search for: aszczykowski

...r signing = default" parameter and the "server role = standalone" parameter, will my server be vulnerable to CVE-2016-2114? Thank you. pon., 16 pa? 2023 o 16:50 Rowland Penny via samba <samba at lists.samba.org> napisa?(a): > On Mon, 16 Oct 2023 15:13:49 +0200 > Adam B?aszczykowski via samba <samba at lists.samba.org> wrote: > > > Hello, > > I'm experiencing very slow read/write performance, about 20 MB/s, on > > Samba share when I configure the "server signing" option as > > "mandatory". Once I set "server signing...

On Mon, 16 Oct 2023 15:13:49 +0200 Adam B?aszczykowski via samba <samba at lists.samba.org> wrote: > Hello, > I'm experiencing very slow read/write performance, about 20 MB/s, on > Samba share when I configure the "server signing" option as > "mandatory". Once I set "server signing" to "default&...

...to average speed about 800 MB/s. I am using Samba 4.9.4 on server with Intel Xeon CPU E5-2690 0 @ 2.90GHz (32 threads) and 10 Gbit ethernet controller. I need to set "mandatory" value for security reasons, but the performance is unacceptable. How to solve this problem ? Thank you. Adam Blaszczykowski

On Mon, 23 Oct 2023 09:54:47 +0200 Adam B?aszczykowski via samba <samba at lists.samba.org> wrote: > Hello, > I have updated my system to Debian 12 with Samba 4.17.12, but the > problem with performance still exist. > On the Samba page there is a note in the CVE-2016-2114 description: > "Note that the default for server roles...

Ok thank you. So, Is my file server with Samba 4.17.12 vulnerable to CVE-2016-2114 if it is not a DC server? To be clear, I don't use any Active Directory domain controller in my network. Best regards. Adam Blaszczykowski pon., 23 pa? 2023 o 10:20 Rowland Penny via samba <samba at lists.samba.org> napisa?(a): > On Mon, 23 Oct 2023 09:54:47 +0200 > Adam B?aszczykowski via samba <samba at lists.samba.org> wrote: > > > Hello, > > I have updated my system to Debian 12 with Samba 4.17.1...

On Mon, 23 Oct 2023 12:02:20 +0200 Adam B?aszczykowski via samba <samba at lists.samba.org> wrote: > Ok thank you. > So, Is my file server with Samba 4.17.12 vulnerable to CVE-2016-2114 > if it is not a DC server? > > To be clear, I don't use any Active Directory domain controller in my > network. Lets see if I can paraph...

...rver. Nessus CVE-2016-2114 solution: Enforce message signing in the host's configuration. On Windows, this is found in the policy setting 'Microsoft network server: Digitally sign communications (always)'. On Samba, the setting is called 'server signing'. Best regards. Adam Bllaszczykowski pon., 16 pa? 2023 o 16:50 Rowland Penny via samba <samba at lists.samba.org> napisa?(a): > On Mon, 16 Oct 2023 15:13:49 +0200 > Adam B?aszczykowski via samba <samba at lists.samba.org> wrote: > > > Hello, > > I'm experiencing very slow read/write performance,...

...3, 3] ../source3/smbd/oplock_linux.c:155(linux_set_kernel_oplock) linux_set_kernel_oplock: got kernel oplock on file ondss/New Virtual Machine/Virtual Machines/70BB2BD1-B168-4944-9EEF-A665531EC058.xml, file_id = 800d0a1944a538:113:0 gen_id = 260526076 Thank you in advance! Best Regards. Adam Blaszczykowski