Commit graph

162 commits

Author SHA1 Message Date
jlam
7699290f10 If we're passing through MAKEFLAGS variables whose values may contain
spaces, use the :Q modifier instead of double-quoting the value.  This
avoids breakage when executing the just-in-time su targets.
2004-02-06 19:04:24 +00:00
agc
3ad1bdbf06 Move WRKSRC definition away from the first paragraph in a Makefile. 2004-01-20 12:18:15 +00:00
jlam
b0bc9e9614 The samba configure script looks for cups-config, and declares success on
finding cups if it's somewhere in your PATH.  Explicitly pass configure
--disable-cups if USE_CUPS is not defined to avoid finding CUPS.  Fixes
PR 24117 by David Brownlee.
2004-01-17 12:19:51 +00:00
jlam
0440463b52 Update net/samba to 3.0.1nb1. Changes from version 3.0.1 include:
* Building and installing the PAM modules if USE_PAM is defined.
* Installing the NSS loadable modules.
* Making the samba rc.d script run the winbindd script, too.
2004-01-12 03:33:04 +00:00
jlam
2a085db787 Update net/samba to 3.0.1. Major changes from version 2.2.8anb6 include:
* Active Directory support.  Samba is able to join a ADS realm as
    a member server and authenticate using LDAP/Kerberos.
  * Unicode support.
  * New, more flexible authentication (passdb) system.
  * A new "net" command that is similar to the "net" command in Windows.
  * Samba now negotiates NT-style status32 codes on the wire, which
    greatly improves error handling.
  * Better Windows 2K/2K3/XP printing support.
  * Loadable module support for passdb backends and character sets.
  * More performant winbindd.
  * Support for migrating from a Windows NT4 domain to a Samba domain
    and maintaining user, group, and domain SIDs.
  * Support for establishing trust relationships with Windows NT4 DCs.
  * Initial support for a distributed Winbind architecture using an
    LDAP directory for storing SID-to-uid/gid mappings.
  * Major updates to the Samba documentation tree.
  * Full support for client and server SMB signing to ensure
    compatibility with default Windows 2K3 security settings.
  * Improvement of ACL mapping features.
2004-01-11 02:26:30 +00:00
jlam
489bc96215 bl3ify 2004-01-11 00:33:03 +00:00
reed
6d9af8d68d Bump package revisions for tiff update.
Tiff is backward compatible, but was broken on amd64 platform
so this makes sure new tiff is used.
2004-01-03 18:49:33 +00:00
jschauma
fe19bb05b5 PKGREVISION++ after openssl update. 2003-11-12 03:39:39 +00:00
kim
f1e225f085 Change maintainer to myself. 2003-11-03 22:43:37 +00:00
grant
0f425a09cb when running ${TYPE} mktemp... redirect stderr to stdout, avoiding
spurious output.

fixes PR pkg/22814 from Rob Quinn.
2003-10-11 11:42:11 +00:00
jlam
6bcfdb782f Note which packages' Makefiles include this file. 2003-09-16 09:28:20 +00:00
jlam
811defebab Update net/samba to 2.2.8nb4. Changes from 2.2.8nb3 are installing
adduser and deluser scripts into ${PKG_SYSCONFDIR} that are capable of
dealing with usernames containing a "$".  These scripts basically
accept the same options as useradd/userdel.  They're meant to be used
in "add user script" and "delete user script" to deal with samba
machine accounts.
2003-09-14 22:25:25 +00:00
jlam
0da114423a All of the samba packages should have the same PKG_SYSCONFDIR. 2003-09-14 22:15:21 +00:00
jlam
306d195b73 Remove stray ) 2003-09-12 06:04:14 +00:00
kim
d484eeebb7 Fix DFS for Windows XP and 2003 clients.
http://lists.xsec.it/pipermail/samba-it/2003-April/000321.html
2003-09-05 19:13:41 +00:00
jlam
b2677a2cb0 Add definitions for DEINSTALL_EXTRA_TMPL and INSTALL_EXTRA_TMPL if
USE_PKGINSTALL is "YES".  bsd.pkg.install.mk will no longer automatically
pick up a INSTALL/DEINSTALL script in the package directory and assume that
you want it for the corresponding *_EXTRA_TMPL variable.
2003-08-30 22:51:11 +00:00
grant
ca3be631f2 s/netbsd.org/NetBSD.org/ 2003-07-17 22:50:55 +00:00
martti
2eb337614e Initial version. 2003-06-29 10:00:27 +00:00
jlam
13a527e481 Bump the PKGREVISION for net/samba to 2:
* findsmb is a perl script, and we need to substitute the correct path to
  the perl interpreter.

* Don't create ${PREFIX}/private during a "make install" as it's a
  completely useless directory.

* Don't bother to install the completely outdated Samba HTML documentation
  that is superseded by the Samba HOWTO Collection documentation.
2003-06-04 06:12:21 +00:00
jschauma
e366d0c694 Use tech-pkg@ in favor of packages@ as MAINTAINER for orphaned packages.
Should anybody feel like they could be the maintainer for any of thewe packages,
please adjust.
2003-06-02 01:15:31 +00:00
wiz
7166660e08 Dependency bumps, needed because of devel/pth's major bump, and related
dependency bumps.
2003-05-02 11:53:34 +00:00
uebayasi
cd99dbc1be ${INSTALL_DATA} can't create two directories at once on Solaris.
Addresses PR21086 by Rob Quinn <rquinn at sec dot sprint dot net>.
2003-04-10 11:58:55 +00:00
cjep
c4e2ac6f93 Update to Samba 2.2.8a.
Changes since 2.2.8:
Digital Defense, Inc. has alerted the Samba Team to a serious
vulnerability in all stable versions of Samba currently shipping.
The Common Vulnerabilities and Exposures (CVE) project has assigned
the ID CAN-2003-0201 to this defect.

This vulnerability, if exploited correctly, leads to an anonymous
user gaining root access on a Samba serving system. All versions
of Samba up to and including Samba 2.2.8 are vulnerable. An active
exploit of the bug has been reported in the wild.
2003-04-07 16:30:47 +00:00
tron
87c5dcc1eb Remove redundant entry "http://de.samba.org/samba/ftp/" from mirror list. 2003-03-16 16:19:04 +00:00
martti
43620ece71 Updated samba to 2.2.8
****************************************
* IMPORTANT: Security bugfix for Samba *
****************************************

The SuSE security audit team, in particular Sebastian Krahmer
<krahmer@suse.de>, has found a flaw in the Samba main smbd code which
could allow an external attacker to remotely and anonymously gain
Super User (root) privileges on a server running a Samba server.

This flaw exists in previous versions of Samba from 2.0.x to 2.2.7a
inclusive.  This is a serious problem and all sites should either
upgrade to Samba 2.2.8 immediately or prohibit access to TCP ports 139
and 445. Advice created by Andrew Tridgell, the leader of the Samba
Team, on how to protect an unpatched Samba server is given at the end
of this section.

The SMB/CIFS protocol implemented by Samba is vulnerable to many
attacks, even without specific security holes.  The TCP ports 139 and
the new port 445 (used by Win2k and the Samba 3.0 alpha code in
particular) should never be exposed to untrusted networks.
2003-03-16 07:57:43 +00:00
jdolecek
6376a67187 open_file_shared(): when falling back to O_RDONLY open_file() call after
O_RDWR fails in fcbopen case, remember the errno from previous open_file()
call and set errno back to this value if the second open_file() call
fails too

this makes samba report EACCESS instead of confusing ENOENT if creation
of file fails due to insufficient permissions for SMBcreate/SMBmknew call

bump package revision
2003-02-18 11:25:57 +00:00
jlam
d7f69e47ce Instead of including bsd.pkg.install.mk directly in a package Makefile,
have it be automatically included by bsd.pkg.mk if USE_PKGINSTALL is set
to "YES".  This enforces the requirement that bsd.pkg.install.mk be
included at the end of a package Makefile.  Idea suggested by Julio M.
Merino Vidal <jmmv at menta.net>.
2003-01-28 22:03:00 +00:00
martti
e81fdfc865 Updated samba to 2.2.7a
1)  Fix for smbclient reporting negative file sizes on dir command
    and negative statistics being reported when using put or get
    on large files.
2)  Fix bug in determination of allocation size
3)  Fix 64bit size problems which prevented copying of files larger
    than 2 GBytes.
4)  Fix for xcopy /s problem with old DOS clients not sending correct
    attributes on subsequent SMBsearch calls.
5)  Fix bug in call to standard_sub_advanced giving a 0 length. This
    fixes the string overflow in string_sub errors.
6)  Correctly handle querygroup rpcclient command
7)  fix broken incremental tar in smbtar command
2002-12-13 08:37:08 +00:00
martti
b9a43fba61 Updated samba to 2.2.7
A security hole has been discovered in versions 2.2.2 through 2.2.6
of Samba that could potentially allow an attacker to gain root access
on the target machine.  The word "potentially" is used because there
is no known exploit of this bug, and the Samba Team has not been able to
craft one ourselves. However, the seriousness of the problem warrants
this immediate 2.2.7 release.

1)  ensure we send the notify message in the same way it is expected
    to be received by srv_spoolss_receive_message().
2)  attribute matching on truncate only matters when opening truncate
    with current SYSTEM|HIDDEN -> NONE. It's fine to truncate on open
    with current NONE -> SYSTEM | HIDDEN.
3)  Fix bug in rpcclient's deldriver command
4)  Don't set global_machine_password_needs_changing if
    lp_machine_password_timeout() is set to zero
5)  don't parse the BUFFER5 if the buffer length is zero
6)  fix core dump if pdbedit is run as non-root or smbpasswd file does
    not exist
7)  Ensure can_delete() returns correct error code
8)  correctly return NT_STATUS_DELETE_PENDING from open code
9)  fix bug that assumed dos_unistr2 length was in ucs2 units, not bytes
10) check the long_archi name is not null when deleting a printer driver.
    fixes core dump in smbd when using rpcclient's deldriver
11) fix fd leak with kernel change notify on Linux 2.4 kernels
12) must add one to the extra_data size to transfer the 0 string
    terminator.  This was causing "wbinfo --sequence" to access past the
    end of malloced memory
13) fix for large systems allowing more than 65536 files open in
    NTcreate&X
14) Fix bug in %U expansion
2002-11-21 08:09:07 +00:00
jlam
2a30175999 Unconditionally compile the MSDFS support, as it's a run-time switch you
can turn on or off.  Bump PKGREVISION.
2002-10-20 19:49:37 +00:00
martti
48a8590454 Updated samba to 2.2.6
* Fixes for MS-RPC printing issues affecting Windows 2000 clients
* New support for smb.conf generation in SWAT
* Inclusion of several performance enhancements
* Fixes for several file locking bugs and returned status codes
2002-10-18 11:50:27 +00:00
kim
6763cdc3c1 Expand & in the gecos field to a capitalized login name. 2002-10-14 01:51:26 +00:00
kim
d4f819ef7a Add support for enabling MSDFS in Samba. 2002-10-13 23:13:50 +00:00
grant
0c5bb6abcc Make these scripts more portable by taking advantage of automatic rc.d
script handling and using @RCD_SCRIPTS_SHELL@.

as discussed with jlam.
2002-09-20 02:01:54 +00:00
jlam
5c053dd06a Take advantage of the auto-generation and installation of rc.d scripts. 2002-09-19 09:04:02 +00:00
jlam
e507190d0d When using bsd.pkg.install.mk, if a DEINSTALL or INSTALL file already
exists, then use it as the default value of DEINSTALL_EXTRA_TMPL or
INSTALL_EXTRA_TMPL.
2002-09-18 21:15:07 +00:00
jlam
1c57323789 Merge packages from the buildlink2 branch back into the main trunk that
have been converted to USE_BUILDLINK2.
2002-08-25 21:48:57 +00:00
jlam
f31766e427 Don't remove nonexistent directories. 2002-08-01 02:55:07 +00:00
jlam
644dd58683 Add back missing definitions for EXAMPLESDIR, HTMLDIR, and DOCDIR. 2002-08-01 02:40:05 +00:00
jlam
93a2e0b916 Factor out common parts of samba and winbind into net/samba/Makefile.common
and merge their patch collections.  These two packages are built from the
same source tree, and updates to the main distfile should be shared by
both packages.
2002-07-30 23:05:12 +00:00
jlam
680d0ed03b Update net/samba to version 2.2.5. The quick summary of changes from
version 2.2.4nb1 is that there are the usual minor bug fixes, plus some
important ones:

        * fix printing with Win2K/XP clients
        * fixes related to using LDAP for the SAM
        * fixes related to changing passwords

Pkgsrc changes:

	* Fetch the .tar.bz2 file -- it's smaller.
	* Use smb.conf.default as the sample config file and get rid of
	  the homegrown files/smb.conf.sample.  smb.conf.default is more
	  informative and is a better resource.
	* Remove irrelevant examples.
	* Move convert_smbpasswd script to the examples/samba/misc
	  directory.  It's pretty much outlived it's usefulness at this
	  point of the Samba release cycle.
2002-06-22 21:31:29 +00:00
taca
3e0762ea01 - Add a fix for possible buffer overflow; an array missing its terminate
element.
- Remove redundant PKGNAME and bump PKGREVISION to 1.
2002-06-14 17:04:13 +00:00
hubertf
ec689a5257 Backward compat with NetBSD <1.6: some rc.subr variables were renamed.
Make sure the new ones get defined from the old ones.
2002-05-24 22:28:27 +00:00
taca
e6db7f77a3 update samba package to 2.2.4.
WHAT'S NEW IN Samba 2.2.4  - 2nd May 2002
              =========================================

This is the latest stable release of Samba. This is the version that all
production Samba servers should be running for all current bug-fixes.

There have been several fixes and internal enhancements which include:

 * More/better SPOOLSS printing functionality for Windows
   NT/2k/XP clients.
 * Several fixes relating to serving PC database files such
   as (Access and FoxPro) from a Samba file share.
 * Several improves in Samba's VFS layer which can be seen
   in the inclusion of a "Recycle Bin" vfs module.  See
   examples/VFS/README for more details on this.
 * Addition of a tool (tdbbackup) for backup/restore of Samba's
   tdb's
 * Continued improvements to winbind for greater scalability
   and stability
 * Several fixes related to Samba's MS-DFS support
 * Rpcclient's various printer commands now work (again)


New/Changed parameters in 2.2.4
--------------------------------

For more information on these parameters, see the man pages for
smb.conf(5).

Added/changed parameters
------------------------

* csc policy
* inherit acls
* nt status support
* lock spin count
* lock spin time
* pid directory
* winbind use default domain


Depreciated parameters
----------------------

The following parameters have been marked as depreciated
and will be removed in Samba 3.0

* postscript
* printer driver
* printer driver file
* printer driver location


Removed Parameters
------------------

  none


Changes in 2.2.4
----------------

See the cvs log for SAMBA_2_2 for more details

1)  added -c option to smbpasswd
2)  reworked smbpasswd internal command line option parsing
3)  small various bug fixes to experimental pdb_tdb.c
4)  Enforce spoolss RPCs based on the access granted at PrinterOpen()
5)  Added missing access checks to [add/delete/set]form
6)  Compile fixes for pam_smbpass
7)  fix smbd crash when netbios session request fails from
    spoolss_connect_to_client().
8)  fixed logic bug that prevent SetPrinter() from storing devmode
9)  Removed extra get_printer_snum() calls from set_printer_hnd_name()
10) fix joining domain on big endian machine when using -U to smbpasswd
11) allow command line arg to override smb.conf log level
12) continue to retry to register 1b name with wins server if there is an old IP there
13) fix smbclient print crash bug
14) 9x pnp fix when the config file and driver file are different
15) force testparm to print the correct value for log level
16) fix swat to show full log level info
17) fix server GetPrinterData() fields to be more sensible
18) fix logic error in SetPrinterDataEx()
19) Only set smb_read_error if not already set
20) Fix string returns that require unicode
21) Merge of printing performance fixes from appliance
22) lpq parsing fixes
23) Back port tridge's xcopy /o fix from HEAD
24) Fix the printer change notify code (unfinished)
25) Patch for Domain users not showing up
26) Fixed SetPrinterData(magic key) to support zero length DEVMODE
27) Ensure that all methods of looking up and connecting to DC's work
    using identical logic.
28) Merge in the mutex code to stop multiple domain logon failure
29) Ignore 0/0 lock
30) Fix winbindd to respect command line debuglevel as nmbd/smbd
31) Update with tdbbackup from HEAD
32) Fix for typo on solaris nss
33) Merge in the locking changes from HEAD
34) Added POSIX ACL layer into the vfs
35) Fix the returning of domain enum
36) Fix the generation of the MACHINE.SID file into the secrets.tdb.
37) Enable test for -rdynamic when building binaries
38) Remove the "stat open" code - make it inline
39) Fix the mp3 rename bug
40) Fix for Explorer DFS problems on older Windows 9X machines
41) implement OpenPrinter() opnum == 0x01
42) Matched W2K *insane* open semantics....
43) small fix that will prevent the "failed to marshall
    R_NET_SAMLOGON" message in the logs
42) don't do checking of local passdb in smbpasswd if using -r option
43) fix "smbpasswd -j DOMAIN -r * -U Admin%XXXX" so that it doesn't
    try to connect to a server named '*'
44) merge rpcclient code from HEAD
45) Ensure MACHINE.SID update done before child spawns
46) Fix the bad path errors for mkdir so mkdir \a\b\c\d works
47) Removed --with-vfs - always built if available
48) Fixed psec for 2.2
49) Fixed the handle leak in the connection management code
50) fix disable spoolss after the switch to nt status codes
51) Added Shirish's client side caching policy change
52) Honor the specversion when parsing the the DEVICEMODE
53) fix parsing bug when DEVICEMODE's private data does not end
    on a 4 byte boundary
54) do not idle an smbd when there is an open pipe
55) when a new driver is added to a Samba server, cycle through
    all printers and bump the change_id for each one bound to the driver
56) allow smbclient to work with a FIFO as well (needed for KDE
    ioslave)
57) various updates to pdb_nisplus.c
58) many small documentation updates
59) removed many compiler warnings



Known Bugs
----------

* Under certain conditions when serving the MS Access 2000
  executable file and an Access database from a Samba share,
  it is possible to experience data corruption.  This pug does
  does occur when the database is served from a Samba file share
  but the Access *.exe is stored on the client's local file system.
  The exact reason for this bug is unknown at this time.
2002-05-05 16:57:10 +00:00
taca
0aedc6e20b update samba package to 2.2.3.1 (samba 2.2.3a).
Change from 2.2.3
-----------------

This is a minor bugfix release for the 2.2.3 release. The 2.2.3
release had a problem that was visible to Windows 2000 Explorer
users in that copying files into a share that already existed
failed with "Access Denied" rather than asking the user if an
overwrite was required. This was due to an incorrect error mapping
between the UNIX EEXIST error code and the NT status error.

As Windows Explorer is a highly visible end user application a quick
bugfix release was required, hence 2.2.3a.

Compilation on HPUX versions earlier than HPUX 11 has also been
corrected.

The cvs.log file is no longer included with this release, as it adds
13Mb to the size of the release, and is easily available on the Web.
2002-02-07 09:57:19 +00:00
jlam
e0d358778b Solaris' test binary (test/[) doesn't grok "-e". Replace with "-f".
Noted by Stoned Elipot <seb@netbsd.org> in private email.
2002-02-05 06:04:36 +00:00
jlam
5a0ca2bacc Modify the package so that the message is only displayed if SAMBA_USE_LDAP
is not defined, as that is the only time when the smbpasswd file is
consulted.  Also don't create a the smbpasswd file from /etc/passwd, as
that generates a lot of bad users, e.g. root, daemon, operator, etc.
Instead, just create an empty smbpasswd file and rely on the admin to add
approved users to the smbpasswd file using "smbpasswd -a".
2002-02-05 05:14:46 +00:00
jlam
3601662821 Add a bunch more FTP mirror sites. 2002-02-05 03:04:20 +00:00
taca
64194abfc3 (1) Change Samba's "lockdir" from /var/run/samba to /var/db/samba.
(2) Add "piddir" as /var/run and "pidfile dir" and "pidfile directory"
    statement for smb.conf.
(3) Some fix for password synchronization but it isn't tested much and
    it is almost useless under "encrypt passwords = yes" environment.

Changes for INSTALL and part of Makefile are provided by
"Johnny C. Lam" <jlam@netbsd.org> and (2) and (3) are got
from FreeBSD ports.

Bump revision to 1; samba-2.2.3nb1 now.
2002-02-05 00:36:25 +00:00
tron
bf2e995df2 Use HTTP for german mirror because FTP doesn't work. 2002-02-04 21:33:19 +00:00