summaryrefslogtreecommitdiff
path: root/docs-xml/smbdotconf
AgeCommit message (Collapse)AuthorFilesLines
2012-04-16s3: switch off kernel oplocks by defaultChristian Ambach1-4/+3
as discussed on samba-technical, turn kernel oplocks off by default to not leave users without the benefits of Level II oplocks
2012-04-11docs: update kernel oplocks documentationChristian Ambach1-2/+7
Signed-off-by: Jeremy Allison <jra@samba.org>
2012-04-06docs-xml: fix default name resolve order (fix bug #7564)Björn Baumbach1-1/+1
Autobuild-User: Volker Lendecke <vl@samba.org> Autobuild-Date: Fri Apr 6 09:54:37 CEST 2012 on sn-devel-104
2012-03-07Change default protocol to SMB2_02.Jeremy Allison1-3/+17
Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Wed Mar 7 22:41:21 CET 2012 on sn-devel-104
2012-03-04s3-auth: Remove security=share (depricated since 3.6).Andrew Bartlett4-169/+16
This patch removes security=share, which Samba implemented by matching the per-share password provided by the client in the Tree Connect with a selection of usernames supplied by the client, the smb.conf or guessed from the environment. The rationale for the removal is that for the bulk of security=share users, we just we need a very simple way to run a 'trust the network' Samba server, where users mark shares as guest ok. This is still supported, and the smb.conf options are documented at https://wiki.samba.org/index.php/Public_Samba_Server At the same time, this closes the door on one of the most arcane areas of Samba authentication. Naturally, full user-name/password authentication remain available in security=user and above. This includes documentation updates for username and only user, which now only do a small amount of what they used to do. Andrew Bartlett -------------- / \ / REST \ / IN \ / PEACE \ / \ | SEC_SHARE | | security=share | | | | | | 5 March | | | | 2012 | *| * * * | * _________)/\\_//(\/(/\)/\//\/\///|_)_______
2012-02-16docs-xml: remove docs for "send spnego principal"Stefan Metzmacher1-28/+0
metze
2011-11-17docs: Add documentation for server roleAndrew Bartlett2-1/+75
2011-10-21Deprecate "acl check permissions".Jeremy Allison1-0/+3
Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Fri Oct 21 21:51:18 CEST 2011 on sn-devel-104
2011-10-19s3-docs: Add a clarification note for nss_info primary group membership ↵Günther Deschner1-1/+2
calculation. Guenther Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Wed Oct 19 03:10:40 CEST 2011 on sn-devel-104
2011-10-19s3-docs: Document Services for Unix 2.0 (sfu20) nss_info ldap schema support.Günther Deschner1-2/+3
Guenther
2011-10-13Another part of the fix for Bug 8473 - smb2_find uses a hard coded max reply ↵Jeremy Allison4-7/+7
size of 0x10000 instead of smb2_max_trans. Change the defaults and the documentation to reflect the 64k limit. Signed-off-by: Stefan Metzmacher <metze@samba.org> Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Thu Oct 13 12:22:23 CEST 2011 on sn-devel-104
2011-09-20Fix some typosVolker Lendecke1-5/+2
2011-09-20s3: Fix typosVolker Lendecke1-2/+2
2011-09-19Fix a typo. This is not an electromagnet pulse daemon I guess :-)Volker Lendecke1-1/+1
Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Mon Sep 19 01:25:23 CEST 2011 on sn-devel-104
2011-09-14Fix bug #8229 - git patch attached against 3.6.0-rc2 to fix 'widelinks' ↵Jeremy Allison3-0/+45
regression intro'd in 3.2 Add "allow insecure widelinks" to re-enable the ability (requested by some sites) to have "widelinks = yes" and "unix extensions = yes". Based on an original patch by Linda Walsh <samba@tlinx.org> Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Wed Sep 14 03:55:45 CEST 2011 on sn-devel-104
2011-08-31docs: Add documentation for the rpc_daemon parametric option.Simo Sorce1-0/+69
2011-08-31doc: Reflect the latest changes to the rpc_server option.Andreas Schneider1-18/+66
bug #8425.
