by Paul Harada | Sep 3, 2021 | FTP Logs, FTP Server Administration, News, Regulatory Compliance
Enterprise users of Cerberus FTP Server have frequently requested an integrated way to clean their reporting database. A new feature for 12.2 allows administrators to remove old audit & file records. Accessible from the database configuration page, administrators...
by Paul Harada | Sep 3, 2021 | FTP Server Security, News, Web Client
Security Advisory Description During a security audit, we determined that Cerberus FTP Server Enterprise versions prior to 12.2 and 11.3.10 are vulnerable to a cross-site scripting (XSS) attack. This vulnerability is located in the preview lightbox plugin...
by Patrick Mills | Jul 20, 2021 | Automation, FTP Server Administration, Informational, News
Building on the “Send a File” file feature introduced in 11.2, we’ve added another highly requested action for the Transfer File Target that allows retrieving a file from another server via SFTP, FTP, FTPS, or HTTP/S GET in Cerberus FTP Server 12.1 Enterprise. With...
by Patrick Mills | Jul 20, 2021 | FTP Server Security, News
Security Advisory Description Cerberus FTP Server versions prior to 12.1 and 11.3.9 are vulnerable to a SSL Renegotiation Denial of Service attack. This vulnerability is a form of CVE-2011-1473 which abuses the normal TLS/SSL connection process to create excessive CPU...
by Vincent Drake | Jun 9, 2021 | FTP Server Administration, Informational, News, Uncategorized
There have been a few changes to the Cerberus SOAP API with version 12.0 that developers should be aware of. As always, we strive to keep the API backward-compatible, but it is not always possible as new functionality is added to Cerberus FTP Server. Public Share...
by Vincent Drake | Jun 9, 2021 | FTP Server Administration, Informational, News
Welcome to another review of features in Cerberus FTP Server Version 12! In this article, we explore Directory-Based Administration. This feature allows you to extend Cerberus Administration rights to Active Directory users and groups. This is a much-anticipated...
by Tim Young | Mar 8, 2023 | FTP Basics, FTP Server Security
Secure file transfer has come a long way from its creation in the 1970s, and its latest evolution has seen a shift towards cloud-based file transfer. But are cloud-hosted file servers better options than on-premise file servers? Each file server hosting method has its...
by Patrick Mills | Apr 21, 2021 | FTP Server Security, News
Security Advisory Description Cerberus FTP Server uses OpenSSL. Our pseudo random number generator (PNRG) seeding process utilizes a number of methods and sources. OpenSSL supports Intel’s RDRAND instruction; on processors without this instruction (Intel before 3rd...
by Patrick Mills | Apr 21, 2021 | FTP Server Security
Security Advisory Description Cerberus FTP Server uses cURL in some Event Manager options. By default when linked with OpenSSL, cURL attempts to find openssl.cnf; the search will look at the system environment variables, Registry, or the default build location....
by Vincent Drake | Apr 5, 2021 | FTP Server Security
Security Advisory Cerberus FTP Server version 11.2.8 and higher include a number of security-related fixes we had not documented. Normally, we disclose security issues when we release a fix for the issue. In this case, a single customer reported all of the issues, so...
by Grant Averett | Apr 5, 2021 | FTP Server Administration, Informational
One of the more common requests we’ve received from customers since the introduction of version 11.0 is to reduce the amount of scrolling needed to administer users and groups. Vertical screen real estate tends to be at a premium. The top-down arrangement of the...
by Patrick Mills | Nov 17, 2020 | FTP Server Administration, Informational, News, Reporting
Cerberus FTP Server Enterprise edition offers the Report Manager for collecting detailed usage statistics and generating detailed reports. To use the Report Manager, administrators must first configure a reporting database. Cerberus integrates with a number of...
by Patrick Mills | Jul 22, 2020 | FTP Server Security
Security Advisory Description Cerberus FTP Server Enterprise and Professional versions prior to 11.2.5 and 10.0.26 are vulnerable to an extension blocking bypass over the SCP protocol. Scope This vulnerability impacts Cerberus FTP Server Enterprise and Cerberus FTP...
by Patrick Mills | Nov 17, 2020 | FTP Logs, FTP Server Administration, Informational, News
Cerberus FTP Server Version 11 added the IP address and username to every log statement that originates from a client connection. See how to enable this feature. Until now however, the Apache Log4cxx framework has lacked the ability to filter based on these fields. In...
by Vincent Drake | May 27, 2020 | FTP Server Administration
We are changing the way Cerberus FTP version 11.2.2 behaves when closing the Admin Console. The change is small, but may surprise long-time users. How it Used to Work Before 11.2.2, clicking the ‘close’ button or Alt-F4 to close Cerberus only hides the...
by Patrick Mills | Jul 20, 2020 | Automation, FTP Server Administration, Informational, News
We’ve introduced a highly requested new Transfer File Target in Event Manager that allows transferring files to other servers via SFTP, FTP, FTPS, or HTTP/S PUT in Cerberus FTP Server 11.2 Enterprise. While it’s been possible to send files using the “Launch an...
by Vincent Drake | Apr 22, 2020 | FTP Server Administration, FTP Server Security
Introduction Cerberus is receiving a security update with version 11.2 that administrators should review before upgrading. There is a small chance that the changes made may impact services, but we have provided an override setting to workaround any impact....
by Grant Averett | Mar 23, 2020 | FTP Logs, FTP Server Administration
We’ve introduced a new, continuous view in Cerberus FTP Server 11.1 for the Log Manager. This new view is now the default over the paged table view that we debuted with version 11.0. Some of the early feedback we received for Cerberus FTP Server 11 was that the new,...
by Vincent Drake | Jul 20, 2020 | FTP Server Security, Web Client
Security Advisory Description Cerberus FTP Server Enterprise Edition prior to versions 11.1.0 and 10.0.23 allow underprivileged WebClient users to view file names and folder names. Only the names of the files are exposed; the file contents are not exposed. A malicious...
by Grant Averett | Apr 1, 2020 | FTP Server Administration, Informational, News
We listened to your feedback about making the User Manager more intuitive, especially as it relates to creating new users and groups. With Cerberus FTP Server 11.1, we’ve introduced a new user and group guided creation wizard to more easily create new Cerberus users...
