ProHoster > Блог > labaran intanet > Sakin Samba 4.11.0

Sakin Samba 4.11.0

Ƙaddamar da saki Samba 4.11.0, wanda ya ci gaba da bunkasa reshe Samba 4 tare da cikakken aiwatar da mai sarrafa yanki da sabis na Active Directory, mai jituwa tare da aiwatar da Windows 2000 kuma yana iya yin hidima ga duk nau'ikan abokan cinikin Windows da Microsoft ke goyan bayan, gami da Windows 10. Samba 4 samfuri ne na uwar garken multifunctional wanda kuma yana ba da aiwatar da aiwatar da ayyukan. uwar garken fayil, sabis na bugawa da uwar garken ainihi (winbind).

Maɓalli canji Samba 4.11:

  • Ta hanyar tsoho, samfurin ƙaddamar da tsarin "prefork" yana kunna, wanda ke ba ku damar kula da tafkin da aka riga aka ƙaddamar da tafiyar matakai. Lokacin fara Samba, zaɓin '-model' yanzu yana ɗaukar ƙimar' prefork' maimakon 'misali'. A baya can, an ƙaddamar da wani tsari na yara don kowane LDAP da NETLOGON haɗin abokin ciniki, wanda ya haifar da amfani da ƙwaƙwalwar ajiya mai mahimmanci lokacin da akwai adadi mai yawa na haɗin kai. Lokacin amfani da samfurin 'prefork' don LDAP, NETLOGON da sabis na KDC, ana ƙaddamar da ƙayyadaddun matakai na matakai waɗanda ke aiwatar da haɗin gwiwar abokin ciniki tare da rarraba su tsakanin masu aiki (ta tsohuwa, ana ƙaddamar da masu sarrafa 4);
  • Winbind yana tabbatar da cewa an adana abubuwan tabbatar da PAM_AUTH da NTLM_AUTH a cikin log ɗin, sannan kuma ƙara tunani a cikin bayanan tantancewa da watsawa zuwa SamLogon na sifa "logonId" mai ɗauke da mai gano shiga da aka samar don buƙatun PAM_AUTH da NTLM_AUTH;
  • Tsarin hanyoyin haɗin LDAP da aka dawo (masu magana) yanzu yana nuna makircin daga buƙatun na asali, alal misali, hanyoyin haɗin da aka karɓa ta hanyar ldap an riga an tsara su da “ldap: //”, kuma ta hanyar ldaps - “ldaps: //”;
  • Ƙara ikon shiga cikin tsawon lokacin ayyukan DNS da Bind 9 ya yi. Ana kunna fitarwa ta hanyar ƙayyade matakin log "dns: 10" a cikin smb.conf;
  • An sabunta tsarin da aka sa a gaba zuwa
    2012_R2.
    Za a iya zaɓar tsohon tsari ta amfani da hujjar '-base-schema'. Don haɓaka abubuwan da ke akwai, zaku iya amfani da samba-tool "domain schemaupgrade" umarni.
  • Abubuwan dogaro da ake buƙata sun haɗa da ɗakin karatu na sirri na GnuTLS 3.2, wanda ya maye gurbin ginanniyar ayyukan sirrin Samba;
  • An ƙara umarnin "samba-tool contact" don bincika da gyara shigarwar a cikin littafin adireshi da aka adana a LDAP;
  • Umurnin "samba-tool [mai amfani | rukuni | kwamfuta | rukuni | lamba] gyara" umarnin ya inganta tallafi don aiki tare da bayanan ƙasa;
  • An inganta Samba don yin aiki a cikin manyan kungiyoyi masu amfani da har zuwa 100 dubu masu amfani da 120 dubu abubuwa;
  • Inganta aikin reindexing ("samba-tool dbcheck -reindex") da ayyukan haɗin yanki ("samba-tool domain join") don manyan wuraren AD;
  • Sabar LDAP ta inganta ingantaccen ƙwaƙwalwar ajiya lokacin samar da manyan amsoshi na LDAP (misali, lokacin neman duk abubuwa) ta hanyar kawar da kwafi na kwafin bayanai a cikin ƙwaƙwalwar ajiya;
  • An ƙara zaɓin "-backend-store-size" zuwa "samba-tool" don ƙayyade iyakar adadin da aka yarda da girman bayanai (taswirar lmdb);
  • An ƙara zaɓin "batch_mode" zuwa LDB, wanda ke ba ku damar haɓaka aiwatar da ayyukan batch ta hanyar aiwatar da su a cikin ma'amala guda ɗaya. Ayyukan bincike a cikin manyan LDBs kuma an inganta su kuma an inganta aikin sake suna;
  • An ƙara ƙirar ceph_snapshots VFS, wanda ke aiwatar da tallafi don hotunan CephFS don aiki tare da nau'ikan fayiloli na baya;
  • An canza hanyar adana bayanan Active Directory akan faifai. Za a yi amfani da sabon tsarin ta atomatik bayan haɓakawa don sakin 4.11, amma idan an rage darajar Samba 4.11 zuwa tsofaffin sakewa za ku buƙaci. yi hira tsari da hannu;
  • Ta hanyar tsohuwa, goyan bayan ka'idar SMB1 ba ta ƙare ba (an saita saitunan 'abokin ciniki min yarjejeniya' da 'server min protocol' zuwa SMB2_02), wanda aka soke kuma Microsoft ba ta amfani da shi;
  • Yawancin abubuwan amfani da layin umarni, kamar smbclient da smbcacls, suna da sabon zaɓi na '-option' wanda ke ba ka damar soke saitunan smb.conf. Misali, don canza mafi ƙarancin sigar ladabi da aka goyan baya, zaku iya saka "--option =' abokin ciniki min protocol=NT1′" don dawo da SMB1;
  • An ayyana LanMan da hanyoyin tabbatar da rubutu ba su da amfani. Taimakon NTLM, NTLMv2 da hanyoyin Kerberos ya kasance ba canzawa;
  • BIND9_FLATFILE DNS baya ƙarewa kuma za a cire shi a cikin sakin gaba. Hakanan an soke zaɓin "rndc umurnin" a cikin smb.conf;
  • An cire lambar uwar garken http da aka gina (Python WSGI), wanda aka yi amfani da shi a baya don tabbatar da aikin SWAT na yanar gizo;
  • Ta hanyar tsoho, an kashe tallafi don Python 2 kuma an kunna Python 3 (don dawo da tallafin Python 2, kuna buƙatar saita canjin yanayi 'PYTHON=python2' kafin kunna ./configure' da 'make' yayin aikin ginin samba.

source: budenet.ru

Add a comment