin VFS module for Samba.
+ *
+ * Copyright (C) 2001, Brandon Stone, Amherst College, <bbstone@amherst.edu>.
+ * Copyright (C) 2002, Jeremy Allison - modified to make a VFS module.
+ * Copyright (C) 2002, Alexander Bokovoy - cascaded VFS adoption,
+ * Copyright (C) 2002, Juergen Hasch - added some options.
+ * Copyright (C) 2002, Simo Sorce
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, write to the Free Software
+ * Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
+ */
+
+#include "includes.h"
+
+#define ALLOC_CHECK(ptr, label) do { if ((ptr) == NULL) { DEBUG(0, ("recycle.bin: out of memory!\n")); errno = ENOMEM; goto label; } } while(0)
+
+static int vfs_recycle_debug_level = DBGC_VFS;
+
+#undef DBGC_CLASS
+#define DBGC_CLASS vfs_recycle_debug_level
+
+static const char *delimiter = "|";		/* delimiter for options */
+
+/* One per connection */
+
+typedef struct recycle_bin_struct
+{
+	TALLOC_CTX *ctx;
+	char	*repository;		/* name of the recycle bin directory */
+	BOOL	keep_dir_tree;		/* keep directory structure of deleted file in recycle bin */
+	BOOL	versions;		/* create versions of deleted files with identical name */
+	BOOL	touch;			/* touch access date of deleted file */
+	char	*exclude;		/* which files to exclude */
+	char	*exclude_dir;		/* which directories to exclude */
+	char	*noversions;		/* which files to exclude from versioning */
+	SMB_OFF_T maxsize;		/* maximum file size to be saved */
+} recycle_bin_struct;
+
+/* VFS operations */
+static struct vfs_ops default_vfs_ops;   /* For passthrough operation */
+
+static int recycle_connect(struct connection_struct *conn, const char *service, const char *user);
+static void recycle_disconnect(struct connection_struct *conn);
+static int recycle_unlink(connection_struct *, const char *);
+
+#define VFS_OP(x) ((void *) x)
+
+static vfs_op_tuple recycle_ops[] = {
+
+	/* Disk operations */
+	{VFS_OP(recycle_connect),	SMB_VFS_OP_CONNECT,	SMB_VFS_LAYER_TRANSPARENT},
+	{VFS_OP(recycle_disconnect),	SMB_VFS_OP_DISCONNECT,	SMB_VFS_LAYER_TRANSPARENT},
+
+	/* File operations */
+	{VFS_OP(recycle_unlink),	SMB_VFS_OP_UNLINK,	SMB_VFS_LAYER_TRANSPARENT},
+
+	{NULL,				SMB_VFS_OP_NOOP,	SMB_VFS_LAYER_NOOP}
+};
+
+static BOOL check_bool_param(const char *value)
+{
+	if (strwicmp(value, "yes") == 0 ||
+	    strwicmp(value, "true") == 0 ||
+	    strwicmp(value, "1") == 0)
+		return True;
+
+	return False;
+}
+
+/**
+ * VFS initialisation function.
+ *
+ * @retval initialised vfs_op_tuple array
+ **/
+vfs_op_tuple *vfs_init(int *vfs_version, struct vfs_ops *def_vfs_ops,
+			struct smb_vfs_handle_struct *vfs_handle)
+{
+	DEBUG(10, ("Initializing VFS module recycle\n"));
+	*vfs_version = SMB_VFS_INTERFACE_VERSION;
+	memcpy(&default_vfs_ops, def_vfs_ops, sizeof(struct vfs_ops));
+	vfs_recycle_debug_level = debug_add_class("vfs_recycle_bin");
+	if (vfs_recycle_debug_level == -1) {
+		vfs_recycle_debug_level = DBGC_VFS;
+		DEBUG(0, ("vfs_recycle: Couldn't register custom debugging class!\n"));
+	} else {
+		DEBUG(0, ("vfs_recycle: Debug class number of 'vfs_recycle': %d\n", vfs_recycle_debug_level));
+	}
+
+	return recycle_ops;
+}
+
+/**
+ * VFS finalization function.
+ *
+ **/
+void vfs_done(connection_struct *conn)
+{
+	DEBUG(10,("Called for connection %d\n", SNUM(conn)));
+}
+
+static int recycle_connect(struct connection_struct *conn, const char *service, const char *user)
+{
+	TALLOC_CTX *ctx = NULL;
+	recycle_bin_struct *recbin;
+	char *servicename;
+	char *tmp_str;
+
+	DEBUG(10, ("Called for service %s (%d) as user %s\n", service, SNUM(conn), user));
+
+	if (!(ctx = talloc_init_named("recycle bin"))) {
+		DEBUG(0, ("Failed to allocate memory in VFS module recycle_bin\n"));
+		return 0;
+	}
+
+	recbin = talloc(ctx,sizeof(recycle_bin_struct));
+	if ( recbin == NULL) {
+		DEBUG(0, ("Failed to allocate memory in VFS module recycle_bin\n"));
+		return -1;
+	}
+	recbin->ctx = ctx;
+
+	/* Set defaults */
+	recbin->repository = talloc_strdup(ctx, ".recycle");
+	ALLOC_CHECK(recbin->repository, error);
+	recbin->keep_dir_tree = False;
+	recbin->versions = False;
+	recbin->touch = False;
+	recbin->exclude = "";
+	recbin->exclude_dir = "";
+	recbin->noversions = "";
+	recbin->maxsize = 0;
+
+	/* parse configuration options */
+	servicename = talloc_strdup(recbin->ctx, lp_servicename(SNUM(conn)));
+	DEBUG(10, ("servicename = %s\n",servicename));
+	if ((tmp_str = lp_parm_string(servicename, "vfs_recycle_bin", "repository")) != NULL) {
+		recbin->repository = talloc_sub_conn(ctx, conn, tmp_str);
+		ALLOC_CHECK(recbin->repository, error);
+		trim_string(recbin->repository, "/", "/");
+		DEBUG(5, ("recycle.bin: repository = %s\n", recbin->repository));
+	}
+	if ((tmp_str = lp_parm_string(servicename, "vfs_recycle_bin", "keeptree")) != NULL) {
+		if (check_bool_param(tmp_str) == True)
+			recbin->keep_dir_tree = True;
+		DEBUG(5, ("recycle.bin: keeptree = %s\n", tmp_str));
+	}
+	if ((tmp_str = lp_parm_string(servicename, "vfs_recycle_bin", "versions")) != NULL) {
+		if (check_bool_param(tmp_str) == True)
+			recbin->versions = True;
+		DEBUG(5, ("recycle.bin: versions = %s\n", tmp_str));
+	}
+	if ((tmp_str = lp_parm_string(servicename, "vfs_recycle_bin", "touch")) != NULL) {
+		if (check_bool_param(tmp_str) == True)
+			recbin->touch = True;
+		DEBUG(5, ("recycle.bin: touch = %s\n", tmp_str));
+	}
+	if ((tmp_str = lp_parm_string(servicename, "vfs_recycle_bin", "maxsize")) != NULL) {
+		recbin->maxsize = strtoul(tmp_str, NULL, 10);
+		if (recbin->maxsize == 0) {
+			recbin->maxsize = -1;
+			DEBUG(5, ("recycle.bin: maxsize = -infinite-\n"));
+		} else {
+			DEBUG(5, ("recycle.bin: maxsize = %ld\n", (long int)recbin->maxsize));
+		}
+	}
+	if ((tmp_str = lp_parm_string(servicename, "vfs_recycle_bin", "exclude")) != NULL) {
+		recbin->exclude = talloc_strdup(ctx, tmp_str);
+		ALLOC_CHECK(recbin->exclude, error);
+		DEBUG(5, ("recycle.bin: exclude = %s\n", recbin->exclude));
+	}
+	if ((tmp_str = lp_parm_string(servicename,"vfs_recycle_bin", "exclude_dir")) != NULL) {
+		recbin->exclude_dir = talloc_strdup(ctx, tmp_str);
+		ALLOC_CHECK(recbin->exclude_dir, error);
+		DEBUG(5, ("recycle.bin: exclude_dir = %s\n", recbin->exclude_dir));
+	}
+	if ((tmp_str = lp_parm_string(servicename,"vfs_recycle_bin", "noversions")) != NULL) {
+		recbin->noversions = talloc_strdup(ctx, tmp_str);
+		ALLOC_CHECK(recbin->noversions, error);
+		DEBUG(5, ("recycle.bin: noversions = %s\n", recbin->noversions));
+	}
+
+	conn->vfs_private = (void *)recbin;
+	return default_vfs_ops.connect(conn, service, user);
+
+error:
+	talloc_destroy(ctx);
+	return -1;
+}
+
+static void recycle_disconnect(struct connection_struct *conn)
+{
+	DEBUG(10, ("Disconnecting VFS module recycle bin\n"));
+	if (conn->vfs_private) {
+		talloc_destroy(((recycle_bin_struct *)conn->vfs_private)->ctx);
+		conn->vfs_private = NULL;
+	}
+	default_vfs_ops.disconnect(conn);
+}
+
+static BOOL recycle_directory_exist(connection_struct *conn, const char *dname)
+{
+	SMB_STRUCT_STAT st;
+
+	if (default_vfs_ops.stat(conn, dname, &st) == 0) {
+		if (S_ISDIR(st.st_mode)) {
+			return True;
+		}
+	}
+
+	return False;
+}
+
+static BOOL recycle_file_exist(connection_struct *conn, const char *fname)
+{
+	SMB_STRUCT_STAT st;
+
+	if (default_vfs_ops.stat(conn, fname, &st) == 0) {
+		if (S_ISREG(st.st_mode)) {
+			return True;
+		}
+	}
+
+	return False;
+}
+
+/**
+ * Return file size
+ * @param conn connection
+ * @param fname file name
+ * @return size in bytes
+ **/
+static SMB_OFF_T recycle_get_file_size(connection_struct *conn, const char *fname)
+{
+	SMB_STRUCT_STAT st;
+	if (default_vfs_ops.stat(conn, fname, &st) != 0) {
+		DEBUG(0,("recycle.bin: stat for %s returned %s\n", fname, strerror(errno)));
+		return (SMB_OFF_T)0;
+	}
+	return(st.st_size);
+}
+
+/**
+ * Create directory tree
+ * @param conn connection
+ * @param dname Directory tree to be created
+ * @return Returns True for success
+ **/
+static BOOL recycle_create_dir(connection_struct *conn, const char *dname)
+{
+	int len;
+	mode_t mode;
+	char *new_dir = NULL;
+	char *tmp_str = NULL;
+	char *token;
+	char *tok_str;
+	BOOL ret = False;
+
+	mode = S_IREAD | S_IWRITE | S_IEXEC;
+
+	tmp_str = strdup(dname);
+	ALLOC_CHECK(tmp_str, done);
+	tok_str = tmp_str;
+
+	len = strlen(dname);
+	new_dir = (char *)malloc(len + 1);
+	ALLOC_CHECK(new_dir, done);
+	*new_dir = '\0';
+
+	/* Create directory tree if neccessary */
+	for(token = strtok(tok_str, "/"); token; token = strtok(NULL, "/")) {
+		safe_strcat(new_dir, token, len);
+		if (recycle_directory_exist(conn, new_dir))
+			DEBUG(10, ("recycle.bin: dir %s already exists\n", new_dir));
+		else {
+			DEBUG(5, ("recycle.bin: creating new dir %s\n", new_dir));
+			if (default_vfs_ops.mkdir(conn, new_dir, mode) != 0) {
+				DEBUG(1,("recycle.bin: mkdir failed for %s with error: %s\n", new_dir, strerror(errno)));
+				ret = False;
+				goto done;
+			}
+		}
+		safe_strcat(new_dir, "/", len);
+		}
+
+	ret = True;
+done:
+	SAFE_FREE(tmp_str);
+	SAFE_FREE(new_dir);
+	return ret;
+}
+
+/**
+ * Check if needle is contained exactly in haystack
+ * @param haystack list of parameters separated by delimimiter character
+ * @param needle string to be matched exactly to haystack
+ * @return True if found
+ **/
+static BOOL checkparam(const char *haystack, const char *needle)
+{
+	char *token;
+	char *tok_str;
+	char *tmp_str;
+	BOOL ret = False;
+
+	if (haystack == NULL || strlen(haystack) == 0 || needle == NULL || strlen(needle) == 0) {
+		return False;
+	}
+
+	tmp_str = strdup(haystack);
+	ALLOC_CHECK(tmp_str, done);
+	token = tok_str = tmp_str;
+
+	for(token = strtok(tok_str, delimiter); token; token = strtok(NULL, delimiter)) {
+		if(strcmp(token, needle) == 0) {
+			ret = True;
+			goto done;
+		}
+	}
+done:
+	SAFE_FREE(tmp_str);
+	return ret;
+}
+
+/**
+ * Check if needle is contained in haystack, * and ? patterns are resolved
+ * @param haystack list of parameters separated by delimimiter character
+ * @param needle string to be matched exectly to haystack including pattern matching
+ * @return True if found
+ **/
+static BOOL matchparam(const char *haystack, const char *needle)
+{
+	char *token;
+	char *tok_str;
+	char *tmp_str;
+	BOOL ret = False;
+
+	if (haystack == NULL || strlen(haystack) == 0 || needle == NULL || strlen(needle) == 0) {
+		return False;
+	}
+
+	tmp_str = strdup(haystack);
+	ALLOC_CHECK(tmp_str, done);
+	token = tok_str = tmp_str;
+
+	for(token = strtok(tok_str, delimiter); token; token = strtok(NULL, delimiter)) {
+		if (!unix_wild_match(token, needle)) {
+			ret = True;
+			goto done;
+		}
+	}
+done:
+	SAFE_FREE(tmp_str);
+	return ret;
+}
+
+/**
+ * Touch access date
+ **/
+static void recycle_touch(connection_struct *conn, const char *fname)
+{
+	SMB_STRUCT_STAT st;
+	struct utimbuf tb;
+	time_t currtime;
+
+	if (default_vfs_ops.stat(conn, fname, &st) != 0) {
+		DEBUG(0,("recycle.bin: stat for %s returned %s\n", fname, strerror(errno)));
+		return;
+	}
+	currtime = time(&currtime);
+	tb.actime = currtime;
+	tb.modtime = st.st_mtime;
+
+	if (default_vfs_ops.utime(conn, fname, &tb) == -1 )
+		DEBUG(0, ("recycle.bin: touching %s failed, reason = %s\n", fname, strerror(errno)));
+	}
+
+/**
+ * Check if file should be recycled
+ **/
+static int recycle_unlink(connection_struct *conn, const char *inname)
+{
+	recycle_bin_struct *recbin;
+	char *file_name = NULL;
+	char *path_name = NULL;
+       	char *temp_name = NULL;
+	char *final_name = NULL;
+	char *base;
+	int i;
+	SMB_BIG_UINT dfree, dsize, bsize;
+	SMB_OFF_T file_size, space_avail;
+	BOOL exist;
+	int rc = -1;
+
+	file_name = strdup(inname);
+	ALLOC_CHECK(file_name, done);
+
+	if (conn->vfs_private)
+		recbin = (recycle_bin_struct *)conn->vfs_private;
+	else {
+		DEBUG(0, ("Recycle bin not initialized!\n"));
+		rc = default_vfs_ops.unlink(conn, file_name);
+		goto done;
+	}
+
+	if(!recbin->repository || *(recbin->repository) == '\0') {
+		DEBUG(3, ("Recycle path not set, purging %s...\n", file_name));
+		rc = default_vfs_ops.unlink(conn, file_name);
+		goto done;
+	}
+
+	/* we don't recycle the recycle bin... */
+	if (strncmp(file_name, recbin->repository, strlen(recbin->repository)) == 0) {
+		DEBUG(3, ("File is within recycling bin, unlinking ...\n"));
+		rc = default_vfs_ops.unlink(conn, file_name);
+		goto done;
+	}
+
+	file_size = recycle_get_file_size(conn, file_name);
+	/* it is wrong to purge filenames only because they are empty imho
+	 *   --- simo
+	 *
+	if(fsize == 0) {
+		DEBUG(3, ("File %s is empty, purging...\n", file_name));
+		rc = default_vfs_ops.unlink(conn,file_name);
+		goto done;
+	}
+	 */
+
+	/* FIXME: this is wrong, we should check the hole size of the recycle bin is
+	 * not greater then maxsize, not the size of the single file, also it is better
+	 * to remove older files
+	 */
+	if(recbin->maxsize > 0 && file_size > recbin->maxsize) {
+		DEBUG(3, ("File %s exceeds maximum recycle size, purging... \n", file_name));
+		rc = default_vfs_ops.unlink(conn, file_name);
+		goto done;
+	}
+
+	/* FIXME: this is wrong: moving files with rename does not change the disk space
+	 * allocation
+	 *
+	space_avail = default_vfs_ops.disk_free(conn, ".", True, &bsize, &dfree, &dsize) * 1024L;
+	DEBUG(5, ("space_avail = %Lu, file_size = %Lu\n", space_avail, file_size));
+	if(space_avail < file_size) {
+		DEBUG(3, ("Not enough diskspace, purging file %s\n", file_name));
+		rc = default_vfs_ops.unlink(conn, file_name);
+		goto done;
+	}
+	 */
+
+	/* extract filename and path */
+	path_name = (char *)malloc(PATH_MAX);
+	ALLOC_CHECK(path_name, done);
+	*path_name = '\0';
+	safe_strcpy(path_name, file_name, PATH_MAX);
+	base = strrchr(path_name, '/');
+	if (base == NULL) {
+		base = file_name;
+		safe_strcpy(path_name, "/", PATH_MAX);
+	}
+	else {
+		*base = '\0';
+		base++;
+	}
+
+	DEBUG(10, ("recycle.bin: fname = %s\n", file_name));	/* original filename with path */
+	DEBUG(10, ("recycle.bin: fpath = %s\n", path_name));	/* original path */
+	DEBUG(10, ("recycle.bin: base = %s\n", base));		/* filename without path */
+
+	if (matchparam(recbin->exclude, base)) {
+		DEBUG(3, ("recycle.bin: file %s is excluded \n", base));
+		rc = default_vfs_ops.unlink(conn, file_name);
+		goto done;
+	}
+
+	/* FIXME: this check will fail if we have more than one level of directories,
+	 * we shoud check for every level 1, 1/2, 1/2/3, 1/2/3/4 .... 
+	 * 	---simo
+	 */
+	if (checkparam(recbin->exclude_dir, path_name)) {
+		DEBUG(3, ("recycle.bin: directory %s is excluded \n", path_name));
+		rc = default_vfs_ops.unlink(conn, file_name);
+		goto done;
+	}
+
+	temp_name = (char *)malloc(PATH_MAX);
+	ALLOC_CHECK(temp_name, done);
+	safe_strcpy(temp_name, recbin->repository, PATH_MAX);
+
+	/* see if we need to recreate the original directory structure in the recycle bin */
+	if (recbin->keep_dir_tree == True) {
+		safe_strcat(temp_name, "/", PATH_MAX);
+		safe_strcat(temp_name, path_name, PATH_MAX);
+	}
+
+	exist = recycle_directory_exist(conn, temp_name);
+	if (exist) {
+		DEBUG(10, ("recycle.bin: Directory already exists\n"));
+	} else {
+		DEBUG(10, ("recycle.bin: Creating directory %s\n", temp_name));
+		if (recycle_create_dir(conn, temp_name) == False) {
+			DEBUG(3, ("Could not create directory, purging %s...\n", file_name));
+			rc = default_vfs_ops.unlink(conn, file_name);
+			goto done;
+		}
+	}
+
+	final_name = (char *)malloc(PATH_MAX);
+	ALLOC_CHECK(final_name, done);
+	snprintf(final_name, PATH_MAX, "%s/%s", temp_name, base);
+	DEBUG(10, ("recycle.bin: recycled file name%s\n", temp_name));		/* new filename with path */
+
+	/* check if we should delete file from recycle bin */
+	if (recycle_file_exist(conn, final_name)) {
+		if (recbin->versions == False || matchparam(recbin->noversions, base) == True) {
+			DEBUG(3, ("recycle.bin: Removing old file %s from recycle bin\n", final_name));
+			if (default_vfs_ops.unlink(conn, final_name) != 0) {
+				DEBUG(1, ("recycle.bin: Error deleting old file: %s\n", strerror(errno)));
+			}
+		}
+	}
+
+	/* rename file we move to recycle bin */
+	i = 1;
+	while (recycle_file_exist(conn, final_name)) {
+		snprintf(final_name, PATH_MAX, "%s/Copy #%d of %s", temp_name, i++, base);
+	}
+
+	DEBUG(10, ("recycle.bin: Moving %s to %s\n", file_name, final_name));
+	rc = default_vfs_ops.rename(conn, file_name, final_name);
+	if (rc != 0) {
+		DEBUG(3, ("recycle.bin: Move error %d (%s), purging file %s (%s)\n", errno, strerror(errno), file_name, final_name));
+		rc = default_vfs_ops.unlink(conn, file_name);
+		goto done;
+	}
+
+	/* touch access date of moved file */
+	if (recbin->touch == True )
+		recycle_touch(conn, final_name);
+
+done:
+	SAFE_FREE(file_name);
+	SAFE_FREE(path_name);
+	SAFE_FREE(temp_name);
+	SAFE_FREE(final_name);
+	return rc;
+}
diff --git a/examples/libsmbclient/Makefile b/examples/libsmbclient/Makefile
index 5fe9977c0ae..8c1def8a162 100644
--- a/examples/libsmbclient/Makefile
+++ b/examples/libsmbclient/Makefile
@@ -11,7 +11,7 @@ all: testsmbc tree
 
 testsmbc: testsmbc.o 
 	@echo Linking testsmbc
-	@$(CC) $(CFLAGS) $(LDFLAGS) -o $@ $< -lsmbclient -L/usr/local/lib
+	@$(CC) $(CFLAGS) $(LDFLAGS) -o $@ $< -lsmbclient
 
 testsmbc-static: testsmbc.o 
 	@echo Linking testsmbc
diff --git a/examples/libsmbclient/testsmbc.c b/examples/libsmbclient/testsmbc.c
index 888a9c0d4f9..7aae9d85616 100644
--- a/examples/libsmbclient/testsmbc.c
+++ b/examples/libsmbclient/testsmbc.c
@@ -1,5 +1,6 @@
 /* 
-   Unix SMB/CIFS implementation.
+   Unix SMB/Netbios implementation.
+   Version 2.0
    SMB client library test program
    Copyright (C) Andrew Tridgell 1998
    Copyright (C) Richard Sharpe 2000
@@ -94,10 +95,74 @@ int main(int argc, char *argv[])
 
   if (argc > 1) {
 
-    if ((dh1 = smbc_opendir(argv[1]))<1) {
+    /* Try to list the print jobs ... */
 
-      fprintf(stderr, "Could not open directory: %s: %s\n",
-	      argv[1], strerror(errno));
+    if (smbc_list_print_jobs("smb://samba/pclp", print_list_fn) < 0) {
+
+      fprintf(stderr, "Could not list print jobs: %s, %d\n", strerror(errno), errno);
+      exit(1);
+
+    }
+
+    /* Try to delete the last job listed */
+
+    if (global_id > 0) {
+
+      fprintf(stdout, "Trying to delete print job %u\n", global_id);
+
+      if (smbc_unlink_print_job("smb://samba/pclp", global_id) < 0) {
+
+	fprintf(stderr, "Failed to unlink job id %u, %s, %u\n", global_id, 
+		strerror(errno), errno);
+
+	exit(1);
+
+      }
+
+    }
+
+    /* Try to print a file ... */
+
+    if (smbc_print_file("smb://samba/public/testfile2.txt", "smb://samba/pclp") < 0) {
+
+      fprintf(stderr, "Failed to print job: %s %u\n", strerror(errno), errno);
+      exit(1);
+
+    }
+
+    /* Try to delete argv[1] as a file ... */
+    
+    if (smbc_unlink(argv[1]) < 0) {
+
+      fprintf(stderr, "Could not unlink: %s, %s, %d\n",
+	      argv[1], strerror(errno), errno);
+
+      exit(0);
+
+    }
+
+    if ((dh1 = smbc_opendir("smb://"))<1) {
+
+      fprintf(stderr, "Could not open directory: smb://: %s\n",
+	      strerror(errno));
+
+      exit(1);
+
+    }
+
+    if ((dh2 = smbc_opendir("smb://sambanet")) < 0) {
+
+      fprintf(stderr, "Could not open directory: smb://sambanet: %s\n",
+	      strerror(errno));
+
+      exit(1);
+
+    }
+
+    if ((dh3 = smbc_opendir("smb://samba")) < 0) {
+
+      fprintf(stderr, "Could not open directory: smb://samba: %s\n",
+	      strerror(errno));
 
       exit(1);
 
@@ -138,6 +203,62 @@ int main(int argc, char *argv[])
 
     dirp = (char *)dirbuf;
 
+    if ((dirc = smbc_getdents(dh2, (struct smbc_dirent *)dirp, 
+			      sizeof(dirbuf))) < 0) {
+
+      fprintf(stderr, "Problems getting directory entries: %s\n",
+	      strerror(errno));
+
+      exit(1);
+
+    }
+
+    /* Now, process the list of names ... */
+
+    fprintf(stdout, "\nDirectory listing, size = %u\n", dirc);
+
+    while (dirc > 0) {
+
+      dsize = ((struct smbc_dirent *)dirp)->dirlen;
+      fprintf(stdout, "Dir Ent, Type: %u, Name: %s, Comment: %s\n",
+	      ((struct smbc_dirent *)dirp)->smbc_type, 
+	      ((struct smbc_dirent *)dirp)->name, 
+	      ((struct smbc_dirent *)dirp)->comment);
+
+      dirp += dsize;
+      (char *)dirc -= dsize;
+
+    }
+
+    dirp = (char *)dirbuf;
+
+    if ((dirc = smbc_getdents(dh3, (struct smbc_dirent *)dirp, 
+			      sizeof(dirbuf))) < 0) {
+
+      fprintf(stderr, "Problems getting directory entries: %s\n",
+	      strerror(errno));
+
+      exit(1);
+
+    }
+
+    /* Now, process the list of names ... */
+
+    fprintf(stdout, "Directory listing, size = %u\n", dirc);
+
+    while (dirc > 0) {
+
+      dsize = ((struct smbc_dirent *)dirp)->dirlen;
+      fprintf(stdout, "\nDir Ent, Type: %u, Name: %s, Comment: %s\n",
+	      ((struct smbc_dirent *)dirp)->smbc_type, 
+	      ((struct smbc_dirent *)dirp)->name, 
+	      ((struct smbc_dirent *)dirp)->comment);
+
+      (char *)dirp += dsize;
+      (char *)dirc -= dsize;
+
+    }
+
     exit(1);
 
   }
diff --git a/examples/libsmbclient/tree.c b/examples/libsmbclient/tree.c
index 8dc9cc408b3..da60236e601 100644
--- a/examples/libsmbclient/tree.c
+++ b/examples/libsmbclient/tree.c
@@ -51,8 +51,7 @@ void error_message(gchar *message) {
   /* Ensure that the dialog box is destroyed when the user clicks ok. */
      
   gtk_signal_connect_object (GTK_OBJECT (okay_button), "clicked",
-			     GTK_SIGNAL_FUNC (gtk_widget_destroy), 
-			     GTK_OBJECT(dialog));
+			     GTK_SIGNAL_FUNC (gtk_widget_destroy), dialog);
   gtk_container_add (GTK_CONTAINER (GTK_DIALOG(dialog)->action_area),
 		     okay_button);
 
@@ -745,6 +744,8 @@ int main( int   argc,
 
   /* Now, get the items in smb:/// and add them to the tree */
 
+  dirp = (struct smbc_dirent *)dirbuf;
+
   while ((err = smbc_getdents(dh, (struct smbc_dirent *)dirbuf, 
 			      sizeof(dirbuf))) != 0) {
 
@@ -757,8 +758,6 @@ int main( int   argc,
 
     }
 
-    dirp = (struct smbc_dirent *)dirbuf;
-
     fprintf(stdout, "Dir len: %u\n", err);
 
     while (err > 0) { /* Extract each entry and make a sub-tree */
diff --git a/examples/pdb/README b/examples/pdb/README
index 7fe45248824..561473129b0 100644
--- a/examples/pdb/README
+++ b/examples/pdb/README
@@ -1,7 +1,46 @@
 README for Samba Password Database (PDB) examples
 ====================================================
-Jelmer Vernooij <jelmer@nl.linux.org>
-Stefan (metze) Metzmacher <metze@metzemix.de>
+8-8-2002 Jelmer Vernooij <jelmer@samba.org>
+
+Added mysql and xml modules. See README in xml/ and mysql/ for details.
+
+21-6-2002 Stefan (metze) Metzmacher <metze@metzemix.de>
+
+I have added an interface versioning.
+
+Every module MUST have a pdb_version() function.
+
+this is defined in include/passdb.h:
+#define PDB_MODULE_VERSIONING_MAGIC \
+int pdb_version(void)\
+{\
+	return PASSDB_INTERFACE_VERSION;\
+}
+
+You MUST add this line inside a module:
+PDB_MODULE_VERSIONING_MAGIC
+
+21-6-2002 Stefan (metze) Metzmacher <metze@metzemix.de>
+
+The pdb_interface was changed:
+
+this function are deleted:
+static BOOL testsam_getsampwrid (struct pdb_methods *methods, SAM_ACCOUNT *user, uint32 rid)
+
+this function are added:
+static BOOL testsam_getsampwsid (struct pdb_methods *methods, SAM_ACCOUNT *user, DOM_SID sid)
+
+In the SAM_ACCOUNT struct:
+
+this fields are deleted:
+uint32 user_rid;
+uint32 group_rid;
+
+this fields are added:
+DOM_SID user_sid;
+DOM_SID group_sid; 
+
+15-2-2002 Jelmer Vernooij <jelmer@nl.linux.org>
 
 The pdb_test.c file in this directory contains a very basic example of 
 a pdb plugin. It just prints the name of the function that is executed using
@@ -11,5 +50,6 @@ future too..
 To debug passdb backends, try to run gdb on the 'pdbedit' executable. That's really much easier than restarting smbd constantly and attaching with your debugger.
 
 New passdb plugins should go into the samba lib directory, (/usr/lib/samba/ for
-most distributions). An example would be: /usr/lib/samba/test.so
+most distributions) and should be prefixed with 'pdb_'. An example would be: 
+/usr/lib/samba/pdb_test.so
 
diff --git a/examples/pdb/pdb_test.c b/examples/pdb/pdb_test.c
index f5fb57ddb20..c5ba094e42c 100644
--- a/examples/pdb/pdb_test.c
+++ b/examples/pdb/pdb_test.c
@@ -25,6 +25,9 @@ static int testsam_debug_level = DBGC_ALL;
 #undef DBGC_CLASS
 #define DBGC_CLASS testsam_debug_level
 
+/* define the version of the passdb interface */ 
+PDB_MODULE_VERSIONING_MAGIC
+
 /***************************************************************
  Start enumeration of the passwd list.
 ****************************************************************/
@@ -104,7 +107,7 @@ static NTSTATUS testsam_add_sam_account (struct pdb_methods *methods, SAM_ACCOUN
 	return NT_STATUS_NOT_IMPLEMENTED;
 }
 
-NTSTATUS testsam_init(PDB_CONTEXT *pdb_context, PDB_METHODS **pdb_method, const char *location)
+NTSTATUS pdb_init(PDB_CONTEXT *pdb_context, PDB_METHODS **pdb_method, const char *location)
 {
 	NTSTATUS nt_status;
 
@@ -138,12 +141,3 @@ NTSTATUS testsam_init(PDB_CONTEXT *pdb_context, PDB_METHODS **pdb_method, const
 
 	return NT_STATUS_OK;
 }
-
-int init_module(void);
-
-int init_module() {
-	if(smb_register_passdb("testsam", testsam_init, PASSDB_INTERFACE_VERSION))
-		return 0;
-
-	return 1;
-}
diff --git a/examples/printing/smbprint.old b/examples/printing/smbprint.old
deleted file mode 100755
index 5a00a2a8aa8..00000000000
--- a/examples/printing/smbprint.old
+++ /dev/null
@@ -1,95 +0,0 @@
-#!/bin/sh 
-
-# This script is an input filter for printcap printing on a unix machine. It
-# uses the smbclient program to print the file to the specified smb-based 
-# server and service.
-# For example you could have a printcap entry like this
-#
-# smb:lp=/dev/null:sd=/usr/spool/smb:sh:if=/usr/local/samba/smbprint
-#
-# which would create a unix printer called "smb" that will print via this 
-# script. You will need to create the spool directory /usr/spool/smb with
-# appropriate permissions and ownerships for your system.
-
-# Set these to the server and service you wish to print to 
-# In this example I have a WfWg PC called "lapland" that has a printer 
-# exported called "printer" with no password.
-
-#
-# Script further altered by hamiltom@ecnz.co.nz (Michael Hamilton)
-# so that the server, service, and password can be read from 
-# a /usr/var/spool/lpd/PRINTNAME/.config file.
-#
-# Script further modified by Richard Sharpe to fix some things.
-# Get rid of the -x on the first line, and add parameters
-#
-#    -t  now causes translate to be used when sending files
-#
-# In order for this to work the /etc/printcap entry must include an 
-# accounting file (af=...):
-#
-#   cdcolour:\
-#	:cm=CD IBM Colorjet on 6th:\
-#	:sd=/var/spool/lpd/cdcolour:\
-#	:af=/var/spool/lpd/cdcolour/acct:\
-#	:if=/usr/local/etc/smbprint:\
-#	:mx=0:\
-#	:lp=/dev/null:
-#
-# The /usr/var/spool/lpd/PRINTNAME/.config file should contain:
-#   server=PC_SERVER
-#   service=PR_SHARENAME
-#   password="password"
-#
-# E.g.
-#   server=PAULS_PC
-#   service=CJET_371
-#   password=""
-
-#
-# Debugging log file, change to /dev/null if you like.
-#
-logfile=/tmp/smb-print.log
-# logfile=/dev/null
-
-
-#
-# The last parameter to the filter is the accounting file name.
-#   Extract the directory name from the file name.
-#   Concat this with /.config to get the config file.
-#
-TRANS=0
-eval acct_file=\${$#}
-spool_dir=`dirname $acct_file` 
-config_file=$spool_dir/.config
-
-# Should read the following variables set in the config file:
-#   server
-#   service
-#   password
-eval `cat $config_file`
-
-while getopts t c; do
-  case $c in
-    t)
-       TRANS=1
-       ;;
-
-    '?')  # Bad parameters, ignore it ...
-       ;;
-  esac
-done
-#
-# Some debugging help, change the >> to > if you want to same space.
-#
-echo "server $server, service $service" >> $logfile
-
-(
-# NOTE You may wish to add the line `echo translate' if you want automatic
-# CR/LF translation when printing.
-	if [ $TRANS -eq 1 ]; then
-          echo translate
-        fi
-	echo "print -"
-	cat
-) | /usr/local/samba/bin/smbclient "\\\\$server\\$service" $password -U $server -N -P >> $logfile
diff --git a/examples/sam/Makefile.in b/examples/sam/Makefile.in
deleted file mode 100644
index d5df346a8c4..00000000000
--- a/examples/sam/Makefile.in
+++ /dev/null
@@ -1,28 +0,0 @@
-CC		= @CC@
-CFLAGS		= @CFLAGS@
-CPPFLAGS	= @CPPFLAGS@
-LDFLAGS		= @LDFLAGS@
-LDSHFLAGS	= -shared
-srcdir		= @builddir@
-FLAGS		=  $(CFLAGS) -Iinclude -I$(srcdir)/include -I$(srcdir)/ubiqx -I$(srcdir)/smbwrapper  -I. $(CPPFLAGS) -I$(srcdir)
-
-SAM_OBJS	= sam_skel.so
-
-# Default target
-
-default: $(SAM_OBJS)
-
-# Pattern rules
-
-%.so: %.o
-	$(CC) $(LDSHFLAGS) $(LDFLAGS) -o $@ $<
-
-%.o: %.c
-	$(CC) $(FLAGS) -c $<
-
-# Misc targets
-
-clean:
-	rm -rf .libs
-	rm -f core *~ *% *.bak \
-	$(SAM_OBJ) $(SAM_OBJS)
diff --git a/examples/sam/README b/examples/sam/README
deleted file mode 100644
index 9e9fbb26db3..00000000000
--- a/examples/sam/README
+++ /dev/null
@@ -1,29 +0,0 @@
-README for Samba SAM Database examples
-====================================================
-26-08-2002 Stefan (metze) Metzmacher <metze@metzemix.de>
-
-Every module MUST have a sam_version() function.
-
-this is defined in include/sam.h:
-#define SAM_MODULE_VERSIONING_MAGIC \
-int sam_version(void)\
-{\
-	return SAM_INTERFACE_VERSION;\
-}
-
-You MUST add this line inside a module:
-SAM_MODULE_VERSIONING_MAGIC
-
-
-The sam_skel.c file in this directory contains a very basic example of 
-a SAM plugin. It just prints the name of the function that is executed using
-DEBUG. Maybe it's nice to include some of the arguments to the function in the 
-future too..
-
-New SAM plugins should go into the samba lib directory, (/usr/lib/samba/ 
-for most distributions) and should be prefixed with 'sam_' and should go into the 
-subdir sam/. The SAM subsystem will search in /usr/lib/samba/sam and fall back to 
-/usr/lib/samba/ . 
-An example path would be: 
-/usr/lib/samba/sam/sam_skel.so
-
diff --git a/examples/sam/sam_skel.c b/examples/sam/sam_skel.c
deleted file mode 100644
index da3a3758947..00000000000
--- a/examples/sam/sam_skel.c
+++ /dev/null
@@ -1,250 +0,0 @@
-/*
-   Unix SMB/CIFS implementation.
-   this is a skeleton for SAM backend modules.
-	
-   Copyright (C) Stefan (metze) Metzmacher		2002
-   Copyright (C) Jelmer Vernooij				2002
-
-   This program is free software; you can redistribute it and/or modify
-   it under the terms of the GNU General Public License as published by
-   the Free Software Foundation; either version 2 of the License, or
-   (at your option) any later version.
-
-   This program is distributed in the hope that it will be useful,
-   but WITHOUT ANY WARRANTY; without even the implied warranty of
-   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-   GNU General Public License for more details.
-
-   You should have received a copy of the GNU General Public License
-   along with this program; if not, write to the Free Software
-   Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
-*/
-
-#include "includes.h"
-
-static int sam_skel_debug_level = DBGC_SAM;
-
-#undef DBGC_CLASS
-#define DBGC_CLASS sam_skel_debug_level
-
-/* define the version of the SAM interface */ 
-SAM_MODULE_VERSIONING_MAGIC
-
-/* General API */
-
-NTSTATUS sam_skel_get_sec_desc(const SAM_METHODS *sam_methods, const NT_USER_TOKEN *access_token, const DOM_SID *sid, SEC_DESC **sd)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-NTSTATUS sam_skel_set_sec_desc(const SAM_METHODS *sam_methods, const NT_USER_TOKEN *access_token, const DOM_SID *sid, const SEC_DESC *sd)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-	
-NTSTATUS sam_skel_lookup_sid(const SAM_METHODS *sam_methods, const NT_USER_TOKEN *access_token, const DOM_SID *sid, char **name, uint32 *type)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-NTSTATUS sam_skel_lookup_name(const SAM_METHODS *sam_methods, const NT_USER_TOKEN *access_token, const char *name, DOM_SID **sid, uint32 *type)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-	
-/* Domain API */
-
-NTSTATUS sam_skel_update_domain(const SAM_METHODS *sam_methods, const SAM_DOMAIN_HANDLE *domain)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-NTSTATUS sam_skel_get_domain_handle(const SAM_METHODS *sam_methods, const NT_USER_TOKEN *access_token, uint32 access_desired, SAM_DOMAIN_HANDLE **domain)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-
-/* Account API */
-
-NTSTATUS sam_skel_create_account(const SAM_METHODS *sam_methods, const NT_USER_TOKEN *access_token, uint32 access_desired, const char *group_name, uint16 acct_ctrl, SAM_ACCOUNT_HANDLE **account)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-NTSTATUS sam_skel_add_account(const SAM_METHODS *sam_methods, const SAM_ACCOUNT_HANDLE *account)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-NTSTATUS sam_skel_update_account(const SAM_METHODS *sam_methods, const SAM_ACCOUNT_HANDLE *account)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-NTSTATUS sam_skel_delete_account(const SAM_METHODS *sam_methods, const SAM_ACCOUNT_HANDLE *account)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-NTSTATUS sam_skel_enum_accounts(const SAM_METHODS *sam_methods, const NT_USER_TOKEN *access_token, uint16 acct_ctrl, uint32 *account_count, SAM_ACCOUNT_ENUM **accounts)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-
-NTSTATUS sam_skel_get_account_by_sid(const SAM_METHODS *sam_methods, const NT_USER_TOKEN *access_token, uint32 access_desired, const DOM_SID *accountsid, SAM_ACCOUNT_HANDLE **account)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-NTSTATUS sam_skel_get_account_by_name(const SAM_METHODS *sam_methods, const NT_USER_TOKEN *access_token, uint32 access_desired, const char *name, SAM_ACCOUNT_HANDLE **account)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-
-/* Group API */
-
-NTSTATUS sam_skel_create_group(const SAM_METHODS *sam_methods, const NT_USER_TOKEN *access_token, uint32 access_desired, const char *account_name, uint16 group_ctrl, SAM_GROUP_HANDLE **group)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-NTSTATUS sam_skel_add_group(const SAM_METHODS *sam_methods, const SAM_GROUP_HANDLE *group)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-NTSTATUS sam_skel_update_group(const SAM_METHODS *sam_methods, const SAM_GROUP_HANDLE *group)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-NTSTATUS sam_skel_delete_group(const SAM_METHODS *sam_methods, const SAM_GROUP_HANDLE *group)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-NTSTATUS sam_skel_enum_groups(const SAM_METHODS *sam_methods, const NT_USER_TOKEN *access_token, uint16 group_ctrl, uint32 *groups_count, SAM_GROUP_ENUM **groups)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-NTSTATUS sam_skel_get_group_by_sid(const SAM_METHODS *sam_methods, const NT_USER_TOKEN *access_token, uint32 access_desired, const DOM_SID *groupsid, SAM_GROUP_HANDLE **group)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-NTSTATUS sam_skel_get_group_by_name(const SAM_METHODS *sam_methods, const NT_USER_TOKEN *access_token, uint32 access_desired, const char *name, SAM_GROUP_HANDLE **group)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-
-NTSTATUS sam_skel_add_member_to_group(const SAM_METHODS *sam_methods, const SAM_GROUP_HANDLE *group, const SAM_GROUP_MEMBER *member)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-NTSTATUS sam_skel_delete_member_from_group(const SAM_METHODS *sam_methods, const SAM_GROUP_HANDLE *group, const SAM_GROUP_MEMBER *member)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-NTSTATUS sam_skel_enum_groupmembers(const SAM_METHODS *sam_methods, const SAM_GROUP_HANDLE *group, uint32 *members_count, SAM_GROUP_MEMBER **members)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-
-NTSTATUS sam_skel_get_groups_of_sid(const SAM_METHODS *sam_methods, const NT_USER_TOKEN *access_token, const DOM_SID **sids, uint16 group_ctrl, uint32 *group_count, SAM_GROUP_ENUM **groups)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-NTSTATUS sam_init(SAM_METHODS *sam_methods, const char *module_params)
-{
-	/* Functions your SAM module doesn't provide should be set 
-	 * to NULL */
-
-	sam_methods->sam_get_sec_desc = sam_skel_get_sec_desc;
-	sam_methods->sam_set_sec_desc = sam_skel_set_sec_desc;
-	
-	sam_methods->sam_lookup_sid = sam_skel_lookup_sid;
-	sam_methods->sam_lookup_name = sam_skel_lookup_name;
-	
-	/* Domain API */
-
-	sam_methods->sam_update_domain = sam_skel_update_domain;
-	sam_methods->sam_get_domain_handle = sam_skel_get_domain_handle;
-
-	/* Account API */
-
-	sam_methods->sam_create_account = sam_skel_create_account;
-	sam_methods->sam_add_account = sam_skel_add_account;
-	sam_methods->sam_update_account = sam_skel_update_account;
-	sam_methods->sam_delete_account = sam_skel_delete_account;
-	sam_methods->sam_enum_accounts = sam_skel_enum_accounts;
-
-	sam_methods->sam_get_account_by_sid = sam_skel_get_account_by_sid;
-	sam_methods->sam_get_account_by_name = sam_skel_get_account_by_name;
-
-	/* Group API */
-
-	sam_methods->sam_create_group = sam_skel_create_group;
-	sam_methods->sam_add_group = sam_skel_add_group;
-	sam_methods->sam_update_group = sam_skel_update_group;
-	sam_methods->sam_delete_group = sam_skel_delete_group;
-	sam_methods->sam_enum_groups = sam_skel_enum_groups;
-	sam_methods->sam_get_group_by_sid = sam_skel_get_group_by_sid;
-	sam_methods->sam_get_group_by_name = sam_skel_get_group_by_name;
-
-	sam_methods->sam_add_member_to_group = sam_skel_add_member_to_group;
-	sam_methods->sam_delete_member_from_group = sam_skel_delete_member_from_group;
-	sam_methods->sam_enum_groupmembers = sam_skel_enum_groupmembers;
-
-	sam_methods->sam_get_groups_of_sid = sam_skel_get_groups_of_sid;
-
-	sam_methods->free_private_data = NULL;
-
-
-	sam_skel_debug_level = debug_add_class("sam_skel");
-	if (sam_skel_debug_level == -1) {
-		sam_skel_debug_level = DBGC_SAM;
-		DEBUG(0, ("sam_skel: Couldn't register custom debugging class!\n"));
-	} else DEBUG(2, ("sam_skel: Debug class number of 'sam_skel': %d\n", sam_skel_debug_level));
-    
-	if(module_params)
-		DEBUG(0, ("Starting 'sam_skel' with parameters '%s' for domain %s\n", module_params, sam_methods->domain_name));
-	else
-		DEBUG(0, ("Starting 'sam_skel' for domain %s without paramters\n", sam_methods->domain_name));
-
-	return NT_STATUS_OK;
-}
diff --git a/packaging/Caldera/OpenLinux/samba3.spec.tmpl b/packaging/Caldera/OpenLinux/samba3.spec.tmpl
index 8bdc4eb0d79..0a5e2709188 100644
--- a/packaging/Caldera/OpenLinux/samba3.spec.tmpl
+++ b/packaging/Caldera/OpenLinux/samba3.spec.tmpl
@@ -22,6 +22,10 @@ Requires    	: libpam >= 0.66, SysVinit-scripts >= 1.04-6
 BuildRoot   	: /tmp/%{Name}-%{Version}
 
 Source: ftp://ftp.samba.org/pub/samba/%{Name}-%{Version}.tar.gz
+#Patch0: %{Name}-%{Version}-smbmount.patch
+#Patch1: %{Name}-%{Version}-install.patch
+#Patch2: %{Name}-%{Version}-smbconf.patch
+
 
 %Package doc
 Group       	: Server/Network
@@ -169,7 +173,9 @@ a clean and stable API for SMB client application development.
 
 %Prep
 %setup
-
+#%patch0 -p1
+#%patch1 -p1
+#%patch2 -p1
 
 for i in {cvs.,change-}log; do [ ! -f ../$i ] || mv ../$i source; done
 
@@ -200,13 +206,13 @@ rm configure
 autoconf
 
 CFLAGS="$RPM_OPT_FLAGS" LDFLAGS="-s" ./configure \
-	--prefix='$(DESTDIR)/usr' \
-	--localstatedir='$(DESTDIR)/var' \
-	--libdir='$(DESTDIR)%{EtcSamba}' \
-	--sbindir='$(DESTDIR)/usr/sbin' \
+	--prefix=/usr \
+	--localstatedir=/var \
+	--libdir='%{EtcSamba}' \
+	--sbindir=/usr/sbin \
 	--with-privatedir='$(LIBDIR)' \
-	--with-lockdir='$(DESTDIR)/var/lock/samba.d' \
-	--with-swatdir='$(DESTDIR)/usr/share/swat' \
+	--with-lockdir=/var/lock/samba.d \
+	--with-swatdir=/usr/share/swat \
 	--with-smbmount \
 	--with-pam \
 	--with-tdbsam \
@@ -223,7 +229,7 @@ CFLAGS="$RPM_OPT_FLAGS" LDFLAGS="-s" ./configure \
 	--with-smbwrapper \
 	--with-libsmbclient \
 	--with-acl-support \
-	--with-sambabook=$(DESTDIR)/usr/share/swat/using_samba
+	--with-sambabook=/usr/share/swat/using_samba
 
 # Temp disabled - add later - JHT
 #	--with-pam_smbpass \
@@ -233,12 +239,7 @@ make all nsswitch/libnss_wins.so nsswitch/libnss_winbind.so torture nsswitch/pam
 (cd tdb; make tdbdump tdbtest tdbtorture tdbtool)
 
 cd ../examples/VFS
-#CFLAGS="$RPM_OPT_FLAGS" LDFLAGS="-s" ./configure \
-#        --prefix='$(DESTDIR)/usr' \
-#        --localstatedir='$(DESTDIR)/var' \
-#        --libdir='$(DESTDIR)%{EtcSamba}' \
-#        --sbindir='$(DESTDIR)/usr/sbin'
-make
+make srcdir=../../source
 
 %Install
 %{mkDESTDIR}
@@ -259,7 +260,7 @@ mkdir -p $DESTDIR/usr/share/samba/codepages/src
 mkdir -p $DESTDIR/usr/share/swat/using_samba/{gifs,figs}
 mkdir -p $DESTDIR/var/{lo{ck,g}/samba.d,spool/samba}
 
-make -C source install installclientlib 
+make -C source DESTDIR=$RPM_BUILD_ROOT install installclientlib 
 
 strip $DESTDIR/usr/bin/smb{mount,mnt,umount}
 # Add links for mount.smbfs
@@ -287,10 +288,6 @@ do
 	install -m755 examples/VFS/$i $DESTDIR/lib/samba
 done
 
-#mv $DESTDIR/usr/bin/{make,add,conv}* $DESTDIR/usr/sbin
-
-#cp -p source/codepages/codepage_def.??? $DESTDIR%{EtcSamba}/codepages/src
-
 # Install the nsswitch library extension file
 cp -p source/nsswitch/libnss_wins.so $DESTDIR/lib
 cp -p source/nsswitch/libnss_winbind.so $DESTDIR/lib
diff --git a/packaging/Mandrake/makerpms-cvs.sh b/packaging/Mandrake/makerpms-cvs.sh
index 0faaf4d0ba1..72c75b772b5 100644
--- a/packaging/Mandrake/makerpms-cvs.sh
+++ b/packaging/Mandrake/makerpms-cvs.sh
@@ -5,8 +5,8 @@
 
 [ $# -lt 1 ] &&  echo "Usage: $0 <Samba version>" && exit 1
 
-VERSION=$1cvs
-RELEASE=`date +%Y%m%d`
+VERSION=$1
+RELEASE=0.`date +%Y%m%d`
 shift
 
 # Replace PRELEASE and PVERSION with release number in all files ending with
diff --git a/packaging/Mandrake/samba2.spec.tmpl b/packaging/Mandrake/samba2.spec.tmpl
index ffec867ce3e..e21a1484863 100644
--- a/packaging/Mandrake/samba2.spec.tmpl
+++ b/packaging/Mandrake/samba2.spec.tmpl
@@ -172,6 +172,7 @@ Group: System/Servers
 Source: ftp://samba.org/pub/samba/samba-%{source_ver}.tar.bz2
 URL:	http://www.samba.org
 Source1: samba.log
+Source2: mount.smb
 Source3: samba.xinetd
 Source4: swat_48.xpm.bz2
 Source5: swat_32.xpm.bz2
@@ -182,9 +183,21 @@ Source8: samba-vscan-%{vscanver}.tar.bz2
 %endif
 Source10: samba-print-pdf.sh.bz2
 Patch1: smbw.patch.bz2
+Patch2: samba-glibc21.patch.bz2
+#Patch3: network-recycle_bin.patch.bz2
 Patch5: samba-2.2.0-gawk.patch.bz2
 Patch12: samba-2.2.0-buildroot.patch.bz2
+#Patch16: samba-mkdir.patch.bz2
 Patch17: samba-3.0-smbmount-sbin.patch.bz2
+#Patches 20-22 to get packaging synced from 2.2.2 to 3.0
+Patch20: samba-3.0-smb.conf.patch.bz2
+Patch21: samba-3.0-winbind.init.patch.bz2
+Patch22: samba-3.0-system-auth-winbind.patch.bz2
+Patch23: samba-3alpha20-destdir.patch.bz2
+#Patch24: samba-3.0alpha13-installman.patch.bz2
+Patch25: samba-3.0alpha13-config_lang.patch.bz2
+#Patch 26 belongs with 20-22
+Patch26: samba-3.0-smb.init.patch.bz2
 Requires: pam >= 0.64, samba-common = %{version}
 BuildRequires: pam-devel autoconf readline-devel
 %if %build_acl
@@ -536,10 +549,20 @@ echo -e "\n%{name}-%{version}-%{release}\n">>%{SOURCE7}
 %else
 %setup -q -n %{pkg_name}-%{source_ver}
 %endif
+#%patch111 -p1
 %patch1 -p1 -b .smbw
+#%patch3 -p1 -b .net-r_bin
 %patch5 -p1 -b .gawk
+#%patch6 -p1
 %patch12 -p1 -b .buildroot
 %patch17 -p1 -b .sbin
+%patch20 -p1 -b .samba222
+%patch21 -p1 -b .samba222
+%patch22 -p1 -b .samba222
+%patch23 -p1 -b .destdir
+#%patch24 -p1 -b .langen
+%patch25 -p1 -b .multilang
+%patch26 -p1 -b .samba222
 cp %{SOURCE7} .
 
 # Make a copy of examples so that we have a clean one for doc:
@@ -1024,7 +1047,7 @@ fi
 %dir /var/log/%{name}
 %attr(1777,root,root) %dir /var/spool/%{name}
 %dir %{_datadir}/%{name}/scripts
-%attr(0755,root,root) %{_datadir}/%{name}/scripts/print-pdf
+#%attr(0755,root,root) %{_datadir}/%{name}/scripts/print-pdf
 #%attr(0750,root,root) %{_datadir}/%{name}/scripts/smbldap*.pl
 #%attr(0640,root,root) %config(noreplace) %{_sysconfdir}/%{name}/smbldap_conf.pm
 #%attr(0644,root,root) %{_datadir}/%{name}/scripts/smbldap_tools.pm
@@ -1086,8 +1109,11 @@ fi
 %dir /var/cache/%{name}
 %dir /var/log/%{name}
 %dir /var/run/%{name}
+#%{_bindir}/make_smbcodepage
+#%{_bindir}/make_unicodemap
 %{_bindir}/testparm%{samba_major}
 %{_bindir}/testprns%{samba_major}
+#%{_bindir}/make_printerdef
 %{_bindir}/rpcclient%{samba_major}
 %{_bindir}/smbsh%{samba_major}
 %{_bindir}/smbpasswd%{samba_major}
@@ -1098,6 +1124,8 @@ fi
 %attr(-,root,root) %config(noreplace) /etc/%{name}/smb-winbind.conf
 %attr(-,root,root) %config(noreplace) /etc/%{name}/lmhosts
 %attr(-,root,root) /var/lib/%{name}/codepages
+%{_mandir}/man1/make_smbcodepage*.1*
+%{_mandir}/man1/make_unicodemap*.1*
 %{_mandir}/man1/testparm*.1*
 %{_mandir}/man1/smbsh*.1*
 %{_mandir}/man1/testprns*.1*
diff --git a/packaging/Mandrake/winbind.init b/packaging/Mandrake/winbind.init
index 13ddb392d7c..b7b452eb0b9 100644
--- a/packaging/Mandrake/winbind.init
+++ b/packaging/Mandrake/winbind.init
@@ -83,7 +83,7 @@ case "$1" in
   	mdkstatus
 	;;
   condrestart)
-  	[ -f /var/lock/subsys/winbind ] && restart || :
+  	[ -f /var/lock/subsys/winbindd ] && restart || :
 	;;
   *)
 	echo "Usage: $0 {start|stop|restart|status|condrestart}"
diff --git a/packaging/RedHat/README b/packaging/RedHat/README
index 210248fa35a..646b10dbbbf 100644
--- a/packaging/RedHat/README
+++ b/packaging/RedHat/README
@@ -1,11 +1,13 @@
-Preparation Date: Fri Aug 21, 1998
-Preparer:	  John H Terpstra <jht@samba.org>
+Preparer:	Gerald Carter <jerry@samba.org>
 
-Instructions:	Preparing Samba Packages for Red Hat Linux 5.X
+Instructions:	Preparing Samba Packages for Red Hat Linux
 ===============================================================
 
-We provide support only for current versions of Red Hat Linux.
+We provide support only for the latest stable release of major 
+branches (e.g 6.2, 7.3, and 8.0).  The makerpms.sh script
+supports rpm  version 2.x, 3.x, and 4.x
 
 To produce the RPMS simply type:
-	sh makerpms.sh
+
+	root# sh makerpms.sh
 
diff --git a/packaging/RedHat/findsmb b/packaging/RedHat/findsmb
deleted file mode 100755
index 04bc6080508..00000000000
--- a/packaging/RedHat/findsmb
+++ /dev/null
@@ -1,145 +0,0 @@
-#!/usr/bin/perl
-#
-# Prints info on all smb responding machines on a subnet.
-# This script needs to be run on a machine without nmbd running and be
-# run as root to get correct info from WIN95 clients.
-#
-# syntax:
-#    findsmb [subnet broadcast address]
-#
-# with no agrument it will list machines on the current subnet
-#
-# There will be a "+" in front of the workgroup name for machines that are
-# local master browsers for that workgroup. There will be an "*" in front
-# of the workgroup name for machines that are the domain master browser for
-# that workgroup.
-#
-
-$SAMBABIN = "/usr/bin";
-
-for ($i = 0; $i < 2; $i++) {	# test for -d option and broadcast address
-  $_ = shift;
-  if (m/-d|-D/) {
-    $DEBUG = 1;
-  } else  {
-    if ($_) {
-      $BCAST = "-B $_";
-    }
-  }
-}
-
-sub ipsort			# do numeric sort on last field of IP address
-{
-  @t1 = split(/\./,$a);
-  @t2 = split(/\./,$b);
-  @t1[3] <=> @t2[3];
-}
-
-# look for all machines that respond to a name lookup
-
-open(NMBLOOKUP,"$SAMBABIN/nmblookup $BCAST '*'|") || 
-  die("Can't run nmblookup '*'.\n");
-
-# get rid of all lines that are not a response IP address,
-# strip everything but IP address and sort by last field in address
-
-@ipaddrs = sort ipsort grep(s/ \*<00>.*$//,<NMBLOOKUP>);
-
-# print header info
-
-print "\nIP ADDR         NETBIOS NAME   WORKGROUP/OS/VERSION $BCAST\n";
-print "---------------------------------------------------------------------\n";
-
-foreach $ip (@ipaddrs)		# loop through each IP address found
-{
-  $ip =~ s/\n//;		# strip newline from IP address
-
-# find the netbios names registered by each machine
-
-  open(NMBLOOKUP,"$SAMBABIN/nmblookup -r -A $ip|") || 
-	die("Can't get nmb name list.\n");
-  @nmblookup = <NMBLOOKUP>;
-  close NMBLOOKUP;
-
-# get the first <00> name
-
-  @name = grep(/<00>/,@nmblookup);
-  $_ = @name[0];
-  if ($_) {                     # we have a netbios name
-    if (/GROUP/) {		# is it a group name
-	($name, $aliases, $type, $length, @addresses) = 
-	gethostbyaddr(pack('C4',split('\.',$ip)),2);
-	if (! $name) {			# could not get name
-	    $name = "unknown nis name";
-	}
-    } else {
-# The Netbios name can contain lot of characters also '<' '>'
-# and spaces. The follwing cure inside name space but not
-# names starting or ending with spaces
-	/(.{1,15})\s+<00>\s+/;
-	$name = $1;
-    }
-
-# do an smbclient command on the netbios name.
-
-    open(SMB,"$SAMBABIN/smbclient -N -L $name -I $ip -U% |") ||
-	die("Can't do smbclient command.\n");
-    @smb = <SMB>;
-    close SMB;
-
-    if ($DEBUG) {		# if -d flag print results of nmblookup and smbclient
-      print "===============================================================\n";
-      print @nmblookup;
-      print @smb;
-    }
-
-# look for the OS= string
-
-    @info = grep(/OS=/,@smb);
-    $_ = @info[0];
-    if ($_) {				# we found response
-      s/Domain=|OS=|Server=|\n//g;	# strip out descriptions to make line shorter
-
-    } else {				# no OS= string in response (WIN95 client)
-
-# for WIN95 clients get workgroup name from nmblookup response
-      @name = grep(/<00> - <GROUP>/,@nmblookup);
-      $_ = @name[0];
-      if ($_) {
-# Same as before for space and characters
-        /(.{1,15})\s+<00>\s+/;
-        $_ = "[$1]";
-      } else {
-	$_ = "Unknown Workgroup";
-      }
-    }
-
-# see if machine registered a local master browser name
-    if (grep(/<1d>/,@nmblookup)) {
-      $master = '+';			# indicate local master browser
-      if (grep(/<1b>/,@nmblookup)) {	# how about domain master browser?
-        $master = '*';			# indicate domain master browser
-      }
-    } else {
-      $master = ' ';			# not a browse master
-    }
-
-# line up info in 3 columns
-
-    print "$ip".' 'x(16-length($ip))."$name".' 'x(14-length($name))."$master"."$_\n";
-
-  } else {				# no netbios name found
-# try getting the host name
-    ($name, $aliases, $type, $length, @addresses) = 
-      gethostbyaddr(pack('C4',split('\.',$ip)),2);
-    if (! $name) {			# could not get name
-      $name = "unknown nis name";
-    }
-    if ($DEBUG) {			# if -d flag print results of nmblookup
-      print "===============================================================\n";
-      print @nmblookup;
-    }
-    print "$ip".' 'x(16-length($ip))."$name\n";
-  }
-} 
-
diff --git a/packaging/RedHat/makerpms.sh.tmpl b/packaging/RedHat/makerpms.sh.tmpl
index 44b89a45ec8..4b01e13df36 100644
--- a/packaging/RedHat/makerpms.sh.tmpl
+++ b/packaging/RedHat/makerpms.sh.tmpl
@@ -1,25 +1,59 @@
 #!/bin/sh
-# Copyright (C) John H Terpstra 1998
+# Copyright (C) John H Terpstra 1998-2002
 # Updated for RPM 3 by Jochen Wiedmann, joe@ispsoft.de
 # Changed for a generic tar file rebuild by abartlet@pcug.org.au
+# Changed by John H Terpstra to build on RH7.2 - should also work for earlier versions jht@samba.org
+
+# The following allows environment variables to override the target directories
+#   the alternative is to have a file in your home directory calles .rpmmacros
+#   containing the following:
+#   %_topdir  /home/mylogin/redhat
+#
+# Note: Under this directory rpm expects to find the same directories that are under the
+#   /usr/src/redhat directory
+#
+if [ -x ~/.rpmmacros ]; then
+	TOPDIR=`awk '/topdir/ {print $2}' < ~/.rpmmacros`
+	if [ z$TOPDIR <> "z" ]; then
+		SPECDIR=${TOPDIR}/SPECS
+		SRCDIR=${TOPDIR}/SOURCES
+	fi
+fi
+
+SPECDIR=${SPECDIR:-/usr/src/redhat/SPECS}
+SRCDIR=${SRCDIR:-/usr/src/redhat/SOURCES}
+
+# At this point the SPECDIR and SRCDIR vaiables must have a value!
+
 USERID=`id -u`
 GRPID=`id -g`
 VERSION='PVERSION'
 
-rm -f ../../samba2.*.spec
+RPMVER=`rpm --version | awk '{print $3}'`
+RPM="rpm"
+echo The RPM Version on this machine is: $RPMVER
 
-case `rpm --version | awk '{print $3}'` in
-    2.*)
-       sed -e "s/MANDIR_MACRO/\%\{prefix\}\/man/g" < samba2.spec > samba2.rpm2.spec
-       cp samba2.rpm2.spec ../../
+case $RPMVER in
+    2*)
+       echo Building for RPM v2.x
+       sed -e "s/MANDIR_MACRO/\%\{prefix\}\/man/g" < samba2.spec > samba.spec
+       sed -e "s/MANDIR_MACRO/\%\{prefix\}\/man/g" < samba2-devel.spec > samba-devel.spec
+       ;;
+    3*)
+       echo Building for RPM v3.x
+       sed -e "s/MANDIR_MACRO/\%\{prefix\}\/man/g" < samba2.spec > samba.spec
+       sed -e "s/MANDIR_MACRO/\%\{prefix\}\/man/g" < samba2-devel.spec > samba-devel.spec
        ;;
-    3.*)
-       sed -e "s/MANDIR_MACRO/\%\{prefix\}\/man/g" < samba2.spec > samba2.rpm3.spec
-       cp samba2.rpm3.spec ../../
+    4.1*)
+       echo Building for RPM v4.1
+       RPM="rpmbuild"
+       sed -e "s/MANDIR_MACRO/\%\{_mandir\}/g" < samba2.spec > samba.spec
+       sed -e "s/MANDIR_MACRO/\%\{_mandir\}/g" < samba2-devel.spec > samba-devel.spec
        ;;
-    4.*)
-       sed -e "s/MANDIR_MACRO/\%\{_mandir\}/g" < samba2.spec > samba2.rpm4.spec
-       cp samba2.rpm4.spec ../../
+    4*)
+       echo Building for RPM v4.x
+       sed -e "s/MANDIR_MACRO/\%\{_mandir\}/g" < samba2.spec > samba.spec
+       sed -e "s/MANDIR_MACRO/\%\{_mandir\}/g" < samba2-devel.spec > samba-devel.spec
        ;;
     *)
        echo "Unknown RPM version: `rpm --version`"
@@ -29,10 +63,28 @@ esac
 
 ( cd ../../source; if [ -f Makefile ]; then make distclean; fi )
 ( cd ../../.. ; chown -R ${USERID}.${GRPID} samba-${VERSION} )
-( cd ../../.. ; tar --exclude=CVS -czvf samba-${VERSION}.tar.gz samba-${VERSION}/samba2.*.spec samba-${VERSION} )
 
-rpm -ta -v ../../../samba-${VERSION}.tar.gz
+# We do this to make sure that the package always has the current version in it''s name
+if [ z$1 = z"devel" ]; then
+	(cd ../../.. ; mv samba samba-${VERSION} )
+fi
+
+( cd ../../.. ; tar --exclude=CVS -cf - samba-${VERSION} | bzip2 > ${SRCDIR}/samba-${VERSION}.tar.bz2 )
 
+cp -av samba.spec ${SPECDIR}
+cp -av samba-devel.spec ${SPECDIR}
 
+if [ z$1 = "zdevel" ]; then
+	echo Restoring source samba directory name
+	( cd ../../.. ; mv samba-${VERSION} samba )
+	echo Getting Ready to build Developmental Build
+	cd ${SPECDIR}
+	rpm -ba -v samba-devel.spec
+else
+	echo Getting Ready to build release package
+	cd ${SPECDIR}
+	rpm -ba -v --clean --rmsource samba.spec
+fi
 
+echo Done.
 
diff --git a/packaging/RedHat/samba2.spec.tmpl b/packaging/RedHat/samba2.spec.tmpl
index 0766653c234..4e38e665173 100644
--- a/packaging/RedHat/samba2.spec.tmpl
+++ b/packaging/RedHat/samba2.spec.tmpl
@@ -4,46 +4,35 @@ Version: PVERSION
 Release: PRELEASE
 Copyright: GNU GPL version 2
 Group: Networking
-Source: ftp://samba.org/pub/samba/samba-%{version}.tar.gz
-Packager: John H Terpstra [Samba-Team] <jht@samba.org>
+Source: http://download.samba.org/samba/ftp/samba-%{version}.tar.bz2
+Packager: Gerald Carter [Samba-Team] <jerry@samba.org>
 Requires: pam >= 0.72 kernel >= 2.2.1 glibc >= 2.1.2
 Prereq: chkconfig fileutils
-Provides: samba = %{version}, samba-common = %{version}, samba-client = %{version}, samba-swat = %{version}
+Provides: samba = %{version}
+Obsoletes: samba-common, samba-client, samba-swat
 BuildRoot: /var/tmp/samba
 Prefix: /usr
 
 %description
-Samba provides an SMB server which can be used to provide
-network services to SMB (sometimes called "Lan Manager")
-clients, including various versions of MS Windows, OS/2,
-and other Linux machines. Samba also provides some SMB
-clients, which complement the built-in SMB filesystem
-in Linux. Samba uses NetBIOS over TCP/IP (NetBT) protocols
-and does NOT need NetBEUI (Microsoft Raw NetBIOS frame)
-protocol.
-
-Samba-2.2 features working NT Domain Control capability and 
-includes the SWAT (Samba Web Administration Tool) that 
-allows samba's smb.conf file to be remotely managed using your 
-favourite web browser. For the time being this is being
-enabled on TCP port 901 via inetd.
-
 Users are advised to use Samba-2.2 as a Windows NT4
-Domain Controller only on networks that do NOT have a Windows
-NT Domain Controller. This release does NOT as yet have
-Backup Domain control ability.
+Samba provides an SMB/CIFS server which can be used to provide
+network file and print services to SMB/CIFS clients, including 
+various versions of MS Windows, OS/2, and other Linux machines. 
+Samba also provides some SMB clients, which complement the 
+built-in SMB filesystem in Linux. Samba uses NetBIOS over TCP/IP 
+(NetBT) protocols and does NOT need NetBEUI (Microsoft Raw NetBIOS 
+frame) protocol.
 
 Please refer to the WHATSNEW.txt document for fixup information.
-This binary release includes encrypted password support.
 
-Please read the smb.conf file and ENCRYPTION.txt in the
-docs directory for implementation details.
+%changelog
+* Thu Jun 6 2002 Gerald Carter <jerry@samba.org>
+  - add separate winbindd init script
+  - build and install libsmbclient
 
-NOTE: Red Hat Linux uses PAM which has integrated support
-for Shadow passwords and quotas. Do NOT recompile with the
-SHADOW_PWD option enabled
+* Sun Jun 2 2002 Gerald Carter <jerry@samba.org>
+  - include audit and recycle VFS modules in /usr/lib/samba
 
-%changelog
 * Mon May 6 2002 Gerald Carter <jerry@samba.org>
   - moved findsmb to a standard component in samba's 
     "make install".  Removed from specfile.
@@ -150,6 +139,7 @@ SHADOW_PWD option enabled
 %setup
 
 %build
+## Build main Samba source
 cd source
 
 %ifarch ia64
@@ -169,15 +159,22 @@ CFLAGS="$RPM_OPT_FLAGS $EXTRA" ./configure \
 	--with-msdfs \
 	--with-smbmount \
 	--with-pam \
+	--with-pam_smbpass \
 	--with-syslog \
 	--with-utmp \
 	--with-sambabook=%{prefix}/share/swat/using_samba \
-	--with-swatdir=%{prefix}/share/swat
+	--with-swatdir=%{prefix}/share/swat \
+	--with-libsmbclient 
 make -j${NUMCPU} proto
 make -j${NUMCPU} all nsswitch/libnss_wins.so
 make -j${NUMCPU} debug2html
 make -j${NUMCPU} bin/smbspool
 
+## Build VFS modules
+cd ../examples/VFS
+make
+
+
 
 %install
 rm -rf $RPM_BUILD_ROOT
@@ -194,22 +191,25 @@ mkdir -p $RPM_BUILD_ROOT/var/cache/samba
 mkdir -p $RPM_BUILD_ROOT/var/{log,run}/samba
 mkdir -p $RPM_BUILD_ROOT/var/spool/samba
 mkdir -p $RPM_BUILD_ROOT/lib/security
+mkdir -p $RPM_BUILD_ROOT%{prefix}/lib/samba/vfs
+mkdir -p $RPM_BUILD_ROOT%{prefix}/{lib,include}
 
 # Install standard binary files
 for i in nmblookup smbclient smbpasswd smbstatus testparm testprns \
-      make_printerdef rpcclient smbspool smbcacls smbcontrol wbinfo
+      rpcclient smbspool smbcacls smbcontrol wbinfo smbmnt
 do
-install -m755 source/bin/$i $RPM_BUILD_ROOT%{prefix}/bin
+	install -m755 source/bin/$i $RPM_BUILD_ROOT%{prefix}/bin
 done
-for i in mksmbpasswd.sh smbtar 
+
+for i in mksmbpasswd.sh smbtar findsmb
 do
-install -m755 source/script/$i $RPM_BUILD_ROOT%{prefix}/bin
+	install -m755 source/script/$i $RPM_BUILD_ROOT%{prefix}/bin
 done
 
 # Install secure binary files
-for i in smbd nmbd swat smbmount smbumount smbmnt debug2html winbindd
+for i in smbd nmbd swat smbmount smbumount debug2html winbindd
 do
-install -m755 source/bin/$i $RPM_BUILD_ROOT%{prefix}/sbin
+	install -m755 source/bin/$i $RPM_BUILD_ROOT%{prefix}/sbin
 done
 
 # we need a symlink for mount to recognise the smb and smbfs filesystem types
@@ -221,15 +221,16 @@ ln -sf %{prefix}/sbin/smbmount $RPM_BUILD_ROOT/sbin/mount.smb
 cd source
 make BASEDIR=$RPM_BUILD_ROOT/usr \
 	LIBDIR=$RPM_BUILD_ROOT/etc/samba \
+	VARDIR=$RPM_BUILD_ROOT/var \
 	SBINDIR=$RPM_BUILD_ROOT%{prefix}/sbin \
 	BINDIR=$RPM_BUILD_ROOT%{prefix}/bin \
 	MANDIR=$RPM_BUILD_ROOTMANDIR_MACRO \
 	SWATDIR=$RPM_BUILD_ROOT/usr/share/swat \
 	SAMBABOOK=$RPM_BUILD_ROOT/usr/share/swat/using_samba \
-	installman installcp installswat
+	installman installswat
 cd ..
 
