SerNet News

sambaXP: Listen to the 2015 recordings - and save the date for 2016

[Translate to EN:] Logo sambaXP

Recordings and slides of the sambaXP 2015 talks are now available at In addition there's a date set for the sambaXP 2016 and the Call for Papers already started. 

The 14th Samba eXPerience took place from May 19th - 22nd 2015 and SerNet GmbH once again was proud to host it in Goettingen (see article). Samba developers and users from all around the world gathered and put together a divers program with talks like Volker Lendeckes "The past, present and future of Samba messaging" (Audio / Slides) or "Using Samba libraries outside Samba" from Jakub Hrozek (Audio / Slides) - both are now ready to listen to. 

Save the date: sambaXP 2016

While we finished postprocessing the sambaXP 2015, we also started planning the sambaXP 2016. And we already got a date for you to look forward to: May 10th - 12th 2016 is marked in our calendar for the 15th samba eXPerience. We also started the Call for Papers: Until February 28th 2016 we are looking for contributions to the sambaXP 2016. Details and paper registration:

Events SAMBA SerNet SerNet SAMBA Events 2015

New EnterpriseSAMBA 4.1.19 packages

SerNets Samba team just released the <link http: _blank external-link-new-window>EnterpriseSAMBA packages in version 4.1.19 They are available for various SUSE and RedHat platforms as well as for Debian GNU/Linux and Ubuntu. 

The packages are accessible at the <link https: the enterprisesamba>EnterpriseSAMBA Portal. They address a lot of issues, which are listed in the <link http: samba history samba-4.1.19.html release>Samba release history. 

Please note that you no longer need to register to be able to access the packages. To access the download server you just need to login with your username and accesskey or the new public user shown at the portal.

SerNet SAMBA 2015 SAMBA SerNet

Updated: EnterpriseSAMBA 4.2.2

A new set of SerNets EnterpriseSAMBA 4.2.2 packages has just been released. Packages for various SUSE and RedHat platforms as well as for Debian GNU/Linux and Ubuntu are available at:

The new packages are also available for Debian 8 Jessie, now.

In addition to the last SerNet Samba 4.2.2 release these packages address issues listed in the News section at

Please note that you no longer need to register at the EnterpriseSAMBA-Portal to be able to access the packages. To access the download server you just need to login with your username and accesskey or the new public user as shown.

SAMBA SerNet SerNet SAMBA 2015

verinice 1.10 is here

verinice Logo

The <link internal-link internal link in current>verinice.TEAM at SerNet GmbH has published verinice 1.10. The new version of the open source tool to support an information security management system (ISMS) brings along some innovations. These include the IT Baseline Protection Manual of the BSI in English and the new edition of the VDA IS-Assessment in version 2.x. The server version verinice.PRO received some new features, too: Single sign-on with Active Directory, an improved import of persons from the AD in verinice and an optimized task view for a better distribution of work in teams. All new features are described in the <link http: en verinice-support release-notes _blank external-link-new-window verinice release>release notes.

With version 1.10 the full text of the <link https: de themen itgrundschutz itgrundschutzinternational itgrundschutzinternational_node.html external-link-new-window it baseline protection catalog in english>IT Baseline Protection Catalogs of the Federal Office for Security in Information Technology (BSI) in English is included in verinice for the first time. This simplifies working with the IT Baseline Protection in international teams. Advantages also arise for users applying ISO 27001:2013. "For them, the comprehensive compilation of risks and controls is of significant benefit," says Alexander Koderman, verinice team lead at SerNet. The (English) Baseline Protection Catalogs could be considered as a supplementary database on specific topics like Windows or SAP and could be used in a risk assessment or risk treatment. All risks can be implemented as scenarios in an individual risk analysis. Simply drag-n-drop any or all components into the risk model. Koderman: "Modeling specific scenario may be easier for everyone operating mainly in English, from small businesses up to multinational corporations." In addition the more than 1,500 basic controls can be put to use for risk treatment. As specific controls, they supplement the generic requirements of ISO / IEC 27002:2013. The controls are easy to drag-n-drop in the ISM-risk model as well.

The English IT Baseline Protection Catalogs correspond to the 13th catalog update version from the BSI. Koderman: "Special thanks go out to our verinice.PARTNER Alexander von Ossowski for assistance with including more than 4,200 pages or 240,000 comprehensive lines into verinice." This cooperation illustrates how the  verinice partner program enriches the project in the long term.

verinice 1.10 also supports the new edition of the IS-assessment catalog of the German Association of the Automotive Industry (VDA) in its version 2.x - thus the novelty of last year will be continued systematically. Among other things, the method of calculating the averages and the "Total Security Figure" was adjusted. The consolidator for the transition to the new version has been improved again. Daniel Murygin, verinice development manager, promises: "This allows data and results that were established by the Standard 1.x, to be easily transferred." The questionnaire is interesting for users outside of the automotive sector, as it allows a guided self-assessment of the state of information security within the company and thus a first insight into the subject of information security management.

Other major changes include the server and multi-user version verinice.PRO. On Windows clients, it now supports single sign-on: the logged-in system user is automatically used to log on to the verinice.PRO Server. It is not required to re-enter the username and password anymore. At the same time, the import from an Active Directory to verinice has been improved. The optimized task view also simplifies working in teams: Tasks are now loaded not only faster - a new search form enables you to find specific tasks that can be sorted by group, person, process, task type, start and end date.

The next version - verinice 1.11 - is likely to appear in two months already. The major new feature to be expected: An indexed full text search of all the elements in the database. "We'd like to make this feature available to all users as soon as possible," concludes Murygin.

verinice SerNet 2015 SerNet

Enterprise Samba 4.2.2

[Translate to EN:] Enterprise Samba Logo

SerNets Enterprise Samba 4.2.2 is available for download. Packages for various SUSE and RedHat platforms as well as for Debian GNU/Linux and Ubuntu are available at:

These packages address a lot of issues, which are listed here.

Please note that you need to register on the EnterpriseSAMBA-Portal to be able to access the packages. To visit the URL mentioned above directly, you need to login with your username and accesskey (not password).

SAMBA SerNet SerNet SAMBA 2015