Re: [Samba] [Announce] Samba 4.0.0rc1 Available for Download
On 14 September 2012 06:48, Ricky Nance ricky.na...@weaubleau.k12.mo.us wrote: Maybe this will help ;) I also cleaned up references to 'beta'. Not sure if some of those should say RC1 instead of just Samba 4.0. Also, you have an extra space at the start of the line in this part: If you are upgrading, or looking to develop, test or deploy Samba 4.0 -beta releases, you should backup all configuration and data. + releases, you should backup all configuration and data. On Thu, Sep 13, 2012 at 9:55 PM, Scott Lovenberg scott.lovenb...@gmail.comwrote: On Thu, Sep 13, 2012 at 6:40 AM, Karolin Seeger ksee...@samba.org wrote: [...] - Domain member support in the 'samba' binary is in it's infancy, and is not comparable to the support found in winbindd. As such, do not use the 'samba' binary (provided for the AD server) on a member server. Stupid bug report, its should be used above, not it's. You want the possessive, not the contraction. Just for future RC release notes (it's been bothering me since the later beta release notes). :) -- Peace and Blessings, -Scott. -- -- Michael Wood esiot...@gmail.com -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] [Announce] Samba 4.0.0rc1 Available for Download
Hi Scott, On Thu, Sep 13, 2012 at 10:55:55PM -0400, Scott Lovenberg wrote: On Thu, Sep 13, 2012 at 6:40 AM, Karolin Seeger ksee...@samba.org wrote: [...] - Domain member support in the 'samba' binary is in it's infancy, and is not comparable to the support found in winbindd. As such, do not use the 'samba' binary (provided for the AD server) on a member server. Stupid bug report, its should be used above, not it's. You want the possessive, not the contraction. Just for future RC release notes (it's been bothering me since the later beta release notes). :) right, thanks for reporting! A patch has been pushed to autobuild. Cheers, Karolin -- Samba http://www.samba.org SerNet http://www.sernet.de sambaXP http://www.sambaxp.org -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] [Announce] Samba 4.0.0rc1 Available for Download
Hi Ricky, On Thu, Sep 13, 2012 at 11:48:44PM -0500, Ricky Nance wrote: Maybe this will help ;) I also cleaned up references to 'beta'. thanks for reporting and providing the patch! Your changes have been pushed to autobuild (together with other fixes). Thanks! Cheers, Karolin -- Samba http://www.samba.org SerNet http://www.sernet.de sambaXP http://www.sambaxp.org -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] [Announce] Samba 4.0.0rc1 Available for Download
Maybe this will help ;) I also cleaned up references to 'beta'. Ricky On Thu, Sep 13, 2012 at 9:55 PM, Scott Lovenberg scott.lovenb...@gmail.comwrote: On Thu, Sep 13, 2012 at 6:40 AM, Karolin Seeger ksee...@samba.org wrote: [...] - Domain member support in the 'samba' binary is in it's infancy, and is not comparable to the support found in winbindd. As such, do not use the 'samba' binary (provided for the AD server) on a member server. Stupid bug report, its should be used above, not it's. You want the possessive, not the contraction. Just for future RC release notes (it's been bothering me since the later beta release notes). :) -- Peace and Blessings, -Scott. -- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] [Announce] Samba 4.0.0rc1 Available for Download
Release Announcements - This is the first release candidate of Samba 4.0.0! This is *not* intended for production environments and is designed for testing purposes only. Please report any defects via the Samba bug reporting system at https://bugzilla.samba.org/. What's new in Samba 4.0.0rc1 = Samba 4.0 will be the next version of the Samba suite and incorporates all the technology found in both the Samba4 alpha series and the stable 3.x series. The primary additional features over Samba 3.6 are support for the Active Directory logon protocols used by Windows 2000 and above. WARNINGS Samba 4.0.0rc1 is not a final Samba release, however we are now making good progress towards a Samba 4.0 release. This release contains the best of all of Samba's technology parts, both a file server (that you can reasonably expect to upgrade existing Samba 3.x releases to) and the AD domain controller work previously known as 'samba4'. Samba 4.0 is subjected to an awesome battery of tests on an automated basis, we have found Samba 4.0 to be very stable in it's behaviour. However, as with all our pre-releases we still recommend against upgrading production servers from Samba 3.x release to Samba 4.0.0rc1 at this stage. If you are upgrading, or looking to