-# Install the nsswitch library extension file
+# Install the nsswitch wins library
 install -m755 source/nsswitch/libnss_wins.so $RPM_BUILD_ROOT/lib
 
 # Make link for wins resolver
@@ -239,24 +240,41 @@ install -m755 source/nsswitch/libnss_wins.so $RPM_BUILD_ROOT/lib
 install -m755 source/nsswitch/libnss_winbind.so $RPM_BUILD_ROOT/lib
 install -m755 source/nsswitch/pam_winbind.so $RPM_BUILD_ROOT/lib/security
 
+# Install pam_smbpass.so
+install -m755 source/bin/pam_smbpass.so $RPM_BUILD_ROOT/lib/security
+
+# Install the VFS modules
+install -m755 examples/VFS/recycle.so $RPM_BUILD_ROOT%{prefix}/lib/samba/vfs
+install -m755 examples/VFS/audit.so $RPM_BUILD_ROOT%{prefix}/lib/samba/vfs
+install -m755 examples/VFS/netatalk.so $RPM_BUILD_ROOT%{prefix}/lib/samba/vfs
+
+# clean out VFS directory since it will get installed as documentation later
+(cd examples/VFS; make clean)
+
+# libsmbclient
+install -m 755 source/bin/libsmbclient.so $RPM_BUILD_ROOT%{prefix}/lib/
+install -m 755 source/bin/libsmbclient.a $RPM_BUILD_ROOT%{prefix}/lib/
+install -m 644 source/include/libsmbclient.h $RPM_BUILD_ROOT%{prefix}/include/
+
 # Install SWAT helper files
 for i in swat/help/*.html docs/htmldocs/*.html
 do
-install -m644 $i $RPM_BUILD_ROOT%{prefix}/share/swat/help
+	install -m644 $i $RPM_BUILD_ROOT%{prefix}/share/swat/help
 done
 for i in swat/images/*.gif
 do
-install -m644 $i $RPM_BUILD_ROOT%{prefix}/share/swat/images
+	install -m644 $i $RPM_BUILD_ROOT%{prefix}/share/swat/images
 done
 for i in swat/include/*.html
 do
-install -m644 $i $RPM_BUILD_ROOT%{prefix}/share/swat/include
+	install -m644 $i $RPM_BUILD_ROOT%{prefix}/share/swat/include
 done
 
 # Install the miscellany
 install -m644 swat/README $RPM_BUILD_ROOT%{prefix}/share/swat
 install -m755 packaging/RedHat/smbprint $RPM_BUILD_ROOT%{prefix}/bin
 install -m755 packaging/RedHat/smb.init $RPM_BUILD_ROOT/etc/rc.d/init.d/smb
+install -m755 packaging/RedHat/winbind.init $RPM_BUILD_ROOT/etc/rc.d/init.d/winbind
 install -m755 packaging/RedHat/smb.init $RPM_BUILD_ROOT%{prefix}/sbin/samba
 install -m644 packaging/RedHat/samba.log $RPM_BUILD_ROOT/etc/logrotate.d/samba
 install -m644 packaging/RedHat/smb.conf $RPM_BUILD_ROOT/etc/samba/smb.conf
@@ -271,7 +289,9 @@ rm -rf $RPM_BUILD_ROOT
 
 %post
 /sbin/chkconfig --add smb
+/sbin/chkconfig --add winbind
 /sbin/chkconfig smb off
+/sbin/chkconfig winbind off
 
 echo "Looking for old /etc/smb.conf..."
 if [ -f /etc/smb.conf -a ! -f /etc/samba/smb.conf ]; then
@@ -465,7 +485,7 @@ fi
 %{prefix}/sbin/smbd
 %{prefix}/sbin/nmbd
 %{prefix}/sbin/swat
-%{prefix}/sbin/smbmnt
+%{prefix}/bin/smbmnt
 %{prefix}/sbin/smbmount
 %{prefix}/sbin/smbumount
 %{prefix}/sbin/winbindd
@@ -480,9 +500,6 @@ fi
 %{prefix}/bin/findsmb
 %{prefix}/bin/smbstatus
 %{prefix}/bin/nmblookup
-%{prefix}/bin/make_smbcodepage
-%{prefix}/bin/make_unicodemap
-%{prefix}/bin/make_printerdef
 %{prefix}/bin/smbpasswd
 %{prefix}/bin/smbtar
 %{prefix}/bin/smbprint
@@ -490,6 +507,10 @@ fi
 %{prefix}/bin/smbcacls
 %{prefix}/bin/wbinfo
 %attr(755,root,root) /lib/libnss_wins.s*
+%attr(755,root,root) %{prefix}/lib/samba/vfs/*.so
+%{prefix}/include/libsmbclient.h
+%{prefix}/lib/libsmbclient.a
+%{prefix}/lib/libsmbclient.so
 %{prefix}/share/swat/help/*
 %{prefix}/share/swat/images/*
 %{prefix}/share/swat/include/header.html
@@ -501,16 +522,17 @@ fi
 /etc/samba/samba.stack
 /etc/samba/samba.xinetd
 /etc/rc.d/init.d/smb
+/etc/rc.d/init.d/winbind
 /etc/logrotate.d/samba
 %config(noreplace) /etc/pam.d/samba
 MANDIR_MACRO/man1/*
 MANDIR_MACRO/man5/*
 MANDIR_MACRO/man7/*
 MANDIR_MACRO/man8/*
-%dir /etc/codepages/*
 %attr(755,root,root) %dir /var/cache/samba
 %dir /var/log/samba
 %dir /var/run/samba
 %attr(1777,root,root) %dir /var/spool/samba
 %attr(-,root,root) /lib/libnss_winbind.so
 %attr(-,root,root) /lib/security/pam_winbind.so
+%attr(-,root,root) /lib/security/pam_smbpass.so
diff --git a/packaging/RedHat/smb.init b/packaging/RedHat/smb.init
index 5419b2b9c6e..f50da2c6b2a 100755
--- a/packaging/RedHat/smb.init
+++ b/packaging/RedHat/smb.init
@@ -24,26 +24,27 @@ case "$1" in
 	echo -n "Starting SMB services: "
 	daemon smbd -D 	
 	daemon nmbd -D 
-	if [ "`grep -i 'winbind uid' /etc/samba/smb.conf | egrep -v [\#\;]`" ]; then
-		daemon winbindd 
-	fi
 	echo
 	touch /var/lock/subsys/smb
 	;;
   stop)
 	echo -n "Shutting down SMB services: "
-	killproc smbd -TERM
+
+	## we have to get all the smbd process here instead of just the
+	## main parent (i.e. killproc) because it can take a long time
+	## for an individual process to process a TERM signal
+	smbdpids=`ps guax | grep smbd | grep -v grep | awk '{print $2}'`
+	for pid in $smbdpids; do
+		kill -TERM $pid
+	done
+	## nmbd is ok to kill using killproc()
 	killproc nmbd -TERM
-	if [ "`ps -ef | grep winbind | grep -v grep`" ]; then
-		killproc winbindd
-	fi
 	rm -f /var/lock/subsys/smb
 	echo ""
 	;;
   status)
 	status smbd
 	status nmbd
-	status winbindd
 	;;
   restart)
 	echo -n "Restarting SMB services: "
diff --git a/packaging/RedHat/winbind.init b/packaging/RedHat/winbind.init
new file mode 100644
index 00000000000..291c351df3a
--- /dev/null
+++ b/packaging/RedHat/winbind.init
@@ -0,0 +1,91 @@
+#!/bin/sh
+#
+# chkconfig: 345 81 45
+# description: Starts and stops the Samba winbind daemon to provide \
+# user and group information from a domain controller to linux.
+
+# Source function library.
+if [ -f /etc/init.d/functions ] ; then
+  . /etc/init.d/functions
+elif [ -f /etc/rc.d/init.d/functions ] ; then
+  . /etc/rc.d/init.d/functions
+else
+  exit 0
+fi
+
+# Source networking configuration.
+. /etc/sysconfig/network
+
+# Check that networking is up.
+[ ${NETWORKING} = "no" ] && exit 0
+
+# Check that smb.conf exists.
+[ -f /etc/samba/smb.conf ] || exit 0
+
+RETVAL=0
+
+
+start() {
+	echo -n "Starting Winbind services: "
+	RETVAL=1
+	if [ "`grep -i 'winbind uid' /etc/samba/smb.conf | egrep -v [\#\;]`" ]; then
+		daemon winbindd
+		RETVAL=$?
+	fi
+	echo
+	[ $RETVAL -eq 0 ] && touch /var/lock/subsys/winbind || \
+	   RETVAL=1
+	return $RETVAL
+}	
+stop() {
+	echo -n "Shutting down Winbind services: "
+	RETVAL=1
+	if [ "`grep -i 'winbind uid' /etc/samba/smb.conf | egrep -v [\#\;]`" ]; then
+		killproc winbindd
+		RETVAL=$?
+	fi
+	echo
+	[ $RETVAL -eq 0 ] && rm -f /var/lock/subsys/winbind
+	return $RETVAL
+}	
+restart() {
+	stop
+	start
+}	
+reload() {
+	export TMPDIR="/var/tmp"
+        echo -n "Checking domain trusts: "
+	killproc winbindd -HUP
+	RETVAL=$?
+	echo
+	return $RETVAL
+}	
+mdkstatus() {
+	status winbindd
+}	
+
+case "$1" in
+  start)
+  	start
+	;;
+  stop)
+  	stop
+	;;
+  restart)
+  	restart
+	;;
+  reload)
+  	reload
+	;;
+  status)
+  	mdkstatus
+	;;
+  condrestart)
+  	[ -f /var/lock/subsys/winbindd ] && restart || :
+	;;
+  *)
+	echo "Usage: $0 {start|stop|restart|status|condrestart}"
+	exit 1
+esac
+
+exit $?
diff --git a/source3/Makefile.in b/source3/Makefile.in
index 453a87d0d58..cadc6d63727 100644
--- a/source3/Makefile.in
+++ b/source3/Makefile.in
@@ -58,6 +58,7 @@ INSTALLPERMS = 0755
 LOGFILEBASE = @logfilebase@
 CONFIGFILE = $(LIBDIR)/smb.conf
 LMHOSTSFILE = $(LIBDIR)/lmhosts
+DRIVERFILE = $(LIBDIR)/printers.def
 # This is where smbpasswd et al go
 PRIVATEDIR = @privatedir@
 
@@ -102,7 +103,7 @@ WINBIND_LPROGS = @WINBIND_LTARGETS@
 
 SPROGS = bin/smbd bin/nmbd bin/swat bin/wrepld @WINBIND_STARGETS@
 PROGS1 = bin/smbclient bin/net bin/smbspool bin/testparm bin/testprns bin/smbstatus bin/smbcontrol bin/smbtree bin/tdbbackup @RUNPROG@ @WINBIND_TARGETS@
-PROGS2 = bin/smbpasswd bin/rpcclient bin/smbcacls bin/profiles @WRAPPROG@ @WRAP@ @WRAP32@ @PAM_MOD@
+PROGS2 = bin/smbpasswd bin/rpcclient bin/smbcacls @WRAPPROG@ @WRAP@ @WRAP32@ @PAM_MOD@
 MPROGS = @MPROGS@
 LPROGS = $(WINBIND_PAM_PROGS) $(WINBIND_LPROGS)
 
@@ -116,8 +117,6 @@ SCRIPTS = $(srcdir)/script/smbtar $(srcdir)/script/addtosmbpass $(srcdir)/script
 
 QUOTAOBJS=@QUOTAOBJS@
 
-MODULES = bin/vfs_audit.@SHLIBEXT@ bin/vfs_recycle.@SHLIBEXT@ bin/vfs_netatalk.@SHLIBEXT@ bin/developer.@SHLIBEXT@ @MODULE_MYSQL@ @MODULE_XML@
-
 ######################################################################
 # object file lists
 ######################################################################
@@ -142,14 +141,13 @@ LIB_OBJ = lib/charcnv.o lib/debug.o lib/fault.o \
 	  lib/md5.o lib/hmacmd5.o lib/iconv.o lib/smbpasswd.o \
 	  nsswitch/wb_client.o nsswitch/wb_common.o \
 	  lib/pam_errors.o intl/lang_tdb.o lib/account_pol.o \
-	  lib/adt_tree.o lib/gencache.o $(TDB_OBJ) \
-	  lib/module.o
+	  lib/adt_tree.o lib/gencache.o $(TDB_OBJ) 
 
 LIB_SMBD_OBJ = lib/system_smbd.o lib/util_smbd.o
 
 READLINE_OBJ = lib/readline.o
 
-POPT_LIB_OBJ = lib/popt_common.o 
+POPT_LIB_OBJ = lib/popt_common.o
 
 UBIQX_OBJ = ubiqx/ubi_BinTree.o ubiqx/ubi_Cache.o ubiqx/ubi_SplayTree.o \
             ubiqx/ubi_dLinkList.o ubiqx/ubi_sLinkList.o ubiqx/debugparse.o
@@ -223,20 +221,12 @@ PASSDB_GET_SET_OBJ = passdb/pdb_get_set.o
 
 PASSDB_OBJ = $(PASSDB_GET_SET_OBJ) passdb/passdb.o passdb/pdb_interface.o \
 		passdb/machine_sid.o passdb/pdb_smbpasswd.o \
-		passdb/pdb_tdb.o passdb/pdb_ldap.o \
+		passdb/pdb_tdb.o passdb/pdb_ldap.o passdb/pdb_plugin.o \
 		passdb/pdb_unix.o passdb/util_sam_sid.o \
 		passdb/pdb_compat.o passdb/pdb_nisplus.o
 
-XML_OBJ = modules/xml.o
-MYSQL_OBJ = modules/mysql.o
-DEVEL_HELP_OBJ = modules/developer.o
-
-SAM_STATIC_MODULES = sam/sam_plugin.o sam/sam_skel.o sam/sam_ads.o
-
-SAM_OBJ = sam/account.o sam/get_set_account.o sam/get_set_group.o \
-		sam/get_set_domain.o sam/interface.o $(SAM_STATIC_MODULES)
-
-SAMTEST_OBJ = torture/samtest.o torture/cmd_sam.o $(SAM_OBJ) $(LIB_OBJ) $(PARAM_OBJ) $(LIBSMB_OBJ) $(UBIQX_OBJ) $(READLINE_OBJ) lib/util_seaccess.o $(LIBADS_OBJ) $(PASSDB_OBJ) $(SECRETS_OBJ) $(GROUPDB_OBJ)
+PDB_XML_OBJ = passdb/pdb_xml.o
+PDB_MYSQL_OBJ = passdb/pdb_mysql.o
 
 GROUPDB_OBJ = groupdb/mapping.o
 
@@ -385,18 +375,6 @@ LIBSMBCLIENT_OBJ = libsmb/libsmbclient.o libsmb/libsmb_compat.o \
 		   libsmb/libsmb_cache.o $(LIB_OBJ) \
 	  	   $(LIBSMB_OBJ) $(PARAM_OBJ) $(UBIQX_OBJ)
 
-# This shared library is intended for linking with unit test programs
-# to test Samba internals.  It's called libbigballofmud.so to
-# discourage casual usage.
-
-LIBBIGBALLOFMUD_MAJOR = 0
-
-LIBBIGBALLOFMUD_OBJ = $(LIB_OBJ) $(UBIQX_OBJ) $(PARAM_OBJ) $(SECRETS_OBJ) \
-	$(LIBSMB_OBJ) $(LIBMSRPC_OBJ) $(RPC_PARSE_OBJ) $(PASSDB_OBJ) \
-	$(GROUPDB_OBJ)
-
-LIBBIGBALLOFMUD_PICOBJS = $(LIBBIGBALLOFMUD_OBJ:.o=.po)
-
 CLIENT_OBJ1 = client/client.o client/clitar.o 
 
 CLIENT_OBJ = $(CLIENT_OBJ1) $(PARAM_OBJ) $(LIBSMB_OBJ) $(UBIQX_OBJ) $(LIB_OBJ) \
@@ -446,10 +424,6 @@ NSSTEST_OBJ = torture/nsstest.o $(LIBSMB_OBJ) $(PARAM_OBJ) \
 
 VFSTEST_OBJ = torture/cmd_vfs.o torture/vfstest.o $(SMBD_OBJ_BASE) $(READLINE_OBJ)
 
-VFS_AUDIT_OBJ = modules/vfs_audit.o
-VFS_RECYCLE_OBJ = modules/vfs_recycle.o
-VFS_NETATALK_OBJ = modules/vfs_netatalk.o
-
 LOCKTEST2_OBJ = torture/locktest2.o $(LOCKING_OBJ) $(LIBSMB_OBJ) $(PARAM_OBJ) \
                  $(UBIQX_OBJ) $(LIB_OBJ)
 
@@ -483,7 +457,7 @@ PROTO_OBJ = $(SMBD_OBJ_MAIN) \
 	    $(PRINTING_OBJ) $(PRINTBACKEND_OBJ) $(OPLOCK_OBJ) $(NOTIFY_OBJ) \
 	    $(QUOTAOBJS) $(PASSDB_OBJ) $(GROUPDB_OBJ) $(MSDFS_OBJ) \
 	    $(READLINE_OBJ) $(PROFILE_OBJ) $(LIBADS_OBJ) $(LIBADS_SERVER_OBJ) \
-	    $(LIB_SMBD_OBJ) $(SAM_OBJ) $(REGISTRY_OBJ) $(POPT_LIB_OBJ)
+	    $(LIB_SMBD_OBJ) $(REGISTRY_OBJ) $(POPT_LIB_OBJ)
 
 NSS_OBJ_0 = nsswitch/wins.o $(PARAM_OBJ) $(UBIQX_OBJ) $(LIBSMB_OBJ) \
 	    $(LIB_OBJ) $(NSSWINS_OBJ)
@@ -571,9 +545,7 @@ nsswitch : SHOWFLAGS $(WINBIND_PROGS) $(WINBIND_SPROGS) $(LPROGS)
 
 wins : SHOWFLAGS nsswitch/libnss_wins.@SHLIBEXT@
 
-modules: SHOWFLAGS $(MODULES)
-
-everything: all libsmbclient debug2html smbfilter talloctort
+everything: all libsmbclient debug2html smbfilter talloctort 
 
 .SUFFIXES:
 .SUFFIXES: .c .o .po .po32 .lo
@@ -672,10 +644,6 @@ bin/net: $(NET_OBJ) @BUILD_POPT@ bin/.dummy
 	@echo Linking $@
 	@$(CC) $(FLAGS) -o $@ $(NET_OBJ) $(DYNEXP) $(LDFLAGS) $(LIBS) @BUILD_POPT@
 
-bin/profiles: utils/profiles.o bin/.dummy
-	@echo Linking $@
-	@$(CC) $(FLAGS) -o $@ utils/profiles.o $(LDFLAGS) $(LIBS)
-
 bin/smbspool: $(CUPS_OBJ) bin/.dummy
 	@echo Linking $@
 	@$(CC) $(FLAGS) -o $@ $(CUPS_OBJ) $(LDFLAGS) $(LIBS)
@@ -720,10 +688,6 @@ bin/pdbedit: $(PDBEDIT_OBJ) @BUILD_POPT@ bin/.dummy
 	@echo Linking $@
 	@$(CC) $(FLAGS) -o $@ $(PDBEDIT_OBJ) $(LDFLAGS) $(DYNEXP) $(LIBS) @BUILD_POPT@
 
-bin/samtest: $(SAMTEST_OBJ) @BUILD_POPT@ bin/.dummy
-	@echo Linking $@
-	@$(CC) $(FLAGS) -o $@ $(SAMTEST_OBJ) $(LDFLAGS) $(DYNEXP) $(TERMLDFLAGS) $(TERMLIBS) $(DYNEXP) $(LIBS) @BUILD_POPT@
-
 bin/smbgroupedit: $(SMBGROUPEDIT_OBJ) bin/.dummy
 	@echo Linking $@
 	@$(CC) $(FLAGS) -o $@ $(SMBGROUPEDIT_OBJ) $(LDFLAGS) $(LIBS)
@@ -799,7 +763,7 @@ bin/smbwrapper.32.@SHLIBEXT@: $(PICOBJS32)
 		@SONAMEFLAG@`basename $@`
 
 bin/libsmbclient.@SHLIBEXT@: $(LIBSMBCLIENT_PICOBJS)
-	@echo Linking libsmbclient shared library $@
+	echo Linking libsmbclient shared library $@
 	$(SHLD) $(LDSHFLAGS) -o $@ $(LIBSMBCLIENT_PICOBJS) $(LIBS) \
 		@SONAMEFLAG@`basename $@`.$(LIBSMBCLIENT_MAJOR)
 
@@ -807,13 +771,9 @@ bin/libsmbclient.a: $(LIBSMBCLIENT_PICOBJS)
 	@echo Linking libsmbclient non-shared library $@
 	-$(AR) -rc $@ $(LIBSMBCLIENT_PICOBJS) 
 
-bin/libbigballofmud.@SHLIBEXT@: $(LIBBIGBALLOFMUD_PICOBJS)
-	@echo Linking bigballofmud shared library $@
-	$(SHLD) $(LDSHFLAGS) -o $@ $(LIBBIGBALLOFMUD_PICOBJS) $(LIBS) \
-		@SONAMEFLAG@`basename $@`.$(LIBBIGBALLOFMUD_MAJOR)
-
 libsmbclient: bin/libsmbclient.a bin/libsmbclient.@SHLIBEXT@
 
+
 nsswitch/libnss_wins.@SHLIBEXT@: $(NSS_OBJ)
 	@echo "Linking $@"
 	@$(SHLD) $(LDSHFLAGS) -o $@ $(NSS_OBJ) -lc \
@@ -838,34 +798,14 @@ nsswitch/pam_winbind.@SHLIBEXT@: $(PAM_WINBIND_OBJ) bin/.dummy
 	@$(SHLD) $(LDSHFLAGS) -o $@ $(PAM_WINBIND_OBJ) \
 		@SONAMEFLAG@`basename $@` -lpam
 
-bin/mysql.@SHLIBEXT@: $(MYSQL_OBJ)
+bin/pdb_mysql.@SHLIBEXT@: $(PDB_MYSQL_OBJ)
 	@echo "Building plugin $@"
-	@$(SHLD) $(LDSHFLAGS) -o $@ $(MYSQL_OBJ) @MYSQL_LIBS@ \
+	@$(SHLD) $(LDSHFLAGS) -o $@ $(PDB_MYSQL_OBJ) @MYSQL_LIBS@ \
 		@SONAMEFLAG@`basename $@`
 
-bin/developer.@SHLIBEXT@: $(DEVEL_HELP_OBJ)
+bin/pdb_xml.@SHLIBEXT@: $(PDB_XML_OBJ)
 	@echo "Building plugin $@"
-	@$(SHLD) $(LDSHFLAGS) -o $@ $(DEVEL_HELP_OBJ) \
-		@SONAMEFLAG@`basename $@`
-
-bin/xml.@SHLIBEXT@: $(XML_OBJ)
-	@echo "Building plugin $@"
-	@$(SHLD) $(LDSHFLAGS) -o $@ $(XML_OBJ) @XML_LIBS@ \
-		@SONAMEFLAG@`basename $@`
-
-bin/vfs_audit.@SHLIBEXT@: $(VFS_AUDIT_OBJ)
-	@echo "Building plugin $@"
-	@$(SHLD) $(LDSHFLAGS) -o $@ $(VFS_AUDIT_OBJ) \
-		@SONAMEFLAG@`basename $@`
-
-bin/vfs_recycle.@SHLIBEXT@: $(VFS_RECYCLE_OBJ)
-	@echo "Building plugin $@"
-	@$(SHLD) $(LDSHFLAGS) -o $@ $(VFS_RECYCLE_OBJ) \
-		@SONAMEFLAG@`basename $@`
-
-bin/vfs_netatalk.@SHLIBEXT@: $(VFS_NETATALK_OBJ)
-	@echo "Building plugin $@"
-	@$(SHLD) $(LDSHFLAGS) -o $@ $(VFS_NETATALK_OBJ) \
+	@$(SHLD) $(LDSHFLAGS) -o $@ $(PDB_XML_OBJ) @XML_LIBS@ \
 		@SONAMEFLAG@`basename $@`
 
 bin/wbinfo: $(WBINFO_OBJ) $(PARAM_OBJ) $(LIB_OBJ) \
@@ -897,9 +837,6 @@ installbin: all installdirs
 	@$(SHELL) $(srcdir)/script/installbin.sh $(INSTALLPERMS) $(DESTDIR)$(BASEDIR) $(DESTDIR)$(SBINDIR) $(DESTDIR)$(LIBDIR) $(DESTDIR)$(VARDIR) $(SPROGS)
 	@$(SHELL) $(srcdir)/script/installbin.sh $(INSTALLPERMS) $(DESTDIR)$(BASEDIR) $(DESTDIR)$(BINDIR) $(DESTDIR)$(LIBDIR) $(DESTDIR)$(VARDIR) $(PROGS)
 
-installmodules: all installdirs
-	@$(SHELL) $(srcdir)/script/installmodules.sh $(INSTALLPERMS) $(DESTDIR)$(BASEDIR) $(DESTDIR)$(LIBDIR) $(MODULES)
-
 installscripts: installdirs
 	@$(SHELL) $(srcdir)/script/installscripts.sh $(INSTALLPERMS) $(DESTDIR)$(BINDIR) $(SCRIPTS)
 
@@ -949,17 +886,11 @@ python_common_proto:
 		$(PY_COMMON_PROTO_OBJ)
 
 python_ext: $(PYTHON_OBJS)
-	@if test -z "$(PYTHON)"; then \
-		echo Use the option --with-python to configure python; \
-		exit 1; fi
 	PYTHON_OBJS="$(PYTHON_OBJS)" PYTHON_CFLAGS="$(CFLAGS) $(CPPFLAGS) $(FLAGS)" \
 	LIBS="$(LIBS)" \
 		$(PYTHON) python/setup.py build
 
 python_install: $(PYTHON_OBJS)
-	@if test -z "$(PYTHON)"; then \
-		echo Use the option --with-python to configure python; \
-		exit 1; fi
 	PYTHON_OBJS="$(PYTHON_OBJS)" PYTHON_CFLAGS="$(CFLAGS) $(CPPFLAGS)" \
 	LIBS="$(LIBS)" \
 		$(PYTHON) python/setup.py install
@@ -996,9 +927,6 @@ uninstallbin:
 	@$(SHELL) $(srcdir)/script/uninstallbin.sh $(INSTALLPERMS) $(DESTDIR)$(BASEDIR) $(DESTDIR)$(SBINDIR) $(DESTDIR)$(LIBDIR) $(DESTDIR)$(VARDIR) $(DESTDIR)$(SPROGS)
 	@$(SHELL) $(srcdir)/script/uninstallbin.sh $(INSTALLPERMS) $(DESTDIR)$(BASEDIR) $(DESTDIR)$(BINDIR) $(DESTDIR)$(LIBDIR) $(DESTDIR)$(VARDIR) $(DESTDIR)$(PROGS)
 
-uninstallmodules:
-	@$(SHELL) $(srcdir)/script/uninstallmodules.sh $(INSTALLPERMS) $(DESTDIR)$(BASEDIR) $(DESTDIR)$(LIBDIR) $(DESTDIR)$(MODULES)
-
 uninstallscripts:
 	@$(SHELL) $(srcdir)/script/uninstallscripts.sh $(INSTALLPERMS) $(DESTDIR)$(BINDIR) $(SCRIPTS)
 
@@ -1007,7 +935,7 @@ TOPFILES=dynconfig.o dynconfig.po
 
 clean: delheaders python_clean
 	-rm -f core */*~ *~ */*.o */*.po */*.po32 */*.@SHLIBEXT@ \
-		$(TOPFILES) $(PROGS) $(SPROGS) $(MODULES) .headers.stamp
+		$(TOPFILES) $(PROGS) $(SPROGS) .headers.stamp
 
 # Making this target will just make sure that the prototype files
 # exist, not necessarily that they are up to date.  Since they're
@@ -1084,7 +1012,7 @@ ctags:
 	ctags `find $(srcdir) -name "*.[ch]" | grep -v /CVS/`
 
 realclean: clean delheaders
-	-rm -f config.log $(PROGS) $(MODULES) $(SPROGS) bin/.dummy script/findsmb
+	-rm -f config.log $(PROGS) $(SPROGS) bin/.dummy script/findsmb
 
 distclean: realclean
 	-rm -f include/stamp-h
@@ -1141,3 +1069,4 @@ dangerous-installcheck:
 	SATYR_SUITEDIR=../testsuite/satyr/ prefix=$(BASEDIR) \
 	LIBSMB_PROG=$(SBINDIR)/smbd \
 	testdir=./testdir $(SHELL) satyr
+
diff --git a/source3/auth/auth_builtin.c b/source3/auth/auth_builtin.c
index f55f662a408..d54a8660b35 100644
--- a/source3/auth/auth_builtin.c
+++ b/source3/auth/auth_builtin.c
@@ -41,9 +41,8 @@ static NTSTATUS check_guest_security(const struct auth_context *auth_context,
 	NTSTATUS nt_status = NT_STATUS_LOGON_FAILURE;
 
 	if (!(user_info->internal_username.str 
-	      && *user_info->internal_username.str)) {
+	      && *user_info->internal_username.str)) 
 		nt_status = make_server_info_guest(server_info);
-	}
 
 	return nt_status;
 }
diff --git a/source3/bin/.cvsignore b/source3/bin/.cvsignore
index 741838a31e7..de6085d5261 100644
--- a/source3/bin/.cvsignore
+++ b/source3/bin/.cvsignore
@@ -12,7 +12,6 @@ nmbd
 nmblookup
 nsstest
 pdbedit
-profiles
 rpcclient
 samsync
 smbcacls
@@ -41,5 +40,3 @@ winbindd
 wrepld
 vfstest
 samtest
-debug2html
-*.so
diff --git a/source3/configure b/source3/configure
index ba0df7ea285..e733d1ec6fd 100755
--- a/source3/configure
+++ b/source3/configure
@@ -862,7 +862,6 @@ Optional Packages:
   --with-smbmount         Include SMBMOUNT (Linux only) support (default=no)
   --with-pam              Include PAM support (default=no)
   --with-pam_smbpass      Build a PAM module to allow other applications to use our smbpasswd file (default=no)
-  --with-sam              Build new (experimental) SAM database (default=no)
   --with-ldapsam           Include LDAP SAM 2.2 compatible configuration (default=no)
   --with-tdbsam           Include experimental TDB SAM support (default=no)
   --with-nisplussam       Include NISPLUS SAM support (default=no)
@@ -21530,7 +21529,7 @@ fi
   if test "x$no_mysql" = x ; then
      echo "$as_me:$LINENO: result: yes" >&5
 echo "${ECHO_T}yes" >&6
-     MODULE_MYSQL=bin/mysql.so
+     :
   else
      echo "$as_me:$LINENO: result: no" >&5
 echo "${ECHO_T}no" >&6
@@ -21608,7 +21607,7 @@ rm -f conftest.$ac_objext conftest$ac_exeext conftest.$ac_ext
      fi
      MYSQL_CFLAGS=""
      MYSQL_LIBS=""
-     MODULE_MYSQL=
+     :
   fi
 
 
@@ -21830,7 +21829,7 @@ fi
   if test "x$no_xml" = x ; then
      echo "$as_me:$LINENO: result: yes (version $xml_config_major_version.$xml_config_minor_version.$xml_config_micro_version)" >&5
 echo "${ECHO_T}yes (version $xml_config_major_version.$xml_config_minor_version.$xml_config_micro_version)" >&6
-     MODULE_XML=bin/xml.so
+     :
   else
      echo "$as_me:$LINENO: result: no" >&5
 echo "${ECHO_T}no" >&6
@@ -21904,7 +21903,7 @@ rm -f conftest.$ac_objext conftest$ac_exeext conftest.$ac_ext
 
      XML_CFLAGS=""
      XML_LIBS=""
-     MODULE_XML=
+     :
   fi
 
 
@@ -21912,7 +21911,6 @@ rm -f conftest.$ac_objext conftest$ac_exeext conftest.$ac_ext
 
 CFLAGS="$CFLAGS $XML_CFLAGS"
 
-
 #################################################
 # check for automount support
 echo "$as_me:$LINENO: checking whether to use AUTOMOUNT" >&5
@@ -22325,36 +22323,6 @@ _ACEOF
 fi
 fi
 
-# New experimental SAM system
-
-echo "$as_me:$LINENO: checking whether to build the new (experimental) SAM database" >&5
-echo $ECHO_N "checking whether to build the new (experimental) SAM database... $ECHO_C" >&6
-
-# Check whether --with-sam or --without-sam was given.
-if test "${with_sam+set}" = set; then
-  withval="$with_sam"
-   case "$withval" in
-  yes)
-    echo "$as_me:$LINENO: result: yes" >&5
-echo "${ECHO_T}yes" >&6
-
-cat >>confdefs.h <<\_ACEOF
-#define WITH_SAM 1
-_ACEOF
-
-    ;;
-  *)
-    echo "$as_me:$LINENO: result: no" >&5
-echo "${ECHO_T}no" >&6
-    ;;
-  esac
-else
-  echo "$as_me:$LINENO: result: no" >&5
-echo "${ECHO_T}no" >&6
-
-fi;
-
-
 ########################################################################################
 ##
 ## TESTS FOR SAM BACKENDS.  KEEP THESE GROUPED TOGETHER
@@ -24680,7 +24648,7 @@ builddir=`pwd`
 # I added make files that are outside /source directory.
 # I know this is not a good solution, will work out a better
 # solution soon.			--simo
-ac_config_files="$ac_config_files include/stamp-h Makefile script/findsmb ../examples/sam/Makefile"
+ac_config_files="$ac_config_files include/stamp-h Makefile script/findsmb ../examples/VFS/Makefile"
 cat >confcache <<\_ACEOF
 # This file is a shell script that caches the results of configure
 # tests run on this system so they can be shared between configure
@@ -25155,7 +25123,7 @@ do
   "include/stamp-h" ) CONFIG_FILES="$CONFIG_FILES include/stamp-h" ;;
   "Makefile" ) CONFIG_FILES="$CONFIG_FILES Makefile" ;;
   "script/findsmb" ) CONFIG_FILES="$CONFIG_FILES script/findsmb" ;;
-  "../examples/sam/Makefile" ) CONFIG_FILES="$CONFIG_FILES ../examples/sam/Makefile" ;;
+  "../examples/VFS/Makefile" ) CONFIG_FILES="$CONFIG_FILES ../examples/VFS/Makefile" ;;
   "include/config.h" ) CONFIG_HEADERS="$CONFIG_HEADERS include/config.h" ;;
   *) { { echo "$as_me:$LINENO: error: invalid argument: $ac_config_target" >&5
 echo "$as_me: error: invalid argument: $ac_config_target" >&2;}
@@ -25296,11 +25264,9 @@ s,@DYNEXP@,$DYNEXP,;t t
 s,@MYSQL_CONFIG@,$MYSQL_CONFIG,;t t
 s,@MYSQL_CFLAGS@,$MYSQL_CFLAGS,;t t
 s,@MYSQL_LIBS@,$MYSQL_LIBS,;t t
-s,@MODULE_MYSQL@,$MODULE_MYSQL,;t t
 s,@XML2_CONFIG@,$XML2_CONFIG,;t t
 s,@XML_CFLAGS@,$XML_CFLAGS,;t t
 s,@XML_LIBS@,$XML_LIBS,;t t
-s,@MODULE_XML@,$MODULE_XML,;t t
 s,@QUOTAOBJS@,$QUOTAOBJS,;t t
 s,@manlangs@,$manlangs,;t t
 s,@WINBIND_TARGETS@,$WINBIND_TARGETS,;t t
diff --git a/source3/configure.in b/source3/configure.in
index f8386e2275c..eed258c604e 100644
--- a/source3/configure.in
+++ b/source3/configure.in
@@ -2093,15 +2093,14 @@ fi
 
 ########################################################
 # Compile with MySQL support?
-AM_PATH_MYSQL([0.11.0],[MODULE_MYSQL=bin/mysql.so],[MODULE_MYSQL=])
+AM_PATH_MYSQL()
 CFLAGS="$CFLAGS $MYSQL_CFLAGS"
-AC_SUBST(MODULE_MYSQL)
+
 
 ########################################################
 # Compile with XML support?
-AM_PATH_XML2([2.0.0],[MODULE_XML=bin/xml.so],[MODULE_XML=])
+AM_PATH_XML2()
 CFLAGS="$CFLAGS $XML_CFLAGS"
-AC_SUBST(MODULE_XML)
 
 #################################################
 # check for automount support
@@ -2229,24 +2228,6 @@ if test x"$samba_cv_HAVE_TRUNCATED_SALT" = x"yes"; then
 fi
 fi
 
-# New experimental SAM system
-
-AC_MSG_CHECKING([whether to build the new (experimental) SAM database])
-AC_ARG_WITH(sam,
-[  --with-sam              Build new (experimental) SAM database (default=no)],
-[ case "$withval" in
-  yes)
-    AC_MSG_RESULT(yes)
-    AC_DEFINE(WITH_SAM,1,[Whether to build the new (experimental) SAM database])
-    ;;
-  *)
-    AC_MSG_RESULT(no)
-    ;;
-  esac ],
-  AC_MSG_RESULT(no)
-)
-
-
 ########################################################################################
 ##
 ## TESTS FOR SAM BACKENDS.  KEEP THESE GROUPED TOGETHER
@@ -3183,7 +3164,7 @@ AC_SUBST(builddir)
 # I added make files that are outside /source directory.
 # I know this is not a good solution, will work out a better
 # solution soon.			--simo
-AC_OUTPUT(include/stamp-h Makefile script/findsmb ../examples/sam/Makefile)
+AC_OUTPUT(include/stamp-h Makefile script/findsmb ../examples/VFS/Makefile)
 
 #################################################
 # Print very concise instructions on building/use
diff --git a/source3/dynconfig.c b/source3/dynconfig.c
index 18a280f7d0b..b1d4f000af4 100644
--- a/source3/dynconfig.c
+++ b/source3/dynconfig.c
@@ -66,5 +66,9 @@ pstring dyn_LIBDIR = LIBDIR;
 const pstring dyn_LOCKDIR = LOCKDIR;
 const pstring dyn_PIDDIR  = PIDDIR;
 
+const pstring dyn_DRIVERFILE = DRIVERFILE;
+
 const pstring dyn_SMB_PASSWD_FILE = SMB_PASSWD_FILE;
 const pstring dyn_PRIVATE_DIR = PRIVATE_DIR;
+
+
diff --git a/source3/include/charset.h b/source3/include/charset.h
index d04f63abd1d..07d5e2d5993 100644
--- a/source3/include/charset.h
+++ b/source3/include/charset.h
@@ -2,7 +2,6 @@
    Unix SMB/CIFS implementation.
    charset defines
    Copyright (C) Andrew Tridgell 2001
-   Copyright (C) Jelmer Vernooij 2002
    
    This program is free software; you can redistribute it and/or modify
    it under the terms of the GNU General Public License as published by
@@ -23,18 +22,3 @@
 typedef enum {CH_UCS2=0, CH_UNIX=1, CH_DISPLAY=2, CH_DOS=3, CH_UTF8=4} charset_t;
 
 #define NUM_CHARSETS 5
-
-/*
- *   for each charset we have a function that pulls from that charset to
- *     a ucs2 buffer, and a function that pushes to a ucs2 buffer
- *     */
-
-struct charset_functions {
-	char *name;
-	size_t (*pull)(void *, char **inbuf, size_t *inbytesleft,
-				   char **outbuf, size_t *outbytesleft);
-	size_t (*push)(void *, char **inbuf, size_t *inbytesleft,
-				   char **outbuf, size_t *outbytesleft);
-	struct charset_functions *prev, *next;
-};
-
diff --git a/source3/include/config.h.in b/source3/include/config.h.in
index 0f9b5850582..8ea7c8061bf 100644
--- a/source3/include/config.h.in
+++ b/source3/include/config.h.in
@@ -1400,9 +1400,6 @@
 /* Whether to include experimental quota support */
 #undef WITH_QUOTAS
 
-/* Whether to build the new (experimental) SAM database */
-#undef WITH_SAM
-
 /* Whether to include sendfile() support */
 #undef WITH_SENDFILE
 
diff --git a/source3/include/dynconfig.h b/source3/include/dynconfig.h
index fcc4c88b2b9..f8b3bbb791d 100644
--- a/source3/include/dynconfig.h
+++ b/source3/include/dynconfig.h
@@ -32,5 +32,6 @@ extern pstring dyn_LOGFILEBASE, dyn_LMHOSTSFILE;
 extern pstring dyn_LIBDIR;
 extern const pstring dyn_LOCKDIR; 
 extern const pstring dyn_PIDDIR;
+extern const pstring dyn_DRIVERFILE; 
 extern const pstring dyn_SMB_PASSWD_FILE;
 extern const pstring dyn_PRIVATE_DIR;
diff --git a/source3/include/gums.h b/source3/include/gums.h
deleted file mode 100644
index a44dadc8837..00000000000
--- a/source3/include/gums.h
+++ /dev/null
@@ -1,230 +0,0 @@
-/* 
-   Unix SMB/CIFS implementation.
-   GUMS structures
-   Copyright (C) Simo Sorce 2002
-   
-   This program is free software; you can redistribute it and/or modify
-   it under the terms of the GNU General Public License as published by
-   the Free Software Foundation; either version 2 of the License, or
-   (at your option) any later version.
-   
-   This program is distributed in the hope that it will be useful,
-   but WITHOUT ANY WARRANTY; without even the implied warranty of
-   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-   GNU General Public License for more details.
-   
-   You should have received a copy of the GNU General Public License
-   along with this program; if not, write to the Free Software
-   Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
-*/
-
-#ifndef _GUMS_H
-#define _GUMS_H
-
-#define GUMS_VERSION_MAJOR 0
-#define GUMS_VERSION_MINOR 1
-
-#define GUMS_OBJ_DOMAIN			1
-#define GUMS_OBJ_NORMAL_USER		2
-#define GUMS_OBJ_GROUP			3
-#define GUMS_OBJ_ALIAS			4
-#define GUMS_OBJ_WORKSTATION_TRUST	5
-#define GUMS_OBJ_SERVER_TRUST		6
-#define GUMS_OBJ_DOMAIN_TRUST		7
-
-typedef struct gums_user
-{
-	DOM_SID *group_sid;		/* Primary Group SID */
-
-	NTTIME *logon_time;		/* logon time */
-	NTTIME *logoff_time;		/* logoff time */
-	NTTIME *kickoff_time;		/* kickoff time */
-	NTTIME *pass_last_set_time;	/* password last set time */
-	NTTIME *pass_can_change_time;	/* password can change time */
-	NTTIME *pass_must_change_time;	/* password must change time */
-
-	char *full_name;		/* user's full name string */
-	char *home_dir;			/* home directory string */
-	char *dir_drive;		/* home directory drive string */
-	char *logon_script;		/* logon script string */
-	char *profile_path;		/* profile path string */
-	char *workstations;		/* login from workstations string */
-	char *unknown_str;		/* don't know what this is, yet. */
-	char *munged_dial;		/* munged path name and dial-back tel number */
-		
-	DATA_BLOB *lm_pw; 		/* .data is Null if no password */
-	DATA_BLOB *nt_pw; 		/* .data is Null if no password */
-		
-	uint32 unknown_3;		/* 0x00ff ffff */
-		
-	uint16 logon_divs;		/* 168 - number of hours in a week */
-	uint32 hours_len;		/* normally 21 bytes */
-	uint8 hours[MAX_HOURS_LEN];
-		
-	uint32 unknown_5;		/* 0x0002 0000 */
-	uint32 unknown_6;		/* 0x0000 04ec */
-
-} GUMS_USER;
-
-typedef struct gums_group
-{
-	uint32 count;			/* Number of SIDs */
-	DOM_SID *members;		/* SID array */
-
-} GUMS_GROUP;
-
-union gums_obj_p {
-	gums_user *user;
-	gums_group *group;
-	gums_group *alias;
-}
-
-typedef struct gums_object
-{
-	TALLOC_CTX *mem_ctx;
-
-	uint32 type;			/* Object Type */
-	uint32 version;			/* Object Version */
-	uint32 seq_num;			/* Object Sequence Number */
-
-	SEC_DESC *sec_desc;		/* Security Descriptor */
-
-	DOM_SID *sid;			/* Object Sid */
-	char *name;			/* Object Name */
-	char *description;		/* Object Description */
-
-	union gums_obj_p data;		/* Object Specific data */
-
-} GUMS_OBJECT;
-
-typedef struct gums_data_set
-{
-	int type; /* GUMS_SET_xxx */
-	void *data;
-
-} GUMS_DATA_SET;
-
-typedef struct gums_commit_set
-{
-	TALLOC_CTX *mem_ctx;
-
-	uint32 type;			/* Object type */
-	DOM_SID sid;			/* Object Sid */
-	uint32 count;			/* number of changes */
-	GUMS_DATA_SET *data;
-} GUMS_COMMIT_SET;
-
-typedef struct gums_privilege
-{
-	TALLOC_CTX *mem_ctx;
-
-	uint32 type;			/* Object Type */
-	uint32 version;			/* Object Version */
-	uint32 seq_num;			/* Object Sequence Number */
-
-	LUID_ATTR *privilege;		/* Privilege Type */
-	char *name;			/* Object Name */
-	char *description;		/* Object Description */
-
-	uint32 count;
-	DOM_SID *members;
-
-} GUMS_PRIVILEGE;
-
-
-typedef struct gums_functions
-{
-	/* Generic object functions */
-
-	NTSTATUS (*get_domain_sid) (DOM_SID **sid, const char* name);
-	NTSTATUS (*set_domain_sid) (const DOM_SID *sid);
-
-	NTSTATUS (*get_sequence_number) (void);
-
-	NTSTATUS (*new_object) (DOM_SID **sid, const char *name, const int obj_type);
-	NTSTATUS (*delete_object) (const DOM_SID *sid);
-
-	NTSTATUS (*get_object_from_sid) (GUMS_OBJECT **object, const DOM_SID *sid, const int obj_type);
-	NTSTATUS (*get_sid_from_name) (GUMS_OBJECT **object, const char *name);
-	/* This function is used to get the list of all objects changed since b_time, it is
-	   used to support PDC<->BDC synchronization */
-	NTSTATUS (*get_updated_objects) (GUMS_OBJECT **objects, const NTTIME base_time);
-
-	NTSTATUS (*enumerate_objects_start) (void *handle, const DOM_SID *sid, const int obj_type);
-	NTSTATUS (*enumerate_objects_get_next) (GUMS_OBJECT **object, void *handle);
-	NTSTATUS (*enumerate_objects_stop) (void *handle);
-
-	/* This function MUST be used ONLY by PDC<->BDC replication code or recovery tools.
-	   Never use this function to update an object in the database, use set_object_values() */
-	NTSTATUS (*set_object) (const GUMS_OBJECT *object);
-
-	/* set object values function */
-	NTSTATUS (*set_object_values) (DOM_SID *sid, uint32 count, GUMS_DATA_SET *data_set);
-
-	/* Group related functions */
-	NTSTATUS (*add_memberss_to_group) (const DOM_SID *group, const DOM_SID **members);
-	NTSTATUS (*delete_members_from_group) (const DOM_SID *group, const DOM_SID **members);
-	NTSTATUS (*enumerate_group_members) (DOM_SID **members, const DOM_SID *sid, const int type);
-
-	NTSTATUS (*get_sid_groups) (DOM_SID **groups, const DOM_SID *sid);
-
-	NTSTATUS (*lock_sid) (const DOM_SID *sid);
-	NTSTATUS (*unlock_sid) (const DOM_SID *sid);
-
-	/* privileges related functions */
-
-	NTSTATUS (*add_members_to_privilege) (const LUID_ATTR *priv, const DOM_SID **members);
-	NTSTATUS (*delete_members_from_privilege) (const LUID_ATTR *priv, const DOM_SID **members);
-	NTSTATUS (*enumerate_privilege_members) (DOM_SID **members, const LUID_ATTR *priv);
-	NTSTATUS (*get_sid_privileges) (DOM_SID **privs, const DOM_SID *sid);
-	/* warning!: set_privilege will overwrite a prior existing privilege if such exist */
-	NTSTATUS (*set_privilege) (GUMS_PRIVILEGE *priv);
-
-} GUMS_FUNCTIONS;
-
-/* define value types */
-
-#define GUMS_SET_PRIMARY_GROUP		1
-#define GUMS_SET_SEC_DESC		2
-
-/* user specific type values */
-#define GUMS_SET_LOGON_TIME		10  /* keep NTTIME consecutive */
-#define GUMS_SET_LOGOFF_TIME		11 /* too ease checking */
-#define GUMS_SET_KICKOFF_TIME		13
-#define GUMS_SET_PASS_LAST_SET_TIME	14
-#define GUMS_SET_PASS_CAN_CHANGE_TIME	15
-#define GUMS_SET_PASS_MUST_CHANGE_TIME	16 /* NTTIME end */
-
-#define GUMS_SET_NAME			20 /* keep strings consecutive */
-#define GUMS_SET_DESCRIPTION		21 /* too ease checking */
-#define GUMS_SET_FULL_NAME		22
-#define GUMS_SET_HOME_DIRECTORY		23
-#define GUMS_SET_DRIVE			24
-#define GUMS_SET_LOGON_SCRIPT		25
-#define GUMS_SET_PROFILE_PATH		26
-#define GUMS_SET_WORKSTATIONS		27
-#define GUMS_SET_UNKNOWN_STRING		28
-#define GUMS_SET_MUNGED_DIAL		29 /* strings end */
-
-#define GUMS_SET_LM_PASSWORD		40
-#define GUMS_SET_NT_PASSWORD		41
-#define GUMS_SET_PLAINTEXT_PASSWORD	42
-#define GUMS_SET_UNKNOWN_3		43
-#define GUMS_SET_LOGON_DIVS		44
-#define GUMS_SET_HOURS_LEN		45
-#define GUMS_SET_HOURS			46
-#define GUMS_SET_UNKNOWN_5		47
-#define GUMS_SET_UNKNOWN_6		48
-
-#define GUMS_SET_MUST_CHANGE_PASS	50
-#define GUMS_SET_CANNOT_CHANGE_PASS	51
-#define GUMS_SET_PASS_NEVER_EXPIRE	52
-#define GUMS_SET_ACCOUNT_DISABLED	53
-#define GUMS_SET_ACCOUNT_LOCKOUT	54
-
-/*group specific type values */
-#define GUMS_ADD_SID_LIST		60
-#define GUMS_DEL_SID_LIST		61
-#define GUMS_SET_SID_LIST		62
-
-#endif /* _GUMS_H */
diff --git a/source3/include/includes.h b/source3/include/includes.h
index a7dd967bf34..41eda715547 100644
--- a/source3/include/includes.h
+++ b/source3/include/includes.h
@@ -752,8 +752,6 @@ extern int errno;
 
 #include "passdb.h"
 
-#include "sam.h"
-
 #include "session.h"
 
 #include "asn_1.h"
diff --git a/source3/include/libsmbclient.h b/source3/include/libsmbclient.h
index 0c905edcbcc..2b45709a5e8 100644
--- a/source3/include/libsmbclient.h
+++ b/source3/include/libsmbclient.h
@@ -35,10 +35,6 @@
 *   \ingroup libsmbclient
 *   Data structures, types, and constants
 */
-/** \defgroup callback Callback function types
-*   \ingroup libsmbclient
-*   Callback functions
-*/
 /** \defgroup file File Functions
 *   \ingroup libsmbclient
 *   Functions used to access individual file contents
@@ -55,7 +51,7 @@
 *   \ingroup libsmbclient
 *   Functions used to access printing functionality
 */
-/** \defgroup misc Miscellaneous Functions
+/** \defgroup attribute Miscellaneous Functions
 *   \ingroup libsmbclient
 *   Functions that don't fit in to other categories
 */
@@ -66,6 +62,7 @@
 #include <sys/stat.h>
 #include <fcntl.h>
 
+#define SMBC_MAX_NAME       1023
 #define SMBC_WORKGROUP      1
 #define SMBC_SERVER         2
 #define SMBC_FILE_SHARE     3
@@ -76,6 +73,12 @@
 #define SMBC_FILE           8
 #define SMBC_LINK           9
 
+#define SMBC_FILE_MODE (S_IFREG | 0444)
+#define SMBC_DIR_MODE  (S_IFDIR | 0555)
+
+#define SMBC_MAX_FD         10000
+
+
 /**@ingroup structure
  * Structure that represents a directory entry.
  *
@@ -113,12 +116,12 @@ struct smbc_dirent
 	char name[1];
 };
 
+#ifndef _CLIENT_H
 
 /**@ingroup structure
  * Structure that represents a print job.
  *
  */
-#ifndef _CLIENT_H
 struct print_job_info 
 {
 	/** numeric ID of the print job
@@ -146,29 +149,9 @@ struct print_job_info
 	 */
 	time_t t;
 };
-#endif /* _CLIENT_H */
-
-
-/**@ingroup structure
- * Server handle 
- */
-typedef struct _SMBCSRV  SMBCSRV;
+#endif /* ifndef _CLIENT_H */
 
 /**@ingroup structure
- * File or directory handle 
- */
-typedef struct _SMBCFILE SMBCFILE;
-
-/**@ingroup structure
- * File or directory handle 
- */
-typedef struct _SMBCCTX SMBCCTX;
-
-
-
-
-
-/**@ingroup callback
  * Authentication callback function type.
  * 
  * Type for the the authentication function called by the library to
@@ -204,114 +187,51 @@ typedef void (*smbc_get_auth_data_fn)(const char *srv,
                                       char *pw, int pwlen);
 
 
-/**@ingroup callback
+/**@ingroup structure
  * Print job info callback function type.
  *
  * @param i         pointer to print job information structure
  *
  */ 
-typedef void (*smbc_list_print_job_fn)(struct print_job_info *i);
-		
-
-/**@ingroup callback
- * Check if a server is still good
- *
- * @param c         pointer to smb context
- *
- * @param srv       pointer to server to check
- *
- * @return          0 when connection is good. 1 on error.
- *
- */ 
-typedef int (*smbc_check_server_fn)(SMBCCTX * c, SMBCSRV *srv);
-
-/**@ingroup callback
- * Remove a server if unused
- *
- * @param c         pointer to smb context
- *
- * @param srv       pointer to server to remove
- *
- * @return          0 on success. 1 on failure.
- *
- */ 
-typedef int (*smbc_remove_unused_server_fn)(SMBCCTX * c, SMBCSRV *srv);
+typedef void (*smbc_get_print_job_info)(struct print_job_info *i);
 
+typedef struct _SMBCSRV {
+	struct cli_state cli;
+	dev_t dev;
+	BOOL no_pathinfo2;
+	int server_fd;
 
-/**@ingroup callback
- * Add a server to the cache system
- *
- * @param c         pointer to smb context
- *
- * @param srv       pointer to server to add
- *
- * @param server    server name 
- *
- * @param share     share name
- *
- * @param workgroup workgroup used to connect
- *
- * @param username  username used to connect
- *
- * @return          0 on success. 1 on failure.
- *
- */ 
-typedef int (*smbc_add_cached_srv_fn)   (SMBCCTX * c, SMBCSRV *srv, 
-				    char * server, char * share, 
-				    char * workgroup, char * username);
-
-
-/**@ingroup callback
- * Look up a server in the cache system
- *
- * @param c         pointer to smb context
- *
- * @param server    server name to match
- *
- * @param share     share name to match
- *
- * @param workgroup workgroup to match
- *
- * @param username  username to match
- *
- * @return          pointer to SMBCSRV on success. NULL on failure.
- *
- */ 
-typedef SMBCSRV * (*smbc_get_cached_srv_fn)   (SMBCCTX * c, char * server, 
-					       char * share, char * workgroup, char * username);
-
-
-/**@ingroup callback
- * Check if a server is still good
- *
- * @param c         pointer to smb context
- *
- * @param srv       pointer to server to remove
- *
- * @return          0 when found and removed. 1 on failure.
- *
- */ 
-typedef int (*smbc_remove_cached_srv_fn)(SMBCCTX * c, SMBCSRV *srv);
+	struct _SMBCSRV *next, *prev;
+	
+} SMBCSRV;
 
+/* 
+ * Keep directory entries in a list 
+ */
+struct smbc_dir_list {
+	struct smbc_dir_list *next;
+	struct smbc_dirent *dirent;
+};
 
-/**@ingroup callback
- * Try to remove all servers from the cache system and disconnect
- *
- * @param c         pointer to smb context
- *
- * @return          0 when found and removed. 1 on failure.
- *
+/*
+ * Structure for open file management
  */ 
-typedef int (*smbc_purge_cached_fn)     (SMBCCTX * c);
-
-
-
+typedef struct _SMBCFILE {
+	int cli_fd; 
+	char *fname;
+	off_t offset;
+	SMBCSRV *srv;
+	BOOL file;
+	struct smbc_dir_list *dir_list, *dir_end, *dir_next;
+	int dir_type, dir_error;
+
+	struct _SMBCFILE *next, *prev;
+} SMBCFILE;
 
 /**@ingroup structure
  * Structure that contains a client context information 
- * This structure is know as SMBCCTX
  */
-struct _SMBCCTX {
+typedef struct _SMBCCTX {
 	/** debug level 
 	 */
 	int     debug;
@@ -335,42 +255,42 @@ struct _SMBCCTX {
 	/** callable functions for files:
 	 * For usage and return values see the smbc_* functions
 	 */ 
-	SMBCFILE * (*open)    (SMBCCTX *c, const char *fname, int flags, mode_t mode);
-	SMBCFILE * (*creat)   (SMBCCTX *c, const char *path, mode_t mode);
-	ssize_t    (*read)    (SMBCCTX *c, SMBCFILE *file, void *buf, size_t count);
-	ssize_t    (*write)   (SMBCCTX *c, SMBCFILE *file, void *buf, size_t count);
-	int        (*unlink)  (SMBCCTX *c, const char *fname);
-	int        (*rename)  (SMBCCTX *ocontext, const char *oname, 
-			       SMBCCTX *ncontext, const char *nname);
-	off_t      (*lseek)   (SMBCCTX *c, SMBCFILE * file, off_t offset, int whence);
-	int        (*stat)    (SMBCCTX *c, const char *fname, struct stat *st);
-	int        (*fstat)   (SMBCCTX *c, SMBCFILE *file, struct stat *st);
-	int        (*close)   (SMBCCTX *c, SMBCFILE *file);
+	SMBCFILE * (*open)    (struct _SMBCCTX *c, const char *fname, int flags, mode_t mode);
+	SMBCFILE * (*creat)   (struct _SMBCCTX *c, const char *path, mode_t mode);
+	ssize_t    (*read)    (struct _SMBCCTX *c, SMBCFILE *file, void *buf, size_t count);
+	ssize_t    (*write)   (struct _SMBCCTX *c, SMBCFILE *file, void *buf, size_t count);
+	int        (*unlink)  (struct _SMBCCTX *c, const char *fname);
+	int        (*rename)  (struct _SMBCCTX *ocontext, const char *oname, 
+			       struct _SMBCCTX *ncontext, const char *nname);
+	off_t      (*lseek)   (struct _SMBCCTX *c, SMBCFILE * file, off_t offset, int whence);
+	int        (*stat)    (struct _SMBCCTX *c, const char *fname, struct stat *st);
+	int        (*fstat)   (struct _SMBCCTX *c, SMBCFILE *file, struct stat *st);
+	int        (*close)   (struct _SMBCCTX *c, SMBCFILE *file);
 
 	/** callable functions for dirs
 	 */ 
-	SMBCFILE * (*opendir) (SMBCCTX *c, const char *fname);
-	int        (*closedir)(SMBCCTX *c, SMBCFILE *dir);
-	struct smbc_dirent * (*readdir)(SMBCCTX *c, SMBCFILE *dir);
-	int        (*getdents)(SMBCCTX *c, SMBCFILE *dir, 
+	SMBCFILE * (*opendir) (struct _SMBCCTX *c, const char *fname);
+	int        (*closedir)(struct _SMBCCTX *c, SMBCFILE *dir);
+	struct smbc_dirent * (*readdir)(struct _SMBCCTX *c, SMBCFILE *dir);
+	int        (*getdents)(struct _SMBCCTX *c, SMBCFILE *dir, 
 			       struct smbc_dirent *dirp, int count);
-	int        (*mkdir)   (SMBCCTX *c, const char *fname, mode_t mode);
-	int        (*rmdir)   (SMBCCTX *c, const char *fname);
-	off_t      (*telldir) (SMBCCTX *c, SMBCFILE *dir);
-	int        (*lseekdir)(SMBCCTX *c, SMBCFILE *dir, off_t offset);
-	int        (*fstatdir)(SMBCCTX *c, SMBCFILE *dir, struct stat *st);
+	int        (*mkdir)   (struct _SMBCCTX *c, const char *fname, mode_t mode);
+	int        (*rmdir)   (struct _SMBCCTX *c, const char *fname);
+	off_t      (*telldir) (struct _SMBCCTX *c, SMBCFILE *dir);
+	int        (*lseekdir)(struct _SMBCCTX *c, SMBCFILE *dir, off_t offset);
+	int        (*fstatdir)(struct _SMBCCTX *c, SMBCFILE *dir, struct stat *st);
 
 	/** callable functions for printing
 	 */ 
-	int        (*print_file)(SMBCCTX *c_file, const char *fname, 
-				 SMBCCTX *c_print, const char *printq);
-	SMBCFILE * (*open_print_job)(SMBCCTX *c, const char *fname);
-	int        (*list_print_jobs)(SMBCCTX *c, const char *fname, smbc_list_print_job_fn fn);
-	int        (*unlink_print_job)(SMBCCTX *c, const char *fname, int id);
+	int        (*print_file)(struct _SMBCCTX *c_file, const char *fname, 
+				 struct _SMBCCTX *c_print, const char *printq);
+	SMBCFILE * (*open_print_job)(struct _SMBCCTX *c, const char *fname);
+	int        (*list_print_jobs)(struct _SMBCCTX *c, const char *fname, void (*fn)(struct print_job_info *));
+	int        (*unlink_print_job)(struct _SMBCCTX *c, const char *fname, int id);
 
 
 	/** Callbacks
-	 * These callbacks _always_ have to be initialized because they will not be checked
+	 * These callbacks _always_ have to be intialized because they will not be checked
 	 * at dereference for increased speed.
 	 */
 	struct _smbc_callbacks {
@@ -380,11 +300,11 @@ struct _SMBCCTX {
 		
 		/** check if a server is still good
 		 */
-		smbc_check_server_fn check_server_fn;
+		int (*check_server_fn)(struct _SMBCCTX * c, SMBCSRV *srv);
 
 		/** remove a server if unused
 		 */
-		smbc_remove_unused_server_fn remove_unused_server_fn;
+		int (*remove_unused_server_fn)(struct _SMBCCTX * c, SMBCSRV *srv);
 
 		/** Cache subsystem
 		 * For an example cache system see samba/source/libsmb/libsmb_cache.c
@@ -393,19 +313,21 @@ struct _SMBCCTX {
 
 		/** server cache addition 
 		 */
-		smbc_add_cached_srv_fn add_cached_srv_fn;
-
+		int (*add_cached_srv_fn)   (struct _SMBCCTX * c, SMBCSRV *srv, 
+					    char * server, char * share, 
+					    char * workgroup, char * username);
 		/** server cache lookup 
 		 */
-		smbc_get_cached_srv_fn get_cached_srv_fn;
-
+		SMBCSRV * (*get_cached_srv_fn)   (struct _SMBCCTX * c, char * server, 
+					    char * share, char * workgroup, char * username);
 		/** server cache removal
 		 */
-		smbc_remove_cached_srv_fn remove_cached_srv_fn;
+		int (*remove_cached_srv_fn)(struct _SMBCCTX * c, SMBCSRV *srv);
 		
 		/** server cache purging, try to remove all cached servers (disconnect)
 		 */
-		smbc_purge_cached_fn purge_cached_fn;
+		int (*purge_cached_fn)     (struct _SMBCCTX * c);
+		
 	} callbacks;
 
 
@@ -413,12 +335,27 @@ struct _SMBCCTX {
 	 */
 	struct smbc_server_cache * server_cache;
 
-	/** INTERNAL DATA
-	 * do _NOT_ touch this from your program !
+	/** INTERNAL functions
+	 * do _NOT_ touch these from your program !
+	 */
+
+	/** INTERNAL: is this handle initialized ? 
+	 */
+	int     _initialized;
+
+	/** INTERNAL: dirent pointer location 
 	 */
-	struct smbc_internal_data * internal;
+	char    _dirent[512];  
+
+	/** INTERNAL: server connection list
+	 */
+	SMBCSRV * _servers;
 	
-};
+	/** INTERNAL: open file/dir list
+	 */
+	SMBCFILE * _files;
+	
+} SMBCCTX;
 
 
 /**@ingroup misc
@@ -1053,7 +990,7 @@ int smbc_open_print_job(const char *fname);
  *                  - EINVAL fname was NULL or smbc_init not called
  *                  - EACCES ???
  */
-int smbc_list_print_jobs(const char *purl, smbc_list_print_job_fn fn);
+int smbc_list_print_jobs(const char *purl, smbc_get_print_job_info fn);
 
 /**@ingroup print
  * Delete a print job 
diff --git a/source3/include/passdb.h b/source3/include/passdb.h
index f1e15f614af..f63fd52e84c 100644
--- a/source3/include/passdb.h
+++ b/source3/include/passdb.h
@@ -34,6 +34,13 @@
 
 #define PASSDB_INTERFACE_VERSION 4
 
+/* use this inside a passdb module */
+#define PDB_MODULE_VERSIONING_MAGIC \
+int pdb_version(void)\
+{\
+	return PASSDB_INTERFACE_VERSION;\
+}
+
 typedef struct pdb_context 
 {
 	struct pdb_methods *pdb_methods;
@@ -149,7 +156,6 @@ struct pdb_init_function_entry {
 	char *name;
 	/* Function to create a member of the pdb_methods list */
 	pdb_init_function init;
-	struct pdb_init_function_entry *prev, *next;
 };
 
 #endif /* _PASSDB_H */
diff --git a/source3/include/rpc_client_proto.h b/source3/include/rpc_client_proto.h
deleted file mode 100644
index 0ecb1956913..00000000000
--- a/source3/include/rpc_client_proto.h
+++ /dev/null
@@ -1,231 +0,0 @@
-#ifndef _RPC_CLIENT_PROTO_H_
-#define _RPC_CLIENT_PROTO_H_
-/* This file is automatically generated with "make proto". DO NOT EDIT */
-
-
-/*The following definitions come from  lib/util_list.c  */
-
-BOOL copy_policy_hnd (POLICY_HND *dest, const POLICY_HND *src);
-BOOL compare_rpc_hnd_node(const RPC_HND_NODE *x, 
-			  const RPC_HND_NODE *y);
-BOOL RpcHndList_set_connection(const POLICY_HND *hnd, 
-		  	       struct cli_connection *con);
-BOOL RpcHndList_del_connection(const POLICY_HND *hnd);
-struct cli_connection* RpcHndList_get_connection(const POLICY_HND *hnd);
-
-/*The following definitions come from  rpc_client/cli_connect.c  */
-
-void init_connections(void);
-void free_connections(void);
-void cli_connection_free(struct cli_connection *con);
-void cli_connection_unlink(struct cli_connection *con);
-BOOL cli_connection_init(const char *srv_name, char *pipe_name,
-                         struct cli_connection **con);
-BOOL cli_connection_init_auth(const char *srv_name, char *pipe_name,
-                              struct cli_connection **con,
-                              cli_auth_fns * auth, void *auth_creds);
-struct _cli_auth_fns *cli_conn_get_authfns(struct cli_connection *con);
-void *cli_conn_get_auth_creds(struct cli_connection *con);
-BOOL rpc_hnd_pipe_req(const POLICY_HND * hnd, uint8 op_num,
-                      prs_struct * data, prs_struct * rdata);
-BOOL rpc_con_pipe_req(struct cli_connection *con, uint8 op_num,
-                      prs_struct * data, prs_struct * rdata);
-BOOL rpc_con_ok(struct cli_connection *con);
-
-/*The following definitions come from  rpc_client/cli_login.c  */
-
-BOOL cli_nt_setup_creds(struct cli_state *cli, unsigned char mach_pwd[16]);
-BOOL cli_nt_srv_pwset(struct cli_state *cli, unsigned char *new_hashof_mach_pwd);
-BOOL cli_nt_login_interactive(struct cli_state *cli, char *domain, char *username, 
-                              uint32 smb_userid_low, char *password,
-                              NET_ID_INFO_CTR *ctr, NET_USER_INFO_3 *user_info3);
-BOOL cli_nt_login_network(struct cli_state *cli, char *domain, char *username, 
-                          uint32 smb_userid_low, char lm_chal[8], 
-			  char *lm_chal_resp, char *nt_chal_resp,
-                          NET_ID_INFO_CTR *ctr, NET_USER_INFO_3 *user_info3);
-BOOL cli_nt_logoff(struct cli_state *cli, NET_ID_INFO_CTR *ctr);
-
-/*The following definitions come from  rpc_client/cli_lsarpc.c  */
-
-BOOL do_lsa_open_policy(struct cli_state *cli,
-			char *system_name, POLICY_HND *hnd,
-			BOOL sec_qos);
-BOOL do_lsa_query_info_pol(struct cli_state *cli,
-			POLICY_HND *hnd, uint16 info_class,
-			fstring domain_name, DOM_SID *domain_sid);
-BOOL do_lsa_close(struct cli_state *cli, POLICY_HND *hnd);
-BOOL cli_lsa_get_domain_sid(struct cli_state *cli, char *server);
-uint32 lsa_open_policy(const char *system_name, POLICY_HND *hnd,
-		       BOOL sec_qos, uint32 des_access);
-uint32 lsa_lookup_sids(POLICY_HND *hnd, int num_sids, DOM_SID *sids,
-		       char ***names, uint32 **types, int *num_names);
-uint32 lsa_lookup_names(POLICY_HND *hnd, int num_names, char **names,
-			DOM_SID **sids, uint32 **types, int *num_sids);
-
-/*The following definitions come from  rpc_client/cli_netlogon.c  */
-
-BOOL cli_net_logon_ctrl2(struct cli_state *cli, uint32 status_level);
-BOOL cli_net_auth2(struct cli_state *cli, uint16 sec_chan, 
-                   uint32 neg_flags, DOM_CHAL *srv_chal);
-BOOL cli_net_req_chal(struct cli_state *cli, DOM_CHAL *clnt_chal, DOM_CHAL *srv_chal);
-BOOL cli_net_srv_pwset(struct cli_state *cli, uint8 hashed_mach_pwd[16]);
-BOOL cli_net_sam_logon(struct cli_state *cli, NET_ID_INFO_CTR *ctr, NET_USER_INFO_3 *user_info3);
-BOOL cli_net_sam_logoff(struct cli_state *cli, NET_ID_INFO_CTR *ctr);
-BOOL change_trust_account_password( char *domain, char *remote_machine_list);
-
-/*The following definitions come from  rpc_client/cli_pipe.c  */
-
-BOOL rpc_api_pipe_req(struct cli_state *cli, uint8 op_num,
-                      prs_struct *data, prs_struct *rdata);
-BOOL rpc_pipe_bind(struct cli_state *cli, char *pipe_name, char *my_name);
-void cli_nt_set_ntlmssp_flgs(struct cli_state *cli, uint32 ntlmssp_flgs);
-BOOL cli_nt_session_open(struct cli_state *cli, char *pipe_name);
-void cli_nt_session_close(struct cli_state *cli);
-
-/*The following definitions come from  rpc_client/cli_reg.c  */
-
-BOOL do_reg_connect(struct cli_state *cli, char *full_keyname, char *key_name,
-				POLICY_HND *reg_hnd);
-BOOL do_reg_open_hklm(struct cli_state *cli, uint16 unknown_0, uint32 level,
-				POLICY_HND *hnd);
-BOOL do_reg_open_hku(struct cli_state *cli, uint16 unknown_0, uint32 level,
-				POLICY_HND *hnd);
-BOOL do_reg_flush_key(struct cli_state *cli, POLICY_HND *hnd);
-BOOL do_reg_query_key(struct cli_state *cli, POLICY_HND *hnd,
-				char *class, uint32 *class_len,
-				uint32 *num_subkeys, uint32 *max_subkeylen,
-				uint32 *max_subkeysize, uint32 *num_values,
-				uint32 *max_valnamelen, uint32 *max_valbufsize,
-				uint32 *sec_desc, NTTIME *mod_time);
-BOOL do_reg_unknown_1a(struct cli_state *cli, POLICY_HND *hnd, uint32 *unk);
-BOOL do_reg_query_info(struct cli_state *cli, POLICY_HND *hnd,
-				char *key_value, uint32* key_type);
-BOOL do_reg_set_key_sec(struct cli_state *cli, POLICY_HND *hnd, SEC_DESC_BUF *sec_desc_buf);
-BOOL do_reg_get_key_sec(struct cli_state *cli, POLICY_HND *hnd, uint32 *sec_buf_size, SEC_DESC_BUF **ppsec_desc_buf);
-BOOL do_reg_delete_val(struct cli_state *cli, POLICY_HND *hnd, char *val_name);
-BOOL do_reg_delete_key(struct cli_state *cli, POLICY_HND *hnd, char *key_name);
-BOOL do_reg_create_key(struct cli_state *cli, POLICY_HND *hnd,
-				char *key_name, char *key_class,
-				SEC_ACCESS *sam_access,
-				POLICY_HND *key);
-BOOL do_reg_enum_key(struct cli_state *cli, POLICY_HND *hnd,
-				int key_index, char *key_name,
-				uint32 *unk_1, uint32 *unk_2,
-				time_t *mod_time);
-BOOL do_reg_create_val(struct cli_state *cli, POLICY_HND *hnd,
-				char *val_name, uint32 type, BUFFER3 *data);
-BOOL do_reg_enum_val(struct cli_state *cli, POLICY_HND *hnd,
-				int val_index, int max_valnamelen, int max_valbufsize,
-				fstring val_name,
-				uint32 *val_type, BUFFER2 *value);
-BOOL do_reg_open_entry(struct cli_state *cli, POLICY_HND *hnd,
-				char *key_name, uint32 unk_0,
-				POLICY_HND *key_hnd);
-BOOL do_reg_close(struct cli_state *cli, POLICY_HND *hnd);
-
-/*The following definitions come from  rpc_client/cli_samr.c  */
-
-BOOL get_samr_query_usergroups(struct cli_state *cli, 
-				POLICY_HND *pol_open_domain, uint32 user_rid,
-				uint32 *num_groups, DOM_GID *gid);
-BOOL get_samr_query_userinfo(struct cli_state *cli, 
-				POLICY_HND *pol_open_domain,
-				uint32 info_level,
-				uint32 user_rid, SAM_USER_INFO_21 *usr);
-BOOL do_samr_chgpasswd_user(struct cli_state *cli,
-		char *srv_name, char *user_name,
-		char nt_newpass[516], uchar nt_oldhash[16],
-		char lm_newpass[516], uchar lm_oldhash[16]);
-BOOL do_samr_unknown_38(struct cli_state *cli, char *srv_name);
-BOOL do_samr_query_dom_info(struct cli_state *cli, 
-				POLICY_HND *domain_pol, uint16 switch_value);
-BOOL do_samr_enum_dom_users(struct cli_state *cli, 
-				POLICY_HND *pol, uint16 num_entries, uint16 unk_0,
-				uint16 acb_mask, uint16 unk_1, uint32 size,
-				struct acct_info **sam,
-				int *num_sam_users);
-BOOL do_samr_connect(struct cli_state *cli, 
-				char *srv_name, uint32 unknown_0,
-				POLICY_HND *connect_pol);
-BOOL do_samr_open_user(struct cli_state *cli, 
-				POLICY_HND *pol, uint32 unk_0, uint32 rid, 
-				POLICY_HND *user_pol);
-BOOL do_samr_open_domain(struct cli_state *cli, 
-				POLICY_HND *connect_pol, uint32 rid, DOM_SID *sid,
-				POLICY_HND *domain_pol);
-BOOL do_samr_query_unknown_12(struct cli_state *cli, 
-				POLICY_HND *pol, uint32 rid, uint32 num_gids, uint32 *gids,
-				uint32 *num_aliases,
-				fstring als_names    [MAX_LOOKUP_SIDS],
-				uint32  num_als_users[MAX_LOOKUP_SIDS]);
-BOOL do_samr_query_usergroups(struct cli_state *cli, 
-				POLICY_HND *pol, uint32 *num_groups, DOM_GID *gid);
-BOOL do_samr_query_userinfo(struct cli_state *cli, 
-				POLICY_HND *pol, uint16 switch_value, void* usr);
-BOOL do_samr_close(struct cli_state *cli, POLICY_HND *hnd);
-
-/*The following definitions come from  rpc_client/cli_spoolss_notify.c  */
-
-BOOL spoolss_disconnect_from_client( struct cli_state *cli);
-BOOL spoolss_connect_to_client( struct cli_state *cli, char *remote_machine);
-BOOL cli_spoolss_reply_open_printer(struct cli_state *cli, char *printer, uint32 localprinter, uint32 type, uint32 *status, POLICY_HND *handle);
-BOOL cli_spoolss_reply_rrpcn(struct cli_state *cli, POLICY_HND *handle, 
-			     uint32 change_low, uint32 change_high, uint32 *status);
-BOOL cli_spoolss_reply_close_printer(struct cli_state *cli, POLICY_HND *handle, uint32 *status);
-
-/*The following definitions come from  rpc_client/cli_srvsvc.c  */
-
-BOOL do_srv_net_srv_conn_enum(struct cli_state *cli,
-			char *server_name, char *qual_name,
-			uint32 switch_value, SRV_CONN_INFO_CTR *ctr,
-			uint32 preferred_len,
-			ENUM_HND *hnd);
-BOOL do_srv_net_srv_sess_enum(struct cli_state *cli,
-			char *server_name, char *qual_name,
-			uint32 switch_value, SRV_SESS_INFO_CTR *ctr,
-			uint32 preferred_len,
-			ENUM_HND *hnd);
-BOOL do_srv_net_srv_share_enum(struct cli_state *cli,
-			char *server_name, 
-			uint32 switch_value, SRV_R_NET_SHARE_ENUM *r_o,
-			uint32 preferred_len, ENUM_HND *hnd);
-BOOL do_srv_net_srv_file_enum(struct cli_state *cli,
-			char *server_name, char *qual_name,
-			uint32 switch_value, SRV_FILE_INFO_CTR *ctr,
-			uint32 preferred_len,
-			ENUM_HND *hnd);
-BOOL do_srv_net_srv_get_info(struct cli_state *cli,
-			char *server_name, uint32 switch_value, SRV_INFO_CTR *ctr);
-
-/*The following definitions come from  rpc_client/cli_use.c  */
-
-void init_cli_use(void);
-void free_cli_use(void);
-struct cli_state *cli_net_use_add(const char *srv_name,
-				  const struct ntuser_creds *usr_creds,
-				  BOOL reuse, BOOL *is_new);
-BOOL cli_net_use_del(const char *srv_name,
-		     const struct ntuser_creds *usr_creds,
-		     BOOL force_close, BOOL *connection_closed);
-void cli_net_use_enum(uint32 *num_cons, struct use_info ***use);
-void cli_use_wait_keyboard(void);
-
-/*The following definitions come from  rpc_client/cli_wkssvc.c  */
-
-BOOL do_wks_query_info(struct cli_state *cli, 
-			char *server_name, uint32 switch_value,
-			WKS_INFO_100 *wks100);
-
-/*The following definitions come from  rpc_client/ncacn_np_use.c  */
-
-BOOL ncacn_np_use_del(const char *srv_name, const char *pipe_name,
-                      const vuser_key * key,
-                      BOOL force_close, BOOL *connection_closed);
-struct ncacn_np *ncacn_np_initialise(struct ncacn_np *msrpc,
-                                     const vuser_key * key);
-struct ncacn_np *ncacn_np_use_add(const char *pipe_name,
-                                  const vuser_key * key,
-                                  const char *srv_name,
-                                  const struct ntuser_creds *ntc,
-                                  BOOL reuse, BOOL *is_new_connection);
-#endif /* _PROTO_H_ */
diff --git a/source3/include/sam.h b/source3/include/sam.h
deleted file mode 100644
index f46a6e7bcb7..00000000000
--- a/source3/include/sam.h
+++ /dev/null
@@ -1,238 +0,0 @@
-/* 
-   Unix SMB/CIFS implementation.
-   SAM structures
-   Copyright (C) Kai Krueger 2002
-   Copyright (C) Stefan (metze) Metzmacher 2002
-   Copyright (C) Simo Sorce 2002
-   Copyright (C) Andrew Bartlett 2002
-   Copyright (C) Jelmer Vernooij 2002
-   
-   This program is free software; you can redistribute it and/or modify
-   it under the terms of the GNU General Public License as published by
-   the Free Software Foundation; either version 2 of the License, or
-   (at your option) any later version.
-   
-   This program is distributed in the hope that it will be useful,
-   but WITHOUT ANY WARRANTY; without even the implied warranty of
-   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-   GNU General Public License for more details.
-   
-   You should have received a copy of the GNU General Public License
-   along with this program; if not, write to the Free Software
-   Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
-*/
-
-#ifndef _SAM_H
-#define _SAM_H
-
-/* We want to track down bugs early */
-#if 1
-#define SAM_ASSERT(x) SMB_ASSERT(x)
-#else
-#define SAM_ASSERT(x) while (0) { \
-	if (!(x)) {
-		DEBUG(0, ("SAM_ASSERT failed!\n"))
-		return NT_STATUS_FAIL_CHECK;\
-	} \
-    }
-#endif
-
-
-/* let it be 0 until we have a stable interface --metze */
-#define SAM_INTERFACE_VERSION 0
-
-/* use this inside a passdb module */
-#define SAM_MODULE_VERSIONING_MAGIC \
-int sam_version(void)\
-{\
-	return SAM_INTERFACE_VERSION;\
-}
-
-/* Backend to use by default when no backend was specified */
-#define SAM_DEFAULT_BACKEND "plugin"
-
-typedef struct sam_domain_handle {
-	TALLOC_CTX *mem_ctx;
-	uint32 access_granted;
-	const struct sam_methods *current_sam_methods; /* sam_methods creating this handle */
-	void (*free_fn)(struct sam_domain_handle **);
-	struct domain_data {
-		DOM_SID sid; /*SID of the domain. Should not be changed */
-		char *name; /* Name of the domain */
-		char *servername; /* */
-		NTTIME max_passwordage; /* time till next password expiration */
-		NTTIME min_passwordage; /* time till password can be changed again */
-		NTTIME lockout_duration; /* time till login is allowed again after lockout*/
-		NTTIME reset_count; /* time till bad login counter is reset */
-		uint16 min_passwordlength; /* minimum number of characters for a password */
-		uint16 password_history; /* number of passwords stored in history */
-		uint16 lockout_count; /* number of bad login attempts before lockout */
-		BOOL force_logoff; /* force logoff after logon hours have expired */
-		BOOL login_pwdchange; /* Users need to logon to change their password */
-		uint32 num_accounts; /* number of accounts in the domain */
-		uint32 num_groups; /* number of global groups */
-		uint32 num_aliases; /* number of local groups */
-		uint32 sam_sequence_number; /* global sequence number */
-	} private;
-} SAM_DOMAIN_HANDLE;
-
-typedef struct sam_account_handle {
-	TALLOC_CTX *mem_ctx;
-	uint32 access_granted;
-	const struct sam_methods *current_sam_methods; /* sam_methods creating this handle */
-	void (*free_fn)(struct sam_account_handle **);
-	struct sam_account_data {
-		uint32 init_flag;
-		NTTIME logon_time; /* logon time */
-		NTTIME logoff_time; /* logoff time */
-		NTTIME kickoff_time; /* kickoff time */
-		NTTIME pass_last_set_time; /* password last set time */
-		NTTIME pass_can_change_time; /* password can change time */
-		NTTIME pass_must_change_time; /* password must change time */
-		char * account_name; /* account_name string */
-		SAM_DOMAIN_HANDLE * domain; /* domain of account */
-		char *full_name; /* account's full name string */
-		char *unix_home_dir; /* UNIX home directory string */
-		char *home_dir; /* home directory string */
-		char *dir_drive; /* home directory drive string */
-		char *logon_script; /* logon script string */
-		char *profile_path; /* profile path string */
-		char *acct_desc; /* account description string */
-		char *workstations; /* login from workstations string */
-		char *unknown_str; /* don't know what this is, yet. */
-		char *munged_dial; /* munged path name and dial-back tel number */
-		DOM_SID account_sid; /* Primary Account SID */
-		DOM_SID group_sid; /* Primary Group SID */
-		DATA_BLOB lm_pw; /* .data is Null if no password */
-		DATA_BLOB nt_pw; /* .data is Null if no password */
-		char *plaintext_pw; /* if Null not available */
-		uint16 acct_ctrl; /* account info (ACB_xxxx bit-mask) */
-		uint32 unknown_1; /* 0x00ff ffff */
-		uint16 logon_divs; /* 168 - number of hours in a week */
-		uint32 hours_len; /* normally 21 bytes */
-		uint8 hours[MAX_HOURS_LEN];
-		uint32 unknown_2; /* 0x0002 0000 */
-		uint32 unknown_3; /* 0x0000 04ec */
-	} private;
-} SAM_ACCOUNT_HANDLE;
-
-typedef struct sam_group_handle {
-	TALLOC_CTX *mem_ctx;
-	uint32 access_granted;
-	const struct sam_methods *current_sam_methods; /* sam_methods creating this handle */
-	void (*free_fn)(struct sam_group_handle **);
-	struct sam_group_data {
-		char *group_name;
-		char *group_desc;
-		DOM_SID sid;
-		uint16 group_ctrl; /* specifies if the group is a local group or a global group */
-		uint32 num_members;
-	} private;
-} SAM_GROUP_HANDLE;
-
-
-typedef struct sam_group_member {
-	DOM_SID sid; 
-	BOOL group; /* specifies if it is a group or a account */ 
-} SAM_GROUP_MEMBER;
-
-typedef struct sam_account_enum {
-	DOM_SID sid; 
-	char *account_name; 
-	char *full_name; 
-	char *account_desc; 
-	uint16 acct_ctrl; 
-} SAM_ACCOUNT_ENUM;
-
-typedef struct sam_group_enum {
-	DOM_SID sid;
-	char *group_name;
-	char *group_desc;
-	uint16 group_ctrl;
-} SAM_GROUP_ENUM;
-
-
-/* bits for group_ctrl: to spezify if the group is global group or alias */
-#define GCB_LOCAL_GROUP		0x0001
-#define GCB_ALIAS_GROUP		(GCB_LOCAL_GROUP |GCB_BUILTIN)
-#define GCB_GLOBAL_GROUP	0x0002
-#define GCB_BUILTIN		0x1000
-
-typedef struct sam_context 
-{
-	struct sam_methods *methods;
-	TALLOC_CTX *mem_ctx;
-	
-	void (*free_fn)(struct sam_context **);
-} SAM_CONTEXT;
-
-typedef struct sam_methods 
-{
-	struct sam_context		*parent;
-	struct sam_methods		*next;
-	struct sam_methods		*prev;
-	const char			*backendname;
-	const char			*domain_name;
-	DOM_SID				domain_sid;
-	void				*private_data;
-	
-	/* General API */
-	
-	NTSTATUS (*sam_get_sec_desc) (const struct sam_methods *, const NT_USER_TOKEN *access_token, const DOM_SID *sid, SEC_DESC **sd);
-	NTSTATUS (*sam_set_sec_desc) (const struct sam_methods *, const NT_USER_TOKEN *access_token, const DOM_SID *sid, const SEC_DESC *sd);
-	
-	NTSTATUS (*sam_lookup_sid) (const struct sam_methods *, const NT_USER_TOKEN *access_token, TALLOC_CTX *mem_ctx, const DOM_SID *sid, char **name, uint32 *type);
-	NTSTATUS (*sam_lookup_name) (const struct sam_methods *, const NT_USER_TOKEN *access_token, const char *name, DOM_SID *sid, uint32 *type);
-	
-	/* Domain API */
-
-	NTSTATUS (*sam_update_domain) (const struct sam_methods *, const SAM_DOMAIN_HANDLE *domain);
-	NTSTATUS (*sam_get_domain_handle) (const struct sam_methods *, const NT_USER_TOKEN *access_token, uint32 access_desired, SAM_DOMAIN_HANDLE **domain);
-
-	/* Account API */
-
-	NTSTATUS (*sam_create_account) (const struct sam_methods *, const NT_USER_TOKEN *access_token, uint32 access_desired, const char *account_name, uint16 acct_ctrl, SAM_ACCOUNT_HANDLE **account);
-	NTSTATUS (*sam_add_account) (const struct sam_methods *, const SAM_ACCOUNT_HANDLE *account);
-	NTSTATUS (*sam_update_account) (const struct sam_methods *, const SAM_ACCOUNT_HANDLE *account);
-	NTSTATUS (*sam_delete_account) (const struct sam_methods *, const SAM_ACCOUNT_HANDLE *account);
-	NTSTATUS (*sam_enum_accounts) (const struct sam_methods *, const NT_USER_TOKEN *access_token, uint16 acct_ctrl, uint32 *account_count, SAM_ACCOUNT_ENUM **accounts);
-
-	NTSTATUS (*sam_get_account_by_sid) (const struct sam_methods *, const NT_USER_TOKEN *access_token, uint32 access_desired, const DOM_SID *accountsid, SAM_ACCOUNT_HANDLE **account);
-	NTSTATUS (*sam_get_account_by_name) (const struct sam_methods *, const NT_USER_TOKEN *access_token, uint32 access_desired, const char *name, SAM_ACCOUNT_HANDLE **account);
-
-	/* Group API */
-
-	NTSTATUS (*sam_create_group) (const struct sam_methods *, const NT_USER_TOKEN *access_token, uint32 access_desired, const char *group_name, uint16 group_ctrl, SAM_GROUP_HANDLE **group);
-	NTSTATUS (*sam_add_group) (const struct sam_methods *, const SAM_GROUP_HANDLE *group);
-	NTSTATUS (*sam_update_group) (const struct sam_methods *, const SAM_GROUP_HANDLE *group);
-	NTSTATUS (*sam_delete_group) (const struct sam_methods *, const SAM_GROUP_HANDLE *group);
-	NTSTATUS (*sam_enum_groups) (const struct sam_methods *, const NT_USER_TOKEN *access_token, uint16 group_ctrl, uint32 *groups_count, SAM_GROUP_ENUM **groups);
-	NTSTATUS (*sam_get_group_by_sid) (const struct sam_methods *, const NT_USER_TOKEN *access_token, uint32 access_desired, const DOM_SID *groupsid, SAM_GROUP_HANDLE **group);
-	NTSTATUS (*sam_get_group_by_name) (const struct sam_methods *, const NT_USER_TOKEN *access_token, uint32 access_desired, const char *name, SAM_GROUP_HANDLE **group);
-
-	NTSTATUS (*sam_add_member_to_group) (const struct sam_methods *, const SAM_GROUP_HANDLE *group, const SAM_GROUP_MEMBER *member);
-	NTSTATUS (*sam_delete_member_from_group) (const struct sam_methods *, const SAM_GROUP_HANDLE *group, const SAM_GROUP_MEMBER *member);
-	NTSTATUS (*sam_enum_groupmembers) (const struct sam_methods *, const SAM_GROUP_HANDLE *group, uint32 *members_count, SAM_GROUP_MEMBER **members);
-
-	NTSTATUS (*sam_get_groups_of_sid) (const struct sam_methods *, const NT_USER_TOKEN *access_token, const DOM_SID **sids, uint16 group_ctrl, uint32 *group_count, SAM_GROUP_ENUM **groups);
-
-	void (*free_private_data)(void **);
-} SAM_METHODS;
-
-typedef NTSTATUS (*sam_init_function)(SAM_METHODS *, const char *);
-
-struct sam_init_function_entry {
-	char *module_name;
-	/* Function to create a member of the sam_methods list */
-	sam_init_function init;
-};
-
-typedef struct sam_backend_entry {
-	char    *module_name;
-	char    *module_params;
-	char    *domain_name;
-	DOM_SID *domain_sid;
-} SAM_BACKEND_ENTRY;
-
-
-#endif /* _SAM_H */
diff --git a/source3/include/smb.h b/source3/include/smb.h
index 83125989df8..310fd1ace59 100644
--- a/source3/include/smb.h
+++ b/source3/include/smb.h
@@ -953,7 +953,7 @@ struct bitmap {
 #define SMBntcancel      0xA4   /* NT cancel */
 
 /* These are the trans subcommands */
-#define TRANSACT_SETNAMEDPIPEHANDLESTATE  0x01 
+#define TRANSACT_SETNAMEDPIPEHANDLESTATE  0x01
 #define TRANSACT_DCERPCCMD                0x26
 #define TRANSACT_WAITNAMEDPIPEHANDLESTATE 0x53
 
diff --git a/source3/include/version.h b/source3/include/version.h
index c0a1c702f29..415b456aac2 100644
--- a/source3/include/version.h
+++ b/source3/include/version.h
@@ -1 +1 @@
-#define VERSION "post3.0-HEAD"
+#define VERSION "3.0alpha21cvs"
diff --git a/source3/lib/domain_namemap.c b/source3/lib/domain_namemap.c
deleted file mode 100644
index 988f5e5d659..00000000000
--- a/source3/lib/domain_namemap.c
+++ /dev/null
@@ -1,1317 +0,0 @@
-/* 
-   Unix SMB/Netbios implementation.
-   Version 1.9.
-   Groupname handling
-   Copyright (C) Jeremy Allison 1998.
-   
-   This program is free software; you can redistribute it and/or modify
-   it under the terms of the GNU General Public License as published by
-   the Free Software Foundation; either version 2 of the License, or
-   (at your option) any later version.
-   
-   This program is distributed in the hope that it will be useful,
-   but WITHOUT ANY WARRANTY; without even the implied warranty of
-   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-   GNU General Public License for more details.
-   
-   You should have received a copy of the GNU General Public License
-   along with this program; if not, write to the Free Software
-   Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
-*/
-
-/* 
- * UNIX gid and Local or Domain SID resolution.  This module resolves
- * only those entries in the map files, it is *NOT* responsible for
- * resolving UNIX groups not listed: that is an entirely different
- * matter, altogether...
- */
-
-/*
- *
- *
-
- format of the file is:
-
- unixname	NT Group name
- unixname	Domain Admins (well-known Domain Group)
- unixname	DOMAIN_NAME\NT Group name
- unixname	OTHER_DOMAIN_NAME\NT Group name
- unixname	DOMAIN_NAME\Domain Admins (well-known Domain Group)
- ....
-
- if the DOMAIN_NAME\ component is left off, then your own domain is assumed.
-
- *
- *
- */
-
-
-#include "includes.h"
-extern int DEBUGLEVEL;
-
-extern fstring global_myworkgroup;
-extern DOM_SID global_member_sid;
-extern fstring global_sam_name;
-extern DOM_SID global_sam_sid;
-extern DOM_SID global_sid_S_1_5_20;
-
-/*******************************************************************
- converts UNIX uid to an NT User RID. NOTE: IS SOMETHING SPECIFIC TO SAMBA
- ********************************************************************/
-static uid_t pwdb_user_rid_to_uid(uint32 user_rid)
-{
-	return ((user_rid & (~RID_TYPE_USER))- 1000)/RID_MULTIPLIER;
-}
-
-/*******************************************************************
- converts NT Group RID to a UNIX uid. NOTE: IS SOMETHING SPECIFIC TO SAMBA
- ********************************************************************/
-static uint32 pwdb_group_rid_to_gid(uint32 group_rid)
-{
-	return ((group_rid & (~RID_TYPE_GROUP))- 1000)/RID_MULTIPLIER;
-}
-
-/*******************************************************************
- converts NT Alias RID to a UNIX uid. NOTE: IS SOMETHING SPECIFIC TO SAMBA
- ********************************************************************/
-static uint32 pwdb_alias_rid_to_gid(uint32 alias_rid)
-{
-	return ((alias_rid & (~RID_TYPE_ALIAS))- 1000)/RID_MULTIPLIER;
-}
-
-/*******************************************************************
- converts NT Group RID to a UNIX uid. NOTE: IS SOMETHING SPECIFIC TO SAMBA
- ********************************************************************/
-static uint32 pwdb_gid_to_group_rid(uint32 gid)
-{
-	uint32 grp_rid = ((((gid)*RID_MULTIPLIER) + 1000) | RID_TYPE_GROUP);
-	return grp_rid;
-}
-
-/******************************************************************
- converts UNIX gid to an NT Alias RID. NOTE: IS SOMETHING SPECIFIC TO SAMBA
- ********************************************************************/
-static uint32 pwdb_gid_to_alias_rid(uint32 gid)
-{
-	uint32 alias_rid = ((((gid)*RID_MULTIPLIER) + 1000) | RID_TYPE_ALIAS);
-	return alias_rid;
-}
-
-/*******************************************************************
- converts UNIX uid to an NT User RID. NOTE: IS SOMETHING SPECIFIC TO SAMBA
- ********************************************************************/
-static uint32 pwdb_uid_to_user_rid(uint32 uid)
-{
-	uint32 user_rid = ((((uid)*RID_MULTIPLIER) + 1000) | RID_TYPE_USER);
-	return user_rid;
-}
-
-/******************************************************************
- converts SID + SID_NAME_USE type to a UNIX id.  the Domain SID is,
- and can only be, our own SID.
- ********************************************************************/
-static BOOL pwdb_sam_sid_to_unixid(DOM_SID *sid, uint8 type, uint32 *id)
-{
-	DOM_SID tmp_sid;
-	uint32 rid;
-
-	sid_copy(&tmp_sid, sid);
-	sid_split_rid(&tmp_sid, &rid);
-	if (!sid_equal(&global_sam_sid, &tmp_sid))
-	{
-		return False;
-	}
-
-	switch (type)
-	{
-		case SID_NAME_USER:
-		{
-			*id = pwdb_user_rid_to_uid(rid);
-			return True;
-		}
-		case SID_NAME_ALIAS:
-		{
-			*id = pwdb_alias_rid_to_gid(rid);
-			return True;
-		}
-		case SID_NAME_DOM_GRP:
-		case SID_NAME_WKN_GRP:
-		{
-			*id = pwdb_group_rid_to_gid(rid);
-			return True;
-		}
-	}
-	return False;
-}
-
-/******************************************************************
- converts UNIX gid + SID_NAME_USE type to a SID.  the Domain SID is,
- and can only be, our own SID.
- ********************************************************************/
-static BOOL pwdb_unixid_to_sam_sid(uint32 id, uint8 type, DOM_SID *sid)
-{
-	sid_copy(sid, &global_sam_sid);
-	switch (type)
-	{
-		case SID_NAME_USER:
-		{
-			sid_append_rid(sid, pwdb_uid_to_user_rid(id));
-			return True;
-		}
-		case SID_NAME_ALIAS:
-		{
-			sid_append_rid(sid, pwdb_gid_to_alias_rid(id));
-			return True;
-		}
-		case SID_NAME_DOM_GRP:
-		case SID_NAME_WKN_GRP:
-		{
-			sid_append_rid(sid, pwdb_gid_to_group_rid(id));
-			return True;
-		}
-	}
-	return False;
-}
-
-/*******************************************************************
- Decides if a RID is a well known RID.
- ********************************************************************/
-static BOOL pwdb_rid_is_well_known(uint32 rid)
-{
-	return (rid < 1000);
-}
-
-/*******************************************************************
- determines a rid's type.  NOTE: THIS IS SOMETHING SPECIFIC TO SAMBA
- ********************************************************************/
-static uint32 pwdb_rid_type(uint32 rid)
-{
-	/* lkcl i understand that NT attaches an enumeration to a RID
-	 * such that it can be identified as either a user, group etc
-	 * type: SID_ENUM_TYPE.
-	 */
-	if (pwdb_rid_is_well_known(rid))
-	{
-		/*
-		 * The only well known user RIDs are DOMAIN_USER_RID_ADMIN
-		 * and DOMAIN_USER_RID_GUEST.
-		 */
-		if (rid == DOMAIN_USER_RID_ADMIN || rid == DOMAIN_USER_RID_GUEST)
-		{
-			return RID_TYPE_USER;
-		}
-		if (DOMAIN_GROUP_RID_ADMINS <= rid && rid <= DOMAIN_GROUP_RID_GUESTS)
-		{
-			return RID_TYPE_GROUP;
-		}
-		if (BUILTIN_ALIAS_RID_ADMINS <= rid && rid <= BUILTIN_ALIAS_RID_REPLICATOR)
-		{
-			return RID_TYPE_ALIAS;
-		}
-	}
-	return (rid & RID_TYPE_MASK);
-}
-
-/*******************************************************************
- checks whether rid is a user rid.  NOTE: THIS IS SOMETHING SPECIFIC TO SAMBA
- ********************************************************************/
-BOOL pwdb_rid_is_user(uint32 rid)
-{
-	return pwdb_rid_type(rid) == RID_TYPE_USER;
-}
-
-/**************************************************************************
- Groupname map functionality. The code loads a groupname map file and
- (currently) loads it into a linked list. This is slow and memory
- hungry, but can be changed into a more efficient storage format
- if the demands on it become excessive.
-***************************************************************************/
-
-typedef struct name_map
-{
-	ubi_slNode next;
-	DOM_NAME_MAP grp;
-
-} name_map_entry;
-
-static ubi_slList groupname_map_list;
-static ubi_slList aliasname_map_list;
-static ubi_slList ntusrname_map_list;
-
-static void delete_name_entry(name_map_entry *gmep)
-{
-	if (gmep->grp.nt_name)
-	{
-		free(gmep->grp.nt_name);
-	}
-	if (gmep->grp.nt_domain)
-	{
-		free(gmep->grp.nt_domain);
-	}
-	if (gmep->grp.unix_name)
-	{
-		free(gmep->grp.unix_name);
-	}
-	free((char*)gmep);
-}
-
-/**************************************************************************
- Delete all the entries in the name map list.
-***************************************************************************/
-
-static void delete_map_list(ubi_slList *map_list)
-{
-	name_map_entry *gmep;
-
-	while ((gmep = (name_map_entry *)ubi_slRemHead(map_list )) != NULL)
-	{
-		delete_name_entry(gmep);
-	}
-}
-
-
-/**************************************************************************
- makes a group sid out of a domain sid and a _unix_ gid.
-***************************************************************************/
-static BOOL make_mydomain_sid(DOM_NAME_MAP *grp, DOM_MAP_TYPE type)
-{
-	int ret = False;
-	fstring sid_str;
-
-	if (!map_domain_name_to_sid(&grp->sid, &(grp->nt_domain)))
-	{
-		DEBUG(0,("make_mydomain_sid: unknown domain %s\n",
-			  grp->nt_domain));
-		return False;
-	}
-
-	if (sid_equal(&grp->sid, &global_sid_S_1_5_20))
-	{
-		/*
-		 * only builtin aliases are recognised in S-1-5-20
-		 */
-		DEBUG(10,("make_mydomain_sid: group %s in builtin domain\n",
-		           grp->nt_name));
-
-		if (lookup_builtin_alias_name(grp->nt_name, "BUILTIN", &grp->sid, &grp->type) != 0x0)
-		{
-			DEBUG(0,("unix group %s mapped to an unrecognised BUILTIN domain name %s\n",
-			          grp->unix_name, grp->nt_name));
-			return False;
-		}
-		ret = True;
-	}
-	else if (lookup_wk_user_name(grp->nt_name, grp->nt_domain, &grp->sid, &grp->type) == 0x0)
-	{
-		if (type != DOM_MAP_USER)
-		{
-			DEBUG(0,("well-known NT user %s\\%s listed in wrong map file\n",
-			          grp->nt_domain, grp->nt_name));
-			return False;
-		}
-		ret = True;
-	}
-	else if (lookup_wk_group_name(grp->nt_name, grp->nt_domain, &grp->sid, &grp->type) == 0x0)
-	{
-		if (type != DOM_MAP_DOMAIN)
-		{
-			DEBUG(0,("well-known NT group %s\\%s listed in wrong map file\n",
-			          grp->nt_domain, grp->nt_name));
-			return False;
-		}
-		ret = True;
-	}
-	else
-	{
-		switch (type)
-		{
-			case DOM_MAP_USER:
-			{
-				grp->type = SID_NAME_USER;
-				break;
-			}
-			case DOM_MAP_DOMAIN:
-			{
-				grp->type = SID_NAME_DOM_GRP;
-				break;
-			}
-			case DOM_MAP_LOCAL:
-			{
-				grp->type = SID_NAME_ALIAS;
-				break;
-			}
-		}
-
-		ret = pwdb_unixid_to_sam_sid(grp->unix_id, grp->type, &grp->sid);
-	}
-
-	sid_to_string(sid_str, &grp->sid);
-	DEBUG(10,("nt name %s\\%s gid %d mapped to %s\n",
-	           grp->nt_domain, grp->nt_name, grp->unix_id, sid_str));
-	return ret;
-}
-
-/**************************************************************************
- makes a group sid out of an nt domain, nt group name or a unix group name.
-***************************************************************************/
-static BOOL unix_name_to_nt_name_info(DOM_NAME_MAP *map, DOM_MAP_TYPE type)
-{
-	/*
-	 * Attempt to get the unix gid_t for this name.
-	 */
-
-	DEBUG(5,("unix_name_to_nt_name_info: unix_name:%s\n", map->unix_name));
-
-	if (type == DOM_MAP_USER)
-	{
-		const struct passwd *pwptr = Get_Pwnam(map->unix_name, False);
-		if (pwptr == NULL)
-		{
-			DEBUG(0,("unix_name_to_nt_name_info: Get_Pwnam for user %s\
-failed. Error was %s.\n", map->unix_name, strerror(errno) ));
-			return False;
-		}
-
-		map->unix_id = (uint32)pwptr->pw_uid;
-	}
-	else
-	{
-		struct group *gptr = getgrnam(map->unix_name);
-		if (gptr == NULL)
-		{
-			DEBUG(0,("unix_name_to_nt_name_info: getgrnam for group %s\
-failed. Error was %s.\n", map->unix_name, strerror(errno) ));
-			return False;
-		}
-
-		map->unix_id = (uint32)gptr->gr_gid;
-	}
-
-	DEBUG(5,("unix_name_to_nt_name_info: unix gid:%d\n", map->unix_id));
-
-	/*
-	 * Now map the name to an NT SID+RID.
-	 */
-
-	if (map->nt_domain != NULL && !strequal(map->nt_domain, global_sam_name))
-	{
-		/* Must add client-call lookup code here, to 
-		 * resolve remote domain's sid and the group's rid,
-		 * in that domain.
-		 *
-		 * NOTE: it is _incorrect_ to put code here that assumes
-		 * we are responsible for lookups for foriegn domains' RIDs.
-		 *
-		 * for foriegn domains for which we are *NOT* the PDC, all
-		 * we can be responsible for is the unix gid_t to which
-		 * the foriegn SID+rid maps to, on this _local_ machine.  
-		 * we *CANNOT* make any short-cuts or assumptions about
-		 * RIDs in a foriegn domain.
-		 */
-
-		if (!map_domain_name_to_sid(&map->sid, &(map->nt_domain)))
-		{
-			DEBUG(0,("unix_name_to_nt_name_info: no known sid for %s\n",
-				  map->nt_domain));
-			return False;
-		}
-	}
-
-	return make_mydomain_sid(map, type);
-}
-
-static BOOL make_name_entry(name_map_entry **new_ep,
-		char *nt_domain, char *nt_group, char *unix_group,
-		DOM_MAP_TYPE type)
-{
-	/*
-	 * Create the list entry and add it onto the list.
-	 */
-
-	DEBUG(5,("make_name_entry:%s,%s,%s\n", nt_domain, nt_group, unix_group));
-
-	(*new_ep) = (name_map_entry *)malloc(sizeof(name_map_entry));
-	if ((*new_ep) == NULL)
-	{
-		DEBUG(0,("make_name_entry: malloc fail for name_map_entry.\n"));
-		return False;
-	} 
-
-	ZERO_STRUCTP(*new_ep);
-
-	(*new_ep)->grp.nt_name   = strdup(nt_group  );
-	(*new_ep)->grp.nt_domain = strdup(nt_domain );
-	(*new_ep)->grp.unix_name = strdup(unix_group);
-
-	if ((*new_ep)->grp.nt_name   == NULL ||
-	    (*new_ep)->grp.unix_name == NULL)
-	{
-		DEBUG(0,("make_name_entry: malloc fail for names in name_map_entry.\n"));
-		delete_name_entry((*new_ep));
-		return False;
-	}
-
-	/*
-	 * look up the group names, make the Group-SID and unix gid
-	 */
- 
-	if (!unix_name_to_nt_name_info(&(*new_ep)->grp, type))
-	{
-		delete_name_entry((*new_ep));
-		return False;
-	}
-
-	return True;
-}
-
-/**************************************************************************
- Load a name map file. Sets last accessed timestamp.
-***************************************************************************/
-static ubi_slList *load_name_map(DOM_MAP_TYPE type)
-{
-	static time_t groupmap_file_last_modified = (time_t)0;
-	static time_t aliasmap_file_last_modified = (time_t)0;
-	static time_t ntusrmap_file_last_modified  = (time_t)0;
-	static BOOL initialised_group = False;
-	static BOOL initialised_alias = False;
-	static BOOL initialised_ntusr  = False;
-	char *groupname_map_file = lp_groupname_map();
-	char *aliasname_map_file = lp_aliasname_map();
-	char *ntusrname_map_file = lp_ntusrname_map();
-
-	FILE *fp;
-	char *s;
-	pstring buf;
-	name_map_entry *new_ep;
-
-	time_t *file_last_modified = NULL;
-	int    *initialised = NULL;
-	char   *map_file = NULL;
-	ubi_slList *map_list = NULL;
-
-	switch (type)
-	{
-		case DOM_MAP_DOMAIN:
-		{
-			file_last_modified = &groupmap_file_last_modified;
-			initialised        = &initialised_group;
-			map_file           = groupname_map_file;
-			map_list           = &groupname_map_list;
-
-			break;
-		}
-		case DOM_MAP_LOCAL:
-		{
-			file_last_modified = &aliasmap_file_last_modified;
-			initialised        = &initialised_alias;
-			map_file           = aliasname_map_file;
-			map_list           = &aliasname_map_list;
-
-			break;
-		}
-		case DOM_MAP_USER:
-		{
-			file_last_modified = &ntusrmap_file_last_modified;
-			initialised        = &initialised_ntusr;
-			map_file           = ntusrname_map_file;
-			map_list           = &ntusrname_map_list;
-
-			break;
-		}
-	}
-
-	if (!(*initialised))
-	{
-		DEBUG(10,("initialising map %s\n", map_file));
-		ubi_slInitList(map_list);
-		(*initialised) = True;
-	}
-
-	if (!*map_file)
-	{
-		return map_list;
-	}
-
-	/*
-	 * Load the file.
-	 */
-
-	fp = open_file_if_modified(map_file, "r", file_last_modified);
-	if (!fp)
-	{
-		return map_list;
-	}
-
-	/*
-	 * Throw away any previous list.
-	 */
-	delete_map_list(map_list);
-
-	DEBUG(4,("load_name_map: Scanning name map %s\n",map_file));
-
-	while ((s = fgets_slash(buf, sizeof(buf), fp)) != NULL)
-	{
-		pstring unixname;
-		pstring nt_name;
-		fstring nt_domain;
-		fstring ntname;
-		char *p;
-
-		DEBUG(10,("Read line |%s|\n", s));
-
-		memset(nt_name, 0, sizeof(nt_name));
-
-		if (!*s || strchr("#;",*s))
-			continue;
-
-		if (!next_token(&s,unixname, "\t\n\r=", sizeof(unixname)))
-			continue;
-
-		if (!next_token(&s,nt_name, "\t\n\r=", sizeof(nt_name)))
-			continue;
-
-		trim_string(unixname, " ", " ");
-		trim_string(nt_name, " ", " ");
-
-		if (!*nt_name)
-			continue;
-
-		if (!*unixname)
-			continue;
-
-		p = strchr(nt_name, '\\');
-
-		if (p == NULL)
-		{
-			memset(nt_domain, 0, sizeof(nt_domain));
-			fstrcpy(ntname, nt_name);
-		}
-		else
-		{
-			*p = 0;
-			p++;
-			fstrcpy(nt_domain, nt_name);
-			fstrcpy(ntname , p);
-		}
-
-		if (make_name_entry(&new_ep, nt_domain, ntname, unixname, type))
-		{
-			ubi_slAddTail(map_list, (ubi_slNode *)new_ep);
-			DEBUG(5,("unixname = %s, ntname = %s\\%s type = %d\n",
-				  new_ep->grp.unix_name,
-			          new_ep->grp.nt_domain,
-			          new_ep->grp.nt_name,
-			          new_ep->grp.type));
-		}
-	}
-
-	DEBUG(10,("load_name_map: Added %ld entries to name map.\n",
-	           ubi_slCount(map_list)));
-
-	fclose(fp);
-
-	return map_list;
-}
-
-static void copy_grp_map_entry(DOM_NAME_MAP *grp, const DOM_NAME_MAP *from)
-{
-	sid_copy(&grp->sid, &from->sid);
-	grp->unix_id   = from->unix_id;
-	grp->nt_name   = from->nt_name;
-	grp->nt_domain = from->nt_domain;
-	grp->unix_name = from->unix_name;
-	grp->type      = from->type;
-}
-
-#if 0
-/***********************************************************
- Lookup unix name.
-************************************************************/
-static BOOL map_unixname(DOM_MAP_TYPE type,
-		char *unixname, DOM_NAME_MAP *grp_info)
-{
-	name_map_entry *gmep;
-	ubi_slList *map_list;
-
-	/*
-	 * Initialise and load if not already loaded.
-	 */
-	map_list = load_name_map(type);
-
-	for (gmep = (name_map_entry *)ubi_slFirst(map_list);
-	     gmep != NULL;
-	     gmep = (name_map_entry *)ubi_slNext(gmep ))
-	{
-		if (strequal(gmep->grp.unix_name, unixname))
-		{
-			copy_grp_map_entry(grp_info, &gmep->grp);
-			DEBUG(7,("map_unixname: Mapping unix name %s to nt group %s.\n",
-			       gmep->grp.unix_name, gmep->grp.nt_name ));
-			return True;
-		}
-	}
-
-	return False;
-}
-
-#endif
-
-/***********************************************************
- Lookup nt name.
-************************************************************/
-static BOOL map_ntname(DOM_MAP_TYPE type, char *ntname, char *ntdomain,
-				DOM_NAME_MAP *grp_info)
-{
-	name_map_entry *gmep;
-	ubi_slList *map_list;
-
-	/*
-	 * Initialise and load if not already loaded.
-	 */
-	map_list = load_name_map(type);
-
-	for (gmep = (name_map_entry *)ubi_slFirst(map_list);
-	     gmep != NULL;
-	     gmep = (name_map_entry *)ubi_slNext(gmep ))
-	{
-		if (strequal(gmep->grp.nt_name  , ntname) &&
-		    strequal(gmep->grp.nt_domain, ntdomain))
-		{
-			copy_grp_map_entry(grp_info, &gmep->grp);
-			DEBUG(7,("map_ntname: Mapping unix name %s to nt name %s.\n",
-			       gmep->grp.unix_name, gmep->grp.nt_name ));
-			return True;
-		}
-	}
-
-	return False;
-}
-
-
-/***********************************************************
- Lookup by SID
-************************************************************/
-static BOOL map_sid(DOM_MAP_TYPE type,
-		DOM_SID *psid, DOM_NAME_MAP *grp_info)
-{
-	name_map_entry *gmep;
-	ubi_slList *map_list;
-
-	/*
-	 * Initialise and load if not already loaded.
-	 */
-	map_list = load_name_map(type);
-
-	for (gmep = (name_map_entry *)ubi_slFirst(map_list);
-	     gmep != NULL;
-	     gmep = (name_map_entry *)ubi_slNext(gmep ))
-	{
-		if (sid_equal(&gmep->grp.sid, psid))
-		{
-			copy_grp_map_entry(grp_info, &gmep->grp);
-			DEBUG(7,("map_sid: Mapping unix name %s to nt name %s.\n",
-			       gmep->grp.unix_name, gmep->grp.nt_name ));
-			return True;
-		}
-	}
-
-	return False;
-}
-
-/***********************************************************
- Lookup by gid_t.
-************************************************************/
-static BOOL map_unixid(DOM_MAP_TYPE type, uint32 unix_id, DOM_NAME_MAP *grp_info)
-{
-	name_map_entry *gmep;
-	ubi_slList *map_list;
-
-	/*
-	 * Initialise and load if not already loaded.
-	 */
-	map_list = load_name_map(type);
-
-	for (gmep = (name_map_entry *)ubi_slFirst(map_list);
-	     gmep != NULL;
-	     gmep = (name_map_entry *)ubi_slNext(gmep ))
-	{
-		fstring sid_str;
-		sid_to_string(sid_str, &gmep->grp.sid);
-		DEBUG(10,("map_unixid: enum entry unix group %s %d nt %s %s\n",
-			       gmep->grp.unix_name, gmep->grp.unix_id, gmep->grp.nt_name, sid_str));
-		if (gmep->grp.unix_id == unix_id)
-		{
-			copy_grp_map_entry(grp_info, &gmep->grp);
-			DEBUG(7,("map_unixid: Mapping unix name %s to nt name %s type %d\n",
-			       gmep->grp.unix_name, gmep->grp.nt_name, gmep->grp.type));
-			return True;
-		}
-	}
-
-	return False;
-}
-
-/***********************************************************
- *
- * Call four functions to resolve unix group ids and either
- * local group SIDs or domain group SIDs listed in the local group
- * or domain group map files.
- *
- * Note that it is *NOT* the responsibility of these functions to
- * resolve entries that are not in the map files.
- *
- * Any SID can be in the map files (i.e from any Domain).
- *
- ***********************************************************/
-
-#if 0
-
-/***********************************************************
- Lookup a UNIX Group entry by name.
-************************************************************/
-BOOL map_unix_group_name(char *group_name, DOM_NAME_MAP *grp_info)
-{
-	return map_unixname(DOM_MAP_DOMAIN, group_name, grp_info);
-}
-
-/***********************************************************
- Lookup a UNIX Alias entry by name.
-************************************************************/
-BOOL map_unix_alias_name(char *alias_name, DOM_NAME_MAP *grp_info)
-{
-	return map_unixname(DOM_MAP_LOCAL, alias_name, grp_info);
-}
-
-/***********************************************************
- Lookup an Alias name entry 
-************************************************************/
-BOOL map_nt_alias_name(char *ntalias_name, char *nt_domain, DOM_NAME_MAP *grp_info)
-{
-	return map_ntname(DOM_MAP_LOCAL, ntalias_name, nt_domain, grp_info);
-}
-
-/***********************************************************
- Lookup a Group entry
-************************************************************/
-BOOL map_nt_group_name(char *ntgroup_name, char *nt_domain, DOM_NAME_MAP *grp_info)
-{
-	return map_ntname(DOM_MAP_DOMAIN, ntgroup_name, nt_domain, grp_info);
-}
-
-#endif
-
-/***********************************************************
- Lookup a Username entry by name.
-************************************************************/
-static BOOL map_nt_username(char *nt_name, char *nt_domain, DOM_NAME_MAP *grp_info)
-{
-	return map_ntname(DOM_MAP_USER, nt_name, nt_domain, grp_info);
-}
-
-/***********************************************************
- Lookup a Username entry by SID.
-************************************************************/
-static BOOL map_username_sid(DOM_SID *sid, DOM_NAME_MAP *grp_info)
-{
-	return map_sid(DOM_MAP_USER, sid, grp_info);
-}
-
-/***********************************************************
- Lookup a Username SID entry by uid.
-************************************************************/
-static BOOL map_username_uid(uid_t gid, DOM_NAME_MAP *grp_info)
-{
-	return map_unixid(DOM_MAP_USER, (uint32)gid, grp_info);
-}
-
-/***********************************************************
- Lookup an Alias SID entry by name.
-************************************************************/
-BOOL map_alias_sid(DOM_SID *psid, DOM_NAME_MAP *grp_info)
-{
-	return map_sid(DOM_MAP_LOCAL, psid, grp_info);
-}
-
-/***********************************************************
- Lookup a Group entry by sid.
-************************************************************/
-BOOL map_group_sid(DOM_SID *psid, DOM_NAME_MAP *grp_info)
-{
-	return map_sid(DOM_MAP_DOMAIN, psid, grp_info);
-}
-
-/***********************************************************
- Lookup an Alias SID entry by gid_t.
-************************************************************/
-static BOOL map_alias_gid(gid_t gid, DOM_NAME_MAP *grp_info)
-{
-	return map_unixid(DOM_MAP_LOCAL, (uint32)gid, grp_info);
-}
-
-/***********************************************************
- Lookup a Group SID entry by gid_t.
-************************************************************/
-static BOOL map_group_gid( gid_t gid, DOM_NAME_MAP *grp_info)
-{
-	return map_unixid(DOM_MAP_DOMAIN, (uint32)gid, grp_info);
-}
-
-
-/************************************************************************
- Routine to look up User details by UNIX name
-*************************************************************************/
-BOOL lookupsmbpwnam(const char *unix_usr_name, DOM_NAME_MAP *grp)
-{
-	uid_t uid;
-	DEBUG(10,("lookupsmbpwnam: unix user name %s\n", unix_usr_name));
-	if (nametouid(unix_usr_name, &uid))
-	{
-		return lookupsmbpwuid(uid, grp);
-	}
-	else
-	{
-		return False;
-	}
-}
-
-/************************************************************************
- Routine to look up a remote nt name
-*************************************************************************/
-static BOOL lookup_remote_ntname(const char *ntname, DOM_SID *sid, uint8 *type)
-{
-	struct cli_state cli;
-	POLICY_HND lsa_pol;
-	fstring srv_name;
-	extern struct ntuser_creds *usr_creds;
-	struct ntuser_creds usr;
-
-	BOOL res3 = True;
-	BOOL res4 = True;
-	uint32 num_sids;
-	DOM_SID *sids;
-	uint8 *types;
-	char *names[1];
-
-	usr_creds = &usr;
-
-	ZERO_STRUCT(usr);
-	pwd_set_nullpwd(&usr.pwd);
-
-	DEBUG(5,("lookup_remote_ntname: %s\n", ntname));
-
-	if (!cli_connect_serverlist(&cli, lp_passwordserver()))
-	{
-		return False;
-	}
-
-	names[0] = ntname;
-
-	fstrcpy(srv_name, "\\\\");
-	fstrcat(srv_name, cli.desthost);
-	strupper(srv_name);
-
-	/* lookup domain controller; receive a policy handle */
-	res3 = res3 ? lsa_open_policy( srv_name,
-				&lsa_pol, True) : False;
-
-	/* send lsa lookup sids call */
-	res4 = res3 ? lsa_lookup_names( &lsa_pol,
-				       1, names, 
-				       &sids, &types, &num_sids) : False;
-
-	res3 = res3 ? lsa_close(&lsa_pol) : False;
-
-	if (res4 && res3 && sids != NULL && types != NULL)
-	{
-		sid_copy(sid, &sids[0]);
-		*type = types[0];
-	}
-	else
-	{
-		res3 = False;
-	}
-	if (types != NULL)
-	{
-		free(types);
-	}
-	
-	if (sids != NULL)
-	{
-		free(sids);
-	}
-	
-	return res3 && res4;
-}
-
-/************************************************************************
- Routine to look up a remote nt name
-*************************************************************************/
-static BOOL get_sid_and_type(const char *fullntname, uint8 expected_type,
-				DOM_NAME_MAP *gmep)
-{
-	/*
-	 * check with the PDC to see if it owns the name.  if so,
-	 * the SID is resolved with the PDC database.
-	 */
-
-	if (lp_server_role() == ROLE_DOMAIN_MEMBER)
-	{
-		if (lookup_remote_ntname(fullntname, &gmep->sid, &gmep->type))
-		{
-			if (sid_front_equal(&gmep->sid, &global_member_sid) &&
-			    strequal(gmep->nt_domain, global_myworkgroup) &&
-			    gmep->type == expected_type)
-			{
-				return True;
-			}
-			return False;
-		}
-	}
-
-	/*
-	 * ... otherwise, it's one of ours.  map the sid ourselves,
-	 * which can only happen in our own SAM database.
-	 */
-
-	if (!strequal(gmep->nt_domain, global_sam_name))
-	{
-		return False;
-	}
-	if (!pwdb_unixid_to_sam_sid(gmep->unix_id, gmep->type, &gmep->sid))
-	{
-		return False;
-	}
-
-	return True;
-}
-
-/*
- * used by lookup functions below
- */
-
-static fstring nt_name;
-static fstring unix_name;
-static fstring nt_domain;
-
-/*************************************************************************
- looks up a uid, returns User Information.  
-*************************************************************************/
-BOOL lookupsmbpwuid(uid_t uid, DOM_NAME_MAP *gmep)
-{
-	DEBUG(10,("lookupsmbpwuid: unix uid %d\n", uid));
-	if (map_username_uid(uid, gmep))
-	{
-		return True;
-	}
-#if 0
-	if (lp_server_role() != ROLE_DOMAIN_NONE)
-#endif
-	{
-		gmep->nt_name   = nt_name;
-		gmep->unix_name = unix_name;
-		gmep->nt_domain = nt_domain;
-
-		gmep->unix_id = (uint32)uid;
-
-		/*
-		 * ok, assume it's one of ours.  then double-check it
-		 * if we are a member of a domain
-		 */
-
-		gmep->type = SID_NAME_USER;
-		fstrcpy(gmep->nt_name, uidtoname(uid));
-		fstrcpy(gmep->unix_name, gmep->nt_name);
-
-		/*
-		 * here we should do a LsaLookupNames() call
-		 * to check the status of the name with the PDC.
-		 * if the PDC know nothing of the name, it's ours.
-		 */
-
-		if (lp_server_role() == ROLE_DOMAIN_MEMBER)
-		{
-#if 0
-			lsa_lookup_names(global_myworkgroup, gmep->nt_name, &gmep->sid...);
-#endif
-		}
-
-		/*
-		 * ok, it's one of ours.
-		 */
-
-		gmep->nt_domain = global_sam_name;
-		pwdb_unixid_to_sam_sid(gmep->unix_id, gmep->type, &gmep->sid);
-
-		return True;
-	}
-
-	/* oops. */
-
-	return False;
-}
-
-/*************************************************************************
- looks up by NT name, returns User Information.  
-*************************************************************************/
-BOOL lookupsmbpwntnam(const char *fullntname, DOM_NAME_MAP *gmep)
-{
-	DEBUG(10,("lookupsmbpwntnam: nt user name %s\n", fullntname));
-
-	if (!split_domain_name(fullntname, nt_domain, nt_name))
-	{
-		return False;
-	}
-
-	if (map_nt_username(nt_name, nt_domain, gmep))
-	{
-		return True;
-	}
-	if (lp_server_role() != ROLE_DOMAIN_NONE)
-	{
-		uid_t uid;
-		gmep->nt_name   = nt_name;
-		gmep->unix_name = unix_name;
-		gmep->nt_domain = nt_domain;
-
-		/*
-		 * ok, it's one of ours.  we therefore "create" an nt user named
-		 * after the unix user.  this is the point where "appliance mode"
-		 * should get its teeth in, as unix users won't really exist,
-		 * they will only be numbers...
-		 */
-
-		gmep->type = SID_NAME_USER;
-		fstrcpy(gmep->unix_name, gmep->nt_name);
-		if (!nametouid(gmep->unix_name, &uid))
-		{
-			return False;
-		}
-		gmep->unix_id = (uint32)uid;
-
-		return get_sid_and_type(fullntname, gmep->type, gmep);
-	}
-
-	/* oops. */
-
-	return False;
-}
-
-/*************************************************************************
- looks up by RID, returns User Information.  
-*************************************************************************/
-BOOL lookupsmbpwsid(DOM_SID *sid, DOM_NAME_MAP *gmep)
-{
-	fstring sid_str;
-	sid_to_string(sid_str, sid);
-	DEBUG(10,("lookupsmbpwsid: nt sid %s\n", sid_str));
-
-	if (map_username_sid(sid, gmep))
-	{
-		return True;
-	}
-	if (lp_server_role() != ROLE_DOMAIN_NONE)
-	{
-		gmep->nt_name   = nt_name;
-		gmep->unix_name = unix_name;
-		gmep->nt_domain = nt_domain;
-
-		/*
-		 * here we should do a LsaLookupNames() call
-		 * to check the status of the name with the PDC.
-		 * if the PDC know nothing of the name, it's ours.
-		 */
-
-		if (lp_server_role() == ROLE_DOMAIN_MEMBER)
-		{
-#if 0
-			if (lookup_remote_sid(global_myworkgroup, gmep->sid, gmep->nt_name, gmep->nt_domain...);
-#endif
-		}
-
-		/*
-		 * ok, it's one of ours.  we therefore "create" an nt user named
-		 * after the unix user.  this is the point where "appliance mode"
-		 * should get its teeth in, as unix users won't really exist,
-		 * they will only be numbers...
-		 */
-
-		gmep->type = SID_NAME_USER;
-		sid_copy(&gmep->sid, sid);
-		if (!pwdb_sam_sid_to_unixid(&gmep->sid, gmep->type, &gmep->unix_id))
-		{
-			return False;
-		}
-		fstrcpy(gmep->nt_name, uidtoname((uid_t)gmep->unix_id));
-		fstrcpy(gmep->unix_name, gmep->nt_name);
-		gmep->nt_domain = global_sam_name;
-
-		return True;
-	}
-
-	/* oops. */
-
-	return False;
-}
-
-/************************************************************************
- Routine to look up group / alias / well-known group RID by UNIX name
-*************************************************************************/
-BOOL lookupsmbgrpnam(const char *unix_grp_name, DOM_NAME_MAP *grp)
-{
-	gid_t gid;
-	DEBUG(10,("lookupsmbgrpnam: unix user group %s\n", unix_grp_name));
-	if (nametogid(unix_grp_name, &gid))
-	{
-		return lookupsmbgrpgid(gid, grp);
-	}
-	else
-	{
-		return False;
-	}
-}
-
-/*************************************************************************
- looks up a SID, returns name map entry
-*************************************************************************/
-BOOL lookupsmbgrpsid(DOM_SID *sid, DOM_NAME_MAP *gmep)
-{
-	fstring sid_str;
-	sid_to_string(sid_str, sid);
-	DEBUG(10,("lookupsmbgrpsid: nt sid %s\n", sid_str));
-
-	if (map_alias_sid(sid, gmep))
-	{
-		return True;
-	}
-	if (map_group_sid(sid, gmep))
-	{
-		return True;
-	}
-	if (lp_server_role() != ROLE_DOMAIN_NONE)
-	{
-		gmep->nt_name   = nt_name;
-		gmep->unix_name = unix_name;
-		gmep->nt_domain = nt_domain;
-
-		/*
-		 * here we should do a LsaLookupNames() call
-		 * to check the status of the name with the PDC.
-		 * if the PDC know nothing of the name, it's ours.
-		 */
-
-		if (lp_server_role() == ROLE_DOMAIN_MEMBER)
-		{
-#if 0
-			lsa_lookup_sids(global_myworkgroup, gmep->sid, gmep->nt_name, gmep->nt_domain...);
-#endif
-		}
-
-		/*
-		 * ok, it's one of ours.  we therefore "create" an nt group or
-		 * alias name named after the unix group.  this is the point
-		 * where "appliance mode" should get its teeth in, as unix
-		 * groups won't really exist, they will only be numbers...
-		 */
-
-		/* name is not explicitly mapped
-		 * with map files or the PDC
-		 * so we are responsible for it...
-		 */
-
-		if (lp_server_role() == ROLE_DOMAIN_MEMBER)
-		{
-		 	/* ... as a LOCAL group. */
-			gmep->type = SID_NAME_ALIAS;
-		}
-		else
-		{
-		 	/* ... as a DOMAIN group. */
-			gmep->type = SID_NAME_DOM_GRP;
-		}
-
-		sid_copy(&gmep->sid, sid);
-		if (!pwdb_sam_sid_to_unixid(&gmep->sid, gmep->type, &gmep->unix_id))
-		{
-			return False;
-		}
-		fstrcpy(gmep->nt_name, gidtoname((gid_t)gmep->unix_id));
-		fstrcpy(gmep->unix_name, gmep->nt_name);
-		gmep->nt_domain = global_sam_name;
-
-		return True;
-	}
-
-	/* oops */
-	return False;
-}
-
-/*************************************************************************
- looks up a gid, returns RID and type local, domain or well-known domain group
-*************************************************************************/
-BOOL lookupsmbgrpgid(gid_t gid, DOM_NAME_MAP *gmep)
-{
-	DEBUG(10,("lookupsmbgrpgid: unix gid %d\n", (int)gid));
-	if (map_alias_gid(gid, gmep))
-	{
-		return True;
-	}
-	if (map_group_gid(gid, gmep))
-	{
-		return True;
-	}
-	if (lp_server_role() != ROLE_DOMAIN_NONE)
-	{
-		gmep->nt_name   = nt_name;
-		gmep->unix_name = unix_name;
-		gmep->nt_domain = nt_domain;
-
-		gmep->unix_id = (uint32)gid;
-
-		/*
-		 * here we should do a LsaLookupNames() call
-		 * to check the status of the name with the PDC.
-		 * if the PDC know nothing of the name, it's ours.
-		 */
-
-		if (lp_server_role() == ROLE_DOMAIN_MEMBER)
-		{
-#if 0
-			if (lsa_lookup_names(global_myworkgroup, gmep->nt_name, &gmep->sid...);
-			{
-				return True;
-			}
-#endif
-		}
-
-		/*
-		 * ok, it's one of ours.  we therefore "create" an nt group or
-		 * alias name named after the unix group.  this is the point
-		 * where "appliance mode" should get its teeth in, as unix
-		 * groups won't really exist, they will only be numbers...
-		 */
-
-		/* name is not explicitly mapped
-		 * with map files or the PDC
-		 * so we are responsible for it...
-		 */
-
-		if (lp_server_role() == ROLE_DOMAIN_MEMBER)
-		{
-		 	/* ... as a LOCAL group. */
-			gmep->type = SID_NAME_ALIAS;
-		}
-		else
-		{
-		 	/* ... as a DOMAIN group. */
-			gmep->type = SID_NAME_DOM_GRP;
-		}
-		fstrcpy(gmep->nt_name, gidtoname(gid));
-		fstrcpy(gmep->unix_name, gmep->nt_name);
-
-		return get_sid_and_type(gmep->nt_name, gmep->type, gmep);
-	}
-
-	/* oops */
-	return False;
-}
-
diff --git a/source3/lib/iconv.c b/source3/lib/iconv.c
index e54a74864e1..43350d93492 100644
--- a/source3/lib/iconv.c
+++ b/source3/lib/iconv.c
@@ -2,7 +2,6 @@
    Unix SMB/CIFS implementation.
    minimal iconv implementation
    Copyright (C) Andrew Tridgell 2001
-   Copyright (C) Jelmer Vernooij 2002
    
    This program is free software; you can redistribute it and/or modify
    it under the terms of the GNU General Public License as published by
@@ -25,51 +24,31 @@ static size_t ascii_pull(void *,char **, size_t *, char **, size_t *);
 static size_t ascii_push(void *,char **, size_t *, char **, size_t *);
 static size_t  utf8_pull(void *,char **, size_t *, char **, size_t *);
 static size_t  utf8_push(void *,char **, size_t *, char **, size_t *);
+static size_t weird_pull(void *,char **, size_t *, char **, size_t *);
+static size_t weird_push(void *,char **, size_t *, char **, size_t *);
 static size_t ucs2hex_pull(void *,char **, size_t *, char **, size_t *);
 static size_t ucs2hex_push(void *,char **, size_t *, char **, size_t *);
 static size_t iconv_copy(void *,char **, size_t *, char **, size_t *);
 
-struct charset_functions builtin_functions[] = {
-		{"UCS-2LE",  iconv_copy, iconv_copy},
-		{"UTF8",   utf8_pull,  utf8_push},
-		{"ASCII", ascii_pull, ascii_push},
-		{"UCS2-HEX", ucs2hex_pull, ucs2hex_push},
-		{NULL, NULL, NULL}
+/*
+  for each charset we have a function that pulls from that charset to 
+  a ucs2 buffer, and a function that pushes to a ucs2 buffer 
+*/
+static struct {
+	char *name;
+	size_t (*pull)(void *, char **inbuf, size_t *inbytesleft,
+		       char **outbuf, size_t *outbytesleft);
+	size_t (*push)(void *, char **inbuf, size_t *inbytesleft,
+		       char **outbuf, size_t *outbytesleft);
+} charsets[] = {
+	{"UCS-2LE",  iconv_copy, iconv_copy},
+	{"UTF8",   utf8_pull,  utf8_push},
+	{"ASCII", ascii_pull, ascii_push},
+	{"WEIRD", weird_pull, weird_push},
+	{"UCS2-HEX", ucs2hex_pull, ucs2hex_push},
+	{NULL, NULL, NULL}
 };
 
-static struct charset_functions *charsets = NULL;
-
-BOOL smb_register_charset(struct charset_functions *funcs) 
-{
-	struct charset_functions *c = charsets;
-
-	DEBUG(5, ("Attempting to register new charset %s\n", funcs->name));
-	/* Check whether we already have this charset... */
-	while(c) {
-		if(!strcasecmp(c->name, funcs->name)){ 
-			DEBUG(2, ("Duplicate charset %s, not registering\n", funcs->name));
-			return False;
-		}
-		c = c->next;
-	}
-
-	funcs->next = funcs->prev = NULL;
-	DEBUG(5, ("Registered charset %s\n", funcs->name));
-	DLIST_ADD(charsets, funcs);
-	return True;
-}
-
-void lazy_initialize_iconv(void)
-{
-	static BOOL initialized = False;
-	int i;
-
-	if (!initialized) {
-		initialized = True;
-		for(i = 0; builtin_functions[i].name; i++) 
-			smb_register_charset(&builtin_functions[i]);
-	}
-}
 
 /* if there was an error then reset the internal state,
    this ensures that we don't have a shift state remaining for
@@ -136,11 +115,7 @@ size_t smb_iconv(smb_iconv_t cd,
 smb_iconv_t smb_iconv_open(const char *tocode, const char *fromcode)
 {
 	smb_iconv_t ret;
-	struct charset_functions *from, *to;
-	
-	lazy_initialize_iconv();
-	from = charsets;
-	to = charsets;
+	int from, to;
 
 	ret = (smb_iconv_t)malloc(sizeof(*ret));
 	if (!ret) {
@@ -158,52 +133,48 @@ smb_iconv_t smb_iconv_open(const char *tocode, const char *fromcode)
 		return ret;
 	}
 
-	while (from) {
-		if (strcasecmp(from->name, fromcode) == 0) break;
-		from = from->next;
+	for (from=0; charsets[from].name; from++) {
+		if (strcasecmp(charsets[from].name, fromcode) == 0) break;
 	}
-
-	while (to) {
-		if (strcasecmp(to->name, tocode) == 0) break;
-		to = to->next;
+	for (to=0; charsets[to].name; to++) {
+		if (strcasecmp(charsets[to].name, tocode) == 0) break;
 	}
 
 #ifdef HAVE_NATIVE_ICONV
-	if (!from) {
+	if (!charsets[from].name) {
 		ret->pull = sys_iconv;
 		ret->cd_pull = iconv_open("UCS-2LE", fromcode);
 		if (ret->cd_pull == (iconv_t)-1) goto failed;
 	}
-
-	if (!to) {
+	if (!charsets[to].name) {
 		ret->push = sys_iconv;
 		ret->cd_push = iconv_open(tocode, "UCS-2LE");
 		if (ret->cd_push == (iconv_t)-1) goto failed;
 	}
 #else
-	if (!from || !to) {
+	if (!charsets[from].name || !charsets[to].name) {
 		goto failed;
 	}
 #endif
 
 	/* check for conversion to/from ucs2 */
-	if (strcasecmp(fromcode, "UCS-2LE") == 0 && to) {
-		ret->direct = to->push;
+	if (from == 0 && charsets[to].name) {
+		ret->direct = charsets[to].push;
 		return ret;
 	}
-	if (strcasecmp(tocode, "UCS-2LE") == 0 && from) {
-		ret->direct = from->pull;
+	if (to == 0 && charsets[from].name) {
+		ret->direct = charsets[from].pull;
 		return ret;
 	}
 
 #ifdef HAVE_NATIVE_ICONV
-	if (strcasecmp(fromcode, "UCS-2LE") == 0) {
+	if (from == 0) {
 		ret->direct = sys_iconv;
 		ret->cd_direct = ret->cd_push;
 		ret->cd_push = NULL;
 		return ret;
 	}
-	if (strcasecmp(tocode, "UCS-2LE") == 0) {
+	if (to == 0) {
 		ret->direct = sys_iconv;
 		ret->cd_direct = ret->cd_pull;
 		ret->cd_pull = NULL;
@@ -212,8 +183,8 @@ smb_iconv_t smb_iconv_open(const char *tocode, const char *fromcode)
 #endif
 
 	/* the general case has to go via a buffer */
-	if (!ret->pull) ret->pull = from->pull;
-	if (!ret->push) ret->push = to->push;
+	if (!ret->pull) ret->pull = charsets[from].pull;
+	if (!ret->push) ret->push = charsets[to].push;
 	return ret;
 
 failed:
@@ -381,6 +352,111 @@ static size_t ucs2hex_push(void *cd, char **inbuf, size_t *inbytesleft,
 }
 
 
+/* the "weird" character set is very useful for testing multi-byte
+   support and finding bugs. Don't use on a production system! 
+*/
+static struct {
+	char from;
+	char *to;
+	int len;
+} weird_table[] = {
+	{'q', "^q^", 3},
+	{'Q', "^Q^", 3},
+	{0, NULL}
+};
+
+static size_t weird_pull(void *cd, char **inbuf, size_t *inbytesleft,
+			 char **outbuf, size_t *outbytesleft)
+{
+	while (*inbytesleft >= 1 && *outbytesleft >= 2) {
+		int i;
+		int done = 0;
+		for (i=0;weird_table[i].from;i++) {
+			if (strncmp((*inbuf), 
+				    weird_table[i].to, 
+				    weird_table[i].len) == 0) {
+				if (*inbytesleft < weird_table[i].len) {
+					DEBUG(0,("ERROR: truncated weird string\n"));
+					/* smb_panic("weird_pull"); */
+
+				} else {
+					(*outbuf)[0] = weird_table[i].from;
+					(*outbuf)[1] = 0;
+					(*inbytesleft)  -= weird_table[i].len;
+					(*outbytesleft) -= 2;
+					(*inbuf)  += weird_table[i].len;
+					(*outbuf) += 2;
+					done = 1;
+					break;
+				}
+			}
+		}
+		if (done) continue;
+		(*outbuf)[0] = (*inbuf)[0];
+		(*outbuf)[1] = 0;
+		(*inbytesleft)  -= 1;
+		(*outbytesleft) -= 2;
+		(*inbuf)  += 1;
+		(*outbuf) += 2;
+	}
+
+	if (*inbytesleft > 0) {
+		errno = E2BIG;
+		return -1;
+	}
+	
+	return 0;
+}
+
+static size_t weird_push(void *cd, char **inbuf, size_t *inbytesleft,
+			 char **outbuf, size_t *outbytesleft)
+{
+	int ir_count=0;
+
+	while (*inbytesleft >= 2 && *outbytesleft >= 1) {
+		int i;
+		int done=0;
+		for (i=0;weird_table[i].from;i++) {
+			if ((*inbuf)[0] == weird_table[i].from &&
+			    (*inbuf)[1] == 0) {
+				if (*outbytesleft < weird_table[i].len) {
+					DEBUG(0,("No room for weird character\n"));
+					/* smb_panic("weird_push"); */
+				} else {
+					memcpy(*outbuf, weird_table[i].to, 
+					       weird_table[i].len);
+					(*inbytesleft)  -= 2;
+					(*outbytesleft) -= weird_table[i].len;
+					(*inbuf)  += 2;
+					(*outbuf) += weird_table[i].len;
+					done = 1;
+					break;
+				}
+			}
+		}
+		if (done) continue;
+
+		(*outbuf)[0] = (*inbuf)[0];
+		if ((*inbuf)[1]) ir_count++;
+		(*inbytesleft)  -= 2;
+		(*outbytesleft) -= 1;
+		(*inbuf)  += 2;
+		(*outbuf) += 1;
+	}
+
+	if (*inbytesleft == 1) {
+		errno = EINVAL;
+		return -1;
+	}
+
+	if (*inbytesleft > 1) {
+		errno = E2BIG;
+		return -1;
+	}
+	
+	return ir_count;
+}
+
 static size_t iconv_copy(void *cd, char **inbuf, size_t *inbytesleft,
 			 char **outbuf, size_t *outbytesleft)
 {
diff --git a/source3/lib/module.c b/source3/lib/module.c
deleted file mode 100644
index 5ad64858064..00000000000
--- a/source3/lib/module.c
+++ /dev/null
@@ -1,88 +0,0 @@
-/* 
-   Unix SMB/CIFS implementation.
-   module loading system
-
-   Copyright (C) Jelmer Vernooij 2002
-   
-   This program is free software; you can redistribute it and/or modify
-   it under the terms of the GNU General Public License as published by
-   the Free Software Foundation; either version 2 of the License, or
-   (at your option) any later version.
-   
-   This program is distributed in the hope that it will be useful,
-   but WITHOUT ANY WARRANTY; without even the implied warranty of
-   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-   GNU General Public License for more details.
-   
-   You should have received a copy of the GNU General Public License
-   along with this program; if not, write to the Free Software
-   Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
-*/
-
-#include "includes.h"
-
-#ifdef HAVE_DLOPEN
-NTSTATUS smb_load_module(const char *module_name)
-{
-	void *handle;
-	init_module_function *init;
-	NTSTATUS nt_status;
-
-	/* Always try to use LAZY symbol resolving; if the plugin has 
-	 * backwards compatibility, there might be symbols in the 
-	 * plugin referencing to old (removed) functions
-	 */
-	handle = sys_dlopen(module_name, RTLD_LAZY);
-
-	if(!handle) {
-		DEBUG(0, ("Error loading module '%s': %s\n", module_name, sys_dlerror()));
-		return NT_STATUS_UNSUCCESSFUL;
-	}
-
-	init = sys_dlsym(handle, "init_module");
-
-	if(!init) {
-		DEBUG(0, ("Error trying to resolve symbol 'init_module' in %s: %s\n", module_name, sys_dlerror()));
-		return NT_STATUS_UNSUCCESSFUL;
-	}
-
-	nt_status = init();
-
-	DEBUG(2, ("Module '%s' loaded\n", module_name));
-
-	return nt_status;
-}
-
-/* Load all modules in list and return number of 
- * modules that has been successfully loaded */
-int smb_load_modules(const char **modules)
-{
-	int i;
-	int success = 0;
-
-	for(i = 0; modules[i]; i++){
-		if(NT_STATUS_IS_OK(smb_load_module(modules[i]))) {
-			success++;
-		}
-	}
-
-	DEBUG(2, ("%d modules successfully loaded\n", success));
-
-	return success;
-}
-
-#else /* HAVE_DLOPEN */
-
-NTSTATUS smb_load_module(const char *module_name)
-{
-	DEBUG(0,("This samba executable has not been build with plugin support"));
-	return NT_STATUS_NOT_SUPPORTED;
-}
-
-int smb_load_modules(const char **modules)
-{
-	DEBUG(0,("This samba executable has not been build with plugin support"));
-	return -1;
-}
-
-#endif /* HAVE_DLOPEN */
diff --git a/source3/libads/ads_utils.c b/source3/libads/ads_utils.c
index 626c1779266..750940e336b 100644
--- a/source3/libads/ads_utils.c
+++ b/source3/libads/ads_utils.c
@@ -88,52 +88,6 @@ uint32 ads_uf2atype(uint32 uf)
 	return atype;
 } 
 
-/* 
-translated the GROUP_CTRL Flags to GroupType (groupType) 
-*/ 
-uint32 ads_gcb2gtype(uint16 gcb)
-{
-	uint32 gtype = 0x00000000;
-
-	if (gcb & GCB_ALIAS_GROUP)	gtype |= GTYPE_SECURITY_BUILTIN_LOCAL_GROUP;
-	else if(gcb & GCB_LOCAL_GROUP)	gtype |= GTYPE_SECURITY_DOMAIN_LOCAL_GROUP;
-	if (gcb & GCB_GLOBAL_GROUP)	gtype |= GTYPE_SECURITY_GLOBAL_GROUP;
-		
-	return gtype;
-}
-
-/*
-translated the GroupType (groupType) to GROUP_CTRL Flags
-*/
-uint16 ads_gtype2gcb(uint32 gtype)
-{
-	uint16 gcb = 0x0000;
-
-	switch(gtype) {
-		case GTYPE_SECURITY_BUILTIN_LOCAL_GROUP:
-			gcb = GCB_ALIAS_GROUP;
-			break;
-		case GTYPE_SECURITY_DOMAIN_LOCAL_GROUP:
-			gcb = GCB_LOCAL_GROUP;
-			break;
-		case GTYPE_SECURITY_GLOBAL_GROUP:
-			gcb = GCB_GLOBAL_GROUP;
-			break;
-
-		case GTYPE_DISTRIBUTION_GLOBAL_GROUP:
-			gcb = GCB_GLOBAL_GROUP;
-			break;
-		case GTYPE_DISTRIBUTION_DOMAIN_LOCAL_GROUP:
-			gcb = GCB_LOCAL_GROUP;
-			break;
-		case GTYPE_DISTRIBUTION_UNIVERSAL_GROUP:
-			gcb = GCB_GLOBAL_GROUP;
-			break;
-	}
-	
-	return gcb;
-}
-
 /* 
 get the accountType from the groupType
 */
diff --git a/source3/libads/kerberos_verify.c b/source3/libads/kerberos_verify.c
index 03917466c6d..f761467d6f9 100644
--- a/source3/libads/kerberos_verify.c
+++ b/source3/libads/kerberos_verify.c
@@ -38,14 +38,13 @@ NTSTATUS ads_verify_ticket(ADS_STRUCT *ads, const DATA_BLOB *ticket,
 	krb5_ticket *tkt = NULL;
 	krb5_data salt;
 	krb5_encrypt_block eblock;
-	int ret, i;
+	int ret;
 	krb5_keyblock * key;
 	krb5_principal host_princ;
 	char *host_princ_s;
 	fstring myname;
 	char *password_s;
 	krb5_data password;
-	krb5_enctype *enctypes = NULL;
 
 	if (!secrets_init()) {
 		DEBUG(1,("secrets_init failed\n"));
@@ -70,6 +69,7 @@ NTSTATUS ads_verify_ticket(ADS_STRUCT *ads, const DATA_BLOB *ticket,
 	ret = krb5_set_default_realm(context, ads->auth.realm);
 	if (ret) {
 		DEBUG(1,("krb5_set_default_realm failed (%s)\n", error_message(ret)));
+		ads_destroy(&ads);
 		return NT_STATUS_LOGON_FAILURE;
 	}
 
@@ -101,44 +101,30 @@ NTSTATUS ads_verify_ticket(ADS_STRUCT *ads, const DATA_BLOB *ticket,
 		return NT_STATUS_NO_MEMORY;
 	}
 	
-	if ((ret = krb5_get_permitted_enctypes(context, &enctypes))) {
-		DEBUG(1,("krb5_get_permitted_enctypes failed (%s)\n", 
-			 error_message(ret)));
+	krb5_use_enctype(context, &eblock, ENCTYPE_DES_CBC_MD5);
+	
+	ret = krb5_string_to_key(context, &eblock, key, &password, &salt);
+	if (ret) {
+		DEBUG(1,("krb5_string_to_key failed (%s)\n", error_message(ret)));
 		return NT_STATUS_LOGON_FAILURE;
 	}
 
-	/* we need to setup a auth context with each possible encoding type in turn */
-	for (i=0;enctypes[i];i++) {
-		krb5_use_enctype(context, &eblock, enctypes[i]);
-
-		ret = krb5_string_to_key(context, &eblock, key, &password, &salt);
-		if (ret) {
-			continue;
-		}
+	krb5_auth_con_setuseruserkey(context, auth_context, key);
 
-		krb5_auth_con_setuseruserkey(context, auth_context, key);
+	packet.length = ticket->length;
+	packet.data = (krb5_pointer)ticket->data;
 
-		packet.length = ticket->length;
-		packet.data = (krb5_pointer)ticket->data;
-
-		if (!(ret = krb5_rd_req(context, &auth_context, &packet, 
-				       NULL, keytab, NULL, &tkt))) {
-			krb5_free_ktypes(context, enctypes);
-			break;
-		}
-	}
+#if 0
+	file_save("/tmp/ticket.dat", ticket->data, ticket->length);
+#endif
 
-	if (!enctypes[i]) {
+	if ((ret = krb5_rd_req(context, &auth_context, &packet, 
+			       NULL, keytab, NULL, &tkt))) {
 		DEBUG(3,("krb5_rd_req with auth failed (%s)\n", 
 			 error_message(ret)));
 		return NT_STATUS_LOGON_FAILURE;
 	}
 
-#if 0
-	file_save("/tmp/ticket.dat", ticket->data, ticket->length);
-#endif
-
-
 	if (tkt->enc_part2) {
 		*auth_data = data_blob(tkt->enc_part2->authorization_data[0]->contents,
 				       tkt->enc_part2->authorization_data[0]->length);
diff --git a/source3/libsmb/errormap.c b/source3/libsmb/errormap.c
index 7c28c7e8aa1..f3103996167 100644
--- a/source3/libsmb/errormap.c
+++ b/source3/libsmb/errormap.c
@@ -1484,6 +1484,7 @@ WERROR ntstatus_to_werror(NTSTATUS error)
 	return W_ERROR(NT_STATUS_V(error) & 0xffff);
 }
 
+
 /* Mapping between Unix, DOS and NT error numbers */
 
 const struct unix_error_map unix_dos_nt_errmap[] = {
diff --git a/source3/libsmb/libsmb_compat.c b/source3/libsmb/libsmb_compat.c
index 27b274953ab..bba90c648eb 100644
--- a/source3/libsmb/libsmb_compat.c
+++ b/source3/libsmb/libsmb_compat.c
@@ -24,7 +24,11 @@
 
 #include "includes.h"
 
-#include "../include/libsmb_internal.h"
+/*
+ * Define this to get the real SMBCFILE and SMBCSRV structures 
+ */
+#define _SMBC_INTERNAL
+#include "../include/libsmbclient.h"
 
 struct smbc_compat_fdlist {
 	SMBCFILE * file;
@@ -268,7 +272,7 @@ int smbc_open_print_job(const char *fname)
 	return (int) file;
 }
 
-int smbc_list_print_jobs(const char *purl, smbc_list_print_job_fn fn)
+int smbc_list_print_jobs(const char *purl, smbc_get_print_job_info fn)
 {
 	return statcont->list_print_jobs(statcont, purl, fn);
 }
diff --git a/source3/libsmb/libsmbclient.c b/source3/libsmb/libsmbclient.c
index edf582b34d9..a1fb380c37f 100644
--- a/source3/libsmb/libsmbclient.c
+++ b/source3/libsmb/libsmbclient.c
@@ -23,7 +23,7 @@
 
 #include "includes.h"
 
-#include "../include/libsmb_internal.h"
+#include "../include/libsmbclient.h"
 
 /*
  * Functions exported by libsmb_cache.c that we need here
@@ -218,7 +218,7 @@ int smbc_check_server(SMBCCTX * context, SMBCSRV * server)
 }
 
 /* 
- * Remove a server from the cached server list it's unused.
+ * Remove a server from the list server_table if it's unused.
  * On success, 0 is returned. 1 is returned if the server could not be removed.
  * 
  * Also useable outside libsmbclient
@@ -228,12 +228,11 @@ int smbc_remove_unused_server(SMBCCTX * context, SMBCSRV * srv)
 	SMBCFILE * file;
 
 	/* are we being fooled ? */
-	if (!context || !context->internal ||
-	    !context->internal->_initialized || !srv) return 1;
+	if (!context || !context->_initialized || !srv) return 1;
 
 	
 	/* Check all open files/directories for a relation with this server */
-	for (file = context->internal->_files; file; file=file->next) {
+	for (file = context->_files; file; file=file->next) {
 		if (file->srv == srv) {
 			/* Still used */
 			DEBUG(3, ("smbc_remove_usused_server: %p still used by %p.\n", 
@@ -242,7 +241,7 @@ int smbc_remove_unused_server(SMBCCTX * context, SMBCSRV * srv)
 		}
 	}
 
-	DLIST_REMOVE(context->internal->_servers, srv);
+	DLIST_REMOVE(context->_servers, srv);
 
 	cli_shutdown(&srv->cli);
 
@@ -475,8 +474,7 @@ static SMBCFILE *smbc_open_ctx(SMBCCTX *context, const char *fname, int flags, m
 	SMBCFILE *file = NULL;
 	int fd;
 
-	if (!context || !context->internal ||
-	    !context->internal->_initialized) {
+	if (!context || !context->_initialized) {
 
 		errno = EINVAL;  /* Best I can think of ... */
 		return NULL;
@@ -543,7 +541,7 @@ static SMBCFILE *smbc_open_ctx(SMBCCTX *context, const char *fname, int flags, m
 		file->offset  = 0;
 		file->file    = True;
 
-		DLIST_ADD(context->internal->_files, file);
+		DLIST_ADD(context->_files, file);
 		return file;
 
 	}
@@ -574,8 +572,7 @@ static int creat_bits = O_WRONLY | O_CREAT | O_TRUNC; /* FIXME: Do we need this
 static SMBCFILE *smbc_creat_ctx(SMBCCTX *context, const char *path, mode_t mode)
 {
 
-	if (!context || !context->internal ||
-	    !context->internal->_initialized) {
+	if (!context || !context->_initialized) {
 
 		errno = EINVAL;
 		return NULL;
@@ -593,8 +590,7 @@ static ssize_t smbc_read_ctx(SMBCCTX *context, SMBCFILE *file, void *buf, size_t
 {
 	int ret;
 
-	if (!context || !context->internal ||
-	    !context->internal->_initialized) {
+	if (!context || !context->_initialized) {
 
 		errno = EINVAL;
 		return -1;
@@ -603,7 +599,7 @@ static ssize_t smbc_read_ctx(SMBCCTX *context, SMBCFILE *file, void *buf, size_t
 
 	DEBUG(4, ("smbc_read(%p, %d)\n", file, (int)count));
 
-	if (!file || !DLIST_CONTAINS(context->internal->_files, file)) {
+	if (!file || !DLIST_CONTAINS(context->_files, file)) {
 
 		errno = EBADF;
 		return -1;
@@ -644,15 +640,14 @@ static ssize_t smbc_write_ctx(SMBCCTX *context, SMBCFILE *file, void *buf, size_
 {
 	int ret;
 
-	if (!context || !context->internal ||
-	    !context->internal->_initialized) {
+	if (!context || context->_initialized) {
 
 		errno = EINVAL;
 		return -1;
 
 	}
 
-	if (!file || !DLIST_CONTAINS(context->internal->_files, file)) {
+	if (!file || !DLIST_CONTAINS(context->_files, file)) {
 
 		errno = EBADF;
 		return -1;
@@ -690,15 +685,14 @@ static int smbc_close_ctx(SMBCCTX *context, SMBCFILE *file)
 {
         SMBCSRV *srv; 
 
-	if (!context || !context->internal ||
-	    !context->internal->_initialized) {
+	if (!context || !context->_initialized) {
 
 		errno = EINVAL;
 		return -1;
 
 	}
 
-	if (!file || !DLIST_CONTAINS(context->internal->_files, file)) {
+	if (!file || !DLIST_CONTAINS(context->_files, file)) {
    
 		errno = EBADF;
 		return -1;
@@ -720,7 +714,7 @@ static int smbc_close_ctx(SMBCCTX *context, SMBCFILE *file)
 		 * from the server cache if unused */
 		errno = smbc_errno(context, &file->srv->cli);  
 		srv = file->srv;
-		DLIST_REMOVE(context->internal->_files, file);
+		DLIST_REMOVE(context->_files, file);
 		SAFE_FREE(file->fname);
 		SAFE_FREE(file);
 		context->callbacks.remove_unused_server_fn(context, srv);
@@ -742,7 +736,7 @@ static int smbc_close_ctx(SMBCCTX *context, SMBCFILE *file)
 		 * from the server cache if unused */
 		errno = smbc_errno(context, &file->srv->cli);  
 		srv = file->srv;
-		DLIST_REMOVE(context->internal->_files, file);
+		DLIST_REMOVE(context->_files, file);
 		SAFE_FREE(file->fname);
 		SAFE_FREE(file);
 		context->callbacks.remove_unused_server_fn(context, srv);
@@ -750,7 +744,7 @@ static int smbc_close_ctx(SMBCCTX *context, SMBCFILE *file)
 		return -1;
 	}
 
-	DLIST_REMOVE(context->internal->_files, file);
+	DLIST_REMOVE(context->_files, file);
 	SAFE_FREE(file->fname);
 	SAFE_FREE(file);
 
@@ -767,8 +761,7 @@ static BOOL smbc_getatr(SMBCCTX * context, SMBCSRV *srv, char *path,
 		 SMB_INO_T *ino)
 {
 
-	if (!context || !context->internal ||
-	    !context->internal->_initialized) {
+	if (!context || !context->_initialized) {
  
 		errno = EINVAL;
  		return -1;
@@ -804,8 +797,7 @@ static int smbc_unlink_ctx(SMBCCTX *context, const char *fname)
 	pstring path;
 	SMBCSRV *srv = NULL;
 
-	if (!context || !context->internal ||
-	    !context->internal->_initialized) {
+	if (!context || context->_initialized) {
 
 		errno = EINVAL;  /* Best I can think of ... */
 		return -1;
@@ -899,10 +891,8 @@ static int smbc_rename_ctx(SMBCCTX *ocontext, const char *oname,
 	pstring path1, path2;
 	SMBCSRV *srv = NULL;
 
-	if (!ocontext || !ncontext || 
-	    !ocontext->internal || !ncontext->internal ||
-	    !ocontext->internal->_initialized || 
-	    !ncontext->internal->_initialized) {
+	if (!ocontext || !ncontext ||
+	    !ocontext->_initialized || !ncontext->_initialized) {
 
 		errno = EINVAL;  /* Best I can think of ... */
 		return -1;
@@ -970,15 +960,14 @@ static off_t smbc_lseek_ctx(SMBCCTX *context, SMBCFILE *file, off_t offset, int
 {
 	size_t size;
 
-	if (!context || !context->internal ||
-	    !context->internal->_initialized) {
+	if (!context || !context->_initialized) {
 
 		errno = EINVAL;
 		return -1;
 		
 	}
 
-	if (!file || !DLIST_CONTAINS(context->internal->_files, file)) {
+	if (!file || !DLIST_CONTAINS(context->_files, file)) {
 
 		errno = EBADF;
 		return -1;
@@ -1031,8 +1020,7 @@ static
 ino_t smbc_inode(SMBCCTX *context, const char *name)
 {
 
-	if (!context || !context->internal ||
-	    !context->internal->_initialized) {
+	if (!context || !context->_initialized) {
 
 		errno = EINVAL;
 		return -1;
@@ -1100,8 +1088,7 @@ static int smbc_stat_ctx(SMBCCTX *context, const char *fname, struct stat *st)
 	uint16 mode = 0;
 	SMB_INO_T ino = 0;
 
-	if (!context || !context->internal ||
-	    !context->internal->_initialized) {
+	if (!context || !context->_initialized) {
 
 		errno = EINVAL;  /* Best I can think of ... */
 		return -1;
@@ -1184,15 +1171,14 @@ static int smbc_fstat_ctx(SMBCCTX *context, SMBCFILE *file, struct stat *st)
 	uint16 mode;
 	SMB_INO_T ino = 0;
 
-	if (!context || !context->internal ||
-	    !context->internal->_initialized) {
+	if (!context || !context->_initialized) {
 
 		errno = EINVAL;
 		return -1;
 
 	}
 
-	if (!file || !DLIST_CONTAINS(context->internal->_files, file)) {
+	if (!file || !DLIST_CONTAINS(context->_files, file)) {
 
 		errno = EBADF;
 		return -1;
@@ -1285,6 +1271,9 @@ static int add_dirent(SMBCFILE *dir, const char *name, const char *comment, uint
 
 	ZERO_STRUCTP(dirent);
 
+	ZERO_STRUCTP(dirent);
+
+
 	if (dir->dir_list == NULL) {
 
 		dir->dir_list = malloc(sizeof(struct smbc_dir_list));
@@ -1365,6 +1354,8 @@ list_fn(const char *name, uint32 type, const char *comment, void *state)
 			dirent_type = SMBC_FILE_SHARE; /* FIXME, error? */
 			break;
 		}
+		ZERO_STRUCTP(dir->dir_list);
+
 	}
 	else dirent_type = dir->dir_type;
 
@@ -1399,9 +1390,9 @@ static SMBCFILE *smbc_opendir_ctx(SMBCCTX *context, const char *fname)
 	SMBCSRV *srv  = NULL;
 	SMBCFILE *dir = NULL;
 	struct in_addr rem_ip;
+	int slot = 0;
 
-	if (!context || !context->internal ||
-	    !context->internal->_initialized) {
+	if (!context || !context->_initialized) {
 
 		errno = EINVAL;
 		return NULL;
@@ -1497,6 +1488,7 @@ static SMBCFILE *smbc_opendir_ctx(SMBCCTX *context, const char *fname)
 			return NULL;
 
 		}
+		ZERO_STRUCTP(dir->dir_end);
 
 		dir->srv = srv;
 
@@ -1676,7 +1668,7 @@ static SMBCFILE *smbc_opendir_ctx(SMBCCTX *context, const char *fname)
 
 	}
 
-	DLIST_ADD(context->internal->_files, dir);
+	DLIST_ADD(context->_files, dir);
 	return dir;
 
 }
@@ -1688,15 +1680,14 @@ static SMBCFILE *smbc_opendir_ctx(SMBCCTX *context, const char *fname)
 static int smbc_closedir_ctx(SMBCCTX *context, SMBCFILE *dir)
 {
 
-        if (!context || !context->internal ||
-	    !context->internal->_initialized) {
+	if (!context || !context->_initialized) {
 
 		errno = EINVAL;
 		return -1;
 
 	}
 
-	if (!dir || !DLIST_CONTAINS(context->internal->_files, dir)) {
+	if (!dir || !DLIST_CONTAINS(context->_files, dir)) {
 
 		errno = EBADF;
 		return -1;
@@ -1705,7 +1696,7 @@ static int smbc_closedir_ctx(SMBCCTX *context, SMBCFILE *dir)
 
 	smbc_remove_dir(dir); /* Clean it up */
 
-	DLIST_REMOVE(context->internal->_files, dir);
+	DLIST_REMOVE(context->_files, dir);
 
 	if (dir) {
 
@@ -1728,15 +1719,14 @@ struct smbc_dirent *smbc_readdir_ctx(SMBCCTX *context, SMBCFILE *dir)
 
 	/* Check that all is ok first ... */
 
-	if (!context || !context->internal ||
-	    !context->internal->_initialized) {
+	if (!context || !context->_initialized) {
 
 		errno = EINVAL;
 		return NULL;
 
 	}
 
-	if (!dir || !DLIST_CONTAINS(context->internal->_files, dir)) {
+	if (!dir || !DLIST_CONTAINS(context->_files, dir)) {
 
 		errno = EBADF;
 		return NULL;
@@ -1765,12 +1755,12 @@ struct smbc_dirent *smbc_readdir_ctx(SMBCCTX *context, SMBCFILE *dir)
 
 		/* Hmmm, do I even need to copy it? */
 
-		memcpy(context->internal->_dirent, dirent, dirent->dirlen); /* Copy the dirent */
-		dirp = (struct smbc_dirent *)context->internal->_dirent;
+		memcpy(context->_dirent, dirent, dirent->dirlen); /* Copy the dirent */
+		dirp = (struct smbc_dirent *)context->_dirent;
 		dirp->comment = (char *)(&dirp->name + dirent->namelen + 1);
 		dir->dir_next = dir->dir_next->next;
 
-		return (struct smbc_dirent *)context->internal->_dirent;
+		return (struct smbc_dirent *)context->_dirent;
 	}
 
 }
@@ -1787,15 +1777,14 @@ static int smbc_getdents_ctx(SMBCCTX *context, SMBCFILE *dir, struct smbc_dirent
 
 	/* Check that all is ok first ... */
 
-	if (!context || !context->internal ||
-	    !context->internal->_initialized) {
+	if (!context || !context->_initialized) {
 
 		errno = EINVAL;
 		return -1;
 
 	}
 
-	if (!dir || !DLIST_CONTAINS(context->internal->_files, dir)) {
+	if (!dir || !DLIST_CONTAINS(context->_files, dir)) {
 
 		errno = EBADF;
 		return -1;
@@ -1874,8 +1863,7 @@ static int smbc_mkdir_ctx(SMBCCTX *context, const char *fname, mode_t mode)
 	fstring server, share, user, password, workgroup;
 	pstring path;
 
-	if (!context || !context->internal || 
-	    !context->internal->_initialized) {
+	if (!context || !context->_initialized) {
 
 		errno = EINVAL;
 		return -1;
@@ -1961,8 +1949,7 @@ static int smbc_rmdir_ctx(SMBCCTX *context, const char *fname)
 	fstring server, share, user, password, workgroup;
 	pstring path;
 
-	if (!context || !context->internal || 
-	    !context->internal->_initialized) {
+	if (!context || !context->_initialized) {
 
 		errno = EINVAL;
 		return -1;
@@ -2059,15 +2046,14 @@ static int smbc_rmdir_ctx(SMBCCTX *context, const char *fname)
 static off_t smbc_telldir_ctx(SMBCCTX *context, SMBCFILE *dir)
 {
 
-	if (!context || !context->internal ||
-	    !context->internal->_initialized) {
+	if (!context || !context->_initialized) {
 
 		errno = EINVAL;
 		return -1;
 
 	}
 
-	if (!dir || !DLIST_CONTAINS(context->internal->_files, dir)) {
+	if (!dir || !DLIST_CONTAINS(context->_files, dir)) {
 
 		errno = EBADF;
 		return -1;
@@ -2124,8 +2110,7 @@ static int smbc_lseekdir_ctx(SMBCCTX *context, SMBCFILE *dir, off_t offset)
 	struct smbc_dirent *dirent = (struct smbc_dirent *)offset;
 	struct smbc_dir_list *list_ent = NULL;
 
-	if (!context || !context->internal ||
-	    !context->internal->_initialized) {
+	if (!context || !context->_initialized) {
 
 		errno = EINVAL;
 		return -1;
@@ -2171,8 +2156,7 @@ static int smbc_lseekdir_ctx(SMBCCTX *context, SMBCFILE *dir, off_t offset)
 static int smbc_fstatdir_ctx(SMBCCTX *context, SMBCFILE *dir, struct stat *st)
 {
 
-	if (!context || !context->internal || 
-	    !context->internal->_initialized) {
+	if (context || !context->_initialized) {
 
 		errno = EINVAL;
 		return -1;
@@ -2194,8 +2178,7 @@ static SMBCFILE *smbc_open_print_job_ctx(SMBCCTX *context, const char *fname)
 	fstring server, share, user, password;
 	pstring path;
 	
-	if (!context || !context->internal ||
-	    !context->internal->_initialized) {
+	if (!context || context->_initialized) {
 
 		errno = EINVAL;
 		return NULL;
@@ -2232,8 +2215,8 @@ static int smbc_print_file_ctx(SMBCCTX *c_file, const char *fname, SMBCCTX *c_pr
 	int bytes, saverr, tot_bytes = 0;
 	char buf[4096];
 
-	if (!c_file || !c_file->internal->_initialized || !c_print ||
-	    !c_print->internal->_initialized) {
+	if (!c_file || !c_file->_initialized || !c_print ||
+	    !c_print->_initialized) {
 
 		errno = EINVAL;
 		return -1;
@@ -2302,14 +2285,13 @@ static int smbc_print_file_ctx(SMBCCTX *c_file, const char *fname, SMBCCTX *c_pr
  * Routine to list print jobs on a printer share ...
  */
 
-static int smbc_list_print_jobs_ctx(SMBCCTX *context, const char *fname, smbc_list_print_job_fn fn)
+static int smbc_list_print_jobs_ctx(SMBCCTX *context, const char *fname, void (*fn)(struct print_job_info *))
 {
 	SMBCSRV *srv;
 	fstring server, share, user, password, workgroup;
 	pstring path;
 
-	if (!context || !context->internal ||
-	    !context->internal->_initialized) {
+	if (!context || !context->_initialized) {
 
 		errno = EINVAL;
 		return -1;
@@ -2339,7 +2321,7 @@ static int smbc_list_print_jobs_ctx(SMBCCTX *context, const char *fname, smbc_li
 
 	}
 
-	if (cli_print_queue(&srv->cli, (void (*)(struct print_job_info *))fn) < 0) {
+	if (cli_print_queue(&srv->cli, fn) < 0) {
 
 		errno = smbc_errno(context, &srv->cli);
 		return -1;
@@ -2361,8 +2343,7 @@ static int smbc_unlink_print_job_ctx(SMBCCTX *context, const char *fname, int id
 	pstring path;
 	int err;
 
-	if (!context || !context->internal ||
-	    !context->internal->_initialized) {
+	if (!context || !context->_initialized) {
 
 		errno = EINVAL;
 		return -1;
@@ -2413,23 +2394,14 @@ SMBCCTX * smbc_new_context(void)
 {
 	SMBCCTX * context;
 
-	context = malloc(sizeof(SMBCCTX));
+	context = malloc(sizeof(*context));
 	if (!context) {
 		errno = ENOMEM;
 		return NULL;
 	}
-
+	
 	ZERO_STRUCTP(context);
 
-	context->internal = malloc(sizeof(struct smbc_internal_data));
-	if (!context->internal) {
-		errno = ENOMEM;
-		return NULL;
-	}
-
-	ZERO_STRUCTP(context->internal);
-
-	
 	/* ADD REASONABLE DEFAULTS */
 	context->debug            = 0;
 	context->timeout          = 20000; /* 20 seconds */
@@ -2484,25 +2456,25 @@ int smbc_free_context(SMBCCTX * context, int shutdown_ctx)
 		SMBCFILE * f;
 		DEBUG(1,("Performing aggressive shutdown.\n"));
 		
-		f = context->internal->_files;
+		f = context->_files;
 		while (f) {
 			context->close(context, f);
 			f = f->next;
 		}
-		context->internal->_files = NULL;
+		context->_files = NULL;
 
 		/* First try to remove the servers the nice way. */
 		if (context->callbacks.purge_cached_fn(context)) {
 			SMBCSRV * s;
 			DEBUG(1, ("Could not purge all servers, Nice way shutdown failed.\n"));
-			s = context->internal->_servers;
+			s = context->_servers;
 			while (s) {
 				cli_shutdown(&s->cli);
 				context->callbacks.remove_cached_srv_fn(context, s);
 				SAFE_FREE(s);
 				s = s->next;
 			}
-			context->internal->_servers = NULL;
+			context->_servers = NULL;
 		}
 	}
 	else {
@@ -2512,12 +2484,12 @@ int smbc_free_context(SMBCCTX * context, int shutdown_ctx)
 			errno = EBUSY;
 			return 1;
 		}
-		if (context->internal->_servers) {
+		if (context->_servers) {
 			DEBUG(1, ("Active servers in context, free_context failed.\n"));
 			errno = EBUSY;
 			return 1;
 		}
-		if (context->internal->_files) {
+		if (context->_files) {
 			DEBUG(1, ("Active files in context, free_context failed.\n"));
 			errno = EBUSY;
 			return 1;
@@ -2530,7 +2502,6 @@ int smbc_free_context(SMBCCTX * context, int shutdown_ctx)
 	SAFE_FREE(context->user);
 	
 	DEBUG(3, ("Context %p succesfully freed\n", context));
-	SAFE_FREE(context->internal);
 	SAFE_FREE(context);
 	return 0;
 }
@@ -2549,13 +2520,13 @@ SMBCCTX * smbc_init_context(SMBCCTX * context)
 	int pid;
 	char *user = NULL, *home = NULL;
 
-	if (!context || !context->internal) {
+	if (!context) {
 		errno = EBADF;
 		return NULL;
 	}
 
 	/* Do not initialise the same client twice */
-	if (context->internal->_initialized) { 
+	if (context->_initialized) { 
 		return 0;
 	}
 
@@ -2662,7 +2633,7 @@ SMBCCTX * smbc_init_context(SMBCCTX * context)
 	 * FIXME: Should we check the function pointers here? 
 	 */
 
-	context->internal->_initialized = 1;
+	context->_initialized = 1;
 	
 	return context;
 }
diff --git a/source3/modules/developer.c b/source3/modules/developer.c
deleted file mode 100644
index c12bbc562ad..00000000000
--- a/source3/modules/developer.c
+++ /dev/null
@@ -1,132 +0,0 @@
-/* 
-   Unix SMB/CIFS implementation.
-   Samba module with developer tools
-   Copyright (C) Andrew Tridgell 2001
-   Copyright (C) Jelmer Vernooij 2002
-   
-   This program is free software; you can redistribute it and/or modify
-   it under the terms of the GNU General Public License as published by
-   the Free Software Foundation; either version 2 of the License, or
-   (at your option) any later version.
-   
-   This program is distributed in the hope that it will be useful,
-   but WITHOUT ANY WARRANTY; without even the implied warranty of
-   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-   GNU General Public License for more details.
-   
-   You should have received a copy of the GNU General Public License
-   along with this program; if not, write to the Free Software
-   Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
-*/
-
-#include "includes.h"
-
-static struct {
-	char from;
-	char *to;
-	int len;
-} weird_table[] = {
-	{'q', "^q^", 3},
-	{'Q', "^Q^", 3},
-	{0, NULL}
-};
-
-static size_t weird_pull(void *cd, char **inbuf, size_t *inbytesleft,
-			 char **outbuf, size_t *outbytesleft)
-{
-	while (*inbytesleft >= 1 && *outbytesleft >= 2) {
-		int i;
-		int done = 0;
-		for (i=0;weird_table[i].from;i++) {
-			if (strncmp((*inbuf), 
-				    weird_table[i].to, 
-				    weird_table[i].len) == 0) {
-				if (*inbytesleft < weird_table[i].len) {
-					DEBUG(0,("ERROR: truncated weird string\n"));
-					/* smb_panic("weird_pull"); */
-
-				} else {
-					(*outbuf)[0] = weird_table[i].from;
-					(*outbuf)[1] = 0;
-					(*inbytesleft)  -= weird_table[i].len;
-					(*outbytesleft) -= 2;
-					(*inbuf)  += weird_table[i].len;
-					(*outbuf) += 2;
-					done = 1;
-					break;
-				}
-			}
-		}
-		if (done) continue;
-		(*outbuf)[0] = (*inbuf)[0];
-		(*outbuf)[1] = 0;
-		(*inbytesleft)  -= 1;
-		(*outbytesleft) -= 2;
-		(*inbuf)  += 1;
-		(*outbuf) += 2;
-	}
-
-	if (*inbytesleft > 0) {
-		errno = E2BIG;
-		return -1;
-	}
-	
-	return 0;
-}
-
-static size_t weird_push(void *cd, char **inbuf, size_t *inbytesleft,
-			 char **outbuf, size_t *outbytesleft)
-{
-	int ir_count=0;
-
-	while (*inbytesleft >= 2 && *outbytesleft >= 1) {
-		int i;
-		int done=0;
-		for (i=0;weird_table[i].from;i++) {
-			if ((*inbuf)[0] == weird_table[i].from &&
-			    (*inbuf)[1] == 0) {
-				if (*outbytesleft < weird_table[i].len) {
-					DEBUG(0,("No room for weird character\n"));
-					/* smb_panic("weird_push"); */
-				} else {
-					memcpy(*outbuf, weird_table[i].to, 
-					       weird_table[i].len);
-					(*inbytesleft)  -= 2;
-					(*outbytesleft) -= weird_table[i].len;
-					(*inbuf)  += 2;
-					(*outbuf) += weird_table[i].len;
-					done = 1;
-					break;
-				}
-			}
-		}
-		if (done) continue;
-
-		(*outbuf)[0] = (*inbuf)[0];
-		if ((*inbuf)[1]) ir_count++;
-		(*inbytesleft)  -= 2;
-		(*outbytesleft) -= 1;
-		(*inbuf)  += 2;
-		(*outbuf) += 1;
-	}
-
-	if (*inbytesleft == 1) {
-		errno = EINVAL;
-		return -1;
-	}
-
-	if (*inbytesleft > 1) {
-		errno = E2BIG;
-		return -1;
-	}
-	
-	return ir_count;
-}
-
-struct charset_functions weird_functions = {"WEIRD", weird_pull, weird_push};
-
-int init_module(void)
-{
-	smb_register_charset(&weird_functions);
-	return 0;
-}
diff --git a/source3/nsswitch/winbindd_misc.c b/source3/nsswitch/winbindd_misc.c
index d656c3ca4d7..079a49a3176 100644
--- a/source3/nsswitch/winbindd_misc.c
+++ b/source3/nsswitch/winbindd_misc.c
@@ -180,8 +180,7 @@ enum winbindd_result winbindd_show_sequence(struct winbindd_cli_state *state)
 	}
 
 	state->response.extra_data = extra_data;
-	/* must add one to length to copy the 0 for string termination */
-	state->response.length += strlen(extra_data) + 1;
+	state->response.length += strlen(extra_data);
 
 	return WINBINDD_OK;
 }
diff --git a/source3/param/loadparm.c b/source3/param/loadparm.c
index ff2fe48b604..57318d03cab 100644
--- a/source3/param/loadparm.c
+++ b/source3/param/loadparm.c
@@ -110,8 +110,6 @@ typedef struct
 	char *szSMBPasswdFile;
 	char *szPrivateDir;
 	char **szPassdbBackend;
-	char **szSamBackend;
-	char **szModules;
 	char *szPasswordServer;
 	char *szSocketOptions;
 	char *szRealm;
@@ -734,7 +732,6 @@ static struct parm_struct parm_table[] = {
 	{"smb passwd file", P_STRING, P_GLOBAL, &Globals.szSMBPasswdFile, NULL, NULL, FLAG_ADVANCED | FLAG_DEVELOPER},
 	{"private dir", P_STRING, P_GLOBAL, &Globals.szPrivateDir, NULL, NULL, FLAG_ADVANCED | FLAG_DEVELOPER},
 	{"passdb backend", P_LIST, P_GLOBAL, &Globals.szPassdbBackend, NULL, NULL, FLAG_ADVANCED | FLAG_DEVELOPER},
-	{"sam backend", P_LIST, P_GLOBAL, &Globals.szSamBackend, NULL, NULL, FLAG_ADVANCED | FLAG_DEVELOPER},
 	{"non unix account range", P_STRING, P_GLOBAL, &Globals.szNonUnixAccountRange, handle_non_unix_account_range, NULL, FLAG_ADVANCED | FLAG_DEVELOPER},
 	{"algorithmic rid base", P_INTEGER, P_GLOBAL, &Globals.bAlgorithmicRidBase, NULL, NULL, FLAG_ADVANCED | FLAG_DEVELOPER},
 	{"root directory", P_STRING, P_GLOBAL, &Globals.szRootdir, NULL, NULL, FLAG_ADVANCED | FLAG_DEVELOPER},
@@ -796,7 +793,6 @@ static struct parm_struct parm_table[] = {
 	{"allow hosts", P_LIST, P_LOCAL, &sDefault.szHostsallow, NULL, NULL, FLAG_HIDE},
 	{"hosts deny", P_LIST, P_LOCAL, &sDefault.szHostsdeny, NULL, NULL, FLAG_GLOBAL | FLAG_BASIC | FLAG_ADVANCED | FLAG_SHARE | FLAG_PRINT | FLAG_DEVELOPER},
 	{"deny hosts", P_LIST, P_LOCAL, &sDefault.szHostsdeny, NULL, NULL, FLAG_HIDE},
-	{"modules", P_LIST, P_GLOBAL, &Globals.szModules, NULL, NULL, FLAG_BASIC | FLAG_GLOBAL},
 
 	{"Logging Options", P_SEP, P_SEPARATOR},
 
@@ -1565,8 +1561,6 @@ FN_GLOBAL_STRING(lp_nis_home_map_name, &Globals.szNISHomeMapName)
 static FN_GLOBAL_STRING(lp_announce_version, &Globals.szAnnounceVersion)
 FN_GLOBAL_LIST(lp_netbios_aliases, &Globals.szNetbiosAliases)
 FN_GLOBAL_LIST(lp_passdb_backend, &Globals.szPassdbBackend)
-FN_GLOBAL_LIST(lp_sam_backend, &Globals.szSamBackend)
-FN_GLOBAL_LIST(lp_modules, &Globals.szModules)
 FN_GLOBAL_STRING(lp_panic_action, &Globals.szPanicAction)
 FN_GLOBAL_STRING(lp_adduser_script, &Globals.szAddUserScript)
 FN_GLOBAL_STRING(lp_deluser_script, &Globals.szDelUserScript)
diff --git a/source3/passdb/pdb_interface.c b/source3/passdb/pdb_interface.c
index 79ce5981490..88070d8694c 100644
--- a/source3/passdb/pdb_interface.c
+++ b/source3/passdb/pdb_interface.c
@@ -25,11 +25,8 @@
 #define DBGC_CLASS DBGC_PASSDB
 
 /** List of various built-in passdb modules */
-const struct {
-    char *name;
-    /* Function to create a member of the pdb_methods list */
-    pdb_init_function init;
-} builtin_pdb_init_functions[] = {
+
+const struct pdb_init_function_entry builtin_pdb_init_functions[] = {
 	{ "smbpasswd", pdb_init_smbpasswd },
 	{ "smbpasswd_nua", pdb_init_smbpasswd_nua },
 	{ "tdbsam", pdb_init_tdbsam },
@@ -38,53 +35,10 @@ const struct {
 	{ "ldapsam_nua", pdb_init_ldapsam_nua },
 	{ "unixsam", pdb_init_unixsam },
 	{ "nisplussam", pdb_init_nisplussam },
+	{ "plugin", pdb_init_plugin },
 	{ NULL, NULL}
 };
 
-static struct pdb_init_function_entry *backends;
-static void lazy_initialize_passdb(void);
-
-static void lazy_initialize_passdb()
-{
-	int i;
-	static BOOL initialised = False;
-	
-	if(!initialised) {
-		initialised = True;
-
-		for(i = 0; builtin_pdb_init_functions[i].name; i++) {
-			smb_register_passdb(builtin_pdb_init_functions[i].name, builtin_pdb_init_functions[i].init, PASSDB_INTERFACE_VERSION);
-		}
-	}
-}
-
-BOOL smb_register_passdb(char *name, pdb_init_function init, int version) 
-{
-	struct pdb_init_function_entry *entry = backends;
-
-	if(version != PASSDB_INTERFACE_VERSION)
-		return False;
-
-	DEBUG(5,("Attempting to register passdb backend %s\n", name));
-
-	/* Check for duplicates */
-	while(entry) { 
-		if(strcasecmp(name, entry->name) == 0) { 
-			DEBUG(0,("There already is a passdb backend registered with the name %s!\n", name));
-			return False;
-		}
-		entry = entry->next;
-	}
-
-	entry = smb_xmalloc(sizeof(struct pdb_init_function_entry));
-	entry->name = name;
-	entry->init = init;
-
-	DLIST_ADD(backends, entry);
-	DEBUG(5,("Successfully added passdb backend '%s'\n", name));
-	return True;
-}
-
 static NTSTATUS context_setsampwent(struct pdb_context *context, BOOL update)
 {
 	NTSTATUS ret = NT_STATUS_UNSUCCESSFUL;
@@ -417,12 +371,8 @@ static NTSTATUS make_pdb_methods_name(struct pdb_methods **methods, struct pdb_c
 {
 	char *module_name = smb_xstrdup(selected);
 	char *module_location = NULL, *p;
-	struct pdb_init_function_entry *entry;
 	NTSTATUS nt_status = NT_STATUS_UNSUCCESSFUL;
-
-	lazy_initialize_passdb();
-
-	entry = backends;
+	int i;
 
 	p = strchr(module_name, ':');
 
@@ -435,11 +385,12 @@ static NTSTATUS make_pdb_methods_name(struct pdb_methods **methods, struct pdb_c
 	trim_string(module_name, " ", " ");
 
 	DEBUG(5,("Attempting to find an passdb backend to match %s (%s)\n", selected, module_name));
-	while(entry) {
-		if (strequal(entry->name, module_name))
+	for (i = 0; builtin_pdb_init_functions[i].name; i++)
+	{
+		if (strequal(builtin_pdb_init_functions[i].name, module_name))
 		{
-			DEBUG(5,("Found pdb backend %s\n", module_name));
-			nt_status = entry->init(context, methods, module_location);
+			DEBUG(5,("Found pdb backend %s (at pos %d)\n", module_name, i));
+			nt_status = builtin_pdb_init_functions[i].init(context, methods, module_location);
 			if (NT_STATUS_IS_OK(nt_status)) {
 				DEBUG(5,("pdb backend %s has a valid init\n", selected));
 			} else {
@@ -449,7 +400,6 @@ static NTSTATUS make_pdb_methods_name(struct pdb_methods **methods, struct pdb_c
 			return nt_status;
 			break; /* unreached */
 		}
-		entry = entry->next;
 	}
 
 	/* No such backend found */
diff --git a/source3/modules/mysql.c b/source3/passdb/pdb_mysql.c
similarity index 99%
rename from source3/modules/mysql.c
rename to source3/passdb/pdb_mysql.c
index 5516befc08c..319bad7da2e 100644
--- a/source3/modules/mysql.c
+++ b/source3/passdb/pdb_mysql.c
@@ -64,10 +64,12 @@ static int mysqlsam_debug_level = DBGC_ALL;
 #undef DBGC_CLASS
 #define DBGC_CLASS mysqlsam_debug_level
 
+PDB_MODULE_VERSIONING_MAGIC
+
 typedef struct pdb_mysql_data {
 	MYSQL *handle;
 	MYSQL_RES *pwent;
-	const char *location;
+	char *location;
 } pdb_mysql_data;
 
 /* Used to construct insert and update queries */
@@ -946,8 +948,8 @@ static NTSTATUS mysqlsam_enum_group_mapping(struct pdb_methods *methods,
 }
 
 
-static NTSTATUS mysqlsam_init(struct pdb_context * pdb_context, struct pdb_methods ** pdb_method,
-		 const char *location)
+NTSTATUS pdb_init(PDB_CONTEXT * pdb_context, PDB_METHODS ** pdb_method,
+		 char *location)
 {
 	NTSTATUS nt_status;
 	struct pdb_mysql_data *data;
@@ -1031,13 +1033,3 @@ static NTSTATUS mysqlsam_init(struct pdb_context * pdb_context, struct pdb_metho
 
 	return NT_STATUS_OK;
 }
-
-int init_module(void);
-
-int init_module() 
-{
-	if(smb_register_passdb("mysql", mysqlsam_init, PASSDB_INTERFACE_VERSION))
-		return 0;
-
-	return 1;
-}
diff --git a/source3/sam/sam_plugin.c b/source3/passdb/pdb_plugin.c
similarity index 57%
rename from source3/sam/sam_plugin.c
rename to source3/passdb/pdb_plugin.c
index fd26c4b8d3c..ea67da23a55 100644
--- a/source3/sam/sam_plugin.c
+++ b/source3/passdb/pdb_plugin.c
@@ -1,9 +1,8 @@
 /* 
    Unix SMB/CIFS implementation.
-   Loadable san module interface.
-   Copyright (C) Jelmer Vernooij			2002
-   Copyright (C) Andrew Bartlett			2002
-   Copyright (C) Stefan (metze) Metzmacher		2002
+   Loadable passdb module interface.
+   Copyright (C) Jelmer Vernooij 2002
+   Copyright (C) Andrew Bartlett 2002
       
    This program is free software; you can redistribute it and/or modify
    it under the terms of the GNU General Public License as published by
@@ -23,57 +22,57 @@
 #include "includes.h"
 
 #undef DBGC_CLASS
-#define DBGC_CLASS DBGC_SAM
+#define DBGC_CLASS DBGC_PASSDB
 
-NTSTATUS sam_init_plugin(SAM_METHODS *sam_methods, const char *module_params)
+NTSTATUS pdb_init_plugin(PDB_CONTEXT *pdb_context, PDB_METHODS **pdb_method, const char *location)
 {
-	void *dl_handle;
-	char *plugin_params, *plugin_name, *p;
-	sam_init_function plugin_init;
+	void * dl_handle;
+	char *plugin_location, *plugin_name, *p;
+	pdb_init_function plugin_init;
 	int (*plugin_version)(void);
 
-	if (module_params == NULL) {
+	if (location == NULL) {
 		DEBUG(0, ("The plugin module needs an argument!\n"));
 		return NT_STATUS_UNSUCCESSFUL;
 	}
 
-	plugin_name = smb_xstrdup(module_params);
+	plugin_name = smb_xstrdup(location);
 	p = strchr(plugin_name, ':');
 	if (p) {
 		*p = 0;
-		plugin_params = p+1;
-		trim_string(plugin_params, " ", " ");
-	} else plugin_params = NULL;
+		plugin_location = p+1;
+		trim_string(plugin_location, " ", " ");
+	} else plugin_location = NULL;
 	trim_string(plugin_name, " ", " ");
 
 	DEBUG(5, ("Trying to load sam plugin %s\n", plugin_name));
-	dl_handle = sys_dlopen(plugin_name, RTLD_NOW);
+	dl_handle = sys_dlopen(plugin_name, RTLD_NOW );
 	if (!dl_handle) {
 		DEBUG(0, ("Failed to load sam plugin %s using sys_dlopen (%s)\n", plugin_name, sys_dlerror()));
 		return NT_STATUS_UNSUCCESSFUL;
 	}
     
-	plugin_version = sys_dlsym(dl_handle, "sam_version");
+	plugin_version = sys_dlsym(dl_handle, "pdb_version");
 	if (!plugin_version) {
 		sys_dlclose(dl_handle);
-		DEBUG(0, ("Failed to find function 'sam_version' using sys_dlsym in sam plugin %s (%s)\n", plugin_name, sys_dlerror()));	    
+		DEBUG(0, ("Failed to find function 'pdb_version' using sys_dlsym in sam plugin %s (%s)\n", plugin_name, sys_dlerror()));	    
 		return NT_STATUS_UNSUCCESSFUL;
 	}
 
-	if (plugin_version()!=SAM_INTERFACE_VERSION) {
+	if (plugin_version() != PASSDB_INTERFACE_VERSION) {
 		sys_dlclose(dl_handle);
-		DEBUG(0, ("Wrong SAM_INTERFACE_VERSION! sam plugin has version %d and version %d is needed! Please update!\n",
-			    plugin_version(),SAM_INTERFACE_VERSION));
+		DEBUG(0, ("Wrong PASSDB_INTERFACE_VERSION! sam plugin has version %d and version %d is needed! Please update!\n",
+			    plugin_version(),PASSDB_INTERFACE_VERSION));
 		return NT_STATUS_UNSUCCESSFUL;
 	}
 				    	
-	plugin_init = sys_dlsym(dl_handle, "sam_init");
+	plugin_init = sys_dlsym(dl_handle, "pdb_init");
 	if (!plugin_init) {
 		sys_dlclose(dl_handle);
-		DEBUG(0, ("Failed to find function 'sam_init' using sys_dlsym in sam plugin %s (%s)\n", plugin_name, sys_dlerror()));	    
+		DEBUG(0, ("Failed to find function 'pdb_init' using sys_dlsym in sam plugin %s (%s)\n", plugin_name, sys_dlerror()));	    
 		return NT_STATUS_UNSUCCESSFUL;
 	}
 
-	DEBUG(5, ("Starting sam plugin %s with parameters %s for domain %s\n", plugin_name, plugin_params, sam_methods->domain_name));
-	return plugin_init(sam_methods, plugin_params);
+	DEBUG(5, ("Starting sam plugin %s with location %s\n", plugin_name, plugin_location));
+	return plugin_init(pdb_context, pdb_method, plugin_location);
 }
diff --git a/source3/modules/xml.c b/source3/passdb/pdb_xml.c
similarity index 98%
rename from source3/modules/xml.c
rename to source3/passdb/pdb_xml.c
index ead3e3a8748..edf70250e22 100644
--- a/source3/modules/xml.c
+++ b/source3/passdb/pdb_xml.c
@@ -40,6 +40,8 @@ static int xmlsam_debug_level = DBGC_ALL;
 #undef DBGC_CLASS
 #define DBGC_CLASS xmlsam_debug_level
 
+PDB_MODULE_VERSIONING_MAGIC 
+
 static char * iota(int a) {
 	static char tmp[10];
 
@@ -512,7 +514,7 @@ static NTSTATUS xmlsam_add_sam_account(struct pdb_methods *methods, SAM_ACCOUNT
 	return NT_STATUS_OK;
 }
 
-NTSTATUS xmlsam_init(PDB_CONTEXT * pdb_context, PDB_METHODS ** pdb_method,
+NTSTATUS pdb_init(PDB_CONTEXT * pdb_context, PDB_METHODS ** pdb_method,
 		 const char *location)
 {
 	NTSTATUS nt_status;
@@ -563,13 +565,3 @@ NTSTATUS xmlsam_init(PDB_CONTEXT * pdb_context, PDB_METHODS ** pdb_method,
 
 	return NT_STATUS_OK;
 }
-
-int init_module(void);
-
-int init_module() 
-{
-	if(smb_register_passdb("xml", xmlsam_init, PASSDB_INTERFACE_VERSION))
-		return 0;
-
-	return 1;
-}
diff --git a/source3/python/examples/tdbpack/test_tdbpack.py b/source3/python/examples/tdbpack/test_tdbpack.py
index d3364542740..83282e745e4 100755
--- a/source3/python/examples/tdbpack/test_tdbpack.py
+++ b/source3/python/examples/tdbpack/test_tdbpack.py
@@ -113,6 +113,8 @@ class PackTests(unittest.TestCase):
         not "canonical".
         """
         cases = [('w', (42,), '\x2a\0'),
+                 ('p', [None], '\0\0\0\0'),
+                 ('p', ['true'], '\x01\0\0\0'),
                  ]
 
         for packer in both_packers:
diff --git a/source3/python/py_tdbpack.c b/source3/python/py_tdbpack.c
index d8c3d467738..7180c3e12cf 100644
--- a/source3/python/py_tdbpack.c
+++ b/source3/python/py_tdbpack.c
@@ -31,7 +31,7 @@ static PyObject * pytdbpack_number(char ch, PyObject *val_iter, PyObject *packed
 static PyObject * pytdbpack_str_850(PyObject *val_iter, PyObject *packed_list);
 static PyObject * pytdbpack_buffer(PyObject *val_iter, PyObject *packed_list);
 
-static PyObject *pytdbunpack_item(char, char **pbuf, int *plen, PyObject *);
+static PyObject *pytdbpack_unpack_item(char, char **pbuf, int *plen, PyObject *);
 
 static PyObject *pytdbpack_data(const char *format_str,
 				     PyObject *val_seq,
@@ -117,7 +117,7 @@ notes:
 ";
 
 
-static char const pytdbunpack_doc[] =
+static char const pytdbpack_unpack_doc[] =
 "unpack(format, buffer) -> (values, rest)
 Unpack Samba binary data according to format string.
 
@@ -145,7 +145,6 @@ notes:
 ";
 
 
-const char *pytdb_string_encoding = "cp850";
 
 
 /*
@@ -325,7 +324,7 @@ pytdbpack_str_850(PyObject *val_iter, PyObject *packed_list)
 		val_obj = NULL;
 	}
 
-	if (!(cp850_str = PyUnicode_AsEncodedString(unicode_obj, pytdb_string_encoding, NULL)))
+	if (!(cp850_str = PyUnicode_AsEncodedString(unicode_obj, "cp850", NULL)))
 		goto out;
 
 	if (!nul_str)
@@ -379,47 +378,45 @@ pytdbpack_buffer(PyObject *val_iter, PyObject *packed_list)
 }
 
 
-static PyObject *pytdbpack_bad_type(char ch,
-				    const char *expected,
-				    PyObject *val_obj)
-{
-	PyObject *r = PyObject_Repr(val_obj);
-	if (!r)
-		return NULL;
-	PyErr_Format(PyExc_TypeError,
-		     "tdbpack: format '%c' requires %s, not %s",
-		     ch, expected, PyString_AS_STRING(r));
-	Py_DECREF(r);
-	return val_obj;
-}
-
+#if 0
+else if (ch == 'B') {
+			long size;
+			char *sval;
 
-/*
-  XXX: glib and Samba have quicker macro for doing the endianness conversions,
-  but I don't know of one in plain libc, and it's probably not a big deal.  I
-  realize this is kind of dumb because we'll almost always be on x86, but
-  being safe is important.
-*/
-static void pack_le_uint32(unsigned long val_long, unsigned char *pbuf)
-{
-	pbuf[0] =         val_long & 0xff;
-	pbuf[1] = (val_long >> 8)  & 0xff;
-	pbuf[2] = (val_long >> 16) & 0xff;
-	pbuf[3] = (val_long >> 24) & 0xff;
-}
+			if (!PyNumber_Check(val_obj)) {
+				pytdbpack_bad_type(ch, "Number", val_obj);
+				return NULL;
+			}
 
+			if (!(val_obj = PyNumber_Long(val_obj)))
+				return NULL;
 
-static void pack_bytes(long len, const char *from,
-		       unsigned char **pbuf)
-{
-	memcpy(*pbuf, from, len);
-	(*pbuf) += len;
-}
+			size = PyLong_AsLong(val_obj);
+			pack_le_uint32(size, &packed);
 
+			/* Release the new reference created by the cast */
+			Py_DECREF(val_obj);
 
+			val_obj = PySequence_GetItem(val_seq, val_i++);
+			if (!val_obj)
+				return NULL;
+			
+			sval = PyString_AsString(val_obj);
+			if (!sval)
+				return NULL;
+			
+			pack_bytes(size, sval, &packed); /* do not include nul */
+		}
+		else {
+		
+	}
+		
+	return Py_None;
+}
+#endif
 
 static PyObject *
-pytdbunpack(PyObject *self,
+pytdbpack_unpack(PyObject *self,
 		 PyObject *args)
 {
 	char *format_str, *packed_str, *ppacked;
@@ -448,7 +445,7 @@ pytdbunpack(PyObject *self,
 	for (ppacked = packed_str, i = 0; i < format_len && format_str[i] != '$'; i++) {
 		last_format = format_str[i];
 		/* packed_len is reduced in place */
-		if (!pytdbunpack_item(format_str[i], &ppacked, &packed_len, val_list))
+		if (!pytdbpack_unpack_item(format_str[i], &ppacked, &packed_len, val_list))
 			goto failed;
 	}
 
@@ -461,7 +458,7 @@ pytdbunpack(PyObject *self,
 			return NULL;
 		} 
 		while (packed_len > 0)
-			if (!pytdbunpack_item(last_format, &ppacked, &packed_len, val_list))
+			if (!pytdbpack_unpack_item(last_format, &ppacked, &packed_len, val_list))
 				goto failed;
 	}
 	
@@ -487,8 +484,142 @@ pytdbunpack(PyObject *self,
 }
 
 
+
+#if 0
+/*
+  Internal routine that calculates how many bytes will be required to
+  encode the values in the format.
+
+  Also checks that the value list is the right size for the format list.
+
+  Returns number of bytes (may be 0), or -1 if there's something wrong, in
+  which case a Python exception has been raised.
+
+  Arguments:
+
+    val_seq: a Fast Sequence (list or tuple), being all the values
+*/
+static int
+pytdbpack_calc_reqd_len(char *format_str,
+			PyObject *val_seq)
+{
+	int len = 0;
+	char *p;
+	int val_i;
+	int val_len;
+
+	val_len = PySequence_Length(val_seq);
+	if (val_len == -1)
+		return -1;
+
+	for (p = format_str, val_i = 0; *p; p++, val_i++) {
+		char ch = *p;
+
+		if (val_i >= val_len) {
+			PyErr_Format(PyExc_IndexError,
+				     "%s: value list is too short for format string",
+				     __FUNCTION__);
+			return -1;
+		}
+
+		/* borrow a reference to the item */
+		if (ch == 'd' || ch == 'p') 
+			len += 4;
+		else if (ch == 'w')
+			len += 2;
+		else if (ch == 'f' || ch == 'P') {
+			/* nul-terminated 8-bit string */
+			int item_len;
+			PyObject *str_obj;
+
+			str_obj = PySequence_GetItem(val_seq, val_i);
+			if (!str_obj)
+				return -1;
+
+			if (!PyString_Check(str_obj) || ((item_len = PyString_Size(str_obj)) == -1)) {
+				pytdbpack_bad_type(ch, "String", str_obj);
+				return -1;
+			}
+			
+			len += 1 + item_len;
+		}
+		else if (ch == 'B') {
+			/* length-preceded byte buffer: n bytes, plus a preceding
+			 * word */
+			PyObject *len_obj;
+			long len_val;
+
+			len_obj = PySequence_GetItem(val_seq, val_i);
+			val_i++; /* skip over buffer */
+
+			if (!PyNumber_Check(len_obj)) {
+				pytdbpack_bad_type(ch, "Number", len_obj);
+				return -1;
+			}
+
+			len_val = PyInt_AsLong(len_obj);
+			if (len_val < 0) {
+				PyErr_Format(PyExc_ValueError,
+					     "%s: format 'B' requires positive integer", __FUNCTION__);
+				return -1;
+			}
+
+			len += 4 + len_val;
+		}
+		else {	
+			PyErr_Format(PyExc_ValueError,
+				     "%s: format character '%c' is not supported",
+				     __FUNCTION__, ch);
+		
+			return -1;
+		}
+	}
+
+	return len;
+}
+#endif
+
+
+static PyObject *pytdbpack_bad_type(char ch,
+				    const char *expected,
+				    PyObject *val_obj)
+{
+	PyObject *r = PyObject_Repr(val_obj);
+	if (!r)
+		return NULL;
+	PyErr_Format(PyExc_TypeError,
+		     "tdbpack: format '%c' requires %s, not %s",
+		     ch, expected, PyString_AS_STRING(r));
+	Py_DECREF(r);
+	return val_obj;
+}
+
+
+/*
+  XXX: glib and Samba have quicker macro for doing the endianness conversions,
+  but I don't know of one in plain libc, and it's probably not a big deal.  I
+  realize this is kind of dumb because we'll almost always be on x86, but
+  being safe is important.
+*/
+static void pack_le_uint32(unsigned long val_long, unsigned char *pbuf)
+{
+	pbuf[0] =         val_long & 0xff;
+	pbuf[1] = (val_long >> 8)  & 0xff;
+	pbuf[2] = (val_long >> 16) & 0xff;
+	pbuf[3] = (val_long >> 24) & 0xff;
+}
+
+
+static void pack_bytes(long len, const char *from,
+		       unsigned char **pbuf)
+{
+	memcpy(*pbuf, from, len);
+	(*pbuf) += len;
+}
+
+
 static void
-pytdbunpack_err_too_short(void)
+unpack_err_too_short(void)
 {
 	PyErr_Format(PyExc_IndexError,
 		     __FUNCTION__ ": data too short for unpack format");
@@ -496,13 +627,13 @@ pytdbunpack_err_too_short(void)
 
 
 static PyObject *
-pytdbunpack_uint32(char **pbuf, int *plen)
+unpack_uint32(char **pbuf, int *plen)
 {
 	unsigned long v;
 	unsigned char *b;
 	
 	if (*plen < 4) {
-		pytdbunpack_err_too_short();
+		unpack_err_too_short();
 		return NULL;
 	}
 
@@ -516,13 +647,13 @@ pytdbunpack_uint32(char **pbuf, int *plen)
 }
 
 
-static PyObject *pytdbunpack_int16(char **pbuf, int *plen)
+static PyObject *unpack_int16(char **pbuf, int *plen)
 {
 	long v;
 	unsigned char *b;
 	
 	if (*plen < 2) {
-		pytdbunpack_err_too_short();
+		unpack_err_too_short();
 		return NULL;
 	}
 
@@ -537,7 +668,7 @@ static PyObject *pytdbunpack_int16(char **pbuf, int *plen)
 
 
 static PyObject *
-pytdbunpack_string(char **pbuf, int *plen)
+unpack_string(char **pbuf, int *plen)
 {
 	int len;
 	char *nul_ptr, *start;
@@ -546,7 +677,7 @@ pytdbunpack_string(char **pbuf, int *plen)
 	
 	nul_ptr = memchr(start, '\0', *plen);
 	if (!nul_ptr) {
-		pytdbunpack_err_too_short();
+		unpack_err_too_short();
 		return NULL;
 	}
 
@@ -555,12 +686,12 @@ pytdbunpack_string(char **pbuf, int *plen)
 	*pbuf += len + 1;	/* skip \0 */
 	*plen -= len + 1;
 
-	return PyString_Decode(start, len, pytdb_string_encoding, NULL);
+	return PyString_FromStringAndSize(start, len);
 }
 
 
 static PyObject *
-pytdbunpack_buffer(char **pbuf, int *plen, PyObject *val_list)
+unpack_buffer(char **pbuf, int *plen, PyObject *val_list)
 {
 	/* first get 32-bit len */
 	long slen;
@@ -569,7 +700,7 @@ pytdbunpack_buffer(char **pbuf, int *plen, PyObject *val_list)
 	PyObject *str_obj = NULL, *len_obj = NULL;
 	
 	if (*plen < 4) {
-		pytdbunpack_err_too_short();
+		unpack_err_too_short();
 		return NULL;
 	}
 	
@@ -626,7 +757,7 @@ pytdbunpack_buffer(char **pbuf, int *plen, PyObject *val_list)
 
    Returns a reference to None, or NULL for failure.
 */
-static PyObject *pytdbunpack_item(char ch,
+static PyObject *pytdbpack_unpack_item(char ch,
 				       char **pbuf,
 				       int *plen,
 				       PyObject *val_list)
@@ -634,17 +765,17 @@ static PyObject *pytdbunpack_item(char ch,
 	PyObject *result;
 	
 	if (ch == 'w') {	/* 16-bit int */
-		result = pytdbunpack_int16(pbuf, plen);
+		result = unpack_int16(pbuf, plen);
 	}
 	else if (ch == 'd' || ch == 'p') { /* 32-bit int */
 		/* pointers can just come through as integers */
-		result = pytdbunpack_uint32(pbuf, plen);
+		result = unpack_uint32(pbuf, plen);
 	}
 	else if (ch == 'f' || ch == 'P') { /* nul-term string  */
-		result = pytdbunpack_string(pbuf, plen);
+		result = unpack_string(pbuf, plen);
 	}
 	else if (ch == 'B') { /* length, buffer */
-		return pytdbunpack_buffer(pbuf, plen, val_list);
+		return unpack_buffer(pbuf, plen, val_list);
 	}
 	else {
 		PyErr_Format(PyExc_ValueError,
@@ -670,7 +801,7 @@ static PyObject *pytdbunpack_item(char ch,
 
 static PyMethodDef pytdbpack_methods[] = {
 	{ "pack", pytdbpack, METH_VARARGS, (char *) pytdbpack_doc },
-	{ "unpack", pytdbunpack, METH_VARARGS, (char *) pytdbunpack_doc },
+	{ "unpack", pytdbpack_unpack, METH_VARARGS, (char *) pytdbpack_unpack_doc },
 };
 
 DL_EXPORT(void)
diff --git a/source3/rpc_client/cli_pipe.c b/source3/rpc_client/cli_pipe.c
index 632dd30c3a8..90f08148ef4 100644
--- a/source3/rpc_client/cli_pipe.c
+++ b/source3/rpc_client/cli_pipe.c
@@ -844,7 +844,7 @@ BOOL rpc_api_pipe_req(struct cli_state *cli, uint8 op_num,
 		uint32 data_len, send_size;
 		uint8 flags = 0;
 		uint32 crc32 = 0;
-		uint32 callid = 0;
+		uint32 callid;
 
 		/*
 		 * how much will we send this time
@@ -862,9 +862,10 @@ BOOL rpc_api_pipe_req(struct cli_state *cli, uint8 op_num,
 			return False;
 		}
 
-		if (data_left == prs_offset(data))
+		if (data_left == prs_offset(data)) {
 			flags |= RPC_FLG_FIRST;
-
+			callid = 0;
+		}
 		if (data_left < max_data)
 			flags |= RPC_FLG_LAST;
 		/*
diff --git a/source3/rpc_server/srv_reg_nt.c b/source3/rpc_server/srv_reg_nt.c
index 7435bdb6f79..f96de7e5339 100644
--- a/source3/rpc_server/srv_reg_nt.c
+++ b/source3/rpc_server/srv_reg_nt.c
@@ -131,6 +131,7 @@ static NTSTATUS open_registry_key(pipes_struct *p, POLICY_HND *hnd, REGISTRY_KEY
 	if ( fetch_reg_keys( regkey, &subkeys ) == -1 )  {
 	
 		/* don't really know what to return here */
+		
 		result = NT_STATUS_NO_SUCH_FILE;
 	}
 	else {
diff --git a/source3/rpc_server/srv_samr.c b/source3/rpc_server/srv_samr.c
index ab3d94cf752..bc3b8970d6e 100644
--- a/source3/rpc_server/srv_samr.c
+++ b/source3/rpc_server/srv_samr.c
@@ -155,6 +155,7 @@ static BOOL api_samr_set_sec_obj(pipes_struct *p)
 		return False;
 	}
 	
+	
 	return True;
 }
 
diff --git a/source3/rpc_server/srv_samr_nt.c b/source3/rpc_server/srv_samr_nt.c
index ba5e9b70d32..603dcd0017b 100644
--- a/source3/rpc_server/srv_samr_nt.c
+++ b/source3/rpc_server/srv_samr_nt.c
@@ -1180,18 +1180,6 @@ NTSTATUS _samr_query_dispinfo(pipes_struct *p, SAMR_Q_QUERY_DISPINFO *q_u,
 	/* Get what we need from the password database */
 	switch (q_u->switch_level) {
 		case 0x1:
-			/* When playing with usrmgr, this is necessary
-                           if you want immediate refresh after editing
-                           a user. I would like to do this after the
-                           setuserinfo2, but we do not have access to
-                           the domain handle in that call, only to the
-                           user handle. Where else does this hurt?
-			   -- Volker
-			*/
-#if 0
-			/* We cannot do this here - it kills performace. JRA. */
-			free_samr_users(info);
-#endif
 		case 0x2:
 		case 0x4:
 			become_root();		
diff --git a/source3/sam/SAM-interface_handles.txt b/source3/sam/SAM-interface_handles.txt
deleted file mode 100644
index 1c164bd198b..00000000000
--- a/source3/sam/SAM-interface_handles.txt
+++ /dev/null
@@ -1,123 +0,0 @@
-SAM API 
-
-NTSTATUS sam_get_sec_obj(NT_USER_TOKEN *access, DOM_SID *sid, SEC_DESC **sd)
-NTSTATUS sam_set_sec_obj(NT_USER_TOKEN *access, DOM_SID *sid, SEC_DESC *sd)
-
-NTSTATUS sam_lookup_name(NT_USER_TOKEN *access, DOM_SID *domain, char *name, DOM_SID **sid, uint32 *type)
-NTSTATUS sam_lookup_sid(NT_USER_TOKEN *access, DOM_SID *sid, char **name, uint32 *type)
-
-
-Domain API 
-
-NTSTATUS sam_update_domain(SAM_DOMAIN_HANDLE *domain)
-
-NTSTATUS sam_enum_domains(NT_USER_TOKEN *access, int32 *domain_count, DOM_SID **domains, char **domain_names)
-NTSTATUS sam_lookup_domain(NT_USER_TOKEN *access, char *domain, DOM_SID **domainsid)
-
-NTSTATUS sam_get_domain_by_sid(NT_USER_TOKEN *access, uint32 access_desired, DOM_SID *domainsid, SAM_DOMAIN_HANDLE **domain)
-
-
-User API
-
-NTSTATUS sam_create_user(NT_USER_TOKEN *access, uint32 access_desired, SAM_USER_HANDLE **user)
-NTSTATUS sam_add_user(SAM_USER_HANDLE *user)
-NTSTATUS sam_update_user(SAM_USER_HANDLE *user)
-NTSTATUS sam_delete_user(SAM_USER_HANDLE * user)
-
-NTSTATUS sam_enum_users(NT_USER_TOKEN *access, DOM_SID *domain, int32 *user_count, SAM_USER_ENUM **users)
-
-NTSTATUS sam_get_user_by_sid(NT_USER_TOKEN *access, uint32 access_desired, DOM_SID *usersid, SAM_USER_HANDLE **user)
-NTSTATUS sam_get_user_by_name(NT_USER_TOKEN *access, uint32 access_desired, char *domain, char *name, SAM_USER_HANDLE **user)
-
-
-Group API 
-
-NTSTATUS sam_create_group(NT_USER_TOKEN *access, uint32 access_desired, uint32 typ, SAM_GROUP_HANDLE **group)
-NTSTATUS sam_add_group(SAM_GROUP_HANDLE *samgroup)
-NTSTATUS sam_update_group(SAM_GROUP_HANDLE *samgroup)
-NTSTATUS sam_delete_group(SAM_GROUP_HANDLE *groupsid)
-
-NTSTATUS sam_enum_groups(NT_USER_TOKEN *access, DOM_SID *domainsid, uint32 typ, uint32 *groups_count, SAM_GROUP_ENUM **groups)
-
-NTSTATUS sam_get_group_by_sid(NT_USER_TOKEN *access, uint32 access_desired, DOM_SID *groupsid, SAM_GROUP_HANDLE **group)
-NTSTATUS sam_get_group_by_name(NT_USER_TOKEN *access, uint32 access_desired, char *domain, char *name, SAM_GROUP_HANDLE **group)
-
-NTSTATUS sam_add_member_to_group(SAM_GROUP_HANDLE *group, SAM_GROUP_MEMBER *member)
-NTSTATUS sam_delete_member_from_group(SAM_GROUP_HANDLE *group, SAM_GROUP_MEMBER *member)
-NTSTATUS sam_enum_groupmembers(SAM_GROUP_HANLDE *group, uint32 *members_count, SAM_GROUP_MEMBER **members)
-
-NTSTATUS sam_get_groups_of_user(SAM_USER_HANDLE *user, uint32 typ, uint32 *group_count, SAM_GROUP_ENUM **groups)
-
-
-
-structures
-
-typedef _SAM_GROUP_MEMBER {
- DOM_SID sid; 
- BOOL group; /* specifies if it is a group or a user */ 
-
-} SAM_GROUP_MEMBER
-
-typedef struct sam_user_enum {
- DOM_SID sid; 
- char *username; 
- char *full_name; 
- char *user_desc; 
- uint16 acc_ctrl; 
-} SAM_USER_ENUM;
-
-typedef struct sam_group_enum {
- DOM_SID sid;
- char *groupname;
- char *comment;
-} SAM_GROUP_ENUM
-
-NTSTATUS sam_get_domain_sid(SAM_DOMAIN_HANDLE *domain, DOM_SID **sid)
-NTSTATUS sam_get_domain_num_users(SAM_DOMAIN_HANDLE *domain, uint32 *num_users)
-NTSTATUS sam_get_domain_num_groups(SAM_DOMAIN_HANDLE *domain, uint32 *num_groups)
-NTSTATUS sam_get_domain_num_aliases(SAM_DOMAIN_HANDLE *domain, uint32 *num_aliases)
-NTSTATUS sam_{get,set}_domain_name(SAM_DOMAIN_HANDLE *domain, char **domain_name)
-NTSTATUS sam_{get,set}_domain_server(SAM_DOMAIN_HANDLE *domain, char **server_name)
-NTSTATUS sam_{get,set}_domain_max_pwdage(SAM_DOMAIN_HANDLE *domain, NTTIME *max_passwordage)
-NTSTATUS sam_{get,set}_domain_min_pwdage(SAM_DOMAIN_HANDLE *domain, NTTIME *min_passwordage)
-NTSTATUS sam_{get,set}_domain_lockout_duration(SAM_DOMAIN_HANDLE *domain, NTTIME *lockout_duration)
-NTSTATUS sam_{get,set}_domain_reset_count(SAM_DOMAIN_HANDLE *domain, NTTIME *reset_lockout_count)
-NTSTATUS sam_{get,set}_domain_min_pwdlength(SAM_DOMAIN_HANDLE *domain, uint16 *min_passwordlength)
-NTSTATUS sam_{get,set}_domain_pwd_history(SAM_DOMAIN_HANDLE *domain, uin16 *password_history)
-NTSTATUS sam_{get,set}_domain_lockout_count(SAM_DOMAIN_HANDLE *domain, uint16 *lockout_count)
-NTSTATUS sam_{get,set}_domain_force_logoff(SAM_DOMAIN_HANDLE *domain, BOOL *force_logoff)
-NTSTATUS sam_{get,set}_domain_login_pwdchange(SAM_DOMAIN_HANDLE *domain, BOOL *login_pwdchange)
-
-NTSTATUS sam_get_user_sid(SAM_USER_HANDLE *user, DOM_SID **sid)
-NTSTATUS sam_{get,set}_user_pgroup(SAM_USER_HANDLE *user, DOM_SID **pgroup)
-NTSTATUS sam_{get,set}_user_name(SAM_USER_HANDLE *user, char **username)
-NTSTATUS sam_{get,set}_user_fullname(SAM_USER_HANDLE *user, char** fullname)
-NTSTATUS sam_{get,set}_user_description(SAM_USER_HANDLE *user, char **description)
-NTSTATUS sam_{get,set}_user_home_dir(SAM_USER_HANDLE *user, char **home_dir)
-NTSTATUS sam_{get,set}_user_dir_drive(SAM_USER_HANDLE *user, char **dir_drive)
-NTSTATUS sam_{get,set}_user_logon_script(SAM_USER_HANDLE *user, char **logon_script)
-NTSTATUS sam_{get,set}_user_profile_path(SAM_USER_HANDLE *user, char **profile_path)
-NTSTATUS sam_{get,set}_user_workstations(SAM_USER_HANDLE *user, char **workstations)
-NTSTATUS sam_{get,set}_user_munged_dial(SAM_USER_HANDLE *user, char **munged_dial)
-NTSTATUS sam_{get,set}_user_lm_pwd(SAM_USER_HANDLE *user, DATA_BLOB *lm_pwd)
-NTSTATUS sam_{get,set}_user_nt_pwd(SAM_USER_HANDLE *user, DATA_BLOB *nt_pwd)
-NTSTATUS sam_{get,set}_user_plain_pwd(SAM_USER_HANDLE *user, DATA_BLOB *plaintext_pwd)
-NTSTATUS sam_{get,set}_user_acct_ctrl(SAM_USER_HANDLE *user, uint16 *acct_ctrl)
-NTSTATUS sam_{get,set}_user_logon_divs(SAM_USER_HANDLE *user, uint16 *logon_divs)
-NTSTATUS sam_{get,set}_user_hours(SAM_USER_HANDLE *user, uint32 *hours_len, uint8 **hours)
-NTSTATUS sam_{get,set}_user_logon_time(SAM_USER_HANDLE *user, NTTIME *logon_time)
-NTSTATUS sam_{get,set}_user_logoff_time(SAM_USER_HANDLE *user, NTTIME *logoff_time)
-NTSTATUS sam_{get,set}_user_kickoff_time(SAM_USER_HANDLE *user, NTTIME kickoff_time)
-NTSTATUS sam_{get,set}_user_pwd_last_set(SAM_USER_HANDLE *user, NTTIME pwd_last_set)
-NTSTATUS sam_{get,set}_user_pwd_can_change(SAM_USER_HANDLE *user, NTTIME pwd_can_change)
-NTSTATUS sam_{get,set}_user_pwd_must_change(SAM_USER_HANDLE *user, NTTIME pwd_must_change)
-NTSTATUS sam_{get,set}_user_unknown_1(SAM_USER_HANDLE *user, char **unknown_1)
-NTSTATUS sam_{get,set}_user_unknown_2(SAM_USER_HANDLE *user, uint32 *unknown_2)
-NTSTATUS sam_{get,set}_user_unknown_3(SAM_USER_HANDLE *user, uint32 *unknown_3)
-NTSTATUS sam_{get,set}_user_unknown_4(SAM_USER_HANDLE *user, uint32 *unknown_4)
-
-NTSTATUS sam_get_group_sid(SAM_GROUP_HANDLE *group, DOM_SID **sid)
-NTSTATUS sam_get_group_typ(SAM_GROUP_HANDLE *group, uint32 *typ)
-NTSTATUS sam_{get,set}_group_name(SAM_GROUP_HANDLE *group, char **group_name)
-NTSTATUS sam_{get,set}_group_comment(SAM_GROUP_HANDLE *group, char **comment)
-NTSTATUS sam_{get,set}_group_priv_set(SAM_GROUP_HANDLE *group, PRIVILEGE_SET *priv_set)
\ No newline at end of file
diff --git a/source3/sam/account.c b/source3/sam/account.c
deleted file mode 100644
index 1b43db57d98..00000000000
--- a/source3/sam/account.c
+++ /dev/null
@@ -1,305 +0,0 @@
-/* 
-   Unix SMB/CIFS implementation.
-   Password and authentication handling
-   Copyright (C) Jeremy Allison 		1996-2001
-   Copyright (C) Luke Kenneth Casson Leighton 	1996-1998
-   Copyright (C) Gerald (Jerry) Carter		2000-2001
-   Copyright (C) Andrew Bartlett		2001-2002
-      
-   This program is free software; you can redistribute it and/or modify
-   it under the terms of the GNU General Public License as published by
-   the Free Software Foundation; either version 2 of the License, or
-   (at your option) any later version.
-   
-   This program is distributed in the hope that it will be useful,
-   but WITHOUT ANY WARRANTY; without even the implied warranty of
-   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-   GNU General Public License for more details.
-   
-   You should have received a copy of the GNU General Public License
-   along with this program; if not, write to the Free Software
-   Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
-*/
-
-#include "includes.h"
-
-#undef DBGC_CLASS
-#define DBGC_CLASS DBGC_SAM
-
-/************************************************************
- Fill the SAM_ACCOUNT_HANDLE with default values.
- ***********************************************************/
-
-static void sam_fill_default_account(SAM_ACCOUNT_HANDLE *account)
-{
-	ZERO_STRUCT(account->private); /* Don't touch the talloc context */
-
-        /* Don't change these timestamp settings without a good reason.
-           They are important for NT member server compatibility. */
-
-	/* FIXME: We should actually call get_nt_time_max() or sthng 
-	 * here */
-	unix_to_nt_time(&(account->private.logoff_time),get_time_t_max());
-	unix_to_nt_time(&(account->private.kickoff_time),get_time_t_max());
-	unix_to_nt_time(&(account->private.pass_must_change_time),get_time_t_max());
-	account->private.unknown_1 = 0x00ffffff; 	/* don't know */
-	account->private.logon_divs = 168; 	/* hours per week */
-	account->private.hours_len = 21; 		/* 21 times 8 bits = 168 */
-	memset(account->private.hours, 0xff, account->private.hours_len); /* available at all hours */
-	account->private.unknown_2 = 0x00000000; /* don't know */
-	account->private.unknown_3 = 0x000004ec; /* don't know */
-}	
-
-static void destroy_sam_talloc(SAM_ACCOUNT_HANDLE **account) 
-{
-	if (*account) {
-		data_blob_clear_free(&((*account)->private.lm_pw));
-		data_blob_clear_free(&((*account)->private.nt_pw));
-		if((*account)->private.plaintext_pw!=NULL)
-			memset((*account)->private.plaintext_pw,'\0',strlen((*account)->private.plaintext_pw));
-
-		talloc_destroy((*account)->mem_ctx);
-		*account = NULL;
-	}
-}
-
-
-/**********************************************************************
- Alloc memory and initialises a SAM_ACCOUNT_HANDLE on supplied mem_ctx.
-***********************************************************************/
-
-NTSTATUS sam_init_account_talloc(TALLOC_CTX *mem_ctx, SAM_ACCOUNT_HANDLE **account)
-{
-	SMB_ASSERT(*account != NULL);
-
-	if (!mem_ctx) {
-		DEBUG(0,("sam_init_account_talloc: mem_ctx was NULL!\n"));
-		return NT_STATUS_UNSUCCESSFUL;
-	}
-
-	*account=(SAM_ACCOUNT_HANDLE *)talloc(mem_ctx, sizeof(SAM_ACCOUNT_HANDLE));
-
-	if (*account==NULL) {
-		DEBUG(0,("sam_init_account_talloc: error while allocating memory\n"));
-		return NT_STATUS_NO_MEMORY;
-	}
-
-	(*account)->mem_ctx = mem_ctx;
-
-	(*account)->free_fn = NULL;
-
-	sam_fill_default_account(*account);
-	
-	return NT_STATUS_OK;
-}
-
-
-/*************************************************************
- Alloc memory and initialises a struct sam_passwd.
- ************************************************************/
-
-NTSTATUS sam_init_account(SAM_ACCOUNT_HANDLE **account)
-{
-	TALLOC_CTX *mem_ctx;
-	NTSTATUS nt_status;
-	
-	mem_ctx = talloc_init_named("sam internal SAM_ACCOUNT_HANDLE allocation");
-
-	if (!mem_ctx) {
-		DEBUG(0,("sam_init_account: error while doing talloc_init()\n"));
-		return NT_STATUS_NO_MEMORY;
-	}
-
-	if (!NT_STATUS_IS_OK(nt_status = sam_init_account_talloc(mem_ctx, account))) {
-		talloc_destroy(mem_ctx);
-		return nt_status;
-	}
-	
-	(*account)->free_fn = destroy_sam_talloc;
-
-	return NT_STATUS_OK;
-}
-
-/**
- * Free the contents of the SAM_ACCOUNT_HANDLE, but not the structure.
- *
- * Also wipes the LM and NT hashes and plaintext password from 
- * memory.
- *
- * @param account SAM_ACCOUNT_HANDLE to free members of.
- **/
-
-static void sam_free_account_contents(SAM_ACCOUNT_HANDLE *account)
-{
-
-	/* Kill off sensitive data.  Free()ed by the
-	   talloc mechinism */
-
-	data_blob_clear_free(&(account->private.lm_pw));
-	data_blob_clear_free(&(account->private.nt_pw));
-	if (account->private.plaintext_pw)
-		memset(account->private.plaintext_pw,'\0',strlen(account->private.plaintext_pw));
-}
-
-
-/************************************************************
- Reset the SAM_ACCOUNT_HANDLE and free the NT/LM hashes.
- ***********************************************************/
-
-NTSTATUS sam_reset_sam(SAM_ACCOUNT_HANDLE *account)
-{
-	SMB_ASSERT(account != NULL);
-	
-	sam_free_account_contents(account);
-
-	sam_fill_default_account(account);
-
-	return NT_STATUS_OK;
-}
-
-
-/************************************************************
- Free the SAM_ACCOUNT_HANDLE and the member pointers.
- ***********************************************************/
-
-NTSTATUS sam_free_account(SAM_ACCOUNT_HANDLE **account)
-{
-	SMB_ASSERT(*account != NULL);
-
-	sam_free_account_contents(*account);
-	
-	if ((*account)->free_fn) {
-		(*account)->free_fn(account);
-	}
-
-	return NT_STATUS_OK;	
-}
-
-
-/**********************************************************
- Encode the account control bits into a string.
- length = length of string to encode into (including terminating
- null). length *MUST BE MORE THAN 2* !
- **********************************************************/
-
-char *sam_encode_acct_ctrl(uint16 acct_ctrl, size_t length)
-{
-	static fstring acct_str;
-	size_t i = 0;
-
-	acct_str[i++] = '[';
-
-	if (acct_ctrl & ACB_PWNOTREQ ) acct_str[i++] = 'N';
-	if (acct_ctrl & ACB_DISABLED ) acct_str[i++] = 'D';
-	if (acct_ctrl & ACB_HOMDIRREQ) acct_str[i++] = 'H';
-	if (acct_ctrl & ACB_TEMPDUP  ) acct_str[i++] = 'T'; 
-	if (acct_ctrl & ACB_NORMAL   ) acct_str[i++] = 'U';
-	if (acct_ctrl & ACB_MNS      ) acct_str[i++] = 'M';
-	if (acct_ctrl & ACB_WSTRUST  ) acct_str[i++] = 'W';
-	if (acct_ctrl & ACB_SVRTRUST ) acct_str[i++] = 'S';
-	if (acct_ctrl & ACB_AUTOLOCK ) acct_str[i++] = 'L';
-	if (acct_ctrl & ACB_PWNOEXP  ) acct_str[i++] = 'X';
-	if (acct_ctrl & ACB_DOMTRUST ) acct_str[i++] = 'I';
-
-	for ( ; i < length - 2 ; i++ )
-		acct_str[i] = ' ';
-
-	i = length - 2;
-	acct_str[i++] = ']';
-	acct_str[i++] = '\0';
-
-	return acct_str;
-}     
-
-/**********************************************************
- Decode the account control bits from a string.
- **********************************************************/
-
-uint16 sam_decode_acct_ctrl(const char *p)
-{
-	uint16 acct_ctrl = 0;
-	BOOL finished = False;
-
-	/*
-	 * Check if the account type bits have been encoded after the
-	 * NT password (in the form [NDHTUWSLXI]).
-	 */
-
-	if (*p != '[')
-		return 0;
-
-	for (p++; *p && !finished; p++) {
-		switch (*p) {
-			case 'N': { acct_ctrl |= ACB_PWNOTREQ ; break; /* 'N'o password. */ }
-			case 'D': { acct_ctrl |= ACB_DISABLED ; break; /* 'D'isabled. */ }
-			case 'H': { acct_ctrl |= ACB_HOMDIRREQ; break; /* 'H'omedir required. */ }
-			case 'T': { acct_ctrl |= ACB_TEMPDUP  ; break; /* 'T'emp account. */ } 
-			case 'U': { acct_ctrl |= ACB_NORMAL   ; break; /* 'U'ser account (normal). */ } 
-			case 'M': { acct_ctrl |= ACB_MNS      ; break; /* 'M'NS logon user account. What is this ? */ } 
-			case 'W': { acct_ctrl |= ACB_WSTRUST  ; break; /* 'W'orkstation account. */ } 
-			case 'S': { acct_ctrl |= ACB_SVRTRUST ; break; /* 'S'erver account. */ } 
-			case 'L': { acct_ctrl |= ACB_AUTOLOCK ; break; /* 'L'ocked account. */ } 
-			case 'X': { acct_ctrl |= ACB_PWNOEXP  ; break; /* No 'X'piry on password */ } 
-			case 'I': { acct_ctrl |= ACB_DOMTRUST ; break; /* 'I'nterdomain trust account. */ }
-            case ' ': { break; }
-			case ':':
-			case '\n':
-			case '\0': 
-			case ']':
-			default:  { finished = True; }
-		}
-	}
-
-	return acct_ctrl;
-}
-
-/*************************************************************
- Routine to set 32 hex password characters from a 16 byte array.
-**************************************************************/
-
-void sam_sethexpwd(char *p, const unsigned char *pwd, uint16 acct_ctrl)
-{
-	if (pwd != NULL) {
-		int i;
-		for (i = 0; i < 16; i++)
-			slprintf(&p[i*2], 3, "%02X", pwd[i]);
-	} else {
-		if (acct_ctrl & ACB_PWNOTREQ)
-			safe_strcpy(p, "NO PASSWORDXXXXXXXXXXXXXXXXXXXXX", 33);
-		else
-			safe_strcpy(p, "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX", 33);
-	}
-}
-
-/*************************************************************
- Routine to get the 32 hex characters and turn them
- into a 16 byte array.
-**************************************************************/
-
-BOOL sam_gethexpwd(const char *p, unsigned char *pwd)
-{
-	int i;
-	unsigned char   lonybble, hinybble;
-	char           *hexchars = "0123456789ABCDEF";
-	char           *p1, *p2;
-	
-	if (!p)
-		return (False);
-	
-	for (i = 0; i < 32; i += 2) {
-		hinybble = toupper(p[i]);
-		lonybble = toupper(p[i + 1]);
-
-		p1 = strchr(hexchars, hinybble);
-		p2 = strchr(hexchars, lonybble);
-
-		if (!p1 || !p2)
-			return (False);
-
-		hinybble = PTR_DIFF(p1, hexchars);
-		lonybble = PTR_DIFF(p2, hexchars);
-
-		pwd[i / 2] = (hinybble << 4) | lonybble;
-	}
-	return (True);
-}
diff --git a/source3/sam/get_set_account.c b/source3/sam/get_set_account.c
deleted file mode 100644
index acac281d21a..00000000000
--- a/source3/sam/get_set_account.c
+++ /dev/null
@@ -1,845 +0,0 @@
-/* 
-   Unix SMB/CIFS implementation.
-   SAM_ACCOUNT_HANDLE access routines
-   Copyright (C) Andrew Bartlett			2002
-   Copyright (C) Stefan (metze) Metzmacher		2002
-   Copyright (C) Jelmer Vernooij 			2002
-      
-   This program is free software; you can redistribute it and/or modify
-   it under the terms of the GNU General Public License as published by
-   the Free Software Foundation; either version 2 of the License, or
-   (at your option) any later version.
-   
-   This program is distributed in the hope that it will be useful,
-   but WITHOUT ANY WARRANTY; without even the implied warranty of
-   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-   GNU General Public License for more details.
-   
-   You should have received a copy of the GNU General Public License
-   along with this program; if not, write to the Free Software
-   Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
-*/
-
-#include "includes.h"
-
-#undef DBGC_CLASS
-#define DBGC_CLASS DBGC_SAM
-
-NTSTATUS sam_get_account_domain_sid(const SAM_ACCOUNT_HANDLE *sampass, const DOM_SID **sid)
-{
-	NTSTATUS status;
-	SAM_DOMAIN_HANDLE *domain;
-	SAM_ASSERT(!sampass || !sid);
-
-	if (!NT_STATUS_IS_OK(status = sam_get_account_domain(sampass, &domain))){
-		DEBUG(0, ("sam_get_account_domain_sid: Can't get domain for account\n"));
-		return status;
-	}
-
-	return sam_get_domain_sid(domain, sid);
-}
-
-NTSTATUS sam_get_account_domain_name(const SAM_ACCOUNT_HANDLE *sampass, const char **domain_name)
-{
-	NTSTATUS status;
-	SAM_DOMAIN_HANDLE *domain;
-	SAM_ASSERT(sampass && domain_name);
-
-	if (!NT_STATUS_IS_OK(status = sam_get_account_domain(sampass, &domain))){
-		DEBUG(0, ("sam_get_account_domain_name: Can't get domain for account\n"));
-		return status;
-	}
-
-	return sam_get_domain_name(domain, domain_name);
-}
-
-NTSTATUS sam_get_account_acct_ctrl(const SAM_ACCOUNT_HANDLE *sampass, uint16 *acct_ctrl)
-{
-	SAM_ASSERT(sampass && acct_ctrl);
-
-	*acct_ctrl = sampass->private.acct_ctrl;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_account_logon_time(const SAM_ACCOUNT_HANDLE *sampass, NTTIME *logon_time)
-{
-	SAM_ASSERT(sampass && logon_time) ;
-
-	*logon_time = sampass->private.logon_time;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_account_logoff_time(const SAM_ACCOUNT_HANDLE *sampass, NTTIME *logoff_time)
-{
-	SAM_ASSERT(sampass && logoff_time) ;
-
-	*logoff_time = sampass->private.logoff_time;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_account_kickoff_time(const SAM_ACCOUNT_HANDLE *sampass, NTTIME *kickoff_time)
-{
-	SAM_ASSERT(sampass && kickoff_time);
-
-	*kickoff_time = sampass->private.kickoff_time;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_account_pass_last_set_time(const SAM_ACCOUNT_HANDLE *sampass, NTTIME *pass_last_set_time)
-{
-	SAM_ASSERT(sampass && pass_last_set_time);
-
-	*pass_last_set_time = sampass->private.pass_last_set_time;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_account_pass_can_change_time(const SAM_ACCOUNT_HANDLE *sampass, NTTIME *pass_can_change_time)
-{
-	SAM_ASSERT(sampass && pass_can_change_time);
-
-	*pass_can_change_time = sampass->private.pass_can_change_time;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_account_pass_must_change_time(const SAM_ACCOUNT_HANDLE *sampass, NTTIME *pass_must_change_time)
-{
-	SAM_ASSERT(sampass && pass_must_change_time);
-
-	*pass_must_change_time = sampass->private.pass_must_change_time;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_account_logon_divs(const SAM_ACCOUNT_HANDLE *sampass, uint16 *logon_divs)
-{
-	SAM_ASSERT(sampass && logon_divs);
-
-	*logon_divs = sampass->private.logon_divs;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_account_hours_len(const SAM_ACCOUNT_HANDLE *sampass, uint32 *hours_len)
-{
-	SAM_ASSERT(sampass && hours_len);
-
-	*hours_len = sampass->private.hours_len;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_account_hours(const SAM_ACCOUNT_HANDLE *sampass, const uint8 **hours)
-{
-	SAM_ASSERT(sampass && hours);
-
-	*hours = sampass->private.hours;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_account_nt_pwd(const SAM_ACCOUNT_HANDLE *sampass, DATA_BLOB *nt_pwd)
-{
-	SAM_ASSERT(sampass);
-
-	SMB_ASSERT((!sampass->private.nt_pw.data) 
-		   || sampass->private.nt_pw.length == NT_HASH_LEN);
-
-	*nt_pwd = sampass->private.nt_pw;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_account_lm_pwd(const SAM_ACCOUNT_HANDLE *sampass, DATA_BLOB *lm_pwd)
-{ 
-	SAM_ASSERT(sampass);
-
-	SMB_ASSERT((!sampass->private.lm_pw.data) 
-		   || sampass->private.lm_pw.length == LM_HASH_LEN);
-
-	*lm_pwd = sampass->private.lm_pw;
-
-	return NT_STATUS_OK;
-}
-
-/* Return the plaintext password if known.  Most of the time
-   it isn't, so don't assume anything magic about this function.
-   
-   Used to pass the plaintext to sam backends that might 
-   want to store more than just the NTLM hashes.
-*/
-
-NTSTATUS sam_get_account_plaintext_pwd(const SAM_ACCOUNT_HANDLE *sampass, char **plain_pwd)
-{
-	SAM_ASSERT(sampass && plain_pwd);
-
-	*plain_pwd = sampass->private.plaintext_pw;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_account_sid(const SAM_ACCOUNT_HANDLE *sampass, const DOM_SID **sid)
-{
-	SAM_ASSERT(sampass);
-
-	*sid = &(sampass->private.account_sid);
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_account_pgroup(const SAM_ACCOUNT_HANDLE *sampass, const DOM_SID **sid)
-{
-	SAM_ASSERT(sampass);
-
-	*sid = &(sampass->private.group_sid);
-
-	return NT_STATUS_OK;
-}
-
-/**
- * Get flags showing what is initalised in the SAM_ACCOUNT_HANDLE
- * @param sampass the SAM_ACCOUNT_HANDLE in question
- * @return the flags indicating the members initialised in the struct.
- **/
- 
-NTSTATUS sam_get_account_init_flag(const SAM_ACCOUNT_HANDLE *sampass, uint32 *initflag)
-{
-	SAM_ASSERT(sampass);
-
-	*initflag = sampass->private.init_flag;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_account_name(const SAM_ACCOUNT_HANDLE *sampass, char **account_name)
-{
-	SAM_ASSERT(sampass);
-
-	*account_name = sampass->private.account_name;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_account_domain(const SAM_ACCOUNT_HANDLE *sampass, SAM_DOMAIN_HANDLE **domain)
-{
-	SAM_ASSERT(sampass);
-
-	*domain = sampass->private.domain;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_account_fullname(const SAM_ACCOUNT_HANDLE *sampass, char **fullname)
-{
-	SAM_ASSERT(sampass);
-
-	*fullname = sampass->private.full_name;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_account_homedir(const SAM_ACCOUNT_HANDLE *sampass, char **homedir)
-{
-	SAM_ASSERT(sampass);
-
-	*homedir = sampass->private.home_dir;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_account_unix_home_dir(const SAM_ACCOUNT_HANDLE *sampass, char **uhomedir)
-{
-	SAM_ASSERT(sampass);
-
-	*uhomedir = sampass->private.unix_home_dir;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_account_dir_drive(const SAM_ACCOUNT_HANDLE *sampass, char **dirdrive)
-{
-	SAM_ASSERT(sampass);
-
-	*dirdrive = sampass->private.dir_drive;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_account_logon_script(const SAM_ACCOUNT_HANDLE *sampass, char **logon_script)
-{
-	SAM_ASSERT(sampass);
-
-	*logon_script = sampass->private.logon_script;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_account_profile_path(const SAM_ACCOUNT_HANDLE *sampass, char **profile_path)
-{
-	SAM_ASSERT(sampass);
-
-	*profile_path = sampass->private.profile_path;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_account_description(const SAM_ACCOUNT_HANDLE *sampass, char **description)
-{
-	SAM_ASSERT(sampass);
-
-	*description = sampass->private.acct_desc;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_account_workstations(const SAM_ACCOUNT_HANDLE *sampass, char **workstations)
-{
-	SAM_ASSERT(sampass);
-
-	*workstations = sampass->private.workstations;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_account_unknown_str(const SAM_ACCOUNT_HANDLE *sampass, char **unknown_str)
-{
-	SAM_ASSERT(sampass);
-
-	*unknown_str = sampass->private.unknown_str;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_account_munged_dial(const SAM_ACCOUNT_HANDLE *sampass, char **munged_dial)
-{
-	SAM_ASSERT(sampass);
-
-	*munged_dial = sampass->private.munged_dial;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_account_unknown_1(const SAM_ACCOUNT_HANDLE *sampass, uint32 *unknown1)
-{
-	SAM_ASSERT(sampass && unknown1);
-
-	*unknown1 = sampass->private.unknown_1;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_account_unknown_2(const SAM_ACCOUNT_HANDLE *sampass, uint32 *unknown2)
-{
-	SAM_ASSERT(sampass && unknown2);
-
-	*unknown2 = sampass->private.unknown_2;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_account_unknown_3(const SAM_ACCOUNT_HANDLE *sampass, uint32 *unknown3)
-{
-	SAM_ASSERT(sampass && unknown3);
-
-	*unknown3 = sampass->private.unknown_3;
-
-	return NT_STATUS_OK;
-}
-
-/*********************************************************************
- Collection of set...() functions for SAM_ACCOUNT_HANDLE_INFO.
- ********************************************************************/
-
-NTSTATUS sam_set_account_acct_ctrl(SAM_ACCOUNT_HANDLE *sampass, uint16 acct_ctrl)
-{
-	SAM_ASSERT(sampass);
-		
-	sampass->private.acct_ctrl = acct_ctrl;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_set_account_logon_time(SAM_ACCOUNT_HANDLE *sampass, NTTIME mytime, BOOL store)
-{
-	SAM_ASSERT(sampass);
-
-	sampass->private.logon_time = mytime;
-
-
-	return NT_STATUS_UNSUCCESSFUL;
-}
-
-NTSTATUS sam_set_account_logoff_time(SAM_ACCOUNT_HANDLE *sampass, NTTIME mytime, BOOL store)
-{
-	SAM_ASSERT(sampass);
-
-	sampass->private.logoff_time = mytime;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_set_account_kickoff_time(SAM_ACCOUNT_HANDLE *sampass, NTTIME mytime, BOOL store)
-{
-	SAM_ASSERT(sampass);
-
-	sampass->private.kickoff_time = mytime;
-
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_set_account_pass_can_change_time(SAM_ACCOUNT_HANDLE *sampass, NTTIME mytime, BOOL store)
-{
-	SAM_ASSERT(sampass);
-
-	sampass->private.pass_can_change_time = mytime;
-
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_set_account_pass_must_change_time(SAM_ACCOUNT_HANDLE *sampass, NTTIME mytime, BOOL store)
-{
-	SAM_ASSERT(sampass);
-
-	sampass->private.pass_must_change_time = mytime;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_set_account_pass_last_set_time(SAM_ACCOUNT_HANDLE *sampass, NTTIME mytime)
-{
-	SAM_ASSERT(sampass);
-
-	sampass->private.pass_last_set_time = mytime;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_set_account_hours_len(SAM_ACCOUNT_HANDLE *sampass, uint32 len)
-{
-	SAM_ASSERT(sampass);
-
-	sampass->private.hours_len = len;
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_set_account_logon_divs(SAM_ACCOUNT_HANDLE *sampass, uint16 hours)
-{
-	SAM_ASSERT(sampass);
-
-	sampass->private.logon_divs = hours;
-	return NT_STATUS_OK;
-}
-
-/**
- * Set flags showing what is initalised in the SAM_ACCOUNT_HANDLE
- * @param sampass the SAM_ACCOUNT_HANDLE in question
- * @param flag The *new* flag to be set.  Old flags preserved
- *             this flag is only added.  
- **/
- 
-NTSTATUS sam_set_account_init_flag(SAM_ACCOUNT_HANDLE *sampass, uint32 flag)
-{
-	SAM_ASSERT(sampass);
-
-	sampass->private.init_flag |= flag;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_set_account_sid(SAM_ACCOUNT_HANDLE *sampass, const DOM_SID *u_sid)
-{
-	SAM_ASSERT(sampass && u_sid);
-	
-	sid_copy(&sampass->private.account_sid, u_sid);
-
-	DEBUG(10, ("sam_set_account_sid: setting account sid %s\n", 
-		    sid_string_static(&sampass->private.account_sid)));
-	
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_set_account_sid_from_string(SAM_ACCOUNT_HANDLE *sampass, const char *u_sid)
-{
-	DOM_SID new_sid;
-	SAM_ASSERT(sampass && u_sid);
-
-	DEBUG(10, ("sam_set_account_sid_from_string: setting account sid %s\n",
-		   u_sid));
-
-	if (!string_to_sid(&new_sid, u_sid)) { 
-		DEBUG(1, ("sam_set_account_sid_from_string: %s isn't a valid SID!\n", u_sid));
-		return NT_STATUS_UNSUCCESSFUL;
-	}
-	 
-	if (!NT_STATUS_IS_OK(sam_set_account_sid(sampass, &new_sid))) {
-		DEBUG(1, ("sam_set_account_sid_from_string: could not set sid %s on SAM_ACCOUNT_HANDLE!\n", u_sid));
-		return NT_STATUS_UNSUCCESSFUL;
-	}
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_set_account_pgroup_sid(SAM_ACCOUNT_HANDLE *sampass, const DOM_SID *g_sid)
-{
-	SAM_ASSERT(sampass && g_sid);
-
-	sid_copy(&sampass->private.group_sid, g_sid);
-
-	DEBUG(10, ("sam_set_group_sid: setting group sid %s\n", 
-		    sid_string_static(&sampass->private.group_sid)));
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_set_account_pgroup_string(SAM_ACCOUNT_HANDLE *sampass, const char *g_sid)
-{
-	DOM_SID new_sid;
-	SAM_ASSERT(sampass && g_sid);
-
-	DEBUG(10, ("sam_set_group_sid_from_string: setting group sid %s\n",
-		   g_sid));
-
-	if (!string_to_sid(&new_sid, g_sid)) { 
-		DEBUG(1, ("sam_set_group_sid_from_string: %s isn't a valid SID!\n", g_sid));
-		return NT_STATUS_UNSUCCESSFUL;
-	}
-	 
-	if (!NT_STATUS_IS_OK(sam_set_account_pgroup_sid(sampass, &new_sid))) {
-		DEBUG(1, ("sam_set_group_sid_from_string: could not set sid %s on SAM_ACCOUNT_HANDLE!\n", g_sid));
-		return NT_STATUS_UNSUCCESSFUL;
-	}
-	return NT_STATUS_OK;
-}
-
-/*********************************************************************
- Set the domain name.
- ********************************************************************/
-
-NTSTATUS sam_set_account_domain(SAM_ACCOUNT_HANDLE *sampass, SAM_DOMAIN_HANDLE *domain)
-{	
-	SAM_ASSERT(sampass);
-
-	sampass->private.domain = domain;
-
-	return NT_STATUS_OK;
-}
-
-/*********************************************************************
- Set the account's NT name.
- ********************************************************************/
-
-NTSTATUS sam_set_account_name(SAM_ACCOUNT_HANDLE *sampass, const char *account_name)
-{
-	SAM_ASSERT(sampass);
-
-	DEBUG(10, ("sam_set_account_name: setting nt account_name %s, was %s\n", account_name, sampass->private.account_name));
-
-	sampass->private.account_name = talloc_strdup(sampass->mem_ctx, account_name);
-
-	return NT_STATUS_OK;
-}
-
-/*********************************************************************
- Set the account's full name.
- ********************************************************************/
-
-NTSTATUS sam_set_account_fullname(SAM_ACCOUNT_HANDLE *sampass, const char *full_name)
-{
-	SAM_ASSERT(sampass);
-
-	DEBUG(10, ("sam_set_account_fullname: setting full name %s, was %s\n", full_name, sampass->private.full_name));
-
-	sampass->private.full_name = talloc_strdup(sampass->mem_ctx, full_name);
-
-	return NT_STATUS_OK;
-}
-
-/*********************************************************************
- Set the account's logon script.
- ********************************************************************/
-
-NTSTATUS sam_set_account_logon_script(SAM_ACCOUNT_HANDLE *sampass, const char *logon_script, BOOL store)
-{
-	SAM_ASSERT(sampass);
-
-	DEBUG(10, ("sam_set_logon_script: from %s to %s\n", logon_script, sampass->private.logon_script));
-
-	sampass->private.logon_script = talloc_strdup(sampass->mem_ctx, logon_script);
-	
-
-	return NT_STATUS_OK;
-}
-
-/*********************************************************************
- Set the account's profile path.
- ********************************************************************/
-
-NTSTATUS sam_set_account_profile_path(SAM_ACCOUNT_HANDLE *sampass, const char *profile_path, BOOL store)
-{
-	SAM_ASSERT(sampass);
-
-	DEBUG(10, ("sam_set_profile_path: setting profile path %s, was %s\n", profile_path, sampass->private.profile_path));
- 
-	sampass->private.profile_path = talloc_strdup(sampass->mem_ctx, profile_path);
-		
-	return NT_STATUS_OK;
-}
-
-/*********************************************************************
- Set the account's directory drive.
- ********************************************************************/
-
-NTSTATUS sam_set_account_dir_drive(SAM_ACCOUNT_HANDLE *sampass, const char *dir_drive, BOOL store)
-{
-	SAM_ASSERT(sampass);
-
-	DEBUG(10, ("sam_set_dir_drive: setting dir drive %s, was %s\n", dir_drive,
-			sampass->private.dir_drive));
- 
-	sampass->private.dir_drive = talloc_strdup(sampass->mem_ctx, dir_drive);
-		
-	return NT_STATUS_OK;
-}
-
-/*********************************************************************
- Set the account's home directory.
- ********************************************************************/
-
-NTSTATUS sam_set_account_homedir(SAM_ACCOUNT_HANDLE *sampass, const char *home_dir, BOOL store)
-{
-	SAM_ASSERT(sampass);
-
-	DEBUG(10, ("sam_set_homedir: setting home dir %s, was %s\n", home_dir,
-		sampass->private.home_dir));
- 
-	sampass->private.home_dir = talloc_strdup(sampass->mem_ctx, home_dir);
-		
-	return NT_STATUS_OK;
-}
-
-/*********************************************************************
- Set the account's unix home directory.
- ********************************************************************/
-
-NTSTATUS sam_set_account_unix_homedir(SAM_ACCOUNT_HANDLE *sampass, const char *unix_home_dir)
-{
-	SAM_ASSERT(sampass);
-
-	DEBUG(10, ("sam_set_unix_homedir: setting home dir %s, was %s\n", unix_home_dir,
-		sampass->private.unix_home_dir));
- 
-	sampass->private.unix_home_dir = talloc_strdup(sampass->mem_ctx, unix_home_dir);
-		
-	return NT_STATUS_OK;
-}
-
-/*********************************************************************
- Set the account's account description.
- ********************************************************************/
-
-NTSTATUS sam_set_account_acct_desc(SAM_ACCOUNT_HANDLE *sampass, const char *acct_desc)
-{
-	SAM_ASSERT(sampass);
-
-	sampass->private.acct_desc = talloc_strdup(sampass->mem_ctx, acct_desc);
-
-	return NT_STATUS_OK;
-}
-
-/*********************************************************************
- Set the account's workstation allowed list.
- ********************************************************************/
-
-NTSTATUS sam_set_account_workstations(SAM_ACCOUNT_HANDLE *sampass, const char *workstations)
-{
-	SAM_ASSERT(sampass);
-
-	DEBUG(10, ("sam_set_workstations: setting workstations %s, was %s\n", workstations,
-			sampass->private.workstations));
- 
-	sampass->private.workstations = talloc_strdup(sampass->mem_ctx, workstations);
-
-	return NT_STATUS_OK;
-}
-
-/*********************************************************************
- Set the account's 'unknown_str', whatever the heck this actually is...
- ********************************************************************/
-
-NTSTATUS sam_set_account_unknown_str(SAM_ACCOUNT_HANDLE *sampass, const char *unknown_str)
-{
-	SAM_ASSERT(sampass);
-
-	sampass->private.unknown_str = talloc_strdup(sampass->mem_ctx, unknown_str);
-		
-	return NT_STATUS_OK;
-}
-
-/*********************************************************************
- Set the account's dial string.
- ********************************************************************/
-
-NTSTATUS sam_set_account_munged_dial(SAM_ACCOUNT_HANDLE *sampass, const char *munged_dial)
-{
-	SAM_ASSERT(sampass);
-
-	sampass->private.munged_dial = talloc_strdup(sampass->mem_ctx, munged_dial);
-	
-	return NT_STATUS_OK;
-}
-
-/*********************************************************************
- Set the account's NT hash.
- ********************************************************************/
-
-NTSTATUS sam_set_account_nt_pwd(SAM_ACCOUNT_HANDLE *sampass, const DATA_BLOB data)
-{
-	SAM_ASSERT(sampass);
-
-	sampass->private.nt_pw = data;
-
-	return NT_STATUS_OK;
-}
-
-/*********************************************************************
- Set the account's LM hash.
- ********************************************************************/
-
-NTSTATUS sam_set_account_lm_pwd(SAM_ACCOUNT_HANDLE *sampass, const DATA_BLOB data)
-{
-	SAM_ASSERT(sampass);
-
-	sampass->private.lm_pw = data;
-
-	return NT_STATUS_OK;
-}
-
-/*********************************************************************
- Set the account's plaintext password only (base procedure, see helper
- below)
- ********************************************************************/
-
-NTSTATUS sam_set_account_plaintext_pwd(SAM_ACCOUNT_HANDLE *sampass, const char *plain_pwd)
-{
-	SAM_ASSERT(sampass);
-
-	sampass->private.plaintext_pw = talloc_strdup(sampass->mem_ctx, plain_pwd);
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_set_account_unknown_1(SAM_ACCOUNT_HANDLE *sampass, uint32 unkn)
-{
-	SAM_ASSERT(sampass);
-
-	sampass->private.unknown_1 = unkn;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_set_account_unknown_2(SAM_ACCOUNT_HANDLE *sampass, uint32 unkn)
-{
-	SAM_ASSERT(sampass);
-
-	sampass->private.unknown_2 = unkn;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_set_account_unknown_3(SAM_ACCOUNT_HANDLE *sampass, uint32 unkn)
-{
-	SAM_ASSERT(sampass);
-
-	sampass->private.unknown_3 = unkn;
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_set_account_hours(SAM_ACCOUNT_HANDLE *sampass, const uint8 *hours)
-{
-	SAM_ASSERT(sampass);
-
-	if (!hours) {
-		memset ((char *)sampass->private.hours, 0, MAX_HOURS_LEN);
-		return NT_STATUS_OK;
-	}
-	
-	memcpy(sampass->private.hours, hours, MAX_HOURS_LEN);
-
-	return NT_STATUS_OK;
-}
-
-/* Helpful interfaces to the above */
-
-/*********************************************************************
- Sets the last changed times and must change times for a normal
- password change.
- ********************************************************************/
-
-NTSTATUS sam_set_account_pass_changed_now(SAM_ACCOUNT_HANDLE *sampass)
-{
-	uint32 expire;
-	NTTIME temptime;
-
-	SAM_ASSERT(sampass);
-	
-	unix_to_nt_time(&temptime, time(NULL));
-	if (!NT_STATUS_IS_OK(sam_set_account_pass_last_set_time(sampass, temptime)))
-		return NT_STATUS_UNSUCCESSFUL;
-
-	if (!account_policy_get(AP_MAX_PASSWORD_AGE, &expire) 
-	    || (expire==(uint32)-1)) {
-
-		get_nttime_max(&temptime);
-		if (!NT_STATUS_IS_OK(sam_set_account_pass_must_change_time(sampass, temptime, False)))
-			return NT_STATUS_UNSUCCESSFUL;
-
-	} else {
-		/* FIXME: Add expire to temptime */
-		
-		if (!NT_STATUS_IS_OK(sam_get_account_pass_last_set_time(sampass,&temptime)) || !NT_STATUS_IS_OK(sam_set_account_pass_must_change_time(sampass, temptime,True)))
-			return NT_STATUS_UNSUCCESSFUL;
-	}
-	
-	return NT_STATUS_OK;
-}
-
-/*********************************************************************
- Set the account's PLAINTEXT password.  Used as an interface to the above.
- Also sets the last change time to NOW.
- ********************************************************************/
-
-NTSTATUS sam_set_account_passwd(SAM_ACCOUNT_HANDLE *sampass, const char *plaintext)
-{
-	DATA_BLOB data;
-	uchar new_lanman_p16[16];
-	uchar new_nt_p16[16];
-
-	SAM_ASSERT(sampass && plaintext);
-	
-	nt_lm_owf_gen(plaintext, new_nt_p16, new_lanman_p16);
-
-	data = data_blob(new_nt_p16, 16);
-	if (!NT_STATUS_IS_OK(sam_set_account_nt_pwd(sampass, data)))
-		return NT_STATUS_UNSUCCESSFUL;
-
-	data = data_blob(new_lanman_p16, 16);
-
-	if (!NT_STATUS_IS_OK(sam_set_account_lm_pwd(sampass, data)))
-		return NT_STATUS_UNSUCCESSFUL;
-
-	if (!NT_STATUS_IS_OK(sam_set_account_plaintext_pwd(sampass, plaintext)))
-		return NT_STATUS_UNSUCCESSFUL;
-	
-	if (!NT_STATUS_IS_OK(sam_set_account_pass_changed_now(sampass)))
-		return NT_STATUS_UNSUCCESSFUL;
-
-	return NT_STATUS_OK;
-}
-
diff --git a/source3/sam/get_set_domain.c b/source3/sam/get_set_domain.c
deleted file mode 100644
index c70a4a3f097..00000000000
--- a/source3/sam/get_set_domain.c
+++ /dev/null
@@ -1,263 +0,0 @@
-/* 
-   Unix SMB/CIFS implementation.
-   SAM_DOMAIN access routines
-   Copyright (C) Andrew Bartlett			2002
-   Copyright (C) Stefan (metze) Metzmacher	2002
-   Copyright (C) Jelmer Vernooij 			2002
-      
-   This program is free software; you can redistribute it and/or modify
-   it under the terms of the GNU General Public License as published by
-   the Free Software Foundation; either version 2 of the License, or
-   (at your option) any later version.
-   
-   This program is distributed in the hope that it will be useful,
-   but WITHOUT ANY WARRANTY; without even the implied warranty of
-   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-   GNU General Public License for more details.
-   
-   You should have received a copy of the GNU General Public License
-   along with this program; if not, write to the Free Software
-   Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
-*/
-
-#include "includes.h"
-
-#undef DBGC_CLASS
-#define DBGC_CLASS DBGC_SAM
-
-NTSTATUS sam_get_domain_sid(SAM_DOMAIN_HANDLE *domain, const DOM_SID **sid)
-{
-	SAM_ASSERT(domain &&sid);
-
-	*sid = &(domain->private.sid);
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_domain_num_accounts(SAM_DOMAIN_HANDLE *domain, uint32 *num_accounts)
-{
-	SAM_ASSERT(domain &&num_accounts);
-
-	*num_accounts = domain->private.num_accounts;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_domain_num_groups(SAM_DOMAIN_HANDLE *domain, uint32 *num_groups)
-{
-	SAM_ASSERT(domain &&num_groups);
-
-	*num_groups = domain->private.num_groups;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_domain_num_aliases(SAM_DOMAIN_HANDLE *domain, uint32 *num_aliases)
-{
-	SAM_ASSERT(domain &&num_aliases);
-
-	*num_aliases = domain->private.num_aliases;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_domain_name(SAM_DOMAIN_HANDLE *domain, const char **domain_name)
-{
-	SAM_ASSERT(domain &&domain_name);
-
-	*domain_name = domain->private.name;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_domain_server(SAM_DOMAIN_HANDLE *domain, const char **server_name)
-{
-	SAM_ASSERT(domain &&server_name);
-
-	*server_name = domain->private.servername;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_domain_max_pwdage(SAM_DOMAIN_HANDLE *domain, NTTIME *max_passwordage)
-{
-	SAM_ASSERT(domain &&max_passwordage);
-
-	*max_passwordage = domain->private.max_passwordage;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_domain_min_pwdage(SAM_DOMAIN_HANDLE *domain, NTTIME *min_passwordage)
-{
-	SAM_ASSERT(domain &&min_passwordage);
-
-	*min_passwordage = domain->private.min_passwordage;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_domain_lockout_duration(SAM_DOMAIN_HANDLE *domain, NTTIME *lockout_duration)
-{
-	SAM_ASSERT(domain &&lockout_duration);
-
-	*lockout_duration = domain->private.lockout_duration;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_domain_reset_count(SAM_DOMAIN_HANDLE *domain, NTTIME *reset_lockout_count)
-{
-	SAM_ASSERT(domain &&reset_lockout_count);
-	
-	*reset_lockout_count = domain->private.reset_count;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_domain_min_pwdlength(SAM_DOMAIN_HANDLE *domain, uint16 *min_passwordlength)
-{
-	SAM_ASSERT(domain &&min_passwordlength);
-
-	*min_passwordlength = domain->private.min_passwordlength;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_domain_pwd_history(SAM_DOMAIN_HANDLE *domain, uint16 *password_history)
-{
-	SAM_ASSERT(domain &&password_history);
-
-	*password_history = domain->private.password_history;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_domain_lockout_count(SAM_DOMAIN_HANDLE *domain, uint16 *lockout_count)
-{
-	SAM_ASSERT(domain &&lockout_count);
-
-	*lockout_count = domain->private.lockout_count;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_domain_force_logoff(SAM_DOMAIN_HANDLE *domain, BOOL *force_logoff)
-{
-	SAM_ASSERT(domain &&force_logoff);
-
-	*force_logoff = domain->private.force_logoff;
-
-	return NT_STATUS_OK;
-}
-
-
-NTSTATUS sam_get_domain_login_pwdchange(SAM_DOMAIN_HANDLE *domain, BOOL *login_pwdchange)
-{
-	SAM_ASSERT(domain && login_pwdchange);
-
-	*login_pwdchange = domain->private.login_pwdchange;
-
-	return NT_STATUS_OK;
-}
-
-/* Set */
-
-NTSTATUS sam_set_domain_name(SAM_DOMAIN_HANDLE *domain, const char *domain_name)
-{
-	SAM_ASSERT(domain);
-
-	domain->private.name = talloc_strdup(domain->mem_ctx, domain_name);
-
-	return NT_STATUS_OK;
-}
-
-
-NTSTATUS sam_set_domain_max_pwdage(SAM_DOMAIN_HANDLE *domain, NTTIME max_passwordage)
-{
-	SAM_ASSERT(domain);
-
-	domain->private.max_passwordage = max_passwordage;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_set_domain_min_pwdage(SAM_DOMAIN_HANDLE *domain, NTTIME min_passwordage)
-{
-	SAM_ASSERT(domain);
-
-	domain->private.min_passwordage = min_passwordage;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_set_domain_lockout_duration(SAM_DOMAIN_HANDLE *domain, NTTIME lockout_duration)
-{
-	SAM_ASSERT(domain);
-
-	domain->private.lockout_duration = lockout_duration;
-
-	return NT_STATUS_OK;
-}
-NTSTATUS sam_set_domain_reset_count(SAM_DOMAIN_HANDLE *domain, NTTIME reset_lockout_count)
-{
-	SAM_ASSERT(domain);
-
-	domain->private.reset_count = reset_lockout_count;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_set_domain_min_pwdlength(SAM_DOMAIN_HANDLE *domain, uint16 min_passwordlength)
-{
-	SAM_ASSERT(domain);
-
-	domain->private.min_passwordlength = min_passwordlength;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_set_domain_pwd_history(SAM_DOMAIN_HANDLE *domain, uint16 password_history)
-{
-	SAM_ASSERT(domain);
-
-	domain->private.password_history = password_history;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_set_domain_lockout_count(SAM_DOMAIN_HANDLE *domain, uint16 lockout_count)
-{
-	SAM_ASSERT(domain);
-
-	domain->private.lockout_count = lockout_count;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_set_domain_force_logoff(SAM_DOMAIN_HANDLE *domain, BOOL force_logoff)
-{
-	SAM_ASSERT(domain);
-
-	domain->private.force_logoff = force_logoff;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_set_domain_login_pwdchange(SAM_DOMAIN_HANDLE *domain, BOOL login_pwdchange)
-{
-	SAM_ASSERT(domain);
-
-	domain->private.login_pwdchange = login_pwdchange;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_set_domain_server(SAM_DOMAIN_HANDLE *domain, const char *server_name)
-{
-	SAM_ASSERT(domain);
-
-	domain->private.servername = talloc_strdup(domain->mem_ctx, server_name);
-
-	return NT_STATUS_OK;
-}
diff --git a/source3/sam/get_set_group.c b/source3/sam/get_set_group.c
deleted file mode 100644
index 11ea9258a70..00000000000
--- a/source3/sam/get_set_group.c
+++ /dev/null
@@ -1,106 +0,0 @@
-/* 
-   Unix SMB/CIFS implementation.
-   SAM_USER_HANDLE access routines
-   Copyright (C) Andrew Bartlett			2002
-   Copyright (C) Stefan (metze) Metzmacher	2002
-   Copyright (C) Jelmer Vernooij 			2002
-      
-   This program is free software; you can redistribute it and/or modify
-   it under the terms of the GNU General Public License as published by
-   the Free Software Foundation; either version 2 of the License, or
-   (at your option) any later version.
-   
-   This program is distributed in the hope that it will be useful,
-   but WITHOUT ANY WARRANTY; without even the implied warranty of
-   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-   GNU General Public License for more details.
-   
-   You should have received a copy of the GNU General Public License
-   along with this program; if not, write to the Free Software
-   Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
-*/
-
-#include "includes.h"
-
-#undef DBGC_CLASS
-#define DBGC_CLASS DBGC_SAM
-
-/* sam group get functions */
-
-NTSTATUS sam_get_group_sid(const SAM_GROUP_HANDLE *group, const DOM_SID **sid)
-{
-	SAM_ASSERT(group && sid);
-
-	*sid = &(group->private.sid);
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_group_ctrl(const SAM_GROUP_HANDLE *group, uint32 *group_ctrl)
-{
-	SAM_ASSERT(group && group_ctrl);
-
-	*group_ctrl = group->private.group_ctrl;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_group_name(const SAM_GROUP_HANDLE *group, const char **group_name)
-{
-	SAM_ASSERT(group);
-
-	*group_name = group->private.group_name;
-
-	return NT_STATUS_OK;
-
-}
-NTSTATUS sam_get_group_comment(const SAM_GROUP_HANDLE *group, const char **group_desc)
-{
-	SAM_ASSERT(group);
-
-	*group_desc = group->private.group_desc;
-
-	return NT_STATUS_OK;
-}
-
-/* sam group set functions */
-
-NTSTATUS sam_set_group_sid(SAM_GROUP_HANDLE *group, const DOM_SID *sid)
-{
-	SAM_ASSERT(group);
-
-	if (!sid) 
-		ZERO_STRUCT(group->private.sid);
-	else 
-		sid_copy(&(group->private.sid), sid);
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_set_group_group_ctrl(SAM_GROUP_HANDLE *group, uint32 group_ctrl)
-{
-	SAM_ASSERT(group);
-
-	group->private.group_ctrl = group_ctrl;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_set_group_name(SAM_GROUP_HANDLE *group, const char *group_name)
-{
-	SAM_ASSERT(group);
-
-	group->private.group_name = talloc_strdup(group->mem_ctx, group_name);
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_set_group_description(SAM_GROUP_HANDLE *group, const char *group_desc)
-{
-	SAM_ASSERT(group);
-
-	group->private.group_desc = talloc_strdup(group->mem_ctx, group_desc);
-
-	return NT_STATUS_OK;
-
-}
diff --git a/source3/sam/group.c b/source3/sam/group.c
deleted file mode 100644
index 7e4bcc1425c..00000000000
--- a/source3/sam/group.c
+++ /dev/null
@@ -1,193 +0,0 @@
-/* 
-   Unix SMB/CIFS implementation.
-   SAM_GROUP_HANDLE /SAM_GROUP_ENUM helpers
-   
-   Copyright (C) Stefan (metze) Metzmacher 	2002
-      
-   This program is free software; you can redistribute it and/or modify
-   it under the terms of the GNU General Public License as published by
-   the Free Software Foundation; either version 2 of the License, or
-   (at your option) any later version.
-   
-   This program is distributed in the hope that it will be useful,
-   but WITHOUT ANY WARRANTY; without even the implied warranty of
-   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-   GNU General Public License for more details.
-   
-   You should have received a copy of the GNU General Public License
-   along with this program; if not, write to the Free Software
-   Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
-*/
-
-#include "includes.h"
-
-#undef DBGC_CLASS
-#define DBGC_CLASS DBGC_SAM
-
-/************************************************************
- Fill the SAM_GROUP_HANDLE with default values.
- ***********************************************************/
-
-static void sam_fill_default_group(SAM_GROUP_HANDLE *group)
-{
-	ZERO_STRUCT(group->private); /* Don't touch the talloc context */
-
-}	
-
-static void destroy_sam_group_handle_talloc(SAM_GROUP_HANDLE **group) 
-{
-	if (*group) {
-
-		talloc_destroy((*group)->mem_ctx);
-		*group = NULL;
-	}
-}
-
-
-/**********************************************************************
- Alloc memory and initialises a SAM_GROUP_HANDLE on supplied mem_ctx.
-***********************************************************************/
-
-NTSTATUS sam_init_group_talloc(TALLOC_CTX *mem_ctx, SAM_GROUP_HANDLE **group)
-{
-	SMB_ASSERT(*group != NULL);
-
-	if (!mem_ctx) {
-		DEBUG(0,("sam_init_group_talloc: mem_ctx was NULL!\n"));
-		return NT_STATUS_UNSUCCESSFUL;
-	}
-
-	*group=(SAM_GROUP_HANDLE *)talloc(mem_ctx, sizeof(SAM_GROUP_HANDLE));
-
-	if (*group==NULL) {
-		DEBUG(0,("sam_init_group_talloc: error while allocating memory\n"));
-		return NT_STATUS_NO_MEMORY;
-	}
-
-	(*group)->mem_ctx = mem_ctx;
-
-	(*group)->free_fn = NULL;
-
-	sam_fill_default_group(*group);
-	
-	return NT_STATUS_OK;
-}
-
-
-/*************************************************************
- Alloc memory and initialises a struct SAM_GROUP_HANDLE.
- ************************************************************/
-
-NTSTATUS sam_init_group(SAM_GROUP_HANDLE **group)
-{
-	TALLOC_CTX *mem_ctx;
-	NTSTATUS nt_status;
-	
-	mem_ctx = talloc_init_named("sam internal SAM_GROUP_HANDLE allocation");
-
-	if (!mem_ctx) {
-		DEBUG(0,("sam_init_group: error while doing talloc_init()\n"));
-		return NT_STATUS_NO_MEMORY;
-	}
-
-	if (!NT_STATUS_IS_OK(nt_status = sam_init_group_talloc(mem_ctx, group))) {
-		talloc_destroy(mem_ctx);
-		return nt_status;
-	}
-	
-	(*group)->free_fn = destroy_sam_group_handle_talloc;
-
-	return NT_STATUS_OK;
-}
-
-
-/************************************************************
- Reset the SAM_GROUP_HANDLE.
- ***********************************************************/
-
-NTSTATUS sam_reset_group(SAM_GROUP_HANDLE *group)
-{
-	SMB_ASSERT(group != NULL);
-
-	sam_fill_default_group(group);
-
-	return NT_STATUS_OK;
-}
-
-
-/************************************************************
- Free the SAM_GROUP_HANDLE and the member pointers.
- ***********************************************************/
-
-NTSTATUS sam_free_group(SAM_ACCOUNT_HANDLE **group)
-{
-	SMB_ASSERT(*group != NULL);
-
-	if ((*group)->free_fn) {
-		(*group)->free_fn(group);
-	}
-
-	return NT_STATUS_OK;	
-}
-
-
-/**********************************************************
- Encode the group control bits into a string.
- length = length of string to encode into (including terminating
- null). length *MUST BE MORE THAN 2* !
- **********************************************************/
-
-char *sam_encode_acct_ctrl(uint16 group_ctrl, size_t length)
-{
-	static fstring group_str;
-	size_t i = 0;
-
-	group_str[i++] = '[';
-
-	if (group_ctrl & GCB_LOCAL_GROUP )	group_str[i++] = 'L';
-	if (group_ctrl & GCB_GLOBAL_GROUP )	group_str[i++] = 'G';
-
-	for ( ; i < length - 2 ; i++ )
-		group_str[i] = ' ';
-
-	i = length - 2;
-	group_str[i++] = ']';
-	group_str[i++] = '\0';
-
-	return group_str;
-}     
-
-/**********************************************************
- Decode the group control bits from a string.
- **********************************************************/
-
-uint16 sam_decode_group_ctrl(const char *p)
-{
-	uint16 group_ctrl = 0;
-	BOOL finished = False;
-
-	/*
-	 * Check if the account type bits have been encoded after the
-	 * NT password (in the form [NDHTUWSLXI]).
-	 */
-
-	if (*p != '[')
-		return 0;
-
-	for (p++; *p && !finished; p++) {
-		switch (*p) {
-			case 'L': { group_ctrl |= GCB_LOCAL_GROUP; break; /* 'L'ocal Aliases Group. */ } 
-			case 'G': { group_ctrl |= GCB_GLOBAL_GROUP; break; /* 'G'lobal Domain Group. */ } 
-			
-		        case ' ': { break; }
-			case ':':
-			case '\n':
-			case '\0': 
-			case ']':
-			default:  { finished = True; }
-		}
-	}
-
-	return group_ctrl;
-}
-
diff --git a/source3/sam/gumm_tdb.c b/source3/sam/gumm_tdb.c
deleted file mode 100644
index 967890e99c5..00000000000
--- a/source3/sam/gumm_tdb.c
+++ /dev/null
@@ -1,70 +0,0 @@
-/*
- * Unix SMB/CIFS implementation. 
- * SMB parameters and setup
- * Copyright (C) Andrew Tridgell 1992-1998
- * Copyright (C) Simo Sorce 2000-2002
- * Copyright (C) Gerald Carter 2000
- * Copyright (C) Jeremy Allison 2001
- * Copyright (C) Andrew Bartlett 2002
- * 
- * This program is free software; you can redistribute it and/or modify it under
- * the terms of the GNU General Public License as published by the Free
- * Software Foundation; either version 2 of the License, or (at your option)
- * any later version.
- * 
- * This program is distributed in the hope that it will be useful, but WITHOUT
- * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
- * FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License for
- * more details.
- * 
- * You should have received a copy of the GNU General Public License along with
- * this program; if not, write to the Free Software Foundation, Inc., 675
- * Mass Ave, Cambridge, MA 02139, USA.
- */
-
-#include "includes.h"
-
-static int tdbgumm_debug_level = DBGC_ALL;
-#undef DBGC_CLASS
-#define DBGC_CLASS tdbgumm_debug_level
-
-#define GUMM_VERSION		"20021012"
-#define TDB_FILE_NAME		"gums_storage.tdb"
-#define TDB_FORMAT_STRING	"B"
-#define DOMAIN_PREFIX		"DOMAIN_"
-#define USER_PREFIX		"USER_"
-#define GROUP_PREFIX		"GROUP_"
-#define SID_PREFIX		"SID_"
-
-static TDB_CONTEXT *gumm_tdb = NULL;
-
-/***************************************************************
- objects enumeration.
-****************************************************************/
-
-static NTSTATUS enumerate_objects(DOM_SID **sids, const DOM_SID *sid, const int obj_type);
-{
-	TDB_CONTEXT *enum_tdb = NULL;
-	TDB_DATA key;
-
-	/* Open tdb gums module */
-	if (!(enum_tdb = tdb_open_log(TDB_FILE_NAME, 0, TDB_DEFAULT, update?(O_RDWR|O_CREAT):O_RDONLY, 0600)))
-	{
-		DEBUG(0, ("Unable to open/create gumm tdb database\n"));
-		return NT_STATUS_UNSUCCESSFUL;
-	}
-	
-	enum_key = tdb_firstkey(enum_tdb);
-
-
-
-	tdb_close(enum_tdb);
-
-	return NT_STATUS_OK;
-}
-
-
-static NTSTATUS module_init()
-{
-}
-
diff --git a/source3/sam/gums.c b/source3/sam/gums.c
deleted file mode 100644
index 41218cee361..00000000000
--- a/source3/sam/gums.c
+++ /dev/null
@@ -1,131 +0,0 @@
-/*
-   Unix SMB/CIFS implementation.
-   Grops and Users Management System initializations.
-   Copyright (C) Simo Sorce 2002
-
-   This program is free software; you can redistribute it and/or modify
-   it under the terms of the GNU General Public License as published by
-   the Free Software Foundation; either version 2 of the License, or
-   (at your option) any later version.
-
-   This program is distributed in the hope that it will be useful,
-   but WITHOUT ANY WARRANTY; without even the implied warranty of
-   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-   GNU General Public License for more details.
-
-   You should have received a copy of the GNU General Public License
-   along with this program; if not, write to the Free Software
-   Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
-*/
-
-#include "includes.h"
-
-/*#undef DBGC_CLASS
-#define DBGC_CLASS DBGC_GUMS*/
-
-#define GMV_MAJOR 0
-#define GMV_MINOR 1
-
-GUMS_FUNCTIONS *gums_storage;
-static void *dl_handle;
-
-PRIVS privs[] = {
-	{PRIV_NONE,			"no_privs",				"No privilege"}, /* this one MUST be first */
-	{PRIV_CREATE_TOKEN,		"SeCreateToken",			"Create Token"},
-	{PRIV_ASSIGNPRIMARYTOKEN,	"SeAssignPrimaryToken",			"Assign Primary Token"},
-	{PRIV_LOCK_MEMORY,		"SeLockMemory",				"Lock Memory"},
-	{PRIV_INCREASE_QUOTA,		"SeIncreaseQuotaPrivilege",		"Increase Quota Privilege"},
-	{PRIV_MACHINE_ACCOUNT,		"SeMachineAccount",			"Machine Account"},
-	{PRIV_TCB,			"SeTCB",				"TCB"},
-	{PRIV_SECURITY,			"SeSecurityPrivilege",			"Security Privilege"},
-	{PRIV_TAKE_OWNERSHIP,		"SeTakeOwnershipPrivilege",		"Take Ownership Privilege"},
-	{PRIV_LOAD_DRIVER,		"SeLocalDriverPrivilege",		"Local Driver Privilege"},
-	{PRIV_SYSTEM_PROFILE,		"SeSystemProfilePrivilege",		"System Profile Privilege"},
-	{PRIV_SYSTEMTIME,		"SeSystemtimePrivilege",		"System Time"},
-	{PRIV_PROF_SINGLE_PROCESS,	"SeProfileSingleProcessPrivilege",	"Profile Single Process Privilege"},
-	{PRIV_INC_BASE_PRIORITY,	"SeIncreaseBasePriorityPrivilege",	"Increase Base Priority Privilege"},
-	{PRIV_CREATE_PAGEFILE,		"SeCreatePagefilePrivilege",		"Create Pagefile Privilege"},
-	{PRIV_CREATE_PERMANENT,		"SeCreatePermanent",			"Create Permanent"},
-	{PRIV_BACKUP,			"SeBackupPrivilege",			"Backup Privilege"},
-	{PRIV_RESTORE,			"SeRestorePrivilege",			"Restore Privilege"},
-	{PRIV_SHUTDOWN,			"SeShutdownPrivilege",			"Shutdown Privilege"},
-	{PRIV_DEBUG,			"SeDebugPrivilege",			"Debug Privilege"},
-	{PRIV_AUDIT,			"SeAudit",				"Audit"},
-	{PRIV_SYSTEM_ENVIRONMENT,	"SeSystemEnvironmentPrivilege",		"System Environment Privilege"},
-	{PRIV_CHANGE_NOTIFY,		"SeChangeNotify",			"Change Notify"},
-	{PRIV_REMOTE_SHUTDOWN,		"SeRemoteShutdownPrivilege",		"Remote Shutdown Privilege"},
-	{PRIV_UNDOCK,			"SeUndock",				"Undock"},
-	{PRIV_SYNC_AGENT,		"SeSynchronizationAgent",		"Synchronization Agent"},
-	{PRIV_ENABLE_DELEGATION,	"SeEnableDelegation",			"Enable Delegation"},
-	{PRIV_ALL,			"SaAllPrivs",				"All Privileges"}
-};
-
-NTSTATUS gums_init(const char *module_name)
-{
-	int (*module_version)(int);
-	NTSTATUS (*module_init)();
-/*	gums_module_init module_init;*/
-	NTSTATUS ret = NT_STATUS_UNSUCCESSFUL;
-
-	DEBUG(5, ("Opening gums module %s\n", module_name));
-	dl_handle = sys_dlopen(module_name, RTLD_NOW);
-	if (!dl_handle) {
-		DEBUG(0, ("ERROR: Failed to load gums module %s, error: %s\n", module_name, sys_dlerror()));
-		return NT_STATUS_UNSUCCESSFUL;
-	}
-
-	module_version = sys_dlsym(dl_handle, "gumm_version");
-	if (!module_version) {
-		DEBUG(0, ("ERROR: Failed to find gums module version!\n"));
-		goto error;
-	}
-
-	if (module_version(GMV_MAJOR) != GUMS_VERSION_MAJOR) {
-		DEBUG(0, ("ERROR: Module's major version does not match gums version!\n"));
-		goto error;
-	}
-
-	if (module_version(GMV_MINOR) != GUMS_VERSION_MINOR) {
-		DEBUG(1, ("WARNING: Module's minor version does not match gums version!\n"));
-	}
-
-	module_open = sys_dlsym(dl_handle, "gumm_init");
-	if (!module_open) {
-		DEBUG(0, ("ERROR: Failed to find gums module's init function!\n"));
-		goto error;
-	}
-
-	DEBUG(5, ("Initializing module %s\n", module_name));
-
-	ret = module_init(&gums_storage);
-	goto done;
-
-error:
-	ret = NT_STATUS_UNSUCCESSFUL;
-	sys_dlclose(dl_handle);
-
-done:
-	return ret;
-}
-
-NTSTATUS gums_unload(void)
-{
-	NSTATUS ret;
-	NTSTATUS (*module_finalize)();
-
-	if (!dl_handle)
-		return NT_STATUS_UNSUCCESSFUL;
-
-	module_close = sys_dlsym(dl_handle, "gumm_finalize");
-	if (!module_finalize) {
-		DEBUG(0, ("ERROR: Failed to find gums module's init function!\n"));
-		return NT_STATUS_UNSUCCESSFUL;
-	}
-
-	DEBUG(5, ("Finalizing module %s\n", module_name));
-
-	ret = module_finalize();
-	sys_dlclose(dl_handle);
-3
-	return ret;
-}
diff --git a/source3/sam/gums_api.c b/source3/sam/gums_api.c
deleted file mode 100644
index c6c8402c938..00000000000
--- a/source3/sam/gums_api.c
+++ /dev/null
@@ -1,814 +0,0 @@
-/* 
-   Unix SMB/CIFS implementation.
-   GUMS structures
-   Copyright (C) Simo Sorce 2002
-   
-   This program is free software; you can redistribute it and/or modify
-   it under the terms of the GNU General Public License as published by
-   the Free Software Foundation; either version 2 of the License, or
-   (at your option) any later version.
-   
-   This program is distributed in the hope that it will be useful,
-   but WITHOUT ANY WARRANTY; without even the implied warranty of
-   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-   GNU General Public License for more details.
-   
-   You should have received a copy of the GNU General Public License
-   along with this program; if not, write to the Free Software
-   Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
-*/
-
-#include "includes.h"
-
-extern GUMS_FUNCTIONS *gums_storage;
-
-/* Functions to get info from a GUMS object */
-
-NTSTATUS gums_get_object_type(uint32 *type, const GUMS_OBJECT *obj)
-{
-	*type = obj->type;
-	return NT_STATUS_OK;
-}
-
-NTSTATUS gums_get_object_seq_num(uint32 *version, const GUMS_OBJECT *obj)
-{
-	*version = obj->version;
-	return NT_STATUS_OK;
-}
-
-NTSTATUS gums_get_sec_desc(SEC_DESC **sec_desc, const GUMS_OBJECT *obj)
-{
-	*sec_desc = obj->sec_desc;
-	return NT_STATUS_OK;
-}
-
-NTSTATUS gums_get_object_sid(DOM_SID **sid, const GUMS_OBJECT *obj)
-{
-	*sid = obj->sid;
-	return NT_STATUS_OK;
-}
-
-NTSTATUS gums_get_object_name(char **name, const GUMS_OBJECT *obj)
-{
-	*name = obj->name;
-	return NT_STATUS_OK;
-}
-
-NTSTATUS gums_get_object_description(char **description, const GUMS_OBJECT *obj)
-{
-	*description = obj->description;
-	return NT_STATUS_OK;
-}
-
-/* User specific functions */
-
-NTSTATUS gums_get_object_privileges(PRIVILEGE_SET **priv_set, const GUMS_OBJECT *obj)
-{
-	if (!priv_set)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	*priv_set = obj->priv_set;
-	return NT_STATUS_OK;
-}
-
-NTSTATUS gums_get_user_pri_group(DOM_SID **sid, const GUMS_OBJECT *obj)
-{
-	if (obj->type != GUMS_OBJ_NORMAL_USER)
-		return NT_STATUS_OBJECT_TYPE_MISMATCH;
-	if (!sid)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	*sid = ((GUMS_USER *)(obj->data))->group_sid;
-	return NT_STATUS_OK;
-}
-
-NTSTATUS gums_get_user_nt_pwd(DATA_BLOB **nt_pwd, const GUMS_OBJECT *obj)
-{
-	if (obj->type != GUMS_OBJ_NORMAL_USER)
-		return NT_STATUS_OBJECT_TYPE_MISMATCH;
-	if (!nt_pwd)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	*nt_pwd = ((GUMS_USER *)(obj->data))->nt_pw;
-	return NT_STATUS_OK;
-}
-
-NTSTATUS gums_get_user_lm_pwd(DATA_BLOB **lm_pwd, const GUMS_OBJECT *obj)
-{ 
-	if (obj->type != GUMS_OBJ_NORMAL_USER)
-		return NT_STATUS_OBJECT_TYPE_MISMATCH;
-	if (!lm_pwd)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	*lm_pwd = ((GUMS_USER *)(obj->data))->lm_pw;
-	return NT_STATUS_OK;
-}
-
-NTSTATUS gums_get_user_fullname(char **fullname, const GUMS_OBJECT *obj)
-{
-	if (obj->type != GUMS_OBJ_NORMAL_USER)
-		return NT_STATUS_OBJECT_TYPE_MISMATCH;
-	if (!fullname)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	*fullname = ((GUMS_USER *)(obj->data))->full_name;
-	return NT_STATUS_OK;
-}
-
-NTSTATUS gums_get_user_homedir(char **homedir, const GUMS_OBJECT *obj)
-{
-	if (obj->type != GUMS_OBJ_NORMAL_USER)
-		return NT_STATUS_OBJECT_TYPE_MISMATCH;
-	if (!homedir)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	*homedir = ((GUMS_USER *)(obj->data))->home_dir;
-	return NT_STATUS_OK;
-}
-
-NTSTATUS gums_get_user_dir_drive(char **dirdrive, const GUMS_OBJECT *obj)
-{
-	if (obj->type != GUMS_OBJ_NORMAL_USER)
-		return NT_STATUS_OBJECT_TYPE_MISMATCH;
-	if (!dirdrive)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	*dirdrive = ((GUMS_USER *)(obj->data))->dir_drive;
-	return NT_STATUS_OK;
-}
-
-NTSTATUS gums_get_user_logon_script(char **logon_script, const GUMS_OBJECT *obj)
-{
-	if (obj->type != GUMS_OBJ_NORMAL_USER)
-		return NT_STATUS_OBJECT_TYPE_MISMATCH;
-	if (!logon_script)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	*logon_script = ((GUMS_USER *)(obj->data))->logon_script;
-	return NT_STATUS_OK;
-}
-
-NTSTATUS gums_get_user_profile_path(char **profile_path, const GUMS_OBJECT *obj)
-{
-	if (obj->type != GUMS_OBJ_NORMAL_USER)
-		return NT_STATUS_OBJECT_TYPE_MISMATCH;
-	if (!profile_path)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	*profile_path = ((GUMS_USER *)(obj->data))->profile_path;
-	return NT_STATUS_OK;
-}
-
-NTSTATUS gums_get_user_workstations(char **workstations, const GUMS_OBJECT *obj)
-{
-	if (obj->type != GUMS_OBJ_NORMAL_USER)
-		return NT_STATUS_OBJECT_TYPE_MISMATCH;
-	if (!workstations)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	*workstations = ((GUMS_USER *)(obj->data))->workstations;
-	return NT_STATUS_OK;
-}
-
-NTSTATUS gums_get_user_unknown_str(char **unknown_str, const GUMS_OBJECT *obj)
-{
-	if (obj->type != GUMS_OBJ_NORMAL_USER)
-		return NT_STATUS_OBJECT_TYPE_MISMATCH;
-	if (!unknown_str)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	*unknown_str = ((GUMS_USER *)(obj->data))->unknown_str;
-	return NT_STATUS_OK;
-}
-
-NTSTATUS gums_get_user_munged_dial(char **munged_dial, const GUMS_OBJECT *obj)
-{
-	if (obj->type != GUMS_OBJ_NORMAL_USER)
-		return NT_STATUS_OBJECT_TYPE_MISMATCH;
-	if (!munged_dial)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	*munged_dial = ((GUMS_USER *)(obj->data))->munged_dial;
-	return NT_STATUS_OK;
-}
-
-NTSTATUS gums_get_user_logon_time(NTTIME **logon_time, const GUMS_OBJECT *obj)
-{
-	if (obj->type != GUMS_OBJ_NORMAL_USER)
-		return NT_STATUS_OBJECT_TYPE_MISMATCH;
-	if (!logon_time)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	*logon_time = ((GUMS_USER *)(obj->data))->logon_time;
-	return NT_STATUS_OK;
-}
-
-NTSTATUS gums_get_user_logoff_time(NTTIME **logoff_time, const GUMS_OBJECT *obj)
-{
-	if (obj->type != GUMS_OBJ_NORMAL_USER)
-		return NT_STATUS_OBJECT_TYPE_MISMATCH;
-	if (!logoff_time)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	*logoff_time = ((GUMS_USER *)(obj->data))->logoff_time;
-	return NT_STATUS_OK;
-}
-
-NTSTATUS gums_get_user_kickoff_time(NTTIME **kickoff_time, const GUMS_OBJECT *obj)
-{
-	if (obj->type != GUMS_OBJ_NORMAL_USER)
-		return NT_STATUS_OBJECT_TYPE_MISMATCH;
-	if (!kickoff_time)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	*kickoff_time = ((GUMS_USER *)(obj->data))->kickoff_time;
-	return NT_STATUS_OK;
-}
-
-NTSTATUS gums_get_user_pass_last_set_time(NTTIME **pass_last_set_time, const GUMS_OBJECT *obj)
-{
-	if (obj->type != GUMS_OBJ_NORMAL_USER)
-		return NT_STATUS_OBJECT_TYPE_MISMATCH;
-	if (!pass_last_set_time)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	*pass_last_set_time = ((GUMS_USER *)(obj->data))->pass_last_set_time;
-	return NT_STATUS_OK;
-}
-
-NTSTATUS gums_get_user_pass_can_change_time(NTTIME **pass_can_change_time, const GUMS_OBJECT *obj)
-{
-	if (obj->type != GUMS_OBJ_NORMAL_USER)
-		return NT_STATUS_OBJECT_TYPE_MISMATCH;
-	if (!pass_can_change_time)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	*pass_can_change_time = ((GUMS_USER *)(obj->data))->pass_can_change_time;
-	return NT_STATUS_OK;
-}
-
-NTSTATUS gums_get_user_pass_must_change_time(NTTIME **pass_must_change_time, const GUMS_OBJECT *obj)
-{
-	if (obj->type != GUMS_OBJ_NORMAL_USER)
-		return NT_STATUS_OBJECT_TYPE_MISMATCH;
-	if (!pass_must_change_time)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	*pass_must_change_time = ((GUMS_USER *)(obj->data))->pass_must_change_time;
-	return NT_STATUS_OK;
-}
-
-NTSTATUS gums_get_user_logon_divs(uint16 *logon_divs, const GUMS_OBJECT *obj)
-{
-	if (obj->type != GUMS_OBJ_NORMAL_USER)
-		return NT_STATUS_OBJECT_TYPE_MISMATCH;
-	if (!logon_divs)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	*logon_divs = ((GUMS_USER *)(obj->data))->logon_divs;
-	return NT_STATUS_OK;
-}
-
-NTSTATUS gums_get_user_hours_len(uint32 *hours_len, const GUMS_OBJECT *obj)
-{
-	if (obj->type != GUMS_OBJ_NORMAL_USER)
-		return NT_STATUS_OBJECT_TYPE_MISMATCH;
-	if (!hours_len)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	*hours_len = ((GUMS_USER *)(obj->data))->hours_len;
-	return NT_STATUS_OK;
-}
-
-NTSTATUS gums_get_user_hours(uint8 **hours, const GUMS_OBJECT *obj)
-{
-	if (obj->type != GUMS_OBJ_NORMAL_USER)
-		return NT_STATUS_OBJECT_TYPE_MISMATCH;
-	if (!hours)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	*hours = ((GUMS_USER *)(obj->data))->hours;
-	return NT_STATUS_OK;
-}
-
-NTSTATUS gums_get_user_unknown_3(uint32 *unknown3, const GUMS_OBJECT *obj)
-{
-	if (obj->type != GUMS_OBJ_NORMAL_USER)
-		return NT_STATUS_OBJECT_TYPE_MISMATCH;
-	if (!unknown3)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	*unknown3 = ((GUMS_USER *)(obj->data))->unknown_3;
-	return NT_STATUS_OK;
-}
-
-NTSTATUS gums_get_user_unknown_5(uint32 *unknown5, const GUMS_OBJECT *obj)
-{
-	if (obj->type != GUMS_OBJ_NORMAL_USER)
-		return NT_STATUS_OBJECT_TYPE_MISMATCH;
-	if (!unknown5)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	*unknown5 = ((GUMS_USER *)(obj->data))->unknown_5;
-	return NT_STATUS_OK;
-}
-
-NTSTATUS gums_get_user_unknown_6(uint32 *unknown6, const GUMS_OBJECT *obj)
-{
-	if (obj->type != GUMS_OBJ_NORMAL_USER)
-		return NT_STATUS_OBJECT_TYPE_MISMATCH;
-	if (!unknown6)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	*unknown6 = ((GUMS_USER *)(obj->data))->unknown_6;
-	return NT_STATUS_OK;
-}
-
-/* Group specific functions */
-
-NTSTATUS gums_get_group_members(uint32 *count, DOM_SID **members, const GUMS_OBJECT *obj)
-{
-	if (obj->type != GUMS_OBJ_GROUP &&
-		obj->type != GUMS_OBJ_ALIAS)
-			return NT_STATUS_OBJECT_TYPE_MISMATCH;
-	if (!members)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	*count = ((GUMS_GROUP *)(obj->data))->count;
-	*members = ((GUMS_GROUP *)(obj->data))->members;
-	return NT_STATUS_OK;
-}
-
-/* set functions */
-
-NTSTATUS gums_create_data_set(GUMS_COMMIT_SET **com_set, TALLOC_CTX *ctx, DOM_SID *sid, uint32 type)
-{
-	TALLOC_CTX *mem_ctx;
-	GUMS_COMMIT_SET *set;
-
-	mem_ctx = talloc_init_named("commit_set");
-	if (mem_ctx == NULL)
-		return NT_STATUS_NO_MEMORY;
-	set = (GUMS_COMMIT_SET *)talloc(mem_ctx, sizeof(GUMS_COMMIT_SET));
-	if (set == NULL) {
-		talloc_destroy(mem_ctx);
-		return NT_STATUS_NO_MEMORY;
-	}
-
-	set->mem_ctx = mem_ctx;
-	set->type = type;
-	sid_copy(&(set->sid), sid);
-	set->count = 0;
-	set->data = NULL;
-	*com_set = set;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS gums_set_sec_desc(TALLOC_CTX *mem_ctx, GUMS_COMMIT_SET *com_set, SEC_DESC *sec_desc)
-{
-	GUMS_DATA_SET *data_set;
-	SEC_DESC *new_sec_desc;
-
-	if (!mem_ctx || !com_set || !sec_desc)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	com_set->count = com_set->count + 1;
-	if (com_set->count == 1) { /* first data set */
-		data_set = (GUMS_DATA_SET *)talloc(mem_ctx, sizeof(GUMS_DATA_SET));
-	} else {
-		data_set = (GUMS_DATA_SET *)talloc_realloc(mem_ctx, com_set->data, sizeof(GUMS_DATA_SET) * com_set->count);
-	}
-	if (data_set == NULL)
-		return NT_STATUS_NO_MEMORY;
-
-	com_set->data = data_set;
-	data_set = &((com_set->data)[com_set->count - 1]);
-	
-	data_set->type = GUMS_SET_SEC_DESC;
-	new_sec_desc = dup_sec_desc(mem_ctx, sec_desc);
-	if (new_sec_desc == NULL)
-		return NT_STATUS_NO_MEMORY;
-
-	(SEC_DESC *)(data_set->data) = new_sec_desc;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS gums_add_privilege(TALLOC_CTX *mem_ctx, GUMS_COMMIT_SET *com_set, LUID_ATTR priv)
-{
-	GUMS_DATA_SET *data_set;
-	LUID_ATTR *new_priv;
-
-	if (!mem_ctx || !com_set)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	com_set->count = com_set->count + 1;
-	if (com_set->count == 1) { /* first data set */
-		data_set = (GUMS_DATA_SET *)talloc(mem_ctx, sizeof(GUMS_DATA_SET));
-	} else {
-		data_set = (GUMS_DATA_SET *)talloc_realloc(mem_ctx, com_set->data, sizeof(GUMS_DATA_SET) * com_set->count);
-	}
-	if (data_set == NULL)
-		return NT_STATUS_NO_MEMORY;
-
-	com_set->data = data_set;
-	data_set = &((com_set->data)[com_set->count - 1]);
-	
-	data_set->type = GUMS_ADD_PRIVILEGE;
-	if (NT_STATUS_IS_ERR(dupalloc_luid_attr(mem_ctx, &new_priv, priv)))
-		return NT_STATUS_NO_MEMORY;
-
-	(SEC_DESC *)(data_set->data) = new_priv;
-
-	return NT_STATUS_OK;	
-}
-
-NTSTATUS gums_del_privilege(TALLOC_CTX *mem_ctx, GUMS_COMMIT_SET *com_set, LUID_ATTR priv)
-{
-	GUMS_DATA_SET *data_set;
-	LUID_ATTR *new_priv;
-
-	if (!mem_ctx || !com_set)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	com_set->count = com_set->count + 1;
-	if (com_set->count == 1) { /* first data set */
-		data_set = (GUMS_DATA_SET *)talloc(mem_ctx, sizeof(GUMS_DATA_SET));
-	} else {
-		data_set = (GUMS_DATA_SET *)talloc_realloc(mem_ctx, com_set->data, sizeof(GUMS_DATA_SET) * com_set->count);
-	}
-	if (data_set == NULL)
-		return NT_STATUS_NO_MEMORY;
-
-	com_set->data = data_set;
-	data_set = &((com_set->data)[com_set->count - 1]);
-	
-	data_set->type = GUMS_DEL_PRIVILEGE;
-	if (NT_STATUS_IS_ERR(dupalloc_luid_attr(mem_ctx, &new_priv, priv)))
-		return NT_STATUS_NO_MEMORY;
-
-	(SEC_DESC *)(data_set->data) = new_priv;
-
-	return NT_STATUS_OK;	
-}
-
-NTSTATUS gums_set_privilege_set(TALLOC_CTX *mem_ctx, GUMS_COMMIT_SET *com_set, PRIVILEGE_SET *priv_set)
-{
-	GUMS_DATA_SET *data_set;
-	PRIVILEGE_SET *new_priv_set;
-
-	if (!mem_ctx || !com_set || !priv_set)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	com_set->count = com_set->count + 1;
-	if (com_set->count == 1) { /* first data set */
-		data_set = (GUMS_DATA_SET *)talloc(mem_ctx, sizeof(GUMS_DATA_SET));
-	} else {
-		data_set = (GUMS_DATA_SET *)talloc_realloc(mem_ctx, com_set->data, sizeof(GUMS_DATA_SET) * com_set->count);
-	}
-	if (data_set == NULL)
-		return NT_STATUS_NO_MEMORY;
-
-	com_set->data = data_set;
-	data_set = &((com_set->data)[com_set->count - 1]);
-	
-	data_set->type = GUMS_SET_SEC_DESC;
-	if (NT_STATUS_IS_ERR(dup_priv_set(&new_priv_set, mem_ctx, priv_set)))
-		return NT_STATUS_NO_MEMORY;
-
-	(SEC_DESC *)(data_set->data) = new_priv_set;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS gums_set_string(TALLOC_CTX *mem_ctx, GUMS_COMMIT_SET *com_set, uint32 type, char *str)
-{
-	GUMS_DATA_SET *data_set;
-	char *new_str;
-
-	if (!mem_ctx || !com_set || !str || type < GUMS_SET_NAME || type > GUMS_SET_MUNGED_DIAL)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	com_set->count = com_set->count + 1;
-	if (com_set->count == 1) { /* first data set */
-		data_set = (GUMS_DATA_SET *)talloc(mem_ctx, sizeof(GUMS_DATA_SET));
-	} else {
-		data_set = (GUMS_DATA_SET *)talloc_realloc(mem_ctx, com_set->data, sizeof(GUMS_DATA_SET) * com_set->count);
-	}
-	if (data_set == NULL)
-		return NT_STATUS_NO_MEMORY;
-
-	com_set->data = data_set;
-	data_set = &((com_set->data)[com_set->count - 1]);
-	
-	data_set->type = type;
-	new_str = talloc_strdup(mem_ctx, str);
-	if (new_str == NULL)
-		return NT_STATUS_NO_MEMORY;
-
-	(char *)(data_set->data) = new_str;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS gums_set_name(TALLOC_CTX *mem_ctx, GUMS_COMMIT_SET *com_set, char *name)
-{
-	return gums_set_string(mem_ctx, com_set, GUMS_SET_NAME, name);
-}
-
-NTSTATUS gums_set_description(TALLOC_CTX *mem_ctx, GUMS_COMMIT_SET *com_set, char *desc)
-{
-	return gums_set_string(mem_ctx, com_set, GUMS_SET_DESCRIPTION, desc);
-}
-
-NTSTATUS gums_set_full_name(TALLOC_CTX *mem_ctx, GUMS_COMMIT_SET *com_set, char *full_name)
-{
-	if (com_set->type != GUMS_OBJ_NORMAL_USER)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	return gums_set_string(mem_ctx, com_set, GUMS_SET_NAME, full_name);
-}
-
-NTSTATUS gums_set_home_directory(TALLOC_CTX *mem_ctx, GUMS_COMMIT_SET *com_set, char *home_dir)
-{
-	if (com_set->type != GUMS_OBJ_NORMAL_USER)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	return gums_set_string(mem_ctx, com_set, GUMS_SET_NAME, home_dir);
-}
-
-NTSTATUS gums_set_drive(TALLOC_CTX *mem_ctx, GUMS_COMMIT_SET *com_set, char *drive)
-{
-	if (com_set->type != GUMS_OBJ_NORMAL_USER)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	return gums_set_string(mem_ctx, com_set, GUMS_SET_NAME, drive);
-}
-
-NTSTATUS gums_set_logon_script(TALLOC_CTX *mem_ctx, GUMS_COMMIT_SET *com_set, char *logon_script)
-{
-	if (com_set->type != GUMS_OBJ_NORMAL_USER)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	return gums_set_string(mem_ctx, com_set, GUMS_SET_NAME, logon_script);
-}
-
-NTSTATUS gums_set_profile_path(TALLOC_CTX *mem_ctx, GUMS_COMMIT_SET *com_set, char *prof_path)
-{
-	if (com_set->type != GUMS_OBJ_NORMAL_USER)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	return gums_set_string(mem_ctx, com_set, GUMS_SET_NAME, prof_path);
-}
-
-NTSTATUS gums_set_workstations(TALLOC_CTX *mem_ctx, GUMS_COMMIT_SET *com_set, char *wks)
-{
-	if (com_set->type != GUMS_OBJ_NORMAL_USER)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	return gums_set_string(mem_ctx, com_set, GUMS_SET_NAME, wks);
-}
-
-NTSTATUS gums_set_unknown_string(TALLOC_CTX *mem_ctx, GUMS_COMMIT_SET *com_set, char *unkn_str)
-{
-	if (com_set->type != GUMS_OBJ_NORMAL_USER)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	return gums_set_string(mem_ctx, com_set, GUMS_SET_NAME, unkn_str);
-}
-
-NTSTATUS gums_set_munged_dial(TALLOC_CTX *mem_ctx, GUMS_COMMIT_SET *com_set, char *munged_dial)
-{
-	if (com_set->type != GUMS_OBJ_NORMAL_USER)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	return gums_set_string(mem_ctx, com_set, GUMS_SET_NAME, munged_dial);
-}
-
-NTSTATUS gums_set_nttime(TALLOC_CTX *mem_ctx, GUMS_COMMIT_SET *com_set, uint32 type, NTTIME *time)
-{
-	GUMS_DATA_SET *data_set;
-	NTTIME *new_time;
-
-	if (!mem_ctx || !com_set || !time || type < GUMS_SET_LOGON_TIME || type > GUMS_SET_PASS_MUST_CHANGE_TIME)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	com_set->count = com_set->count + 1;
-	if (com_set->count == 1) { /* first data set */
-		data_set = (GUMS_DATA_SET *)talloc(mem_ctx, sizeof(GUMS_DATA_SET));
-	} else {
-		data_set = (GUMS_DATA_SET *)talloc_realloc(mem_ctx, com_set->data, sizeof(GUMS_DATA_SET) * com_set->count);
-	}
-	if (data_set == NULL)
-		return NT_STATUS_NO_MEMORY;
-
-	com_set->data = data_set;
-	data_set = &((com_set->data)[com_set->count - 1]);
-	
-	data_set->type = type;
-	new_time = talloc(mem_ctx, sizeof(NTTIME));
-	if (new_time == NULL)
-		return NT_STATUS_NO_MEMORY;
-
-	new_time->low = time->low;
-	new_time->high = time->high;
-	(char *)(data_set->data) = new_time;
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS gums_set_logon_time(TALLOC_CTX *mem_ctx, GUMS_COMMIT_SET *com_set, NTTIME *logon_time)
-{
-	if (com_set->type != GUMS_OBJ_NORMAL_USER)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	return gums_set_nttime(mem_ctx, com_set, GUMS_SET_LOGON_TIME, logon_time);
-}
-
-NTSTATUS gums_set_logoff_time(TALLOC_CTX *mem_ctx, GUMS_COMMIT_SET *com_set, NTTIME *logoff_time)
-{
-	if (com_set->type != GUMS_OBJ_NORMAL_USER)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	return gums_set_nttime(mem_ctx, com_set, GUMS_SET_LOGOFF_TIME, logoff_time);
-}
-
-NTSTATUS gums_set_kickoff_time(TALLOC_CTX *mem_ctx, GUMS_COMMIT_SET *com_set, NTTIME *kickoff_time)
-{
-	if (com_set->type != GUMS_OBJ_NORMAL_USER)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	return gums_set_nttime(mem_ctx, com_set, GUMS_SET_KICKOFF_TIME, kickoff_time);
-}
-
-NTSTATUS gums_set_pass_last_set_time(TALLOC_CTX *mem_ctx, GUMS_COMMIT_SET *com_set, NTTIME *pls_time)
-{
-	if (com_set->type != GUMS_OBJ_NORMAL_USER)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	return gums_set_nttime(mem_ctx, com_set, GUMS_SET_LOGON_TIME, pls_time);
-}
-
-NTSTATUS gums_set_pass_can_change_time(TALLOC_CTX *mem_ctx, GUMS_COMMIT_SET *com_set, NTTIME *pcc_time)
-{
-	if (com_set->type != GUMS_OBJ_NORMAL_USER)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	return gums_set_nttime(mem_ctx, com_set, GUMS_SET_LOGON_TIME, pcc_time);
-}
-
-NTSTATUS gums_set_pass_must_change_time(TALLOC_CTX *mem_ctx, GUMS_COMMIT_SET *com_set, NTTIME *pmc_time)
-{
-	if (com_set->type != GUMS_OBJ_NORMAL_USER)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	return gums_set_nttime(mem_ctx, com_set, GUMS_SET_LOGON_TIME, pmc_time);
-}
-
-NTSTATUS gums_add_sids_to_group(TALLOC_CTX *mem_ctx, GUMS_COMMIT_SET *com_set, const DOM_SID **sids, const uint32 count)
-{
-	GUMS_DATA_SET *data_set;
-	DOM_SID **new_sids;
-	int i;
-
-	if (!mem_ctx || !com_set || !sids)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	com_set->count = com_set->count + 1;
-	if (com_set->count == 1) { /* first data set */
-		data_set = (GUMS_DATA_SET *)talloc(mem_ctx, sizeof(GUMS_DATA_SET));
-	} else {
-		data_set = (GUMS_DATA_SET *)talloc_realloc(mem_ctx, com_set->data, sizeof(GUMS_DATA_SET) * com_set->count);
-	}
-	if (data_set == NULL)
-		return NT_STATUS_NO_MEMORY;
-
-	com_set->data = data_set;
-	data_set = &((com_set->data)[com_set->count - 1]);
-	
-	data_set->type = GUMS_ADD_SID_LIST;
-	new_sids = (DOM_SID **)talloc(mem_ctx, (sizeof(void *) * count));
-	if (new_sids == NULL)
-		return NT_STATUS_NO_MEMORY;
-	for (i = 0; i < count; i++) {
-		new_sids[i] = sid_dup_talloc(mem_ctx, sids[i]);
-		if (new_sids[i] == NULL)
-			return NT_STATUS_NO_MEMORY;
-	}
-
-	(SEC_DESC *)(data_set->data) = new_sids;
-
-	return NT_STATUS_OK;	
-}
-
-NTSTATUS gums_add_users_to_group(TALLOC_CTX *mem_ctx, GUMS_COMMIT_SET *com_set, const DOM_SID **sids, const uint32 count)
-{
-	if (!mem_ctx || !com_set || !sids)
-		return NT_STATUS_INVALID_PARAMETER;
-	if (com_set->type != GUMS_OBJ_GROUP || com_set->type != GUMS_OBJ_ALIAS)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	return gums_add_sids_to_group(mem_ctx, com_set, sids, count);	
-}
-
-NTSTATUS gums_add_groups_to_group(TALLOC_CTX *mem_ctx, GUMS_COMMIT_SET *com_set, const DOM_SID **sids, const uint32 count)
-{
-	if (!mem_ctx || !com_set || !sids)
-		return NT_STATUS_INVALID_PARAMETER;
-	if (com_set->type != GUMS_OBJ_ALIAS)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	return gums_add_sids_to_group(mem_ctx, com_set, sids, count);	
-}
-
-NTSTATUS gums_del_sids_from_group(TALLOC_CTX *mem_ctx, GUMS_COMMIT_SET *com_set, const DOM_SID **sids, const uint32 count)
-{
-	GUMS_DATA_SET *data_set;
-	DOM_SID **new_sids;
-	int i;
-
-	if (!mem_ctx || !com_set || !sids)
-		return NT_STATUS_INVALID_PARAMETER;
-	if (com_set->type != GUMS_OBJ_GROUP || com_set->type != GUMS_OBJ_ALIAS)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	com_set->count = com_set->count + 1;
-	if (com_set->count == 1) { /* first data set */
-		data_set = (GUMS_DATA_SET *)talloc(mem_ctx, sizeof(GUMS_DATA_SET));
-	} else {
-		data_set = (GUMS_DATA_SET *)talloc_realloc(mem_ctx, com_set->data, sizeof(GUMS_DATA_SET) * com_set->count);
-	}
-	if (data_set == NULL)
-		return NT_STATUS_NO_MEMORY;
-
-	com_set->data = data_set;
-	data_set = &((com_set->data)[com_set->count - 1]);
-	
-	data_set->type = GUMS_DEL_SID_LIST;
-	new_sids = (DOM_SID **)talloc(mem_ctx, (sizeof(void *) * count));
-	if (new_sids == NULL)
-		return NT_STATUS_NO_MEMORY;
-	for (i = 0; i < count; i++) {
-		new_sids[i] = sid_dup_talloc(mem_ctx, sids[i]);
-		if (new_sids[i] == NULL)
-			return NT_STATUS_NO_MEMORY;
-	}
-
-	(SEC_DESC *)(data_set->data) = new_sids;
-
-	return NT_STATUS_OK;	
-}
-
-NTSTATUS gums_set_sids_in_group(TALLOC_CTX *mem_ctx, GUMS_COMMIT_SET *com_set, const DOM_SID **sids, const uint32 count)
-{
-	GUMS_DATA_SET *data_set;
-	DOM_SID **new_sids;
-	int i;
-
-	if (!mem_ctx || !com_set || !sids)
-		return NT_STATUS_INVALID_PARAMETER;
-	if (com_set->type != GUMS_OBJ_GROUP || com_set->type != GUMS_OBJ_ALIAS)
-		return NT_STATUS_INVALID_PARAMETER;
-
-	com_set->count = com_set->count + 1;
-	if (com_set->count == 1) { /* first data set */
-		data_set = (GUMS_DATA_SET *)talloc(mem_ctx, sizeof(GUMS_DATA_SET));
-	} else {
-		data_set = (GUMS_DATA_SET *)talloc_realloc(mem_ctx, com_set->data, sizeof(GUMS_DATA_SET) * com_set->count);
-	}
-	if (data_set == NULL)
-		return NT_STATUS_NO_MEMORY;
-
-	com_set->data = data_set;
-	data_set = &((com_set->data)[com_set->count - 1]);
-	
-	data_set->type = GUMS_SET_SID_LIST;
-	new_sids = (DOM_SID **)talloc(mem_ctx, (sizeof(void *) * count));
-	if (new_sids == NULL)
-		return NT_STATUS_NO_MEMORY;
-	for (i = 0; i < count; i++) {
-		new_sids[i] = sid_dup_talloc(mem_ctx, sids[i]);
-		if (new_sids[i] == NULL)
-			return NT_STATUS_NO_MEMORY;
-	}
-
-	(SEC_DESC *)(data_set->data) = new_sids;
-
-	return NT_STATUS_OK;	
-}
-
-
-NTSTATUS gums_commit_data(GUMS_COMMIT_SET *set)
-{
-	return gums_storage->set_object_values(set->sid, set->count, set->data);
-}
-
-NTSTATUS gums_destroy_data_set(GUMS_COMMIT_SET **com_set)
-{
-	talloc_destroy((*com_set)->mem_ctx);
-	*com_set = NULL;
-
-	return NT_STATUS_OK;
-}
-
diff --git a/source3/sam/gums_helper.c b/source3/sam/gums_helper.c
deleted file mode 100644
index d581d6574e2..00000000000
--- a/source3/sam/gums_helper.c
+++ /dev/null
@@ -1,607 +0,0 @@
-/*
-   Unix SMB/CIFS implementation.
-   GUMS backends helper functions
-   Copyright (C) Simo Sorce 2002
-   
-   This program is free software; you can redistribute it and/or modify
-   it under the terms of the GNU General Public License as published by
-   the Free Software Foundation; either version 2 of the License, or
-   (at your option) any later version.
-   
-   This program is distributed in the hope that it will be useful,
-   but WITHOUT ANY WARRANTY; without even the implied warranty of
-   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-   GNU General Public License for more details.
-   
-   You should have received a copy of the GNU General Public License
-   along with this program; if not, write to the Free Software
-   Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
-*/
-
-#include "includes.h"
-
-extern GUMS_FUNCTIONS *gums_storage;
-
-extern DOM_SID global_sid_World;
-extern DOM_SID global_sid_Builtin_Administrators;
-extern DOM_SID global_sid_Builtin_Power_Users;
-extern DOM_SID global_sid_Builtin_Account_Operators;
-extern DOM_SID global_sid_Builtin_Server_Operators;
-extern DOM_SID global_sid_Builtin_Print_Operators;
-extern DOM_SID global_sid_Builtin_Backup_Operators;
-extern DOM_SID global_sid_Builtin_Replicator;
-extern DOM_SID global_sid_Builtin_Users;
-extern DOM_SID global_sid_Builtin_Guests;
-
-
-/* defines */
-
-#define ALLOC_CHECK(str, ptr, err, label) do { if ((ptr) == NULL) { DEBUG(0, ("%s: out of memory!\n", str)); err = NT_STATUS_NO_MEMORY; goto label; } } while(0)
-#define NTSTATUS_CHECK(str1, str2, err, label) do { if (NT_STATUS_IS_ERR(err)) { DEBUG(0, ("%s: %s failed!\n", str1, str2)); } } while(0)
-
-/****************************************************************************
- Check if a user is a mapped group.
-
-   This function will check if the group SID is mapped onto a
-   system managed gid or onto a winbind manged sid.
-   In the first case it will be threated like a mapped group
-   and the backend should take the member list with a getgrgid
-   and ignore any user that have been possibly set into the group
-   object.
-
-   In the second case, the group is a fully SAM managed group
-   served back to the system through winbind. In this case the
-   members of a Local group are "unrolled" to cope with the fact
-   that unix cannot contain groups inside groups.
-   The backend MUST never call any getgr* / getpw* function or
-   loops with winbind may happen. 
- ****************************************************************************/
-
-/*
-NTSTATUS is_mapped_group(BOOL *mapped, const DOM_SID *sid)
-{
-	NTSTATUS result;
-	gid_t id;
-
-	/* look if mapping exist, do not make idmap alloc an uid if SID is not found * /
-	result = idmap_get_gid_from_sid(&id, sid, False);
-	if (NT_STATUS_IS_OK(result)) {
-		*mapped = gid_is_in_winbind_range(id);
-	} else {
-		*mapped = False;
-	}
-
-	return result;
-}
-*/
-
-/****************************************************************************
- duplicate alloc luid_attr
- ****************************************************************************/
-NTSTATUS dupalloc_luid_attr(TALLOC_CTX *ctx, LUID_ATTR **new_la, LUID_ATTR old_la)
-{
-	*new_la = (LUID_ATTR *)talloc(ctx, sizeof(LUID_ATTR));
-	if (*new_la == NULL) {
-		DEBUG(0,("dupalloc_luid_attr: could not Alloc memory to duplicate LUID_ATTR\n"));
-		return NT_STATUS_NO_MEMORY;
-	}
-
-	(*new_la)->luid.high = old_la.luid.high;
-	(*new_la)->luid.low = old_la.luid.low;
-	(*new_la)->attr = old_la.attr;
-	
-	return NT_STATUS_OK;	
-}
-
-/****************************************************************************
- initialise a privilege list
- ****************************************************************************/
-void init_privilege(PRIVILEGE_SET *priv_set)
-{
-	priv_set->count=0;
-	priv_set->control=0;
-	priv_set->set=NULL;
-}
-
-/****************************************************************************
- add a privilege to a privilege array
- ****************************************************************************/
-NTSTATUS add_privilege(PRIVILEGE_SET *priv_set, TALLOC_CTX *ctx, LUID_ATTR set)
-{
-	LUID_ATTR *new_set;
-
-	/* check if the privilege is not already in the list */
-	if (check_priv_in_privilege(priv_set, set))
-		return NT_STATUS_UNSUCCESSFUL;
-
-	/* we can allocate memory to add the new privilege */
-
-	new_set=(LUID_ATTR *)talloc_realloc(ctx, priv_set->set, (priv_set->count+1)*(sizeof(LUID_ATTR)));
-	if (new_set==NULL) {
-		DEBUG(0,("add_privilege: could not Realloc memory to add a new privilege\n"));
-		return NT_STATUS_NO_MEMORY;
-	}
-
-	new_set[priv_set->count].luid.high=set.luid.high;
-	new_set[priv_set->count].luid.low=set.luid.low;
-	new_set[priv_set->count].attr=set.attr;
-	
-	priv_set->count++;
-	priv_set->set=new_set;
-	
-	return NT_STATUS_OK;	
-}
-
-/****************************************************************************
- add all the privileges to a privilege array
- ****************************************************************************/
-NTSTATUS add_all_privilege(PRIVILEGE_SET *priv_set, TALLOC_CTX *ctx)
-{
-	NTSTATUS result = NT_STATUS_OK;
-	LUID_ATTR set;
-
-	set.attr=0;
-	set.luid.high=0;
-	
-	set.luid.low=SE_PRIV_ADD_USERS;
-	result = add_privilege(priv_set, ctx, set);
-	NTSTATUS_CHECK("add_all_privilege", "add_privilege", result, done);
-	
-	set.luid.low=SE_PRIV_ADD_MACHINES;
-	result = add_privilege(priv_set, ctx, set);
-	NTSTATUS_CHECK("add_all_privilege", "add_privilege", result, done);
-
-	set.luid.low=SE_PRIV_PRINT_OPERATOR;
-	result = add_privilege(priv_set, ctx, set);
-	NTSTATUS_CHECK("add_all_privilege", "add_privilege", result, done);
-	
-done:
-	return result;
-}
-
-/****************************************************************************
- check if the privilege list is empty
- ****************************************************************************/
-BOOL check_empty_privilege(PRIVILEGE_SET *priv_set)
-{
-	return (priv_set->count == 0);
-}
-
-/****************************************************************************
- check if the privilege is in the privilege list
- ****************************************************************************/
-BOOL check_priv_in_privilege(PRIVILEGE_SET *priv_set, LUID_ATTR set)
-{
-	int i;
-
-	/* if the list is empty, obviously we can't have it */
-	if (check_empty_privilege(priv_set))
-		return False;
-
-	for (i=0; i<priv_set->count; i++) {
-		LUID_ATTR *cur_set;
-
-		cur_set=&priv_set->set[i];
-		/* check only the low and high part. Checking the attr field has no meaning */
-		if( (cur_set->luid.low==set.luid.low) && (cur_set->luid.high==set.luid.high) )
-			return True;
-	}
-
-	return False;
-}
-
-/****************************************************************************
- remove a privilege from a privilege array
- ****************************************************************************/
-NTSTATUS remove_privilege(PRIVILEGE_SET *priv_set, TALLOC_CTX *ctx, LUID_ATTR set)
-{
-	LUID_ATTR *new_set;
-	LUID_ATTR *old_set;
-	int i,j;
-
-	/* check if the privilege is in the list */
-	if (!check_priv_in_privilege(priv_set, set))
-		return NT_STATUS_UNSUCCESSFUL;
-
-	/* special case if it's the only privilege in the list */
-	if (priv_set->count==1) {
-		init_privilege(priv_set);	
-		return NT_STATUS_OK;
-	}
-
-	/* 
-	 * the privilege is there, create a new list,
-	 * and copy the other privileges
-	 */
-
-	old_set = priv_set->set;
-
-	new_set=(LUID_ATTR *)talloc(ctx, (priv_set->count - 1) * (sizeof(LUID_ATTR)));
-	if (new_set==NULL) {
-		DEBUG(0,("remove_privilege: could not malloc memory for new privilege list\n"));
-		return NT_STATUS_NO_MEMORY;
-	}
-
-	for (i=0, j=0; i<priv_set->count; i++) {
-		if ((old_set[i].luid.low == set.luid.low) && 
-		    (old_set[i].luid.high == set.luid.high)) {
-		    	continue;
-		}
-		
-		new_set[j].luid.low = old_set[i].luid.low;
-		new_set[j].luid.high = old_set[i].luid.high;
-		new_set[j].attr = old_set[i].attr;
-
-		j++;
-	}
-	
-	if (j != priv_set->count - 1) {
-		DEBUG(0,("remove_privilege: mismatch ! difference is not -1\n"));
-		DEBUGADD(0,("old count:%d, new count:%d\n", priv_set->count, j));
-		return NT_STATUS_INTERNAL_ERROR;
-	}
-		
-	/* ok everything is fine */
-	
-	priv_set->count--;
-	priv_set->set=new_set;
-	
-	return NT_STATUS_OK;	
-}
-
-/****************************************************************************
- duplicates a privilege array
- ****************************************************************************/
-NTSTATUS dup_priv_set(PRIVILEGE_SET **new_priv_set, TALLOC_CTX *mem_ctx, PRIVILEGE_SET *priv_set)
-{
-	LUID_ATTR *new_set;
-	LUID_ATTR *old_set;
-	int i;
-
-	*new_priv_set = (PRIVILEGE_SET *)talloc(mem_ctx, sizeof(PRIVILEGE_SET));
-	init_privilege(*new_priv_set);	
-
-	/* special case if there are no privileges in the list */
-	if (priv_set->count == 0) {
-		return NT_STATUS_OK;
-	}
-
-	/* 
-	 * create a new list,
-	 * and copy the other privileges
-	 */
-
-	old_set = priv_set->set;
-
-	new_set = (LUID_ATTR *)talloc(mem_ctx, (priv_set->count - 1) * (sizeof(LUID_ATTR)));
-	if (new_set==NULL) {
-		DEBUG(0,("remove_privilege: could not malloc memory for new privilege list\n"));
-		return NT_STATUS_NO_MEMORY;
-	}
-
-	for (i=0; i < priv_set->count; i++) {
-		
-		new_set[i].luid.low = old_set[i].luid.low;
-		new_set[i].luid.high = old_set[i].luid.high;
-		new_set[i].attr = old_set[i].attr;
-	}
-			
-	(*new_priv_set)->count = priv_set->count;
-	(*new_priv_set)->control = priv_set->control;
-	(*new_priv_set)->set = new_set;
-	
-	return NT_STATUS_OK;	
-}
-
-#define ALIAS_DEFAULT_SACL_SA_RIGHTS	0x01050013
-#define ALIAS_DEFAULT_DACL_SA_RIGHTS \
-		(READ_CONTROL_ACCESS		| \
-		SA_RIGHT_ALIAS_LOOKUP_INFO	| \
-		SA_RIGHT_ALIAS_GET_MEMBERS)	/* 0x0002000c */
-
-#define ALIAS_DEFAULT_SACL_SEC_ACE_FLAG (SEC_ACE_FLAG_FAILED_ACCESS | SEC_ACE_FLAG_SUCCESSFUL_ACCESS) /* 0xc0 */
-
-NTSTATUS create_builtin_alias_default_sec_desc(SEC_DESC **sec_desc, TALLOC_CTX *ctx)
-{
-	DOM_SID *world = &global_sid_World;
-	DOM_SID *admins = &global_sid_Builtin_Administrators;
-	SEC_ACCESS sa;
-	SEC_ACE sacl_ace;
-	SEC_ACE dacl_aces[2];
-	SEC_ACL *sacl = NULL;
-	SEC_ACL *dacl = NULL;
-	size_t psize;
-
-	init_sec_access(&sa, ALIAS_DEFAULT_SACL_SA_RIGHTS);
-	init_sec_ace(&sacl_ace, world, SEC_ACE_TYPE_SYSTEM_AUDIT, sa, ALIAS_DEFAULT_SACL_SEC_ACE_FLAG);
-	
-	sacl = make_sec_acl(ctx, NT4_ACL_REVISION, 1, &sacl_ace);
-	if (!sacl) {
-		DEBUG(0, ("build_init_sec_desc: Failed to make SEC_ACL.\n"));
-		return NT_STATUS_NO_MEMORY;
-	}
-
-	init_sec_access(&sa, ALIAS_DEFAULT_DACL_SA_RIGHTS);
-	init_sec_ace(&(dacl_aces[0]), world, SEC_ACE_TYPE_ACCESS_ALLOWED, sa, 0);
-	init_sec_access(&sa, SA_RIGHT_ALIAS_ALL_ACCESS);
-	init_sec_ace(&(dacl_aces[1]), admins, SEC_ACE_TYPE_ACCESS_ALLOWED, sa, 0);
-
-	dacl = make_sec_acl(ctx, NT4_ACL_REVISION, 2, dacl_aces);
-	if (!sacl) {
-		DEBUG(0, ("build_init_sec_desc: Failed to make SEC_ACL.\n"));
-		return NT_STATUS_NO_MEMORY;
-	}
-
-	*sec_desc = make_sec_desc(ctx, SEC_DESC_REVISION, admins, admins, sacl, dacl, &psize);
-	if (!(*sec_desc)) {
-		DEBUG(0,("get_share_security: Failed to make SEC_DESC.\n"));
-		return NT_STATUS_NO_MEMORY;
-	}
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sec_desc_add_ace_to_dacl(SEC_DESC *sec_desc, TALLOC_CTX *ctx, DOM_SID *sid, uint32 mask)
-{
-	NTSTATUS result;
-	SEC_ACE *new_aces;
-	unsigned num_aces;
-	int i;
-
-	num_aces = sec_desc->dacl->num_aces + 1;
-	result = sec_ace_add_sid(ctx, &new_aces, sec_desc->dacl->ace, &num_aces, sid, mask);
-	if (NT_STATUS_IS_OK(result)) {
-		sec_desc->dacl->ace = new_aces;
-		sec_desc->dacl->num_aces = num_aces;
-		sec_desc->dacl->size = SEC_ACL_HEADER_SIZE;
-		for (i = 0; i < num_aces; i++) {
-			sec_desc->dacl->size += sec_desc->dacl->ace[i].size;
-		}
-	}
-	return result;
-}
-
-NTSTATUS gums_init_builtin_groups(void)
-{
-	NTSTATUS result;
-	GUMS_OBJECT g_obj;
-	GUMS_GROUP *g_grp;
-	GUMS_PRIVILEGE g_priv;
-
-	/* Build the well known Builtin Local Groups */
-	g_obj.type = GUMS_OBJ_GROUP;
-	g_obj.version = 1;
-	g_obj.seq_num = 0;
-	g_obj.mem_ctx = talloc_init_named("gums_init_backend_acct");
-	if (g_obj.mem_ctx == NULL) {
-		DEBUG(0, ("gums_init_backend: Out of Memory!\n"));
-		return NT_STATUS_NO_MEMORY;
-	}
-
-	/* Administrators */
-
-	/* alloc group structure */
-	g_obj.data = (void *)talloc(g_obj.mem_ctx, sizeof(GUMS_OBJ_GROUP));
-	ALLOC_CHECK("gums_init_backend", g_obj.data, result, done);
-
-	/* make admins sid */
-	g_grp = (GUMS_GROUP *)g_obj.data;
-	sid_copy(g_obj.sid, &global_sid_Builtin_Administrators);
-
-	/* make security descriptor */
-	result = create_builtin_alias_default_sec_desc(&(g_obj.sec_desc), g_obj.mem_ctx); 
-	NTSTATUS_CHECK("gums_init_backend", "create_builtin_alias_default_sec_desc", result, done);
-
-	/* make privilege set */
-	/* From BDC join trace:
-		SeSecurityPrivilege
-		SeBackupPrivilege
-		SeRestorePrivilege
-		SeSystemtimePrivilege
-		SeShutdownPrivilege
-		SeRemoteShutdownPrivilege
-		SeTakeOwnershipPrivilege
-		SeDebugPrivilege
-		SeSystemEnvironmentPrivilege
-		SeSystemProfilePrivilege
-		SeProfileSingleProcessPrivilege
-		SeIncreaseBasePriorityPrivilege
-		SeLocalDriverPrivilege
-		SeCreatePagefilePrivilege
-		SeIncreaseQuotaPrivilege
-	 */
-
-	/* set name */
-	g_obj.name = talloc_strdup(g_obj.mem_ctx, "Administrators");
-	ALLOC_CHECK("gums_init_backend", g_obj.name, result, done);
-
-	/* set description */
-	g_obj.description = talloc_strdup(g_obj.mem_ctx, "Members can fully administer the computer/domain");
-	ALLOC_CHECK("gums_init_backend", g_obj.description, result, done);
-
-	/* numebr of group members */
-	g_grp->count = 0;
-	g_grp->members = NULL;
-
-	/* store Administrators group */
-	result = gums_storage->set_object(&g_obj);
-
-	/* Power Users */
-	/* Domain Controllers Does NOT have power Users */
-
-	sid_copy(g_obj.sid, &global_sid_Builtin_Power_Users);
-
-	/* make privilege set */
-	/* SE_PRIV_??? */
-
-	/* set name */
-	g_obj.name = talloc_strdup(g_obj.mem_ctx, "Power Users");
-	ALLOC_CHECK("gums_init_backend", g_obj.name, result, done);
-
-	/* set description */
-/* > */	g_obj.description = talloc_strdup(g_obj.mem_ctx, "Power Users");
-	ALLOC_CHECK("gums_init_backend", g_obj.description, result, done);
-
-	/* store Power Users group */
-	result = gums_storage->set_object(&g_obj);
-
-	/* Account Operators */
-
-	sid_copy(g_obj.sid, &global_sid_Builtin_Account_Operators);
-
-	/* make privilege set */
-	/* From BDC join trace:
-		SeShutdownPrivilege
-	 */
-
-	/* set name */
-	g_obj.name = talloc_strdup(g_obj.mem_ctx, "Account Operators");
-	ALLOC_CHECK("gums_init_backend", g_obj.name, result, done);
-
-	/* set description */
-	g_obj.description = talloc_strdup(g_obj.mem_ctx, "Members can administer domain user and group accounts");
-	ALLOC_CHECK("gums_init_backend", g_obj.description, result, done);
-
-	/* store Account Operators group */
-	result = gums_storage->set_object(&g_obj);
-
-	/* Server Operators */
-
-	sid_copy(g_obj.sid, &global_sid_Builtin_Server_Operators);
-
-	/* make privilege set */
-	/* From BDC join trace:
-		SeBackupPrivilege
-		SeRestorePrivilege
-		SeSystemtimePrivilege
-		SeShutdownPrivilege
-		SeRemoteShutdownPrivilege
-	 */
-
-	/* set name */
-	g_obj.name = talloc_strdup(g_obj.mem_ctx, "Server Operators");
-	ALLOC_CHECK("gums_init_backend", g_obj.name, result, done);
-
-	/* set description */
-	g_obj.description = talloc_strdup(g_obj.mem_ctx, "Members can administer domain servers");
-	ALLOC_CHECK("gums_init_backend", g_obj.description, result, done);
-
-	/* store Server Operators group */
-	result = gums_storage->set_object(&g_obj);
-
-	/* Print Operators */
-
-	sid_copy(g_obj.sid, &global_sid_Builtin_Print_Operators);
-
-	/* make privilege set */
-	/* From BDC join trace:
-		SeShutdownPrivilege
-	 */
-
-	/* set name */
-	g_obj.name = talloc_strdup(g_obj.mem_ctx, "Print Operators");
-	ALLOC_CHECK("gums_init_backend", g_obj.name, result, done);
-
-	/* set description */
-	g_obj.description = talloc_strdup(g_obj.mem_ctx, "Members can administer domain printers");
-	ALLOC_CHECK("gums_init_backend", g_obj.description, result, done);
-
-	/* store Print Operators group */
-	result = gums_storage->set_object(&g_obj);
-
-	/* Backup Operators */
-
-	sid_copy(g_obj.sid, &global_sid_Builtin_Backup_Operators);
-
-	/* make privilege set */
-	/* From BDC join trace:
-		SeBackupPrivilege
-		SeRestorePrivilege
-		SeShutdownPrivilege
-	 */
-
-	/* set name */
-	g_obj.name = talloc_strdup(g_obj.mem_ctx, "Backup Operators");
-	ALLOC_CHECK("gums_init_backend", g_obj.name, result, done);
-
-	/* set description */
-	g_obj.description = talloc_strdup(g_obj.mem_ctx, "Members can bypass file security to backup files");
-	ALLOC_CHECK("gums_init_backend", g_obj.description, result, done);
-
-	/* store Backup Operators group */
-	result = gums_storage->set_object(&g_obj);
-
-	/* Replicator */
-
-	sid_copy(g_obj.sid, &global_sid_Builtin_Replicator);
-
-	/* make privilege set */
-	/* From BDC join trace:
-		SeBackupPrivilege
-		SeRestorePrivilege
-		SeShutdownPrivilege
-	 */
-
-	/* set name */
-	g_obj.name = talloc_strdup(g_obj.mem_ctx, "Replicator");
-	ALLOC_CHECK("gums_init_backend", g_obj.name, result, done);
-
-	/* set description */
-	g_obj.description = talloc_strdup(g_obj.mem_ctx, "Supports file replication in a domain");
