Release Notes

The release notes for every official version of Cerberus FTP Server. If you need any help setting up Cerberus FTP Server you can browse our online support resources.

Version 8.0 Release Notes Hide show hide icon
Version Official Release -- 9/22/2016
  • Updated to OpenSSL 1.0.1u to address bug fixes and security vulnerabilties in OpenSSL
  • Server no longer locks a file in SSH SFTP for both read and write access if only one of read or write locking is requested by the client
  • The server can now properly keep track of SSH SFTP sessions that open multiple simultaneous handles to the same file or directory
  • Better logging and handling of HTTPS client commands and uploads
  • Removed Triple DES from the default cipher list for SSL client connections and web administration
  • The Summary page now warns if 3DES or RC4 are enabled for SSL connections
  • Fixed a bug that resulted in the groups field being omitted from native account reports in the Report Manager
  • Fixed a UI bug on the desktop Account Requests page that resulted in fields getting reset when selecting a group for the appoved account
Version Official Release -- 9/7/2016
  • Public shares can now just have upload only permission (no download)
  • Fixed several bugs for LDAP and AD authentication that used a directory attribute for the default virtual directories for users
  • Enhanced SMTP authentication error logging
Version 8.0.6 Official Release -- 8/16/2016
  • Bug fixes and usability improvements in the User Manager
  • Tab support for moving through user fields in the User Manager
  • Support for the X-FORWARDED-FOR header for HTTP/S traffic for logging and IP management
  • Improved proxy support for upgrade checking
  • AD and LDAP mapping dialogs are now resizable
  • Fixed the "Do Not Send Session Report if Empty" flag always being set to false when editing an email session report action
  • Password generator now generates passwords that are at least 6 characters, even if password policy has no minimum length
  • Fixed bug that could cause password generator to crash
Version Official Release -- 8/03/2016
  • Fixed a bug that could result in a CPU spike in the Enterprise edition until the service is restarted
Version 8.0.5 Official Release -- 8/02/2016
  • New random, policy compliant password generation option for native accounts in the desktop UI
  • Added an option to set a native account to require password change on next login without having to reset password
  • Added the LDAP server label field to the desktop UI
  • Added additional user icons to differentiate user states in the User Manager
  • Added a Legend dialog to display what the different user icons mean
  • Added URL redirect support to the web client for selecting authenticated links when the user isn't authenticated
  • HTTP/S session timeouts now properly trigger a logout event and session end time in the statistics database
  • Minor UI improvements and bug fixes
Version 8.0.4 Official Release -- 7/23/2016
  • Added options to control requiring account request settings on the account request signup form
  • Added an option to set a custom denial message for email notification when requested accounts are denied
  • Redesigned Shares web client page
  • Removed the default selection of TCP/IP as the network protocol for SQL Server ODBC drivers
  • Usuability enhancements and bug fixes for the New User Dialog in the User Manager
  • AD authentication optimizations to speed up and remove unnecessary domain queries
  • Numerous minor bug fixes and usuability enhancements with the UI
Version 8.0.3 Official Release -- 6/22/2016
  • Fixed a statistics bug that recorded the wrong value for the filename of a publicly shared file for reports
  • Fixed a UI bug that always deleted the first secondary web admin account in the list regardless of which account was selected for deletion
  • Added an Add New User dialog to the User Manager to streamline adding new users
  • Added the SSH authentication method Password OR Public Key to the available authentication options list
  • Added a dialog to allow adding or updating SMTP servers on the Public Shares page of the User Manager
  • Added additional quick configuration options to the Summary page
  • Added limited support for authenticated redirects
  • Added manual proxy support to the General page of the Server Manager
  • Fixed some refresh and drawing inconsistencies on the main admin UI
Version 8.0.2 Official Release -- 5/25/2016
  • Fixed a bug that sometimes resulted in being unable to send session report logoff emails
  • Fixed several minor Event Manager UI bugs
  • Added workarond for SSH clients that don't pad signatures RSA signatures in public key authentication
  • Added a GetGroupInformation SOAP API call to retrieve group information
  • New, high-DPI icons for nearly every part of the desktop admin GUI
  • Improved User and Group pages in the User Manager
  • Lots of UI bug fixes in the User Manager
Version 8.0.1 Official Release -- 5/05/2016
  • Upgraded to OpenSSL 1.0.1t
  • Added an option to allow unauthenticated users to upload files to publicly shared folder links
  • Added options to delete empty folders and to filer files using regular expressions for folder monitoring
  • Added restricted upload file extension blocking in the User Manager for Professional end Enterprise editions
  • Added a regular expression testing dialog to the Event Manager for regular expression event conditions and folder monitor file filters
  • Added SSH SFTP copy-file extension command for performing remote file copies on the server
  • Added user directory access information to the Account Report option in the Report Manager
  • UI enhancements to the Event Manager
  • Fixed a bug that could result in losing AD and LDAP settings when upgrading old settings files
  • Fixed a bug that prevented the %USER% variable from working in public key certificate paths for Cerberus groups
Version Official Release -- 3/07/2016
  • Fixed a bug with certain international operating systems configurations that resulted in a failure to retrieve summary information, and errors opening the desktop Event Manager and Report Manager.
Version Official Release -- 3/03/2016
  • Fixed a bug introduced in that resulted in AD group to Cerberus group mappings being converted to AD user to Cerberus group mappings after saving
  • Fixed unzipping on the HTTPS web client
Version Official Release -- 3/01/2016
  • Upgraded to OpenSSL 1.0.1s
  • Stability and performance improvements
  • Changes to HTTPS web client configurations now take effect immediately
Version Official Release -- 2/05/2016
  • Added option for administrators to control what key exchange protocols are allowed with SSH2
  • The ChangePassword SOAP API now has an option for email notification of password changes to the end user, and for administrator resets without the prior knowledge of the user's password
  • Only send one event notification for HTTPS file uploads greater than 256 MB
  • Improved error reporting for CSV input
Version Official Release -- 1/29/2016
  • Upgraded to OpenSSL 1.0.1r
  • Improved FTP MDTM comand handling to better differentiate between getting and setting the time on a file
  • Improved error reporting on the desktop UI managers for when values are out of range for fields
  • Session report emails can not be sent to multiple recipients for a session report event action
  • Fixed a bug with the IP Manager's username auto-banning feature that resulted in a failure to block usernames on the ban list
  • Updated HTTPS web client and web admin web framework foundation classes
  • Added ability to set a default theme for the HTTPS web client by IP address
  • Fixed issue preventing users without delete permission from uploading more than 256MB of a file through the HTTP/S web client
  • Fixed issue with being unable to add zip and unzip actions in the Event Manager
  • Fixed issue with custom email body in events being stripped of newlines
Version Official Release -- 12/04/2015
  • Upgraded to OpenSSL 1.0.1q to address OpenSSL bugs and security vulnerabilities
  • SSL and SSH ephemeral DH keys now default to minimum 2048 bit strength
  • Fixed a problem with verifying ECDSA signatured for client SSH public keys
  • Default web administration cipher string strengthened to exclude several weaker ciphers
  • Web administration SSL cipher string and protocol support can now be customized by administrators
  • Enhanced error checking to prevent a client from attempting to upload a file through the HTTPS web client with an invalid name
  • Event Manager email event actions can now send emails to multiple email addresses with a single email action
  • Added a label field for LDAP server configurations to help admins differentiate between multiple LDAP configurations
Version Official Release -- 11/17/2015
  • Fixed an LDAP and AD public key authentication bug that resulted in the server being unable to find the public key file for mapped AD or LDAP users
  • Fixed the HTTPS web client allowing authenticated users to replace existing files on upload without delete permissions
  • Fixed SMTP server response handling to improve compatibility with SMTP servers
  • HTTPS web client will now prevent an upload from starting if the user doesn't have permission to replace an existing file
  • Added context menu support to several web administration tables
  • Added basic public download statistics collection for reporting
  • Minor bug fixes and improvements
Version Official Release -- 10/27/2015
  • Fixed an LDAP and AD authentication bug that could result in a crash in some situations
  • Fixed an restore users and settings from backup bug
  • More consistent and region-specific date formats for reports
Version Official Release -- 10/24/2015
  • Numerous minor bug fixed and Event Manager UI improvements
  • Added right-click menu support to Event Targets and Folder Monitor tables
  • Added clone rule option to event rules and sheduled tasks
  • Added clone action option to event rules and schedules tasks
  • Editing actions now modified edited action, instead of adding a new action
  • Fixed SSH SFTP file transfers always generating an upload notification
  • Added option to select AD or LDAP attribute for SSH public key location for groups in web administration
  • Fixed AD and LDAP authentication bugs when using public key authentication with AD or LDAP attributes
  • Cerberus desktop UI log link now opens up log directory, instead of UI-only log file
Version 8.0 Official Release -- 10/14/2015
  • Support uploading resume through the HTTPS web client
  • New option to always prompt for administrator password when launching the desktop admin UI
  • Active Directory and LDAP authentication now support default directories linked to AD and LDAP directory attributes
  • The Global Home\%USER and home directory default AD and LDAP mapping modes now have an option to configure home directory permissions
  • Active Directory and LDAP users can now pull SSH client public keys from AD or LDAP using a directory attribute instead of a file path for the default or mapped Cerberus group's public key path field
  • New, completely re-written Event Manager for both desktop and web administration
  • New Event Manager scheduled tasks
  • New Event Manager action to revoke a public link given a unique public file ID
  • New Event Manager action to wait for a specified number of seconds before executing next action
  • New Event Manager action to execute a server backup and save it to a file
  • New event trigger for account passwords expiring
  • New option to specify to stop executing event actions for a rule when an action fails
  • New option for emailing session reports action to not send report when session has no file activity
  • New option to specify what event rule variables are included in an email event notification
  • New option to specify addition body text in event emails
  • Back button added to file/session reports to return to original report when selecting a session
  • New option to export reports to CSV files
  • New IP username auto-banning
  • Detailed statistics now records directory creation
  • HTTP/S web client users are now prompted to set security questions on login if they haven't set them yet
  • New HTTP/S web client context menu with cut and paste file and directory support
  • You will now be prompted to automatically start the Windows Service if it is not running when you first launch the UI
  • The Cerberus desktop admin application now uses a separate log configuration file to prevent any conflict when writing to the same log as the service
  • Only the primary server administrator can now change remote admin settings
  • Administrators can now use the %USER% variable for public key file paths in Cerberus groups for SSH authentication
  • Enable or disable TLS 1.0, 1.1, and 1.2
Version 7.0 Release Notes Show show hide icon
Version 6.0 Release Notes Show show hide icon
Version 5.0 Release Notes Show show hide icon
Version 4.0 Release Notes Show show hide icon
Version 3.0 Release Notes Show
Version 2.50 Release Notes Show
Version 2.4 BETA Notes Show
Version 2.3 Release Notes Show
Version 2.2 Release Notes Show
Version 2.1 Release Notes Show
Version 2.0 Release Notes Show
Version 1.0 Release Notes Show