ProHoster > Π‘Π»ΠΎΠ³ > xov xwm hauv internet > Tso tawm Samba 4.13.0

Tso tawm Samba 4.13.0

Xa los ntawm tso tawm Samba 4.13.0, leej twg txuas ntxiv kev txhim kho ntawm ceg Samba 4 nrog rau kev siv tag nrho ntawm tus tswj hwm sau npe thiab cov kev pabcuam Active Directory, sib xws nrog kev ua haujlwm ntawm Windows 2000 thiab muaj peev xwm ua haujlwm rau txhua tus qauv ntawm Windows cov neeg siv khoom txhawb nqa los ntawm Microsoft, suav nrog Windows 10. Samba 4 yog cov khoom siv ntau yam khoom siv server uas tseem muab cov kev siv ntawm ib tug neeg rau zaub mov cov ntaub ntawv, luam cov kev pab cuam thiab tus kheej server (winbind).

Ntsiab hloov hauv Samba 4.13:

  • Ntxiv kev tiv thaiv kev tiv thaiv ZeroLogon (CVE-2020-1472) tso cai rau tus neeg tawm tsam kom tau txais txoj cai tswj hwm ntawm tus tswj hwm sau npe ntawm cov tshuab uas tsis siv qhov "server schannel = yog" teeb tsa.
  • Qhov tsawg kawg nkaus Python version yuav tsum tau nce los ntawm Python 3.5 rau Python 3.6. Lub peev xwm los tsim cov ntaub ntawv server nrog Python 2 tseem muaj (ua ntej khiav ./configure thiab 'ua', koj yuav tsum teeb tsa ib puag ncig hloov pauv 'PYTHON = python2'), tab sis hauv ceg tom ntej nws yuav raug tshem tawm thiab Python 3.6 yuav yuav tsum tau rau kev sib dhos.
  • Qhov "dav mus txuas = yog" ua haujlwm, uas tso cai rau cov neeg ua haujlwm cov ntaub ntawv los tsim cov cim txuas mus rau thaj chaw sab nraud SMB / CIFS muab faib tam sim no, tau raug hloov los ntawm smbd mus rau ib qho "vfs_widelinks" module. Tam sim no, qhov module no tau txais kev thauj khoom yog tias "dav txuas = yog" parameter nyob rau hauv qhov chaw. Nyob rau hauv lub neej yav tom ntej, nws yog npaj los tshem tawm kev txhawb nqa rau "dav txuas = yog" vim muaj teeb meem kev ruaj ntseg, thiab cov neeg siv samba tau txhawb kom hloov los ntawm "dav txuas = yog" siv "mount --bind" rau mount sab nraud ntawm cov ntaub ntawv system.
  • Classic hom domain maub los txhawb tau raug deprecated. Cov neeg siv ntawm NT4 zoo li tus tswj hwm ('classic') yuav tsum hloov mus siv Samba Active Directory domain controllers kom muaj peev xwm ua haujlwm nrog cov neeg siv Windows niaj hnub.
  • Deprecated insecure authentication method uas tsuas siv tau nrog SMBv1 raws tu qauv: "domain logons", "raw NTLMv2 auth", "client plaintext auth", "client NTLMv2 auth", "client lanman auth" thiab "client use spnego".
  • Kev them nyiaj yug rau "ldap ssl tshaj tawm" kev xaiv tau raug tshem tawm ntawm smb.conf. Qhov kev xaiv "server schannel" yuav tsum raug tshem tawm hauv qhov kev tso tawm tom ntej.

Tau qhov twg los: opennet.ru

Ntxiv ib saib