WHATS NEW IN Samba 3.0 alphaX
=============================
+Changes in alpha20
+ - Rework the 'guest account gets RID 501' code again...
+ - Change to use NT-based session key negotiated for Win2k SPNEGO
+ - Support printer data registry keys other than the default
+ PrinterDriverData
+ - Moved internal printerdata to REGISTRY_VALUE object
+ - Corrected bug in dependentfiles list of DRIVER_INFO_3
+ - fixed logic bug in blocking locks code
+ - Updated registry api code to work with new printer data key
+ support
+ - Added vfstest tool
+ - round lock timeouts in lockingX upwards to multiples of 1 second
+ - Fixed bugs in Printer Change Notify code
+ - added a 'net ads lookup' command that does a CLDAP NetLogon
+ query to a win2000 server
+ - Added script to find undocumented smb.conf parameters
+ - Added missing parameters to smb.conf(5)
+ - receive & parse main CLDAP reply from win2k server
+ - removed "admin log" & "alternate permissions" parameters from smb.conf
+ - added a generic print_guid utility, and get the byte order handing
+ - fixed memory corruption in cli_full_connection()
+ - remove unused 'max packet' and 'packet size' options
+ - add support for the "value,OID" format described in MSDN for Printer
+ Data values
+ - moves NT_TOKEN generation into our authentication code
+ - Update documentation build system
+ - Several fixes for IRIX compiler
+ - Correctly handle "max data count" value in smb transacts
+ - Fix for permissions error when adding/modifying using a Print
+ server handle
+ - Fix pam_smbpass to always check the return value of pdb_getsampwnam()
+ - Use the 'init' flag to determine if the UID is set, rather than testing
+ the uid for -1
+ - Cope with non-unix accounts - we just won't get the groups for those users
+ - Add 'net rpc getsid' to fetch the PDC's SID into the local secrets.tdb.
+ Print domain SID on 'net rpc info'
+ - don't use lp_passwd_file() to retrieve NIS domain name, but use location
+ instead
+ - Various POSIX compatibility fixes
+ - Show only non-default values in testparm
+ - Fix longstanding bug in Win2k clients by clearing the shortname
+ buffer before returning ascii short name.
+ - Add example backtrace script
+ - Added NETLOGON NetServerAuthenticate3 include and parser file
+ - fix for difference in strsep and strtok semantics in nmbd
+ - Ensure we don't change to a user that we can't get an NT_TOKEN for
+ - Put back in BDC support in set_server_role()
+ - added a 'net rpc samdump' command for dumping the whole sam via
+ samsync operations (as a BDC)
+ - don't use spnego in the client unless enabled in smb.conf
+ - Added some new delta types discovered by Ronnie from ethereal
+ - Cope with negative cache dns entries better
+ - do not expose special files, only files, directories and links
+ - attempts to simplify Samba's external lib dependencies
+ - support non-root-mode systems without getgrouplist()
+ - Some fixes for SMB signing
+ - Pass the object name down to the enum_printers client rpc
+ - add the netatalk VFS module
+ - Ensure we have at least smb_size bytes before processing a packet
+ - Allow us to "lock" printer tdb entries in memory to stop them being
+ re-used as cache
+ - fix 2 byte alignment/offset bug that prevented Win2k/XP clients
+ from receiving all the printer data in EnumPrinterDataEx()
+ - Add option to compile new sam system can be enabled with the
+ configure option --with-sam
+ - Added SGML/DocBook version of developer oriented docs to build process
+ - Return correct FILE_SUPERSEDED response
+ - Added example sam module (skeleton)
+ - Add plugin support for the sam system (based on passdb code)
+ - show builtin groups in samdump
+ - Adding samtest utility used to test sam backends
+ - fix connecting to a BDC when the PDC is down but in WINS and no bcast
+ can be used to find a BDC
+ - convert the LDAP/SASL code to use GSS-SPNEGO if possible
+ - added cli_net_auth_3 client code
+ - merge of phant0m key fix from APP_HEAD
+ - allow rpcclient's samlogon command to use cli_net_3()
+ - Added attribute specific OPEN tests
+ - Fix bug with stat mode open being done on read-only open with
+ truncate
+ - Add lots of const casts to function parameters
+ - Implemented some more client side spoolss functions
+ - usrmgr expects unicode as ProductType
+ - Change JOB_INFO_CTR to return a pointer to an array rather than array of
+ pointers in client code
+ - Various NTLMSSP fixes
+ - fixed crash bug in cli_connection code
+ - DeletePrinterDriver[Ex]() fixes from APP_HEAD
+ - remove some inet_aton() calls for portability
+ - Set default ACB attributes on 'unixsam' accounts
+ - Add bcast_msg_flags to connection struct
+ - aggregate change notify events in the smbd sender and when transmitting
+ - Added better error code on out of space in printer spool directory
+ - Removed total jobs check - not applicable any more
+ - fixed bug in share enumeration RPC code
+ - extend the ADS_STATUS system to include NTSTATUS
+ - commit trusted domain patch n+3
+ - remove block VFS module
+ - restrict readline headers to readline.c
+ - merge of various recycle bin VFS patches
+ - Winbind client-side cleanups
+ - change parametric option name to vfs_recycle_bin it is more
+ sane and do not pollute standard options namespace too much
+ - added --enable-python configure option for building the samba-python
+ unit tests
+ - correct trans2 bugs in client for enumerating files/directories
+ - Re-add OS/2 EA error codes
+ - Added patch for required attributes in directory listings to reply code
+ - Fix browse synchronization bug by noticing that W2K DMB's return empty
+ NetServerEnum2 on port 445, but not on port 139
+ - Fix semantics of AbortPrinter() spoolss call in server code
+ - Ensure we've failed a lock with a lock denied message before automatically
+ pushing it onto the blocking queue
+ - Added experimental sendfile code
+ - Initialize user_rid value in WINBIND_USERINFO structure returned by
+ the rpc version of query_user()
+ - added gencache implementation
+ - Merge the cli_shutdown change from 2_2
+ - Fixes for DeletePrinterDriverEx()
+ - Fixed alignment error in spoolss code
+ - Changed Major/Minor version info reported to Server Manager to 4.9
+ - Applied new display mode FLAGS for SWAT
+ - Update to add DEVELOPER option to more parameters
+ - Added --with-ads option, defaults to yes
+ - Added --with-ldap option to configure
+ - Add clock skew handling to our kerberos code
+ - correct race condition in password change code for out machine account
+ when a member of a domain
+ - First implementation for 'net rpc vampire'
+ - store current handle's Device Mode with print job
+ - Move functionality to check whether entries for lp_workgroup() and
+ "BUILTIN" exist and add them if necessary from check_correct_backend_entries
+ into sam_context_check_default_backends
+ - allow --with-krb5 to override the location of the kerberos libs on
+ redhat
+ - unlink spool file after submitting print job when using CUPS api
+ - Add framework for samtest commands
+ - Add the ability to view/set the current local domain SIDs to net command
+ - When creating a group you have to take care of the fact that the
+ underlying unix might not like the group name
+ - Don't uppercase the username and domain in a session setup
+ - Merge of "profile acls" code from SAMBA_2_2
+ - Check for existing of security descriptor in PRINTER_INFO_2 structure
+ in rpc client code
+ - Move to common user token debugging, and ensure we always print both the
+ NT_TOKEN and the unix credentials
+ - If adding a user to ldap, make sure we have the 'account' structural class,
+ or else we can't add to OpenLDAP 2.1
+ - Kill of Get_Pwnam_Modify and smb_getpwnam()
+ - add a 'ldap passwd sync' option to smb.conf
+ - Whenever we deal with adding machine/trusted domain accounts, always reset
+ the flag to what we expect
+ - Fix the circular dependency that was preventing 'domain master = auto' (the
+ default) from working
+ - move all the passdb internal interface to NTSTATUS
+ - to expand % values (ie we go \\%L\%U -> \\server\user, we don't want to
+ store \\server\user back) and to correctly notice 'not set' compared to 'null
+ string' etc.
+ - get some more of our access control bits right on the SAMR pipe
+ - Add -r parameter to smbgroupedit. With -r you can manually choose
+ a rid
+
+Changes in alpha19
+ - Virtual registry framework with printing hooks (jerry)
+ - Heavy registry updates (jerry)
+ - Use 850 as the default DOS character set in smb.conf (tpot)
+ - printer fixes - removed encoding of queueid in job number (jra)
+ - A lot of small fixes (jra)
+ - Don't crash on setfileinfo on printer fsp(jra)
+ - fixed line buffer mode in XFILE(jra)
+ - update samba.schema from 2.2 (jerry,idra)
+ - Fix problem with oplock breaks and win2k -
+ noticed by Lev Iserovich <lev@ciprico.com> (jra)
+ - Update smbgroupedit to document -d - thanks to metze (abartlet)
+ - Support weird behaviour used by win9x pass-through auth (abartlet,tpot)
+ - Support for duplicating stderr in log files (abartlet)
+ - Move startup time initialisation to server.c (abartlet)
+ - *A lot* of fixes and cleanups (abartlet)
+ - Fix up compiler warnings (abartlet)
+ - Few small fixes (tpot)
+ - Renamed new_cli_netlogon_* -> cli_netlogon_* (tpot)
+ - Fixed segfault in net time when host is unavailable (tridge)
+ - Ensure to be root when opening printer backend tdb (jra)
+ - Merges from APPLIANCE_HEAD (tpot,jerry)
+ - configure updates (tridge)
+ - getgrouplist() updates (tridge)
+ - Support for pdbedit to query account policy values (abartlet)
+ - Allow one to create trusting domain account using smbpasswd (mimir,abartlet)
+ - 'Net rpc trustdom list' (mimir, abartlet)
+ - Fix fallback to anonymous connection (mimir, abartlet)
+ - Fix for pdb_ldap and OpenLDAP 2.1
+ - Added support in swat to determine whether winbind is running (idra)
+ - Add 'hide unwritable' option (idra)
+ - Correct pickup of [homes] share after subsequent session setups (abartlet)
+ - Update rebind code in pdb_ldap (abartlet)
+ - Add some info levels to RPC srvsvc code -
+ thanks to Nigel Williams" <nigel@veritas.com> (abartlet)
+ - Small doc fixes (tridge)
+ - good security patch from Timothy.Sell@unisys.com (tridge)
+ - fix minor nits in nmbd from adtam@cup.hp.com (tridge)
+ - make sure async dns nmbd child dies (tridge)
+ - interim fix for nmbd not registering DOMAIN#1b (tridge)
+ - fix for smbtar filename matching (tridge)
+ - Better quote handling in smb.conf (abartlet)
+ - Support browsers setting multiple languages in swat (idra)
+ - Changed str_list_make to be able to use a different separator string (idra)
+ - Samsync support to insert account info into the pdb (tpot)
+ - Don't hide unwritable dirs when 'hide unwritable' is enabled -
+ suggested by Alexander Oswald <oswald@is.haw-hamburg.de> (idra)
+ - Fix for handling sparse files in smbd (tridge)
+ - Merges from 2_2 (jerry)
+ - Minor printer fixes (jerry)
+ - Add some checks to SID lookup code (abartlet)
+ - Cascaded VFS (Alexander Bokovoy, idra)
+ - Some netbios-less connections support in ADS mode (tridge)
+ - ADS tweaks (tridge)
+ - Fix plaintext passwords with win2k (tridge)
+ - 'net ads info' reports IP of LDAP server (tridge)
+ - Add some more RPC functions (jmcd)
+ - Add 'smb ports = ' option (tridge)
+ - Various small fixes (tridge)
+ - Passdb security checks (abartlet)
+ - Large winbind updates (abartlet)
+ - Moved rpc client routines from libsmb to rpc_client (tpot)
+ - Few nmbd fixes (jmcd)
+ - Fix swat to handle new debug level code (idra)
+ - Fix name length bug in namequeries (tridge)
+ - Don't have client binaries depend on libs they don't use -
+ patch from Steve Langasek <vorlon@netexpress.net> (abartlet)
+ - Printing change notification (merged from HEAD_APPLIANCE) (jerry)
+ - fix delete printer driver (from HEAD_APPLIANCE) (jerry)
