Release Notes

The release notes for every official version of Cerberus FTP Server. If you need any help setting up Cerberus FTP Server you can browse our online support resources.

Additional Support

Version 9.0 Release Notes

Please see this important FAQ entry about changes to web administration for users upgrading to 9.0 from a previous release.

Version Official Release — 11/17/2017
  • We now support very large path lengths when the underlying path is a UNC share
  • Enhanced the web IP Manager
  • Fixed a bug that resulted in public file share folder and file zipping returning zero-length zip archives
  • Fixed a bug in the IP Manager
  • Added country logging for IP geolocation
  • IP geolocation optimizations
Version Official Release — 11/06/2017
  • Upgraded to OpenSSL 1.0.2m to address OpenSSL security vulnerabilities
  • New zip and unzip library with support for archives greater than 2GB
  • New global option to disable displaying file sharing tabs and button in the web client
  • Improved pagination in the web client and web administration
  • Fixed a bug that reversed the current and latest version labels on the summary page
  • Fixed an HTTPS web client file upload bug
  • Added an “overwriting existing file” label for when web client uploads are overwriting an existing file
  • Fixed a bug that resulted in AD accounts that use directory attributes for SSH public key authentication being unable to retrieve the SSH key from AD
  • Fixed a bug that caused an FTP rename that overwrites an existing file to fail even when the “allow rename to overwrite existing files” FTP option is selected
  • Fixed support for IPv6 addresses
  • FIxed IP address note wasn’t getting added in web administration for CIDR ranges
  • Fixed a bug in web administration that prevented administrators from changing their passwords
Version Official Release — 9/25/2017
  • Fixed a bug in the HTTPS web client that resulted in no Share button for certain types of files
  • Improved the share and email a public link web client dialogs with better error handling
Version Official Release — 9/21/2017
  • Added an Add Folder button to the HTTPS client upload control for browsers that support it
  • Fixed pre-upload existence and resume checking for files uploaded through folder drag and drop
  • Added displaying of full relative file path for files when uploading folders in the web client
  • Fixed various UI issues in the web client
  • Shared file or folder notification emails now properly reflect whether the file is uploaded or downloaded
  • Event Manager admin changes are better logged for auditing purposes
  • Fixed several possible crashing bugs related to public file share uploads and public file share access
Version Official Release — 9/11/2017
  • HTTPS web client UI cleanup
  • Miscellaneous minor bug fixes and performance improvements
Version Official Release — 8/30/2017
  • Fixed a potential web administration crash
  • Updated the SOAP library
  • Fixed the WSDL link from the web administrator page
  • Miscellaneous minor bug fixes and performance improvements
  • Included additional web client translations for German, Danish, Norwegian, Polish, Hungarian, Arabic, French, Chinese, Russian, and Finnish
  • Removed SEED and CAMELLIA ciphers from our default cipher lists
Version Official Release — 8/25/2017
  • Improved geolocation of IP addresses and error reporting
  • Fixed a bug where the Summary and Interfaces couldn’t be displayed for some configurations
  • Performance improvements
Version Official Release — 8/21/2017
  • Bug fixes for web clients viewing the using a default language other than English
  • Bug fixes and a fallback summary and interfaces page for Server Core installations that do not support the IE browser control
  • Other bug fixes
Version 9.0 Official Release — 8/15/2017
  • HTTP/S web client two-factor authentication with any HOTP client
  • Updated HTTP/S web client user interface
  • Multiple language support for the HTTP/S web client
  • Updated web administration, events, and reporting dialogs
  • New server administrator auditing reporting
  • Resizable User Manager, Server Manager, and IP Manager dialogs
  • Complete rewrite of web administration code for better performance and security
  • Web administration now uses session-based authentication instead of basic authentication to allow sign in and sign out capability
  • New scalable summary page
  • Better DPI handling for embedded web page controls
  • Significant performance improvements through code rewrites and a move to the Visual Studio 2017 compiler and CRT libraries
  • Added an option to allow replacing a file on rename with FTP
  • Added an option to allow disabling FTP TLS upgrade advertisement for plain FTP connections
  • Added an option to enforce the system password policy on public file shares
  • Enhanced Share settings page on the web client
  • Added support for locking and unlocking specific regions of files for the SSH SFTP commands BLOCK and UNBLOCK
  • Reduced log verbosity for initial connection messages (without any loss of information)
  • Compatibility with Azure SQL Server and encrypted database connections for the auditing and reporting database
  • The downloader’s IP address is now recorded and included on file access reports for public file uploads and downloads
Version 8.0 Release Notes
Version Official Release — 8/1/2017
  • Updated SOAP library
Version 8.0.12 Official Release — 6/1/2017
  • Fixed an issue where HTTP/S session timeouts sometimes didn’t trigger a logout event
  • Fixed a concurrency issue that could lead to a crash in rare instances
  • Fixed an issue with basic server statistics collection that could lead to a crash or stats file corruption
  • Fixed a Microsoft Edge upload error
  • Rearranged the Advanced Security Dialog to group SSH2 and SSL options, and added a few more security profiles
Version Official Release — 5/19/2017
  • Fixed an issue where responses to SSH2 global requests messages weren’t sent properly
  • Modified HTTPS session cookie identifiers to no longer potentially include the equals sign as a character value
Version Official Release — 5/4/2017
  • Updated the reCaptcha signup link in the reCaptcha dialog
  • Authentication will no longer strip whitespace from the front and back of usernames during authentication
  • The Folder Monitor can now handle directory names with ampersands
  • Improvements to CSV import from third party SFTP servers
  • Fixed a bug that allowed secondary web admin accounts to connect via SOAP
  • Minor bug fixes
Version 8.0.11 Official Release — 3/17/2017
  • Fixed a DoS vulnerability (CVE-2017-6880) related to the FTP MLST command for authenticated user in certain user configurations
  • Improved FTP error checking and reporting
Version Official Release — 3/03/2017
  • Fixed an issue where HTTP/S connections would block forever when a client connection was severed during a file upload, and the uploaded file would remain locked
