On 04/15/2016 10:40 AM, Johannes Amorosa | Celluloid VFX wrote:
On 04/14/2016 05:17 PM, Fabio Onorini ([email protected]) wrote:
Today on debian security repository was issued the Samba 4.2.0 debian
package.
And "apt-get upgrade" command install that package, but after
installation finished samba service doesn't start correctly.
Now I set hold flag on inverse package to prevent upgrade but this
can be a BIG problem!
It is scheduled a release of samba package 4.2 ?
--
Fabio Onorini
--
[email protected]
https://inverse.ca/sogo/lists
All samba versions up from 4.2 needed to be upgraded because of this:
http://badlock.org/ .
This wording is a bit wrong. ALL samba versions are vulnerable - but
there are patches > 4.2.
See the new default behaviour to prevent MitM attacks. If you want the
old behaviour back you
can set new switches in the smb.conf. See release notes of samba or
https://www.samba.org/samba/latest_news.html
Hope this helps.
JA
--
Johannes Amorosa | Celluloid VFX
Celluloid Visual Effects GmbH & Co. KG
Paul-Lincke-Ufer 39/40, 10999 Berlin
--
Johannes Amorosa | Celluloid VFX
Celluloid Visual Effects GmbH & Co. KG
Paul-Lincke-Ufer 39/40, 10999 Berlin
phone +49 (0)30 / 54 735 220
fax +49 (0)30 / 54 735 221
--
[email protected]
https://inverse.ca/sogo/lists
