1config CIFS 2 tristate "CIFS support (advanced network filesystem, SMBFS successor)" 3 depends on INET 4 select NLS 5 help 6 This is the client VFS module for the Common Internet File System 7 (CIFS) protocol which is the successor to the Server Message Block 8 (SMB) protocol, the native file sharing mechanism for most early 9 PC operating systems. The CIFS protocol is fully supported by 10 file servers such as Windows 2000 (including Windows 2003, NT 4 11 and Windows XP) as well by Samba (which provides excellent CIFS 12 server support for Linux and many other operating systems). Limited 13 support for OS/2 and Windows ME and similar servers is provided as 14 well. 15 16 The cifs module provides an advanced network file system 17 client for mounting to CIFS compliant servers. It includes 18 support for DFS (hierarchical name space), secure per-user 19 session establishment via Kerberos or NTLM or NTLMv2, 20 safe distributed caching (oplock), optional packet 21 signing, Unicode and other internationalization improvements. 22 If you need to mount to Samba or Windows from this machine, say Y. 23 24config CIFS_STATS 25 bool "CIFS statistics" 26 depends on CIFS 27 help 28 Enabling this option will cause statistics for each server share 29 mounted by the cifs client to be displayed in /proc/fs/cifs/Stats 30 31config CIFS_STATS2 32 bool "Extended statistics" 33 depends on CIFS_STATS 34 help 35 Enabling this option will allow more detailed statistics on SMB 36 request timing to be displayed in /proc/fs/cifs/DebugData and also 37 allow optional logging of slow responses to dmesg (depending on the 38 value of /proc/fs/cifs/cifsFYI, see fs/cifs/README for more details). 39 These additional statistics may have a minor effect on performance 40 and memory utilization. 41 42 Unless you are a developer or are doing network performance analysis 43 or tuning, say N. 44 45config CIFS_WEAK_PW_HASH 46 bool "Support legacy servers which use weaker LANMAN security" 47 depends on CIFS 48 help 49 Modern CIFS servers including Samba and most Windows versions 50 (since 1997) support stronger NTLM (and even NTLMv2 and Kerberos) 51 security mechanisms. These hash the password more securely 52 than the mechanisms used in the older LANMAN version of the 53 SMB protocol but LANMAN based authentication is needed to 54 establish sessions with some old SMB servers. 55 56 Enabling this option allows the cifs module to mount to older 57 LANMAN based servers such as OS/2 and Windows 95, but such 58 mounts may be less secure than mounts using NTLM or more recent 59 security mechanisms if you are on a public network. Unless you 60 have a need to access old SMB servers (and are on a private 61 network) you probably want to say N. Even if this support 62 is enabled in the kernel build, LANMAN authentication will not be 63 used automatically. At runtime LANMAN mounts are disabled but 64 can be set to required (or optional) either in 65 /proc/fs/cifs (see fs/cifs/README for more detail) or via an 66 option on the mount command. This support is disabled by 67 default in order to reduce the possibility of a downgrade 68 attack. 69 70 If unsure, say N. 71 72config CIFS_UPCALL 73 bool "Kerberos/SPNEGO advanced session setup" 74 depends on CIFS && KEYS 75 help 76 Enables an upcall mechanism for CIFS which accesses 77 userspace helper utilities to provide SPNEGO packaged (RFC 4178) 78 Kerberos tickets which are needed to mount to certain secure servers 79 (for which more secure Kerberos authentication is required). If 80 unsure, say N. 81 82config CIFS_XATTR 83 bool "CIFS extended attributes" 84 depends on CIFS 85 help 86 Extended attributes are name:value pairs associated with inodes by 87 the kernel or by users (see the attr(5) manual page, or visit 88 <http://acl.bestbits.at/> for details). CIFS maps the name of 89 extended attributes beginning with the user namespace prefix 90 to SMB/CIFS EAs. EAs are stored on Windows servers without the 91 user namespace prefix, but their names are seen by Linux cifs clients 92 prefaced by the user namespace prefix. The system namespace 93 (used by some filesystems to store ACLs) is not supported at 94 this time. 95 96 If unsure, say N. 97 98config CIFS_POSIX 99 bool "CIFS POSIX Extensions" 100 depends on CIFS_XATTR 101 help 102 Enabling this option will cause the cifs client to attempt to 103 negotiate a newer dialect with servers, such as Samba 3.0.5 104 or later, that optionally can handle more POSIX like (rather 105 than Windows like) file behavior. It also enables 106 support for POSIX ACLs (getfacl and setfacl) to servers 107 (such as Samba 3.10 and later) which can negotiate 108 CIFS POSIX ACL support. If unsure, say N. 109 110config CIFS_DEBUG2 111 bool "Enable additional CIFS debugging routines" 112 depends on CIFS 113 help 114 Enabling this option adds a few more debugging routines 115 to the cifs code which slightly increases the size of 116 the cifs module and can cause additional logging of debug 117 messages in some error paths, slowing performance. This 118 option can be turned off unless you are debugging 119 cifs problems. If unsure, say N. 120 121config CIFS_EXPERIMENTAL 122 bool "CIFS Experimental Features (EXPERIMENTAL)" 123 depends on CIFS && EXPERIMENTAL 124 help 125 Enables cifs features under testing. These features are 126 experimental and currently include DFS support and directory 127 change notification ie fcntl(F_DNOTIFY), as well as the upcall 128 mechanism which will be used for Kerberos session negotiation 129 and uid remapping. Some of these features also may depend on 130 setting a value of 1 to the pseudo-file /proc/fs/cifs/Experimental 131 (which is disabled by default). See the file fs/cifs/README 132 for more details. If unsure, say N. 133 134config CIFS_DFS_UPCALL 135 bool "DFS feature support (EXPERIMENTAL)" 136 depends on CIFS_EXPERIMENTAL 137 depends on KEYS 138 help 139 Enables an upcall mechanism for CIFS which contacts userspace 140 helper utilities to provide server name resolution (host names to 141 IP addresses) which is needed for implicit mounts of DFS junction 142 points. If unsure, say N. 143