+Since 1.3.66:
+ * PTS registration of new users to foreign cells has been added to
+ aklog.exe
+
+ * Additional Cache Control and Credential Manager options have been
+ added to the WiX installer. See deployment guide for details.
+
+ * The CachePath setting is now optionally a REG_EXPAND_SZ type
+
+ * The WiX installer has been upgraded. Version 2.0.1927.1 is now
+ required.
+
+ * The loopback installation code may have had a problem updating the
+ %ETC%\HOSTS file which could have resulted in a premature failure.
+ Work around code has been added for the case where the file cannot
+ be deleted.
+
+ * The default max chunksize was increased from 15 (32K) to 17 (128K)
+ because Windows sends 64K blocks when using overlapped writes.
+
+ * The default number of server threads was increased from 4 to 25 to
+ better handle overlapped writes.
+
+ * The "AfscredsShortcutParams" registry value was not being properly
+ loaded by afscreds.exe. Therefore, the default value was always being
+ used instead of the value set by the installer.
+
+ * Windows XP provides downgrade attack detection to prevent an attacker
+ from being able to force the use of NTLM simply by disrupting
+ communication with the KDC. This attack cannot exist between the
+ Windows CIFS client and the AFS Client Service. Therefore, when a
+ downgrade has been detected the afs pioctl library will force the
+ establishment of a new CIFS connection using NTLM.
+
+ * A locking error was discovered surrounding all references to volume
+ server lists within the cm_cell.c source file.
+
+ * The logged into Windows username was incorrect on Terminal Server
+ machines.
+
+ * A new registry value "NonPersistentCaching" was added to the service
+ parameters key. When set to a non-zero value, the afs cache is stored
+ in the Windows paging file. There are two limitations to choosing
+ this option:
+ 1. when persistent caching is implemented it won't work with
+ this flag set since there will be nothing to persist.
+ 2. with this flag set the initial paging allocation cannot be
+ changed while the service is running
+
+ * An initialization bug was discovered in aklog.exe which affected users
+ who have a domain name for their afs servers which could not be mapped
+ to a realm
+
Since 1.3.65:
* afs_config.exe now validates cell names against DNS in addition
to the CellServDB file.
-Z = unmap drives
autoinit will result in automated attempts to acquire AFS tokens when
-afscreds.exe is started. When used in combination with ip address change
-detection, afscreds.exe will attempt to acquire AFS tokens whenever a new IP
-address is added to the system.
+afscreds.exe is started. afscreds.exe will attempt to utilize tickets stored
+in the MSLSA credentials cache; any existing CCAPI credentials cache; and
+finally display an Obtain Tokens dialog to the user. When used in combination
+with ip address change detection, afscreds.exe will attempt to acquire AFS
+tokens whenever a new IP address is added to the system.
The renew drive maps option is used to ensure that the user drive maps
-constructs via the AFS tools (not NET USE) are re-constructed at afscreds.exe
+constructed via the AFS tools (not NET USE) are re-constructed at afscreds.exe
start time.
By default afscreds.exe is configured by the OpenAFS.org installers to use -A
--N -M as startup options. Currently, there is no UI to change this selection
+-N -M -Q as startup options. Currently, there is no UI to change this selection
after install time although these options may be set via the registry either
-per machine or per user.
+per machine or per user. See AfscredsShortcutParams in registry.txt.
+
8. Some attempts in the 1.3.65 release have been made to restrict the behavior
of users with regards to their ability to alter the state of the AFS Client
written back to the network. It is therefore unsafe to release the user's
tokens.
+23. Terminal Server installations.
+When installing under Terminal Server, you must execute the installer
+from within the Add/Remove Programs Control Panel. Failure to do so
+will result in AFS not running properly. The AFS Server should not
+be installed on a machine with Terminal Server installed.
+
------------------------------------------------------------------------
Reporting Bugs:
conflicts; and there is no attempt to cleanly shutdown the service which causes
problems when restarting and prevents the implementation of a persistent cache
3. Implement a persistent cache
- 4. Prevent panic situation when the root.afs volume is not reachable
+ 4. Prevent panic situation when the root.afs volume is not reachable and
+ the AFS Client Server is not using Freelance mode
5. Prevent panic situation when the IP address to which the SMB server is bound is removed
from the local machine's network configuration
6. Identify and fix the problems with running the RX library on Hyperthreaded systems
3. force share names to be no longer than 13 characters
4. restrict authentication to ASCII only names and passwords
19. Complete implementation of CIFS Remote Administration Protocol
- 20. Identify and correct the problems with Microsoft Office applications
+ 20. Correct the problems with overlapped writes which adversely affect
+ Microsoft Office applications storing documents and temporary files
+ within AFS volumes
+ 21. Development of afsmap.exe tool to provide AFS aware NET USE functionality
+ afsmap.exe <drive> <afs-path> [/PERSISTENT]
+ afsmap.exe <drive> <unc-path> [/PERSISTENT]
+ afsmap.exe <drive> /DELETE
This value used to be stored at
[HKLM\Software\TransarcCorporation\AFS Client\AfsCreds].
+ The current user value is checked first; if it does not exist the local
+ machine value is checked.
+
+
Value : EnableKFW
Type : DWORD {0, 1}
Default : 1
When MIT Kerberos for Windows can be loaded, Kerberos 5 will be used
to obtain AFS credentials. By setting this value to 0, the internal
- Kerberos 4 implementation will be used instead.
+ Kerberos 4 implementation will be used instead. The current user value
+ is checked first; if it does not exist the local machine value is checked.
Value : AfscredsShortcutParams
Type : REG_SZ
Function: Shortcut_FixStartup
This value specifies the command line options which should be set
- as part of the shortcut to afscreds.exe.
+ as part of the shortcut to afscreds.exe. afscreds.exe rewrites the
+ shortcut each time it exits so as to ensure that the shortcut points
+ to the latest version of the program. This value is used to determine
+ which values should be used for command line parameters. The current
+ user value is checked first; if it does not exist the local machine
+ value is checked.
Regkey: