OpenSSL "Heartbleed" Vulnerability Update:
On April 7th, the OpenSSL project released an update to address a serious security vulnerability nicknamed "Heartbleed". This vulnerability impacts the encryption used for internet communications and could allow access to decrypted HTTPS traffic.
Cerberus FTP Server version 6.0 through 6.0.7 uses the vulnerable OpenSSL library for encryption and is susceptible to the "Heartbleed" exploit. We've updated version 18.104.22.168 to use the fixed OpenSSL library.
If you are using version 6.0 or higher, please upgrade immediately.
|Forward to Introduction|
- What are the basic steps to configure Cerberus FTP Server so Internet users can see my server?
- Why can't I assign a directory to the root directory?
- My IP address begins with 192.168.xxx.xxx. Is there anything special I have to do for people to see my FTP Server on the Internet?
- What is the difference between Active and Passive FTP mode?
- How do I configure LDAP authentication?
- How can I configure the server to allow unencrypted FTP connections?
- Why doesn't my old license key work with the latest version of Cerberus FTP Server?
- I am using Cerberus FTP Server for personal use. Why does the "UNREGISTERED" text appear in the welcome message?
- Does Cerberus FTP Server support TLS/SSL encryption?
- How do I pass a username and password to the FTP server from a web browser?
- How do I configure Cerberus FTP Server to run as a service?
- How can a client change their login password remotely?
- What IP address should I give other people to connect to my FTP server over the Internet?
- What does the "Default" interface do?
- How do I backup and restore my user accounts and settings?
- How do disable public sharing for the Global Home or Global Home\%USER% default mapping option for AD or LDAP authentication?
- Why does issuing the LIST command result in an error message?
- I'm running Cerberus FTP Server as a service and it can't access mapped network drives or UNC paths. Why?
- I've correctly configured passive FTP but passive data connections still fail. What else could be wrong?
- I cannot access the GUI when Cerberus FTP Server is running as a service.
- TLS/SSL FTP sessions are not working through my firewall.
- I cannot use a remote share as an NT home directory when authenticating a user against a domain.
- Error message using an FTP client to download a large file from an FTP server.
- How do I convert over old 2.X users to the newest version?
- Why are directory and file names incorrect when I view them through my FTP client?
- Why am I being prompted for a Remote Access password after installing Cerberus FTP Server?
- Why do I get an error when I try to enumerate Active Directory (AD) users through the User Manager's AD page, or why does AD authentication take so long?
- Why is SSH2 SFTP so much slower than FTP and FTPS?
- Why do I see "An operation on a socket could not be performed because the system lacked sufficient buffer space or because a queue was full." error mesasges in the log file?
- Not all of my server's IP addresses are being detected. Can I manually specify an IP Address?
- IE7 and IE8 browsers on Windows XP and 2003 get an error when they try to connect to the HTTPS web client
- Files Uploaded through the HTTP/S web client can only be modified by the user that uploaded the file.
- Active Directory users cannot delete files or folders created by Cerberus native users.
- Why can't public file links shared by Active Directory users be downloaded? An "Access Denied" error appears in the log when an anonymous connection tries to download the publicly shared file link.
Corrections and Updates
We welcome bug reports, updates, reports about broken links, comments and outright disagreements. Please send your comments to our support system. Please make sure that you are referring to the most recent version of the FAQ (maintained at /faq/); someone else might have caught the problem before you.
|Forward to Introduction|