+ - Added pdb_xml and pdb_mysql (jelmer)
+ - Update pdb_test (jelmer)
+ - Fix security issues with %m (abartlet)
+ - Support for service joins from win2k AND use SPNEGO (jmcd)
+ - pdbedit -i and -e fix, add -b (idra)
+ - textdocs converted to sgml (jelmer, jerry)
+ - Merge netbios namecache code from APPLIANCE_HEAD (tpot)
+ - Fix segs in new NTLMSSP code (abartlet)
+ - Always make guest rid 501 (abartlet)
+
+Changes in alpha18
+ - huge number of changes! really too many to list ... (and its 1am
+ here, and I'm too tired)
+ See the cvs tree at http://build.samba.org/
+
+
+Changes in alpha17
+- OpenLinux packaging updates (jht)
+- Locking updates - fix zero timeout (tridge, jra)
+- Default ACL support (jra, based on code from Olaf Frczyk <olaf@cbk.poznan.pl>)
+- printing updates - spoolss stuff (tpot)
+- 'make install' directory creation fixes (abartlet)
+- Lots of fixes for SID handling, local v domain sids etc
+- better mangle debugging (abartlet)
+- fixes to allow 'net' to return more than 1000 users from ADS (jmcd)
+ - winbind support to come very shortly
+- lock some more tdbs to allow concurrent access for backups
+- 'net' help cleanups (jmcd)
+- 'net join' automatic transport detection
+
+Changes in alpha16
+- LDAP schema updates (jerry)
+- initial ADS LDAP printer advertising (jmcd)
+- spoolss and printing updates (tpot, jerry)
+ (the is the major update in this alpha, and work continues)
+- Winbindd connection cache improvements (abartlet)
+- spnego segfault fixes (abartlet)
+- net ads segfault fixes ( Alexander Bokovoy <a.bokovoy@sam-solutions.net>)
+- header cleanups (tpot)
+- Serialise domain auth requests - win2k bug (tridge)
+- fix winbind talloced memory leak (dleducq@arkoon.net, tridge)
+- call unmangle in don_unmangle (abartlet)
+- UTF8 Charset functions - for ADS LDAP calls (Hasch@t-online.de)
+- Fix security tab for mapped drives on unicode clients (tridge)
+- Better configure tests for snprintf and immidiate structures (abartlet)
+- allow 'passdb backend = plugin : /path/to/plugin.so : plguin args'
+ (loads a passdb module) (Jelmer Vernooij <jelmer@nl.linux.org>)
+- change the way we store our domain join info - you will need to
+rejoin the domain (tridge)
+- xcopy /o fixes (tridge)
+- fix the 'convert_string' level 0 debugs.
+- Patch for Domain users not showing up from "Ivan Zhakov" <vunny@mail.ru>
+- tdb backup support
+- The beginning of trusted and trusting domain support - net commands
+ (Rafal Szczesniak <mimir@diament.ists.pwr.wroc.pl>)
+- nmbd signal processing fixes (jra)
+- lseek-on-pipe support (jra)
+- Allow Samba to trust NT4 Domains (abartlet)
+- LDAPsam updates (abartlet):
+ - Now runtime selectable (when configured)
+ - ldap user suffix and ldap group suffix support.
+ - non unix account support
+ - select with 'passdb backend = ldapsam' or 'passdb backend =
+ ldapsam_nua'
+- start to allow NT4 domains to trust Samba, netlogon fixes (abartlet)
+- make default unix charset UTF8 (tridge)
+- Fix SIGSEGV on error message when trying to add a user to smbpasswd
+file without a unix account (jmcd)
+- better detection of dead ADS connections, so we have some chance of
+reconnecting (tridge)
+- removed bogus prepend_domain() call which was screwing up getpwuid()
+with the new default domain code
+- Domain/workstation SID fixes.
+- patch from Alexey Kotovich <a.kotovich@sam-solutions.net> that adds
+ the security decsriptor code for ADS workstation accounts.
+ (allow self password change, self remove)
+ (after much review and disscussion with abartlet and tridge)
+
Changes in alpha15
- Improvements in pam_winbind/winbindd_pam.c: (abartlet)
- Much better error reporting
git.samba.org / kai / samba.git / blobdiff