FreeNAS-8.0.4-RELEASE-p1 Released to Include New Version of Samba with Security Fixes.
A new version of Samaba, the open source implementation of the SMB/CIFS networking protocol that enables file and print sharing between FreeNAS and Windows, has been released to fix a nine year old security vulnerability that allows remote code execution as the “root” user from an anonymous connection.
FreeNAS-8.0.4-RELEASE-p1 has been released with Samba 3.6.4 to addresses this critical security flaw.
Bugfixes
- Samba has been upgraded to 3.6.4 to address CVE-2012-1182 which is a critical vulnerability. All FreeNAS users who are using CIFS are urged to upgrade.
- Create the ldap and nss secret files when LDAP integration is enabled.
- Ensure the configuration database is not world readable.
- Remove failsafe from the PAM group file, this prevents a situation where the wheel group being empty allowed any user to su to root.
8.0.4-RELEASE-p1 also contains a GUI enhancement where selecting reboot now causes the screen to turn red during the confirmation dialog, adding emphasis to the fact that this operation will affect availability.
FreeNAS-8.0.4-RELEASE-p1 is now available for immediate download from: https://sourceforge.net/
This update is critical for anyone using FreeNAS with CIFS.
The flash drive with the FreeNAS 8.0 installation just crashed few days ago.
.
By reason of lacking of any saved config files I was deeply concerned about my RAIDZ volume where is located wife’s web site. She will kill me if something go wrong with her site.
I installed a 8.0.4-RELEASE-p1 , made the config properly and connected the hard drives where is my RAIDZ located . With a crouched heart and treble hand I hit the big button named “import volume”
Voila ! My old volume was imported flawlessly and now working like a charm .
Big thanks to guys behind Freenas,clearly they’re heading in a the right direction,so much improvements in GUI and bug fixes from v 8.0!