Please add UFW profile integration with Samba

Updating debdiff, i forgot to add a line on changelog.

Thanks for the debdiff Nicolas. This had an unrelated change, and had to be redone as ubuntu5 was uploaded. Also, the profile should be in the samba package, not samba-common. Updated accordingly and will post a new debdiff soon.

Updated debdiff attached

This bug was fixed in the package samba - 2:3.2.3-1ubuntu1

---------------
samba (2:3.2.3-1ubuntu1) intrepid; urgency=low

  * Merge from debian unstable, remaining changes:
    - debian/patches/VERSION.patch:
      + set SAMBA_VERSION_SUFFIX to Ubuntu.
    - debian/smb.conf:
      + add "(Samba, Ubuntu)" to server string.
      + comment on the default [homes] shares, and add a comment about "valid user = %s"
        to show users how to restrict access to \\server\username to only username.
      + add map to guest = Bad user, maps bad username to guest access. (LP: #32067)
    - debian/samba-common.postinst:
      + Fix upgrade from a first installation done with feisty, edgy, or dapper.
       (LP: #201059)
      + When populating the new sambashare group, it's not an error if the user
        simply doesn't exist; test for this case and the install continue instead
        of aborting. (LP: #206036)
    - debian/samba-common.config:
      + do not change priority to HIGH if dhclient3 is installed.
      + use priority medium instead of HIGH for the workgroup question.
    - debian/winbind.files:
      + include additional files
    - debian/mksambapasswd.awk:
      + Don't add user with UID less than 1000 to smbpasswd.
    - debian/control:
      + Depend on lsb-base >= 3.2-14, which has the status_of_proc() function.
      + Make libpam-smbpass depend on libpam-runtime for allowing libpam-smbpasss
        to auto-configure itself.
    - debian/samba.init:
      + Replace the previous 'status' gathering mechanism with the common one
        now provided by status_of_proc() (LP: #247087).
    - debian/winbind.init:
      + Add a pid variable and a 'status' action.
    - debian/libpam-smbpass.pam-config, debian/libpam-smbpass.postinst,
      debian/libpam-smbpass.files, debian/rules: provide a config block for the
      new PAM framework, allowing his PAM module to auto-configure itself.
    - debian/libpam-smbpass.prerm: call pam-auth-update --remove on removal,
      to clean up after ourselves.
    - debian/rules: enable "native" PIE hardening.

  [Jamie Strandboge]
  * Add ufw integration (thanks Nicolas Valcárcel) (LP: #261544)
    - Created debian/samba.ufw.profile
    - debian/rules: install profile
    - debian/control: have samba Suggests ufw

samba (2:3.2.3-1) unstable; urgency=high

  * High-urgency upload for security fix
  * New upstream release
    - Fix "/usr/lib/cups/backend/smb does not try port 139 anymore by default"
      Closes: #491881
    - Fix the default permissions on ldb databases. Addresses
      CVE-2008-3789; closes: #496073.
    - debian/rules, debian/smbfs.files: build with cifs.upcall,
      newly introduced to replace cifs.spnego
    - debian/rules: no more need to rename libsmbclient.so to
      libsmbclient.so.0, or libwbclient.so to libwbclient.so.0

  [ Noèl Köthe ]
  * fixing lintian warning "build-depends-on-1-revision"

 -- Chuck Short <email address hidden> Wed, 27 Aug 2008 23:57:11 +0100