Port details |
- samba413 Free SMB/CIFS and AD/DC server and client for Unix
- 4.13.17_1 net
=16 4.13.17Version of this port present on the latest quarterly branch. - Maintainer: timur@FreeBSD.org
 - Port Added: 2020-09-27 21:24:22
- Last Update: 2022-04-08 04:34:44
- Commit Hash: b936fd4
- People watching this port, also watch:: rsync, smartmontools, apache24, pkg, ca_root_nss
- License: GPLv3+
- Description:
- Samba4 is an attempt to implement an Active Directory compatible Domain
Controller.
In short, you can join a WinNT, Win2000, WinXP or Win 2003 - 2016 member
server to a Samba4 domain, and it will behave much as it does in AD,
including Kerberos domain logins where applicable.
WWW: https://www.samba.org/
- SVNWeb : git : Homepage
- pkg-plist: as obtained via:
make generate-plist - Dependency lines:
-
- For LIB depends:
- nss_winbind.so:net/samba413
- nss_wins.so:net/samba413
- pam_winbind.so:net/samba413
- Conflicts:
- CONFLICTS_INSTALL:
- Conflicts Matches:
-
There are no Conflicts Matches for this port. This is usually an error.
- To install the port:
- cd /usr/ports/net/samba413/ && make install clean
- To add the package, run one of these commands:
- pkg install net/samba413
- pkg install samba413
NOTE: If this package has multiple flavors (see below), then use one of them instead of the name specified above.- PKGNAME: samba413
- Flavors: there is no flavor information for this port.
- distinfo:
- TIMESTAMP = 1643677367
SHA256 (samba-4.13.17.tar.gz) = 17bdb9ea60d30af22851c8e134d67b43a22fb1e20f159152a647c69dc2a58a68
SIZE (samba-4.13.17.tar.gz) = 18952829
- Packages (timestamps in pop-ups are UTC):
- Dependencies
- NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.
- Build dependencies:
-
- jansson>=2.10 : devel/jansson
- libtasn1>=3.8 : security/libtasn1
- p5-Parse-Yapp>=0 : devel/p5-Parse-Yapp
- libarchive>=3.1.2 : archivers/libarchive
- cmocka>=1.1.3 : sysutils/cmocka
- talloc>=2.3.1 : devel/talloc
- tevent>=0.10.2 : devel/tevent
- tdb>=1.4.3 : databases/tdb
- lmdb>=0.9.16 : databases/lmdb
- pkgconf>=1.3.0_1 : devel/pkgconf
- python3.8 : lang/python38
- perl5>=5.32.r0<5.33 : lang/perl5.32
- Runtime dependencies:
-
- jansson>=2.10 : devel/jansson
- libtasn1>=3.8 : security/libtasn1
- libarchive>=3.1.2 : archivers/libarchive
- talloc>=2.3.1 : devel/talloc
- tevent>=0.10.2 : devel/tevent
- tdb>=1.4.3 : databases/tdb
- lmdb>=0.9.16 : databases/lmdb
- py38-dnspython>=1.15.0 : dns/py-dnspython@py38
- py38-markdown>=2.6.11 : textproc/py-markdown@py38
- python3.8 : lang/python38
- Library dependencies:
-
- libiconv.so : converters/libiconv
- libunwind.so : devel/libunwind
- libreadline.so : devel/readline
- libpopt.so : devel/popt
- libinotify.so : devel/libinotify
- libgnutls.so : security/gnutls
- libgcrypt.so : security/libgcrypt
- libsunacl.so : sysutils/libsunacl
- libavahi-client.so : net/avahi-app
- libintl.so : devel/gettext-runtime
- libfam.so.0 : devel/gamin
- libldap-2.4.so.2 : net/openldap24-client
- There are no ports dependent upon this port
- Configuration Options:
- ===> The following configuration options are available for samba413-4.13.17_1:
ADS=on: Active Directory client(implies LDAP)
AD_DC=on: Active Directory Domain Controller(implies PYTHON3)
CLUSTER=off: Clustering support
CUPS=off: CUPS printing system support
DOCS=on: Build and/or install documentation
FAM=on: File Alteration Monitor
GPGME=off: GpgME support
LDAP=on: LDAP client
MANDOC=off: Build manpages from DOCBOOK templates
NTVFS=off: Build *DEPRECATED* NTVFS file server
PROFILE=on: Profiling data
PYTHON3=on: Python 3.x bindings or support
QUOTAS=on: Disk quota support
SPOTLIGHT=off: Spotlight server-side search support
SYSLOG=on: Syslog logging support