develop, test or deploy Samba 4.0.0 release candidates, you should backup all configuration and data. UPGRADING = Users upgrading from Samba 3.x domain controllers and wanting to use Samba 4.0 as an AD DC should use the 'samba-tool domain classicupgrade' command. See the wiki for more details: https://wiki.samba.org/index.php/Samba4/samba3upgrade/HOWTO Users upgrading from Samba 4.0 alpha and beta releases since alpha15 should run 'samba-tool dbcheck --cross-ncs --fix' before re-starting Samba. Users upgrading from earlier alpha releases should contact the team for advice. Users upgrading an AD DC from any previous release should run 'samba-tool ntacl sysvolreset' to re-sync ACLs on the sysvol share with those matching the GPOs in LDAP and the defaults from an initial provision. This will set an underlying POSIX ACL if required (eg not using the NTVFS file server). If you used the BIND9_FLATFILE or BIND9_DLZ features, you'll have to add '-dns' to the 'server services' option, as the internal dns server (SAMBA_INTERNAL) is the default now. NEW FEATURES Samba 4.0 supports the server-side of the Active Directory logon environment used by Windows 2000 and later, so we can do full domain join and domain logon operations with these clients. Our Domain Controller (DC) implementation includes our own built-in LDAP server and Kerberos Key Distribution Center (KDC) as well as the Samba3-like logon services provided over CIFS. We correctly generate the infamous Kerberos PAC, and include it with the Kerberos tickets we issue. Samba 4.0 ships with two distinct file servers. We now use the file server from the Samba 3.x series 'smbd' for all file serving by default. Samba 4.0 also ships with the 'NTVFS' file server. This file server is what was used in all previous alpha releases of Samba 4.0, and is tuned to match the requirements of an AD domain controller. We continue to support this, not only to provide continuity to installations that have deployed it as part of an AD DC, but also as a running example of the NT-FSA architecture we expect to move smbd to in the longer term. For pure file server work, the binaries users would expect from that series (nmbd, winbindd, smbpasswd) continue to be available. When running an AD DC, you only need to run 'samba' (not nmbd/smbd/winbind), as the required services are co-coordinated by this master binary. As DNS is an integral part of Active Directory, we also provide two DNS solutions, a simple internal DNS server for 'out of the box' configurations and a more elaborate BIND plugin using the BIND DLZ mechanism in versions 9.8 and 9.9. During the provision, you can select which backend to use. With the internal backend, your DNS server is good to go. If you chose the BIND_DLZ backend, a configuration file will be generated for bind to make it use this plugin, as well as a file explaining how to set up bind. To provide accurate timestamps to Windows clients, we integrate with the NTP project to provide secured NTP replies. To use you need to start ntpd and configure it with the 'restrict ... ms-sntp' and ntpsigndsocket options. Finally, a new scripting interface has been added to Samba 4, allowing Python programs to interface to Samba's internals, and many tools and internal workings of the DC code is now implemented in python. CHANGES SINCE beta8 === For a list of changes since beta8, please see the git log. $ git clone git://git.samba.org/samba.git $ cd samba.git $ git log samba-4.0.0beta8..samba-4.0.0rc1 Some major user-visible changes include: - The smbd file server now offers SMB3 as the maximum protocol by
Re: [Samba] [Announce] Samba 4.0.0rc1 Available for Download
On 13/09/12 12:40, Karolin Seeger wrote: Release Announcements Is the Internal DNS now the default? I upgraded from beta 8 and could only get the samba binary to work if I stopped by distro's bind configured with bind dlz Here it is with bind working: failed to bind to fe80::212:f0ff:fe06:9cda%eth1:53 TCP - NT_STATUS_ADDRESS_ALREADY_ASSOCIATED task_server_terminate: [dns failed to setup interfaces] standard_terminate: reason[dns failed to setup interfaces] /usr/local/samba/sbin/smbd: smbd version 4.1.0pre1-GIT-9158423 started. If I turn off bind, I lose my Internet connection. Please be clear. Cheers, Steve -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] [Announce] Samba 4.0.0rc1 Available for Download
