Version: 4.16.4, Package name: samba-4.16.4 |
Maintained by: Ian McWilliam, Jeremie Courreges-Anglas |
Master sites: |
Description-docs Additional Samba documentation and examples. Description-main The Samba suite is a set of programs that implement a server for the Windows file- and printer-sharing protocols (SMB/CIFS) and Active Directory compatible Domain Controller. |
Filesize: 29887.813 KB |
Version History (View Complete History) |
|
2021-11-20 02:43:49 by Jeremie Courreges-Anglas | Files touched by this commit (3) |
Log message: SECURITY UPDATE to samba-4.15.2 Please see the release notes for the list of CVEs: https://www.samba.org/samba/history/samba-4.15.2.html Tests and ok bket@ Ian McWilliam (co-maintainer) |
2021-11-20 02:41:53 by Jeremie Courreges-Anglas | Files touched by this commit (3) |
Log message: SECURITY UPDATE to samba-4.14.10 Please see the release notes for the list of CVEs: https://www.samba.org/samba/history/samba-4.14.10.html Tested by Ian McWilliam (co-maintainer) |
2021-11-01 18:02:07 by Stuart Henderson | Files touched by this commit (216) |
Log message: bump REVISION for switch from Python 3.8 -> 3.9 |
2021-10-18 06:25:20 by Jeremie Courreges-Anglas | Files touched by this commit (10) |
Log message: Update to samba-4.15.0 Release notes: https://www.samba.org/samba/history/samba-4.15.0.html Tested by Ian McWilliam (co-maintainer) and bket@, input from bket@ |
2021-09-03 05:47:43 by Antoine Jacoutot | Files touched by this commit (14) |
Log message: net/avahi -> net/avahi,-libs |
2021-07-15 05:13:46 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: Update to samba-4.14.6 Positive test reports from Ian (co-maintainer). Release notes: https://www.samba.org/samba/history/samba-4.14.6.html |
2021-06-28 07:24:00 by Jeremie Courreges-Anglas | Files touched by this commit (3) |
Log message: Update to samba-4.14.5 Test report from Ian (co-maintainer) Release notes: https://www.samba.org/samba/history/samba-4.14.5.html |
2021-06-09 13:50:11 by Stuart Henderson | Files touched by this commit (73) |
Log message: remove ports libexecinfo, we now have a libunwind-based libexecinfo in base |
2021-05-14 00:47:26 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: Rename the mdfind executable to avoid a collision with gworkspace This SpotLight "feature" is starting to get in the way! Reported by ajacoutot@ |
2021-05-12 17:33:25 by Jeremie Courreges-Anglas | Files touched by this commit (33) |
Log message: Major update to samba-4.14.4 Latest release. Many bugs have been fixed, including possibly security relevant ones. This long overdue update has been postponed because of binutils-2.17 ld(1) bugs in version scripts handling. The issue is not fixed but at least worked around. The SHARED_LIBS handling is a bit ugly because of the .cpython-XY tag added to some libraries names. Tests by Ian (co-maintainer) |
2021-04-25 06:09:46 by Jeremie Courreges-Anglas | Files touched by this commit (1) |
Log message: Add missing dep on py-tdb at build time When missing, samba builds pytdb support using its bundled copy of tdb, and installs it in WRKINST, as shown by update-plist. samba runs fine with the py-tdb package registered in its RUN_DEPENDS, but this is not what was intended. Consistently use libtdb and py-tdb from databases/tdb. |
2021-04-24 06:47:10 by Jeremie Courreges-Anglas | Files touched by this commit (1) |
Log message: Zap empty rc script |
2021-04-24 06:39:06 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: Document lack of AD DC support |
2021-04-24 06:34:38 by Jeremie Courreges-Anglas | Files touched by this commit (4) |
Log message: Drop AD DC support Broken since ~2018 on clang+ld.lld archs, no analysis and no diff to fix it, so it's time to send it to the Attic. Support for AD DC mode can't be optimal anyway, with the deprecation of the ntvfs server code and our lack of xattrs/ACLs. "Fine by me" Ian |
2021-03-05 03:43:05 by Stuart Henderson | Files touched by this commit (5) |
Log message: bump REVISION for libtalloc split, add dep on py-libtalloc to samba ok jca@ |
2021-02-27 01:53:07 by Antoine Jacoutot | Files touched by this commit (4) |
Log message: Bump for sysutils/gamin,-main -> sysutils/gamin |
2021-02-23 12:39:53 by Stuart Henderson | Files touched by this commit (743) |
Log message: Reverse the polarity of MODPY_VERSION; default is now 3.x, if a port needs 2.x then set MODPY_VERSION=${MODPY_DEFAULT_VERSION_2}. This commit doesn't change any versions currently used; it may be that some ports have MODPY_DEFAULT_VERSION_2 but don't require it, those should be cleaned up in the course of updating ports where possible. Python module ports providing py3-* packages should still use FLAVOR=python3 so that we don't have a mixture of dependencies some using ${MODPY_FLAVOR} and others not. |
2021-01-25 05:52:20 by Stuart Henderson | Files touched by this commit (1) |
Log message: missed bump after databases/tdb commit, missed dep on databases/tdb,-python |
2021-01-16 14:21:05 by Stuart Henderson | Files touched by this commit (9) |
Log message: split the py2 version of py-dnspython off into net/py2-dnspython, update the py3 version to 2.1.0, and adapt ports using it. |
2020-03-20 10:44:29 by Christian Weisgerber | Files touched by this commit (135) |
Log message: Make use of "find -exec {} +" (which is POSIX) and "find -delete" (which is not) throughout the ports Makefiles. * Replace find|xargs with find -exec {} + * Replace -exec {} \; with -exec {} + if applicable. * Use the -delete operator to remove files and empty directories. * Combine and tweak some find(1) invocations while here. ok kn@ rsadowski@ espie@ |
2020-01-24 06:30:25 by Jeremie Courreges-Anglas | Files touched by this commit (1) |
Log message: SECURITY update to samba-4.9.18 Fixes for: o CVE-2019-14902: The implementation of ACL inheritance in the Samba AD DC was not complete, and so absent a 'full-sync' replication, ACLs could get out of sync between domain controllers. o CVE-2019-14907: When processing untrusted string input Samba can read past the end of the allocated buffer when printing a "Conversion error" message to the logs. o CVE-2019-19344: During DNS zone scavenging (of expired dynamic entries) there is a read of memory after it has been freed. |
2020-01-24 06:29:42 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: SECURITY update to samba-4.9.18 Fixes for: o CVE-2019-14902: The implementation of ACL inheritance in the Samba AD DC was not complete, and so absent a 'full-sync' replication, ACLs could get out of sync between domain controllers. o CVE-2019-14907: When processing untrusted string input Samba can read past the end of the allocated buffer when printing a "Conversion error" message to the logs. o CVE-2019-19344: During DNS zone scavenging (of expired dynamic entries) there is a read of memory after it has been freed. |
2019-12-23 05:26:23 by Jeremie Courreges-Anglas | Files touched by this commit (3) |
Log message: Fix conflict introduced in previous Reported by semarie@ |
2019-12-18 19:57:28 by Jeremie Courreges-Anglas | Files touched by this commit (19) |
Log message: Downgrade to samba-4.9.17 samba-4.10.10 and later fail to link on ld.bfd archs. Revert until someone(tm) tracks down the problem. Errors look like: /usr/bin/ld: BFD 2.17 internal error, aborting at /usr/src/gnu/usr.bin/binutils-2.17/bfd/elfcode.h line 190 in void bfd_elf64_swap_symbol_in(bfd *, const void *, const void *, Elf_Internal_Sym *) /usr/bin/ld: /pobj/samba-4.10.10/samba-4.10.10/bin/default/lib/param/libserver-role-samba4.so: invalid string offset 3755991007 >= 625 for section `.dynstr' 3755991007 is 0xDFDFDFDF is likely already freed memory. build failures: http://build-failures.rhaalovely.net/sparc64/2019-12-11/net/samba,.log http://build-failures.rhaalovely.net/mips64/2019-12-06/net/samba,,-ldb.log |
2019-12-10 10:02:11 by Jeremie Courreges-Anglas | Files touched by this commit (1) |
Log message: SECURITY update to samba-4.9.17 Fixes: o CVE-2019-14861: Samba AD DC zone-named record Denial of Service in DNS management server (dnsserver). o CVE-2019-14870: DelegationNotAllowed not being enforced in protocol transition on Samba AD DC. |
2019-12-10 02:56:50 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: SECURITY update to samba-4.10.11 Fixes: o CVE-2019-14861: Samba AD DC zone-named record Denial of Service in DNS management server (dnsserver). o CVE-2019-14870: DelegationNotAllowed not being enforced in protocol transition on Samba AD DC. |
2019-12-05 03:01:52 by Jeremie Courreges-Anglas | Files touched by this commit (3) |
Log message: Avoid some printf("%s", NULL) log spam While here add the same comment to another affected file. Reported by Ian McWilliam |
2019-12-03 17:17:54 by Jeremie Courreges-Anglas | Files touched by this commit (21) |
Log message: Update to samba-4.10.10 Tested by Ian McWilliam |
2019-10-30 07:03:11 by Jeremie Courreges-Anglas | Files touched by this commit (1) |
Log message: Switch back to kmos' mirror |
2019-10-30 07:02:25 by Jeremie Courreges-Anglas | Files touched by this commit (1) |
Log message: Switch back to kmos' mirror |
2019-10-30 06:42:00 by Jeremie Courreges-Anglas | Files touched by this commit (1) |
Log message: Mirror this samba update for now, oops |
2019-10-30 06:41:23 by Jeremie Courreges-Anglas | Files touched by this commit (1) |
Log message: Mirror this samba update for now, oops |
2019-10-30 06:21:54 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: SECURITY update to samba-4.9.15 Fixes for: o CVE-2019-10218: Client code can return filenames containing path separators. o CVE-2019-14833: Samba AD DC check password script does not receive the full password. o CVE-2019-14847: User with "get changes" permission can crash AD DC LDAP server via dirsync. Release notes for 4.9.14 and 4.9.15: https://www.samba.org/samba/history/samba-4.9.14.html https://www.samba.org/samba/history/samba-4.9.15.html -current diff tested by and ok gonzalo@ |
2019-10-30 06:20:48 by Jeremie Courreges-Anglas | Files touched by this commit (3) |
Log message: SECURITY update to samba-4.9.15 Fixes for: o CVE-2019-10218: Client code can return filenames containing path separators. o CVE-2019-14833: Samba AD DC check password script does not receive the full password. o CVE-2019-14847: User with "get changes" permission can crash AD DC LDAP server via dirsync. Release notes for 4.9.14 and 4.9.15: https://www.samba.org/samba/history/samba-4.9.14.html https://www.samba.org/samba/history/samba-4.9.15.html Tested by and ok gonzalo@ |
2019-10-07 07:35:48 by Jeremie Courreges-Anglas | Files touched by this commit (4) |
Log message: Mirror a bunch of samba.org distfiles download.samba.org now rejects the HTTP/1.0 requests sent by our ftp(1). Changing ftp(1) now is asking for trouble so work around it. distfiles hosting courtesy of kmos@, thanks! |
2019-10-07 06:50:14 by Jeremie Courreges-Anglas | Files touched by this commit (11) |
Log message: Update to samba-4.9.13 4.8.x is not supported upstream any more, so better update before 6.6 is tagged if we want to benefit from upstream's security updates. To stay on the safe side, this update doesn't enable the LMDB backend which has become the default upstream. samba requires a 64 bits system to use LMDB (32 bits systems can keep on using tdb); and LMDB has always been a problem child on OpenBSD anyway. Lightly tested by me, bulk build test and ok ajacoutot@ (thanks!) |
2019-06-22 17:58:23 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: Fix path in README, found by portcheck |
2019-06-22 16:44:07 by Jeremie Courreges-Anglas | Files touched by this commit (19) |
Log message: Move the ports I maintain to PERMIT_PACKAGE |
2019-05-20 16:15:31 by Christian Weisgerber | Files touched by this commit (488) |
Log message: Update gettext to 0.20.1. Follow the upstream recommendations for packagers and switch to multi-packages: devel/gettext -> devel/gettext,-runtime devel/gettext-tools -> devel/gettext,-tools (new) devel/gettext,-textstyle |
2019-05-14 11:59:56 by Jeremie Courreges-Anglas | Files touched by this commit (1) |
Log message: SECURITY update to samba-4.8.12 Fixes: o CVE-2018-16860 (Samba AD DC S4U2Self/S4U2Proxy unkeyed checksum) Release notes: https://www.samba.org/samba/history/samba-4.8.12.html |
2019-05-14 11:58:07 by Jeremie Courreges-Anglas | Files touched by this commit (1) |
Log message: SECURITY update to samba-4.8.12 Fixes: o CVE-2018-16860 (Samba AD DC S4U2Self/S4U2Proxy unkeyed checksum) Release notes: https://www.samba.org/samba/history/samba-4.8.12.html |
2019-05-14 11:57:20 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: SECURITY update to samba-4.8.12 Fixes: o CVE-2018-16860 (Samba AD DC S4U2Self/S4U2Proxy unkeyed checksum) Release notes: https://www.samba.org/samba/history/samba-4.8.12.html |
2019-04-16 12:48:47 by Jeremie Courreges-Anglas | Files touched by this commit (4) |
Log message: SECURITY update to samba-4.8.11 Fixes: - CVE-2019-3880 (Save registry file outside share as unprivileged user) Release notes: https://www.samba.org/samba/history/samba-4.8.11.html 6.4 tests by Ian McWilliam |
2019-04-12 12:21:17 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: Fix @conflict marker ok naddy@ |
2019-04-11 08:05:58 by Jeremie Courreges-Anglas | Files touched by this commit (3) |
Log message: SECURITY update to samba-4.8.11 Fixes: - CVE-2019-3880 (Save registry file outside share as unprivileged user) Release notes: https://www.samba.org/samba/history/samba-4.8.11.html Tests by Ian McWilliam and Kurt Mosiejczuk, ok sthen@ |
2019-01-22 18:46:19 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: Work around lld-7.0.1 strictness wrt version scripts It's not clear to me whether lld rightfully complains here: ld: error: duplicate symbol 'pdb_search_init' in version script Work around the error for now (tm) to unlock samba and consumers in the llvm-7.0.1 test bulk builds. |
2018-11-30 08:17:31 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: Fix pexp If you run samba_ad_dc you'll need to kill samba manually and remove /var/run/rc.d/samba_ad_dc for the change to take effect. |
2018-11-30 07:47:54 by Jeremie Courreges-Anglas | Files touched by this commit (1) |
Log message: Respect LDFLAGS as well as CFLAGS |
2018-11-28 09:36:05 by Jeremie Courreges-Anglas | Files touched by this commit (3) |
Log message: The ldb tools link against libldb-cmdline-samba4.so. |
2018-11-27 04:10:30 by Jeremie Courreges-Anglas | Files touched by this commit (1) |
Log message: Adapt WANTLIB/LIB_DEPENDS to the recent changes in -main and -ldb |
2018-11-27 03:41:31 by Jeremie Courreges-Anglas | Files touched by this commit (1) |
