similar to: [Announce] Samba 4.15.5, 4.14.12, 4.13.17 Security Releases are available for Download

Release Announcements ===================== This is the second release candidate of Samba 4.16.? This is *not* intended for production environments and is designed for testing purposes only.? Please report any defects via the Samba bug reporting system at https://bugzilla.samba.org/. Samba 4.16 will be the next version of the Samba suite. UPGRADING ========= NEW FEATURES/CHANGES

Release Announcements ===================== This is the second release candidate of Samba 4.16.? This is *not* intended for production environments and is designed for testing purposes only.? Please report any defects via the Samba bug reporting system at https://bugzilla.samba.org/. Samba 4.16 will be the next version of the Samba suite. UPGRADING ========= NEW FEATURES/CHANGES

Release Announcements --------------------- This is the first stable release of the Samba 4.16 release series. Please read the release notes carefully before upgrading. NEW FEATURES/CHANGES ==================== New samba-dcerpcd binary to provide DCERPC in the member server setup --------------------------------------------------------------------- In order to make it much easier to break out

Release Announcements --------------------- This is the first stable release of the Samba 4.16 release series. Please read the release notes carefully before upgrading. NEW FEATURES/CHANGES ==================== New samba-dcerpcd binary to provide DCERPC in the member server setup --------------------------------------------------------------------- In order to make it much easier to break out

Release Announcements ===================== This is the third release candidate of Samba 4.16.? This is *not* intended for production environments and is designed for testing purposes only.? Please report any defects via the Samba bug reporting system at https://bugzilla.samba.org/. Samba 4.16 will be the next version of the Samba suite. UPGRADING ========= NEW FEATURES/CHANGES

Release Announcements ===================== This is the third release candidate of Samba 4.16.? This is *not* intended for production environments and is designed for testing purposes only.? Please report any defects via the Samba bug reporting system at https://bugzilla.samba.org/. Samba 4.16 will be the next version of the Samba suite. UPGRADING ========= NEW FEATURES/CHANGES

Release Announcements ===================== This is the fifth release candidate of Samba 4.16.? This is *not* intended for production environments and is designed for testing purposes only.? Please report any defects via the Samba bug reporting system at https://bugzilla.samba.org/. Samba 4.16 will be the next version of the Samba suite. UPGRADING ========= NEW FEATURES/CHANGES

Release Announcements ===================== This is the fifth release candidate of Samba 4.16.? This is *not* intended for production environments and is designed for testing purposes only.? Please report any defects via the Samba bug reporting system at https://bugzilla.samba.org/. Samba 4.16 will be the next version of the Samba suite. UPGRADING ========= NEW FEATURES/CHANGES

Release Announcements ===================== This is the fourth release candidate of Samba 4.16.? This is *not* intended for production environments and is designed for testing purposes only.? Please report any defects via the Samba bug reporting system at https://bugzilla.samba.org/. Samba 4.16 will be the next version of the Samba suite. UPGRADING ========= NEW FEATURES/CHANGES

Release Announcements ===================== This is the fourth release candidate of Samba 4.16.? This is *not* intended for production environments and is designed for testing purposes only.? Please report any defects via the Samba bug reporting system at https://bugzilla.samba.org/. Samba 4.16 will be the next version of the Samba suite. UPGRADING ========= NEW FEATURES/CHANGES

Hi everyone, I've posted some updated source and binary rpms following the release of updates by the samba project. Updated rpms include samba-4.10.6 and ldb-1.5.5. Here are the links: - http://nova.polymtl.ca/~coyote/dist/samba/samba-4.10.6/RHEL7 As usual, these work fine for me (4.10.6) but YMMV. Please do report issues if you find some. Regards, Vincent

Adding Alexander (cc'ed, thank you) Hi Sergio, I found some hints (dating back almost a year ago) about why gnutls-3.4 might be needed: https://lists.samba.org/archive/samba-technical/2018-April/127282.html I don't know how much of this still holds true (I've been running an AD DC with rhel7's gnutls 3.3.z for over a year without apparent issues). Regards, Vincent On Mon, 8

Thanks Michael for doing this, I've used your patch ( fix-unsupported-netr_LogonGetCapabilities-l2.patch ) to also update my RHEL8 packages for 4.17.9 ( [1] ). With this patch of yours and these rpms the trusted connection shows up as 'Good' as it was previously. As usual, if anyone's interested in providing feedback for these rpms, I'll gladly take it. [1]:

14.07.2023 22:20, Vincent S. Cojot via samba wrote: > > Thanks Michael for doing this, > > I've used your patch ( fix-unsupported-netr_LogonGetCapabilities-l2.patch ) to also update my RHEL8 packages for 4.17.9 ( [1] ). Correction. This is not my patch, this is a patch by Stefan Metzmacher (and I kept his name in there in this file), which is available at the samba bug about

Ok Thank you Andrew So I assume it is reasonable to install all packages listed for the CentOS8 in a CentOS7 server , I already have EPEL repo configured. Our Samba 4.9 AD DC is source compiled and I would like to upgrade by compiling and installing 4.10 . So my other question is : is it possible to have python3 and python2 live together on the same server ? Thanks Le mar. 31 mars 2020 ?

Release Announcements --------------------- This are security releases in order to address the following defects: o CVE-2022-37966: This is the Samba CVE for the Windows Kerberos ????????????????? RC4-HMAC Elevation of Privilege Vulnerability ????????????????? disclosed by Microsoft on Nov 8 2022. ????????????????? A Samba Active Directory DC will issue weak rc4-hmac ?????????????????

Release Announcements --------------------- This are security releases in order to address the following defects: o CVE-2022-37966: This is the Samba CVE for the Windows Kerberos ????????????????? RC4-HMAC Elevation of Privilege Vulnerability ????????????????? disclosed by Microsoft on Nov 8 2022. ????????????????? A Samba Active Directory DC will issue weak rc4-hmac ?????????????????

Release Announcements --------------------- These are security releases in order to address the following defects: o CVE-2016-2124: SMB1 client connections can be downgraded to plaintext authentication. https://www.samba.org/samba/security/CVE-2016-2124.html o CVE-2020-25717: A user on the domain can become root on domain members.

Release Announcements --------------------- These are security releases in order to address the following defects: o CVE-2016-2124: SMB1 client connections can be downgraded to plaintext authentication. https://www.samba.org/samba/security/CVE-2016-2124.html o CVE-2020-25717: A user on the domain can become root on domain members.

Hi Nico, Glad to hear you're feeling better. So now we've got several builds of samba-4.10.x for centos7/rhel7: - Your 4.10.2 build (requires python36 from EPEL but is more future-proof) - Sergio's (don't know the details on those). - My modest builds (based on python2.7 and which don't require addons). As much as I agree that doing anything python2 these days in pretty much