  • Enhanced support for logging client IP addresses via the X-FORWARDED-FOR header
Version Official Release — 3/01/2017
  • Fixed a DoS vulnerability (CVE-2017-6367) in a third party library related to SOAP and web administration
  • Added saveToDisk and createNonExistentDirectories options to the AddUser SOAP API call
Version Official Release — 2/09/2017
  • Better compatibility with some HTTP/S proxy servers for update checking and other GET operations
  • Added a failed PASV mode bind retry attempt that will automatically retry binding to a new passive port up to 3 times if a port is already in use
  • Fixed an issue with the “exclude passive port range” option not getting saved for Sync Manager settings
  • Fixed bug that prevented folder uploads to public shares
  • Setting the “Require Password change every X Days” option is no longer necessary for enforcing the “Require Password Change” setting on an account
Version 8.0.10 Official Release — 1/31/2017
  • Updated to OpenSSL 1.0.2j from OpenSSL 1.0.2k to address security vulnerabilities in OpenSSL
  • Minor bug fixes
Version 8.0.9 Official Release — 1/4/2017
  • Public uploads now trigger a public file transfer event, and you can differentiate a public download from a public upload using rule conditions
  • Executable target event actions now properly report error codes and wait for process execution to complete
  • Administrators can configure a max wait time for executable event actions to complete before processing the next action
Version Official Release — 12/19/2016
  • Fixed a bug with adding conditions in the Event Manager
  • Fixed a bug where a logout event won’t be generated for specific situations where an HTTP/S session times
  • Fixed a bug where Event Manager external process actions would always trigger a failure action, even if the process returned a success code
Version Official Release — 12/13/2016
  • Fixed a Firefox bug causing uploads to fail for public file uploads through the HTTPS web client in some instances
  • SSH SFTP bug fix for the FSTAT command
  • SSH SFTP requests for global requests not get a proper error response
Version Official Release — 12/5/2016
  • Fixed a bug in web administration that prevented changing SSH authentication method on accounts
  • Fixed an SSH SFTP bug that resulted in the FSTAT command failing
  • Fixed a bug that caused password changes for AD users to fail
  • Added execute permissions bits for user, group, and other execute fields on old-style UNIX directory listings for directories to help with compatibility with some clients
  • Added several HTTP security headers (X-XSS-Protection, Content-Security-Policy, X-Content-Type-Options)
Version Official Release — 11/18/2016
  • Fixed a Firefox bug causing uploads to fail through the HTTPS web client in some instances
  • Added support for folder uploads through Firefox with the HTTPS web client
  • Fixed a bug where zero length file uploads didn’t trigger a file transfer event
  • Added a “Follow referrals” option for Active Directory user searches
  • Minor UI changes to show disabled authentication sources on the Policy page
Version 8.0.8 Official Release — 11/14/2016
  • Updated to OpenSSL 1.0.2j from OpenSSL 1.0.1u
  • Fixed a bug where zero length file uploads didn’t trigger a file transfer event
  • Enhanced file policy result logging
  • Added an FTP passive mode option to always use the internal IP for plain FTP passive mode responses
  • FTP AUTH commands will now send an “Unavailable” response when FTPES is requested but TLS is disabled on the server
  • Added an option during a server backup restore operation to not import the license key from the backup
  • Improvements to AD and LDAP password changing
Version Official Release — 10/12/2016
  • Fixed an HTTPS web client bug that could result in a crash when downloading files in chunks
  • Added an SSH SFTP legacy file handles mode for dealing with buggy clients that relay on SSH SFTP file handles being the actual file path
  • Changes to some SSH settings no longer require a service restart
  • Removed case sensitivity for mapping AD user names as UPN names to Cerberus groups
Version Official Release — 9/22/2016
  • Updated to OpenSSL 1.0.1u to address bug fixes and security vulnerabilties in OpenSSL
  • Server no longer locks a file in SSH SFTP for both read and write access if only one of read or write locking is requested by the client
  • The server can now properly keep track of SSH SFTP sessions that open multiple simultaneous handles to the same file or directory
  • Better logging and handling of HTTPS client commands and uploads
  • Removed Triple DES from the default cipher list for SSL client connections and web administration
  • The Summary page now warns if 3DES or RC4 are enabled for SSL connections
  • Fixed a bug that resulted in the groups field being omitted from native account reports in the Report Manager
  • Fixed a UI bug on the desktop Account Requests page that resulted in fields getting reset when selecting a group for the appoved account
Version Official Release — 9/7/2016
  • Public shares can now just have upload only permission (no download)
  • Fixed several bugs for LDAP and AD authentication that used a directory attribute for the default virtual directories for users
  • Enhanced SMTP authentication error logging
Version 8.0.6 Official Release — 8/16/2016
  • Bug fixes and usability improvements in the User Manager
  • Tab support for moving through user fields in the User Manager
  • Support for the X-FORWARDED-FOR header for HTTP/S traffic for logging and IP management
  • Improved proxy support for upgrade checking
  • AD and LDAP mapping dialogs are now resizable
  • Fixed the “Do Not Send Session Report if Empty” flag always being set to false when editing an email session report action
  • Password generator now generates passwords that are at least 6 characters, even if password policy has no minimum length
  • Fixed bug that could cause password generator to crash
Version Official Release — 8/03/2016
  • Fixed a bug that could result in a CPU spike in the Enterprise edition until the service is restarted
Version 8.0.5 Official Release — 8/02/2016
  • New random, policy compliant password generation option for native accounts in the desktop UI
  • Added an option to set a native account to require password change on next login without having to reset password
  • Added the LDAP server label field to the desktop UI
  • Added additional user icons to differentiate user states in the User Manager
  • Added a Legend dialog to display what the different user icons mean
  • Added URL redirect support to the web client for selecting authenticated links when the user isn’t authenticated
  • HTTP/S session timeouts now properly trigger a logout event and session end time in the statistics database
  • Minor UI improvements and bug fixes
Version 8.0.4 Official Release — 7/23/2016