Log message: SECURITY update to samba-4.7.12 Fixes for: o CVE-2018-14629 (Unprivileged adding of CNAME record causing loop in AD Internal DNS server) o CVE-2018-16841 (Double-free in Samba AD DC KDC with PKINIT) o CVE-2018-16851 (NULL pointer de-reference in Samba AD DC LDAP server) o CVE-2018-16853 (Samba AD DC S4U2Self crash in experimental MIT Kerberos configuration (unsupported)) |
2018-11-27 03:18:06 by Jeremie Courreges-Anglas | Files touched by this commit (1) |
Log message: SECURITY update to samba-4.8.7 Fixes for: o CVE-2018-14629 (Unprivileged adding of CNAME record causing loop in AD Internal DNS server) o CVE-2018-16841 (Double-free in Samba AD DC KDC with PKINIT) o CVE-2018-16851 (NULL pointer de-reference in Samba AD DC LDAP server) o CVE-2018-16853 (Samba AD DC S4U2Self crash in experimental MIT Kerberos configuration (unsupported)) |
2018-11-27 03:15:58 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: SECURITY update to samba-4.8.7 Fixes for: o CVE-2018-14629 (Unprivileged adding of CNAME record causing loop in AD Internal DNS server) o CVE-2018-16841 (Double-free in Samba AD DC KDC with PKINIT) o CVE-2018-16851 (NULL pointer de-reference in Samba AD DC LDAP server) o CVE-2018-16853 (Samba AD DC S4U2Self crash in experimental MIT Kerberos configuration (unsupported)) |
2018-11-16 17:20:50 by Jeremie Courreges-Anglas | Files touched by this commit (3) |
Log message: Move ldb-related files in the appropriate subpackages |
2018-11-13 06:57:02 by Jeremie Courreges-Anglas | Files touched by this commit (1) |
Log message: Move 6.3 to samba-4.7.11 Latest 4.7.x "bugfix-only" release, hopefully will help with possible future security updates. Discussed with Ian |
2018-10-17 01:34:43 by Jeremie Courreges-Anglas | Files touched by this commit (1) |
Log message: Update to samba-4.8.6 Track latest 4.8.x release on -stable. ChangeLog: https://www.samba.org/samba/history/samba-4.8.6.html Tests by Ian McWilliam |
2018-10-17 01:33:04 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: Update to samba-4.8.6 ChangeLog: https://www.samba.org/samba/history/samba-4.8.6.html Tests by Ian McWilliam |
2018-09-05 02:54:26 by Antoine Jacoutot | Files touched by this commit (1) |
Log message: Bad bump after READE PKGSTEM change. |
2018-09-04 06:53:16 by Marc Espie | Files touched by this commit (33) |
Log message: and of course some would conflict... finish PKGSTEM changes manually |
2018-09-04 05:16:23 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: Update -stable to samba-4.7.10 (bugfix release) https://www.samba.org/samba/history/samba-4.7.10.html Tested by Ian McWilliam |
2018-09-02 10:41:56 by Jeremie Courreges-Anglas | Files touched by this commit (3) |
Log message: Avoid printing NULL values There is still one known case in the quota code, but it needs more analysis. Reported and tested by Ian McWilliam. |
2018-08-29 05:40:23 by Jeremie Courreges-Anglas | Files touched by this commit (5) |
Log message: Update to samba-4.8.5 Tests by Ian McWilliam |
2018-08-14 07:39:28 by Jeremie Courreges-Anglas | Files touched by this commit (1) |
Log message: SECURITY update to samba-4.7.9 o CVE-2018-1139 (Weak authentication protocol allowed.) o CVE-2018-10858 (Insufficient input validation on client directory listing in libsmbclient.) o CVE-2018-10918 (Denial of Service Attack on AD DC DRSUAPI server.) o CVE-2018-10919 (Confidential attribute disclosure from the AD LDAP server.) See https://www.samba.org/samba/history/samba-4.7.9.html for more information. |
2018-08-14 04:35:00 by Jeremie Courreges-Anglas | Files touched by this commit (3) |
Log message: SECURITY update to samba-4.8.4 Fixes: o CVE-2018-1139 (Weak authentication protocol allowed.) o CVE-2018-1140 (Denial of Service Attack on DNS and LDAP server.) o CVE-2018-10858 (Insufficient input validation on client directory listing in libsmbclient.) o CVE-2018-10918 (Denial of Service Attack on AD DC DRSUAPI server.) o CVE-2018-10919 (Confidential attribute disclosure from the AD LDAP server.) See https://www.samba.org/samba/history/samba-4.8.4.html for more information. |
2018-08-13 04:31:32 by Jeremie Courreges-Anglas | Files touched by this commit (1) |
Log message: Update -stable to the latest release on the 4.7 branch. Tested by Ian McWilliam. |
2018-08-02 05:39:33 by Jeremie Courreges-Anglas | Files touched by this commit (3) |
Log message: Update to samba-4.8.3 Tested by Ian McWilliam and Vijay Sankar. |
2018-06-11 05:59:51 by Jeremie Courreges-Anglas | Files touched by this commit (12) |
Log message: Update to samba-4.8.2 Release notes: https://www.samba.org/samba/history/samba-4.8.0.html https://www.samba.org/samba/history/samba-4.8.1.html https://www.samba.org/samba/history/samba-4.8.2.html Tested by Ian, who hit a crash and contributed a fix. Looks like the new virusfilter.so vfs module is broken. |
2018-05-22 14:54:06 by Jeremie Courreges-Anglas | Files touched by this commit (1) |
Log message: Not needed any more now that sys/socket.h is standalone. |
2018-04-26 07:42:45 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: Update to samba-4.7.7 ChangeLog: https://www.samba.org/samba/history/samba-4.7.7.html Tests + LGTM from Ian (co-maintainer) |
2018-03-13 06:22:14 by Jeremie Courreges-Anglas | Files touched by this commit (1) |
Log message: SECURITY update to samba-4.5.16 o CVE-2018-1050 (Denial of Service Attack on external print server.) o CVE-2018-1057 (Authenticated users can change other users' password.) If you have an AD setup, you are *strongly* advised to upgrade asap and/or apply the documented workarounds. More details at https://www.samba.org/samba/history/samba-4.5.16.html |
2018-03-13 06:19:33 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: SECURITY update to samba-4.7.6 o CVE-2018-1050 (Denial of Service Attack on external print server.) o CVE-2018-1057 (Authenticated users can change other users' password.) If you have an AD setup, you are *strongly* advised to upgrade asap and/or apply the documented workarounds. More details at https://www.samba.org/samba/history/samba-4.7.6.html |
2018-02-20 01:37:50 by Stuart Henderson | Files touched by this commit (1) |
Log message: { "port": "net/samba", "new_dependency": { "type": "LIB_DEPENDS", "name": "devel/jansson", "reason": "missing hidden dependency" }, "ok": "jca@" } |
2018-02-15 02:59:44 by Jeremie Courreges-Anglas | Files touched by this commit (9) |
Log message: Update to samba-4.7.5 Bulk build & ok ajacoutot@ (thanks!). Let's put this in now so more people can test, discussed with Ian. Release notes: https://www.samba.org/samba/history/samba-4.7.5.html All release notes for the 4.7 series: https://git.samba.org/?p=samba.git;a=blob;f=WHATSNEW.txt;h=2914f57c60273c797e756d66759ab81704516864;hb=refs/heads/v4-7-stable |
2018-01-16 10:35:05 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: Update to samba-4.6.12 |
2018-01-14 07:42:18 by Robert Peichaer | Files touched by this commit (30) |
Log message: Now that all ports rc.* scripts are using #!/bin/ksh - change [] tests to [[]] - change arithmetic [] tests to (()) - change = to == inside [[]] - remove unecessary quoting inside [[]] OK aja@ |
2018-01-11 12:27:12 by Robert Peichaer | Files touched by this commit (624) |
Log message: Change the shebang line from /bin/sh to /bin/ksh in all ports rc.d daemon scripts and bump subpackages that contain the *.rc scripts. discussed with and OK aja@ OK tb |
