Rowland Penny | 22 May 12:25 2015

Re: [PATCH] make samba-tool aware of all 7 fsmo roles

On 22/05/15 11:13, Stefan (metze) Metzmacher wrote:
> Hi Rowland,
>>  From what I have read, What seems to happen (simplistically), you run
>> 'samba-tool fsmo transfer schema' on the DC that you want to have the
>> schema fsmo role, this then causes the DC to set the attribute
>> 'becomeSchemaMaster' to '1' (not entirely sure where this is set), this
>> then causes the role owner to be changed on the DC that holds the role
>> at the moment, replication then kicks in and the new role owner is
>> replicated to any other DCs.
>> Is the above correct ?
> Yes, on the high level.
> In detail this happens:
> - becomeSchemaMaster: 1 triggers
>    rootdse_become_master() in source4/dsdb/samdb/ldb_modules/rootdse.c
> - rootdse_become_master() sends a dcerpc_drepl_takeFSMORole message
>    to our dreplsrv task
> - The dreplsrv task handles the incoming replication using
> drsuapi_DsGetNCChanges()
>    against other (source dsa) domain controllers.
> drsuapi_DsGetNCChanges() asks for
>    changed objects.
> - In the dcerpc_drepl_takeFSMORole case it triggers a
> drsuapi_DsGetNCChanges()
>    request with a special drsuapi_DsExtendedOperation (see
(Continue reading)

Richard Sharpe | 22 May 07:43 2015

Where is the source to devel page kept?

Hi folks,

I would like to update the link to the VFS documentation that is at this page:

The link should be replaced with:


Richard Sharpe

Roger Chin Garcia | 21 May 23:59 2015

samba 4 schema

Wich  attributes in default schema  can I use on samba 4 to storage particular information from my company
without add new schema


Primera Convencin Internacional de Ciencias Sociales y Ambientales
18 al 23 de mayo del 2015

Richard Sharpe | 21 May 23:00 2015

The Samba web page needs some fixing up

Hi folks,

Where it mentions the VFS at the
link should be changed to:


Richard Sharpe

Dr. Hansjoerg Maurer | 21 May 16:09 2015

AW: [Release Planning 4.2] Samba 4.2.2 on May 27

> Hi,
> On Mon, Apr 20, 2015 at 09:53:26PM +0200, Karolin Seeger wrote:
> > Samba 4.2.2 will be shipped on Wednesday, May 27.

is there a chance  to get a fix for

" "force user" problem with security = ADS after upgrade from 4.1.16 to 4.2.0RC4 "




Unser System ist mit einem Mailverschluesselungs-Gateway ausgestattet. Wenn Sie moechten, dass an Sie
gerichtete E-Mails verschluesselt werden, senden Sie einfach eine S/MIME-signierte E-Mail oder Ihren
PGP Public Key an hansjoerg.maurer <at>

Our system is equipped with an email encryption gateway. If you want email sent to you to be encrypted please
send a S/MIME signed email or your PGP public key to hansjoerg.maurer <at>

Attachment (smime.p7s): application/x-pkcs7-signature, 9 KiB
(Continue reading)

Karolin Seeger | 21 May 15:12 2015

[Patch] Fix typo in comment


please feel free to review/push.





VigneshDhanraj G | 21 May 12:16 2015

Fwd: Reg:SMB1.0 disabled in 2012

sorry forget to add technical team
---------- Forwarded message ----------
From: VigneshDhanraj G <vigneshdhanraj.g <at>>
Date: Thu, May 21, 2015 at 3:40 PM
Subject: Re: Reg:SMB1.0 disabled in 2012
To: Alejandro <aescanero <at>>

Hi Alejandro,

Thanks for the update.

But i don't want to enable smb1.0 in windows 2012 R2. My client Support
SMB2.0 and windows 2012 also support SMB2.0 why it is necessary to Enable
SMB1.0 in windows 2012 R2.

Vigneshdhanraj G

On Thu, May 21, 2015 at 3:24 PM, Alejandro <aescanero <at>> wrote:

> You must do some changes:
> in Windows Server 2012 to make SMB1.0 negotiate by default.
> Regards
> 2015-05-21 8:23 GMT+02:00 VigneshDhanraj G <vigneshdhanraj.g <at>>:
>> Hi,
(Continue reading)

Nadezhda Ivanova | 21 May 11:45 2015

[PATCH] s4-openldap:Fixed a crash when provisioning with openldap backend

A revised version of the patch according to Andrew's comments.
idra | 21 May 10:01 2015

Properly constrain use of nonces with AEAD crypto

The current AEAD crypto primitives we have access to and use (AES-128-CCM and
AES-128-GCM) have a very annoying failure mode if a nonce is ever reused with
the same key.
The attached patch adds checks to avoid ever wrapping and resusing a nonce.

It passes a custom autobuild.

Please review and push.


Simo Sorce       idra <at>
Samba Team
VigneshDhanraj G | 21 May 08:23 2015

Reg:SMB1.0 disabled in 2012


I face issue when connecting to the AD if SMB1.0 is disabled in windows
2012 R2.

I found windows 2012 R2 server not supporting SMB1.0 Then why it is
necessary to be enabled. I am using samba 4.0.25.

I found Negotiating using SMB1.0 first, if it is disabled it throws error.
In 260 Negotiate Request dialects  not at all showing SMB2. 002 it shows
till NT LM 0.12. After sometime it uses 282 Negotiate Request, In that it
shows SMB2. 002 and start communication using SMB2.0.

Is anything open issue Regarding this?


Vigneshdhanraj G

Albert Chin | 20 May 20:55 2015

Problems locating -lintl in 4.2.1 on HP-UX/IA

I am trying to build 4.2.1 on HP-UX 11.23/IA. I replaced
buildtools/wafsamba/ to use the HP C compiler. When running
python buildtools/bin/waf configure, it cannot find the 'intl' gettext
library. The reason for this is that even though I pass:
  CC=cc CFLAGS="+O2" CPPFLAGS="-I/opt/TWWfsw/gettext018/include \
  -I/opt/TWWfsw/libz12/include" \
  LDFLAGS="-L/opt/TWWfsw/gettext018/lib \
  /opt/TWWfsw/python27/lib/python2.7/config" \
  PKG_CONFIG_PATH="/opt/TWWfsw/libz12/lib/pkgconfig" \
  /opt/TWWfsw/python27/bin/python buildtools/bin/waf configure \
  --with-gettext=/opt/TWWfsw/gettext018 \
the command-line to locate the gettext -lintl library is incorrect.
From bin/config.log:
  Checking for library intl

  int main() {
          return 0;

  [1/2] Compiling test.c
  ['cc', '+O2', '-I/opt/TWWfsw/libiconv113/include', '-I/opt/TWWfsw/gettext018/include',
'-I/opt/TWWfsw/libz12/include', '-D_SAMBA_BUILD_=4', '-DHAVE_CONFIG_H=1', '-D_GNU_SOURCE=1',
'-D_XOPEN_SOURCE_EXTENDED=1', '../test.c', '-c', '-o', 'default/test_1.o']
  [2/2] Linking default/testprog
  ld: Can't find library for -lintl
(Continue reading)