FreshPorts -- The Place For Ports If you buy from Amazon USA, please support us by using this link.
Follow us
Blog
Twitter

Port details
samba44 Free SMB/CIFS and AD/DC server and client for Unix
4.4.16 net on this many watch lists=9 search for ports that depend on this port An older version of this port was marked as vulnerable. Find issues related to this port Report an issue related to this port
Maintainer: timur@FreeBSD.org search for ports maintained by this maintainer
Port Added: 07 May 2016 00:38:44
License: GPLv3
Samba4 is an attempt to implement an Active Directory compatible Domain
Controller.

In short, you can join a WinNT, Win2000, WinXP or Win2003 member server
to a Samba4 domain, and it will behave much as it does in AD, including
Kerberos domain logins where applicable.

WWW: http://www.samba.org/
SVNWeb : Homepage : PortsMon : pkg-plist

To install the port: cd /usr/ports/net/samba44/ && make install clean
To add the package: pkg install samba44

PKGNAME: samba44

distinfo:

TIMESTAMP = 1505947491
SHA256 (samba-4.4.16.tar.gz) = 2681f6d9d838d90273f151539331a2051b2292fc8784d4bbc416caae5d0c438e
SIZE (samba-4.4.16.tar.gz) = 20772875


Slave ports
  1. devel/p5-Parse-Pidl44

NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.

Build dependencies:
  1. libarchive>=3.1.2 : archivers/libarchive
  2. p5-Parse-Yapp>=0 : devel/p5-Parse-Yapp
  3. py27-dnspython>=1.9.4 : dns/py-dnspython
  4. py27-iso8601>=0.1.11 : devel/py-iso8601
  5. talloc>=2.1.6 : devel/talloc
  6. tevent>=0.9.28 : devel/tevent
  7. tdb>=1.3.8 : databases/tdb
  8. ldb>=1.1.26 : databases/ldb
  9. pkgconf>=1.3.0_1 : devel/pkgconf
  10. python2.7 : lang/python27
  11. python2 : lang/python2
  12. perl5>=5.24<5.25 : lang/perl5.24
Runtime dependencies:
  1. libarchive>=3.1.2 : archivers/libarchive
  2. py27-dnspython>=1.9.4 : dns/py-dnspython
  3. py27-iso8601>=0.1.11 : devel/py-iso8601
  4. talloc>=2.1.6 : devel/talloc
  5. tevent>=0.9.28 : devel/tevent
  6. tdb>=1.3.8 : databases/tdb
  7. ldb>=1.1.26 : databases/ldb
  8. python2.7 : lang/python27
  9. python2 : lang/python2
Library dependencies:
  1. libpopt.so : devel/popt
  2. libinotify.so : devel/libinotify
  3. libgnutls.so : security/gnutls
  4. libsunacl.so : sysutils/libsunacl
  5. libsunacl.so : sysutils/libsunacl
  6. libiconv.so : converters/libiconv
  7. libfam.so.0 : devel/gamin
  8. libldap-2.4.so.2 : net/openldap24-client

This port is required by:

for Libraries for Run * - deleted ports are only shown under the This port is required by section. It was harder to do for the Required section. Perhaps later...
Configuration Options
===> The following configuration options are available for samba44-4.4.16:
     ACL_SUPPORT=on: File system ACL support
     ADS=on: Active Directory client support
     AD_DC=on: Active Directory Domain Controller support
     CUPS=off: CUPS printing system support
     DEBUG=on: Build with debugging support
     DEVELOPER=off: With development support
     DNSUPDATE=on: Dynamic DNS update (require ADS)
     DOCS=on: Build and/or install documentation
     EXP_MODULES=off: Experimental modules
     FAM=on: File Alteration Monitor support
     LDAP=on: LDAP client support
     MANPAGES=off: Build manpages from DOCBOOK templates
     PTHREADPOOL=on: Pthread pool
     QUOTAS=on: Disk quota support
     SYSLOG=on: Syslog logging support
     UTMP=on: UTMP accounting support
====> Options available for the radio DNS: you can only select none or one of them
     NSUPDATE=off: Use samba NSUPDATE utility for AD DC
     BIND99=off: Use bind99 as AD DC DNS server frontend
     BIND910=off: Use bind910 as AD DC DNS server frontend
     BIND911=off: Use bind911 as AD DC DNS server frontend
====> Options available for the radio ZEROCONF: you can only select none or one of them
     AVAHI=off: Zeroconf support via Avahi
     MDNSRESPONDER=off: Zeroconf support via mDNSResponder
===> Use 'make config' to modify these settings

USES:
cpe compiler waf pkgconfig perl5 python:2  readline iconv shebangfix fam

Master Sites:
  1. ftp://ca.samba.org/pub/samba/rc/
  2. ftp://ca.samba.org/pub/samba/stable/
  3. ftp://de.samba.org/pub/samba/rc/
  4. ftp://de.samba.org/pub/samba/stable/
  5. http://ftp.samba.org/pub/samba/rc/
  6. http://ftp.samba.org/pub/samba/stable/
Port Moves
  • port moved here from net/samba42 on 2017-06-07
    REASON: Has expired: not supported upstream https://wiki.samba.org/index.php/Samba_Release_Planning

  • port moved here from net/samba43 on 2017-06-07
    REASON: Has expired: not supported upstream https://wiki.samba.org/index.php/Samba_Release_Planning

Number of commits found: 18

Commit History - (may be incomplete: see SVNWeb link above for full details)
DateByDescription
21 Sep 2017 03:47:38
Original commit files touched by this commit  4.4.16
Revision:450235
timur search for other commits by this committer
Update Samba4 ports to 4.6.8, 4.5.14 and 4.4.16 respectivelly to address
security flaws:

o  CVE-2017-12150 (SMB1/2/3 connections may not require signing where
   they should)
o  CVE-2017-12151 (SMB3 connections don't keep encryption across DFS
      redirects)
o  CVE-2017-12163 (Server memory information leak over SMB1)

Security:	CVE-2017-12150
		CVE-2017-12151
		CVE-2017-12163
13 Jul 2017 13:51:06
Original commit files touched by this commit  4.4.15
Revision:445650
timur search for other commits by this committer
Samba 4.6.6, 4.5.12 and 4.4.15 Security update for the CVE-2017-11103: Orpheus'
Lyre KDC-REP service name validation in Heimdal

Security:	CVE-2017-11103
27 Jun 2017 13:46:53
Original commit files touched by this commit  4.4.14_1
Revision:444463 This port version is marked as vulnerable.
sunpoet search for other commits by this committer
Update devel/readline to 7.0 patch 3

- Bump PORTREVISION for shlib change

Changes:	https://cnswww.cns.cwru.edu/php/chet/readline/CHANGES
		https://lists.gnu.org/archive/html/bug-bash/2016-09/msg00107.html
		https://lists.gnu.org/archive/html/bug-readline/2017-01/msg00002.html
Differential Revision:	https://reviews.freebsd.org/D11172
PR:		219947
Exp-run by:	antoine
24 May 2017 14:53:47
Original commit files touched by this commit  4.4.14
Revision:441602 This port version is marked as vulnerable.
timur search for other commits by this committer
Urgent upgrade of the Samba 4.[4-6] ports to address RCE in the Samba
code(CVE-2017-7494). All versions starting from 3.5+ are affected.

Security:	CVE-2017-7494
31 Mar 2017 21:11:38
Original commit files touched by this commit  4.4.13
Revision:437387 This port version is marked as vulnerable.
timur search for other commits by this committer
Upgrade Samba4[4-6] ports to fix regression with "follow symlinks = no". Remove
dependency from the external p5-Parse-Pidl as it may break provisioning(and
more).

PR:		218255
25 Mar 2017 23:34:37
Original commit files touched by this commit  4.4.12
Revision:436924 This port version is marked as vulnerable.
antoine search for other commits by this committer
Add devel/p5-Parse-Pidl44, based on samba44 sources to allow building
net/samba{42,43,44}
24 Mar 2017 10:19:47
Original commit files touched by this commit  4.4.12
Revision:436805 This port version is marked as vulnerable.
timur search for other commits by this committer
Upgrade Samba 4.4 to the 4.4.12 version to address  CVE-2017-2619

PR:		217993
Security:	CVE-2017-2619
21 Mar 2017 21:59:31
Original commit files touched by this commit  4.4.8_2
Revision:436659 This port version is marked as vulnerable.
antoine search for other commits by this committer
- Add USES=samba to handle dependency on samba
  Valid ARGS:  build, env, lib, run (default: build,run)
- Add SAMBA_DEFAULT to bsd.default-versions.mk (default: 4.3)
- Remove obsolete samba36 ports
- Modify samba4x ports to install libsmbclient
- Convert the ports tree to USES=samba

Reviewed by:	mat
Differential Revision:	https://reviews.freebsd.org/D8919
10 Jan 2017 12:08:20
Original commit files touched by this commit  4.4.8_1
Revision:431079 This port version is marked as vulnerable.
antoine search for other commits by this committer
Remove WANT_OPENLDAP_SASL from a few ports as it prevents users from easily
installing a desktop environment and samba.
WANT_OPENLDAP_SASL must not be used in invidual ports Makefiles.
Note: there is a wip to rewrite the handling of openldap in ports

With hat:	portmgr
Reviewed by:	mat
MFH:		2017Q1
Differential Revision:	https://reviews.freebsd.org/D9083
28 Dec 2016 14:03:49
Original commit files touched by this commit  4.4.8
Revision:429771 This port version is marked as vulnerable.
adamw search for other commits by this committer
Fix packaging with the DEVELOPER knob turned off.
28 Dec 2016 02:51:57
Original commit files touched by this commit  4.4.8
Revision:429692 This port version is marked as vulnerable.
timur search for other commits by this committer
* Upgrade net/samba43 and net/samba44 to address multiple vulnerabilities
* Switch port to use net/openldap24-sasl-client as some authorization methods
don't work with plain openldap24-client.
* Changed namespace used by vfs_fruit to be compatiable with net/netatalk3.
* Removed old DNS crypto patch, as it SEEMS it was superseded by recent code
changes. Please, notify me if you see that internal DNS
doesn't handle signed requests properly anymore.

Security:	CVE-2016-2123
		CVE-2016-2125
		CVE-2016-2126
28 Oct 2016 17:55:30
Original commit files touched by this commit  4.4.5_1
Revision:424875 This port version is marked as vulnerable.
danfe search for other commits by this committer
Do not redefine DEBUG_DESC when its meaning more or less matches the default
option description.  Those ports where it meant something more specific were
left untouched.
21 Oct 2016 12:51:41
Original commit files touched by this commit  4.4.5_1
Revision:424411  Sanity Test Failure This port version is marked as vulnerable.
mat search for other commits by this committer
${RM} already has -f.

PR:		213570
Submitted by:	mat
Exp-run by:	antoine
Sponsored by:	Absolight
20 Jul 2016 15:33:20
Original commit files touched by this commit  4.4.5_1
Revision:418840 This port version is marked as vulnerable.
mat search for other commits by this committer
Cleanup $() variables in ports Makefiles.

Mostly replace with ${}, but sometime, replace with $$() because it is
what was intended in the first place. (I think.)

Sponsored by:	Absolight
13 Jul 2016 13:03:00
Original commit files touched by this commit  4.4.5_1
Revision:418473 This port version is marked as vulnerable.
timur search for other commits by this committer
Fixed missed Python module requirement :(
12 Jul 2016 21:36:23
Original commit files touched by this commit  4.4.5
Revision:418448 This port version is marked as vulnerable.
timur search for other commits by this committer
Update Samba 4.2, 4.3 and 4.4 to the lates version to address CVE-2016-2119
(Client side SMB2/3 required signing can be downgraded).

Security:	CVE-2016-2119
10 May 2016 20:45:13
Original commit files touched by this commit  4.4.3_1
Revision:414962 This port version is marked as vulnerable.
timur search for other commits by this committer
Fix(?) issues with the pkg-plist
07 May 2016 00:38:28
Original commit files touched by this commit  4.4.3
Revision:414752 This port version is marked as vulnerable.
timur search for other commits by this committer
Add latest release of Samba 4.4. Port is NOT fully tested, don't use in the
production(yet). Make backups before deploying.

Number of commits found: 18

Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD

This site
What is FreshPorts?
About the authors
Issues
FAQ
How big is it?
The latest upgrade!
Privacy
Forums
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
chromiumSep 22
apache22Sep 19
apache24Sep 19
asterisk11Sep 19
asterisk13Sep 19
firefox*Sep 19
firefox*Sep 19
firefox-esr*Sep 19
firefox-esr*Sep 19
libxul*Sep 19
libxul*Sep 19
linux-firefox*Sep 19
linux-firefox*Sep 19
linux-seamonkey*Sep 19
linux-seamonkey*Sep 19

11 vulnerabilities affecting 79 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds

Statistics
Graphs
NEW Graphs (Javascript)
Traffic

Calculated hourly:
Port count 31461
Broken 113
Deprecated 74
Ignore 381
Forbidden 0
Restricted 174
No CDROM 78
Vulnerable 48
Expired 18
Set to expire 70
Interactive 0
new 24 hours 4
new 48 hours7
new 7 days138
new fortnight2849
new month4418

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD
Valid HTML, CSS, and RSS.
Copyright © 2000-2017 Dan Langille. All rights reserved.