2017-07-12 18:53:25 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: SECURITY fix for CVE-2017-11103 CVE-2017-11103: Orpheus' Lyre mutual authentication validation bypass The fix affects the embedded Heimdal copy. https://github.com/heimdal/heimdal/commit/6dd3eb836bbb80a00ffced4ad57077a1cdf227ea https://www.orpheus-lyre.info/ https://www.samba.org/samba/security/CVE-2017-11103.html |
2017-07-12 18:52:29 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: SECURITY fix for CVE-2017-11103 CVE-2017-11103: Orpheus' Lyre mutual authentication validation bypass The fix affects the embedded Heimdal copy. https://github.com/heimdal/heimdal/commit/6dd3eb836bbb80a00ffced4ad57077a1cdf227ea https://www.orpheus-lyre.info/ https://www.samba.org/samba/security/CVE-2017-11103.html |
2017-05-24 06:03:02 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: SECURITY fix for CVE-2017-7494 o CVE-2017-7494 rpc_server3: Refuse to open pipe names with / |
2017-05-24 05:58:29 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: SECURITY fix for CVE-2017-7494 o CVE-2017-7494 rpc_server3: Refuse to open pipe names with / |
2017-05-16 02:45:32 by Antoine Jacoutot | Files touched by this commit (2) |
Log message: /usr/local/include/samba-4.0/ was not registered in any subpackage; make -tevent own it since all include/samba-4.0 consumers depend on it. |
2017-04-05 08:52:13 by Jeremie Courreges-Anglas | Files touched by this commit (3) |
Log message: Fix a regression introduced by the fix for CVE-2017-2619 * BUG 12721: Fix regression with "follow symlinks = no" Patch adapted from samba-4.4.13. Tests & ok Ian |
2017-04-01 05:37:39 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: Update to samba-4.5.8 Fix regression with "follow symlinks = no". ok Ian sthen@ |
2017-03-27 17:26:24 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: SECURITY fixes for CVE-2017-2619 (Symlink race allows access outside share definition) |
2017-03-25 11:00:01 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: SECURITY update to samba-4.5.7 o CVE-2017-2619 (Symlink race allows access outside share definition) |
2017-03-16 03:53:33 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: Update to samba-4.5.6 Tests by Ian |
2017-03-12 16:19:50 by Jeremie Courreges-Anglas | Files touched by this commit (3) |
Log message: Regen PLIST to use MODPY_PYOEXTENSION |
2017-02-18 02:45:51 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: Fix samba-tool domain --use-ntvfs It is not clear whether s3fs is a valid alternative to ntvfs, so keep providing ntvfs support for people who run an AD DC (AD support is supposed to require s3fs). The same fix was committed to -current some time ago. Prodded by Alex McWhirter and Ian McWilliam. |
2017-01-27 11:52:26 by Stuart Henderson | Files touched by this commit (10) |
Log message: zap zero-byte files, list from rsadowski |
2016-12-23 15:35:36 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: SECURITY update for 4.4.8 CVEs CVE-2016-2123: Fix DNS vuln ZDI-CAN-3995. CVE-2016-2125: Don't send delegated credentials to all servers. CVE-2016-2126: auth/kerberos: Only allow known checksum types in check_pac_checksum(). Test by Ian MacWilliam |
2016-12-20 07:15:11 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: SECURITY update to samba-4.5.3 CVE-2016-2123 (Samba NDR Parsing ndr_pull_dnsp_name Heap-based Buffer Overflow Remote Code Execution Vulnerability). CVE-2016-2125 (Unconditional privilege delegation to Kerberos servers in trusted realms). CVE-2016-2126 (Flaws in Kerberos PAC validation can trigger privilege elevation). ok Ian McWilliam |
2016-12-19 03:12:18 by Jeremie Courreges-Anglas | Files touched by this commit (3) |
Log message: Update to samba-4.5.2 |
2016-11-11 08:16:57 by Antoine Jacoutot | Files touched by this commit (3) |
Log message: -util should own the /usr/local/lib/samba/ directory to prevent the following warning when pkg_delete samba: Error deleting directory /usr/local/lib/samba: Directory not empty ok jca@ (maintainer) |
2016-11-09 08:59:37 by Jeremie Courreges-Anglas | Files touched by this commit (7) |
Log message: Update to samba-4.5.1 Changes: https://www.samba.org/samba/history/samba-4.5.0.html https://www.samba.org/samba/history/samba-4.5.1.html powerpc build test kirby@, ok Ian McWilliam |
2016-09-12 09:38:22 by Jeremie Courreges-Anglas | Files touched by this commit (1) |
Log message: Repair samba-tool domain provision --use-ntvfs The situation is a mess. Upstream says that s3fs (the original smb code from samba3) requires filesystem ACLs, which we don't have. The ntvfs code (new in samba4, but now deprecated) fit the job, but adding --with-ntvfs-fileserver doesn't actually provide a working 'smb' service (see "server services" in smb.conf(5)). So right now it seems that the workaround is to provision using --use-ntvfs, but then to strip 'smb' from the 'server services' line. Reports welcome... |
2016-07-08 13:03:30 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: SECURITY update to samba-4.3.11 * CVE-2016-2119 (Client side SMB2/3 required signing can be downgraded) ok sthen@ danj@, thanks danj@ for spotting a few missing PLIST entries. |
2016-07-08 12:39:50 by Jeremie Courreges-Anglas | Files touched by this commit (3) |
Log message: SECURITY update to samba-4.4.5 * CVE-2016-2119 (Client side SMB2/3 required signing can be downgraded) ok ajacoutot@, Ian McWilliam, sthen@ on a previous version. ok danj@ who noted missing entries in PLIST. |
2016-07-06 10:43:16 by Jeremie Courreges-Anglas | Files touched by this commit (3) |
Log message: Update to samba-4.4.4 Diff from Ian, tests & ok sthen@ |
2016-06-29 06:29:35 by Jeremie Courreges-Anglas | Files touched by this commit (3) |
Log message: Bugfix update to samba-4.3.10 While this is not a security update, it reduces the gap for the upcoming security releases. This helps tracking down potential regressions. While here, backport a patch from -current to avoid spam related to (too?) strict permissions checks in quotactl(2). Diff and tests from Ian (co-maintainer), update discussed with jasper@ |
2016-05-14 19:10:07 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: Fix quota handling that resulted in spam in logs. Prodded by jung@, ok jung@ Ian |
2016-05-06 05:34:42 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: Update to samba-4.4.3, bringing fixes for the regression introduced by 4.4.2. Tested by Vijay Sankar and I. |
2016-05-04 13:38:24 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: Update to samba-4.3.9, with fixes for the regressions brought by 4.3.8. ok jung@ Ian |
2016-04-27 02:50:03 by Jeremie Courreges-Anglas | Files touched by this commit (1) |
Log message: Better comment. mips64 has atomic support now, don't mention atomic_add_32 |
2016-04-26 06:23:05 by Jeremie Courreges-Anglas | Files touched by this commit (1) |
Log message: Committed upstream. |
2016-04-25 09:01:29 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: Better workaround for clearenv |
2016-04-25 02:58:10 by Jeremie Courreges-Anglas | Files touched by this commit (1) |
Log message: Drop gettext module |
2016-04-22 05:48:36 by Jeremie Courreges-Anglas | Files touched by this commit (18) |
Log message: Update to samba-4.4.2 Tests by Vijay Sankar and Ian, ok Ian This release contains the security fixes introduced by 4.4.2, plus the new features and improvements from 4.4.0: https://www.samba.org/samba/history/samba-4.4.0.html |
