by Patrick Mills | Jun 13, 2022 | FTP Logs, FTP Server Administration, FTP Server Security
As part of our continuous effort to pursue security best practices, Cerberus FTP Server now issues a security warning when a RSA public key uses a weak, FIPS-invalid exponent. Once Cerberus moves to OpenSSL 3, if you have FIPS enabled and you have SFTP users with RSA...
by Paul Harada | Jun 10, 2022 | FTP Server Administration, FTP Server Security
Cerberus FTP is pleased to announce an update to our file extension management: the ability to set an allowed extension list! This feature allows administrators to restrict all file uploads except those with specific extensions. About the New Feature Cerberus FTP...
by Vincent Drake | Jun 1, 2022 | FTP Server Administration, FTP Server Security
Critical Security Advisory A critical security issue has been identified in Cerberus FTP Server. We urge customers to download version 12.7.4 and upgrade as soon as possible. Scope All editions (Enterprise, Professional, Standard) of Cerberus FTP Server are...
by Patrick Mills | May 4, 2022 | FTP Server Administration, FTP Server Security, New Release
As part of our continuous effort to pursue security best practices, Cerberus FTP Server now issues a security warning when FTP and FTPS listeners do not enforce session reuse. Once upgraded to version 12.7, running Cerberus FTP Server with FTP or FTPS listeners that...
by Vincent Drake | Apr 30, 2022 | FTP Server Administration, New Release, Web Client
Cerberus FTP Server 12.7 now supports “Forgot your password?” password reset for accounts with Two Factor Authentication (2FA) enabled. What’s Changing? Prior to 12.7, accounts with 2FA enabled were simply not allowed to use the “forgotten password” reset. Following...
by Paul Harada | Apr 29, 2022 | FTP Server Administration, FTP Server Security, New Release, Web Client
New in Cerberus FTP Server 12.7 Enterprise Edition is a tightening of security settings in the Web Administration and Web Client features. As part of our increased focus on security best practices, this change reduces cross-site scripting attack surfaces by...