  • Added options to control requiring account request settings on the account request signup form
  • Added an option to set a custom denial message for email notification when requested accounts are denied
  • Redesigned Shares web client page
  • Removed the default selection of TCP/IP as the network protocol for SQL Server ODBC drivers
  • Usuability enhancements and bug fixes for the New User Dialog in the User Manager
  • AD authentication optimizations to speed up and remove unnecessary domain queries
  • Numerous minor bug fixes and usuability enhancements with the UI
Version 8.0.3 Official Release — 6/22/2016
  • Fixed a statistics bug that recorded the wrong value for the filename of a publicly shared file for reports
  • Fixed a UI bug that always deleted the first secondary web admin account in the list regardless of which account was selected for deletion
  • Added an Add New User dialog to the User Manager to streamline adding new users
  • Added the SSH authentication method Password OR Public Key to the available authentication options list
  • Added a dialog to allow adding or updating SMTP servers on the Public Shares page of the User Manager
  • Added additional quick configuration options to the Summary page
  • Added limited support for authenticated redirects
  • Added manual proxy support to the General page of the Server Manager
  • Fixed some refresh and drawing inconsistencies on the main admin UI
Version 8.0.2 Official Release — 5/25/2016
  • Fixed a bug that sometimes resulted in being unable to send session report logoff emails
  • Fixed several minor Event Manager UI bugs
  • Added workarond for SSH clients that don’t pad signatures RSA signatures in public key authentication
  • Added a GetGroupInformation SOAP API call to retrieve group information
  • New, high-DPI icons for nearly every part of the desktop admin GUI
  • Improved User and Group pages in the User Manager
  • Lots of UI bug fixes in the User Manager
Version 8.0.1 Official Release — 5/05/2016
  • Upgraded to OpenSSL 1.0.1t
  • Added an option to allow unauthenticated users to upload files to publicly shared folder links
  • Added options to delete empty folders and to filer files using regular expressions for folder monitoring
  • Added restricted upload file extension blocking in the User Manager for Professional end Enterprise editions
  • Added a regular expression testing dialog to the Event Manager for regular expression event conditions and folder monitor file filters
  • Added SSH SFTP copy-file extension command for performing remote file copies on the server
  • Added user directory access information to the Account Report option in the Report Manager
  • UI enhancements to the Event Manager
  • Fixed a bug that could result in losing AD and LDAP settings when upgrading old settings files
  • Fixed a bug that prevented the %USER% variable from working in public key certificate paths for Cerberus groups
Version Official Release — 3/07/2016
  • Fixed a bug with certain international operating systems configurations that resulted in a failure to retrieve summary information, and errors opening the desktop Event Manager and Report Manager.
Version Official Release — 3/03/2016
  • Fixed a bug introduced in that resulted in AD group to Cerberus group mappings being converted to AD user to Cerberus group mappings after saving
  • Fixed unzipping on the HTTPS web client
Version Official Release — 3/01/2016
  • Upgraded to OpenSSL 1.0.1s
  • Stability and performance improvements
  • Changes to HTTPS web client configurations now take effect immediately
Version Official Release — 2/05/2016
  • Added option for administrators to control what key exchange protocols are allowed with SSH2
  • The ChangePassword SOAP API now has an option for email notification of password changes to the end user, and for administrator resets without the prior knowledge of the user’s password
  • Only send one event notification for HTTPS file uploads greater than 256 MB
  • Improved error reporting for CSV input
Version Official Release — 1/29/2016
  • Upgraded to OpenSSL 1.0.1r
  • Improved FTP MDTM comand handling to better differentiate between getting and setting the time on a file
  • Improved error reporting on the desktop UI managers for when values are out of range for fields
  • Session report emails can not be sent to multiple recipients for a session report event action
  • Fixed a bug with the IP Manager’s username auto-banning feature that resulted in a failure to block usernames on the ban list
  • Updated HTTPS web client and web admin web framework foundation classes
  • Added ability to set a default theme for the HTTPS web client by IP address
  • Fixed issue preventing users without delete permission from uploading more than 256MB of a file through the HTTP/S web client
  • Fixed issue with being unable to add zip and unzip actions in the Event Manager
  • Fixed issue with custom email body in events being stripped of newlines
Version Official Release — 12/04/2015
  • Upgraded to OpenSSL 1.0.1q to address OpenSSL bugs and security vulnerabilities
  • SSL and SSH ephemeral DH keys now default to minimum 2048 bit strength
  • Fixed a problem with verifying ECDSA signatured for client SSH public keys
  • Default web administration cipher string strengthened to exclude several weaker ciphers
  • Web administration SSL cipher string and protocol support can now be customized by administrators
  • Enhanced error checking to prevent a client from attempting to upload a file through the HTTPS web client with an invalid name
  • Event Manager email event actions can now send emails to multiple email addresses with a single email action
  • Added a label field for LDAP server configurations to help admins differentiate between multiple LDAP configurations
Version Official Release — 11/17/2015
  • Fixed an LDAP and AD public key authentication bug that resulted in the server being unable to find the public key file for mapped AD or LDAP users
  • Fixed the HTTPS web client allowing authenticated users to replace existing files on upload without delete permissions
  • Fixed SMTP server response handling to improve compatibility with SMTP servers
  • HTTPS web client will now prevent an upload from starting if the user doesn’t have permission to replace an existing file
  • Added context menu support to several web administration tables
  • Added basic public download statistics collection for reporting
  • Minor bug fixes and improvements
Version Official Release — 10/27/2015
  • Fixed an LDAP and AD authentication bug that could result in a crash in some situations
  • Fixed an restore users and settings from backup bug
  • More consistent and region-specific date formats for reports
Version Official Release — 10/24/2015
  • Numerous minor bug fixed and Event Manager UI improvements
  • Added right-click menu support to Event Targets and Folder Monitor tables