On 13/09/12 17:34, steve wrote: On 13/09/12 12:40, Karolin Seeger wrote: Release Announcements Is the Internal DNS now the default? I upgraded from beta 8 and could only get the samba binary to work if I stopped by distro's bind configured with bind dlz Here it is with bind working: failed to bind to fe80::212:f0ff:fe06:9cda%eth1:53 TCP - NT_STATUS_ADDRESS_ALREADY_ASSOCIATED task_server_terminate: [dns failed to setup interfaces] standard_terminate: reason[dns failed to setup interfaces] /usr/local/samba/sbin/smbd: smbd version 4.1.0pre1-GIT-9158423 started. If I turn off bind, I lose my Internet connection. Please be clear. Cheers, Steve Hi Steve, yes the internal dns server is now the default, is that clear enough ;-) But this from the annoucement isn't: As DNS is an integral part of Active Directory, we also provide two DNS solutions, a simple internal DNS server for 'out of the box' configurations and a more elaborate BIND plugin using the BIND DLZ mechanism in versions 9.8 and 9.9. During the provision, you can select which backend to use. With the internal backend, your DNS server is good to go. If you chose the BIND_DLZ backend, a configuration file will be generated for bind to make it use this plugin, as well as a file explaining how to set up bind. Yes, you have a choice but how? And it gets worse, if you do not choose, it defaults to the internal and adds a dns forwarder line based (I believe) on what is in your /etc/resolv.conf and when you change this file to point towards 127.0.0.1 as you would for bind it doesn't work. You have to add the line 'interfaces = 127.0.0.1 192.168.0.5' to smb.conf to get it to work. Have fun. Rowland -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] [Announce] Samba 4.0.0rc1 Available for Download
On 13/09/12 18:47, Rowland Penny wrote: On 13/09/12 17:34, steve wrote: On 13/09/12 12:40, Karolin Seeger wrote: Release Announcements Is the Internal DNS now the default? I upgraded from beta 8 and could only get the samba binary to work if I stopped by distro's bind configured with bind dlz Here it is with bind working: failed to bind to fe80::212:f0ff:fe06:9cda%eth1:53 TCP - NT_STATUS_ADDRESS_ALREADY_ASSOCIATED task_server_terminate: [dns failed to setup interfaces] standard_terminate: reason[dns failed to setup interfaces] /usr/local/samba/sbin/smbd: smbd version 4.1.0pre1-GIT-9158423 started. If I turn off bind, I lose my Internet connection. Please be clear. Cheers, Steve Hi Steve, yes the internal dns server is now the default, is that clear enough ;-) Not for us. No. we need to what to do and what to change to make it the default. Just tell us. Yes, you have a choice but how? Answered in my last inline. And it gets worse, Yeah, I know it does. Try explaining it to 10 irate Spaniards. Thanks Rowland No. That's the point. Having followed the discussions for the last week it seemed highly unlikely Kai would get anywhere near the RC1. It doesn't add a forwarder nor interfaces line nor warn you that after the upgrade to the RC you have to work out how to add these yourself. And lets be fair, it most probably would do if we built and provisioned from new. I've 2000 + users just started a new term over here and I want to move forward, not roll back. Ah well, the air-con goes off in 10 minutes and I'm going home;) Cheers, Steve -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] [Announce] Samba 4.0.0rc1 Available for Download
On 13/09/12 18:33, steve wrote: On 13/09/12 18:47, Rowland Penny wrote: On 13/09/12 17:34, steve wrote: On 13/09/12 12:40, Karolin Seeger wrote: Release Announcements Is the Internal DNS now the default? I upgraded from beta 8 and could only get the samba binary to work if I stopped by distro's bind configured with bind dlz Here it is with bind working: failed to bind to fe80::212:f0ff:fe06:9cda%eth1:53 TCP - NT_STATUS_ADDRESS_ALREADY_ASSOCIATED task_server_terminate: [dns failed to setup interfaces] standard_terminate: reason[dns failed to setup interfaces] /usr/local/samba/sbin/smbd: smbd version 4.1.0pre1-GIT-9158423 started. If I turn off bind, I lose my Internet connection. Please be clear. Cheers, Steve Hi Steve, yes the internal dns server is now the default, is that clear enough ;-) Not for us. No. we need to what to do and what to change to make it the default. Just tell us. Yes, you have a choice but how? Answered in my last inline. And it gets worse, Yeah, I know it does. Try explaining it to 10 irate Spaniards. Thanks Rowland No. That's the point. Having followed the discussions for the last week it seemed highly unlikely Kai would get anywhere near the RC1. It doesn't add a forwarder nor interfaces line nor warn you that after the upgrade to the RC you have to work out how to add these yourself. And lets be fair, it most probably would do if we built and provisioned from