2016-04-17 11:12:16 by Jeremie Courreges-Anglas | Files touched by this commit (1) |
Log message: Missed in previous. |
2016-04-17 11:08:29 by Jeremie Courreges-Anglas | Files touched by this commit (4) |
Log message: Backport SECURITY update to samba-4.3.8 ok sthen@ Fixes for: CVE-2015-7560 (Incorrect ACL get/set allowed on symlink path) CVE-2016-0771 (Out-of-bounds read in internal DNS server) CVE-2015-5370 (Multiple errors in DCE-RPC code) CVE-2016-2110 (Man in the middle attacks possible with NTLMSSP) CVE-2016-2111 (NETLOGON Spoofing Vulnerability) CVE-2016-2112 (LDAP client and server don't enforce integrity) CVE-2016-2113 (Missing TLS certificate validation) CVE-2016-2114 ("server signing = mandatory" not enforced) CVE-2016-2115 (SMB IPC traffic is not integrity protected) CVE-2016-2118 (SAMR and LSA man in the middle attacks possible) CVE-2016-2118 is http://badlock.org/ |
2016-04-13 05:25:40 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: SECURITY update to samba-4.3.8 ok sthen@ Ian McWilliam CVE-2015-5370 (Multiple errors in DCE-RPC code) CVE-2016-2110 (Man in the middle attacks possible with NTLMSSP) CVE-2016-2111 (NETLOGON Spoofing Vulnerability) CVE-2016-2112 (LDAP client and server don't enforce integrity) CVE-2016-2113 (Missing TLS certificate validation) CVE-2016-2114 ("server signing = mandatory" not enforced) CVE-2016-2115 (SMB IPC traffic is not integrity protected) CVE-2016-2118 (SAMR and LSA man in the middle attacks possible) See https://www.samba.org/samba/history/samba-4.3.8.html for more information. |
2016-04-12 11:42:09 by Jeremie Courreges-Anglas | Files touched by this commit (29) |
Log message: Update to samba-4.3.6 i386 build by danj@, ok sthen@ The changelog between 4.1.23 and 4.3.6 is too big to be described here. The point of updating now is that 4.1.x won't receive updates for the freshly published security advisories. samba-4.3.8 will follow. |
2016-03-23 13:08:15 by Jeremie Courreges-Anglas | Files touched by this commit (3) |
Log message: Stop fetching and packaging outdated pdf docs; ok Ian |
2016-03-20 09:58:26 by Christian Weisgerber | Files touched by this commit (3) |
Log message: remove SHARED_ONLY |
2016-03-09 12:40:11 by Jeremie Courreges-Anglas | Files touched by this commit (3) |
Log message: SECURITY update to samba-4.1.23; ok Ian McWilliam Fixes for CVE-2015-7560 and CVE-2016-0771. |
2016-01-18 05:10:51 by Stuart Henderson | Files touched by this commit (1) |
Log message: bump tevent |
2016-01-17 10:29:12 by Stuart Henderson | Files touched by this commit (75) |
Log message: sync WANTLIB |
2015-12-23 05:37:21 by Jeremie Courreges-Anglas | Files touched by this commit (3) |
Log message: SECURITY update to samba-4.1.22; ok Ian McWilliam ChangeLog and descriptions of the relevant CVE's: https://www.samba.org/samba/history/samba-4.1.22.html This update changed the signature of a few functions in libsamba-util, so bump the shlib major. Also update Ian's email adress while here. |
2015-11-29 08:50:20 by Antoine Jacoutot | Files touched by this commit (11) |
Log message: daemon_timeout is not passed to the child scripts either. |
2015-10-15 10:57:19 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: Bugfix update to samba-4.1.21 "diff looks fine" Ian McWilliam |
2015-09-30 12:16:15 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: Backport usage warning for smbstatus(1), picked from upstream. Problem noticed and different patch proposed by giovanni@. ok giovanni@ Ian McWilliam |
2015-09-30 12:14:07 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: Use -Wl,--no-undefined just like other platforms, -Wl,--as-needed works fine now. Tested earlier on powerpc (sthen@), and on i386/amd64. ok Ian McWilliam. |
2015-09-28 16:51:25 by Jeremie Courreges-Anglas | Files touched by this commit (1) |
Log message: Back in May, miod gave nm(1) a -D flag. |
2015-09-28 16:48:06 by Jeremie Courreges-Anglas | Files touched by this commit (1) |
Log message: gc leftover from samba3 |
2015-09-28 16:46:06 by Jeremie Courreges-Anglas | Files touched by this commit (1) |
Log message: Fix two tests to allow building on hppa/mips64. Those tests (for __sync_fetch_and_add and atomic_add_32) were broken, yet waf thinks they succeed. ... |
2015-09-11 05:35:09 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: Update to samba-4.1.20; ok sthen@ |
2015-08-26 12:05:31 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: Do not mention SWAT, it has been removed. |
2015-08-25 09:38:16 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: Stray @sample /var/run/samba, noticed earlier by ajacoutot@ /var/run gets cleaned at boot time. The samba daemons create this directory at startup. |
2015-08-25 06:03:22 by Antoine Jacoutot | Files touched by this commit (1) |
Log message: No need to explicitely list textproc/libxslt; the dependency on docbook-xsl is enough. ok jca@ (maintainer) |
2015-08-25 05:41:15 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: Add a note about nmbd being broken in AD DC setups, and bump. Requested by giovanni@, putting it here instead of current.html so that new users will be aware too. |
2015-08-25 05:39:25 by Jeremie Courreges-Anglas | Files touched by this commit (2) |
Log message: Add an rc script for samba in AD DC mode. |
2015-08-25 05:10:41 by Jeremie Courreges-Anglas | Files touched by this commit (1) |
Log message: Ian McWilliam and I will co-maintain this. |
2015-08-25 05:07:45 by Jeremie Courreges-Anglas | Files touched by this commit (5) |
Log message: Tweak rc scripts and README. Tests, input from and ok sthen@ |
2015-08-25 05:04:39 by Jeremie Courreges-Anglas | Files touched by this commit (81) |
Log message: Move samba4 to samba, and tweak the ports tree to use it. ok ajacoutot@ Upcoming commits will add additional tweaks. Many thanks to Vadim Zhukov (who did most of the work), Ian McWilliam (co-maintainer), Stuart Henderson who provided lots of support and feedback, Antoine Jacoutot who patiently dealt with my broken diffs, and more generally all the people involved. Most of the recent work was done during p2k15 and c2k15. |
2015-07-07 08:43:36 by Antoine Jacoutot | Files touched by this commit (8) |
Log message: Move some obvious sudo -> '#' (root) in READMEs. |
2015-02-25 13:24:17 by Jeremie Courreges-Anglas | Files touched by this commit (3) |
Log message: MFC SECURITY update for CVE-2015-0240 Requested by and ok jasper@. Original log message: talloc free on uninitialized stack pointer in netlogon server could lead to remote-code execution. https://www.samba.org/samba/security/CVE-2015-0240 https://bugzilla.samba.org/show_bug.cgi?id=11077 |
2015-02-24 18:37:49 by Jeremie Courreges-Anglas | Files touched by this commit (3) |
Log message: SECURITY update for CVE-2015-0240 talloc free on uninitialized stack pointer in netlogon server could lead to remote-code execution. https://www.samba.org/samba/security/CVE-2015-0240 https://bugzilla.samba.org/show_bug.cgi?id=11077 ok sthen@ naddy@ Ian McWilliam (MAINTAINER) |
2015-02-17 15:08:36 by Stuart Henderson | Files touched by this commit (8) |
Log message: Adjust the "meta" rc-scripts (these are used in ports with multiple daemons which should all be started/stopped together), previously "restart" would restart each sub-daemon in turn, but actually it should stop all daemons and only then start them again. Additionally, as suggested by ajacoutot, stop the procedure and return an error if stopping one of the rc scripts failed. ok ajacoutot@ rpe@ |
2015-02-04 19:04:00 by Jeremie Courreges-Anglas | Files touched by this commit (3) |
Log message: Repair conflict between -main and -docs, introduced in previous. The intended diff had this conflict resolved, but I ended up committing the previous diff... Problem spotted by Markus Lude. |
2015-02-04 04:50:21 by Jeremie Courreges-Anglas | Files touched by this commit (3) |
Log message: Move the ldap files from the -docs to the -main samba package. Requested by Marcus Merighi, patch by Ian McWilliam (MAINTAINER), input from sthen@ and tweaks by me. ok sthen@ |
2014-12-08 03:57:09 by Antoine Jacoutot | Files touched by this commit (10) |
Log message: Make all meta rc.d scripts consistent. While here, unbreak when options are passed (e.g. /etc/rc.d/foobar -df start) ok sthen@ |
2011-07-29 02:13:51 by Giovanni Bechis | Files touched by this commit (3) |
Log message: Update to 3.5.10 Fixes: CVE-2011-2522 (Cross-Site Request Forgery in SWAT) and CVE-2011-2694 (Cross-Site Scripting vulnerability in SWAT). From maintainer Ian McWilliam |
2011-07-14 02:42:02 by Stuart Henderson | Files touched by this commit (2) |
Log message: Add missing directory in PLIST-main (share/doc/samba/), pointed out by fgsch@ |
2011-07-07 20:14:59 by Antoine Jacoutot | Files touched by this commit (16) |
Log message: rc_scripts -> pkg_scripts |
2011-06-15 13:34:45 by Stuart Henderson | Files touched by this commit (3) |
Log message: update to samba 3.5.9, from maintainer Ian McWilliam |
2011-06-03 04:21:54 by Stuart Henderson | Files touched by this commit (2) |
Log message: Change the sample cap_mkdb command so it only runs if login.conf.db is present. ok Ian McWilliam, aja@, landry@ |
2011-06-02 07:41:42 by Antoine Jacoutot | Files touched by this commit (238) |
Log message: Add a consistent header that substitutes FULLPKGNAME for the READMEs. ok jasper@ sthen@ |
2011-05-19 14:44:51 by Gleydson Soares | Files touched by this commit (4) |
Log message: - use TRUEPREFIX instead of hardcoding it; ok aja@ sthen@ |
2011-04-17 02:33:14 by Stuart Henderson | Files touched by this commit (4) |
Log message: - remove libutf8 build dependency for the ldap flavours, locale support in base is good enough. - remove NULL casts which are no longer needed. ok Ian McWilliam |
2011-04-09 20:19:49 by William Yodlowsky | Files touched by this commit (3) |
Log message: SECURITY UPDATE to samba-3.5.8 Resolves CVE-2011-0719 FD_SET overflow and has bugfixes ok ajacoutot jasper |
2011-04-03 12:07:52 by Antoine Jacoutot | Files touched by this commit (2) |
Log message: Rewrite samba.rc and make it a wrapper script that calls the provided rc.d(8) script. This is much more simple, makes much more sense and allow for proper debugging. discussed with robert@ |
2011-03-21 03:40:04 by Stuart Henderson | Files touched by this commit (1) |
Log message: bsd.port.mk now specifies groff 1.21, no need to force the version in BUILD_DEPENDS here. bump not needed. |
2011-03-21 03:20:35 by Stuart Henderson | Files touched by this commit (2) |
Log message: - remove workaround for old groff - remove MESSAGE-main referring to a config change, people upgrading have had plenty of time to adapt ok Ian McWilliam (maintainer) |
2011-03-17 10:49:27 by Antoine Jacoutot | Files touched by this commit (22) |
Log message: Remove all redirections -- rc.subr(8) now takes care of it. |
2011-03-15 07:49:44 by Stuart Henderson | Files touched by this commit (4) |
Log message: update to 3.5.8, ok aja@ giovanni@ Ian McWilliam (maintainer) |
2011-03-09 12:37:47 by Antoine Jacoutot | Files touched by this commit (8) |
Log message: These aren't needed either. |
2011-03-02 01:24:03 by Stuart Henderson | Files touched by this commit (2) |
Log message: SECURITY update to 3.5.7; fixes CVE-2011-0719 FD_SET overflow Same diff from maintainer Ian McWilliam |
2011-01-17 10:58:04 by Antoine Jacoutot | Files touched by this commit (8) |
Log message: Add rc scripts. While here, fix the LOCALBASE vs PREFIX and SYSCONFDIR vs /etc mess. ok robert@ |
2010-12-06 12:41:54 by Antoine Jacoutot | Files touched by this commit (2) |
Log message: Remove a left-over powerpc optimization workaround. from Brad. |
2010-11-19 15:31:39 by Marc Espie | Files touched by this commit (372) |
Log message: new depends |
2010-11-11 10:20:28 by Marc Espie | Files touched by this commit (31) |
Log message: finish net WANTLIB |
2010-11-06 01:56:48 by Antoine Jacoutot | Files touched by this commit (10) |
Log message: Cosmetic, be consistent with how we set the rcs id in other files. |
2010-10-29 06:41:58 by Antoine Jacoutot | Files touched by this commit (7) |
Log message: Add RCS IDs and remove useless MESSAGEs. |
2010-10-29 03:40:41 by Marc Espie | Files touched by this commit (5) |
Log message: convert to new pkg-readmes. This one keeps a MESSAGE because it says something. (wanted to check multi-packages...) |
2010-10-18 13:07:19 by Stuart Henderson | Files touched by this commit (3) |
Log message: update Samba to 3.5.6; various bugfixes. From maintainer Ian McWilliam. |
2010-10-18 12:37:00 by Marc Espie | Files touched by this commit (357) |
Log message: USE_GROFF=Yes |
2010-09-18 06:36:27 by Stuart Henderson | Files touched by this commit (1) |
Log message: new-style WANTLIB/LIB_DEPENDS |
2010-09-18 06:35:55 by Stuart Henderson | Files touched by this commit (2) |
Log message: SECURITY update to samba 3.5.5; fixes CVE-2010-3069, CVE-2010-3069. From maintainer Ian McWilliam. |
2010-08-28 12:55:18 by Stuart Henderson | Files touched by this commit (1) |
Log message: Run README.OpenBSD through SUBST_CMD, bump REVISION-main. |
2010-07-26 14:28:00 by Antoine Jacoutot | Files touched by this commit (1) |
Log message: Remove obsolete powerpc workaround, from Brad. |
2010-07-23 06:01:47 by Antoine Jacoutot | Files touched by this commit (1) |
Log message: Use "WORKGROUP" as a default workgroup name. It is the default in Mac OS as well as previous Windows versions. At least it gives you a chance to browse and mount smb shares with gvfs (or any other application using smb.conf to get the workgroup name) without the need to configure anything. input and ok sthen@ on a previous version of this diff |
2010-07-14 01:20:18 by Stuart Henderson | Files touched by this commit (2) |
Log message: Rather than use Makefile workarounds for the broken shared lib handling, fix it in configure.in so it can be sent upstream. From Brad, looks ok to Ian McWilliam (maintainer). |
2010-07-12 16:07:42 by Stuart Henderson | Files touched by this commit (244) |
Log message: use REVISION, checked with before/after make show=PKGNAMES (plus some extra-careful checking where there are complicated PSEUDO_FLAVORS). |
2010-07-02 08:42:29 by Giovanni Bechis | Files touched by this commit (2) |
Log message: Tell the user how to correctly enable samba as a Pdc ok Ian McWilliam (Maintainer) |
2010-06-25 11:39:12 by Stuart Henderson | Files touched by this commit (3) |
Log message: update to 3.5.4, from new maintainer, Ian McWilliam. |
2010-06-18 21:34:51 by William Yodlowsky | Files touched by this commit (2) |
Log message: SECURITY FIX Resolves CVE-2010-2063 patch from upstream Note: -current's samba is not affected by this bug |
2010-05-26 02:47:44 by Matthias Kilian | Files touched by this commit (2) |
Log message: On powerpc, compile smbd/smb2_create.c with -O0 to avoid an ICE with gcc3. ok, and some simplification, sthen@ |
2010-05-20 12:16:39 by Stuart Henderson | Files touched by this commit (3) |
Log message: Update to 3.5.3, from Ian McWilliam |
2010-04-28 02:02:38 by Stuart Henderson | Files touched by this commit (3) |
Log message: Samba uses modules; mark it SHARED_ONLY and collapse PFRAG.shared-main into PLIST-main. From Brad. |
2010-04-26 11:31:57 by Stuart Henderson | Files touched by this commit (21) |
Log message: update Samba to 3.5.2, most of the work done by Ian McWilliam Note that the default passdb backend has been changed to 'tdbsam'. See /usr/local/share/doc/samba/README.OpenBSD (or files/README.OpenBSD) for more information and instructions for people who wish to convert an existing smbpasswd-based installation. |
2010-03-05 02:01:45 by Giovanni Bechis | Files touched by this commit (3) |
Log message: Fix man pages (spotted by Charles Smith) Remove unused configure args Regen plist ok jasper@ |
2010-02-26 11:13:25 by Marc Espie | Files touched by this commit (2) |
Log message: fix FULLPKGPATH (ports is locked) |
2010-02-12 20:53:25 by William Yodlowsky | Files touched by this commit (4) |
Log message: MFC: SECURITY UPDATE samba-3.0.37 Resolves: CVE-2009-2813, CVE-2009-2948, and CVE-2009-2906 ok jasper@ |
2009-11-22 09:40:04 by Antoine Jacoutot | Files touched by this commit (11) |
Log message: Regen WANTLIB after CUPS gnutls -> openssl move. |
2009-10-11 13:45:46 by Stuart Henderson | Files touched by this commit (6) |
Log message: SECURITY update to Samba 3.0.37. From Brad. This is a security release to address CVE-2009-2813, CVE-2009-2948 and CVE-2009-2906. |
2009-09-15 11:37:22 by Jasper Lievisse Adriaanse | Files touched by this commit (83) |
Log message: remove marc balmer as maintainer of all of his ports, to take away the illusion marc still maintains them. as requested by himself. |
2009-07-14 20:32:40 by William Yodlowsky | Files touched by this commit (2) |
Log message: SECURITY FIX Resolve CVE-2009-1888, from upstream ok robert@ |
2009-06-30 15:38:38 by Christian Weisgerber | Files touched by this commit (2) |
Log message: security fix for CVE-2009-1888; from william@ |
2009-05-22 08:06:13 by Antoine Jacoutot | Files touched by this commit (1) |
Log message: - regen WANTLIB (from cups kerberos support) - bump |
2009-05-19 01:05:25 by Giovanni Bechis | Files touched by this commit (1) |
Log message: Fix pkgname-main spotted by Mikolaj Kucharski |
2009-05-14 11:05:46 by Giovanni Bechis | Files touched by this commit (4) |
Log message: Update to 3.0.34 "fine with me to commit it" jasper@ |
2009-04-10 05:59:06 by Antoine Jacoutot | Files touched by this commit (6) |
Log message: - fix WANTLIB after cups update |
2008-12-06 20:52:56 by Brad Smith | Files touched by this commit (3) |
Log message: Update to Samba 3.0.33. A security release to address CVE-2008-4314. ok mbalmer@ |
2008-09-18 07:37:41 by Antoine Jacoutot | Files touched by this commit (20) |
Log message: - SYSCONFDIR and LOCALBASE are already part of the generic SUBST_VARS looks good to landry@ |
2008-09-17 04:38:59 by Brad Smith | Files touched by this commit (1) |
Log message: - Disable FAM so autoconf will not pull it in if it is installed - Tweak how CONFIGURE_ARGS are passed along so as to remove cases where the Makefile will pass along --without-foo --with-foo - Add missing crypto lib for WANTLIB with the ads FLAVOR Part of the CONFIGURE_ARGS tweaking from form@ Missing lib from WANTLIB pointed out by sthen@ ok sthen@ ajacoutot@ |
2008-09-12 01:49:11 by Brad Smith | Files touched by this commit (6) |
Log message: Update to Samba 3.0.32. ok sthen@ |
2008-08-30 11:02:26 by Antoine Jacoutot | Files touched by this commit (3) |
Log message: - don't use $SYSCONFDIR for base system files (which are always installed under /etc, whatever $SYSCONFDIR value is) - s/PREFIX/LOCALBASE and the opposite where it makes sense - README.OpenBSD is part of samba-docs, so no need to tell the user to install samba-docs ok mbalmer@ who gave me ten bonus points for solving the samba puzzle! |
2008-08-29 13:50:20 by Marc Balmer | Files touched by this commit (2) |
Log message: s/SYSCONDIR/SYSCONFDIR/ |
2008-07-25 16:01:17 by Brad Smith | Files touched by this commit (3) |
Log message: Update to Samba 3.0.31; A bug fix release. ok mbalmer@ |
2008-07-12 06:33:21 by Brad Smith | Files touched by this commit (1) |
Log message: Correct the permissions of the examples files. Issue and an initial patch provided by RD Thrush <rd at thrush dot com> ok mbalmer@ |
2008-07-11 05:40:33 by Brad Smith | Files touched by this commit (10) |
Log message: Update to Samba 3.0.30; bug fixes and a security issue fixed, CVE-2008-1105. Specifically crafted SMB responses can result in a heap overflow in the Samba client code. Because the server process, smbd, can itself act as a client during operations such as printer notification and domain authentication, this issue affects both Samba client and server installations. Feedback from sthen@ ok mbalmer@ sthen@ |
2008-05-13 05:34:12 by David Gwynne | Files touched by this commit (2) |
Log message: disable a workaround for the MIT kerberos implementation that we dont need because we use heimdal instead. this lets the ads flavor of samba manage the kerberos keytab on openbsd. no objections from mbalmer@ |
2008-03-18 03:15:50 by David Gwynne | Files touched by this commit (3) |
Log message: add support for talking to active directory with an ads flavor. ok mbalmer@ jasper@ |
2008-01-04 10:48:38 by Marc Espie | Files touched by this commit (187) |
Log message: tweak FAKE_FLAGS semantics to saner defaults. |
2007-12-14 01:53:27 by Marc Balmer | Files touched by this commit (5) |
Log message: Update Samba to version 3.0.28 and add two patches from FreeBSD to allow for non FFS filesystems (e.g. CD-ROMs) to be shared with Samba again. This fixes CVE-2007-6015 and several other security problems. ok winiger |
2007-10-25 03:46:44 by Peter Stromberg | Files touched by this commit (3) |
Log message: fix plist, ok mbalmer@ |
2007-09-15 16:37:00 by Michael Erdely | Files touched by this commit (333) |
Log message: Remove surrounding quotes in COMMENT*/PERMIT_*/BROKEN/ERRORS Add $OpenBSD$ to p5-SNMP-Info/Makefile (ok kili@, simon@) |
2007-08-08 08:18:00 by Marc Balmer | Files touched by this commit (1) |
Log message: reorder the include file paths so samba always uses it's own include files first and not the ones in /usr/local/include. this allows for the cups flavors to build again when databases/tdb is installed. problem found by naddy, fix by me, ok naddy |
2007-07-02 15:56:57 by Marc Balmer | Files touched by this commit (6) |
Log message: Update to Samba 3.0.25b See http://www.samba.org/samba/history/samba-3.0.25b.html for the full list of changes. |
2007-06-04 10:19:13 by Constantine A. Murenin | Files touched by this commit (2) |
Log message: add 'echo -n ...' to the rc.local example in pkg/MESSAGE; ok mbalmer |
2007-06-03 10:54:36 by Steven Mestdagh | Files touched by this commit (2) |
Log message: fix config file location in man page. ok mbalmer@ |
2007-05-28 14:03:01 by Marc Balmer | Files touched by this commit (9) |
Log message: Update to Samba 3.0.25a. See http://www.samba.org/samba/history/samba-3.0.25a.html for full details. SECURITY: This update fixes the following vulnerabilites: CVE-2007-2444, CVE-2007-2446, CVE-2007-2447. |
2007-04-06 08:20:35 by Antoine Jacoutot | Files touched by this commit (8) |
Log message: - don't use hardcoded paths in swat man page - regen patches while here "if it works for you" mbalmer@ |
2007-04-05 10:20:19 by Marc Espie | Files touched by this commit (912) |
Log message: base64 checksums. |
2007-03-29 16:12:06 by Deanna Phillips | Files touched by this commit (1) |
Log message: Adjust cups flavor WANTLIB since it's moved from gnutls to openssl. ok mbalmer, pvalchev |
2007-02-07 13:36:14 by Nikolay Sturm | Files touched by this commit (2) |
Log message: This security update fixes the following problems: o CVE-2007-0452 (Potential Denial of Service bug in smbd) o CVE-2007-0454 (Format string bug in afsacl.so VFS plugin) |
2007-02-07 12:52:53 by Nikolay Sturm | Files touched by this commit (2) |
Log message: This security update fixes the following problems: o CVE-2007-0452 (Potential Denial of Service bug in smbd) o CVE-2007-0454 (Format string bug in afsacl.so VFS plugin) |
2007-02-06 00:01:13 by Marc Balmer | Files touched by this commit (2) |
Log message: Security update to Samba 3.0.24. This fixes the following problems: o CVE-2007-0452 (Potential Denial of Service bug in smbd) o CVE-2007-0453 (Buffer overrun in NSS host lookup Winbind NSS library on Solaris) o CVE-2007-0454 (Format string bug in afsacl.so VFS plugin) |
2007-02-05 14:11:24 by Marc Balmer | Files touched by this commit (2) |
Log message: Security update to Samba 3.0.24. This fixes the following problems: o CVE-2007-0452 (Potential Denial of Service bug in smbd) o CVE-2007-0453 (Buffer overrun in NSS host lookup Winbind NSS library on Solaris) o CVE-2007-0454 (Format string bug in afsacl.so VFS plugin) |
2007-01-12 03:58:11 by Marc Balmer | Files touched by this commit (2) |
Log message: Correct path to swat in swat(8), remove instructions on how to install swat from source. Found by Bachman Kharazmi <bahkha@gmail.com> |
2006-12-14 02:07:56 by Steven Mestdagh | Files touched by this commit (14) |
Log message: use BASE_PKGPATH instead of homegrown variable, no bumps needed |
2006-11-25 06:00:41 by Marc Espie | Files touched by this commit (9) |
Log message: new MULTI_PACKAGES |
2006-11-20 13:00:05 by Bernd Ahlers | Files touched by this commit (5) |
Log message: Fix {BUILD,RUN}_DEPENDS. |
2006-11-18 04:42:26 by Marc Balmer | Files touched by this commit (1) |
Log message: misc/libutf8 is a build dependency for the ldap flavor. |
2006-11-15 14:11:04 by Marc Balmer | Files touched by this commit (2) |
Log message: Update to Samba 3.0.23d. |
2006-11-11 08:16:24 by Marc Balmer | Files touched by this commit (1) |
Log message: Fix some WANTLIB entries. |
2006-10-29 05:55:50 by Marc Balmer | Files touched by this commit (1) |
Log message: Enable logging to syslog. Requested by Jeff Ross <jross@openvistas.net> a while ago. Why not. |
2006-10-20 07:21:33 by Nikolay Sturm | Files touched by this commit (1) |
Log message: use in ${SYSCONFDIR} in post-install, not /etc no need to bump |
2006-10-03 08:07:10 by Marc Balmer | Files touched by this commit (9) |
Log message: Update to Samba-3.0.23c. Tested on various platforms and also with local KDE clients (Konqueror). ok brad |
2006-08-10 22:17:29 by Nikolay Sturm | Files touched by this commit (2) |
Log message: MFC: Add security fix for CVE-2006-3403. http://secunia.com/advisories/20980/ |
2006-08-10 22:16:27 by Nikolay Sturm | Files touched by this commit (2) |
Log message: MFC: Add security fix for CVE-2006-3403. http://secunia.com/advisories/20980/ |
2006-08-09 06:54:04 by Bernd Ahlers | Files touched by this commit (2) |
Log message: Add security fix for CVE-2006-3403. http://secunia.com/advisories/20980/ Change LD_CONFIGURE_FLAGS to make VFS modules work. (from mbalmer@) ok espie@, mbalmer@ |
2006-04-09 09:08:20 by Nikolay Sturm | Files touched by this commit (1) |
Log message: correctly build with systrace |
2006-02-17 09:02:17 by Marc Balmer | Files touched by this commit (1) |
Log message: Bump the package name after changing the pkg/MESSAGE. |
2006-02-17 01:36:41 by Marc Balmer | Files touched by this commit (1) |
Log message: Typo found by Mark Peoples <Mark.Peoples@asu.edu>, the config file is ${SYSCONFDIR}/smb.conf, not ${SYSCONFDIR}/smbd.conf. |
2006-02-10 11:33:46 by Steven Mestdagh | Files touched by this commit (1) |
Log message: fix WANTLIB for cups flavor. ok bernd@ |
2006-02-08 09:20:48 by Bernd Ahlers | Files touched by this commit (2) |
Log message: Fix left over example dir. Bump PKGNAME. |
2006-02-02 02:40:44 by Marc Balmer | Files touched by this commit (11) |
Log message: Update to Samba 3.0.21b. requested by and ok brad@ |
2006-01-14 07:06:46 by Marc Balmer | Files touched by this commit (2) |
Log message: List share/examples/samba/ in PLIST and PLIST-docs. Bump package name. found and reported by espie |
2006-01-03 14:21:52 by Steven Mestdagh | Files touched by this commit (3) |
Log message: SHARED_LIBS |
2005-11-03 12:52:18 by Marc Balmer | Files touched by this commit (2) |
Log message: Add a message to give directions for a simple Samba setup. requested by espie@ |
2005-11-03 10:58:10 by Marc Balmer | Files touched by this commit (2) |
Log message: Add a DESCR that makes more sense. |
2005-11-03 08:10:20 by Marc Balmer | Files touched by this commit (8) |
Log message: Correct filename extensions for shared libraries. requested by espie@ |
2005-10-13 15:00:38 by Marc Balmer | Files touched by this commit (8) |
Log message: Update to Samba 3.0.20b. Note for LDAP users: The 'ldap filter' statement in smb.conf is no longer available. |
2005-09-12 10:57:40 by Marc Balmer | Files touched by this commit (1) |
Log message: Activate mickeys utmp support. |
2005-09-12 10:54:29 by Marc Balmer | Files touched by this commit (2) |
Log message: Add utmp patch from mickey. Bump package name. ok mickey@ |
2005-09-07 04:42:06 by Marc Espie | Files touched by this commit (2) |
Log message: mark that this used to be called net/samba/stable. |
2005-08-16 07:22:51 by Marc Espie | Files touched by this commit (1) |
Log message: missing bump, okay pval |
2005-08-16 03:49:56 by Marc Espie | Files touched by this commit (88) |
Log message: conflicts from the past: history since 3.7. As noted on ports@ recently, pkg_add -r relies on conflicts, and the sheer existence of updates means we MUST take the past into account in conflicts now. Note the renaming of hugs98 to valid package names where versions are concerned. This commit shows clearly the renaming of the xfce4 plugin packages, the ditching of eclipse flavors, the splitting of nessus into subpackages, the splitting of various other software documentations, some packaging bugs in kdeedu, and a lot of files moving around... okay pvalchev@ |
2005-05-26 22:54:41 by Nikolay Sturm | Files touched by this commit (5) |
Log message: fix some NULL pointer sentinels fix pathes in the port's Makefile add a missing directory to PLIST ok mbalmer@ |
2005-05-02 22:33:24 by Nikolay Sturm | Files touched by this commit (1) |
Log message: find old versions on MASTER_SITES ok mbalmer@ |
2005-04-09 11:04:18 by Aleksander Piotrowski | Files touched by this commit (1) |
Log message: - Fix -docs dependencies - Bump PKGNAME ok mbalmer@ |
2005-04-03 05:20:38 by Marc Balmer | Files touched by this commit (12) |
Log message: Update to Samba 3.0.13. ok alek@, espie@, pval@, xsa@ |