  • Added clone rule option to event rules and sheduled tasks
  • Added clone action option to event rules and schedules tasks
  • Editing actions now modified edited action, instead of adding a new action
  • Fixed SSH SFTP file transfers always generating an upload notification
  • Added option to select AD or LDAP attribute for SSH public key location for groups in web administration
  • Fixed AD and LDAP authentication bugs when using public key authentication with AD or LDAP attributes
  • Cerberus desktop UI log link now opens up log directory, instead of UI-only log file
Version 8.0 Official Release — 10/14/2015
  • Support uploading resume through the HTTPS web client
  • New option to always prompt for administrator password when launching the desktop admin UI
  • Active Directory and LDAP authentication now support default directories linked to AD and LDAP directory attributes
  • The Global Home\%USER and home directory default AD and LDAP mapping modes now have an option to configure home directory permissions
  • Active Directory and LDAP users can now pull SSH client public keys from AD or LDAP using a directory attribute instead of a file path for the default or mapped Cerberus group’s public key path field
  • New, completely re-written Event Manager for both desktop and web administration
  • New Event Manager scheduled tasks
  • New Event Manager action to revoke a public link given a unique public file ID
  • New Event Manager action to wait for a specified number of seconds before executing next action
  • New Event Manager action to execute a server backup and save it to a file
  • New event trigger for account passwords expiring
  • New option to specify to stop executing event actions for a rule when an action fails
  • New option for emailing session reports action to not send report when session has no file activity
  • New option to specify what event rule variables are included in an email event notification
  • New option to specify addition body text in event emails
  • Back button added to file/session reports to return to original report when selecting a session
  • New option to export reports to CSV files
  • New IP username auto-banning
  • Detailed statistics now records directory creation
  • HTTP/S web client users are now prompted to set security questions on login if they haven’t set them yet
  • New HTTP/S web client context menu with cut and paste file and directory support
  • You will now be prompted to automatically start the Windows Service if it is not running when you first launch the UI
  • The Cerberus desktop admin application now uses a separate log configuration file to prevent any conflict when writing to the same log as the service
  • Only the primary server administrator can now change remote admin settings
  • Administrators can now use the %USER% variable for public key file paths in Cerberus groups for SSH authentication
  • Enable or disable TLS 1.0, 1.1, and 1.2
Version 7.0 Release Notes
Version 7.0.15 Official Release — 1/04/2017
  • Upgraded to OpenSSL 1.0.2j from 1.0.1u
Version 7.0.14 Official Release — 9/22/2016
  • Upgraded to OpenSSL 1.0.1u to address an OpenSSL security vulnerability
Version 7.0.13 Official Release — 5/05/2016
  • Upgraded to OpenSSL 1.0.1t to address an OpenSSL security vulnerability
Version 7.0.12 Official Release — 3/01/2016
  • Upgraded to OpenSSL 1.0.1s to address an OpenSSL security vulnerability
Version 7.0.11 Official Release — 12/04/2015
  • Upgraded to OpenSSL 1.0.1q to address an OpenSSL security vulnerability
Version Official Release — 7/28/2015
  • Fixed an issue where SMTP email server tests would fail
  • Fixed a potential access violation in the server
  • The UI will now warn the user when a connection to the underlying Cerberus FTP Server service has been lost
  • Added a wait server operation to cause an event rule to pause for a specified number of seconds before executing the next action
  • Numerous minor bug fixes
Version 7.0.10 Official Release — 7/10/2015
  • Upgraded to OpenSSL 1.0.1p to address an OpenSSL security vulnerability
  • Fixed a bug that would result in incomplete directory reads for SSH SFTP version 6 clients and directories with large numbers of files
  • Added an option to disable TLSv1.0 to the Advanced Security dialog
  • Added an option to perform an alternate method of checking the AD groups an AD user belongs to for domains that don’t return group information for a user through ADSI
  • Moved the XML parser for the UI settings file to the same XML framework used for the service settings file
Version 7.0.9 Official Release — 6/12/2015
  • Upgraded to OpenSSL 1.0.1o to address OpenSSL bugs and security vulnerabilities
Version Official Release — 6/09/2015
  • Changed IP auto-detection to point to more reliable service
Version Official Release — 5/08/2015
  • Fixed a bug related to public IP auto-detection that could result in a server crash under certain unusual circumstances
  • Fixed a bug related to user Cerberus accounts that are part of a group ignoring the group’s is anonymous setting and using the original account setting
Version Official Release — 3/19/2015
  • Upgraded to OpenSSL 1.0.1m to address OpenSSL bugs and security vulnerabilities
  • Completed transition of web administration virtual directory, AD, LDAP, event, and license dialogs to new mobile-friendly framework
  • CSV importer can now understand different line encodings
  • Added option to exclude passive port range from syncing
  • You can now customize the email subject for session reports
  • Fixed synchronization and timer bugs that could result in server crashes
Version Official Release — 2/25/2015
  • Fixed socket send bug that could result in being unable to terminate a connection when a buggy client didn’t signal it was ok to send data
  • Fixed a bug in FTP download resumes that could result in corrupt resumed downloads
  • Added SOAP API calls to set and retrieve the IP block list
  • More robust CIDR list import support
  • Added check to make sure an account request cannot be approved if there is already a user with that account name (web administration)
  • Added HTTPS range header support (HTTP/s file download resume and better web video playback)
Version Official Release — 1/12/2015
  • Updated to OpenSSL 1.0.1k to address security vulnerabilities in OpenSSL
  • New public file sharing SOAP API call to generate a public link to an existing file
Version Official Release — 12/15/2014
  • Fixed a bug that would not allow new user or group accounts to be created through web administration
  • Renaming a group through web administration now renames the group in any user accounts or AD or LDAP mappings
  • Enhanced rename and add group error checking
  • New RenameGroup web services API call that renames a group and all associated mappings
  • Groups can no longer be deleted through web administration if there is a user that is a member of the group