UTMP=on: UTMP accounting
====> VFS modules
FRUIT=on: MacOSX and TimeMachine support
GLUSTERFS=off: GlusterFS support
====> GSSAPI Security API support: you have to select exactly one of them
GSSAPI_BUILTIN=on: GSSAPI support via bundled Heimdal
GSSAPI_MIT=off: GSSAPI support via security/krb5
====> Zero configuration networking: you have to select exactly one of them
ZEROCONF_NONE=off: Zeroconf support is absent
AVAHI=on: Zeroconf support via Avahi
MDNSRESPONDER=off: Zeroconf support via mDNSResponder
====> DNS frontend: you can only select none or one of them
NSUPDATE=off: Use samba NSUPDATE utility for AD DC
BIND911=off: Use Bind 9.11 as AD DC DNS server frontend
BIND916=off: Use Bind 9.16 as AD DC DNS server frontend
===> Use 'make config' to modify these settings
- Options name:
- net_samba413
- USES:
- cpe compiler:c++11-lang iconv localbase:ldflags perl5 pkgconfig shebangfix waf gettext-runtime fam python:3.6+
- pkg-message:
- For install:
- How to start: http://wiki.samba.org/index.php/Samba4/HOWTO
* Your configuration is: /usr/local/etc/smb4.conf
* All the relevant databases are under: /var/db/samba4
* All the logs are under: /var/log/samba4
* Provisioning script is: /usr/local/bin/samba-tool
For additional documentation check: http://wiki.samba.org/index.php/Samba4
Bug reports should go to the: https://bugzilla.samba.org/
- Master Sites:
|
Commit History - (may be incomplete: see SVNWeb link above for full details) |
Date | By | Description |
08 Apr 2022 04:34:44 4.13.17_1
|
Jan Beich (jbeich)  |
net/samba*: restore indentation after 268cee3b0227
PR: 262654 |
07 Apr 2022 00:39:10 4.13.17_1
|
Jan Beich (jbeich)  |
devel/icu: update to 71.1
Changes: https://github.com/unicode-org/icu/releases/tag/release-71-1
Reported by: GitHub (watch releases)
PR: 262654
Exp-run by: antoine
Approved by: fluffy |
11 Mar 2022 15:00:50 4.13.17
|
Stefan Eßer (se)  |
net/samba41[23]: set PYTHONHASHSEED during build
The build with CCACHE can be significantly sped up by passing
PYTHONHASHSEED=1 in the environment to make the build reproducible
with regard to the compiler commands issued.
PR: 262092
Reported by: chris at chrullrich.net (Christian Ullrich) |
01 Feb 2022 20:42:09 4.13.17
|
Timur I. Bakeyev (timur)  |
net/samba413: Update Samba to the 4.13.17 version to address security
vulnerabilities.
Security: CVE-2021-44141
CVE-2021-44142
CVE-2022-0336 |
12 Jan 2022 05:35:52 4.13.16 
|
Timur I. Bakeyev (timur)  |
net/samba413: Update to the 4.13.16 release to address CVE-2021-43566
In addition an CVE-2021-20316 is issued, but can't be address in this
Samba release.
====================================================
Workaround and mitigating factors for CVE-2021-20316
====================================================
Do not enable SMB1 (please note SMB1 is disabled by default in Samba
from version 4.11.0 and onwards). This prevents the creation of
symbolic links via SMB1. If SMB1 must be enabled for backwards
compatibility then add the parameter:
unix extensions = no (Only the first 15 lines of the commit message are shown above ) |
10 Jan 2022 15:15:39 4.13.14 
|
Stefan Eßer (se)  |
Fix CONFLICTS entries of multiple ports
There have been lots of missing CONFLICTS_INSTALL entries, either
because conflicting ports were added without updating existing ports,
due to name changes of generated packages, due to mis-understanding
the format and semantics of the conflicts entries, or just due to
typoes in package names.
This patch is the result of a comparison of all files contained in
the official packages with each other. This comparison was based on
packages built with default options and may therefore have missed
further conflicts with optionally installed files.