2011-07-29First part of bugfix for bug #8335 - file copy aborts with ↵Jeremy Allison1-1/+1
smb2_validate_message_id: bad message_id Set default max credits to 8192 now this has been documented in the SMB2 spec.
2011-06-30docs: fix some whitespaceChristian Ambach1-5/+5
replace spaces with tabs, removing whitespaces at end of lines
2011-06-30docs: fix a typoChristian Ambach1-1/+1
2011-06-23s3-param Remove 'announce version' parameterAndrew Bartlett1-14/+0
The only users I can find of this on the internet involve confused users, and our own documentation recommends never setting this. Don't confuse our users any longer. Andrew Bartlett
2011-06-23param: Remove "announce as" parameterAndrew Bartlett1-21/+0
2011-06-11s3-param Remove 'time offset' from smb.confAndrew Bartlett1-15/+0
This strange parameter is apparently very rarely used, and it seems to me that on modern networks, if clients don't have correct clocks and DST offsets, that many other things (Kerberos) start to fail pretty quickly, and time and DST tables tend to be internet delivered anyway. Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Sat Jun 11 03:54:45 CEST 2011 on sn-devel-104
2011-06-07s3-docs Add documentation for ncalrpc dirAndrew Bartlett1-0/+13
Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Tue Jun 7 02:57:33 CEST 2011 on sn-devel-104
2011-06-01s3-param Make lp_passwordserver() const.Andrew Bartlett1-8/+0
This means that it no longer takes % substituations, and so the documentation for this behaviour is removed from the smb.conf manpage. (This mode is only useful in security=server, which is already marked as deprecated in 3.6). Andrew Bartlett
2011-05-31s3:doc: document "idmap gid" as deprecated.Michael Adam1-8/+5
Autobuild-User: Michael Adam <obnox@samba.org> Autobuild-Date: Tue May 31 11:39:38 CEST 2011 on sn-devel-104
2011-05-31s3:doc: document "idmap uid" as deprecated.Michael Adam1-7/+5
2011-05-31s3:doc: remove the documentation of "idmap alloc backend", which has been ↵Michael Adam1-14/+0
removed
2011-05-31s3:doc: document "idmap backend" as deprecated.Michael Adam1-33/+2
2011-05-31s3:doc: update documentation of the "idmap config FOO : BAR" familiy of ↵Michael Adam1-20/+83
parameters
2011-05-26s3: Document "async smb echo handler"Volker Lendecke1-0/+15
Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Thu May 26 12:50:55 CEST 2011 on sn-devel-104
2011-05-25docs: Rewrite 'password server' documentationAndrew Bartlett1-52/+54
I think this new version is more clear. Andrew Bartlett
2011-05-25docs: Clarify the 'security=server' fails for NTLMv2Andrew Bartlett1-0/+3
2011-05-18s3-docs: change eventlog path from lockdir to statedirBjörn Baumbach1-1/+1
See elog_tdbname() in source3/lib/eventlog/eventlog.c. Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-05-13s3-param Deprecate a number of security parameters for 3.6Andrew Bartlett5-80/+70
This follows up on the agreement on the samba-technical list in Jan 2011 to deprecate these options, and to possibly remove these in the 4.0 release after user feedback. Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Fri May 13 19:51:41 CEST 2011 on sn-devel-104
2011-03-28Be a little clearer about when and when not to set this option.Jeremy Allison1-4/+8
Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Mon Mar 28 23:59:47 CEST 2011 on sn-devel-104
2011-03-28Revert "Change strict allocate to default to true.Stefan Metzmacher1-6/+5
This reverts commit ecf48af135e4c1ebc5aafe4b3dad785162f5949a. This makes Samba unusable on systems without Linux and a modern Filesystem. This was discussed with Jeremy on IRC: http://irclog.samba.org/2011/01/20110126-Wed.log metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Mon Mar 28 09:00:09 CEST 2011 on sn-devel-104
2011-03-22s3:docs: remove documentation of "idmap read only" which was removed.Michael Adam1-21/+0