  • Web client public file link emailing now disallows including the password in the email subject line
  • Auto-updater will now note errors contacting the update site on the summary page
Version Official Release — 12/08/2014
  • Fixed renaming users and groups in web administration
  • Fixed incorrect date/time display in SFTP and HTTPS for root folders
  • Fixed Send a Session Report action not being available for Logoff events when event first created
  • Fixed several bugs that could result in a service crash if the log file can’t be written to (space full, UNC path can’t be reached)
  • Other minor bug fixes to UI and web administration
Version Official Release — 11/11/2014
  • Properly advertise integrity checking command support for SSH SFTP to clients
  • Added CRC32 checksum as SSH SFTP integrity checking option
  • Do not send “..” as part of a directory listing when at a user’s root for FTP and SFTP
  • Fix web administration and SOAP DLL exception
Version Official Release — 10/31/2014
  • Web client Address books are now sortable by email or name
  • Auto-suggest from address book when emailing public links now returns matching names in addition to email addresses
  • External event processes no longer need their paths quoted when there are spaces in the path
  • The working folder now correctly resets for external event process actions when changing the path of an exiting process
  • Removed emtpy log statement for HTTPS uploads
  • Updated HTTPS web client and web administration core libraries
  • Fix web administration and SOAP DLL exception
Version Official Release — 10/16/2014
  • Disable SSLv3.0 by default
  • Add an option to enable SSLv3.0 on the Advanced Security page
Version 7.0.5 Official Release — 10/15/2014
  • Updated to OpenSSL 1.0.1j to address security vulnerabilities in OpenSSL
Version Official Release — 10/14/2014
  • Added ability to set additional public file sharing options through web administration
  • Added ability to customize email options for account request approvals through web administration
  • Added button for testing SMTP server target configurations through web administration
  • Account request email template improvements
  • Minor web administration bug fixes and layout improvements
  • Fixed error reporting for failed database operations – errors were previously being reported as “Invalid cursor state” instead of actual error description
Version Official Release — 09/29/2014
  • Backup and restore now includes SSH client public keys in the backup set
  • Server synchronization through the sync manager now syncs SSH client public keys
  • Added the sync manager to web administration
  • Added database configuration to web administration
  • Web administration refinements and additions
  • Optimized several images to use font glyphs for web administration to reduce resource page downloads
  • Added a workaround for an IE9 directory display bug for the HTTP/S web client
  • Fixed several rare thread contention isues that oculd lead to server exceptions
Version 7.0.4 Official Release — 09/17/2014
  • Major re-design of web administration. Switched to a more modern, responsive web framework that scales on different devices
  • Added options to manage remote settings and secondary web administrators through web administration
  • Added clone user and clone group functions to web administration
  • Added option to test cipher strings to web administration
  • Added ability to override group properties on users to web administration
  • Added additional local directory and file selection controls to web administration
  • Added public share editing to web administration
  • Added same report generation controls present on the desktop to web administration
  • Added additional advanced options to web administration
  • Fixed CSV export and import for PBKDF2 HMAC SHA256 and PBKDF2 HMAC SHA512 hashed passwords by adding iteration count
  • HTTP/S web client uploads now show up in the active transfers list and are tracked in the upload speed meter control
  • Minor bug fixes and improvements
Version 7.0.3 Official Release — 08/07/2014
  • Updated to OpenSSL 1.0.1i to address security vulnerabilities in OpenSSL
  • Fixed HTTP/S web client password strength meter bug in IE8
  • Disabled accounts and accounts configured to allow only SFTP access with public key authentication will no longer receive password expiring emails
  • 3DES encryption cipher is now considered at 112 bit symetric strength to better reflect effective strength
Version 7.0.2 Official Release — 07/30/2014
  • Disabled users will also register with the “stop authentication if user exists” Policy settings
  • Added PBKDF2 HMAC SHA256 and PBKDF2 HMAC SHA256 stretched password hashing algorithms as password storage hash options
  • Added ability to select active SSH2 ciphers and HMAC algorithms
  • Added SSH2 cipher minimum bit strength display to Summary page
  • HTTP/S web client now allows zero-length file uploads
  • Fixed a problem with the web client data/time control for IE 8 users
  • Added support for generating the correct share link path when connections come in from an HTTPS proxy to a Cerberus HTTP listener
  • Reports now track whether a file operation succeeded or failed
  • Fixed web client bug for displaying local time that only used the user setting for displaying local time
Version 7.0.1 Official Release — 07/04/2014
  • Fixed a bug in web client folder uploads for Chrome
  • Fixed a bug on web client email selection and address book auto-complete
  • Added an option to force all publicly shared files and folders be password protected
  • Added more account options for CSV import (unlimited directories, password hashes, additional account parameters)
  • Added capability to export user accounts as CSV files
  • Added dedicated require password change option for native accounts
  • Enhanced the default cipher list for HTTPS web administration to require minimum 128-bit, strong ciphers
  • Added option to initiate automatic download of zip file without storing the resulting file on the server for web client zip operations
  • Clients can now modify the share until date on their own publicly shared files
  • Added web client in-browser editing of simple text-based files
Version Official Release — 06/05/2014
  • Updated to OpenSSL 1.0.1h to address security vulnerabilities in OpenSSL
  • Added new MAC SSH algorithms hmac-ripemd160 and
  • Added DeleteDirectoryFromGroup, AddDirectoryToGroup SOAP API calls
  • Renamed AddRoot, DeleteRoot to AddDirectoryToUser, DeleteDirectoryFromUser SOAP API calls
  • Added create directory option to AddDirectoryToUser and AddDirectoryToGroup API calls
Version Official Release — 05/27/2014
  • Fixed an information disclosure for SSH logins vulnerability. Analysis of failed login result could allow attacker to determine if an account exists or not. Thanks to Steve Embling, a Pentura Security Researcher, for discovering and reporting this vulnerability.