-	ALLOC_CHECK("gums_init_backend", g_obj.description, result, done);
-
-	/* store Replicator group */
-	result = gums_storage->set_object(&g_obj);
-
-	/* Users */
-
-	sid_copy(g_obj.sid, &global_sid_Builtin_Users);
-
-	/* add ACE to sec dsec dacl */
-	sec_desc_add_ace_to_dacl(g_obj.sec_desc, g_obj.mem_ctx, &global_sid_Builtin_Account_Operators, ALIAS_DEFAULT_DACL_SA_RIGHTS);
-	sec_desc_add_ace_to_dacl(g_obj.sec_desc, g_obj.mem_ctx, &global_sid_Builtin_Power_Users, ALIAS_DEFAULT_DACL_SA_RIGHTS);
-
-	/* set name */
-	g_obj.name = talloc_strdup(g_obj.mem_ctx, "Users");
-	ALLOC_CHECK("gums_init_backend", g_obj.name, result, done);
-
-	/* set description */
-	g_obj.description = talloc_strdup(g_obj.mem_ctx, "Ordinary users");
-	ALLOC_CHECK("gums_init_backend", g_obj.description, result, done);
-
-	/* store Users group */
-	result = gums_storage->set_object(&g_obj);
-
-	/* Guests */
-
-	sid_copy(g_obj.sid, &global_sid_Builtin_Guests);
-
-	/* set name */
-	g_obj.name = talloc_strdup(g_obj.mem_ctx, "Guests");
-	ALLOC_CHECK("gums_init_backend", g_obj.name, result, done);
-
-	/* set description */
-	g_obj.description = talloc_strdup(g_obj.mem_ctx, "Users granted guest access to the computer/domain");
-	ALLOC_CHECK("gums_init_backend", g_obj.description, result, done);
-
-	/* store Guests group */
-	result = gums_storage->set_object(&g_obj);
-
-	/* set default privileges */
-	g_priv.type = GUMS_OBJ_GROUP;
-	g_priv.version = 1;
-	g_priv.seq_num = 0;
-	g_priv.mem_ctx = talloc_init_named("gums_init_backend_priv");
-	if (g_priv.mem_ctx == NULL) {
-		DEBUG(0, ("gums_init_backend: Out of Memory!\n"));
-		return NT_STATUS_NO_MEMORY;
-	}
-
-		
-
-done:
-	talloc_destroy(g_obj.mem_ctx);
-	talloc_destroy(g_priv.mem_ctx);
-	return result;
-}
-
diff --git a/source3/sam/interface.c b/source3/sam/interface.c
deleted file mode 100644
index d08df42122d..00000000000
--- a/source3/sam/interface.c
+++ /dev/null
@@ -1,1338 +0,0 @@
-/*
-   Unix SMB/CIFS implementation.
-   Password and authentication handling
-   Copyright (C) Andrew Bartlett			2002
-   Copyright (C) Jelmer Vernooij			2002
-   Copyright (C) Stefan (metze) Metzmacher		2002
-   Copyright (C) Kai Krüger				2002
-
-   This program is free software; you can redistribute it and/or modify
-   it under the terms of the GNU General Public License as published by
-   the Free Software Foundation; either version 2 of the License, or
-   (at your option) any later version.
-
-   This program is distributed in the hope that it will be useful,
-   but WITHOUT ANY WARRANTY; without even the implied warranty of
-   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-   GNU General Public License for more details.
-
-   You should have received a copy of the GNU General Public License
-   along with this program; if not, write to the Free Software
-   Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
-*/
-
-#include "includes.h"
-
-#undef DBGC_CLASS
-#define DBGC_CLASS DBGC_SAM
-
-extern DOM_SID global_sid_Builtin;
-
-/** List of various built-in sam modules */
-
-const struct sam_init_function_entry builtin_sam_init_functions[] = {
-	{ "plugin", sam_init_plugin },
-#ifdef HAVE_LDAP
-	{ "ads", sam_init_ads },
-#endif
-	{ "skel", sam_init_skel },
-	{ NULL, NULL}
-};
-
-
-static NTSTATUS sam_get_methods_by_sid(const SAM_CONTEXT *context, SAM_METHODS **sam_method, const DOM_SID *domainsid)
-{
-	SAM_METHODS	*tmp_methods;
-
-	DEBUG(5,("sam_get_methods_by_sid: %d\n", __LINE__));
-
-	/* invalid sam_context specified */
-	SAM_ASSERT(context && context->methods);
-
-	tmp_methods = context->methods;
-
-	while (tmp_methods) {
-		if (sid_equal(domainsid, &(tmp_methods->domain_sid)))
-		{
-			(*sam_method) = tmp_methods;
-			return NT_STATUS_OK;
-		}
-		tmp_methods = tmp_methods->next;
-	}
-
-	DEBUG(3,("sam_get_methods_by_sid: There is no backend specified for domain %s\n", sid_string_static(domainsid)));
-
-	return NT_STATUS_NO_SUCH_DOMAIN;
-}
-
-static NTSTATUS sam_get_methods_by_name(const SAM_CONTEXT *context, SAM_METHODS **sam_method, const char *domainname)
-{
-	SAM_METHODS	*tmp_methods;
-
-	DEBUG(5,("sam_get_methods_by_name: %d\n", __LINE__));
-
-	/* invalid sam_context specified */
-	SAM_ASSERT(context && context->methods);
-
-	tmp_methods = context->methods;
-
-	while (tmp_methods) {
-		if (strequal(domainname, tmp_methods->domain_name))
-		{
-			(*sam_method) = tmp_methods;
-			return NT_STATUS_OK;
-		}
-		tmp_methods = tmp_methods->next;
-	}
-
-	DEBUG(3,("sam_get_methods_by_sid: There is no backend specified for domain %s\n", domainname));
-
-	return NT_STATUS_NO_SUCH_DOMAIN;
-}
-
-static NTSTATUS make_sam_methods(TALLOC_CTX *mem_ctx, SAM_METHODS **methods)
-{
-	*methods = talloc(mem_ctx, sizeof(SAM_METHODS));
-
-	if (!*methods) {
-		return NT_STATUS_NO_MEMORY;
-	}
-
-	ZERO_STRUCTP(*methods);
-
-	return NT_STATUS_OK;
-}
-
-/******************************************************************
-  Free and cleanup a sam context, any associated data and anything
-  that the attached modules might have associated.
- *******************************************************************/
-
-void free_sam_context(SAM_CONTEXT **context)
-{
-	SAM_METHODS *sam_selected = (*context)->methods;
-
-	while (sam_selected) {
-		if (sam_selected->free_private_data) {
-			sam_selected->free_private_data(&(sam_selected->private_data));
-		}
-		sam_selected = sam_selected->next;
-	}
-
-	talloc_destroy((*context)->mem_ctx);
-	*context = NULL;
-}
-
-/******************************************************************
-  Make a backend_entry from scratch
- *******************************************************************/
- 
-static NTSTATUS make_backend_entry(SAM_BACKEND_ENTRY *backend_entry, char *sam_backend_string)
-{
-	char *tmp = NULL;
-	char *tmp_string = sam_backend_string;
-	
-	DEBUG(5,("make_backend_entry: %d\n", __LINE__));
-	
-	SAM_ASSERT(sam_backend_string && backend_entry);
-	
-	backend_entry->module_name = sam_backend_string;
-	
-	DEBUG(5,("makeing backend_entry for %s\n", backend_entry->module_name));
-	
-	if ((tmp = strrchr(tmp_string, '|')) != NULL) {
-		DEBUGADD(20,("a domain name has been specified\n"));
-		*tmp = 0;
-		backend_entry->domain_name = smb_xstrdup(tmp + 1);
-		tmp_string = tmp + 1;
-	}
-	
-	if ((tmp = strchr(tmp_string, ':')) != NULL) {
-		DEBUG(20,("options for the backend have been specified\n"));
-		*tmp = 0;
-		backend_entry->module_params = smb_xstrdup(tmp + 1);
-		tmp_string = tmp + 1;
-	}
-		
-	if (backend_entry->domain_name == NULL) {
-		DEBUG(10,("make_backend_entry: no domain was specified for sam module %s. Using default domain %s\n",
-			backend_entry->module_name, lp_workgroup()));
-		backend_entry->domain_name = smb_xstrdup(lp_workgroup());
-	}
-	
-	if ((backend_entry->domain_sid = (DOM_SID *)malloc(sizeof(DOM_SID))) == NULL) {
-		DEBUG(0,("make_backend_entry: failed to malloc domain_sid\n"));
-		return NT_STATUS_NO_MEMORY;
-	}
-	
-	DEBUG(10,("looking up sid for domain %s\n", backend_entry->domain_name));
-	
-	if (!secrets_fetch_domain_sid(backend_entry->domain_name, backend_entry->domain_sid)) {
-		DEBUG(2,("make_backend_entry: There is no SID stored for domain %s. Creating a new one.\n",
-			backend_entry->domain_name));		
-		DEBUG(0, ("FIXME in %s:%d\n", __FILE__, __LINE__));
-		ZERO_STRUCTP(backend_entry->domain_sid);
-	}
-	
-	DEBUG(5,("make_backend_entry: module name: %s, module parameters: %s, domain name: %s, domain sid: %s\n",
-		backend_entry->module_name, backend_entry->module_params, backend_entry->domain_name, sid_string_static(backend_entry->domain_sid)));
-	
-	return NT_STATUS_OK;
-}
-
-/******************************************************************
- create sam_methods struct based on sam_backend_entry
- *****************************************************************/
-
-static NTSTATUS make_sam_methods_backend_entry(SAM_CONTEXT *context, SAM_METHODS **methods_ptr, SAM_BACKEND_ENTRY *backend_entry)
-{
-	NTSTATUS nt_status = NT_STATUS_UNSUCCESSFUL;
-	SAM_METHODS *methods;
-	int i;
-
-	DEBUG(5,("make_sam_methods_backend_entry: %d\n", __LINE__));
-
-	if (!NT_STATUS_IS_OK(nt_status = make_sam_methods(context->mem_ctx, methods_ptr))) {
-		return nt_status;
-	}
-
-	methods = *methods_ptr;
-	methods->backendname = talloc_strdup(context->mem_ctx, backend_entry->module_name);
-	methods->domain_name = talloc_strdup(context->mem_ctx, backend_entry->domain_name);
-	sid_copy(&methods->domain_sid, backend_entry->domain_sid);
-	methods->parent = context;
-
-	DEBUG(5,("Attempting to find sam backend %s\n", backend_entry->module_name));
-	for (i = 0; builtin_sam_init_functions[i].module_name; i++)
-	{
-		if (strequal(builtin_sam_init_functions[i].module_name, backend_entry->module_name))
-		{
-			DEBUG(5,("Found sam backend %s (at pos %d)\n", backend_entry->module_name, i));
-			DEBUGADD(5,("initialising it with options=%s for domain %s\n", backend_entry->module_params, sid_string_static(backend_entry->domain_sid)));
-			nt_status = builtin_sam_init_functions[i].init(methods, backend_entry->module_params);
-			if (NT_STATUS_IS_OK(nt_status)) {
-				DEBUG(5,("sam backend %s has a valid init\n", backend_entry->module_name));
-			} else {
-				DEBUG(2,("sam backend %s did not correctly init (error was %s)\n",
-					backend_entry->module_name, nt_errstr(nt_status)));
-			}
-			return nt_status;
-		}
-	}
-	
-	DEBUG(2,("could not find backend %s\n", backend_entry->module_name));
-
-	return NT_STATUS_INVALID_PARAMETER;
-}
-
-static NTSTATUS sam_context_check_default_backends(SAM_CONTEXT *context)
-{
-	SAM_BACKEND_ENTRY entry;
-	DOM_SID *global_sam_sid  = get_global_sam_sid(); /* lp_workgroup doesn't play nicely with multiple domains */
-	SAM_METHODS *methods, *tmpmethods;
-	NTSTATUS ntstatus;
-	
-	DEBUG(5,("sam_context_check_default_backends: %d\n", __LINE__));
-
-	/* Make sure domain lp_workgroup() is available */
-	
-	ntstatus = sam_get_methods_by_sid(context, &methods, &global_sid_Builtin);
-
-	if (NT_STATUS_EQUAL(ntstatus, NT_STATUS_NO_SUCH_DOMAIN)) {
-		DEBUG(4,("There was no backend specified for domain %s(%s); using %s\n",
-			lp_workgroup(), sid_string_static(global_sam_sid), SAM_DEFAULT_BACKEND));
-
-		SAM_ASSERT(global_sam_sid);
-
-		entry.module_name = SAM_DEFAULT_BACKEND;
-		entry.module_params = NULL;
-		entry.domain_name = lp_workgroup();
-		entry.domain_sid = (DOM_SID *)malloc(sizeof(DOM_SID));
-		sid_copy(entry.domain_sid, global_sam_sid);
-
-		if (!NT_STATUS_IS_OK(ntstatus = make_sam_methods_backend_entry(context, &methods, &entry))) {
-			DEBUG(4,("make_sam_methods_backend_entry failed\n"));
-			return ntstatus;
-		}
-
-		DLIST_ADD_END(context->methods, methods, tmpmethods);
-
-	} else if (!NT_STATUS_IS_OK(ntstatus)) {
-		DEBUG(2, ("sam_get_methods_by_sid failed for %s\n", lp_workgroup()));
-		return ntstatus;
-	}
-
-	/* Make sure the BUILTIN domain is available */
-
-	ntstatus = sam_get_methods_by_sid(context, &methods, global_sam_sid);
-	
-	if (NT_STATUS_EQUAL(ntstatus, NT_STATUS_NO_SUCH_DOMAIN)) {
-		DEBUG(4,("There was no backend specified for domain BUILTIN; using %s\n", 
-				 SAM_DEFAULT_BACKEND));
-		entry.module_name = SAM_DEFAULT_BACKEND;
-		entry.module_params = NULL;
-		entry.domain_name = "BUILTIN";
-		entry.domain_sid    = (DOM_SID *)malloc(sizeof(DOM_SID)); 
-		sid_copy(entry.domain_sid, &global_sid_Builtin);
-
-		if (!NT_STATUS_IS_OK(ntstatus = make_sam_methods_backend_entry(context, &methods,  &entry))) {
-			DEBUG(4,("make_sam_methods_backend_entry failed\n"));
-			return ntstatus;
-		}
-
-		DLIST_ADD_END(context->methods, methods, tmpmethods);
-	} else if (!NT_STATUS_IS_OK(ntstatus)) {
-		DEBUG(2, ("sam_get_methods_by_sid failed for BUILTIN\n"));
-		return ntstatus;
-	}
-
-	return NT_STATUS_OK;
-}
-
-static NTSTATUS check_duplicate_backend_entries(SAM_BACKEND_ENTRY **backend_entries, int *nBackends)
-{
-	int i, j;
-	
-	DEBUG(5,("check_duplicate_backend_entries: %d\n", __LINE__));
-	
-	for (i = 0; i < *nBackends; i++) {
-		for (j = i + 1; j < *nBackends; j++) {
-			if (sid_equal((*backend_entries)[i].domain_sid, (*backend_entries)[j].domain_sid)) {
-				DEBUG(0,("two backend modules claim the same domain %s\n",
-					sid_string_static((*backend_entries)[j].domain_sid)));
-				return NT_STATUS_INVALID_PARAMETER;			
-			}
-		}		
-	}
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS make_sam_context_list(SAM_CONTEXT **context, char **sam_backends_param)
-{
-	int i = 0, j = 0;
-	SAM_METHODS *curmethods, *tmpmethods;
-	int nBackends               = 0;
-	SAM_BACKEND_ENTRY *backends = NULL;
-	NTSTATUS nt_status          = NT_STATUS_UNSUCCESSFUL;
-
-	DEBUG(5,("make_sam_context_from_conf: %d\n", __LINE__));
-
-	if (!sam_backends_param) {
-		DEBUG(1, ("no SAM backeds specified!\n"));
-		return NT_STATUS_INVALID_PARAMETER;
-	}
-
-	if (!NT_STATUS_IS_OK(nt_status = make_sam_context(context))) {
-		DEBUG(4,("make_sam_context failed\n"));
-		return nt_status;
-	}
-
-	while (sam_backends_param[nBackends])
-		nBackends++;
-
-	DEBUG(6,("There are %d domains listed with their backends\n", nBackends));
-
-	if ((backends = (SAM_BACKEND_ENTRY *)malloc(sizeof(*backends)*nBackends)) == NULL) {
-		DEBUG(0,("make_sam_context_list: failed to allocate backends\n"));
-		return NT_STATUS_NO_MEMORY;
-	}
-
-	memset(backends, '\0', sizeof(*backends)*nBackends);
-
-	for (i = 0; i < nBackends; i++) {
-		DEBUG(8,("processing %s\n",sam_backends_param[i]));
-		if (!NT_STATUS_IS_OK(nt_status = make_backend_entry(&backends[i], sam_backends_param[i]))) {
-			DEBUG(4,("make_backend_entry failed\n"));
-			for (j = 0; j < nBackends; j++) SAFE_FREE(backends[j].domain_sid);
-			SAFE_FREE(backends);
-			free_sam_context(context);
-			return nt_status;
-		}
-	}
-
-	if (!NT_STATUS_IS_OK(nt_status = check_duplicate_backend_entries(&backends, &nBackends))) {
-		DEBUG(4,("check_duplicate_backend_entries failed\n"));
-		for (j = 0; j < nBackends; j++) SAFE_FREE(backends[j].domain_sid);
-		SAFE_FREE(backends);
-		free_sam_context(context);
-		return nt_status;
-	}
-
-	for (i = 0; i < nBackends; i++) {
-		if (!NT_STATUS_IS_OK(nt_status = make_sam_methods_backend_entry(*context, &curmethods,  &backends[i]))) {
-			DEBUG(4,("make_sam_methods_backend_entry failed\n"));
-			for (j = 0; j < nBackends; j++) SAFE_FREE(backends[j].domain_sid);
-			SAFE_FREE(backends);
-			free_sam_context(context);
-			return nt_status;
-		}
-		DLIST_ADD_END((*context)->methods, curmethods, tmpmethods);
-	}
-	
-	for (i = 0; i < nBackends; i++) SAFE_FREE(backends[i].domain_sid);
-
-	SAFE_FREE(backends);
-	return NT_STATUS_OK;
-}
-
-/******************************************************************
-  Make a sam_context from scratch.
- *******************************************************************/
-
-NTSTATUS make_sam_context(SAM_CONTEXT **context) 
-{
-	TALLOC_CTX *mem_ctx;
-
-	mem_ctx = talloc_init_named("sam_context internal allocation context");
-
-	if (!mem_ctx) {
-		DEBUG(0, ("make_sam_context: talloc init failed!\n"));
-		return NT_STATUS_NO_MEMORY;
-	}		
-
-	*context = talloc(mem_ctx, sizeof(**context));
-	if (!*context) {
-		DEBUG(0, ("make_sam_context: talloc failed!\n"));
-		return NT_STATUS_NO_MEMORY;
-	}
-
-	ZERO_STRUCTP(*context);
-
-	(*context)->mem_ctx = mem_ctx;
-
-	(*context)->free_fn = free_sam_context;
-
-	return NT_STATUS_OK;
-}
-
-/******************************************************************
-  Return an already initialised sam_context, to facilitate backward 
-  compatibility (see functions below).
- *******************************************************************/
-
-static struct sam_context *sam_get_static_context(BOOL reload) 
-{
-	static SAM_CONTEXT *sam_context = NULL;
-
-	if ((sam_context) && (reload)) {
-		sam_context->free_fn(&sam_context);
-		sam_context = NULL;
-	}
-
-	if (!sam_context) {
-		if (!NT_STATUS_IS_OK(make_sam_context_list(&sam_context, lp_sam_backend()))) {
-			DEBUG(4,("make_sam_context_list failed\n"));
-			return NULL;
-		}
-
-		/* Make sure the required domains (default domain, builtin) are available */
-		if (!NT_STATUS_IS_OK(sam_context_check_default_backends(sam_context))) {
-			DEBUG(4,("sam_context_check_default_backends failed\n"));
-			return NULL;
-		}
-	}
-
-	return sam_context;
-}
-
-/***************************************************************
-  Initialize the static context (at smbd startup etc). 
-
-  If uninitialised, context will auto-init on first use.
- ***************************************************************/
-
-BOOL initialize_sam(BOOL reload)
-{	
-	return (sam_get_static_context(reload) != NULL);
-}
-
-
-/**************************************************************
- External API.  This is what the rest of the world calls...
-***************************************************************/
-
-/******************************************************************
-  sam_* functions are used to link the external SAM interface
-  with the internal backends. These functions lookup the appropriate
-  backends for the domain and pass on to the function in sam_methods
-  in the selected backend
-
-  When the context parmater is NULL, the default is used.
- *******************************************************************/
-
-#define SAM_SETUP_CONTEXT if (!context) \
-		context = sam_get_static_context(False);\
-	if (!context) {\
-		return NT_STATUS_UNSUCCESSFUL; \
-	}\
-	
-
-
-NTSTATUS sam_get_sec_desc(const SAM_CONTEXT *context, const NT_USER_TOKEN *access_token, const DOM_SID *sid, SEC_DESC **sd)
-{
-	SAM_METHODS	*tmp_methods;
-	NTSTATUS        nt_status;
-
-	DEBUG(5,("sam_get_sec_desc: %d\n", __LINE__));
-
-	SAM_SETUP_CONTEXT;
-
-	if (!NT_STATUS_IS_OK(nt_status = sam_get_methods_by_sid(context, &tmp_methods, sid))) {
-		DEBUG(4,("sam_get_methods_by_sid failed\n"));
-		return nt_status;
-	}
-
-	if (!tmp_methods->sam_get_sec_desc) {
-		DEBUG(3, ("sam_get_sec_desc: sam_methods of the domain did not specify sam_get_sec_desc\n"));
-		return NT_STATUS_NOT_IMPLEMENTED;
-	}
-
-	if (!NT_STATUS_IS_OK(nt_status = tmp_methods->sam_get_sec_desc(tmp_methods, access_token, sid, sd))) {
-		DEBUG(4,("sam_get_sec_desc for %s in backend %s failed\n", sid_string_static(sid), tmp_methods->backendname));
-		return nt_status;
-	}
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_set_sec_desc(const SAM_CONTEXT *context, const NT_USER_TOKEN *access_token, const DOM_SID *sid, const SEC_DESC *sd)
-{
-	SAM_METHODS	*tmp_methods;
-	NTSTATUS	nt_status;
-
-	DEBUG(5,("sam_set_sec_desc: %d\n", __LINE__));
-	
-	SAM_SETUP_CONTEXT;
-
-	if (!NT_STATUS_IS_OK(nt_status = sam_get_methods_by_sid(context, &tmp_methods, sid))) {
-		DEBUG(4,("sam_get_methods_by_sid failed\n"));
-		return nt_status;
-	}
-
-	if (!tmp_methods->sam_set_sec_desc) {
-		DEBUG(3, ("sam_set_sec_desc: sam_methods of the domain did not specify sam_set_sec_desc\n"));
-		return NT_STATUS_NOT_IMPLEMENTED;
-	}
-
-	if (!NT_STATUS_IS_OK(nt_status = tmp_methods->sam_set_sec_desc(tmp_methods, access_token, sid, sd))) {
-		DEBUG(4,("sam_set_sec_desc for %s in backend %s failed\n", sid_string_static(sid), tmp_methods->backendname));
-		return nt_status;
-	}
-
-	return NT_STATUS_OK;
-}
-
-
-NTSTATUS sam_lookup_name(const SAM_CONTEXT *context, const NT_USER_TOKEN *access_token, const char *domain, const char *name, DOM_SID *sid, uint32 *type)
-{
-	SAM_METHODS	*tmp_methods;
-	NTSTATUS	nt_status;
-
-	DEBUG(5,("sam_lookup_name: %d\n", __LINE__));
-
-	SAM_SETUP_CONTEXT;
-
-	if (!NT_STATUS_IS_OK(nt_status = sam_get_methods_by_name(context, &tmp_methods, domain))) {
-		DEBUG(4,("sam_get_methods_by_name failed\n"));
-		return nt_status;
-	}
-
-	if (!tmp_methods->sam_lookup_name) {
-		DEBUG(3, ("sam_lookup_name: sam_methods of the domain did not specify sam_lookup_name\n"));
-		return NT_STATUS_NOT_IMPLEMENTED;
-	}
-
-	if (!NT_STATUS_IS_OK(nt_status = tmp_methods->sam_lookup_name(tmp_methods, access_token, name, sid, type))) {
-		DEBUG(4,("sam_lookup_name for %s\\%s in backend %s failed\n",
-				 tmp_methods->domain_name, name, tmp_methods->backendname));
-		return nt_status;
-	}
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_lookup_sid(const SAM_CONTEXT *context, const NT_USER_TOKEN *access_token, TALLOC_CTX *mem_ctx, const DOM_SID *sid, char **name, uint32 *type)
-{
-	SAM_METHODS	*tmp_methods;
-	uint32		rid;
-	NTSTATUS	nt_status;
-	DOM_SID		domainsid;
-
-	DEBUG(5,("sam_lookup_sid: %d\n", __LINE__));
-
-	SAM_SETUP_CONTEXT;
-
-	sid_copy(&domainsid, sid);
-	if (!sid_split_rid(&domainsid, &rid)) {
-		DEBUG(3,("sam_lookup_sid: failed to split the sid\n"));
-		return NT_STATUS_INVALID_SID;
-	}
-
-	if (!NT_STATUS_IS_OK(nt_status = sam_get_methods_by_sid(context, &tmp_methods, &domainsid))) {
-		DEBUG(4,("sam_get_methods_by_sid failed\n"));
-		return nt_status;
-	}
-
-	if (!tmp_methods->sam_lookup_sid) {
-		DEBUG(3, ("sam_lookup_sid: sam_methods of the domain did not specify sam_lookup_sid\n"));
-		return NT_STATUS_NOT_IMPLEMENTED;
-	}
-
-	if (!NT_STATUS_IS_OK(nt_status = tmp_methods->sam_lookup_sid(tmp_methods, access_token, mem_ctx, sid, name, type))) {
-		DEBUG(4,("sam_lookup_name for %s in backend %s failed\n",
-				 sid_string_static(sid), tmp_methods->backendname));
-		return nt_status;
-	}
-
-	return NT_STATUS_OK;
-}
-
-
-NTSTATUS sam_update_domain(const SAM_CONTEXT *context, const SAM_DOMAIN_HANDLE *domain)
-{
-	const SAM_METHODS *tmp_methods;
-	NTSTATUS     nt_status;
-
-	DEBUG(5,("sam_update_domain: %d\n", __LINE__));
-	
-	SAM_SETUP_CONTEXT;
-
-	/* invalid domain specified */
-	SAM_ASSERT(domain && domain->current_sam_methods);
-	
-	tmp_methods = domain->current_sam_methods;
-	
-	if (!tmp_methods->sam_update_domain) {
-		DEBUG(3, ("sam_update_domain: sam_methods of the domain did not specify sam_update_domain\n"));
-		return NT_STATUS_NOT_IMPLEMENTED;
-	}
-
-	if (!NT_STATUS_IS_OK(nt_status = tmp_methods->sam_update_domain(tmp_methods, domain))){
-		DEBUG(4,("sam_update_domain in backend %s failed\n",
-				 tmp_methods->backendname));
-		return nt_status;
-	}
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_enum_domains(const SAM_CONTEXT *context, const NT_USER_TOKEN *access_token, int32 *domain_count, DOM_SID **domains, char ***domain_names)
-{
-	SAM_METHODS	*tmp_methods;
-	NTSTATUS	 nt_status;
-
-	SEC_DESC	*sd;
-	size_t		sd_size;
-	uint32		acc_granted;
-	int		i = 0;
-
-	DEBUG(5,("sam_enum_domains: %d\n", __LINE__));
-
-	SAM_SETUP_CONTEXT;
-
-	/* invalid parmaters specified */
-	SAM_ASSERT(domain_count && domains && domain_names);
-
-	if (!NT_STATUS_IS_OK(nt_status = samr_make_sam_obj_sd(context->mem_ctx, &sd, &sd_size))) {
-		DEBUG(4,("samr_make_sam_obj_sd failed\n"));
-		return nt_status;
-	}
-
-	if (!se_access_check(sd, access_token, SA_RIGHT_SAM_ENUM_DOMAINS, &acc_granted, &nt_status)) {
-		DEBUG(3,("sam_enum_domains: ACCESS DENIED\n"));
-			return nt_status;
-	}
-
-	tmp_methods= context->methods;
-	*domain_count = 0;
-
-	while (tmp_methods) {
-		(*domain_count)++;
-		tmp_methods= tmp_methods->next;
-	}
-
-	DEBUG(6,("sam_enum_domains: enumerating %d domains\n", (*domain_count)));
-
-	tmp_methods = context->methods;
-
-	if (((*domains) = malloc( sizeof(DOM_SID) * (*domain_count))) == NULL) {
-		DEBUG(0,("sam_enum_domains: Out of memory allocating domain SID list\n"));
-		return NT_STATUS_NO_MEMORY;
-	}
-
-	if (((*domain_names) = malloc( sizeof(char*) * (*domain_count))) == NULL) {
-		DEBUG(0,("sam_enum_domains: Out of memory allocating domain name list\n"));
-		SAFE_FREE((*domains));
-		return NT_STATUS_NO_MEMORY;
-	}
-
-	while (tmp_methods) {
-		DEBUGADD(7,("    [%d] %s: %s\n", i, tmp_methods->domain_name, sid_string_static(&tmp_methods->domain_sid)));
-		sid_copy(domains[i],&tmp_methods->domain_sid);
-		*domain_names[i] = smb_xstrdup(tmp_methods->domain_name);
-		i++;
-		tmp_methods= tmp_methods->next;
-	}
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_lookup_domain(const SAM_CONTEXT *context, const NT_USER_TOKEN *access_token, const char *domain, DOM_SID **domainsid)
-{
-	SAM_METHODS	*tmp_methods;
-	NTSTATUS	nt_status;
-
-	SEC_DESC	*sd;
-	size_t		sd_size;
-	uint32		acc_granted;
-
-	DEBUG(5,("sam_lookup_domain: %d\n", __LINE__));
-
-	SAM_SETUP_CONTEXT;
-
-	/* invalid paramters */
-	SAM_ASSERT(access_token && domain && domainsid);
-
-	if (!NT_STATUS_IS_OK(nt_status = samr_make_sam_obj_sd(context->mem_ctx, &sd, &sd_size))) {
-		DEBUG(4,("samr_make_sam_obj_sd failed\n"));
-		return nt_status;
-	}
-
-	if (!se_access_check(sd, access_token, SA_RIGHT_SAM_OPEN_DOMAIN, &acc_granted, &nt_status)) {
-		DEBUG(3,("sam_lookup_domain: ACCESS DENIED\n"));
-			return nt_status;
-	}
-
-	tmp_methods= context->methods;
-
-	while (tmp_methods) {
-		if (strcmp(domain, tmp_methods->domain_name) == 0) {
-			(*domainsid) = (DOM_SID *)malloc(sizeof(DOM_SID));
-			sid_copy((*domainsid), &tmp_methods->domain_sid);
-			return NT_STATUS_OK;
-		}
-		tmp_methods= tmp_methods->next;
-	}
-
-	return NT_STATUS_NO_SUCH_DOMAIN;
-}
-
-
-NTSTATUS sam_get_domain_by_sid(const SAM_CONTEXT *context, const NT_USER_TOKEN *access_token, uint32 access_desired, const DOM_SID *domainsid, SAM_DOMAIN_HANDLE **domain)
-{
-	SAM_METHODS	*tmp_methods;
-	NTSTATUS	nt_status;
-
-	DEBUG(5,("sam_get_domain_by_sid: %d\n", __LINE__));
-
-	SAM_SETUP_CONTEXT;
-
-	SAM_ASSERT(access_token && domainsid && domain);
-
-	if (!NT_STATUS_IS_OK(nt_status = sam_get_methods_by_sid(context, &tmp_methods, domainsid))) {
-		DEBUG(4,("sam_get_methods_by_sid failed\n"));
-		return nt_status;
-	}
-
-	if (!tmp_methods->sam_get_domain_handle) {
-		DEBUG(3, ("sam_get_domain_by_sid: sam_methods of the domain did not specify sam_get_domain_handle\n"));
-		return NT_STATUS_NOT_IMPLEMENTED;
-	}
-
-	if (!NT_STATUS_IS_OK(nt_status = tmp_methods->sam_get_domain_handle(tmp_methods, access_token, access_desired, domain))) {
-		DEBUG(4,("sam_get_domain_handle for %s in backend %s failed\n",
-				 sid_string_static(domainsid), tmp_methods->backendname));
-		return nt_status;
-	}
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_create_account(const SAM_CONTEXT *context, const NT_USER_TOKEN *access_token, uint32 access_desired, const DOM_SID *domainsid, const char *account_name, uint16 acct_ctrl, SAM_ACCOUNT_HANDLE **account)
-{
-	SAM_METHODS	*tmp_methods;
-	NTSTATUS	nt_status;
-
-	DEBUG(5,("sam_create_account: %d\n", __LINE__));
-
-	SAM_SETUP_CONTEXT;
-
-	/* invalid parmaters */
-	SAM_ASSERT(access_token && domainsid && account_name && account);
-
-	if (!NT_STATUS_IS_OK(nt_status = sam_get_methods_by_sid(context, &tmp_methods, domainsid))) {
-		DEBUG(4,("sam_get_methods_by_sid failed\n"));
-		return nt_status;
-	}
-
-	if (!tmp_methods->sam_create_account) {
-		DEBUG(3, ("sam_create_account: sam_methods of the domain did not specify sam_create_account\n"));
-		return NT_STATUS_NOT_IMPLEMENTED;
-	}
-
-	if (!NT_STATUS_IS_OK(nt_status = tmp_methods->sam_create_account(tmp_methods, access_token, access_desired, account_name, acct_ctrl, account))) {
-		DEBUG(4,("sam_create_account in backend %s failed\n",
-				 tmp_methods->backendname));
-		return nt_status;
-	}
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_add_account(const SAM_CONTEXT *context, const SAM_ACCOUNT_HANDLE *account)
-{
-	DOM_SID		domainsid;
-	const DOM_SID		*accountsid;
-	SAM_METHODS	*tmp_methods;
-	uint32		rid;
-	NTSTATUS	nt_status;
-	
-	DEBUG(5,("sam_add_account: %d\n", __LINE__));
-
-	SAM_SETUP_CONTEXT;
-
-	/* invalid parmaters */
-	SAM_ASSERT(account);
-
-	if (!NT_STATUS_IS_OK(nt_status = sam_get_account_sid(account, &accountsid))) {
-		DEBUG(0,("Can't get account SID\n"));
-		return nt_status;
-	}
-
-	sid_copy(&domainsid, accountsid);
-	if (!sid_split_rid(&domainsid, &rid)) {
-		DEBUG(3,("sam_get_account_by_sid: failed to split the sid\n"));
-		return NT_STATUS_INVALID_SID;
-	}
-
-	if (!NT_STATUS_IS_OK(nt_status = sam_get_methods_by_sid(context, &tmp_methods, &domainsid))) {
-		DEBUG(4,("sam_get_methods_by_sid failed\n"));
-		return nt_status;
-	}
-
-	if (!tmp_methods->sam_add_account) {
-		DEBUG(3, ("sam_add_account: sam_methods of the domain did not specify sam_add_account\n"));
-		return NT_STATUS_NOT_IMPLEMENTED;
-	}
-
-	if (!NT_STATUS_IS_OK(nt_status = tmp_methods->sam_add_account(tmp_methods, account))){
-		DEBUG(4,("sam_add_account in backend %s failed\n",
-				 tmp_methods->backendname));
-		return nt_status;
-	}
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_update_account(const SAM_CONTEXT *context, const SAM_ACCOUNT_HANDLE *account)
-{
-	const SAM_METHODS *tmp_methods;
-	NTSTATUS     nt_status;
-	
-	DEBUG(5,("sam_update_account: %d\n", __LINE__));
-
-	SAM_SETUP_CONTEXT;
-
-	/* invalid account specified */
-	SAM_ASSERT(account && account->current_sam_methods);
-	
-	tmp_methods = account->current_sam_methods;
-		
-	if (!tmp_methods->sam_update_account) {
-		DEBUG(3, ("sam_update_account: sam_methods of the domain did not specify sam_update_account\n"));
-		return NT_STATUS_NOT_IMPLEMENTED;
-	}
-
-	if (!NT_STATUS_IS_OK(nt_status = tmp_methods->sam_update_account(tmp_methods, account))){
-		DEBUG(4,("sam_update_account in backend %s failed\n",
-				 tmp_methods->backendname));
-		return nt_status;
-	}
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_delete_account(const SAM_CONTEXT *context, const SAM_ACCOUNT_HANDLE *account)
-{
-	const SAM_METHODS *tmp_methods;
-	NTSTATUS     nt_status;
-	
-	DEBUG(5,("sam_delete_account: %d\n", __LINE__));
-	
-	SAM_SETUP_CONTEXT;
-
-	/* invalid account specified */
-	SAM_ASSERT(account && account->current_sam_methods);
-	
-	tmp_methods = account->current_sam_methods;
-
-	if (!tmp_methods->sam_delete_account) {
-		DEBUG(3, ("sam_delete_account: sam_methods of the domain did not specify sam_delete_account\n"));
-		return NT_STATUS_NOT_IMPLEMENTED;
-	}
-
-	if (!NT_STATUS_IS_OK(nt_status = tmp_methods->sam_delete_account(tmp_methods, account))){
-		DEBUG(4,("sam_delete_account in backend %s failed\n",
-				 tmp_methods->backendname));
-		return nt_status;
-	}
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_enum_accounts(const SAM_CONTEXT *context, const NT_USER_TOKEN *access_token, const DOM_SID *domainsid, uint16 acct_ctrl, int32 *account_count, SAM_ACCOUNT_ENUM **accounts)
-{
-	SAM_METHODS	*tmp_methods;
-	NTSTATUS	nt_status;
-
-	DEBUG(5,("sam_enum_accounts: %d\n", __LINE__));
-
-	SAM_SETUP_CONTEXT;
-
-	SAM_ASSERT(access_token && domainsid && account_count && accounts);
-
-	if (!NT_STATUS_IS_OK(nt_status = sam_get_methods_by_sid(context, &tmp_methods, domainsid))) {
-		DEBUG(4,("sam_get_methods_by_sid failed\n"));
-		return nt_status;
-	}
-
-	if (!tmp_methods->sam_enum_accounts) {
-		DEBUG(3, ("sam_enum_accounts: sam_methods of the domain did not specify sam_enum_accounts\n"));
-		return NT_STATUS_NOT_IMPLEMENTED;
-	}
-
-	if (!NT_STATUS_IS_OK(nt_status = tmp_methods->sam_enum_accounts(tmp_methods, access_token, acct_ctrl, account_count, accounts))) {
-		DEBUG(4,("sam_enum_accounts for domain %s in backend %s failed\n",
-				 tmp_methods->domain_name, tmp_methods->backendname));
-		return nt_status;
-	}
-
-	return NT_STATUS_OK;
-}
-
-
-NTSTATUS sam_get_account_by_sid(const SAM_CONTEXT *context, const NT_USER_TOKEN *access_token, uint32 access_desired, const DOM_SID *accountsid, SAM_ACCOUNT_HANDLE **account)
-{
-	SAM_METHODS	*tmp_methods;
-	uint32		rid;
-	DOM_SID		domainsid;
-	NTSTATUS	nt_status;
-
-	DEBUG(5,("sam_get_account_by_sid: %d\n", __LINE__));
-
-	SAM_SETUP_CONTEXT;
-
-	SAM_ASSERT(access_token && accountsid && account);
-
-	sid_copy(&domainsid, accountsid);
-	if (!sid_split_rid(&domainsid, &rid)) {
-		DEBUG(3,("sam_get_account_by_sid: failed to split the sid\n"));
-		return NT_STATUS_INVALID_SID;
-	}
-
-
-	if (!NT_STATUS_IS_OK(nt_status = sam_get_methods_by_sid(context, &tmp_methods, &domainsid))) {
-		DEBUG(4,("sam_get_methods_by_sid failed\n"));
-		return nt_status;
-	}
-
-	if (!tmp_methods->sam_get_account_by_sid) {
-		DEBUG(3, ("sam_get_account_by_sid: sam_methods of the domain did not specify sam_get_account_by_sid\n"));
-		return NT_STATUS_NOT_IMPLEMENTED;
-	}
-
-	if (!NT_STATUS_IS_OK(nt_status = tmp_methods->sam_get_account_by_sid(tmp_methods, access_token, access_desired, accountsid, account))) {
-		DEBUG(4,("sam_get_account_by_sid for %s in backend %s failed\n",
-				 sid_string_static(accountsid), tmp_methods->backendname));
-		return nt_status;
-	}
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_account_by_name(const SAM_CONTEXT *context, const NT_USER_TOKEN *access_token, uint32 access_desired, const char *domain, const char *name, SAM_ACCOUNT_HANDLE **account)
-{
-	SAM_METHODS	*tmp_methods;
-	NTSTATUS	nt_status;
-
-	DEBUG(5,("sam_get_account_by_name: %d\n", __LINE__));
-
-	SAM_SETUP_CONTEXT;
-
-	SAM_ASSERT(access_token && domain && name && account);
-
-	if (!NT_STATUS_IS_OK(nt_status = sam_get_methods_by_name(context, &tmp_methods, domain))) {
-		DEBUG(4,("sam_get_methods_by_name failed\n"));
-		return nt_status;
-	}
-
-	if (!tmp_methods->sam_get_account_by_name) {
-		DEBUG(3, ("sam_get_account_by_name: sam_methods of the domain did not specify sam_get_account_by_name\n"));
-		return NT_STATUS_NOT_IMPLEMENTED;
-	}
-
-	if (!NT_STATUS_IS_OK(nt_status = tmp_methods->sam_get_account_by_name(tmp_methods, access_token, access_desired, name, account))) {
-		DEBUG(4,("sam_get_account_by_name for %s\\%s in backend %s failed\n",
-				 domain, name, tmp_methods->backendname));
-		return nt_status;
-	}
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_create_group(const SAM_CONTEXT *context, const NT_USER_TOKEN *access_token, uint32 access_desired, const DOM_SID *domainsid, const char *group_name, uint16 group_ctrl, SAM_GROUP_HANDLE **group)
-{
-	SAM_METHODS	*tmp_methods;
-	NTSTATUS	nt_status;
-
-	DEBUG(5,("sam_create_group: %d\n", __LINE__));
-
-	SAM_SETUP_CONTEXT;
-
-	SAM_ASSERT(access_token && domainsid && group_name && group);
-
-	if (!NT_STATUS_IS_OK(nt_status = sam_get_methods_by_sid(context, &tmp_methods, domainsid))) {
-		DEBUG(4,("sam_get_methods_by_sid failed\n"));
-		return nt_status;
-	}
-
-	if (!tmp_methods->sam_create_group) {
-		DEBUG(3, ("sam_create_group: sam_methods of the domain did not specify sam_create_group\n"));
-		return NT_STATUS_UNSUCCESSFUL; 
-	}
-
-	if (!NT_STATUS_IS_OK(nt_status = tmp_methods->sam_create_group(tmp_methods, access_token, access_desired, group_name, group_ctrl, group))) {
-		DEBUG(4,("sam_create_group in backend %s failed\n",
-				 tmp_methods->backendname));
-		return nt_status;
-	}
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_add_group(const SAM_CONTEXT *context, const SAM_GROUP_HANDLE *group)
-{
-	DOM_SID		domainsid;
-	const DOM_SID		*groupsid;
-	SAM_METHODS	*tmp_methods;
-	uint32		rid;
-	NTSTATUS	nt_status;
-	
-	DEBUG(5,("sam_add_group: %d\n", __LINE__));
-
-	SAM_SETUP_CONTEXT;
-
-	SAM_ASSERT(group);
-
-	if (!NT_STATUS_IS_OK(nt_status = sam_get_group_sid(group, &groupsid))) {
-		DEBUG(0,("Can't get group SID\n"));
-		return nt_status;
-	}
-
-	sid_copy(&domainsid, groupsid);
-	if (!sid_split_rid(&domainsid, &rid)) {
-		DEBUG(3,("sam_get_group_by_sid: failed to split the sid\n"));
-		return NT_STATUS_INVALID_SID;
-	}
-
-	if (!NT_STATUS_IS_OK(nt_status = sam_get_methods_by_sid(context, &tmp_methods, &domainsid))) {
-		DEBUG(4,("sam_get_methods_by_sid failed\n"));
-		return nt_status;
-	}
-
-	if (!tmp_methods->sam_add_group) {
-		DEBUG(3, ("sam_add_group: sam_methods of the domain did not specify sam_add_group\n"));
-		return NT_STATUS_NOT_IMPLEMENTED;
-	}
-
-	if (!NT_STATUS_IS_OK(nt_status = tmp_methods->sam_add_group(tmp_methods, group))){
-		DEBUG(4,("sam_add_group in backend %s failed\n",
-				 tmp_methods->backendname));
-		return nt_status;
-	}
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_update_group(const SAM_CONTEXT *context, const SAM_GROUP_HANDLE *group)
-{
-	const SAM_METHODS *tmp_methods;
-	NTSTATUS     nt_status;
-	
-	DEBUG(5,("sam_update_group: %d\n", __LINE__));
-	
-	SAM_SETUP_CONTEXT;
-
-	/* invalid group specified */
-	SAM_ASSERT(group && group->current_sam_methods);
-	
-	tmp_methods = group->current_sam_methods;
-	
-	if (!tmp_methods->sam_update_group) {
-		DEBUG(3, ("sam_update_group: sam_methods of the domain did not specify sam_update_group\n"));
-		return NT_STATUS_NOT_IMPLEMENTED;
-	}
-
-	if (!NT_STATUS_IS_OK(nt_status = tmp_methods->sam_update_group(tmp_methods, group))){
-		DEBUG(4,("sam_update_group in backend %s failed\n",
-				 tmp_methods->backendname));
-		return nt_status;
-	}
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_delete_group(const SAM_CONTEXT *context, const SAM_GROUP_HANDLE *group)
-{
-	const SAM_METHODS *tmp_methods;
-	NTSTATUS     nt_status;
-	
-	DEBUG(5,("sam_delete_group: %d\n", __LINE__));
-	
-	SAM_SETUP_CONTEXT;
-
-	/* invalid group specified */
-	SAM_ASSERT(group && group->current_sam_methods);
-	
-	tmp_methods = group->current_sam_methods;
-
-	if (!tmp_methods->sam_delete_group) {
-		DEBUG(3, ("sam_delete_group: sam_methods of the domain did not specify sam_delete_group\n"));
-		return NT_STATUS_NOT_IMPLEMENTED;
-	}
-
-	if (!NT_STATUS_IS_OK(nt_status = tmp_methods->sam_delete_group(tmp_methods, group))){
-		DEBUG(4,("sam_delete_group in backend %s failed\n",
-				 tmp_methods->backendname));
-		return nt_status;
-	}
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_enum_groups(const SAM_CONTEXT *context, const NT_USER_TOKEN *access_token, const DOM_SID *domainsid, uint16 group_ctrl, uint32 *groups_count, SAM_GROUP_ENUM **groups)
-{
-	SAM_METHODS	*tmp_methods;
-	NTSTATUS	nt_status;
-
-	DEBUG(5,("sam_enum_groups: %d\n", __LINE__));
-
-	SAM_SETUP_CONTEXT;
-
-	SAM_ASSERT(access_token && domainsid && groups_count && groups);
-
-	if (!NT_STATUS_IS_OK(nt_status = sam_get_methods_by_sid(context, &tmp_methods, domainsid))) {
-		DEBUG(4,("sam_get_methods_by_sid failed\n"));
-		return nt_status;
-	}
-
-	if (!tmp_methods->sam_enum_accounts) {
-		DEBUG(3, ("sam_enum_groups: sam_methods of the domain did not specify sam_enum_groups\n"));
-		return NT_STATUS_NOT_IMPLEMENTED;
-	}
-
-	if (!NT_STATUS_IS_OK(nt_status = tmp_methods->sam_enum_groups(tmp_methods, access_token, group_ctrl, groups_count, groups))) {
-		DEBUG(4,("sam_enum_groups for domain %s in backend %s failed\n",
-				 tmp_methods->domain_name, tmp_methods->backendname));
-		return nt_status;
-	}
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_group_by_sid(const SAM_CONTEXT *context, const NT_USER_TOKEN *access_token, uint32 access_desired, const DOM_SID *groupsid, SAM_GROUP_HANDLE **group)
-{
-	SAM_METHODS	*tmp_methods;
-	uint32		rid;
-	NTSTATUS	nt_status;
-	DOM_SID		domainsid;
-
-	DEBUG(5,("sam_get_group_by_sid: %d\n", __LINE__));
-
-	SAM_SETUP_CONTEXT;
-
-	SAM_ASSERT(access_token && groupsid && group);
-
-	sid_copy(&domainsid, groupsid);
-	if (!sid_split_rid(&domainsid, &rid)) {
-		DEBUG(3,("sam_get_group_by_sid: failed to split the sid\n"));
-		return NT_STATUS_INVALID_SID;
-	}
-
-
-	if (!NT_STATUS_IS_OK(nt_status = sam_get_methods_by_sid(context, &tmp_methods, &domainsid))) {
-		DEBUG(4,("sam_get_methods_by_sid failed\n"));
-		return nt_status;
-	}
-
-	if (!tmp_methods->sam_get_group_by_sid) {
-		DEBUG(3, ("sam_get_group_by_sid: sam_methods of the domain did not specify sam_get_group_by_sid\n"));
-		return NT_STATUS_NOT_IMPLEMENTED;
-	}
-
-	if (!NT_STATUS_IS_OK(nt_status = tmp_methods->sam_get_group_by_sid(tmp_methods, access_token, access_desired, groupsid, group))) {
-		DEBUG(4,("sam_get_group_by_sid for %s in backend %s failed\n",
-				 sid_string_static(groupsid), tmp_methods->backendname));
-		return nt_status;
-	}
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_get_group_by_name(const SAM_CONTEXT *context, const NT_USER_TOKEN *access_token, uint32 access_desired, const char *domain, const char *name, SAM_GROUP_HANDLE **group)
-{
-	SAM_METHODS	*tmp_methods;
-	NTSTATUS	nt_status;
-
-	DEBUG(5,("sam_get_group_by_name: %d\n", __LINE__));
-
-	SAM_SETUP_CONTEXT;
-
-	SAM_ASSERT(access_token && domain && name && group);
-
-	if (!NT_STATUS_IS_OK(nt_status = sam_get_methods_by_name(context, &tmp_methods, domain))) {
-		DEBUG(4,("sam_get_methods_by_name failed\n"));
-		return nt_status;
-	}
-
-	if (!tmp_methods->sam_get_group_by_name) {
-		DEBUG(3, ("sam_get_group_by_name: sam_methods of the domain did not specify sam_get_group_by_name\n"));
-		return NT_STATUS_NOT_IMPLEMENTED;
-	}
-
-	if (!NT_STATUS_IS_OK(nt_status = tmp_methods->sam_get_group_by_name(tmp_methods, access_token, access_desired, name, group))) {
-		DEBUG(4,("sam_get_group_by_name for %s\\%s in backend %s failed\n",
-				 domain, name, tmp_methods->backendname));
-		return nt_status;
-	}
-
-	return NT_STATUS_OK;
-}
-
-NTSTATUS sam_add_member_to_group(const SAM_CONTEXT *context, const SAM_GROUP_HANDLE *group, const SAM_GROUP_MEMBER *member)
-{
-	const SAM_METHODS *tmp_methods;
-	NTSTATUS     nt_status;
-	
-	SAM_SETUP_CONTEXT;
-	
-	/* invalid group or member specified */
-	SAM_ASSERT(group && group->current_sam_methods && member);
-	
-	tmp_methods = group->current_sam_methods;
-			
-	if (!tmp_methods->sam_add_member_to_group) {
-		DEBUG(3, ("sam_add_member_to_group: sam_methods of the domain did not specify sam_add_member_to_group\n"));
-		return NT_STATUS_NOT_IMPLEMENTED;
-	}
-	
-	if (!NT_STATUS_IS_OK(nt_status = tmp_methods->sam_add_member_to_group(tmp_methods, group, member))) {
-		DEBUG(4,("sam_add_member_to_group in backend %s failed\n", tmp_methods->backendname));
-		return nt_status;
-	}
-	
-	return NT_STATUS_OK;	
-	
-}
-
-NTSTATUS sam_delete_member_from_group(const SAM_CONTEXT *context, const SAM_GROUP_HANDLE *group, const SAM_GROUP_MEMBER *member)
-{
-	const SAM_METHODS *tmp_methods;
-	NTSTATUS     nt_status;
-
-	SAM_SETUP_CONTEXT;
-	
-	/* invalid group or member specified */
-	SAM_ASSERT(group && group->current_sam_methods && member);
-	
-	tmp_methods = group->current_sam_methods;
-	
-	if (!tmp_methods->sam_delete_member_from_group) {
-		DEBUG(3, ("sam_delete_member_from_group: sam_methods of the domain did not specify sam_delete_member_from_group\n"));
-		return NT_STATUS_NOT_IMPLEMENTED;
-	}
-	
-	if (!NT_STATUS_IS_OK(nt_status = tmp_methods->sam_delete_member_from_group(tmp_methods, group, member))) {
-		DEBUG(4,("sam_delete_member_from_group in backend %s failed\n", tmp_methods->backendname));
-		return nt_status;
-	}
-	
-	return NT_STATUS_OK;	
-}
-
-NTSTATUS sam_enum_groupmembers(const SAM_CONTEXT *context, const SAM_GROUP_HANDLE *group, uint32 *members_count, SAM_GROUP_MEMBER **members)
-{
-	const SAM_METHODS *tmp_methods;
-	NTSTATUS     nt_status;
-	
-	SAM_SETUP_CONTEXT;
-	
-	/* invalid group specified */
-	SAM_ASSERT(group && group->current_sam_methods && members_count && members);
-	
-	tmp_methods = group->current_sam_methods;
-
-	if (!tmp_methods->sam_enum_groupmembers) {
-		DEBUG(3, ("sam_enum_groupmembers: sam_methods of the domain did not specify sam_enum_group_members\n"));
-		return NT_STATUS_NOT_IMPLEMENTED;
-	}
-	
-	if (!NT_STATUS_IS_OK(nt_status = tmp_methods->sam_enum_groupmembers(tmp_methods, group, members_count, members))) {
-		DEBUG(4,("sam_enum_groupmembers in backend %s failed\n", tmp_methods->backendname));
-		return nt_status;
-	}
-	
-	return NT_STATUS_OK;	
-}
-
-NTSTATUS sam_get_groups_of_sid(const SAM_CONTEXT *context, const NT_USER_TOKEN *access_token, const DOM_SID **sids, uint16 group_ctrl, uint32 *group_count, SAM_GROUP_ENUM **groups)
-{
-	SAM_METHODS	*tmp_methods;
-	NTSTATUS	nt_status;
-	
-	uint32          tmp_group_count;
-	SAM_GROUP_ENUM *tmp_groups;
-	
-	DEBUG(5,("sam_get_groups_of_sid: %d\n", __LINE__));
-
-	SAM_SETUP_CONTEXT;
-	
-	/* invalid sam_context specified */
-	SAM_ASSERT(access_token && sids && context && context->methods);
-	
-	*group_count = 0;
-	
-	*groups = NULL;
-
-	tmp_methods= context->methods;
-
-	while (tmp_methods) {
-		DEBUG(5,("getting groups from domain \n"));
-		if (!tmp_methods->sam_get_groups_of_sid) {
-			DEBUG(3, ("sam_get_groups_of_sid: sam_methods of domain did not specify sam_get_groups_of_sid\n"));
-			SAFE_FREE(*groups);
-			return NT_STATUS_NOT_IMPLEMENTED;
-		}
-		
-		if (!NT_STATUS_IS_OK(nt_status = tmp_methods->sam_get_groups_of_sid(tmp_methods, access_token, sids, group_ctrl, &tmp_group_count, &tmp_groups))) {
-			DEBUG(4,("sam_get_groups_of_sid in backend %s failed\n", tmp_methods->backendname));
-			SAFE_FREE(*groups);
-			return nt_status;
-		}
-		
-		*groups = Realloc(*groups, ((*group_count)  + tmp_group_count) * sizeof(SAM_GROUP_ENUM));
-
-		memcpy(&(*groups)[*group_count], tmp_groups, tmp_group_count);		
-		
-		SAFE_FREE(tmp_groups);
-		
-		*group_count += tmp_group_count;
-		
-		tmp_methods = tmp_methods->next;
-	}
-	
-	return NT_STATUS_OK;	
-}
-
-
diff --git a/source3/sam/sam_ads.c b/source3/sam/sam_ads.c
deleted file mode 100755
index 6cb205d338e..00000000000
--- a/source3/sam/sam_ads.c
+++ /dev/null
@@ -1,1378 +0,0 @@
-/*
-  Unix SMB/CIFS implementation.
-  Active Directory SAM backend, for simulate a W2K DC in mixed mode.
-
-  Copyright (C) Stefan (metze) Metzmacher	2002
-  Copyright (C) Andrew Bartlett		2002
-
-  This program is free software; you can redistribute it and/or modify
-  it under the terms of the GNU General Public License as published by
-  the Free Software Foundation; either version 2 of the License, or
-  (at your option) any later version.
-
-  This program is distributed in the hope that it will be useful,
-  but WITHOUT ANY WARRANTY; without even the implied warranty of
-  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-  GNU General Public License for more details.
-
-  You should have received a copy of the GNU General Public License
-  along with this program; if not, write to the Free Software
-  Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
-*/
-
-#include "includes.h"
-
-
-#ifdef HAVE_LDAP
-
-static int sam_ads_debug_level = DBGC_SAM;
-
-#undef DBGC_CLASS
-#define DBGC_CLASS sam_ads_debug_level
-
-#ifndef FIXME
-#define FIXME( body ) { DEBUG(0,("FIXME: "));\
-			DEBUGADD(0,(body));}
-#endif
-
-#define ADS_STATUS_OK ADS_ERROR(0)
-#define ADS_STATUS_UNSUCCESSFUL ADS_ERROR_NT(NT_STATUS_UNSUCCESSFUL)
-#define ADS_STATUS_NOT_IMPLEMENTED ADS_ERROR_NT(NT_STATUS_NOT_IMPLEMENTED)
-
-
-#define ADS_SUBTREE_BUILTIN	"CN=Builtin,"
-#define ADS_SUBTREE_COMPUTERS	"CN=Computers,"
-#define	ADS_SUBTREE_DC		"CN=Domain Controllers,"
-#define ADS_SUBTREE_USERS 	"CN=Users,"
-#define ADS_ROOT_TREE		""
-/* Here are private module structs and functions */
-
-typedef struct sam_ads_privates {
-	ADS_STRUCT 	*ads_struct;
-	TALLOC_CTX	*mem_ctx;
-	BOOL            bind_plaintext;
-	char            *ads_bind_dn;
-	char            *ads_bind_pw;
-	char            *ldap_uri;
-	/* did we need something more? */
-}SAM_ADS_PRIVATES;
-
-
-/* get only these LDAP attributes, witch we really need for an account */
-const char *account_attrs[] = {	"objectSid",
-				"objectGUID", 
-				"sAMAccountType",
-				"sAMAcountName",
-				"userPrincipalName",
-				"accountExpires",
-				"badPasswordTime",
-				"badPwdCount",
-				"lastLogoff",
-				"lastLogon",
-				"userWorkstations",
-				"dBCSPwd",
-				"unicodePwd",
-				"pwdLastSet",
-				"userAccountControl",
-				"profilePath",
-				"homeDrive",
-				"scriptPath",
-				"homeDirectory",
-				"cn",
-				"primaryGroupID",/* 513 */
-				"nsNPAllowDialIn",/* TRUE */
-				"userParameters",/* Dial Back number ...*/
-				"codePage",/* 0 */
-				"countryCode",/* 0 */
-				"adminCount",/* 1 or 0 */
-				"logonCount",/* 0 */
-				"managedObjects",
-				"memberOf",/* dn */
-				"instanceType",/* 4 */
-				"name", /* sync with cn */
-				"description",
-				/* "nTSecurityDescriptor", */
-				NULL};
-			
-/* get only these LDAP attributes, witch we really need for a group */			
-const char *group_attrs[] = {"objectSid",
-			     /* "objectGUID", */ 
-			     "sAMAccountType",
-			     "sAMAcountName",
-			     "groupType",
-			     /* "member", */
-			     "description",
-			     "name", /* sync with cn */
-			     /* "nTSecurityDescriptor", */
-			     NULL};
-			
-
-/***************************************************
-  return our ads connection. We keep the connection
-  open to make things faster
-****************************************************/
-static ADS_STATUS sam_ads_cached_connection(SAM_ADS_PRIVATES *privates)
-{
-	ADS_STRUCT 	*ads_struct;
-	ADS_STATUS	ads_status;
-	
-	if (!privates->ads_struct) {
-		privates->ads_struct = ads_init_simple();
-		ads_struct = privates->ads_struct;
-		ads_struct->server.ldap_uri = smb_xstrdup(privates->ldap_uri);
-		if ((!privates->ads_bind_dn) || (!*privates->ads_bind_dn)) {
-			ads_struct->auth.flags |= ADS_AUTH_ANON_BIND;
-		} else {
-			ads_struct->auth.user_name 
-				= smb_xstrdup(privates->ads_bind_dn);
-			if (privates->ads_bind_pw) {
-				ads_struct->auth.password 
-					= smb_xstrdup(privates->ads_bind_pw);
-			}
-		}
-		if (privates->bind_plaintext) {
-			ads_struct->auth.flags |= ADS_AUTH_SIMPLE_BIND;
-		}
-	} else {
-		ads_struct = privates->ads_struct;
-	}
-
-	if (ads_struct->ld != NULL) {		
-		/* connection has been opened. ping server. */
-		struct sockaddr_un addr;
-		socklen_t len;
-		int sd;
-		if (ldap_get_option(ads_struct->ld, LDAP_OPT_DESC, &sd) == 0 &&
-		    getpeername(sd, (struct sockaddr *) &addr, &len) < 0) {
-		    	/* the other end has died. reopen. */
-		    	ldap_unbind_ext(ads_struct->ld, NULL, NULL);
-		    	ads_struct->ld = NULL;
-		}
-    	}
-
-	if (ads_struct->ld != NULL) {
-		DEBUG(5,("sam_ads_cached_connection: allready connected to the LDAP server\n"));
-		return ADS_SUCCESS;
-	}
-
-	ads_status = ads_connect(ads_struct);
-
-	ads_status = ads_server_info(ads_struct);
-	if (!ADS_ERR_OK(ads_status)) {
-		DEBUG(0,("Can't set server info: %s\n",ads_errstr(ads_status)));
-		/* return ads_status; */ FIXME("for now we only warn!\n");
-	}
-
-	DEBUG(2, ("sam_ads_cached_connection: succesful connection to the LDAP server\n"));
-	return ADS_SUCCESS;
-}
-
-static ADS_STATUS sam_ads_do_search(SAM_ADS_PRIVATES *privates, const char *bind_path, int scope, const char *exp, const char **attrs, void **res)
-{
-	ADS_STATUS	ads_status = ADS_ERROR_NT(NT_STATUS_UNSUCCESSFUL);
-	
-	ads_status = sam_ads_cached_connection(privates);
-	if (!ADS_ERR_OK(ads_status))
-		return ads_status;
-		
-	return ads_do_search_retry(privates->ads_struct, bind_path, scope, exp, attrs, res);		
-}
-
-
-/*********************************************
-here we have to check the update serial number
- - this is the core of the ldap cache
-*********************************************/
-static ADS_STATUS sam_ads_usn_is_valid(SAM_ADS_PRIVATES *privates, uint32 usn_in, uint32 *usn_out)
-{
-	ADS_STATUS	ads_status = ADS_ERROR_NT(NT_STATUS_UNSUCCESSFUL);
-
-	SAM_ASSERT(privates && privates->ads_struct && usn_out);
-
-	ads_status = ads_USN(privates->ads_struct, usn_out);
-	if (!ADS_ERR_OK(ads_status))
-		return ads_status;	
-	
-	if (*usn_out == usn_in)
-		return ADS_SUCCESS;
-		
-	return ads_status;	
-}
-
-/***********************************************
-Initialize SAM_ACCOUNT_HANDLE from an ADS query
-************************************************/
-/* not ready :-( */
-static ADS_STATUS ads_entry2sam_account_handle(SAM_ADS_PRIVATES *privates, SAM_ACCOUNT_HANDLE *account ,void *msg)
-{
-	ADS_STATUS	ads_status = ADS_ERROR_NT(NT_STATUS_NO_SUCH_USER);
-	NTSTATUS	nt_status = NT_STATUS_NO_SUCH_USER;
-	ADS_STRUCT 	*ads_struct = privates->ads_struct;
-	TALLOC_CTX	*mem_ctx = account->mem_ctx;
-	char		*tmp_str = NULL;
-	
-	SAM_ASSERT(privates && ads_struct && account && mem_ctx && msg);
-
-	FIXME("should we really use ads_pull_username()(or ads_pull_string())?\n");
-	if ((account->private.account_name = ads_pull_username(ads_struct, mem_ctx, msg))==NULL) {
-		DEBUG(0,("ads_pull_username failed\n"));
-		return ADS_ERROR_NT(NT_STATUS_NO_SUCH_USER);
-	}
-	
-	if ((account->private.full_name = ads_pull_string(ads_struct, mem_ctx, msg,"name"))==NULL) {
-		DEBUG(3,("ads_pull_string for 'name' failed - skip\n"));
-	}
-	
-	if ((account->private.acct_desc = ads_pull_string(ads_struct, mem_ctx, msg,"description"))!=NULL) {
-		DEBUG(3,("ads_pull_string for 'acct_desc' failed - skip\n"));
-	}
-	
-	if ((account->private.home_dir = ads_pull_string(ads_struct, mem_ctx, msg,"homeDirectory"))!=NULL) {
-		DEBUG(3,("ads_pull_string for 'homeDirectory' failed - skip\n"));
-	}
-	
-	if ((account->private.dir_drive = ads_pull_string(ads_struct, mem_ctx, msg,"homeDrive"))!=NULL) {
-		DEBUG(3,("ads_pull_string for 'homeDrive' failed - skip\n"));
-	}
-	
-	if ((account->private.profile_path = ads_pull_string(ads_struct, mem_ctx, msg,"profilePath"))!=NULL) {
-		DEBUG(3,("ads_pull_string for 'profilePath' failed - skip\n"));
-	}
-	
-	if ((account->private.logon_script = ads_pull_string(ads_struct, mem_ctx, msg,"scriptPath"))!=NULL) {
-		DEBUG(3,("ads_pull_string for 'scriptPath' failed - skip\n"));
-	}
-	
-	FIXME("check 'nsNPAllowDialIn' for munged_dial!\n");
-	if ((account->private.munged_dial = ads_pull_string(ads_struct, mem_ctx, msg,"userParameters"))!=NULL) {
-		DEBUG(3,("ads_pull_string for 'userParameters' failed - skip\n"));
-	}
-	
-	if ((account->private.unix_home_dir = ads_pull_string(ads_struct, mem_ctx, msg,"msSFUHomeDrirectory"))!=NULL) {
-		DEBUG(3,("ads_pull_string for 'msSFUHomeDrirectory' failed - skip\n"));
-	}
-
-#if 0
-	FIXME("use function intern mem_ctx for pwdLastSet\n");
-	if ((tmp_str = ads_pull_string(ads_struct, mem_ctx, msg,"pwdLastSet"))!=NULL) {
-		DEBUG(3,("ads_pull_string for 'pwdLastSet' failed - skip\n"));
-	} else {
-		account->private.pass_last_set_time = ads_parse_nttime(tmp_str);
-		tmp_str = NULL;
-		
-	}	
-#endif
-
-#if 0
-typedef struct sam_account_handle {
-	TALLOC_CTX *mem_ctx;
-	uint32 access_granted;
-	const struct sam_methods *current_sam_methods; /* sam_methods creating this handle */
-	void (*free_fn)(struct sam_account_handle **);
-	struct sam_account_data {
-		uint32 init_flag;
-		NTTIME logon_time; /* logon time */
-		NTTIME logoff_time; /* logoff time */
-		NTTIME kickoff_time; /* kickoff time */
-		NTTIME pass_last_set_time; /* password last set time */
-		NTTIME pass_can_change_time; /* password can change time */
-		NTTIME pass_must_change_time; /* password must change time */
-		char * account_name; /* account_name string */
-		SAM_DOMAIN_HANDLE * domain; /* domain of account */
-		char *full_name; /* account's full name string */
-		char *unix_home_dir; /* UNIX home directory string */
-		char *home_dir; /* home directory string */
-		char *dir_drive; /* home directory drive string */
-		char *logon_script; /* logon script string */
-		char *profile_path; /* profile path string */
-		char *acct_desc; /* account description string */
-		char *workstations; /* login from workstations string */
-		char *unknown_str; /* don't know what this is, yet. */
-		char *munged_dial; /* munged path name and dial-back tel number */
-		DOM_SID account_sid; /* Primary Account SID */
-		DOM_SID group_sid; /* Primary Group SID */
-		DATA_BLOB lm_pw; /* .data is Null if no password */
-		DATA_BLOB nt_pw; /* .data is Null if no password */
-		char *plaintext_pw; /* if Null not available */
-		uint16 acct_ctrl; /* account info (ACB_xxxx bit-mask) */
-		uint32 unknown_1; /* 0x00ff ffff */
-		uint16 logon_divs; /* 168 - number of hours in a week */
-		uint32 hours_len; /* normally 21 bytes */
-		uint8 hours[MAX_HOURS_LEN];
-		uint32 unknown_2; /* 0x0002 0000 */
-		uint32 unknown_3; /* 0x0000 04ec */
-	} private;
-} SAM_ACCOUNT_HANDLE;
-#endif
-
-	return ads_status;
-}
-
-
-/***********************************************
-Initialize SAM_GROUP_ENUM from an ads entry
-************************************************/
-/* not ready :-( */
-static ADS_STATUS ads_entry2sam_group_enum(SAM_ADS_PRIVATES *privates, TALLOC_CTX *mem_ctx, SAM_GROUP_ENUM **group_enum,const void *entry)
-{
-	ADS_STATUS 	ads_status = ADS_STATUS_UNSUCCESSFUL;
-	ADS_STRUCT 	*ads_struct = privates->ads_struct;
-	SAM_GROUP_ENUM	__group_enum;
-	SAM_GROUP_ENUM  *_group_enum = &__group_enum;
-	
-	SAM_ASSERT(privates && ads_struct && mem_ctx && group_enum && entry);
-	
-	*group_enum = _group_enum;
-	
-	DEBUG(3,("sam_ads: ads_entry2sam_account_handle\n"));
-
-	if (!ads_pull_sid(ads_struct, &entry, "objectSid", &(_group_enum->sid))) {
-		DEBUG(0,("No sid for!?\n"));
-		return ADS_STATUS_UNSUCCESSFUL;
-	}
-	
-	if (!(_group_enum->group_name = ads_pull_string(ads_struct, mem_ctx, &entry, "sAMAccountName"))) {
-		DEBUG(0,("No groupname found"));
-		return ADS_STATUS_UNSUCCESSFUL;
-	}
-
-	if (!(_group_enum->group_desc = ads_pull_string(ads_struct, mem_ctx, &entry, "desciption"))) {
-		DEBUG(0,("No description found"));
-		return ADS_STATUS_UNSUCCESSFUL;
-	}	
-
-	DEBUG(0,("sAMAccountName: %s\ndescription: %s\nobjectSid: %s\n",
-		 _group_enum->group_name,
-		 _group_enum->group_desc,
-		 sid_string_static(&(_group_enum->sid))
-		      ));
-	
-	return ads_status;
-}
-
-static ADS_STATUS sam_ads_access_check(SAM_ADS_PRIVATES *privates, const SEC_DESC *sd, const NT_USER_TOKEN *access_token, uint32 access_desired, uint32 *acc_granted)
-{
-	ADS_STATUS	ads_status = ADS_ERROR_NT(NT_STATUS_ACCESS_DENIED);
-	NTSTATUS	nt_status;
-	uint32		my_acc_granted;
-
-	SAM_ASSERT(privates && sd && access_token);
-	/* acc_granted can be set to NULL */
-	
-	/* the steps you need are: 
-	   1. get_sec_desc for sid 
-	   2. se_map_generic(accessdesired, generic_mapping) 
-	   3. se_access_check()	*/
-
-	if (!se_access_check(sd, access_token, access_desired, (acc_granted)?acc_granted:&my_acc_granted, &nt_status)) {
-		DEBUG(3,("sam_ads_access_check: ACCESS DENIED\n"));
-		ads_status = ADS_ERROR_NT(nt_status);
-		return ads_status;
-	}
-	ads_status = ADS_ERROR_NT(nt_status);	
-	return ads_status;
-}
-
-static ADS_STATUS sam_ads_get_tree_sec_desc(SAM_ADS_PRIVATES *privates, const char *subtree, SEC_DESC **sd)
-{
-	ADS_STATUS		ads_status = ADS_ERROR_NT(NT_STATUS_INVALID_PARAMETER);
-	ADS_STRUCT 		*ads_struct = privates->ads_struct;
-	TALLOC_CTX		*mem_ctx = privates->mem_ctx;
-	char			*search_path;
-	void 			*sec_desc_res;
-	void 			*sec_desc_msg;
-	const char		*sec_desc_attrs[] = {"nTSecurityDescriptor",NULL};
-		
-	SAM_ASSERT(privates && ads_struct && mem_ctx && sd);
-	*sd = NULL;
-		
-	if (subtree) {
-		asprintf(&search_path, "%s%s",subtree,ads_struct->config.bind_path);
-	} else {
-		asprintf(&search_path, "%s","");
-	}
-	ads_status = sam_ads_do_search(privates, search_path, LDAP_SCOPE_BASE, "(objectClass=*)", sec_desc_attrs, &sec_desc_res);
-	SAFE_FREE(search_path);
-	if (!ADS_ERR_OK(ads_status))
-		return ads_status;
-		
-	if ((sec_desc_msg = ads_first_entry(ads_struct, sec_desc_res))==NULL) {
-		ads_status = ADS_ERROR_NT(NT_STATUS_INVALID_PARAMETER);
-		return ads_status;		
-	}		
-			
-	if (!ads_pull_sd(ads_struct, mem_ctx, sec_desc_msg, sec_desc_attrs[0], sd)) {
-		*sd = NULL;
-		ads_status = ADS_ERROR_NT(NT_STATUS_INVALID_PARAMETER);
-		return ads_status;
-	}	 	
-	
-	return ads_status;	
-}
-
-static ADS_STATUS sam_ads_account_policy_get(SAM_ADS_PRIVATES *privates, int field, uint32 *value)
-{
-	ADS_STATUS		ads_status = ADS_ERROR_NT(NT_STATUS_INVALID_PARAMETER);
-	ADS_STRUCT		*ads_struct = privates->ads_struct;
-	void			*ap_res;
-	void			*ap_msg;
-	const char		*ap_attrs[] = {"minPwdLength",/* AP_MIN_PASSWORD_LEN */
-						"pwdHistoryLength",/* AP_PASSWORD_HISTORY */
-						"AP_USER_MUST_LOGON_TO_CHG_PASS",/* AP_USER_MUST_LOGON_TO_CHG_PASS */
-						"maxPwdAge",/* AP_MAX_PASSWORD_AGE */
-						"minPwdAge",/* AP_MIN_PASSWORD_AGE */
-						"lockoutDuration",/* AP_LOCK_ACCOUNT_DURATION */
-						"AP_RESET_COUNT_TIME",/* AP_RESET_COUNT_TIME */
-						"AP_BAD_ATTEMPT_LOCKOUT",/* AP_BAD_ATTEMPT_LOCKOUT */
-						"AP_TIME_TO_LOGOUT",/* AP_TIME_TO_LOGOUT */
-						NULL};
-						/*lockOutObservationWindow 
-						lockoutThreshold $ pwdProperties*/
-	static uint32		ap[9];
-	static uint32		ap_usn = 0;
-	uint32			tmp_usn = 0;
-
-	SAM_ASSERT(privates && ads_struct && value);
-	
-	FIXME("We need to decode all account_policy attributes!\n");
-	
-	ads_status = sam_ads_usn_is_valid(privates,ap_usn,&tmp_usn);
-	if (!ADS_ERR_OK(ads_status)) {
-		ads_status = sam_ads_do_search(privates, ads_struct->config.bind_path, LDAP_SCOPE_BASE, "(objectClass=*)", ap_attrs, &ap_res);
-		if (!ADS_ERR_OK(ads_status))
-			return ads_status; 
-		
-		if (ads_count_replies(ads_struct, ap_res) != 1) {
-			ads_msgfree(ads_struct, ap_res);
-			return ADS_ERROR(LDAP_NO_RESULTS_RETURNED);
-		}
-
-		if (!(ap_msg = ads_first_entry(ads_struct, ap_res))) {
-			ads_msgfree(ads_struct, ap_res);
-			return ADS_ERROR(LDAP_NO_RESULTS_RETURNED);
-		}
-		
-		if (!ads_pull_uint32(ads_struct, ap_msg, ap_attrs[0], &ap[0])) {
-			/* AP_MIN_PASSWORD_LEN */
-			ap[0] = MINPASSWDLENGTH;/* 5 chars minimum */
-		}
-		if (!ads_pull_uint32(ads_struct, ap_msg, ap_attrs[1], &ap[1])) {
-			/* AP_PASSWORD_HISTORY */
-			ap[1] = 0;/* don't keep any old password */
-		}
-		if (!ads_pull_uint32(ads_struct, ap_msg, ap_attrs[2], &ap[2])) {
-			/* AP_USER_MUST_LOGON_TO_CHG_PASS */
-			ap[2] = 0;/* don't force user to logon */
-		}
-		if (!ads_pull_uint32(ads_struct, ap_msg, ap_attrs[3], &ap[3])) {
-			/* AP_MAX_PASSWORD_AGE */
-			ap[3] = MAX_PASSWORD_AGE;/* 21 days */
-		}
-		if (!ads_pull_uint32(ads_struct, ap_msg, ap_attrs[4], &ap[4])) {
-			/* AP_MIN_PASSWORD_AGE */
-			ap[4] = 0;/* 0 days */
-		}		
-		if (!ads_pull_uint32(ads_struct, ap_msg, ap_attrs[5], &ap[5])) {
-			/* AP_LOCK_ACCOUNT_DURATION */
-			ap[5] = 0;/* lockout for 0 minutes */
-		}
-		if (!ads_pull_uint32(ads_struct, ap_msg, ap_attrs[6], &ap[6])) {
-			/* AP_RESET_COUNT_TIME */
-			ap[6] = 0;/* reset immediatly */
-		}
-		if (!ads_pull_uint32(ads_struct, ap_msg, ap_attrs[7], &ap[7])) {
-			/* AP_BAD_ATTEMPT_LOCKOUT */
-			ap[7] = 0;/* don't lockout */
-		}
-		if (!ads_pull_uint32(ads_struct, ap_msg, ap_attrs[8], &ap[8])) {
-			/* AP_TIME_TO_LOGOUT */
-			ap[8] = -1;/* don't force logout */
-		}
-		
-		ads_msgfree(ads_struct, ap_res);
-		ap_usn = tmp_usn;
-	}
-
-	switch(field) {
-		case AP_MIN_PASSWORD_LEN:
-			*value = ap[0];
-			ads_status = ADS_ERROR_NT(NT_STATUS_OK);
-			break;
-		case AP_PASSWORD_HISTORY:
-			*value = ap[1];
-			ads_status = ADS_ERROR_NT(NT_STATUS_OK);
-			break;
-		case AP_USER_MUST_LOGON_TO_CHG_PASS:
-			*value = ap[2];
-			ads_status = ADS_ERROR_NT(NT_STATUS_OK);
-			break;
-		case AP_MAX_PASSWORD_AGE:
-			*value = ap[3];
-			ads_status = ADS_ERROR_NT(NT_STATUS_OK);
-			break;
-		case AP_MIN_PASSWORD_AGE:
-			*value = ap[4];
-			ads_status = ADS_ERROR_NT(NT_STATUS_OK);
-			break;
-		case AP_LOCK_ACCOUNT_DURATION:
-			*value = ap[5];
-			ads_status = ADS_ERROR_NT(NT_STATUS_OK);
-			break;
-		case AP_RESET_COUNT_TIME:
-			*value = ap[6];
-			ads_status = ADS_ERROR_NT(NT_STATUS_OK);
-			break;
-		case AP_BAD_ATTEMPT_LOCKOUT:
-			*value = ap[7];
-			ads_status = ADS_ERROR_NT(NT_STATUS_OK);
-			break;
-		case AP_TIME_TO_LOGOUT:
-			*value = ap[8];
-			ads_status = ADS_ERROR_NT(NT_STATUS_OK);
-			break;
-		default: *value = 0; break;
-	}
-	
-	return ads_status;	
-}
-
-
-/**********************************
-Now the functions off the SAM API 
-***********************************/
-
-/* General API */
-static NTSTATUS sam_ads_get_sec_desc(const SAM_METHODS *sam_method, const NT_USER_TOKEN *access_token, 
-			      const DOM_SID *sid, SEC_DESC **sd)
-{
-	ADS_STATUS		ads_status = ADS_ERROR_NT(NT_STATUS_UNSUCCESSFUL);
-	SAM_ADS_PRIVATES 	*privates = (struct sam_ads_privates *)sam_method->private_data;
-	ADS_STRUCT 		*ads_struct = privates->ads_struct;
-	TALLOC_CTX		*mem_ctx;
-	char			*sidstr,*filter;
-	void 			*sec_desc_res;
-	void 			*sec_desc_msg;
-	const char		*sec_desc_attrs[] = {"nTSecurityDescriptor",NULL};
-	fstring                 sid_str;
-	SEC_DESC		*my_sd;
-
-	SAM_ASSERT(sam_method && access_token && sid && sd);	
-	
-	ads_status = sam_ads_get_tree_sec_desc(privates, ADS_ROOT_TREE, &my_sd);
-	if (!ADS_ERR_OK(ads_status))
-		return ads_ntstatus(ads_status);
-
-	ads_status = sam_ads_access_check(privates, my_sd, access_token, GENERIC_RIGHTS_DOMAIN_READ, NULL);
-
-	if (!ADS_ERR_OK(ads_status))
-		return ads_ntstatus(ads_status);
-
-	sidstr = sid_binstring(sid);
-	if (asprintf(&filter, "(objectSid=%s)", sidstr) == -1) {
-		SAFE_FREE(sidstr);
-		return NT_STATUS_NO_MEMORY;
-	}
-
-	SAFE_FREE(sidstr);
-
-	ads_status = sam_ads_do_search(privates,ads_struct->config.bind_path, 
-				       LDAP_SCOPE_SUBTREE, filter, sec_desc_attrs,
-				       &sec_desc_res);
-	SAFE_FREE(filter);
-
-	if (!ADS_ERR_OK(ads_status)) {
-		return ads_ntstatus(ads_status);
-	}
-
-	if (!(mem_ctx = talloc_init_named("sec_desc parse in sam_ads"))) {
-		DEBUG(1, ("talloc_init_named() failed for sec_desc parse context in sam_ads"));
-		ads_msgfree(ads_struct, sec_desc_res);
-		return NT_STATUS_NO_MEMORY;
-	}
-
-	if (ads_count_replies(ads_struct, sec_desc_res) != 1) {
-		DEBUG(1,("sam_ads_get_sec_desc: duplicate or 0 results for sid %s\n", 
-			 sid_to_string(sid_str, sid)));
-		talloc_destroy(mem_ctx);
-		ads_msgfree(ads_struct, sec_desc_res);
-		return NT_STATUS_UNSUCCESSFUL;
-	}
-
-	if (!(sec_desc_msg = ads_first_entry(ads_struct, sec_desc_res))) {
-		talloc_destroy(mem_ctx);
-		ads_msgfree(ads_struct, sec_desc_res);
-		return NT_STATUS_INVALID_PARAMETER;
-	}		
-			
-	if (!ads_pull_sd(ads_struct, mem_ctx, sec_desc_msg, sec_desc_attrs[0], sd)) {
-		ads_status = ADS_ERROR_NT(NT_STATUS_INVALID_PARAMETER);
-		talloc_destroy(mem_ctx);
-		ads_msgfree(ads_struct, sec_desc_res);
-		return ads_ntstatus(ads_status);
-	}	 
-	
-	/* now, were we allowed to see the SD we just got? */
-
-	ads_msgfree(ads_struct, sec_desc_res);
-	talloc_destroy(mem_ctx);
-	return ads_ntstatus(ads_status);
-}
-
-static NTSTATUS sam_ads_set_sec_desc(const SAM_METHODS *sam_method, const NT_USER_TOKEN *access_token, 
-			      const DOM_SID *sid, const SEC_DESC *sd)
-{
-	ADS_STATUS	ads_status = ADS_STATUS_NOT_IMPLEMENTED;
-	DEBUG(0,("sam_ads: %s was called!\n",__FUNCTION__));
-	SAM_ASSERT(sam_method);
-	return ads_ntstatus(ads_status);
-}
-
-	
-static NTSTATUS sam_ads_lookup_sid(const SAM_METHODS *sam_method, const NT_USER_TOKEN *access_token, 
-			    TALLOC_CTX *mem_ctx, const DOM_SID *sid, char **name, 
-			    enum SID_NAME_USE *type)
-{
-	ADS_STATUS		ads_status = ADS_ERROR_NT(NT_STATUS_UNSUCCESSFUL);
-	SAM_ADS_PRIVATES	*privates = (struct sam_ads_privates *)sam_method->private_data;
-	ADS_STRUCT 		*ads_struct = privates->ads_struct;
-	SEC_DESC		*my_sd;
-
-	SAM_ASSERT(sam_method && access_token && mem_ctx && sid && name && type);
-
-	ads_status = sam_ads_get_tree_sec_desc(privates, ADS_ROOT_TREE, &my_sd);	
-	if (!ADS_ERR_OK(ads_status))
-		return ads_ntstatus(ads_status);
-
-	ads_status = sam_ads_access_check(privates, my_sd, access_token, GENERIC_RIGHTS_DOMAIN_READ, NULL);
-	if (!ADS_ERR_OK(ads_status))
-		return ads_ntstatus(ads_status);
-
-	return ads_sid_to_name(ads_struct, mem_ctx, sid, name, type);
-}
-
-static NTSTATUS sam_ads_lookup_name(const SAM_METHODS *sam_method, const NT_USER_TOKEN *access_token, 
-			     const char *name, DOM_SID *sid, enum SID_NAME_USE *type)
-{
-	ADS_STATUS		ads_status = ADS_ERROR_NT(NT_STATUS_UNSUCCESSFUL);
-	SAM_ADS_PRIVATES	*privates = (struct sam_ads_privates *)sam_method->private_data;
-	ADS_STRUCT 		*ads_struct = privates->ads_struct;
-	SEC_DESC		*my_sd;
-
-	SAM_ASSERT(sam_method && access_token && name && sid && type);
-
-	ads_status = sam_ads_get_tree_sec_desc(privates, ADS_ROOT_TREE, &my_sd);
-	if (!ADS_ERR_OK(ads_status))
-		return ads_ntstatus(ads_status);
-
-	ads_status = sam_ads_access_check(privates, my_sd, access_token, GENERIC_RIGHTS_DOMAIN_READ, NULL);
-	if (!ADS_ERR_OK(ads_status))
-		return ads_ntstatus(ads_status);
-
-	return ads_name_to_sid(ads_struct, name, sid, type);
-}
-
-	
-/* Domain API */
-
-static NTSTATUS sam_ads_update_domain(const SAM_METHODS *sam_method, const SAM_DOMAIN_HANDLE *domain)
-{
-	ADS_STATUS	ads_status = ADS_STATUS_NOT_IMPLEMENTED;
-	DEBUG(0,("sam_ads: %s was called!\n",__FUNCTION__));
-	SAM_ASSERT(sam_method);
-	return ads_ntstatus(ads_status);
-}
-
-static NTSTATUS sam_ads_get_domain_handle(const SAM_METHODS *sam_method, const NT_USER_TOKEN *access_token, 
-				   const uint32 access_desired, SAM_DOMAIN_HANDLE **domain)
-{
-	ADS_STATUS		ads_status = ADS_STATUS_NOT_IMPLEMENTED;
-	SAM_ADS_PRIVATES	*privates = (struct sam_ads_privates *)sam_method->private_data;
-	TALLOC_CTX		*mem_ctx = privates->mem_ctx;	/*Fix me is this right??? */
-	SAM_DOMAIN_HANDLE	*dom_handle = NULL;
-	SEC_DESC		*sd;
-	uint32			acc_granted;
-	uint32			tmp_value;
-
-	DEBUG(5,("sam_ads_get_domain_handle: %d\n",__LINE__));
-	
-	SAM_ASSERT(sam_method && access_token && domain);
-	
-	(*domain) = NULL;
-
-	if ((dom_handle = talloc(mem_ctx, sizeof(SAM_DOMAIN_HANDLE))) == NULL) {
-		DEBUG(0,("failed to talloc dom_handle\n"));
-			ads_status = ADS_ERROR_NT(NT_STATUS_NO_MEMORY);
-			return ads_ntstatus(ads_status);
-	}
-
-	ZERO_STRUCTP(dom_handle);
-
-	dom_handle->mem_ctx = mem_ctx; /*Fix me is this right??? */
-	dom_handle->free_fn = NULL;
-	dom_handle->current_sam_methods = sam_method;
-
-	/* check if access can be granted as requested */
-
-	ads_status = sam_ads_get_tree_sec_desc(privates, ADS_ROOT_TREE, &sd);
-	if (!ADS_ERR_OK(ads_status))
-		return ads_ntstatus(ads_status);
-
-	ads_status = sam_ads_access_check(privates, sd, access_token, access_desired, &acc_granted);
-	if (!ADS_ERR_OK(ads_status))
-		return ads_ntstatus(ads_status);
-
-	dom_handle->access_granted = acc_granted;
-
-	/* fill all the values of dom_handle */
-	sid_copy(&dom_handle->private.sid, &sam_method->domain_sid);
-	dom_handle->private.name       = smb_xstrdup(sam_method->domain_name);
-	dom_handle->private.servername = "WHOKNOWS"; /* what is the servername */
-
-	/*Fix me: sam_ads_account_policy_get() return ADS_STATUS! */ 
-	ads_status = sam_ads_account_policy_get(privates, AP_MAX_PASSWORD_AGE, &tmp_value);
-	if (!ADS_ERR_OK(ads_status)) {
-		DEBUG(4,("sam_ads_account_policy_get failed for max password age. Useing default\n"));
-		tmp_value = MAX_PASSWORD_AGE;
-	}
-	unix_to_nt_time_abs(&dom_handle->private.max_passwordage,tmp_value);
-
-	ads_status = sam_ads_account_policy_get(privates, AP_MIN_PASSWORD_AGE, &tmp_value);
-	if (!ADS_ERR_OK(ads_status)) {
-		DEBUG(4,("sam_ads_account_policy_get failed for min password age. Useing default\n"));
-		tmp_value = 0;
-	}
-	unix_to_nt_time_abs(&dom_handle->private.min_passwordage, tmp_value);
-
-	ads_status = sam_ads_account_policy_get(privates, AP_LOCK_ACCOUNT_DURATION, &tmp_value);
-	if (!ADS_ERR_OK(ads_status)) {
-		DEBUG(4,("sam_ads_account_policy_get failed for lockout duration. Useing default\n"));
-		tmp_value = 0;
-	}
-	unix_to_nt_time_abs(&dom_handle->private.lockout_duration, tmp_value);
-
-	ads_status = sam_ads_account_policy_get(privates, AP_RESET_COUNT_TIME, &tmp_value);
-	if (!ADS_ERR_OK(ads_status)) {
-		DEBUG(4,("sam_ads_account_policy_get failed for time till locout count is reset. Useing default\n"));
-		tmp_value = 0;
-	}
-	unix_to_nt_time_abs(&dom_handle->private.reset_count, tmp_value);
-
-	ads_status = sam_ads_account_policy_get(privates, AP_MIN_PASSWORD_LEN, &tmp_value);
-	if (!ADS_ERR_OK(ads_status)) {
-		DEBUG(4,("sam_ads_account_policy_get failed for min password length. Useing default\n"));
-		tmp_value = 0;
-	}
-	dom_handle->private.min_passwordlength = (uint16)tmp_value;
-
-	ads_status = sam_ads_account_policy_get(privates, AP_PASSWORD_HISTORY, &tmp_value);
-	if (!ADS_ERR_OK(ads_status)) {
-		DEBUG(4,("sam_ads_account_policy_get failed password history. Useing default\n"));
-		tmp_value = 0;
-	}
-	dom_handle->private.password_history = (uint16)tmp_value;
-
-	ads_status = sam_ads_account_policy_get(privates, AP_BAD_ATTEMPT_LOCKOUT, &tmp_value);
-	if (!ADS_ERR_OK(ads_status)) {
-		DEBUG(4,("sam_ads_account_policy_get failed for bad attempts till lockout. Useing default\n"));
-		tmp_value = 0;
-	}
-	dom_handle->private.lockout_count = (uint16)tmp_value;
-
-	ads_status = sam_ads_account_policy_get(privates, AP_TIME_TO_LOGOUT, &tmp_value);
-	if (!ADS_ERR_OK(ads_status)) {
-		DEBUG(4,("sam_ads_account_policy_get failed for force logout. Useing default\n"));
-		tmp_value = -1;
-	}
-
-	ads_status = sam_ads_account_policy_get(privates, AP_USER_MUST_LOGON_TO_CHG_PASS, &tmp_value);
-	if (!ADS_ERR_OK(ads_status)) {
-		DEBUG(4,("sam_ads_account_policy_get failed for user must login to change password. Useing default\n"));
-		tmp_value = 0;
-	}
-
-	/* should the real values of num_accounts, num_groups and num_aliases be retreved?
-	 * I think it is to expensive to bother
-	 */
-	dom_handle->private.num_accounts = 3;
-	dom_handle->private.num_groups   = 4;
-	dom_handle->private.num_aliases  = 5;
-
-	*domain = dom_handle;
-	
-	ads_status = ADS_ERROR_NT(NT_STATUS_OK);
-	return ads_ntstatus(ads_status);
-}
-
-/* Account API */
-static NTSTATUS sam_ads_create_account(const SAM_METHODS *sam_method, 
-				const NT_USER_TOKEN *access_token, uint32 access_desired, 
-				const char *account_name, uint16 acct_ctrl, SAM_ACCOUNT_HANDLE **account)
-{
-	ADS_STATUS		ads_status = ADS_STATUS_NOT_IMPLEMENTED;
-	SAM_ADS_PRIVATES	*privates = (struct sam_ads_privates *)sam_method->private_data;
-	SEC_DESC		*sd = NULL;
-	uint32			acc_granted;
-
-	SAM_ASSERT(sam_method && privates && access_token && account_name && account);
-
-	ads_status = sam_ads_get_tree_sec_desc(privates, ADS_SUBTREE_USERS, &sd);
-	if (!ADS_ERR_OK(ads_status))
-		return ads_ntstatus(ads_status);
-
-	ads_status = sam_ads_access_check(privates, sd, access_token, access_desired, &acc_granted);
-	if (!ADS_ERR_OK(ads_status))
-		return ads_ntstatus(ads_status);
-
-	ads_status = ADS_ERROR_NT(sam_init_account(account));
-	if (!ADS_ERR_OK(ads_status))
-		return ads_ntstatus(ads_status);	
-
-	(*account)->access_granted = acc_granted;
-
-	return ads_ntstatus(ads_status);
-}
-
-static NTSTATUS sam_ads_add_account(const SAM_METHODS *sam_method, const SAM_ACCOUNT_HANDLE *account)
-{
-	ADS_STATUS		ads_status = ADS_ERROR(LDAP_NO_MEMORY);
-	SAM_ADS_PRIVATES	*privates = (struct sam_ads_privates *)sam_method->private_data;
-	ADS_STRUCT 		*ads_struct = privates->ads_struct;
-	TALLOC_CTX		*mem_ctx = privates->mem_ctx;
-	ADS_MODLIST 		mods;
- 	uint16 			acct_ctrl;
- 	char 			*new_dn;
- 	SEC_DESC		*sd;
- 	uint32			acc_granted;
-
-	SAM_ASSERT(sam_method && account);
-	
-	ads_status = ADS_ERROR_NT(sam_get_account_acct_ctrl(account,&acct_ctrl));
-	if (!ADS_ERR_OK(ads_status))
-		goto done;
-			
-	if ((acct_ctrl & ACB_WSTRUST)||(acct_ctrl & ACB_SVRTRUST)) {
-		/* Computer account */
-		char		*name,*controlstr;
-		char		*hostname,*host_upn,*host_spn;
-		const char 	*objectClass[] = {"top", "person", "organizationalPerson",
-						  "user", "computer", NULL};
-
-		ads_status = ADS_ERROR_NT(sam_get_account_name(account,&name));
-		if (!ADS_ERR_OK(ads_status))
-			goto done;
-
-		if (!(host_upn = talloc_asprintf(mem_ctx, "%s@%s", name, ads_struct->config.realm))) {
-			ads_status = ADS_ERROR_NT(NT_STATUS_NO_MEMORY);
-			goto done;
-		}
-
-		if (!(new_dn = talloc_asprintf(mem_ctx, "CN=%s,CN=Computers,%s", hostname, 
-					       ads_struct->config.bind_path))) {
-			ads_status = ADS_ERROR_NT(NT_STATUS_NO_MEMORY);
-			goto done;
-		}
-					
-		if (!(controlstr = talloc_asprintf(mem_ctx, "%u", ads_acb2uf(acct_ctrl)))) {
-			ads_status = ADS_ERROR_NT(NT_STATUS_NO_MEMORY);
-			goto done;
-		}
-		
-		if (!(mods = ads_init_mods(mem_ctx))) {
-			ads_status = ADS_ERROR_NT(NT_STATUS_NO_MEMORY);
-			goto done;
-		}
-		
-		ads_status = ads_mod_str(mem_ctx, &mods, "cn", hostname);
-		if (!ADS_ERR_OK(ads_status))
-			goto done;
-		ads_status = ads_mod_strlist(mem_ctx, &mods, "objectClass", objectClass);
-		if (!ADS_ERR_OK(ads_status))
-			goto done;
-		ads_status = ads_mod_str(mem_ctx, &mods, "userPrincipalName", host_upn);
-		if (!ADS_ERR_OK(ads_status))
-			goto done;
-		ads_status = ads_mod_str(mem_ctx, &mods, "displayName", hostname);
-		if (!ADS_ERR_OK(ads_status))
-			goto done;
-		ads_status = ads_mod_str(mem_ctx, &mods, "sAMAccountName", name);
-		if (!ADS_ERR_OK(ads_status))
-			goto done;
-		ads_status = ads_mod_str(mem_ctx, &mods, "userAccountControl", controlstr);
-		if (!ADS_ERR_OK(ads_status))
-			goto done;	
-
-		ads_status = ads_mod_str(mem_ctx, &mods, "servicePrincipalName", host_spn);
-		if (!ADS_ERR_OK(ads_status))
-			goto done;
-		ads_status = ads_mod_str(mem_ctx, &mods, "dNSHostName", hostname);
-		if (!ADS_ERR_OK(ads_status))
-			goto done;
-		ads_status = ads_mod_str(mem_ctx, &mods, "userAccountControl", controlstr);
-		if (!ADS_ERR_OK(ads_status))
-			goto done;
-		/*	ads_status = ads_mod_str(mem_ctx, &mods, "operatingSystem", "Samba");
-			if (!ADS_ERR_OK(ads_status))
-			goto done;
-		*//*	ads_status = ads_mod_str(mem_ctx, &mods, "operatingSystemVersion", VERSION);
-			if (!ADS_ERR_OK(ads_status))
-			goto done;
-		  */		
-		/* End Computer account */
-	} else {
-		/* User account*/
-		char	 	*upn, *controlstr;
-		char		*name, *fullname;
-		const char 	*objectClass[] = {"top", "person", "organizationalPerson",
-						  "user", NULL};
-
-		ads_status = ADS_ERROR_NT(sam_get_account_name(account,&name));
-		if (!ADS_ERR_OK(ads_status))
-			goto done;
-
-		ads_status = ADS_ERROR_NT(sam_get_account_fullname(account,&fullname));
-		if (!ADS_ERR_OK(ads_status))
-			goto done;
-
-		if (!(upn = talloc_asprintf(mem_ctx, "%s@%s", name, ads_struct->config.realm))) {
-			ads_status = ADS_ERROR_NT(NT_STATUS_NO_MEMORY);
-			goto done;
-		}
-
-		if (!(new_dn = talloc_asprintf(mem_ctx, "CN=%s,CN=Users,%s", fullname, 
-					       ads_struct->config.bind_path))) {
-			ads_status = ADS_ERROR_NT(NT_STATUS_NO_MEMORY);
-			goto done;
-		}
-					
-		if (!(controlstr = talloc_asprintf(mem_ctx, "%u", ads_acb2uf(acct_ctrl)))) {
-			ads_status = ADS_ERROR_NT(NT_STATUS_NO_MEMORY);
-			goto done;
-		}
-		
-		if (!(mods = ads_init_mods(mem_ctx))) {
-			ads_status = ADS_ERROR_NT(NT_STATUS_NO_MEMORY);
-			goto done;
-		}
-		
-		ads_status = ads_mod_str(mem_ctx, &mods, "cn", fullname);
-		if (!ADS_ERR_OK(ads_status))
-			goto done;
-		ads_status = ads_mod_strlist(mem_ctx, &mods, "objectClass", objectClass);
-		if (!ADS_ERR_OK(ads_status))
-			goto done;
-		ads_status = ads_mod_str(mem_ctx, &mods, "userPrincipalName", upn);
-		if (!ADS_ERR_OK(ads_status))
-			goto done;
-		ads_status = ads_mod_str(mem_ctx, &mods, "displayName", fullname);
-		if (!ADS_ERR_OK(ads_status))
-			goto done;
-		ads_status = ads_mod_str(mem_ctx, &mods, "sAMAccountName", name);
-		if (!ADS_ERR_OK(ads_status))
-			goto done;
-		ads_status = ads_mod_str(mem_ctx, &mods, "userAccountControl", controlstr);
-		if (!ADS_ERR_OK(ads_status))
-			goto done;	
-	}/* End User account */	
-
-	/* Finally at the account */
-	ads_status = ads_gen_add(ads_struct, new_dn, mods);
-
-done:
-	return ads_ntstatus(ads_status);
-}
-
-static NTSTATUS sam_ads_update_account(const SAM_METHODS *sam_method, const SAM_ACCOUNT_HANDLE *account)
-{
-	ADS_STATUS	ads_status = ADS_STATUS_NOT_IMPLEMENTED;
-	DEBUG(0,("sam_ads: %s was called!\n",__FUNCTION__));
-	SAM_ASSERT(sam_method);
-	return ads_ntstatus(ads_status);
-}
-
-static NTSTATUS sam_ads_delete_account(const SAM_METHODS *sam_method, const SAM_ACCOUNT_HANDLE *account)
-{
-	ADS_STATUS	ads_status = ADS_STATUS_NOT_IMPLEMENTED;
-	DEBUG(0,("sam_ads: %s was called!\n",__FUNCTION__));
-	SAM_ASSERT(sam_method);
-
-
-
-	return ads_ntstatus(ads_status);
-}
-
-static NTSTATUS sam_ads_enum_accounts(const SAM_METHODS *sam_method, const NT_USER_TOKEN *access_token, uint16 acct_ctrl, uint32 *account_count, SAM_ACCOUNT_ENUM **accounts)
-{
-	ADS_STATUS	ads_status = ADS_STATUS_NOT_IMPLEMENTED;
-	DEBUG(0,("sam_ads: %s was called!\n",__FUNCTION__));
-	SAM_ASSERT(sam_method);
-	return ads_ntstatus(ads_status);
-}
-
-#if 0
-static NTSTATUS sam_ads_get_account_by_sid(const SAM_METHODS *sam_method, const NT_USER_TOKEN *access_token, const uint32 access_desired, const DOM_SID *account_sid, SAM_ACCOUNT_HANDLE **account)
-{
-	ADS_STATUS		ads_status = ADS_ERROR_NT(NT_STATUS_UNSUCCESSFUL);
-	SAM_ADS_PRIVATES	*privates = (struct sam_ads_privates *)sam_method->private_data;
-	ADS_STRUCT 		*ads_struct = privates->ads_struct;
-	TALLOC_CTX		*mem_ctx = privates->mem_ctx;
-	SEC_DESC		*sd = NULL;
-	uint32			acc_granted;
-		
-	SAM_ASSERT(sam_method && privates && ads_struct && access_token && account_sid && account);
-
-	ads_status = ADS_ERROR_NT(sam_ads_get_sec_desc(sam_method, access_token, account_sid, &my_sd));
-	if (!ADS_ERR_OK(ads_status))
-		return ads_ntstatus(ads_status);
-
-	ads_status = sam_ads_access_check(privates, sd, access_token, access_desired, &acc_granted);
-	if (!ADS_ERR_OK(ads_status))
-		return ads_ntstatus(ads_status);
-
-	ads_status = ADS_ERROR_NT(sam_init_account(account));
-	if (!ADS_ERR_OK(ads_status))
-		return ads_ntstatus(ads_status);	
-
-	(*account)->access_granted = acc_granted;
-
-	return ads_ntstatus(ads_status);
-}
-#else
-static NTSTATUS sam_ads_get_account_by_sid(const SAM_METHODS *sam_method, const NT_USER_TOKEN *access_token, const uint32 access_desired, const DOM_SID *account_sid, SAM_ACCOUNT_HANDLE **account)
-{
-	ADS_STATUS	ads_status = ADS_STATUS_NOT_IMPLEMENTED;
-	DEBUG(0,("sam_ads: %s was called!\n",__FUNCTION__));
-	SAM_ASSERT(sam_method);
-	return ads_ntstatus(ads_status);
-}
-#endif
-
-#if 0
-static NTSTATUS sam_ads_get_account_by_name(const SAM_METHODS *sam_method, const NT_USER_TOKEN *access_token, const uint32 access_desired, const char *account_name, SAM_ACCOUNT_HANDLE **account)
-{
-	ADS_STATUS	ads_status = ADS_ERROR_NT(NT_STATUS_UNSUCCESSFUL);
-	SAM_ADS_PRIVATES	*privates = (struct sam_ads_privates *)sam_method->private_data;
-	ADS_STRUCT 		*ads_struct = privates->ads_struct;
-	TALLOC_CTX		*mem_ctx = privates->mem_ctx;
-	SEC_DESC		*sd = NULL;
-	uint32			acc_granted;
-	
-	SAM_ASSERT(sam_method && privates && ads_struct && access_token && account_name && account);
-
-	ads_status = sam_ads_get_tree_sec_desc(privates, ADS_ROOT_TREE, &sd);
-	if (!ADS_ERR_OK(ads_status))
-		return ads_ntstatus(ads_status);
-
-	ads_status = sam_ads_access_check(privates, sd, access_token, access_desired, &acc_granted);
-	if (!ADS_ERR_OK(ads_status))
-		return ads_ntstatus(ads_status);
-
-	ads_status = ADS_ERROR_NT(sam_init_account(account));
-	if (!ADS_ERR_OK(ads_status))
-		return ads_ntstatus(ads_status);	
-
-	(*account)->access_granted = acc_granted;
-
-	return ads_ntstatus(ads_status);
-}
-#else
-static NTSTATUS sam_ads_get_account_by_name(const SAM_METHODS *sam_method, const NT_USER_TOKEN *access_token, const uint32 access_desired, const char *account_name, SAM_ACCOUNT_HANDLE **account)
-{
-	ADS_STATUS	ads_status = ADS_STATUS_NOT_IMPLEMENTED;
-	DEBUG(0,("sam_ads: %s was called!\n",__FUNCTION__));
-	SAM_ASSERT(sam_method);
-	return ads_ntstatus(ads_status);
-}
-#endif
-
-/* Group API */
-static NTSTATUS sam_ads_create_group(const SAM_METHODS *sam_method, const NT_USER_TOKEN *access_token, uint32 access_desired, const char *group_name, uint16 group_ctrl, SAM_GROUP_HANDLE **group)
-{
-	ADS_STATUS	ads_status = ADS_STATUS_NOT_IMPLEMENTED;
-	DEBUG(0,("sam_ads: %s was called!\n",__FUNCTION__));
-	SAM_ASSERT(sam_method);
-	return ads_ntstatus(ads_status);
-}
-
-static NTSTATUS sam_ads_add_group(const SAM_METHODS *sam_method, const SAM_GROUP_HANDLE *group)
-{
-	ADS_STATUS	ads_status = ADS_STATUS_NOT_IMPLEMENTED;
-	DEBUG(0,("sam_ads: %s was called!\n",__FUNCTION__));
-	SAM_ASSERT(sam_method);
-	return ads_ntstatus(ads_status);
-}
-
-static NTSTATUS sam_ads_update_group(const SAM_METHODS *sam_method, const SAM_GROUP_HANDLE *group)
-{
-	ADS_STATUS	ads_status = ADS_STATUS_NOT_IMPLEMENTED;
-	DEBUG(0,("sam_ads: %s was called!\n",__FUNCTION__));
-	SAM_ASSERT(sam_method);
-	return ads_ntstatus(ads_status);
-}
-
-static NTSTATUS sam_ads_delete_group(const SAM_METHODS *sam_method, const SAM_GROUP_HANDLE *group)
-{
-	ADS_STATUS	ads_status = ADS_STATUS_NOT_IMPLEMENTED;
-	DEBUG(0,("sam_ads: %s was called!\n",__FUNCTION__));
-	SAM_ASSERT(sam_method);
-	return ads_ntstatus(ads_status);
-}
-
-static NTSTATUS sam_ads_enum_groups(const SAM_METHODS *sam_method, const NT_USER_TOKEN *access_token, const uint16 group_ctrl, uint32 *groups_count, SAM_GROUP_ENUM **groups)
-{
-	ADS_STATUS		ads_status = ADS_STATUS_NOT_IMPLEMENTED;
-	SAM_ADS_PRIVATES	*privates = (struct sam_ads_privates *)sam_method->private_data;
-	ADS_STRUCT 		*ads_struct = privates->ads_struct;
-	TALLOC_CTX		*mem_ctx = privates->mem_ctx;
-	void			*res = NULL;
-	void			*msg = NULL;
-	char 			*filter = NULL;
-	int			i = 0;
-	
-	/* get only these LDAP attributes, witch we really need for a group */			
-	const char *group_enum_attrs[] = {"objectSid",
-					  "description",
-					  "sAMAcountName",
-					  NULL};
-	
-	SAM_ASSERT(sam_method && access_token && groups_count && groups);
-	
-	*groups_count = 0;
-
-	DEBUG(3,("ads: enum_dom_groups\n"));
-
-	FIXME("get only group from the wanted Type!\n");
-	asprintf(&filter, "(&(objectClass=group)(groupType=%s))", "*");
-	ads_status = sam_ads_do_search(privates, ads_struct->config.bind_path, LDAP_SCOPE_SUBTREE, filter, group_enum_attrs, &res);
-	if (!ADS_ERR_OK(ads_status)) {
-		DEBUG(1,("enum_groups ads_search: %s\n", ads_errstr(ads_status)));
-	}
-
-	*groups_count = ads_count_replies(ads_struct, res);
-	if (*groups_count == 0) {
-		DEBUG(1,("enum_groups: No groups found\n"));
-	}
-
-	(*groups) = talloc_zero(mem_ctx, (*groups_count) * sizeof(**groups));
-	if (!*groups) {
-		ads_status = ADS_ERROR_NT(NT_STATUS_NO_MEMORY);
-	}
-
-	for (msg = ads_first_entry(ads_struct, res); msg; msg = ads_next_entry(ads_struct, msg)) {
-		uint32 		grouptype;
-
-		if (!ads_pull_uint32(ads_struct, msg, "groupType", &grouptype)) {
-			;
-		} else {
-			(*groups)->group_ctrl = ads_gtype2gcb(grouptype);
-		}
-	
-		if (!((*groups)->group_name = ads_pull_string(ads_struct, mem_ctx, msg, "sAMAccountName"))) {
-			;
-		}
-		
-		if (!((*groups)->group_desc = ads_pull_string(ads_struct, mem_ctx, msg, "description"))) {
-			;
-		}
-		
-		if (!ads_pull_sid(ads_struct, msg, "objectSid", &((*groups)->sid))) {
-			DEBUG(1,("No sid for group %s !?\n", (*groups)->group_name));
-			continue;
-		}
-
-		i++;
-	}
-
-	(*groups_count) = i;
-
-	ads_status = ADS_ERROR_NT(NT_STATUS_OK);
-
-	DEBUG(3,("ads enum_dom_groups gave %d entries\n", (*groups_count)));
-
-	if (res) ads_msgfree(ads_struct, res);
-
-	return ads_ntstatus(ads_status);
-}
-
-static NTSTATUS sam_ads_get_group_by_sid(const SAM_METHODS *sam_method, const NT_USER_TOKEN *access_token, const uint32 access_desired, const DOM_SID *groupsid, SAM_GROUP_HANDLE **group)
-{
-	ADS_STATUS	ads_status = ADS_STATUS_NOT_IMPLEMENTED;
-	DEBUG(0,("sam_ads: %s was called!\n",__FUNCTION__));
-	SAM_ASSERT(sam_method);
-	return ads_ntstatus(ads_status);
-}
-
-static NTSTATUS sam_ads_get_group_by_name(const SAM_METHODS *sam_method, const NT_USER_TOKEN *access_token, const uint32 access_desired, const char *name, SAM_GROUP_HANDLE **group)
-{
-	ADS_STATUS	ads_status = ADS_STATUS_NOT_IMPLEMENTED;
-	DEBUG(0,("sam_ads: %s was called!\n",__FUNCTION__));
-	SAM_ASSERT(sam_method);
-	return ads_ntstatus(ads_status);
-}
-
-static NTSTATUS sam_ads_add_member_to_group(const SAM_METHODS *sam_method, const SAM_GROUP_HANDLE *group, const SAM_GROUP_MEMBER *member)
-{
-	ADS_STATUS	ads_status = ADS_STATUS_NOT_IMPLEMENTED;
-	DEBUG(0,("sam_ads: %s was called!\n",__FUNCTION__));
-	SAM_ASSERT(sam_method);
-	return ads_ntstatus(ads_status);
-}
-
-static NTSTATUS sam_ads_delete_member_from_group(const SAM_METHODS *sam_method, const SAM_GROUP_HANDLE *group, const SAM_GROUP_MEMBER *member)
-{
-	ADS_STATUS	ads_status = ADS_STATUS_NOT_IMPLEMENTED;
-	DEBUG(0,("sam_ads: %s was called!\n",__FUNCTION__));
-	SAM_ASSERT(sam_method);
-	return ads_ntstatus(ads_status);
-}
-
-static NTSTATUS sam_ads_enum_groupmembers(const SAM_METHODS *sam_method, const SAM_GROUP_HANDLE *group, uint32 *members_count, SAM_GROUP_MEMBER **members)
-{
-	ADS_STATUS	ads_status = ADS_STATUS_NOT_IMPLEMENTED;
-	DEBUG(0,("sam_ads: %s was called!\n",__FUNCTION__));
-	SAM_ASSERT(sam_method);
-	return ads_ntstatus(ads_status);
-}
-
-static NTSTATUS sam_ads_get_groups_of_sid(const SAM_METHODS *sam_method, const NT_USER_TOKEN *access_token, const DOM_SID **sids, const uint16 group_ctrl, uint32 *group_count, SAM_GROUP_ENUM **groups)
-{
-	ADS_STATUS	ads_status = ADS_STATUS_NOT_IMPLEMENTED;
-	DEBUG(0,("sam_ads: %s was called!\n",__FUNCTION__));
-	SAM_ASSERT(sam_method);
-	return ads_ntstatus(ads_status);
-}
-
-/**********************************
-Free our private data
-***********************************/
-static void sam_ads_free_private_data(void **vp) 
-{
-	SAM_ADS_PRIVATES **sam_ads_state = (SAM_ADS_PRIVATES **)vp;
-
-	if ((*sam_ads_state)->ads_struct->ld) {
-		ldap_unbind((*sam_ads_state)->ads_struct->ld);
-	}
-
-	ads_destroy(&((*sam_ads_state)->ads_struct));
-	
-	talloc_destroy((*sam_ads_state)->mem_ctx);
-	FIXME("maybe we must free some other stuff here\n");
-
-	*sam_ads_state = NULL;
-}
-
-
-
-/*****************************************************
-Init the ADS SAM backend  
-******************************************************/
-NTSTATUS sam_init_ads(SAM_METHODS *sam_method, const char *module_params)
-{
-	ADS_STATUS              ads_status;
-	SAM_ADS_PRIVATES	*sam_ads_state;
-	TALLOC_CTX 		*mem_ctx;
-	
-	SAM_ASSERT(sam_method && sam_method->parent);
-	
-	mem_ctx = sam_method->parent->mem_ctx;
-
-	/* Here the SAM API functions of the sam_ads module */
-
-	/* General API */
-
-	sam_method->sam_get_sec_desc = sam_ads_get_sec_desc;
-	sam_method->sam_set_sec_desc = sam_ads_set_sec_desc;
-	
-	sam_method->sam_lookup_sid = sam_ads_lookup_sid;
-	sam_method->sam_lookup_name = sam_ads_lookup_name;
-	
-	/* Domain API */
-
-	sam_method->sam_update_domain = sam_ads_update_domain;
-	sam_method->sam_get_domain_handle = sam_ads_get_domain_handle;
-
-	/* Account API */
-
-	sam_method->sam_create_account = sam_ads_create_account;
-	sam_method->sam_add_account = sam_ads_add_account;
-	sam_method->sam_update_account = sam_ads_update_account;
-	sam_method->sam_delete_account = sam_ads_delete_account;
-	sam_method->sam_enum_accounts = sam_ads_enum_accounts;
-
-	sam_method->sam_get_account_by_sid = sam_ads_get_account_by_sid;
-	sam_method->sam_get_account_by_name = sam_ads_get_account_by_name;
-
-	/* Group API */
-
-	sam_method->sam_create_group = sam_ads_create_group;
-	sam_method->sam_add_group = sam_ads_add_group;
-	sam_method->sam_update_group = sam_ads_update_group;
-	sam_method->sam_delete_group = sam_ads_delete_group;
-	sam_method->sam_enum_groups = sam_ads_enum_groups;
-	sam_method->sam_get_group_by_sid = sam_ads_get_group_by_sid;
-	sam_method->sam_get_group_by_name = sam_ads_get_group_by_name;
-
-	sam_method->sam_add_member_to_group = sam_ads_add_member_to_group;
-	sam_method->sam_delete_member_from_group = sam_ads_delete_member_from_group;
-	sam_method->sam_enum_groupmembers = sam_ads_enum_groupmembers;
-
-	sam_method->sam_get_groups_of_sid = sam_ads_get_groups_of_sid;
-
-	sam_ads_state = talloc_zero(mem_ctx, sizeof(SAM_ADS_PRIVATES));
-	if (!sam_ads_state) {
-		DEBUG(0, ("talloc() failed for sam_ads private_data!\n"));
-		return NT_STATUS_NO_MEMORY;
-	}
-	
-	if (!(sam_ads_state->mem_ctx = talloc_init_named("sam_ads_method"))) {
-		DEBUG(0, ("talloc_init_named() failed for sam_ads_state->mem_ctx\n"));
-		return NT_STATUS_NO_MEMORY;
-	}
-
-	sam_ads_state->ads_bind_dn = talloc_strdup(sam_ads_state->mem_ctx, lp_parm_string(NULL,"sam_ads","bind as"));
-	sam_ads_state->ads_bind_pw = talloc_strdup(sam_ads_state->mem_ctx, lp_parm_string(NULL,"sam_ads","bind pw"));
-
-	sam_ads_state->bind_plaintext = strequal(lp_parm_string(NULL, "sam_ads", "plaintext bind"), "yes");
-
-	if (!sam_ads_state->ads_bind_dn || !sam_ads_state->ads_bind_pw) {
-		DEBUG(0, ("talloc_strdup() failed for bind dn or password\n"));
-		return NT_STATUS_NO_MEMORY;
-	}
-
-	/* Maybe we should not check the result here? Server down on startup? */
-
-	if (module_params && *module_params) {
-		sam_ads_state->ldap_uri = talloc_strdup(sam_ads_state->mem_ctx, module_params);
-		if (!sam_ads_state->ldap_uri) {
-			DEBUG(0, ("talloc_strdup() failed for bind dn or password\n"));
-			return NT_STATUS_NO_MEMORY;
-		}
-	} else {
-		sam_ads_state->ldap_uri = "ldapi://";
-	}
-
-	ads_status = sam_ads_cached_connection(sam_ads_state);
-	if (!ADS_ERR_OK(ads_status)) {
-		return ads_ntstatus(ads_status);
-	}
-
-	sam_method->private_data = sam_ads_state;
-	sam_method->free_private_data = sam_ads_free_private_data;
-	
-	sam_ads_debug_level = debug_add_class("sam_ads");
-	if (sam_ads_debug_level == -1) {
-		sam_ads_debug_level = DBGC_ALL;
-		DEBUG(0, ("sam_ads: Couldn't register custom debugging class!\n"));
-	} else DEBUG(2, ("sam_ads: Debug class number of 'sam_ads': %d\n", sam_ads_debug_level));
-    
-	DEBUG(5, ("Initializing sam_ads\n"));
-	if (module_params)
-		DEBUG(10, ("Module Parameters for Domain %s[%s]: %s\n", sam_method->domain_name, sam_method->domain_name, module_params));
-	return NT_STATUS_OK;
-}
-
-#else /* HAVE_LDAP */
-void sam_ads_dummy(void)
-{
-	DEBUG(0,("sam_ads: not supported!\n"));
-}
-#endif /* HAVE_LDAP */
diff --git a/source3/sam/sam_skel.c b/source3/sam/sam_skel.c
deleted file mode 100644
index 80734707161..00000000000
--- a/source3/sam/sam_skel.c
+++ /dev/null
@@ -1,251 +0,0 @@
-/*
-   Unix SMB/CIFS implementation.
-   this is a skeleton for SAM backend modules.
-	
-   Copyright (C) Stefan (metze) Metzmacher		2002
-   Copyright (C) Jelmer Vernooij			2002
-   Copyright (C) Andrew Bartlett			2002
-
-   This program is free software; you can redistribute it and/or modify
-   it under the terms of the GNU General Public License as published by
-   the Free Software Foundation; either version 2 of the License, or
-   (at your option) any later version.
-
-   This program is distributed in the hope that it will be useful,
-   but WITHOUT ANY WARRANTY; without even the implied warranty of
-   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-   GNU General Public License for more details.
-
-   You should have received a copy of the GNU General Public License
-   along with this program; if not, write to the Free Software
-   Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
-*/
-
-#include "includes.h"
-
-static int sam_skel_debug_level = DBGC_SAM;
-
-#undef DBGC_CLASS
-#define DBGC_CLASS sam_skel_debug_level
-
-/* define the version of the SAM interface */ 
-SAM_MODULE_VERSIONING_MAGIC
-
-/* General API */
-
-static NTSTATUS sam_skel_get_sec_desc(const SAM_METHODS *sam_methods, const NT_USER_TOKEN *access_token, const DOM_SID *sid, SEC_DESC **sd)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-static NTSTATUS sam_skel_set_sec_desc(const SAM_METHODS *sam_methods, const NT_USER_TOKEN *access_token, const DOM_SID *sid, const SEC_DESC *sd)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-	
-static NTSTATUS sam_skel_lookup_sid(const SAM_METHODS *sam_methods, const NT_USER_TOKEN *access_token, TALLOC_CTX *mem_ctx, const DOM_SID *sid, char **name, uint32 *type)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-static NTSTATUS sam_skel_lookup_name(const SAM_METHODS *sam_methods, const NT_USER_TOKEN *access_token, const char *name, DOM_SID *sid, uint32 *type)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-	
-/* Domain API */
-
-static NTSTATUS sam_skel_update_domain(const SAM_METHODS *sam_methods, const SAM_DOMAIN_HANDLE *domain)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-static NTSTATUS sam_skel_get_domain_handle(const SAM_METHODS *sam_methods, const NT_USER_TOKEN *access_token, uint32 access_desired, SAM_DOMAIN_HANDLE **domain)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-
-/* Account API */
-
-static NTSTATUS sam_skel_create_account(const SAM_METHODS *sam_methods, const NT_USER_TOKEN *access_token, uint32 access_desired, const char *account_name, uint16 acct_ctrl, SAM_ACCOUNT_HANDLE **account)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-static NTSTATUS sam_skel_add_account(const SAM_METHODS *sam_methods, const SAM_ACCOUNT_HANDLE *account)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-static NTSTATUS sam_skel_update_account(const SAM_METHODS *sam_methods, const SAM_ACCOUNT_HANDLE *account)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-static NTSTATUS sam_skel_delete_account(const SAM_METHODS *sam_methods, const SAM_ACCOUNT_HANDLE *account)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-static NTSTATUS sam_skel_enum_accounts(const SAM_METHODS *sam_methods, const NT_USER_TOKEN *access_token, uint16 acct_ctrl, uint32 *account_count, SAM_ACCOUNT_ENUM **accounts)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-
-static NTSTATUS sam_skel_get_account_by_sid(const SAM_METHODS *sam_methods, const NT_USER_TOKEN *access_token, uint32 access_desired, const DOM_SID *accountsid, SAM_ACCOUNT_HANDLE **account)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-static NTSTATUS sam_skel_get_account_by_name(const SAM_METHODS *sam_methods, const NT_USER_TOKEN *access_token, uint32 access_desired, const char *name, SAM_ACCOUNT_HANDLE **account)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-
-/* Group API */
-
-static NTSTATUS sam_skel_create_group(const SAM_METHODS *sam_methods, const NT_USER_TOKEN *access_token, uint32 access_desired, const char *account_name, uint16 group_ctrl, SAM_GROUP_HANDLE **group)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-static NTSTATUS sam_skel_add_group(const SAM_METHODS *sam_methods, const SAM_GROUP_HANDLE *group)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-static NTSTATUS sam_skel_update_group(const SAM_METHODS *sam_methods, const SAM_GROUP_HANDLE *group)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-static NTSTATUS sam_skel_delete_group(const SAM_METHODS *sam_methods, const SAM_GROUP_HANDLE *group)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-static NTSTATUS sam_skel_enum_groups(const SAM_METHODS *sam_methods, const NT_USER_TOKEN *access_token, uint16 group_ctrl, uint32 *groups_count, SAM_GROUP_ENUM **groups)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-static NTSTATUS sam_skel_get_group_by_sid(const SAM_METHODS *sam_methods, const NT_USER_TOKEN *access_token, uint32 access_desired, const DOM_SID *groupsid, SAM_GROUP_HANDLE **group)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-static NTSTATUS sam_skel_get_group_by_name(const SAM_METHODS *sam_methods, const NT_USER_TOKEN *access_token, uint32 access_desired, const char *name, SAM_GROUP_HANDLE **group)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-
-static NTSTATUS sam_skel_add_member_to_group(const SAM_METHODS *sam_methods, const SAM_GROUP_HANDLE *group, const SAM_GROUP_MEMBER *member)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-static NTSTATUS sam_skel_delete_member_from_group(const SAM_METHODS *sam_methods, const SAM_GROUP_HANDLE *group, const SAM_GROUP_MEMBER *member)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-static NTSTATUS sam_skel_enum_groupmembers(const SAM_METHODS *sam_methods, const SAM_GROUP_HANDLE *group, uint32 *members_count, SAM_GROUP_MEMBER **members)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-
-static NTSTATUS sam_skel_get_groups_of_sid(const SAM_METHODS *sam_methods, const NT_USER_TOKEN *access_token, const DOM_SID **sids, uint16 group_ctrl, uint32 *group_count, SAM_GROUP_ENUM **groups)
-{
-	DEBUG(0,("sam_skel: %s was called!\n",__FUNCTION__));
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-NTSTATUS sam_init_skel(SAM_METHODS *sam_methods, const char *module_params)
-{
-	/* Functions your SAM module doesn't provide should be set 
-	 * to NULL */
-
-	sam_methods->sam_get_sec_desc = sam_skel_get_sec_desc;
-	sam_methods->sam_set_sec_desc = sam_skel_set_sec_desc;
-	
-	sam_methods->sam_lookup_sid = sam_skel_lookup_sid;
-	sam_methods->sam_lookup_name = sam_skel_lookup_name;
-	
-	/* Domain API */
-
-	sam_methods->sam_update_domain = sam_skel_update_domain;
-	sam_methods->sam_get_domain_handle = sam_skel_get_domain_handle;
-
-	/* Account API */
-
-	sam_methods->sam_create_account = sam_skel_create_account;
-	sam_methods->sam_add_account = sam_skel_add_account;
-	sam_methods->sam_update_account = sam_skel_update_account;
-	sam_methods->sam_delete_account = sam_skel_delete_account;
-	sam_methods->sam_enum_accounts = sam_skel_enum_accounts;
-
-	sam_methods->sam_get_account_by_sid = sam_skel_get_account_by_sid;
-	sam_methods->sam_get_account_by_name = sam_skel_get_account_by_name;
-
-	/* Group API */
-
-	sam_methods->sam_create_group = sam_skel_create_group;
-	sam_methods->sam_add_group = sam_skel_add_group;
-	sam_methods->sam_update_group = sam_skel_update_group;
-	sam_methods->sam_delete_group = sam_skel_delete_group;
-	sam_methods->sam_enum_groups = sam_skel_enum_groups;
-	sam_methods->sam_get_group_by_sid = sam_skel_get_group_by_sid;
-	sam_methods->sam_get_group_by_name = sam_skel_get_group_by_name;
-
-	sam_methods->sam_add_member_to_group = sam_skel_add_member_to_group;
-	sam_methods->sam_delete_member_from_group = sam_skel_delete_member_from_group;
-	sam_methods->sam_enum_groupmembers = sam_skel_enum_groupmembers;
-
-	sam_methods->sam_get_groups_of_sid = sam_skel_get_groups_of_sid;
-
-	sam_methods->free_private_data = NULL;
-
-
-	sam_skel_debug_level = debug_add_class("sam_skel");
-	if (sam_skel_debug_level == -1) {
-		sam_skel_debug_level = DBGC_SAM;
-		DEBUG(0, ("sam_skel: Couldn't register custom debugging class!\n"));
-	} else DEBUG(2, ("sam_skel: Debug class number of 'sam_skel': %d\n", sam_skel_debug_level));
-    
-	if(module_params)
-		DEBUG(0, ("Starting 'sam_skel' with parameters '%s' for domain %s\n", module_params, sam_methods->domain_name));
-	else
-		DEBUG(0, ("Starting 'sam_skel' for domain %s without paramters\n", sam_methods->domain_name));
-
-	return NT_STATUS_OK;
-}
diff --git a/source3/script/installcp.sh b/source3/script/installcp.sh
new file mode 100755
index 00000000000..d0c5bf8ecc9
--- /dev/null
+++ b/source3/script/installcp.sh
@@ -0,0 +1,44 @@
+#!/bin/sh
+srcdir=$1
+LIBDIR=$2
+CODEPAGEDIR=$3
+BINDIR=$4
+
+shift
+shift
+shift
+shift
+
+echo Installing codepage files in $CODEPAGEDIR
+for d in $LIBDIR $CODEPAGEDIR; do
+if [ ! -d $d ]; then
+mkdir $d
+if [ ! -d $d ]; then
+  echo Failed to make directory $d
+  exit 1
+fi
+fi
+done
+
+for p in $*; do
+ if [ -f ${srcdir}/codepages/codepage_def.$p ]; then
+   echo Creating codepage file $CODEPAGEDIR/codepage.$p
+   $BINDIR/make_smbcodepage c $p ${srcdir}/codepages/codepage_def.$p $CODEPAGEDIR/codepage.$p
+ fi
+ if [ -f ${srcdir}/codepages/CP${p}.TXT ]; then
+   echo Creating unicode map $CODEPAGEDIR/unicode_map.$p
+   $BINDIR/make_unicodemap $p ${srcdir}/codepages/CP${p}.TXT $CODEPAGEDIR/unicode_map.$p
+ fi
+done
+
+
+cat << EOF
+======================================================================
+The code pages have been installed. You may uninstall them using the
+command "make uninstallcp" or make "uninstall" to uninstall binaries,
+man pages, shell scripts and code pages.
+======================================================================
+EOF
+
+exit 0
+
diff --git a/source3/script/makeyodldocs.sh b/source3/script/makeyodldocs.sh
new file mode 100755
index 00000000000..5b54df033e5
--- /dev/null
+++ b/source3/script/makeyodldocs.sh
@@ -0,0 +1,92 @@
+#!/bin/sh
+SRCDIR=$1
+shift
+FILES=$@
+
+if test -z $FILES; then
+    FILES=*.yo
+fi
+
+YODLDIR=$SRCDIR/../docs/yodldocs
+MANPAGEDIR=$SRCDIR/../docs/manpages
+HTMLDIR=$SRCDIR/../docs/htmldocs
+
+echo "Re-creating man pages and HTML pages from YODL sources..."
+
+if [ ! -d $MANPAGEDIR ]; then
+  echo "directory $MANPAGEDIR does not exist, are we in the right place?"
+  exit 1
+fi
+
+if [ ! -d $HTMLDIR ]; then
+  echo "directory $HTMLDIR does not exist, are we in the right place?"
+  exit 1
+fi
+
+if [ ! -d $YODLDIR ]; then
+  echo "directory $YODLDIR does not exist, are we in the right place?"
+  exit 1
+fi
+
+cd $YODLDIR
+
+for d in $FILES
+do
+
+#
+# Create the basename from the YODL manpage
+#
+    bn=`echo $d | sed -e 's/\.yo//'`
+
+	case "$d"
+	in
+		*.[0-9].yo)
+			echo "Creating man pages..."
+			echo $d
+			rm -f $bn.man
+			yodl2man $d
+			if [ ! -f $bn.man ]; then
+				echo "Failed to make man page for $d"
+				exit 1
+			fi
+			cp $bn.man ../manpages/$bn || echo "Cannot create $YODLDIR/../manpages/$bn"
+			rm -f $bn.man
+
+			echo "Creating html versions of man pages..."
+			echo $d
+			rm -f $bn.html
+			yodl2html $d
+			if [ ! -f $bn.html ]; then
+				echo "Failed to make html page for $d"
+				exit 1
+			fi
+			cp $bn.html ../htmldocs || echo "Cannot create $YODLDIR/../htmldocs/$bn.html"
+			rm -f $bn.html
+		;;
+		*)
+#
+# Non man-page YODL docs - just make html and text.
+#
+			echo $d
+			rm -f $bn.html
+			yodl2html $d
+			if [ ! -f $bn.html ]; then
+                echo "Failed to make html page for $d"
+                exit 1
+            fi
+			cp $bn.html ../htmldocs || echo "Cannot create $YODLDIR/../htmldocs/$bn.html"
+			rm -f $bn.html
+			rm -f $bn.txt
+			yodl2txt $d
+			if [ ! -f $bn.txt ]; then
+                echo "Failed to make text page for $d"
+                exit 1
+            fi
+			cp $bn.txt ../textdocs || echo "Cannot create $YODLDIR/../textdocs/$bn.txt"
+			rm -f $bn.txt
+		;;
+	esac
+done
+
+echo "Remember to CVS check in your changes..."
+exit 0
diff --git a/source3/script/uninstallbin.sh b/source3/script/uninstallbin.sh
index a8bbdea7afd..53775f89465 100755
--- a/source3/script/uninstallbin.sh
+++ b/source3/script/uninstallbin.sh
@@ -34,8 +34,8 @@ cat << EOF
 ======================================================================
 The binaries have been uninstalled. You may restore the binaries using
 the command "make installbin" or "make install" to install binaries, 
-man pages, modules and shell scripts. You can restore a previous
-version of the binaries (if there were any) using "make revert".
+man pages and shell scripts. You can restore a previous version of the
+binaries (if there were any) using "make revert".
 ======================================================================
 EOF
 