new. I've 2000 + users just started a new term over here and I want to move forward, not roll back. Ah well, the air-con goes off in 10 minutes and I'm going home;) Cheers, Steve Steve, if you download the RC1 from http://ftp.samba.org/pub/samba/rc/samba-4.0.0rc1.tar.gz compile it as usual and then provision, but with the new style provision: samba-tool domain provision --realm=your realm --domain=YOURDOMAIN --adminpass=pass --use-rfc2307 --server-role=dc You will end up using the internal dns server, this puts a forwarder into smb.conf and works provided that you put the servers ipaddress into /etc/resolv.conf not 127.0.0.1 Rowland -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] [Announce] Samba 4.0.0rc1 Available for Download
On 13/09/12 20:17, Rowland Penny wrote: On 13/09/12 18:33, steve wrote: On 13/09/12 18:47, Rowland Penny wrote: On 13/09/12 17:34, steve wrote: On 13/09/12 12:40, Karolin Seeger wrote: Release Announcements Is the Internal DNS now the default? I upgraded from beta 8 and could only get the samba binary to work if I stopped by distro's bind configured with bind dlz Here it is with bind working: failed to bind to fe80::212:f0ff:fe06:9cda%eth1:53 TCP - NT_STATUS_ADDRESS_ALREADY_ASSOCIATED task_server_terminate: [dns failed to setup interfaces] standard_terminate: reason[dns failed to setup interfaces] /usr/local/samba/sbin/smbd: smbd version 4.1.0pre1-GIT-9158423 started. If I turn off bind, I lose my Internet connection. Please be clear. Cheers, Steve Hi Steve, yes the internal dns server is now the default, is that clear enough ;-) Not for us. No. we need to what to do and what to change to make it the default. Just tell us. Yes, you have a choice but how? Answered in my last inline. And it gets worse, Yeah, I know it does. Try explaining it to 10 irate Spaniards. Thanks Rowland No. That's the point. Having followed the discussions for the last week it seemed highly unlikely Kai would get anywhere near the RC1. It doesn't add a forwarder nor interfaces line nor warn you that after the upgrade to the RC you have to work out how to add these yourself. And lets be fair, it most probably would do if we built and provisioned from new. I've 2000 + users just started a new term over here and I want to move forward, not roll back. Ah well, the air-con goes off in 10 minutes and I'm going home;) Cheers, Steve Steve, if you download the RC1 from http://ftp.samba.org/pub/samba/rc/samba-4.0.0rc1.tar.gz compile it as usual and then provision, but with the new style provision: samba-tool domain provision --realm=your realm --domain=YOURDOMAIN --adminpass=pass --use-rfc2307 --server-role=dc You will end up using the internal dns server, this puts a forwarder into smb.conf and works provided that you put the servers ipaddress into /etc/resolv.conf not 127.0.0.1 Rowland Hi Rowland Thanks for that but I can't reporovision. Who can? I have 150 linux, xp and w7 clients to support. I simply cannot start from bare metal. To be able to do that I would have to have a reliable backup. Evidently neither the backup scripts in samba-master nor rsync can do that at the moment. (secretly hopes someone can confirm otherwise) Anyway. Early days. Again! Cheers, Steve -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] [Announce] Samba 4.0.0rc1 Available for Download
On 9/13/12, steve st...@steve-ss.com wrote: Thanks for that but I can't reporovision. Who can? I have 150 linux, xp and w7 clients to support. I simply cannot start from bare metal. To be able to do that I would have to have a reliable backup. Evidently neither the backup scripts in samba-master nor rsync can do that at the moment. (secretly hopes someone can confirm otherwise) Steve, you sh'ld read the original letter better :) If you used the BIND9_FLATFILE or BIND9_DLZ features, you'll have to add '-dns' to the 'server services' option, as the internal dns server (SAMBA_INTERNAL) is the default now. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] [Announce] Samba 4.0.0rc1 Available for Download
On Thu, Sep 13, 2012 at 6:40 AM, Karolin Seeger ksee...@samba.org wrote: [...] - Domain member support in the 'samba' binary is in it's infancy, and is not comparable to the support found in winbindd. As such, do not use the 'samba' binary (provided for the AD server) on a member server. Stupid bug report, its should be used above, not it's. You want the possessive, not the contraction. Just for future RC release notes (it's been bothering me since the later beta release notes). :) -- Peace and Blessings, -Scott. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba