head 1.11; access; symbols pkgsrc-2013Q2:1.11.0.52 pkgsrc-2013Q2-base:1.11 pkgsrc-2012Q4:1.11.0.50 pkgsrc-2012Q4-base:1.11 pkgsrc-2011Q4:1.11.0.48 pkgsrc-2011Q4-base:1.11 pkgsrc-2011Q2:1.11.0.46 pkgsrc-2011Q2-base:1.11 pkgsrc-2009Q4:1.11.0.44 pkgsrc-2009Q4-base:1.11 pkgsrc-2008Q4:1.11.0.42 pkgsrc-2008Q4-base:1.11 pkgsrc-2008Q3:1.11.0.40 pkgsrc-2008Q3-base:1.11 cube-native-xorg:1.11.0.38 cube-native-xorg-base:1.11 pkgsrc-2008Q2:1.11.0.36 pkgsrc-2008Q2-base:1.11 pkgsrc-2008Q1:1.11.0.34 pkgsrc-2008Q1-base:1.11 pkgsrc-2007Q4:1.11.0.32 pkgsrc-2007Q4-base:1.11 pkgsrc-2007Q3:1.11.0.30 pkgsrc-2007Q3-base:1.11 pkgsrc-2007Q2:1.11.0.28 pkgsrc-2007Q2-base:1.11 pkgsrc-2007Q1:1.11.0.26 pkgsrc-2007Q1-base:1.11 pkgsrc-2006Q4:1.11.0.24 pkgsrc-2006Q4-base:1.11 pkgsrc-2006Q3:1.11.0.22 pkgsrc-2006Q3-base:1.11 pkgsrc-2006Q2:1.11.0.20 pkgsrc-2006Q2-base:1.11 pkgsrc-2006Q1:1.11.0.18 pkgsrc-2006Q1-base:1.11 pkgsrc-2005Q4:1.11.0.16 pkgsrc-2005Q4-base:1.11 pkgsrc-2005Q3:1.11.0.14 pkgsrc-2005Q3-base:1.11 pkgsrc-2005Q2:1.11.0.12 pkgsrc-2005Q2-base:1.11 pkgsrc-2005Q1:1.11.0.10 pkgsrc-2005Q1-base:1.11 pkgsrc-2004Q4:1.11.0.8 pkgsrc-2004Q4-base:1.11 pkgsrc-2004Q3:1.11.0.6 pkgsrc-2004Q3-base:1.11 pkgsrc-2004Q2:1.11.0.4 pkgsrc-2004Q2-base:1.11 pkgsrc-2004Q1:1.11.0.2 pkgsrc-2004Q1-base:1.11 pkgsrc-2003Q4:1.10.0.2 pkgsrc-2003Q4-base:1.10 netbsd-1-6-1:1.5.0.2 netbsd-1-6-1-base:1.5 buildlink2-base:1.1 buildlink2:1.1.0.2 netbsd-1-6:1.1.0.4 netbsd-1-6-RELEASE-base:1.1; locks; strict; comment @# @; 1.11 date 2004.01.11.02.26.31; author jlam; state dead; branches; next 1.10; 1.10 date 2003.09.16.09.28.20; author jlam; state Exp; branches; next 1.9; 1.9 date 2003.09.14.22.15.21; author jlam; state Exp; branches; next 1.8; 1.8 date 2003.04.07.16.30.47; author cjep; state Exp; branches; next 1.7; 1.7 date 2003.03.16.16.19.04; author tron; state Exp; branches; next 1.6; 1.6 date 2003.03.16.07.57.44; author martti; state Exp; branches; next 1.5; 1.5 date 2002.12.13.08.37.08; author martti; state Exp; branches 1.5.2.1; next 1.4; 1.4 date 2002.11.21.08.09.08; author martti; state Exp; branches; next 1.3; 1.3 date 2002.10.18.11.50.27; author martti; state Exp; branches; next 1.2; 1.2 date 2002.08.25.21.50.10; author jlam; state Exp; branches; next 1.1; 1.1 date 2002.07.30.23.05.12; author jlam; state Exp; branches 1.1.2.1; next ; 1.5.2.1 date 2003.03.23.01.23.07; author jmc; state Exp; branches; next 1.5.2.2; 1.5.2.2 date 2003.04.16.15.04.31; author grant; state Exp; branches; next ; 1.1.2.1 date 2002.07.30.23.05.12; author jlam; state dead; branches; next 1.1.2.2; 1.1.2.2 date 2002.08.25.21.20.29; author jlam; state Exp; branches; next ; desc @@ 1.11 log @Update net/samba to 3.0.1. Major changes from version 2.2.8anb6 include: * Active Directory support. Samba is able to join a ADS realm as a member server and authenticate using LDAP/Kerberos. * Unicode support. * New, more flexible authentication (passdb) system. * A new "net" command that is similar to the "net" command in Windows. * Samba now negotiates NT-style status32 codes