From ea2ec7ea5e891f662278dc0fae9f87b426196f2e Mon Sep 17 00:00:00 2001 From: Jeremy Allison Date: Thu, 30 Sep 2021 16:05:49 -0700 Subject: [PATCH] WHATSNEW. Added section about samba-dcerpcd. Signed-off-by: Jeremy Allison Reviewed-by: Volker Lendecke Reviewed-by: Stefan Metzmacher Autobuild-User(master): Volker Lendecke Autobuild-Date(master): Fri Dec 10 14:52:54 UTC 2021 on sn-devel-184 --- WHATSNEW.txt | 40 +++++++++++++++++++++++++++++++++++++++- 1 file changed, 39 insertions(+), 1 deletion(-) diff --git a/WHATSNEW.txt b/WHATSNEW.txt index 4271539e703..c82fa5079ce 100644 --- a/WHATSNEW.txt +++ b/WHATSNEW.txt @@ -16,6 +16,42 @@ UPGRADING NEW FEATURES/CHANGES ==================== +New samba-dcerpcd binary to provide DCERPC in the member server setup +--------------------------------------------------------------------- + +In order to make it much easier to break out the DCERPC services +from smbd, a new samba-dcerpcd binary has been created. + +samba-dcerpcd can be used in two ways. In the normal case without +startup script modification it is invoked on demand from smbd or +winbind --np-helper to serve DCERPC over named pipes. Note that +in order to run in this mode the smb.conf [global] section has +a new parameter "rpc start on demand helpers = [true|false]". +This parameter is set to "true" by default, meaning no changes to +smb.conf files are needed to run samba-dcerpcd on demand as a named +pipe helper. + +It can also be used in a standalone mode where it is started +separately from smbd or winbind but this requires changes to system +startup scripts, and in addition a change to smb.conf, setting the new +[global] parameter "rpc start on demand helpers = false". If "rpc +start on demand helpers" is not set to false, samba-dcerpcd will +refuse to start in standalone mode. + +Note that when Samba is run in the Active Directory Domain Controller +mode the samba binary that provides the AD code will still provide its +normal DCERPC services whilst allowing samba-dcerpcd to provide +services like SRVSVC in the same way that smbd used to in this +configuration. + +The parameters that allowed some smbd-hosted services to be started +externally are now gone (detailed below) as this is now the default +setting. + +samba-dcerpcd can also be useful for use outside of the Samba +framework, for example, use with the Linux kernel SMB2 server ksmbd or +possibly other SMB2 server implementations. + Certificate Auto Enrollment --------------------------- @@ -75,7 +111,9 @@ smb.conf changes -------------- ----------- ------- kernel share modes New default No dns forwarder Changed - + rpc_daemon Removed + rpc_server Removed + rpc start on demand helpers Added true KNOWN ISSUES ============ -- 2.34.1