by Vincent Drake | Dec 11, 2019 | FTP Server Security
Security Advisory Description Cerberus FTP Server Enterprise Edition prior to versions 11.0.1 and 10.0.17 are vulnerable to a cross-site scripting (XSS) attack on Cerberus’ public share page. This XSS vulnerability allows a malicious public share to insert... by Grant Averett | Dec 9, 2019 | FTP Server Administration, FTP Server Security
Security Advisory Description Cerberus FTP Server releases prior to 11.0.1 were vulnerable to brute force attacks for the 2FA code for a web client user or server administrator when using the Cerberus HOTP 2FA implementation. This vulnerability results from us... by Grant Averett | Jun 13, 2023 | FTP Server Administration, FTP Server Security
Security Advisory Description Password reset links and public share links are vulnerable to HTTP host header attacks in older versions of Cerberus FTP Server. When a user requests to reset their password or to create a public share, Cerberus relies on the HTTP host... by Tim Young | Nov 21, 2019 | FTP Logs
Server logs are one of the best tools a system administrator has to ensure your organization’s data and file security, but setting up and monitoring them can be a complicated task that often leaves you drowning in data. Businesses and organizations need a detailed... by Grant Averett | Nov 18, 2019 | FTP Server Security
Security Advisory Description We recently released Cerberus FTP Server 10.0.16, and we wanted to elaborate on two security issues we fixed in that release and the previous 10.0.15 release. Email Header Bypass Vulnerability (fixed in 10.0.15) The first issue was an... by Dana Anderson | Oct 10, 2019 | FTP Server Administration
Occasionally you may find that you need to move your instance of Cerberus FTP Server from one server to another. While the process is straightforward, there are steps you should take to minimize the risk of issues. First, before doing anything else, you should update... by Dana Anderson | Jan 8, 2020 | FTP Server Security, Informational, Regulatory Compliance
The Health Insurance Portability and Accountability Act of 1996 (HIPAA) addresses the minimum standards that health care organizations must implement to protect the security, privacy, and confidentiality of patient data that is transferred over the Internet. Section... by Jeff | Apr 26, 2019 | FTP Server Security
No one can escape passwords. Whether it is the password for your Cerberus FTP Server, email, online banking, desktop login, or your favorite online media streaming service, passwords are something that everyone has to deal with regardless of profession. And because... by Dana Anderson | Nov 27, 2019 | FTP Basics, FTP Server Security, Regulatory Compliance
One of our most-visited help articles is “How can I make Cerberus FTP Server secure?” In that article, we mention FIPS 140-2, but we still get quite a few emails from customers asking whether they should be using FIPS 140-2 mode in Cerberus. So let’s dig into... by Tim Young | Jun 26, 2023 | FTP Basics, FTP Server Security
The File Transfer Protocol (FTP) is a standard network protocol that is used to transfer files and data between a client and a server on the same network. Once a standard protocol but now considered outdated due to improved and updated versions, FTP has inherent...