diff --git a/source3/script/uninstallcp.sh b/source3/script/uninstallcp.sh
new file mode 100755
index 00000000000..2a9e9d509ab
--- /dev/null
+++ b/source3/script/uninstallcp.sh
@@ -0,0 +1,33 @@
+#!/bin/sh
+
+CPDIR=$1
+shift
+
+if [ ! -d $CPDIR ]; then
+  echo Directory $CPDIR does not exist!
+  echo Do a "make installcp" or "make install" first.
+  exit 1
+fi
+
+for p in $*; do
+  if [ ! -f $CPDIR/unicode_map.$p ]; then
+    echo $CPDIR/unicode_map.$p does not exist!
+  else
+    echo Removing $CPDIR/unicode_map.$p
+    rm -f $CPDIR/unicode_map.$p
+    if [ -f $CPDIR/unicode_map.$p ]; then
+      echo Cannot remove $CPDIR/unicode_map.$p...  does $USER have privileges?
+    fi
+  fi
+done
+
+cat << EOF
+======================================================================
+The code pages have been uninstalled. You may reinstall them using
+the command "make installcp" or "make install" to install binaries,
+man pages, shell scripts and code pages. You may recover a previous version 
+(if any with "make revert").
+======================================================================
+EOF
+
+exit 0
diff --git a/source3/smbd/build_options.c b/source3/smbd/build_options.c
index 8129f22898d..f52c53dda53 100644
--- a/source3/smbd/build_options.c
+++ b/source3/smbd/build_options.c
@@ -188,6 +188,7 @@ void build_options(BOOL screen)
        output(screen,"   SBINDIR: %s\n", dyn_SBINDIR);
        output(screen,"   BINDIR: %s\n", dyn_BINDIR);
        output(screen,"   LOCKDIR: %s\n",dyn_LOCKDIR);
+       output(screen,"   DRIVERFILE: %s\n", dyn_DRIVERFILE);
        output(screen,"   LOGFILEBASE: %s\n", dyn_LOGFILEBASE);
 
        /*Output various other options (most map to defines in the configure script*/
diff --git a/source3/smbd/change_trust_pw.c b/source3/smbd/change_trust_pw.c
index 28a004eba88..e4a7fbae6b7 100644
--- a/source3/smbd/change_trust_pw.c
+++ b/source3/smbd/change_trust_pw.c
@@ -120,6 +120,7 @@ account password for domain %s.\n", domain));
         if(NT_STATUS_IS_OK(res = modify_trust_password( domain, dc_name,
                                          old_trust_passwd_hash)))
           break;
+
     } else {
 	    res = modify_trust_password( domain, remote_machine,
 					 old_trust_passwd_hash);
diff --git a/source3/smbd/server.c b/source3/smbd/server.c
index e9092858f4b..342c7c85cff 100644
--- a/source3/smbd/server.c
+++ b/source3/smbd/server.c
@@ -373,10 +373,6 @@ static BOOL open_sockets_smbd(BOOL is_daemon,const char *smb_ports)
 					return False;
 				}
 
-				/* Load DSO's */
-				if(lp_modules()) 
-					smb_load_modules(lp_modules());
-
 				return True; 
 			}
 			/* The parent doesn't need this socket */
diff --git a/source3/torture/cmd_sam.c b/source3/torture/cmd_sam.c
deleted file mode 100644
index 3f7f7dfe27e..00000000000
--- a/source3/torture/cmd_sam.c
+++ /dev/null
@@ -1,514 +0,0 @@
-/* 
-   Unix SMB/CIFS implementation.
-   SAM module functions
-
-   Copyright (C) Jelmer Vernooij 2002
-
-   This program is free software; you can redistribute it and/or modify
-   it under the terms of the GNU General Public License as published by
-   the Free Software Foundation; either version 2 of the License, or
-   (at your option) any later version.
-   
-   This program is distributed in the hope that it will be useful,
-   but WITHOUT ANY WARRANTY; without even the implied warranty of
-   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-   GNU General Public License for more details.
-   
-   You should have received a copy of the GNU General Public License
-   along with this program; if not, write to the Free Software
-   Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
-*/
-
-#include "includes.h"
-#include "samtest.h"
-
-static void print_account(SAM_ACCOUNT_HANDLE *a)
-{
-	/* FIXME */
-}
-
-static NTSTATUS cmd_context(struct samtest_state *st, TALLOC_CTX *mem_ctx, int argc, char **argv)
-{
-	NTSTATUS status;
-	char **plugins;
-	int i;
-
-	plugins = malloc(argc * sizeof(char *));
-
-	for(i = 1; i < argc; i++)
-		plugins[i-1] = argv[i];
-
-	plugins[argc-1] = NULL;
-
-	if(!NT_STATUS_IS_OK(status = make_sam_context_list(&st->context, plugins))) {
-		printf("make_sam_context_list failed: %s\n", nt_errstr(status));
-		SAFE_FREE(plugins);
-		return status;
-	}
-
-	SAFE_FREE(plugins);
-	
-	return NT_STATUS_OK;
-}
-
-static NTSTATUS cmd_load_module(struct samtest_state *st, TALLOC_CTX *mem_ctx, int argc, char **argv)
-{
-	char *plugin_arg[2];
-	NTSTATUS status;
-	if (argc != 2 && argc != 3) {
-		printf("Usage: load <module path> [domain-name]\n");
-		return NT_STATUS_OK;
-	}
-
-	if (argc == 3)
-		asprintf(&plugin_arg[0], "plugin:%s|%s", argv[1], argv[2]);
-	else
-		asprintf(&plugin_arg[0], "plugin:%s", argv[1]);
-
-	plugin_arg[1] = NULL;
-	
-	if(!NT_STATUS_IS_OK(status = make_sam_context_list(&st->context, plugin_arg))) {
-		free(plugin_arg[0]);
-		return status;
-	}
-	
-	free(plugin_arg[0]);
-
-	printf("load: ok\n");
-	return NT_STATUS_OK;
-}
-
-static NTSTATUS cmd_get_sec_desc(struct samtest_state *st, TALLOC_CTX *mem_ctx, int argc, char **argv)
-{
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-static NTSTATUS cmd_set_sec_desc(struct samtest_state *st, TALLOC_CTX *mem_ctx, int argc, char **argv)
-{
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-static NTSTATUS cmd_lookup_sid(struct samtest_state *st, TALLOC_CTX *mem_ctx, int argc, char **argv)
-{
-	char *name;
-	uint32 type;
-	NTSTATUS status;
-	DOM_SID sid;
-	if (argc != 2) {
-		printf("Usage: lookup_sid <sid>\n");
-		return NT_STATUS_INVALID_PARAMETER;
-	}
-
-	if (!string_to_sid(&sid, argv[1])){
-		printf("Unparseable SID specified!\n");
-		return NT_STATUS_INVALID_PARAMETER;
-	}
-
-	if (!NT_STATUS_IS_OK(status = sam_lookup_sid(st->context, st->token, mem_ctx, &sid, &name, &type))) {
-		printf("sam_lookup_sid failed!\n");
-		return status;
-	}
-
-	printf("Name: %s\n", name);
-	printf("Type: %d\n", type); /* FIXME: What kind of an integer is type ? */
-
-	return NT_STATUS_OK;
-}
-
-static NTSTATUS cmd_lookup_name(struct samtest_state *st, TALLOC_CTX *mem_ctx, int argc, char **argv)
-{
-	DOM_SID sid;
-	uint32 type;
-	NTSTATUS status;
-	if (argc != 3) {
-		printf("Usage: lookup_name <domain> <name>\n");
-		return NT_STATUS_INVALID_PARAMETER;
-	}
-
-	if (!NT_STATUS_IS_OK(status = sam_lookup_name(st->context, st->token, argv[1], argv[2], &sid, &type))) {
-		printf("sam_lookup_name failed!\n");
-		return status;
-	}
-
-	printf("SID: %s\n", sid_string_static(&sid));
-	printf("Type: %d\n", type);
-	
-	return NT_STATUS_OK;
-}
-
-static NTSTATUS cmd_lookup_account(struct samtest_state *st, TALLOC_CTX *mem_ctx, int argc, char **argv)
-{
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-static NTSTATUS cmd_lookup_group(struct samtest_state *st, TALLOC_CTX *mem_ctx, int argc, char **argv)
-{
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-static NTSTATUS cmd_lookup_domain(struct samtest_state *st, TALLOC_CTX *mem_ctx, int argc, char **argv)
-{
-	DOM_SID *sid;
-	NTSTATUS status;
-	if (argc != 2) {
-		printf("Usage: lookup_domain <domain>\n");
-		return NT_STATUS_INVALID_PARAMETER;
-	}
-
-	if (!NT_STATUS_IS_OK(status = sam_lookup_domain(st->context, st->token, argv[1], &sid))) {
-		printf("sam_lookup_name failed!\n");
-		return status;
-	}
-
-	printf("SID: %s\n", sid_string_static(sid));
-	
-	return NT_STATUS_OK;
-}
-
-static NTSTATUS cmd_enum_domains(struct samtest_state *st, TALLOC_CTX *mem_ctx, int argc, char **argv)
-{
-	int32 domain_count, i;
-	DOM_SID *domain_sids;
-	char **domain_names;
-	NTSTATUS status;
-
-	if (!NT_STATUS_IS_OK(status = sam_enum_domains(st->context, st->token, &domain_count, &domain_sids, &domain_names))) {
-		printf("sam_enum_domains failed!\n");
-		return status;
-	}
-
-	if (domain_count == 0) {
-		printf("No domains found!\n");
-		return NT_STATUS_OK;
-	}
-
-	for (i = 0; i < domain_count; i++) {
-		printf("%s %s\n", domain_names[i], sid_string_static(&domain_sids[i]));
-	}
-
-	SAFE_FREE(domain_sids);
-	SAFE_FREE(domain_names);
-	
-	return NT_STATUS_OK;
-}
-
-static NTSTATUS cmd_update_domain(struct samtest_state *st, TALLOC_CTX *mem_ctx, int argc, char **argv)
-{
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-static NTSTATUS cmd_show_domain(struct samtest_state *st, TALLOC_CTX *mem_ctx, int argc, char **argv)
-{
-	NTSTATUS status;
-	DOM_SID sid;
-	SAM_DOMAIN_HANDLE *domain;
-	uint32 tmp_uint32;
-	uint16 tmp_uint16;
-	NTTIME tmp_nttime;
-	BOOL tmp_bool;
-	const char *tmp_string;
-
-	if (argc != 2) {
-		printf("Usage: show_domain <sid>\n");
-		return status;
-	}
-
-	if (!string_to_sid(&sid, argv[1])){
-		printf("Unparseable SID specified!\n");
-		return NT_STATUS_INVALID_PARAMETER;
-	}
-
-	if (!NT_STATUS_IS_OK(status = sam_get_domain_by_sid(st->context, st->token, GENERIC_RIGHTS_DOMAIN_ALL_ACCESS, &sid, &domain))) {
-		printf("sam_get_domain_by_sid failed\n");
-		return status;
-	}
-
-	if (!NT_STATUS_IS_OK(status = sam_get_domain_num_accounts(domain, &tmp_uint32))) {
-		printf("sam_get_domain_num_accounts failed: %s\n", nt_errstr(status));
-	} else {
-		printf("Number of accounts: %d\n", tmp_uint32);
-	}
-
-	if (!NT_STATUS_IS_OK(status = sam_get_domain_num_groups(domain, &tmp_uint32))) {
-		printf("sam_get_domain_num_groups failed: %s\n", nt_errstr(status));
-	} else {
-		printf("Number of groups: %u\n", tmp_uint32);
-	}
-	
-	if (!NT_STATUS_IS_OK(status = sam_get_domain_num_aliases(domain, &tmp_uint32))) {
-		printf("sam_get_domain_num_aliases failed: %s\n", nt_errstr(status));
-	} else {
-		printf("Number of aliases: %u\n", tmp_uint32);
-	}
-	
-	if (!NT_STATUS_IS_OK(status = sam_get_domain_name(domain, &tmp_string))) {
-		printf("sam_get_domain_name failed: %s\n", nt_errstr(status));
-	} else {
-		printf("Domain Name: %s\n", tmp_string);
-	}
-	
-	if (!NT_STATUS_IS_OK(status = sam_get_domain_lockout_count(domain, &tmp_uint16))) {
-		printf("sam_get_domain_lockout_count failed: %s\n", nt_errstr(status));
-	} else {
-		printf("Lockout Count: %u\n", tmp_uint16);
-	}
-
-	if (!NT_STATUS_IS_OK(status = sam_get_domain_force_logoff(domain, &tmp_bool))) {
-		printf("sam_get_domain_force_logoff failed: %s\n", nt_errstr(status));
-	} else {
-		printf("Force Logoff: %s\n", (tmp_bool?"Yes":"No"));
-	}
-	
-	if (!NT_STATUS_IS_OK(status = sam_get_domain_lockout_duration(domain, &tmp_nttime))) {
-		printf("sam_get_domain_lockout_duration failed: %s\n", nt_errstr(status));
-	} else {
-		printf("Lockout duration: %u\n", tmp_nttime.low);
-	}
-
-	if (!NT_STATUS_IS_OK(status = sam_get_domain_login_pwdchange(domain, &tmp_bool))) {
-		printf("sam_get_domain_login_pwdchange failed: %s\n", nt_errstr(status));
-	} else {
-		printf("Password changing allowed: %s\n", (tmp_bool?"Yes":"No"));
-	}
-	
-	if (!NT_STATUS_IS_OK(status = sam_get_domain_max_pwdage(domain, &tmp_nttime))) {
-		printf("sam_get_domain_max_pwdage failed: %s\n", nt_errstr(status));
-	} else {
-		printf("Maximum password age: %u\n", tmp_nttime.low);
-	}
-	
-	if (!NT_STATUS_IS_OK(status = sam_get_domain_min_pwdage(domain, &tmp_nttime))) {
-		printf("sam_get_domain_min_pwdage failed: %s\n", nt_errstr(status));
-	} else {
-		printf("Minimal password age: %u\n", tmp_nttime.low);
-	}
-	
-	if (!NT_STATUS_IS_OK(status = sam_get_domain_min_pwdlength(domain, &tmp_uint16))) {
-		printf("sam_get_domain_min_pwdlength: %s\n", nt_errstr(status));
-	} else {
-		printf("Minimal Password Length: %u\n", tmp_uint16);
-	}
-
-	if (!NT_STATUS_IS_OK(status = sam_get_domain_pwd_history(domain, &tmp_uint16))) {
-		printf("sam_get_domain_pwd_history failed: %s\n", nt_errstr(status));
-	} else {
-		printf("Password history: %u\n", tmp_uint16);
-	}
-
-	if (!NT_STATUS_IS_OK(status = sam_get_domain_reset_count(domain, &tmp_nttime))) {
-		printf("sam_get_domain_reset_count failed: %s\n", nt_errstr(status));
-	} else {
-		printf("Reset count: %u\n", tmp_nttime.low);
-	}
-
-	if (!NT_STATUS_IS_OK(status = sam_get_domain_server(domain, &tmp_string))) {
-		printf("sam_get_domain_server failed: %s\n", nt_errstr(status));
-	} else {
-		printf("Server: %s\n", tmp_string);
-	}
-	
-	return NT_STATUS_OK;
-}
-
-static NTSTATUS cmd_create_account(struct samtest_state *st, TALLOC_CTX *mem_ctx, int argc, char **argv)
-{
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-static NTSTATUS cmd_update_account(struct samtest_state *st, TALLOC_CTX *mem_ctx, int argc, char **argv)
-{
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-static NTSTATUS cmd_delete_account(struct samtest_state *st, TALLOC_CTX *mem_ctx, int argc, char **argv)
-{
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-static NTSTATUS cmd_enum_accounts(struct samtest_state *st, TALLOC_CTX *mem_ctx, int argc, char **argv)
-{
-	NTSTATUS status;
-	DOM_SID sid;
-	int32 account_count, i;
-	SAM_ACCOUNT_ENUM *accounts;
-
-	if (argc != 2) {
-		printf("Usage: enum_accounts <domain-sid>\n");
-		return NT_STATUS_INVALID_PARAMETER;
-	}
-
-	if (!string_to_sid(&sid, argv[1])){
-		printf("Unparseable SID specified!\n");
-		return NT_STATUS_INVALID_PARAMETER;
-	}
-
-	if (!NT_STATUS_IS_OK(status = sam_enum_accounts(st->context, st->token, &sid, 0, &account_count, &accounts))) {
-		printf("sam_enum_accounts failed: %s\n", nt_errstr(status));
-		return status;
-	}
-
-	if (account_count == 0) {
-		printf("No accounts found!\n");
-		return NT_STATUS_OK;
-	}
-
-	for (i = 0; i < account_count; i++)
-		printf("SID: %s\nName: %s\nFullname: %s\nDescription: %s\nACB_BITS: %08X\n\n", 
-			   sid_string_static(&accounts[i].sid), accounts[i].account_name,
-			   accounts[i].full_name, accounts[i].account_desc, 
-			   accounts[i].acct_ctrl);
-
-	SAFE_FREE(accounts);
-	
-	return NT_STATUS_OK;
-}
-
-static NTSTATUS cmd_lookup_account_sid(struct samtest_state *st, TALLOC_CTX *mem_ctx, int argc, char **argv)
-{
-	NTSTATUS status;
-	DOM_SID sid;
-	SAM_ACCOUNT_HANDLE *account;
-
-	if (argc != 2) {
-		printf("Usage: lookup_account_sid <account-sid>\n");
-		return NT_STATUS_INVALID_PARAMETER;
-	}
-
-	if (!string_to_sid(&sid, argv[1])){
-		printf("Unparseable SID specified!\n");
-		return NT_STATUS_INVALID_PARAMETER;
-	}
-
-	if (!NT_STATUS_IS_OK(status = sam_get_account_by_sid(st->context, st->token, GENERIC_RIGHTS_USER_ALL_ACCESS, &sid, &account))) {
-		printf("context_sam_get_account_by_sid failed: %s\n", nt_errstr(status));
-		return status;
-	}
-
-	print_account(account);
-	
-	return NT_STATUS_OK;
-}
-
-static NTSTATUS cmd_lookup_account_name(struct samtest_state *st, TALLOC_CTX *mem_ctx, int argc, char **argv)
-{
-	NTSTATUS status;
-	SAM_ACCOUNT_HANDLE *account;
-
-	if (argc != 3) {
-		printf("Usage: lookup_account_name <domain-name> <account-name>\n");
-		return NT_STATUS_INVALID_PARAMETER;
-	}
-
-
-	if (!NT_STATUS_IS_OK(status = sam_get_account_by_name(st->context, st->token, GENERIC_RIGHTS_USER_ALL_ACCESS, argv[1], argv[2], &account))) {
-		printf("context_sam_get_account_by_sid failed: %s\n", nt_errstr(status));
-		return status;
-	}
-
-	print_account(account);
-	
-	return NT_STATUS_OK;
-}
-
-static NTSTATUS cmd_create_group(struct samtest_state *st, TALLOC_CTX *mem_ctx, int argc, char **argv)
-{
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-static NTSTATUS cmd_update_group(struct samtest_state *st, TALLOC_CTX *mem_ctx, int argc, char **argv)
-{
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-static NTSTATUS cmd_delete_group(struct samtest_state *st, TALLOC_CTX *mem_ctx, int argc, char **argv)
-{
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-static NTSTATUS cmd_enum_groups(struct samtest_state *st, TALLOC_CTX *mem_ctx, int argc, char **argv)
-{
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-static NTSTATUS cmd_lookup_group_sid(struct samtest_state *st, TALLOC_CTX *mem_ctx, int argc, char **argv)
-{
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-static NTSTATUS cmd_lookup_group_name(struct samtest_state *st, TALLOC_CTX *mem_ctx, int argc, char **argv)
-{
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-static NTSTATUS cmd_group_add_member(struct samtest_state *st, TALLOC_CTX *mem_ctx, int argc, char **argv)
-{
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-static NTSTATUS cmd_group_del_member(struct samtest_state *st, TALLOC_CTX *mem_ctx, int argc, char **argv)
-{
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-
-static NTSTATUS cmd_group_enum(struct samtest_state *st, TALLOC_CTX *mem_ctx, int argc, char **argv)
-{
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-
-static NTSTATUS cmd_get_sid_groups(struct samtest_state *st, TALLOC_CTX *mem_ctx, int argc, char **argv)
-{
-	return NT_STATUS_NOT_IMPLEMENTED;
-}
-
-struct cmd_set sam_general_commands[] = {
-
-	{ "General SAM Commands" },
-
-	{ "load", cmd_load_module, "Load a module", "load <module.so> [domain-sid]" },
-	{ "context", cmd_context, "Load specified context", "context [DOMAIN|]backend1[:options] [DOMAIN|]backend2[:options]" },
-	{ "get_sec_desc", cmd_get_sec_desc, "Get security descriptor info", "get_sec_desc <access-token> <sid>" },
-	{ "set_sec_desc", cmd_set_sec_desc, "Set security descriptor info", "set_sec_desc <access-token> <sid>" },
-	{ "lookup_sid", cmd_lookup_sid, "Lookup type of specified SID", "lookup_sid <sid>" },
-	{ "lookup_name", cmd_lookup_name, "Lookup type of specified name", "lookup_name <sid>" },
-	{ NULL }
-};
-
-struct cmd_set sam_domain_commands[] = {
-	{ "Domain Commands" },
-	{ "update_domain", cmd_update_domain, "Update domain information", "update_domain [domain-options] domain-name | domain-sid" },
-	{ "show_domain", cmd_show_domain, "Show domain information", "show_domain domain-sid | domain-name" },
-	{ "enum_domains", cmd_enum_domains, "Enumerate all domains", "enum_domains <token> <acct-ctrl>" },
-	{ "lookup_domain", cmd_lookup_domain, "Lookup a domain by name", "lookup_domain domain-name" },
-	{ NULL }
-};
-
-struct cmd_set sam_account_commands[] = {
-	{ "Account Commands" },
-	{ "create_account", cmd_create_account, "Create a new account with specified properties", "create_account [account-options]" },
-	{ "update_account", cmd_update_account, "Update an existing account", "update_account [account-options] account-sid | account-name" },
-	{ "delete_account", cmd_delete_account, "Delete an account", "delete_account account-sid | account-name" },
-	{ "enum_accounts", cmd_enum_accounts, "Enumerate all accounts", "enum_accounts <token> <acct-ctrl>" },
-	{ "lookup_account", cmd_lookup_account, "Lookup an account by either sid or name", "lookup_account account-sid | account-name" },
-	{ "lookup_account_sid", cmd_lookup_account_sid, "Lookup an account by sid", "lookup_account_sid account-sid" },
-	{ "lookup_account_name", cmd_lookup_account_name, "Lookup an account by name", "lookup_account_name account-name" },
-	{ NULL }
-};
-
-struct cmd_set sam_group_commands[] = {
-	{ "Group Commands" },
-	{ "create_group", cmd_create_group, "Create a new group", "create_group [group-opts]" },
-	{ "update_group", cmd_update_group, "Update an existing group", "update_group [group-opts] group-name | group-sid" },
-	{ "delete_group", cmd_delete_group, "Delete an existing group", "delete_group group-name | group-sid" },
-	{ "enum_groups", cmd_enum_groups, "Enumerate all groups", "enum_groups <token> <group-ctrl>" },
-	{ "lookup_group", cmd_lookup_group, "Lookup a group by SID or name", "lookup_group group-sid | group-name" },
-	{ "lookup_group_sid", cmd_lookup_group_sid, "Lookup a group by SID", "lookup_group_sid <sid>" },
-	{ "lookup_group_name", cmd_lookup_group_name, "Lookup a group by name", "lookup_group_name <name>" },
-	{ "group_add_member", cmd_group_add_member, "Add group member to group", "group_add_member <group-name | group-sid> <member-name | member-sid>" },
-	{ "group_del_member", cmd_group_del_member, "Delete group member from group", "group_del_member <group-name | group-sid> <member-name | member-sid>" },
-	{ "group_enum", cmd_group_enum, "Enumerate all members of specified group", "group_enum group-sid | group-name" },
-
-	{ "get_sid_groups", cmd_get_sid_groups, "Get a list of groups specified sid is a member of", "group_enum <group-sid | group-name>" },
-	{ NULL }
-};
diff --git a/source3/torture/samtest.c b/source3/torture/samtest.c
deleted file mode 100644
index d3268d8b5b2..00000000000
--- a/source3/torture/samtest.c
+++ /dev/null
@@ -1,450 +0,0 @@
-/* 
-   Unix SMB/CIFS implementation.
-   SAM module tester
-
-   Copyright (C) 2002 Jelmer Vernooij
-
-   Parts of the code stolen from vfstest by Simo Sorce and Eric Lorimer
-   Parts of the code stolen from rpcclient by Tim Potter
-
-   This program is free software; you can redistribute it and/or modify
-   it under the terms of the GNU General Public License as published by
-   the Free Software Foundation; either version 2 of the License, or
-   (at your option) any later version.
-   
-   This program is distributed in the hope that it will be useful,
-   but WITHOUT ANY WARRANTY; without even the implied warranty of
-   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-   GNU General Public License for more details.
-   
-   You should have received a copy of the GNU General Public License
-   along with this program; if not, write to the Free Software
-   Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
-*/
-
-#include "includes.h"
-#include "samtest.h"
-
-struct func_entry {
-	char *name;
-	int (*fn)(struct connection_struct *conn, const char *path);
-};
-
-/* List to hold groups of commands */
-static struct cmd_list {
-	struct cmd_list *prev, *next;
-	struct cmd_set *cmd_set;
-} *cmd_list;
-
-static char* next_command (char** cmdstr)
-{
-	static pstring 		command;
-	char			*p;
-	
-	if (!cmdstr || !(*cmdstr))
-		return NULL;
-	
-	p = strchr_m(*cmdstr, ';');
-	if (p)
-		*p = '\0';
-	pstrcpy(command, *cmdstr);
-	*cmdstr = p;
-	
-	return command;
-}
-
-/* Load specified configuration file */
-static NTSTATUS cmd_conf(struct samtest_state *sam, TALLOC_CTX *mem_ctx,
-						 int argc, char **argv)
-{
-	if (argc != 2) {
-		printf("Usage: %s <smb.conf>\n", argv[0]);
-		return NT_STATUS_OK;
-	}
-
-	if (!lp_load(argv[1], False, True, False)) {
-		printf("Error loading \"%s\"\n", argv[1]);
-		return NT_STATUS_OK;
-	}
-
-	printf("\"%s\" successfully loaded\n", argv[1]);
-	return NT_STATUS_OK;
-}
-
-/* Display help on commands */
-static NTSTATUS cmd_help(struct samtest_state *st, TALLOC_CTX *mem_ctx,
-			 int argc, char **argv)
-{
-	struct cmd_list *tmp;
-	struct cmd_set *tmp_set;
-
-	/* Usage */
-	if (argc > 2) {
-		printf("Usage: %s [command]\n", argv[0]);
-		return NT_STATUS_OK;
-	}
-
-	/* Help on one command */
-
-	if (argc == 2) {
-		for (tmp = cmd_list; tmp; tmp = tmp->next) {
-			
-			tmp_set = tmp->cmd_set;
-
-			while(tmp_set->name) {
-				if (strequal(argv[1], tmp_set->name)) {
-					if (tmp_set->usage &&
-					    tmp_set->usage[0])
-						printf("%s\n", tmp_set->usage);
-					else
-						printf("No help for %s\n", tmp_set->name);
-
-					return NT_STATUS_OK;
-				}
-
-				tmp_set++;
-			}
-		}
-
-		printf("No such command: %s\n", argv[1]);
-		return NT_STATUS_OK;
-	}
-
-	/* List all commands */
-
-	for (tmp = cmd_list; tmp; tmp = tmp->next) {
-
-		tmp_set = tmp->cmd_set;
-
-		while(tmp_set->name) {
-
-			printf("%20s\t%s\n", tmp_set->name,
-			       tmp_set->description ? tmp_set->description:
-			       "");
-
-			tmp_set++;
-		}
-	}
-
-	return NT_STATUS_OK;
-}
-
-/* Change the debug level */
-static NTSTATUS cmd_debuglevel(struct samtest_state *st, TALLOC_CTX *mem_ctx, int argc, char **argv)
-{
-	if (argc > 2) {
-		printf("Usage: %s [debuglevel]\n", argv[0]);
-		return NT_STATUS_OK;
-	}
-
-	if (argc == 2) {
-		DEBUGLEVEL = atoi(argv[1]);
-	}
-
-	printf("debuglevel is %d\n", DEBUGLEVEL);
-
-	return NT_STATUS_OK;
-}
-
-static NTSTATUS cmd_quit(struct samtest_state *st, TALLOC_CTX *mem_ctx, int argc, char **argv)
-{
-	/* Cleanup */
-	talloc_destroy(mem_ctx);
-
-	exit(0);
-	return NT_STATUS_OK; /* NOTREACHED */
-}
-
-static struct cmd_set samtest_commands[] = {
-
-	{ "GENERAL OPTIONS" },
-
-	{ "help", 	cmd_help, 	"Get help on commands", "" },
-	{ "?", 		cmd_help, 	"Get help on commands", "" },
-	{ "conf",   cmd_conf,   "Load smb configuration file", "conf <smb.conf>" },
-	{ "debuglevel", cmd_debuglevel, "Set debug level", "" },
-	{ "exit", 	cmd_quit, 	"Exit program", "" },
-	{ "quit", 	cmd_quit, 	"Exit program", "" },
-
-	{ NULL }
-};
-
-static struct cmd_set separator_command[] = {
-	{ "---------------", NULL,	"----------------------" },
-	{ NULL }
-};
-
-
-/*extern struct cmd_set sam_commands[];*/
-extern struct cmd_set sam_general_commands[];
-extern struct cmd_set sam_domain_commands[];
-extern struct cmd_set sam_account_commands[];
-extern struct cmd_set sam_group_commands[];
-static struct cmd_set *samtest_command_list[] = {
-	samtest_commands,
-	sam_general_commands,
-	sam_domain_commands,
-	sam_account_commands,
-	sam_group_commands,
-	NULL
-};
-
-static void add_command_set(struct cmd_set *cmd_set)
-{
-	struct cmd_list *entry;
-
-	if (!(entry = (struct cmd_list *)malloc(sizeof(struct cmd_list)))) {
-		DEBUG(0, ("out of memory\n"));
-		return;
-	}
-
-	ZERO_STRUCTP(entry);
-
-	entry->cmd_set = cmd_set;
-	DLIST_ADD(cmd_list, entry);
-}
-
-static NTSTATUS do_cmd(struct samtest_state *st, struct cmd_set *cmd_entry, char *cmd)
-{
-	char *p = cmd, **argv = NULL;
-	NTSTATUS result = NT_STATUS_UNSUCCESSFUL;
-	TALLOC_CTX *mem_ctx = NULL;
-	pstring buf;
-	int argc = 0, i;
-
-	/* Count number of arguments first time through the loop then
-	   allocate memory and strdup them. */
-
- again:
-	while(next_token(&p, buf, " ", sizeof(buf))) {
-		if (argv) {
-			argv[argc] = strdup(buf);
-		}
-		
-		argc++;
-	}
-				
-	if (!argv) {
-
-		/* Create argument list */
-
-		argv = (char **)malloc(sizeof(char *) * argc);
-		memset(argv, 0, sizeof(char *) * argc);
-
-		if (!argv) {
-			fprintf(stderr, "out of memory\n");
-			result = NT_STATUS_NO_MEMORY;
-			goto done;
-		}
-					
-		p = cmd;
-		argc = 0;
-					
-		goto again;
-	}
-
-	/* Call the function */
-
-	if (cmd_entry->fn) {
-
-		if (mem_ctx == NULL) {
-			/* Create mem_ctx */
-			if (!(mem_ctx = talloc_init())) {
-		       		DEBUG(0, ("talloc_init() failed\n"));
-				goto done;
-			}
-		}
-
-		/* Run command */
-		result = cmd_entry->fn(st, mem_ctx, argc, argv);
-
-	} else {
-		fprintf (stderr, "Invalid command\n");
-		goto done;
-	}
-
- done:
-						
-	/* Cleanup */
-
-	if (argv) {
-		for (i = 0; i < argc; i++)
-			SAFE_FREE(argv[i]);
-	
-		SAFE_FREE(argv);
-	}
-	
-	return result;
-}
-
-/* Process a command entered at the prompt or as part of -c */
-static NTSTATUS process_cmd(struct samtest_state *st, char *cmd)
-{
-	struct cmd_list *temp_list;
-	BOOL found = False;
-	pstring buf;
-	char *p = cmd;
-	NTSTATUS result = NT_STATUS_OK;
-	int len = 0;
-
-	if (cmd[strlen(cmd) - 1] == '\n')
-		cmd[strlen(cmd) - 1] = '\0';
-
-	if (!next_token(&p, buf, " ", sizeof(buf))) {
-		return NT_STATUS_OK;
-	}
-
-	/* strip the trainly \n if it exsists */
-	len = strlen(buf);
-	if (buf[len-1] == '\n')
-		buf[len-1] = '\0';
-
-	/* Search for matching commands */
-
-	for (temp_list = cmd_list; temp_list; temp_list = temp_list->next) {
-		struct cmd_set *temp_set = temp_list->cmd_set;
-
-		while(temp_set->name) {
-			if (strequal(buf, temp_set->name)) {
-				found = True;
-				result = do_cmd(st, temp_set, cmd);
-
-				goto done;
-			}
-			temp_set++;
-		}
-	}
-
- done:
-	if (!found && buf[0]) {
-		printf("command not found: %s\n", buf);
-		return NT_STATUS_OK;
-	}
-
-	if (!NT_STATUS_IS_OK(result)) {
-		printf("result was %s\n", nt_errstr(result));
-	}
-
-	return result;
-}
-
-void exit_server(char *reason)
-{
-	DEBUG(3,("Server exit (%s)\n", (reason ? reason : "")));
-	exit(0);
-}
-
-static int server_fd = -1;
-int last_message = -1;
-
-int smbd_server_fd(void)
-{
-		return server_fd;
-}
-
-BOOL reload_services(BOOL test)
-{
-	return True;
-}
-
-/* Main function */
-
-int main(int argc, char *argv[])
-{
-	BOOL 			interactive = True;
-	int 			opt;
-	static char		*cmdstr = "";
-	static char *opt_logfile=NULL;
-	static char *config_file = dyn_CONFIGFILE;
-	pstring 		logfile;
-	struct cmd_set 		**cmd_set;
-	struct samtest_state st;
-
-	/* make sure the vars that get altered (4th field) are in
-	   a fixed location or certain compilers complain */
-	poptContext pc;
-	struct poptOption long_options[] = {
-		POPT_AUTOHELP
-		{ NULL, 0, POPT_ARG_INCLUDE_TABLE, popt_common_debug },
-		{"command",	'e', POPT_ARG_STRING,	&cmdstr, 'e', "Execute semicolon seperated cmds"},
-		{"logfile",	'l', POPT_ARG_STRING,	&opt_logfile, 'l', "Logfile to use instead of stdout"},
-		{"configfile", 'c', POPT_ARG_STRING, &config_file, 0,"use different configuration file",NULL},
-		{ 0, 0, 0, 0}
-	};
-
-	ZERO_STRUCT(st);
-
-	st.token = get_system_token();
-
-	setlinebuf(stdout);
-
-	DEBUGLEVEL = 1;
-
-	pc = poptGetContext("samtest", argc, (const char **) argv,
-			    long_options, 0);
-	
-	while((opt = poptGetNextOpt(pc)) != -1) {
-		switch (opt) {
-		case 'l':
-			slprintf(logfile, sizeof(logfile) - 1, "%s.client", 
-				 opt_logfile);
-			lp_set_logfile(logfile);
-			interactive = False;
-			break;
-		}
-	}
-
-	if (!lp_load(config_file,True,False,False)) {
-		fprintf(stderr, "Can't load %s - run testparm to debug it\n", config_file);
-		exit(1);
-	}
-
-	poptFreeContext(pc);
-
-	/* the following functions are part of the Samba debugging
-	   facilities.  See lib/debug.c */
-	setup_logging("samtest", interactive);
-	if (!interactive) 
-		reopen_logs();
-	
-	/* Load command lists */
-
-	cmd_set = samtest_command_list;
-
-	while(*cmd_set) {
-		add_command_set(*cmd_set);
-		add_command_set(separator_command);
-		cmd_set++;
-	}
-
-       /* Do anything specified with -c */
-	if (cmdstr[0]) {
-		char    *cmd;
-		char    *p = cmdstr;
- 
-		while((cmd=next_command(&p)) != NULL) {
-			process_cmd(&st, cmd);
-		}
-		
-		return 0;
-	}
-
-	/* Loop around accepting commands */
-
-	while(1) {
-		pstring prompt;
-		char *line;
-
-		slprintf(prompt, sizeof(prompt) - 1, "samtest $> ");
-
-		line = smb_readline(prompt, NULL, NULL);
-
-		if (line == NULL)
-			break;
-
-		if (line[0] != '\n')
-			process_cmd(&st, line);
-	}
-	
-	return 0;
-}
diff --git a/source3/utils/net.c b/source3/utils/net.c
index ba08feae191..37ceadc3729 100644
--- a/source3/utils/net.c
+++ b/source3/utils/net.c
@@ -389,84 +389,6 @@ static int net_getdomainsid(int argc, const char **argv)
 	return 0;
 }
 
-static uint32 get_maxrid(void)
-{
-	SAM_ACCOUNT *pwd = NULL;
-	uint32 max_rid = 0;
-	GROUP_MAP *map = NULL;
-	int num_entries = 0;
-	int i;
-
-	if (!pdb_setsampwent(False)) {
-		DEBUG(0, ("load_sampwd_entries: Unable to open passdb.\n"));
-		return 0;
-	}
-
-	for (; (NT_STATUS_IS_OK(pdb_init_sam(&pwd))) 
-		     && pdb_getsampwent(pwd) == True; pwd=NULL) {
-		uint32 rid;
-
-		if (!sid_peek_rid(pdb_get_user_sid(pwd), &rid)) {
-			DEBUG(0, ("can't get RID for user '%s'\n",
-				  pdb_get_username(pwd)));
-			pdb_free_sam(&pwd);
-			continue;
-		}
-
-		if (rid > max_rid)
-			max_rid = rid;
-
-		DEBUG(1,("%d is user '%s'\n", rid, pdb_get_username(pwd)));
-		pdb_free_sam(&pwd);
-	}
-
-	pdb_endsampwent();
-	pdb_free_sam(&pwd);
-
-	if (!pdb_enum_group_mapping(SID_NAME_UNKNOWN, &map, &num_entries,
-				    ENUM_ONLY_MAPPED, MAPPING_WITHOUT_PRIV))
-		return max_rid;
-
-	for (i = 0; i < num_entries; i++) {
-		uint32 rid;
-
-		if (!sid_peek_check_rid(get_global_sam_sid(), &map[i].sid,
-					&rid)) {
-			DEBUG(3, ("skipping map for group '%s', SID %s\n",
-				  map[i].nt_name,
-				  sid_string_static(&map[i].sid)));
-			continue;
-		}
-		DEBUG(1,("%d is group '%s'\n", rid, map[i].nt_name));
-
-		if (rid > max_rid)
-			max_rid = rid;
-	}
-
-	SAFE_FREE(map);
-
-	return max_rid;
-}
-
-static int net_maxrid(int argc, const char **argv)
-{
-	uint32 rid;
-
-	if (argc != 0) {
-	        DEBUG(0, ("usage: net initrid\n"));
-		return 1;
-	}
-
-	if ((rid = get_maxrid()) == 0) {
-		DEBUG(0, ("can't get current maximum rid\n"));
-		return 1;
-	}
-
-	d_printf("Currently used maximum rid: %d\n", rid);
-
-	return 0;
-}
-
 /* main function table */
 static struct functable net_func[] = {
 	{"RPC", net_rpc},
@@ -494,7 +416,6 @@ static struct functable net_func[] = {
 	{"GETLOCALSID", net_getlocalsid},
 	{"SETLOCALSID", net_setlocalsid},
 	{"GETDOMAINSID", net_getdomainsid},
-	{"MAXRID", net_maxrid},
 
 	{"HELP", net_help},
 	{NULL, NULL}
diff --git a/source3/utils/pdbedit.c b/source3/utils/pdbedit.c
index 45a63c4b64c..6a019e73d71 100644
--- a/source3/utils/pdbedit.c
+++ b/source3/utils/pdbedit.c
@@ -495,7 +495,7 @@ int main (int argc, char **argv)
 	poptGetArg(pc); /* Drop argv[0], the program name */
 
 	if (user_name == NULL) {
-		user_name = poptGetArg(pc);
+		user_name = strdup(poptGetArg(pc));
 	}
 
 	if (!lp_load(dyn_CONFIGFILE,True,False,False)) {
@@ -503,9 +503,6 @@ int main (int argc, char **argv)
 		exit(1);
 	}
 
-	if(lp_modules())
-		smb_load_modules(lp_modules());
-	
 	if (!init_names())
 		exit(1);
 
diff --git a/source3/utils/profiles.c b/source3/utils/profiles.c
deleted file mode 100644
index c7356a73233..00000000000
--- a/source3/utils/profiles.c
+++ /dev/null
@@ -1,729 +0,0 @@
-/* 
-   Samba Unix/Linux SMB client utility profiles.c 
-   Copyright (C) 2002 Richard Sharpe, rsharpe@richardsharpe.com
-
-   This program is free software; you can redistribute it and/or modify
-   it under the terms of the GNU General Public License as published by
-   the Free Software Foundation; either version 2 of the License, or
-   (at your option) any later version.
-   
-   This program is distributed in the hope that it will be useful,
-   but WITHOUT ANY WARRANTY; without even the implied warranty of
-   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-   GNU General Public License for more details.
-   
-   You should have received a copy of the GNU General Public License
-   along with this program; if not, write to the Free Software
-   Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.  */
- 
-/*************************************************************************
-                                                       
- A utility to report and change SIDs in registry files 
-                                     
- Many of the ideas in here come from other people and software. 
- I first looked in Wine in misc/registry.c and was also influenced by
- http://www.wednesday.demon.co.uk/dosreg.html
-
- Which seems to contain comments from someone else. I reproduce them here
- incase the site above disappears. It actually comes from 
- http://home.eunet.no/~pnordahl/ntpasswd/WinReg.txt. 
-
-The windows NT registry has 2 different blocks, where one can occure many
-times...
-
-the "regf"-Block
-================
- 
-"regf" is obviosly the abbreviation for "Registry file". "regf" is the
-signature of the header-block which is always 4kb in size, although only
-the first 64 bytes seem to be used and a checksum is calculated over
-the first 0x200 bytes only!
-
-Offset            Size      Contents
-0x00000000      D-Word      ID: ASCII-"regf" = 0x66676572
-0x00000004      D-Word      ???? //see struct REGF
-0x00000008      D-Word      ???? Always the same value as at 0x00000004
-0x0000000C      Q-Word      last modify date in WinNT date-format
-0x00000014      D-Word      1
-0x00000018      D-Word      3
-0x0000001C      D-Word      0
-0x00000020      D-Word      1
-0x00000024      D-Word      Offset of 1st key record
-0x00000028      D-Word      Size of the data-blocks (Filesize-4kb)
-0x0000002C      D-Word      1
-0x000001FC      D-Word      Sum of all D-Words from 0x00000000 to
-0x000001FB  //XOR of all words. Nigel
-
-I have analyzed more registry files (from multiple machines running
-NT 4.0 german version) and could not find an explanation for the values
-marked with ???? the rest of the first 4kb page is not important...
-
-the "hbin"-Block
-================
-I don't know what "hbin" stands for, but this block is always a multiple
-of 4kb in size.
-
-Inside these hbin-blocks the different records are placed. The memory-
-management looks like a C-compiler heap management to me...
-
-hbin-Header
-===========
-Offset      Size      Contents
-0x0000      D-Word      ID: ASCII-"hbin" = 0x6E696268
-0x0004      D-Word      Offset from the 1st hbin-Block
-0x0008      D-Word      Offset to the next hbin-Block
-0x001C      D-Word      Block-size
-
-The values in 0x0008 and 0x001C should be the same, so I don't know
-if they are correct or swapped...
-
-From offset 0x0020 inside a hbin-block data is stored with the following
-format:
-
-Offset      Size      Contents
-0x0000      D-Word      Data-block size    //this size must be a
-multiple of 8. Nigel
-0x0004      ????      Data
- 
-If the size field is negative (bit 31 set), the corresponding block
-is free and has a size of -blocksize!
-
-The data is stored as one record per block. Block size is a multiple
-of 4 and the last block reaches the next hbin-block, leaving no room.
-
-Records in the hbin-blocks
-==========================
-
-nk-Record
-
-      The nk-record can be treated as a kombination of tree-record and
-      key-record of the win 95 registry.
-
-lf-Record
-
-      The lf-record is the counterpart to the RGKN-record (the
-      hash-function)
-
-vk-Record
-
-      The vk-record consists information to a single value.
-
-sk-Record
-
-      sk (? Security Key ?) is the ACL of the registry.
-
-Value-Lists
-
-      The value-lists contain information about which values are inside a
-      sub-key and don't have a header.
-
-Datas
-
-      The datas of the registry are (like the value-list) stored without a
-      header.
-
-All offset-values are relative to the first hbin-block and point to the
-block-size field of the record-entry. to get the file offset, you have to add
-the header size (4kb) and the size field (4 bytes)...
-
-the nk-Record
-=============
-Offset      Size      Contents
-0x0000      Word      ID: ASCII-"nk" = 0x6B6E
-0x0002      Word      for the root-key: 0x2C, otherwise 0x20  //key symbolic links 0x10. Nigel
-0x0004      Q-Word      write-date/time in windows nt notation
-0x0010      D-Word      Offset of Owner/Parent key
-0x0014      D-Word      number of sub-Keys
-0x001C      D-Word      Offset of the sub-key lf-Records
-0x0024      D-Word      number of values
-0x0028      D-Word      Offset of the Value-List
-0x002C      D-Word      Offset of the sk-Record
-
-0x0030      D-Word      Offset of the Class-Name //see NK structure for the use of these fields. Nigel
-0x0044      D-Word      Unused (data-trash)  //some kind of run time index. Does not appear to be important. Nigel
-0x0048      Word      name-length
-0x004A      Word      class-name length
-0x004C      ????      key-name
-
-the Value-List
-==============
-Offset      Size      Contents
-0x0000      D-Word      Offset 1st Value
-0x0004      D-Word      Offset 2nd Value
-0x????      D-Word      Offset nth Value
-
-To determine the number of values, you have to look at the owner-nk-record!
-
-Der vk-Record
-=============
-Offset      Size      Contents
-0x0000      Word      ID: ASCII-"vk" = 0x6B76
-0x0002      Word      name length
-0x0004      D-Word      length of the data   //if top bit is set when offset contains data. Nigel
-0x0008      D-Word      Offset of Data
-0x000C      D-Word      Type of value
-0x0010      Word      Flag
-0x0012      Word      Unused (data-trash)
-0x0014      ????      Name
-
-If bit 0 of the flag-word is set, a name is present, otherwise the value has no name (=default)
-
-If the data-size is lower 5, the data-offset value is used to store the data itself!
-
-The data-types
-==============
-Wert      Beteutung
-0x0001      RegSZ:             character string (in UNICODE!)
-0x0002      ExpandSZ:   string with "%var%" expanding (UNICODE!)
-0x0003      RegBin:           raw-binary value
-0x0004      RegDWord:   Dword
-0x0007      RegMultiSZ:      multiple strings, seperated with 0
-                  (UNICODE!)
-
-The "lf"-record
-===============
-Offset      Size      Contents
-0x0000      Word      ID: ASCII-"lf" = 0x666C
-0x0002      Word      number of keys
-0x0004      ????      Hash-Records
-
-Hash-Record
-===========
-Offset      Size      Contents
-0x0000      D-Word      Offset of corresponding "nk"-Record
-0x0004      D-Word      ASCII: the first 4 characters of the key-name, padded with 0's. Case sensitiv!
-
-Keep in mind, that the value at 0x0004 is used for checking the data-consistency! If you change the 
-key-name you have to change the hash-value too!
-
-//These hashrecords must be sorted low to high within the lf record. Nigel.
-
-The "sk"-block
-==============
-(due to the complexity of the SAM-info, not clear jet)
-
-Offset      Size      Contents
-0x0000      Word      ID: ASCII-"sk" = 0x6B73
-0x0002      Word      Unused
-0x0004      D-Word      Offset of previous "sk"-Record
-0x0008      D-Word      Offset of next "sk"-Record
-0x000C      D-Word      usage-counter
-0x0010      D-Word      Size of "sk"-record in bytes
-????                                             //standard self
-relative security desciptor. Nigel
-????  ????      Security and auditing settings...
-????
-
-The usage counter counts the number of references to this
-"sk"-record. You can use one "sk"-record for the entire registry!
-
-Windows nt date/time format
-===========================
-The time-format is a 64-bit integer which is incremented every
-0,0000001 seconds by 1 (I don't know how accurate it realy is!)
-It starts with 0 at the 1st of january 1601 0:00! All values are
-stored in GMT time! The time-zone is important to get the real
-time!
-
-Common values for win95 and win-nt
-==================================
-Offset values marking an "end of list", are either 0 or -1 (0xFFFFFFFF).
-If a value has no name (length=0, flag(bit 0)=0), it is treated as the
-"Default" entry...
-If a value has no data (length=0), it is displayed as empty.
-
-simplyfied win-3.?? registry:
-=============================
-
-+-----------+
-| next rec. |---+                      +----->+------------+
-| first sub |   |                      |      | Usage cnt. |
-| name      |   |  +-->+------------+  |      | length     |
-| value     |   |  |   | next rec.  |  |      | text       |------->+-------+
-+-----------+   |  |   | name rec.  |--+      +------------+        | xxxxx |
-   +------------+  |   | value rec. |-------->+------------+        +-------+
-   v               |   +------------+         | Usage cnt. |
-+-----------+      |                          | length     |
-| next rec. |      |                          | text       |------->+-------+
-| first sub |------+                          +------------+        | xxxxx |
-| name      |                                                       +-------+
-| value     |
-+-----------+    
-
-Greatly simplyfied structure of the nt-registry:
-================================================
-   
-+---------------------------------------------------------------+
-|                                                               |
-v                                                               |
-+---------+     +---------->+-----------+  +----->+---------+   |
-| "nk"    |     |           | lf-rec.   |  |      | nk-rec. |   |
-| ID      |     |           | # of keys |  |      | parent  |---+
-| Date    |     |           | 1st key   |--+      | ....    |
-| parent  |     |           +-----------+         +---------+
-| suk-keys|-----+
-| values  |--------------------->+----------+
-| SK-rec. |---------------+      | 1. value |--> +----------+
-| class   |--+            |      +----------+    | vk-rec.  |
-+---------+  |            |                      | ....     |
-             v            |                      | data     |--> +-------+
-      +------------+      |                      +----------+    | xxxxx |
-      | Class name |      |                                      +-------+
-      +------------+      |
-                          v
-          +---------+    +---------+
-   +----->| next sk |--->| Next sk |--+
-   |  +---| prev sk |<---| prev sk |  |
-   |  |   | ....    |    | ...     |  |
-   |  |   +---------+    +---------+  |
-   |  |         ^          |          |
-      |         +----------+          |
-      +-------------------------------+
-
----------------------------------------------------------------------------
-
-Hope this helps....  (Although it was "fun" for me to uncover this things,
-                  it took me several sleepless nights ;)
-
-            B.D.
-
-*************************************************************************/
-#include "includes.h"
-#include <stdio.h>
-#include <errno.h>
-#include <sys/types.h>
-#include <sys/stat.h>
-#include <unistd.h>
-#include <sys/mman.h>
-
-typedef unsigned int DWORD;
-typedef unsigned short WORD;
-
-#define REG_REGF_ID 0x66676572
-
-typedef struct regf_block {
-  DWORD REGF_ID;     /* regf */
-  DWORD uk1;
-  DWORD uk2;
-  DWORD tim1, tim2;
-  DWORD uk3;             /* 1 */
-  DWORD uk4;             /* 3 */
-  DWORD uk5;             /* 0 */
-  DWORD uk6;             /* 1 */
-  DWORD first_key;       /* offset */
-  unsigned int dblk_size;
-  DWORD uk7[116];        /* 1 */
-  DWORD chksum;
-} REGF_HDR;
-
-typedef struct hbin_sub_struct {
-  DWORD dblocksize;
-  char data[1];
-} HBIN_SUB_HDR;
-
-#define REG_HBIN_ID 0x6E696268
-
-typedef struct hbin_struct {
-  DWORD HBIN_ID; /* hbin */
-  DWORD next_off;
-  DWORD prev_off;
-  DWORD uk1;
-  DWORD uk2;
-  DWORD uk3;
-  DWORD uk4;
-  DWORD blk_size;
-  HBIN_SUB_HDR hbin_sub_hdr;
-} HBIN_HDR;
-
-#define REG_NK_ID 0x6B6E
-
-typedef struct nk_struct {
-  WORD NK_ID;
-  WORD type;
-  DWORD t1, t2;
-  DWORD uk1;
-  DWORD own_off;
-  DWORD subk_num;
-  DWORD uk2;
-  DWORD lf_off;
-  DWORD uk3;
-  DWORD val_cnt;
-  DWORD val_off;
-  DWORD sk_off;
-  DWORD clsnam_off;
-} NK_HDR;
-
-#define REG_SK_ID 0x6B73
-
-typedef struct sk_struct {
-  WORD SK_ID;
-  WORD uk1;
-  DWORD prev_off;
-  DWORD next_off;
-  DWORD ref_cnt;
-  DWORD rec_size;
-  char sec_desc[1];
-} SK_HDR;
-
-typedef struct sec_desc_rec {
-  WORD rev;
-  WORD type;
-  DWORD owner_off;
-  DWORD group_off;
-  DWORD sacl_off;
-  DWORD dacl_off;
-} MY_SEC_DESC;
-
-typedef struct ace_struct {
-    unsigned char type;
-    unsigned char flags;
-    unsigned short length;
-    unsigned int perms;
-    DOM_SID trustee;
-} ACE;
-
-typedef struct acl_struct {
-  WORD rev;
-  WORD size;
-  DWORD num_aces;
-  ACE *aces;   /* One or more ACEs */
-} ACL;
-
-#define OFF(f) (0x1000 + (f) + 4) 
-
-void print_sid(DOM_SID *sid);
-
-int verbose = 1;
-DOM_SID old_sid, new_sid;
-int change = 0, new = 0;
-
-/* Compare two SIDs for equality */
-int my_sid_equal(DOM_SID *s1, DOM_SID *s2)
-{
-  int sa1, sa2;
-
-  if (s1->sid_rev_num != s2->sid_rev_num) return 0;
-
-  sa1 = s1->num_auths; sa2 = s2->num_auths;
-
-  if (sa1 != sa2) return 0;
-
-  return !bcmp((char *)&s1->id_auth, (char *)&s2->id_auth,
-		6 + sa1 * 4);
-
-}
-
-/*
- * Quick and dirty to read a SID in S-1-5-21-x-y-z-rid format and 
- * construct a DOM_SID
- */
-int get_sid(DOM_SID *sid, char *sid_str)
-{
-  int i = 0, auth;
-  char *lstr; 
-
-  if (strncmp(sid_str, "S-1-5", 5)) {
-    fprintf(stderr, "Does not conform to S-1-5...: %s\n", sid_str);
-    return 0;
-  }
-
-  /* We only allow strings of form S-1-5... */
-
-  sid->sid_rev_num = 1;
-  sid->id_auth[5] = 5;
-
-  lstr = sid_str + 5;
-
-  while (1) {
-    if (!lstr || !lstr[0] || sscanf(lstr, "-%u", &auth) == 0) {
-      if (i < 4) {
-	fprintf(stderr, "Not of form -d-d...: %s, %u\n", lstr, i);
-	return 0;
-      }
-      sid->num_auths=i;
-      print_sid(sid);
-      return 1;
-    }
-
-    SIVAL(&sid->sub_auths[i], 0, auth);
-    i++;
-    lstr = strchr(lstr + 1, '-'); 
-  }
-
-  return 1;
-}
-
-/* 
- * Replace SID1, component by component with SID2
- * Assumes will never be called with unequal length SIDS
- * so only touches 21-x-y-z-rid portion
- * This routine does not need to deal with endianism as 
- * long as the incoming SIDs are both in the same (LE) format.
- */
-void change_sid(DOM_SID *s1, DOM_SID *s2)
-{
-  int i;
-  
-  for (i=0; i<s1->num_auths; i++) {
-    s1->sub_auths[i] = s2->sub_auths[i];
-  }
-}
-
-void print_sid(DOM_SID *sid)
-{
-  int i, comps = sid->num_auths;
-  fprintf(stdout, "S-%u-%u", sid->sid_rev_num, sid->id_auth[5]);
-
-  for (i = 0; i < comps; i++) {
-
-    fprintf(stdout, "-%u", IVAL(&sid->sub_auths[i],0));
-
-  }
-  fprintf(stdout, "\n");
-}
-
-void process_sid(DOM_SID *sid, DOM_SID *o_sid, DOM_SID *n_sid) 
-{
-  int i;
-  if (my_sid_equal(sid, o_sid)) {
-
-    for (i=0; i<sid->num_auths; i++) {
-      sid->sub_auths[i] = n_sid->sub_auths[i];
-
-    }
-
-  }
-
-}
-
-void process_acl(ACL *acl, char *prefix)
-{
-  int ace_cnt, i;
-  ACE *ace;
-
-  ace_cnt = IVAL(&acl->num_aces, 0);
-  ace = (ACE *)&acl->aces;
-  if (verbose) fprintf(stdout, "%sACEs: %u\n", prefix, ace_cnt);
-  for (i=0; i<ace_cnt; i++) {
-    if (verbose) fprintf(stdout, "%s  Perms: %08X, SID: ", prefix,
-			 IVAL(&ace->perms, 0));
-    if (change)
-      process_sid(&ace->trustee, &old_sid, &new_sid);
-    print_sid(&ace->trustee);
-    ace = (ACE *)((char *)ace + SVAL(&ace->length, 0));
-  }
-} 
-
-void usage(void)
-{
-  fprintf(stderr, "usage: profiles [-c <OLD-SID> -n <NEW-SID>] <profilefile>\n");
-  fprintf(stderr, "Version: %s\n", VERSION);
-  fprintf(stderr, "\n\t-v\t sets verbose mode");
-  fprintf(stderr, "\n\t-c S-1-5-21-z-y-x-oldrid - provides SID to change");
-  fprintf(stderr, "\n\t-n S-1-5-21-a-b-c-newrid - provides SID to change to");
-  fprintf(stderr, "\n\t\tBoth must be present if the other is.");
-  fprintf(stderr, "\n\t\tIf neither present, just report the SIDs found\n");
-}
-
-int main(int argc, char *argv[])
-{
-  extern char *optarg;
-  extern int optind;
-  int opt;
-  int fd, start = 0;
-  char *base;
-  struct stat sbuf;
-  REGF_HDR *regf_hdr;
-  HBIN_HDR *hbin_hdr;
-  NK_HDR *nk_hdr;
-  SK_HDR *sk_hdr;
-  WORD first_sk_off, sk_off;
-  MY_SEC_DESC *sec_desc;
-  int *ptr;
-
-  if (argc < 2) {
-    usage();
-    exit(1);
-  }
-
-  /*
-   * Now, process the arguments
-   */
-
-  while ((opt = getopt(argc, argv, "c:n:v")) != EOF) {
-    switch (opt) {
-    case 'c':
-      change = 1;
-      if (!get_sid(&old_sid, optarg)) {
-	fprintf(stderr, "Argument to -c should be a SID in form of S-1-5-...\n");
-	usage();
-	exit(254);
-      }
-      break;
-
-    case 'n':
-      new = 1;
-      if (!get_sid(&new_sid, optarg)) {
-	fprintf(stderr, "Argument to -n should be a SID in form of S-1-5-...\n");
-	usage();
-	exit(253);
-      }
-
-      break;
-
-    case 'v':
-      verbose++;
-      break;
-
-    default:
-      usage();
-      exit(255);
-    }
-  }
-
-  if ((!change & new) || (change & !new)) {
-    fprintf(stderr, "You must specify both -c and -n if one or the other is set!\n");
-    usage();
-    exit(252);
-  }
-
-  fd = open(argv[optind], O_RDWR, 0000);
-
-  if (fd < 0) {
-    fprintf(stderr, "Could not open %s: %s\n", argv[optind], 
-	strerror(errno));
-    exit(2);
-  }
-
-  if (fstat(fd, &sbuf) < 0) {
-    fprintf(stderr, "Could not stat file %s, %s\n", argv[optind],
-	strerror(errno));
-    exit(3);
-  }
-
-  /*
-   * Now, mmap the file into memory, check the header and start
-   * dealing with the records. We are interested in the sk record
-   */
-  start = 0;
-  base = mmap(&start, sbuf.st_size, PROT_READ | PROT_WRITE, MAP_SHARED, fd, 0);
-
-  if ((int)base == -1) {
-    fprintf(stderr, "Could not mmap file: %s, %s\n", argv[optind],
-	strerror(errno));
-    exit(4);
-  }
-
-  /*
-   * In what follows, and in places above, in order to work on both LE and
-   * BE platforms, we have to use the Samba macros to extract SHORT, LONG
-   * and associated UNSIGNED quantities from the data in the mmap'd file.
-   * NOTE, however, that we do not need to do anything with memory
-   * addresses that we construct from pointers in our address space.
-   * For example, 
-   *
-   *    sec_desc = (MY_SEC_DESC *)&(sk_hdr->sec_desc[0]);
-   *
-   * is simply taking the address of a structure we already have the address
-   * of in our address space, while, the fields within it, will have to 
-   * be accessed with the macros:
-   *
-   * owner_sid = (DOM_SID *)(&sk_hdr->sec_desc[0] + 
-   *                         IVAL(&sec_desc->owner_off, 0));
-   *
-   * Which is pulling out an offset and adding it to an existing pointer.
-   *
-   */
-
-  regf_hdr = (REGF_HDR *)base;
-
-  if (verbose) fprintf(stdout, "Registry file size: %u\n", (unsigned int)sbuf.st_size);
-
-  if (IVAL(&regf_hdr->REGF_ID, 0) != REG_REGF_ID) {
-    fprintf(stderr, "Incorrect Registry file (doesn't have header ID): %s\n", argv[optind]);
-    exit(5);
-  }
-
-  if (verbose) fprintf(stdout, "First Key Off: %u, Data Block Size: %u\n",
-		       IVAL(&regf_hdr->first_key, 0), 
-		       IVAL(&regf_hdr->dblk_size, 0));
-
-  hbin_hdr = (HBIN_HDR *)(base + 0x1000); /* No need for Endian stuff */
-
-  /*
-   * This should be the hbin_hdr 
-   */
-
-  if (IVAL(&hbin_hdr->HBIN_ID, 0) != REG_HBIN_ID) {
-    fprintf(stderr, "Incorrect hbin hdr: %s\n", argv[optind]);
-    exit(6);
-  } 
-
-  if (verbose) fprintf(stdout, "Next Off: %u, Prev Off: %u\n", 
-		       IVAL(&hbin_hdr->next_off, 0), 
-		       IVAL(&hbin_hdr->prev_off, 0));
-
-  nk_hdr = (NK_HDR *)(base + 0x1000 + IVAL(&regf_hdr->first_key, 0) + 4);
-
-  if (SVAL(&nk_hdr->NK_ID, 0) != REG_NK_ID) {
-    fprintf(stderr, "Incorrect NK Header: %s\n", argv[optind]);
-    exit(7);
-  }
-
-  sk_off = first_sk_off = IVAL(&nk_hdr->sk_off, 0);
-  if (verbose) {
-    fprintf(stdout, "Type: %0x\n", SVAL(&nk_hdr->type, 0));
-    fprintf(stdout, "SK Off    : %o\n", (0x1000 + sk_off + 4));  
-  }
-
-  sk_hdr = (SK_HDR *)(base + 0x1000 + sk_off + 4);
-
-  do {
-    DOM_SID *owner_sid, *group_sid;
-    ACL *sacl, *dacl;
-    if (SVAL(&sk_hdr->SK_ID, 0) != REG_SK_ID) {
-      fprintf(stderr, "Incorrect SK Header format: %08X\n", 
-	      (0x1000 + sk_off + 4));
-      exit(8);
-    }
-    ptr = (int *)sk_hdr;
-    if (verbose) fprintf(stdout, "Off: %08X, Refs: %u, Size: %u\n",
-			 sk_off, IVAL(&sk_hdr->ref_cnt, 0), 
-			 IVAL(&sk_hdr->rec_size, 0));
-
-    sec_desc = (MY_SEC_DESC *)&(sk_hdr->sec_desc[0]);
-    owner_sid = (DOM_SID *)(&sk_hdr->sec_desc[0] +
-			    IVAL(&sec_desc->owner_off, 0));
-    group_sid = (DOM_SID *)(&sk_hdr->sec_desc[0] + 
-			    IVAL(&sec_desc->group_off, 0));
-    sacl = (ACL *)(&sk_hdr->sec_desc[0] + 
-		   IVAL(&sec_desc->sacl_off, 0));
-    dacl = (ACL *)(&sk_hdr->sec_desc[0] + 
-		   IVAL(&sec_desc->dacl_off, 0));
-    if (verbose)fprintf(stdout, "  Owner SID: "); 
-    if (change) process_sid(owner_sid, &old_sid, &new_sid);
-    if (verbose) print_sid(owner_sid);
-    if (verbose) fprintf(stdout, "  Group SID: "); 
-    if (change) process_sid(group_sid, &old_sid, &new_sid);
-    if (verbose) print_sid(group_sid);
-    fprintf(stdout, "  SACL: ");
-    if (!sec_desc->sacl_off) { /* LE zero == BE zero */
-      if (verbose) fprintf(stdout, "NONE\n");
-    }
-    else 
-      process_acl(sacl, "    ");
-    if (verbose) fprintf(stdout, "  DACL: ");
-    if (!sec_desc->dacl_off) {
-      if (verbose) fprintf(stdout, "NONE\n");
-    }
-    else 
-      process_acl(dacl, "    ");
-    sk_off = IVAL(&sk_hdr->prev_off, 0);
-    sk_hdr = (SK_HDR *)(base + OFF(IVAL(&sk_hdr->prev_off, 0)));
-  } while (sk_off != first_sk_off);
-
-  munmap(base, sbuf.st_size); 
-
-  close(fd);
-  return 0;
-}
diff --git a/swat/help/welcome.html b/swat/help/welcome.html
index fad83fbc925..1c23d35a27c 100644
--- a/swat/help/welcome.html
+++ b/swat/help/welcome.html
@@ -46,7 +46,19 @@ Please choose a configuration action using one of the above buttons
  <li><b>Books</b>
    <ul>
     <li><a href="/swat/using_samba/index.html" target="docs">Using Samba</a> - by Robert Eckstein, David Collier-Brown and Peter Kelly
-    <li><a href="/swat/help/Samba-HOWTO.html">The Samba HOWTO Collection</a>
+   </ul>
+ <li><b>Samba HOWTO Collection</b></li>
+   <ul>
+     <li><a href="/swat/help/Samba-HOWTO-Collection.html">Entire Collection (one file)</a>
+     <li><a href="/swat/help/DOMAIN_MEMBER.html">security = domain in Samba 2.x</a>
+     <li><a href="/swat/help/winbind.html">Unified Logons between Windows NT and UNIX Using Winbind</a>
+     <li><a href="/swat/help/msdfs_setup.html">Setting Samba as an MS-DFS server</a>
+     <li><a href="/swat/help/NT_Security.html">UNIX Permission Bits and Samba 2.x</a>
+     <li><a href="/swat/help/OS2-Client-HOWTO.html">OS/2 Clients and Samba</a>
+     <li><a href="/swat/help/printer_driver2.html">Printing under Samba 2.2.x</a>
+     <li><a href="/swat/help/UNIX_INSTALL.html">HOWTO Install and Test Samba</a>
+     <li><a href="/swat/help/Integrating-with-Windows.html">Integrating Name Resolution and Authentication Services</a>
+     <li><a href="/swat/help/CVS-Access.html">CVS Access to Samba code</a>
    </ul>
 </ul>