2011-03-22s3:docs: fix xml of "printnotifybackchannel" parameter (missing closing tag)Michael Adam1-0/+1
Autobuild-User: Michael Adam <obnox@samba.org> Autobuild-Date: Tue Mar 22 13:57:25 CET 2011 on sn-devel-104
2011-03-18s3: Add "print notify backchannel" parameter to prevent us doing the reverse ↵Volker Lendecke1-0/+18
print notify connection. Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Fri Mar 18 21:34:30 CET 2011 on sn-devel-104
2011-01-21s3:docs: document "winbind max domain connections"Michael Adam1-0/+24
Autobuild-User: Michael Adam <obnox@samba.org> Autobuild-Date: Fri Jan 21 14:33:57 CET 2011 on sn-devel-104
2011-01-07s3-printing: Initiate pcap reload from parent smbdDavid Disseldorp1-3/+1
Since commit 7022554, smbds share a printcap cache (printer_list.tdb), therefore ordering of events between smbd processes is important when updating printcap cache information. Consider the following two process example: 1) smbd1 receives HUP or printcap cache time expiry 2) smbd1 checks whether pcap needs refresh, it does 3) smbd1 marks pcap as refreshed 4) smbd1 forks child1 to obtain cups printer info 5) smbd2 receives HUP or printcap cache time expiry 6) smbd2 checks whether pcap needs refresh, it does not (due to step 3) 7) smbd2 reloads printer shares prior to child1 completion (stale pcap) 8) child1 completion, pcap cache (printer_list.tdb) is updated by smbd1 9) smbd1 reloads printer shares based on new pcap information In this case both smbd1 and smbd2 are reliant on the pcap update performed on child1 completion. The prior commit "reload shares after pcap cache fill" ensures that smbd1 only reloads printer shares following pcap update, however smbd2 continues to present shares based on stale pcap data. This commit addresses the above problem by driving pcap cache and printer share updates from the parent smbd process. 1) smbd0 (parent) receives a HUP or printcap cache time expiry 2) smbd0 forks child0 to obtain cups printer info 3) child0 completion, pcap cache (printer_list.tdb) is updated by smbd0 4) smbd0 reloads printer shares 5) smbd0 notifies child smbds of pcap update via message_send_all() 6) child smbds read fresh pcap data and reload printer shares This architecture has the additional advantage that only a single process (the parent smbd) requests printer information from the printcap backend. Use time_mono in housekeeping functions As suggested by Björn Jacke.
2010-12-15Change strict allocate to default to true. (cherry picked from commit ↵Jeremy Allison1-5/+6
820ea22a07b062b1717d35de8fa7051fc1067c3f)
2010-12-11Add documentation for "smb2 max credits".Jeremy Allison1-0/+15
Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Sat Dec 11 02:14:07 CET 2010 on sn-devel-104
2010-12-10s3-docs Add docs for 'client use spnego principal' and 'send spengo principal'Andrew Bartlett2-0/+56
Andrew Bartlett
2010-12-10s3-docs Explain change to NTLMv2 by default in the clientAndrew Bartlett1-6/+7
2010-12-01s3 docs: Reword posix locking text to answer a common questionKai Blin1-1/+2
vl recently pointed me to a valid reason to use posix locking = no. Fix the smb.conf manpage to explain this reason, as this question comes up on the samba mailing list from time to time as well. Autobuild-User: Kai Blin <kai@samba.org> Autobuild-Date: Wed Dec 1 10:37:30 CET 2010 on sn-devel-104
2010-11-22s3: Add a word of warning about "winbind use default domain"Volker Lendecke1-0/+4
Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Mon Nov 22 23:26:11 CET 2010 on sn-devel-104
2010-11-22s3: Fix some typosVolker Lendecke2-2/+2
2010-11-05s3: Allow disabling of mdns registrationsVolker Lendecke1-0/+15
Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Fri Nov 5 11:24:41 UTC 2010 on sn-devel-104