On Thu, 2016-04-14 at 10:57 +0100, Roger Lynn wrote: > Package: samba > Version: 2:4.2.10+dfsg-0+deb8u1 > Severity: normal > File: /usr/share/doc/samba/NEWS.Debian.gz > > Hi, > > The NEWS file states: > > Finally, two important configuration options should be > considered, > that we were unable to silently change defaults for: > - smb signing = required > - ntlm auth = no > > However smb signing is not a recognised parameter: > > .../lib/param/loadparm.c:743(lpcfg_map_parameter) > Unknown parameter encountered: "smb signing" > > Searching through SMB.CONF(5), it appears the intended parameter is: > > client signing = mandatory > > Is this correct? According to the NEWS file this option has security > implications, so should be considered important.
Sadly time restrictions and I think a small miscommunication meant we didn't get the latest version of the NEWS entry into the secuirty release. See here for a better set of text: https://anonscm.debian.org/cgit/pkg-samba/samba.git/commit/?h=stable -update&id=cbcad2a543a28926ee712cf299dbdc03da351cb0 Sorry about that. I'm not sure we can fix this with a new package, but I'll ask. Andrew Bartlett -- Andrew Bartlett http://samba.org/~abartlet/ Authentication Developer, Samba Team http://samba.org Samba Developer, Catalyst IT http://catalyst.net.nz/services/samba