on the wire, which greatly improves error handling. * Better Windows 2K/2K3/XP printing support. * Loadable module support for passdb backends and character sets. * More performant winbindd. * Support for migrating from a Windows NT4 domain to a Samba domain and maintaining user, group, and domain SIDs. * Support for establishing trust relationships with Windows NT4 DCs. * Initial support for a distributed Winbind architecture using an LDAP directory for storing SID-to-uid/gid mappings. * Major updates to the Samba documentation tree. * Full support for client and server SMB signing to ensure compatibility with default Windows 2K3 security settings. * Improvement of ACL mapping features. @ text @# $NetBSD: Makefile.common,v 1.10 2003/09/16 09:28:20 jlam Exp $ # # NOTE: This file is included by: # # net/samba/Makefile # security/pam-smbpass/Makefile # security/winbind/Makefile DISTNAME= samba-${SAMBA_DIST_VERS} SAMBA_DIST_VERS= 2.2.8a WRKSRC?= ${WRKDIR}/${DISTNAME}/source CATEGORIES?= net MASTER_SITES= ftp://ftp.samba.org/pub/samba/ \ ftp://ring.asahi-net.or.jp/pub/net/samba/ \ ftp://samba.anu.edu.au/pub/samba/ \ ftp://ftp.sunet.se/pub/unix/utilities/samba/ COUNTRY_MIRRORS= au1 ca fi fr de it pl ru sg se us1 us6 .for COUNTRY in ${COUNTRY_MIRRORS} MASTER_SITES+= ftp://${COUNTRY}.samba.org/pub/samba/ .endfor EXTRACT_SUFX= .tar.bz2 DISTINFO_FILE?= ${.CURDIR}/../../net/samba/distinfo PATCHDIR?= ${.CURDIR}/../../net/samba/patches GNU_CONFIGURE= # defined USE_LIBTOOL= # defined LTCONFIG_OVERRIDE= ${WRKSRC}/ltconfig .include "../../mk/bsd.prefs.mk" PKG_SYSCONFSUBDIR?= samba PKG_SYSCONFVAR= samba VARDIR?= /var SAMBA_ETCDIR?= ${PKG_SYSCONFDIR} SAMBA_DATADIR= ${PREFIX}/share SAMBA_LOCKDIR?= ${VARDIR}/db/samba SAMBA_LOGDIR?= ${VARDIR}/log SAMBA_PIDDIR?= ${VARDIR}/run SAMBA_PRIVATE?= ${SAMBA_ETCDIR}/private CONFIGURE_ARGS+= --localstatedir=${VARDIR} CONFIGURE_ARGS+= --sbindir=${PREFIX}/sbin CONFIGURE_ARGS+= --with-configdir=${SAMBA_ETCDIR} CONFIGURE_ARGS+= --with-codepagedir=${SAMBA_DATADIR}/samba/codepages CONFIGURE_ARGS+= --with-datadir=${SAMBA_DATADIR} CONFIGURE_ARGS+= --with-lockdir=${SAMBA_LOCKDIR} CONFIGURE_ARGS+= --with-logfilebase=${SAMBA_LOGDIR} CONFIGURE_ARGS+= --with-piddir=${SAMBA_PIDDIR} CONFIGURE_ARGS+= --with-privatedir=${SAMBA_PRIVATE} CONFIGURE_ARGS+= --with-swatdir=${SAMBA_DATADIR}/samba/swat CONFIGURE_ARGS+= --without-readline CONFIGURE_ARGS+= --without-ssl CONFIGURE_ENV+= ac_cv_lib_curses_tgetent=no CONFIGURE_ARGS+= --disable-cups CONFIGURE_ARGS+= --without-pam CONFIGURE_ARGS+= --without-winbind # The following are Linux-only options. CONFIGURE_ARGS+= --without-smbwrapper CONFIGURE_ARGS+= --without-smbmount FILES_SUBST= SAMBA_PRIVATE=${SAMBA_PRIVATE} FILES_SUBST+= SAMBA_LOCKDIR=${SAMBA_LOCKDIR} FILES_SUBST+= SAMBA_LOGDIR=${SAMBA_LOGDIR} FILES_SUBST+= SAMBA_ETCDIR=${SAMBA_ETCDIR} @ 1.10 log @Note which packages' Makefiles include this file. @ text @d1 1 a1 1 # $NetBSD: Makefile.common,v 1.9 2003/09/14 22:15:21 jlam Exp $ @ 1.9 log @All of the samba packages should have the same PKG_SYSCONFDIR. @ text @d1 7 a7 1 # $NetBSD: Makefile.common,v 1.8 2003/04/07 16:30:47 cjep Exp $ @ 1.8 log @Update to Samba 2.2.8a. Changes since 2.2.8: Digital Defense, Inc. has alerted the Samba Team to a serious vulnerability in all stable versions of Samba currently shipping. The Common Vulnerabilities and Exposures (CVE) project has assigned the ID CAN-2003-0201 to this defect. This vulnerability, if exploited correctly, leads to an anonymous user gaining root access on a Samba serving system. All versions of Samba up to and including Samba 2.2.8 are vulnerable. An active exploit of the bug has been reported in the wild. @ text @d1 1 a1 1 # $NetBSD: Makefile.common,v 1.7 2003/03/16 16:19:04 tron Exp $ d27 1 @ 1.7 log @Remove redundant entry "http://de.samba.org/samba/ftp/" from mirror list. @ text @d1 1 a1 1 # $NetBSD: Makefile.common,v 1.6 2003/03/16 07:57:44 martti Exp $ d4 1 a4 1 SAMBA_DIST_VERS= 2.2.8 @ 1.6 log @Updated samba to 2.2.8 **************************************** * IMPORTANT: Security bugfix for Samba * **************************************** The SuSE security audit team, in particular Sebastian Krahmer , has found a flaw in the Samba main smbd code which could allow an external attacker to remotely and anonymously gain Super User (root) privileges on a server running a Samba server. This flaw exists in previous versions of Samba from 2.0.x to 2.2.7a inclusive. This is a serious problem and all sites should either upgrade to Samba 2.2.8 immediately or prohibit access to TCP ports 139 and 445. Advice created by Andrew Tridgell, the leader of the Samba Team, on how to protect an unpatched Samba server is given at the end of this section. The SMB/CIFS protocol implemented by Samba is vulnerable to many attacks, even without specific security holes. The TCP ports 139 and the new port 445 (used by Win2k and the Samba 3.0 alpha code in particular) should never be exposed to untrusted networks. @ text @d1 1 a1 1 # $NetBSD: Makefile.common,v 1.5 2002/12/13 08:37:08 martti Exp $ a9 1 http://de.samba.org/samba/ftp/ \ @ 1.5 log @Updated samba to 2.2.7a 1) Fix for smbclient reporting negative file sizes on dir command and negative statistics being reported when using put or get on large files. 2) Fix bug in determination of allocation size 3) Fix 64bit size problems which prevented copying of files larger than 2 GBytes. 4) Fix for xcopy /s problem with old DOS clients not sending correct attributes on subsequent SMBsearch calls. 5) Fix bug in call to standard_sub_advanced giving a 0 length. This fixes the string overflow in string_sub errors. 6) Correctly handle querygroup rpcclient command 7) fix broken incremental tar in smbtar command @ text @d1 1 a1 1 # $NetBSD: Makefile.common,v 1.4 2002/11/21 08:09:08 martti Exp $ d4 1 a4 1 SAMBA_DIST_VERS= 2.2.7a @ 1.5.2.1 log @Pullup rev 1.6 (requested by bouyer in ticket #1220) Updated samba to 2.2.8 **************************************** * IMPORTANT: Security bugfix for Samba * **************************************** The SuSE security audit team, in particular Sebastian Krahmer , has found a flaw in the Samba main smbd code which could allow an external attacker to remotely and anonymously gain Super User (root) privileges on a server running a Samba server. This flaw exists in previous versions of Samba from 2.0.x to 2.2.7a inclusive. This is a serious problem and all sites should either upgrade to Samba 2.2.8 immediately or prohibit access to TCP ports 139 and 445. Advice created by Andrew Tridgell, the leader of the Samba Team, on how to protect an unpatched Samba server is given at the end of this section. The SMB/CIFS protocol implemented by Samba is vulnerable to many attacks, even without specific security holes. The TCP ports 139 and the new port 445 (used by Win2k and the Samba 3.0 alpha code in particular) should never be exposed to untrusted networks. @ text @d1 1 a1 1 # $NetBSD$ d4 1 a4 1 SAMBA_DIST_VERS= 2.2.8 @ 1.5.2.2 log @Pull up revision 1.8 (requested by cjep in ticket #1251): Update to Samba 2.2.8a. [security fix] @ text @d1 1 a1 1 # $NetBSD: Makefile.common,v 1.5.2.1 2003/03/23 01:23:07 jmc Exp $ d4 1 a4 1 SAMBA_DIST_VERS= 2.2.8a @ 1.4 log @Updated samba to 2.2.7 A security hole has been discovered in versions 2.2.2 through 2.2.6 of Samba that could potentially allow an attacker to gain root access on the target machine. The word "potentially" is used because there is no known exploit of this bug, and the Samba Team has not been able to craft one ourselves. However, the seriousness of the problem warrants this immediate 2.2.7 release. 1) ensure we send the notify message in the same way it is expected to be received by srv_spoolss_receive_message(). 2) attribute matching on truncate only matters when opening truncate with current SYSTEM|HIDDEN -> NONE. It's fine to truncate on open with current NONE -> SYSTEM | HIDDEN. 3) Fix bug in rpcclient's deldriver command 4) Don't set global_machine_password_needs_changing if lp_machine_password_timeout() is set to zero 5) don't parse the BUFFER5 if the buffer length is zero 6) fix core dump if pdbedit is run as non-root or smbpasswd file does not exist 7) Ensure can_delete() returns correct error code 8) correctly return NT_STATUS_DELETE_PENDING from open code 9) fix bug that assumed dos_unistr2 length was in ucs2 units, not bytes 10) check the long_archi name is not null when deleting a printer driver. fixes core dump in smbd when using rpcclient's deldriver 11) fix fd leak with kernel change notify on Linux 2.4 kernels 12) must add one to the extra_data size to transfer the 0 string terminator. This was causing "wbinfo --sequence" to access past the end of malloced memory 13) fix for large systems allowing more than 65536 files open in NTcreate&X 14) Fix bug in %U expansion @ text @d1 1 a1 1 # $NetBSD: Makefile.common,v 1.3 2002/10/18 11:50:27 martti Exp $ d4 1 a4 1 SAMBA_DIST_VERS= 2.2.7 @ 1.3 log @Updated samba to 2.2.6 * Fixes for MS-RPC printing issues affecting Windows 2000 clients * New support for smb.conf generation in SWAT * Inclusion of several performance enhancements * Fixes for several file locking bugs and returned status codes @ text @d1 1 a1 1 # $NetBSD: Makefile.common,v 1.2 2002/08/25 21:50:10 jlam Exp $ d4 1 a4 1 SAMBA_DIST_VERS= 2.2.6 @ 1.2 log @Merge packages from the buildlink2 branch back into the main trunk that have been converted to USE_BUILDLINK2. @ text @d1 1 a1 1 # $NetBSD: Makefile.common,v 1.1.2.1 2002/08/25 21:20:29 jlam Exp $ d4 1 a4 1 SAMBA_DIST_VERS= 2.2.5 @ 1.1 log @Factor out common parts of samba and winbind into net/samba/Makefile.common and merge their patch collections. These two packages are built from the same source tree, and updates to the main distfile should be shared by both packages. @ text @d1 1 a1 1 # $NetBSD$ @ 1.1.2.1 log @file Makefile.common was added on branch buildlink2 on 2002-08-25 21:20:29 +0000 @ text @d1 64 @ 1.1.2.2 log @Merge changes in the main trunk into the buildlink2 branch for those packages that have been converted to USE_BUILDLINK2. @ text @a0 64 # $NetBSD: Makefile.common,v 1.1.2.1 2002/08/25 21:20:29 jlam Exp $ DISTNAME= samba-${SAMBA_DIST_VERS} SAMBA_DIST_VERS= 2.2.5 WRKSRC?= ${WRKDIR}/${DISTNAME}/source CATEGORIES?= net MASTER_SITES= ftp://ftp.samba.org/pub/samba/ \ ftp://ring.asahi-net.or.jp/pub/net/samba/ \ ftp://samba.anu.edu.au/pub/samba/ \ http://de.samba.org/samba/ftp/ \ ftp://ftp.sunet.se/pub/unix/utilities/samba/ COUNTRY_MIRRORS= au1 ca fi fr de it pl ru sg se us1 us6 .for COUNTRY in ${COUNTRY_MIRRORS} MASTER_SITES+= ftp://${COUNTRY}.samba.org/pub/samba/ .endfor EXTRACT_SUFX= .tar.bz2 DISTINFO_FILE?= ${.CURDIR}/../../net/samba/distinfo PATCHDIR?= ${.CURDIR}/../../net/samba/patches GNU_CONFIGURE= # defined USE_LIBTOOL= # defined LTCONFIG_OVERRIDE= ${WRKSRC}/ltconfig .include "../../mk/bsd.prefs.mk" PKG_SYSCONFSUBDIR?= samba VARDIR?= /var SAMBA_ETCDIR?= ${PKG_SYSCONFDIR} SAMBA_DATADIR= ${PREFIX}/share SAMBA_LOCKDIR?= ${VARDIR}/db/samba SAMBA_LOGDIR?= ${VARDIR}/log SAMBA_PIDDIR?= ${VARDIR}/run SAMBA_PRIVATE?= ${SAMBA_ETCDIR}/private CONFIGURE_ARGS+= --localstatedir=${VARDIR} CONFIGURE_ARGS+= --sbindir=${PREFIX}/sbin CONFIGURE_ARGS+= --with-configdir=${SAMBA_ETCDIR} CONFIGURE_ARGS+= --with-codepagedir=${SAMBA_DATADIR}/samba/codepages CONFIGURE_ARGS+= --with-datadir=${SAMBA_DATADIR} CONFIGURE_ARGS+= --with-lockdir=${SAMBA_LOCKDIR} CONFIGURE_ARGS+= --with-logfilebase=${SAMBA_LOGDIR} CONFIGURE_ARGS+= --with-piddir=${SAMBA_PIDDIR} CONFIGURE_ARGS+= --with-privatedir=${SAMBA_PRIVATE} CONFIGURE_ARGS+= --with-swatdir=${SAMBA_DATADIR}/samba/swat CONFIGURE_ARGS+= --without-readline CONFIGURE_ARGS+= --without-ssl CONFIGURE_ENV+= ac_cv_lib_curses_tgetent=no CONFIGURE_ARGS+= --disable-cups CONFIGURE_ARGS+= --without-pam CONFIGURE_ARGS+= --without-winbind # The following are Linux-only options. CONFIGURE_ARGS+= --without-smbwrapper CONFIGURE_ARGS+= --without-smbmount FILES_SUBST= SAMBA_PRIVATE=${SAMBA_PRIVATE} FILES_SUBST+= SAMBA_LOCKDIR=${SAMBA_LOCKDIR} FILES_SUBST+= SAMBA_LOGDIR=${SAMBA_LOGDIR} FILES_SUBST+= SAMBA_ETCDIR=${SAMBA_ETCDIR} @