Samba 3.0.20 Update Edition


The Samba 3.0.x series has been remarkably popular. At the time this book first went to print samba-3.0.2 was being released. There have been significant modifications and enhancements between samba-3.0.2 and samba-3.0.14 (the current release) that necessitate this documentation update. This update has the specific intent to refocus this book so that its guidance can be followed for samba-3.0.20 and beyond. Further changes are expected as Samba-3 matures further and will be reflected in future updates.

The changes shown in Table 1 are incorporated in this update.

Table 1. Samba Changes 3.0.2 to 3.0.20

New Feature

Description

Winbind Case Handling

User and group names returned by winbindd are now converted to lower case for better consistency. Samba implementations that depend on the case of information returned by winbind (such as %u and %U) must now convert the dependency to expecting lower case values. This affects mail spool files, home directories, valid user lines in the smb.conf file, etc.

Schema Changes

Addition of code to handle password aging, password uniqueness controls, bad password instances at logon time, have made necessary extensions to the SambaSAM schema. This change affects all sites that use LDAP and means that the directory schema must be updated.

Username Map Handling

Samba-3.0.8 redefined the behavior: Local authentication results in a username map file lookup before authenticating the connection. All authentication via an external domain controller will result in the use of the fully qualified name (i.e.: DOMAIN\username) after the user has been successfully authenticated.

UNIX Extension Handling

Symbolically linked files and directories on the UNIX host to absolute paths will now be followed. This can be turned off using "wide links = No" in the share stanza in the smb.conf file. Turning off "wide links" support will degrade server performance because each path must be checked.

Privileges Support

Versions of Samba prior to samba-3.0.11 required the use of the UNIX root account from network Windows clients. The new "enable privileges = Yes" capability means that functions such as adding machines to the domain, managing printers, etc. can now be delegated to normal user accounts or to groups of users.




    Samba-3 by Example. Practical Exercises to Successful Deployment
    Samba-3 by Example: Practical Exercises to Successful Deployment (2nd Edition)
    ISBN: 013188221X
    EAN: 2147483647
    Year: 2005
    Pages: 142

    Similar book on Amazon

    flylib.com © 2008-2017.
    If you may any questions please contact us: flylib@qtcs.net