Where possible, version numbers in conflicts entries have been
generalized, some times taking advantage of the fact that a port (Only the first 15 lines of the commit message are shown above ) |
10 Nov 2021 13:13:43 4.13.14 
|
Timur I. Bakeyev (timur)  |
net/samba413: Upgrade to the latest version to address security vulnerabilities:
* CVE-2020-25717
* CVE-2020-25718
* CVE-2020-25719
* CVE-2020-25721
* CVE-2020-25722
* CVE-2016-2124
* CVE-2021-3738
* CVE-2021-23192 |
28 Oct 2021 16:37:30 4.13.8_2 
|
Jan Beich (jbeich)  |
devel/icu: update to 70.1
Changes: https://github.com/unicode-org/icu/releases/tag/release-70-1
Reported by: GitHub (watch releases)
PR: 258794
Exp-run by: antoine |
02 Aug 2021 04:41:48 4.13.8_1 
|
Xin LI (delphij)  |
net/openldap24-client: bump all dependent port
In the earlier net/openldap24-server commit, only those which depend on
net/openldap24-sasl-client were bumped. Bumping all dependent port that
didn't get a bump to force a rebuild of these packages.
Suggested by: kib |
04 May 2021 00:26:52 4.13.8 
|
Timur I. Bakeyev (timur)  |
PR: 255415
254033
252385
Security: CVE-2021-20254
Updated net/samba412 and net/samba413 to fix CVE-2021-20254.
Also fixed:
* Incorrect include line for the bind backend(255415)
* Broken pkg-plist with NO_PYTHON(254033)
* Broken URL parsing in LDAP client(252385) |
08 Apr 2021 23:33:31 4.13.7_1 
|
Jan Beich (jbeich)  |
devel/icu: update to 69.1
Changes: https://github.com/unicode-org/icu/releases/tag/release-69-1
Reported by: GitHub (watch releases) |
06 Apr 2021 14:31:13 4.13.7 
|
Mathieu Arnold (mat)  |
all: Remove all other $FreeBSD keywords. |
06 Apr 2021 14:31:07 4.13.7 
|
Mathieu Arnold (mat)  |
Remove # $FreeBSD$ from Makefiles. |
25 Mar 2021 02:57:01
4.13.7 
|
timur  |
Security update for net/samba4* ports to 4.13.6 and 4.12.13 respectively.
Mark net/samba411 s deprecated.
Relnotes: CVE-2020-27840
CVE-2021-20277 |
05 Mar 2021 03:16:52
4.13.4 
|
timur  |
Bump net/samba413 to 4.13.4 version.
Split pkg-plist into managable chunks.
Made PYTHON3 bindings a selectable option.
PR: 252164 |
30 Jan 2021 13:22:39
4.13.1_2 
|
dim  |
net/samba411 net/samba412 net/samba413: Fix zero-sized VLAs
With recent versions of clang, samba could dump core shortly after
startup, terminating with either SIGILL or SIGSEGV.
Investigation showed that samba is using C99 variable length arrays
(VLAs), and in some cases the length of these arrays would become zero.
Since this is undefined behavior, various interesting things would
happen, often ending in segfaults.
Fix this by avoiding to use zero as the length for these VLA
declarations.
A similar patch was also sent upstream, and was accepted and included in
subsequent samba releases.
See also: https://bugzilla.samba.org/show_bug.cgi?id=14605
Reported by: Dries Michiels <driesm.michiels@gmail.com>
PR: 252157
MFH: 2021Q1 |
24 Dec 2020 13:34:58
4.13.1_1 
|
fluffy  |
net/samba41[1-3]: switch to PYTHON_EXT_SUFFIX |
03 Nov 2020 00:56:27
4.13.1_1 
|
jbeich  |
devel/icu: update to 68.1
Changes: http://site.icu-project.org/download/68
ABI: https://abi-laboratory.pro/tracker/timeline/icu4c/
Reported by: GitHub (watch releases) |
31 Oct 2020 04:28:26
4.13.1 
|
timur  |
Security update for samba411, samba412 and samba413:
CVE-2020-14318 (Missing handle permissions check in SMB1/2/3 ChangeNotify)
CVE-2020-14323 (Unprivileged user can crash winbind)
CVE-2020-14383 (An authenticated user can crash the DCE/RPC DNS with easily
crafted records)
Security: CVE-2020-14318
CVE-2020-14323
CVE-2020-14383 |
27 Sep 2020 21:24:17
4.13.0 
|
timur  |
Introduce Samba 4.13 port as net/samba413 |