  • Fixed ability to update to a different theme in the web client for LDAP and AD accounts
  • Fixed web client file list sorting
  • Hide the security question list for AD and LDAP accounts since they can’t currently use the password reset feature
  • Added password strength/entropy meter to HTTP/S web client account request and change password pages
Version Official Release — 05/22/2014
  • Added 3DES back to the list of available SSH ciphers
  • Added a cipher list test button and a cipher list box to the Advanced Security dialog
  • Changed the ephemeral EC generated to be compatible with IE
  • IE8 HTTP/S web client improvements
Version 7.0 Official release notes —
  • New 7.0 Release
  • Redesigned HTTP/S web client that’s been optimized for both desktop and mobile browsers
  • Folder upload through HTTP/S web client with Chrome
  • Enhanced web client address book for users
  • Web client custom theme support
  • Web client search support
  • Web client image and video thumbnail viewing
  • Redesigned Report Manager
  • Added report sorting
  • Added multiple web administrators with fine grained access controls
  • Publicly shared file links are now included in user statistics reporting
  • Added max share duration limit for publicly shared links
  • User manager UI improvements
  • Event manager UI improvements
  • Performance improvements
  • Enhanced login reports
  • New session file access email report event action
  • Email notification of important events like user password expiration and password changes
Version 6.0 Release Notes
Version 6.0.19 Official Release — 5/05/2016
  • Upgraded to OpenSSL 1.0.1t to address OpenSSL bugs and security vulnerabilities
Version 6.0.18 Official Release — 3/01/2016
  • Upgraded to OpenSSL 1.0.1s to address OpenSSL bugs and security vulnerabilities
Version 6.0.17 Official Release — 12/05/2015
  • Upgraded to OpenSSL 1.0.1r to address OpenSSL bugs and security vulnerabilities
Version 6.0.16 Official Release — 7/10/2015
  • Upgraded to OpenSSL 1.0.1p to address OpenSSL bugs and security vulnerabilities
  • Fixed a bug that would result in incomplete directory reads for SSH SFTP version 6 clients and directories with large numbers of files
Version 6.0.15 Official Release — 6/12/2015
  • Updated to OpenSSL 1.0.1n to address security vulnerabilities in OpenSSL
  • Changed IP auto-detection to point to more reliable service
Version 6.0.14 Official Release — 3/20/2015
  • Updated to OpenSSL 1.0.1m to address security vulnerabilities in OpenSSL
  • Updated SOAP libraries to latest version
  • Binaries are now compiled against Visual Studio 2013 and accompanying CRT libraries
Version 6.0.13 Official Release — 1/08/2015
  • Updated to OpenSSL 1.0.1k to address security vulnerabilities in OpenSSL
Version 6.0.12 Official Release — 10/15/2014
  • Updated to OpenSSL 1.0.1j to address security vulnerabilities in OpenSSL
Version 6.0.11 Official Release — 08/08/2014
  • Updated to OpenSSL 1.0.1i to address security vulnerabilities in OpenSSL
Version Official release notes —
  • Updated to OpenSSL 1.0.1h to address security vulnerabilities in OpenSSL
Version Official release notes —
  • Fixed information disclosure for SSH logins vulnerability. Analysis of failed login result could allow attacker to determine if an account exists or not. Thanks to Steve Embling, a Pentura Security Researcher, for discovering and reporting this issue.
Version Official release notes —
  • Fixed several important memory leaks when running Personal, Standard, or Professional editions. Enterprise edition not affected.
  • Fixed a bug in attribute listings for SFTP protocol version 4 clients
Version Official release notes —
  • Added cache-control exception for IE 7,8 to the no-store, no-cache change introduced in (It breaks downloads in IE 7,8 revert to previous behavior)
  • Updated HTTPS web client JS libraries
Version Official release notes —
  • Fixed “Disable after X failed login attempts” not working for accounts that were part of a group
  • UI will properly reflect password change permissions for a user when that user is a member of a group
  • HTTP/S web client will no longer prompt users with the expired password change dialog if they don’t have permission to change their password
  • Modified HTTP/S cache-control mechanism for user file downloads to ensure no user file caching
  • Added sort-by-group to the User Manager’s users list
  • Do not attempt to shutdown a client-disconnected socket if the connection terminates abnormally
  • Updated OpenSSL library to address the recent OpenSSL TLS heartbeat vulnerability referenced by CVE-2014-0160
Version 6.0.7 Official release notes —
  • Fixed a non-public security vulnerability that could allow authenticated users to gain access to unathorized files on the server machine through the HTTP/S web client
  • Fixed an HTTP/S web client session timeout during long file uploads
  • Fixed a bug that could result in a server crash when FTPS connections timed-out
  • Cloned user accounts no longer copy last login times from cloned account
  • Significantly increased the HTTP/S buffer size for sending files
  • Increased the default socket send/receive size and made it configurable
Version Official release notes —
  • Fixed several memory leaks
Version Official release notes —
  • Updated to OpenSSL 1.0.1f
  • Workaround for mobile Safari video upload bug in web client
Version Official release notes —
  • Added a parent directory event variable for file transfer events
  • Event Manager rules sorting added to Rules page
  • Event Manager condition selection now populates the editing boxes
  • Event Manager Add/Edit event button on the Rules page now selects the highlighted event on the Edit page
  • Logging package update
  • Minor bug fixes
Version Official release notes —
  • Fixed a bug could result in a UI crash when approving an account with email notification enabled
  • Fixed a bug in event regular expression evaluation that could result in a match for invalid regular expressions
Version Official release notes —
  • Fixed a bug that could allow an SFTP file transfer ended event to be sent before the file handle closed
  • SMTP STARTTLS fix for some servers that require a new EHLO after the connection is upgraded to encryption
  • Account requests now include the request date
  • Fixed a bug that could result in the synchronization manager not recognizing unique license keys on other machines
Version Official release notes —
  • Fix for Active Directory names with special characters
  • Fix for MLST FTP command for directory listings
  • Improved FTP RETR error message for when a file does not exist, cannot be accessed, or is actually a directory
Version Official release notes —
  • Added a Public Share page to the User Manager to allow revoking and monitoring user public shares
  • Added an option to specify which SMTP server public file sharing should use
  • Added an option to always use the SMTP server authentication email address for all public sharing emails
  • Automatically reset max connections and re-enable listeners when an expired trial is licensed
  • Report Manager can now handle queries on just a date from or date to. Previously could only handle date range, or no date.
  • Added password last changed date to the Login report in the Report Manager
  • Fixed a problem with filenames with spaces getting truncated in Firefox when using the download button in the web client
  • Statistics reports and public file sharing emails now report byte sizes in more human readable formats
Version Official release notes —
  • Added AES CTR ciphers for SSH2
  • Added an option to change the root system logger level from the UI
  • Added an option on the policy page to force always using the UPN name for AD user home directory names
  • Event system performance improvements
  • Fixed an event variable email substitution bug that resulted in email to names and emails not being scanned for variables
Version Official release notes —
  • Changes to allow AD authentication against read-only domain controllers for perimeter network deployments
  • Fixed a bug that resulted in displaying only the first 25 AD or LDAP accounts in the GUI, even when Show All Accounts was checked
  • Fixed a bug in the HTTP/S web client that would result in javascript errors when a user had no virtual directories assigned to their account
Version Official release notes —
  • Added a new backup server synchronization manager
  • Added auto-complete for AD user and Cerberus group selection in the web admin AD and LDAP pages
  • Added ability to create AD group to Cerberus group mappings in the web admin AD page
  • Updated the event manager with a dedicated button and dialog for adding new rules
  • Added a backup server synchronized event rule
  • Added “does not contain” as an operation for rule filters
  • Updated web administration with limited event rule editing
  • Added online help links to almost all dialogs
  • New fault tolerance features for ensuring XML configuration files will never be left in a partially written state because of an application failure
  • Fixed a bug that resulted in failed public key authentication in some instances when a user was a member of a group that used public key authentication
  • Minor UI bug fixes and improvements
Version Official release notes —
  • Added auto-create directory paths with %USER% variable option in the Policy page
  • Added an “is a directory” variable to file rename, move, and delete events
  • Compatibility improvements to the SOAP API DeleteGroup call
  • Improved context help in dialogs
  • Improved AD user search for when AD authentication domain specified is in another forest than the server
  • Fixed a bug where SSL became uninitalized when a new license was applied, or the server was restarted from the file menu
Version Official release notes —
  • Added address book for HTTP/S web client users
  • Added public folder sharing through the HTTP/S web client
  • Public file sharing emails can now have multiple recipients
  • Optimzed HTTP/s web client by reducing script and image files
  • Fixed zip archives do not properly handle file names with non-ASCII characters
  • Added log threshold to Syslog logger
  • Enhancements to MDTM path checking to more accurately detect getting or setting mode
  • Enhancements to email notification
  • Event manager usability improvements
  • Changed the default SOAP/HTTP web administration port to 10001 for new installations
  • Ensure most recent settings are saved to disk before a backup
  • Additional database setup error detection
  • Enhancements to SFTP rename/move to allow renames/moves across volumes, handle very large file paths, and to support overwrite renames
Version Official release notes —
  • Added full UPN support for AD authentication
  • Added password changing for LDAP users
  • Added an account disable option for users that haven’t logged in within a certain number of days
  • Added a %USER% variable that can be used in virtual directory names and paths for users and groups
  • Added an option to automatically create directories when approving a new account request
  • Improved logic for detecting whether the data connection was gracefully closed at the end of an FTP STOR command
  • Added a timer to ensure HTTP/S sessions are cleaned up and closed when they timeout
  • Added support for the X-Frame-Options DENY header for HTTP/S web client page responses
  • Added an advanced option to allow setting the temporary folder used for HTTP/S web client uploads
  • Added an advanced option to specify the default share time (in hours) for publicly shared files
  • Added an option to allow user to specify a password for publicly shared files
  • Added two events for when a public file is shared, and when a public file is downloaded
  • Added bytes transferred information to the log for files uploaded and downloaded
  • Added tracking information to see when a public file is downloaded
  • Fixed a bug that could result in an error for valid LDAP search filters
  • Fixed an HTTP/S web client upload bug for uploading to non-ASCII directory paths
  • Newly created Microsoft databases will now store Unicode text properly for statistics and reporting
Version Official release notes —
  • Added a note field for IP access items in the IP Manager
  • Added username to all FTP/S and SSH SFTP client command log messages to match HTTP/S auditing
  • Improved CSV importing, including support for CSVs exported from third party servers
  • Improved auto-updater to allow more selective auto-updating
  • Cleaner web administration pages and additional error checking
  • Added ability to change several new settings through web administration
  • Added a local file and directory selector for file path settings in web administration
  • Fixed an issue where the FTP MLST command would fail on files on a network share
  • Fixed a bug related to how auto-blocking works with whitelist mode
Version Official release notes —
  • Fixed telephone number wasn’t included with account request notification
  • Fixed email server selection for account approval in the web client was ignored
  • Fixed setting for modifying hidden directory attribute on virtual directories would not save
  • Added HTTP POST event target configuration capability to web admin
  • Added public sharing as a permission option for virtual directories in the web admin
  • Fixed inconsistent virtual directory permission selection behavior in the web admin
  • Improvements to adding and removing LDAP and AD configurations in the web admin
  • Fixed “Password Never Expires” setting ignored when adding new accounts
  • CSV import now supports setting max logins, max upload filesize, and initial directory for a new user account
Version Official release notes —
  • Numerous bug fixes
  • Update the SOAP API
Version 6.0 Official release notes —
  • Upgraded FIPS OpenSSL to 1.0.1 with TLS 1.1 and TLS 1.2 support
  • Added advanced statistics collection and a new Report Manager
  • Added public file sharing to the web client
  • Updated web client upload control
  • Users and groups can now have whitelist IP ranges
  • AD groups can now be mapped to Cerberus groups for assigning virtual directories
  • Configurable timeout support for HTTP/S web client sessions
  • Zip and unzip file operation actions for event actions
  • HTTP POST operation event action to allow posting event information to a URL
  • More variables for events
  • Added variable substitution to event email recipient name and email address fields
  • Added ability to customize email subjects on event emails, including variable substitution in subjects
  • Added ability to set disable after time for users and groups through web administration
  • Updated, easier to use AD and LDAP admin pages
  • Access to advanced security settings from the Settings page
  • Access AD and LDAP user attributes like name and email address for events
Version 5.0 Release Notes
Version 5.0.10 Official release notes — 6/09/2014
  • Updated OpenSSL to 0.9.8za
Version 5.0.9 Official release notes — 5/27/2014
  • Fixed information disclosure for SSH logins. Analysis of fialed login result could allow attacker to determine if an account exists or not. Thanks to Steve Embling, a Pentura Security Researcher, for discovering and reporting this vulnerability.
  • Fixed a possible crash with FTPS connections on abnormal connection disconnect
Version Official release notes —
  • Fixed a non-public security vulnerability for authenticated users
  • User accounts weren’t disabled when their disable-after-date elapsed and the user was a member of a group, but the disable-after-date setting was overridden
Version Official release notes —
  • Updated OpenSSL to 0.9.8y
Version Official release notes —
  • Fixed an AD and LDAP virtual directory bug introduced in 5.0.6
Version Official release notes —
  • Fixed a web admin XSS vulnerability (CVE-2012-6339)
  • Minor updates and improvements
Version Official release notes —
  • Improved auto-blocking for HTTP/S web client bots
  • Optimized temporary file creation for file uploads ensures cancelled upload temporary files are deleted
  • Various system-wide performance improvements
  • Added email approve/disaprove notification to the we admin account request manager
  • Fixed a minor bug that would not let an admin add a directory to a newly created account through the web admin
Version Official release notes —
  • Fixed a CSRF vulnerability (US-CERT VU#989684) in the web admin
  • Web client users can now replace existing files on upload if they have the correct permissions
  • High DPI display improvements for the GUI
  • No longer allow multiple logged in users to run the Cerberus Console at the same time
Version Official release notes —
  • Fixed a problem with Office documents not opening directly from the web client in some versions of IE
  • Minor changes and updates to the web client
  • Optimization for authenticating against very large LDAP databases
Version Official release notes — 8/13/2012
  • Added LDAP authentication configuration to web administration
  • Added option to require password change on next login
  • Updated HTTP/S web client
  • Fixed the CSR generator to accept wildcard common names
Version Official release notes — 7/12/2012
  • Simultaneous login count was not getting decremented on logout for AD accounts
  • Added ability to change passwords for AD accounts
  • Improvements to the Getting Started Wizard
  • Improved the LDAP account listing in the LDAP page of the User Manager
Version Official release notes — 6/15/2012
  • DES cipher availability is now disabled by default for all SSH connections
  • Added a MIME mapping dialog to change HTTP/S file MIME mappings
  • Added reCAPTCHA option to the HTTP/S login page
  • Modified the CSR generator to work with Verisign
  • Made comparison on file extension caseless to determine MIME type
  • Added support for the check-file-name SSH2 SFTP integrity/hash extension command
  • Added support for the vendor-id SSH2 SFTP extension command
  • Improvements to web administration (AJAX interface selection)
Version Official release notes — 5/12/2012
  • Minor UI bug fixes and improvements
  • Added email notification option for approving or declining account requests
  • UI updates to better support Windows 8 and Server 2012
  • Added a MIME type mappings file to allow user customization of MIME types for the web client
  • Updated OpenSSL to latest version
  • Can now use a DNS-style domain name for AD authentication on Windows 2003 server and lower OS
  • More flexible domain controller auto-selection for Windows 2003 server and lower
  • Group IP whitelists are now applied to AD and LDAP users
Version Official release notes — 4/20/2012
  • Added an option to create impersonated AD user before creating the initial home directory to ensure the AD user has owner rights on the home directory
  • HTTP/S range support for partial content retrieval and file resume
  • Updated the web client
  • Updated controls for Users page of the User Manager
  • Added ability to restrict IPs by user account or group
  • Added maximum upload file size quota for user accounts
  • Added event rule for disable-after-date events
  • Fixed a bug where some symbols in URLs were not properly escaped
  • Fixed events bug where server operations actions were not saved properly to file
  • Fixed a bug where SSH clients attempting to open unsupported channels are not told of the failure
Version Official release notes — 3/16/2012
  • Web client directory browser re-write for major performance improvements by performing paging, sorting, and filtering on the server
  • Removed file and directory display limits from the web client directory browser
  • New, dynamic user and group updates through the web client
  • Enable or disable allowing user updating through the web client
  • Enhanced certificate conversion now separates and includes CA certificates when converting a binary certificate bundle to PEM format
  • Rolled back a change to FTP PORT socket binding introduced in
Version Official release notes — 2/24/2012
  • Fixed a bug that prevented changing the default SOAP port
  • Fixed a bug that prevented creating new users through the web admin if a password policy was set
  • Added the ability to customize the web client login image, page title, default directory list count, and file date local time and timezone display from the UI
  • Added a file preview feature to the web client
  • Added an event time variable and the ability to filter by time
  • Added server event targets delete and disable user or group
Version Official release notes — 2/14/2012
  • Fixed an SFTP bug that resulted in an SFTP client timeout while establishing a session
  • Added additional fault tolerance if the SOAP port is in use by another process
  • Usability improvements to the Event Manager
  • Smarter detection of SOAP port and protocol changes by the Cerberus UI
  • Enhancements to port binding to require exclusive access to the port
  • Improved error messaging for in-use ports in the log
Version Official release notes — 2/7/2012
  • Added ability to enter a license key via web administration
  • Cleanup and enhancement of the HTTP/S web client
  • HTTP/S web client can now delete directories that are not empty
  • HTTP/S web client file zip and unzip support added
  • Added confirmation dialog before deleting files of directories in the web client
  • Web administration enhancements and bug fixes
  • The server no longer waits for a client SSH NEWKEYS before sending its own new keys message
  • Fixed a bug in the Event Manager that would not allow deletion of an event sink
  • Fixed a bug that could result in the group variable not getting set for some HTTP/S file transfer events
  • Fixed a User Manager rename bug that resulted in user settings not getting when a user was changed right after getting renamed
  • Fixed a group save bug that resulted list permission changes not getting saved
  • Fixed an exception bug if TLS/SSL was disabled and an FTPS or HTTPS connection was attempted
Version Official release notes — 1/10/2012
  • Fixed a virtual directory bug when adding virtual directories in the User Manager
  • Added icons for common file types to HTTP web client
Version Official release notes — 1/5/2012
  • Added option to redirect HTTP to HTTPS for HTTP interfaces
  • Added support for larger ephemeral keys during SSH key exchange
  • ECDH SSH key exchange is now supported regardless of server host key type
  • Updated cryptographic library
  • Added event variable selection option to the event manager
Version Official release notes — 12/09/2011
  • Improved HTTP/1.0 support
  • Content-Disposition with filename now set for downloaded files
  • Automatic conversion of certificates to PEM format for FIPS mode
  • FTPS protocol checking bug fix
  • Added option to turn on/off welcome message for HTTP/S connections
  • Added option to turn on/off welcome message for SSH SFTP connections
  • Added option to disable web account requests for HTTP/S connections
  • Added option to stop checking authentication sources if user exists in a source but password was incorrect
  • Performance improvements
Version Official release notes — 11/21/2011
  • Fixed HTTP protocol bug on x64
Version Official release notes — 11/15/2011
  • Improved HTTP caching headers for better web client performance
  • Improved HTTP error handling
  • Added STARTTLS and TLS/SSL SMTP server support for email notification
  • Added ability to permanently whitelist an IP address
  • Added event manager support to web administration
  • Added DoS protection for HTTP connections
  • Fixed a problem with IE sending multiple cookies with the same name
  • Fixed an SFTP append bug
  • Fixed an HTTP bug that prevented some uploads with AD accounts
Version Official release notes — 11/03/2011
  • Fixed bug with AD authentication and HTTP
  • Fixed HTTP cookie not always getting set
  • Fixed an AD directory mapping bug
  • Fixed an HTTP upload bug in some version of IE
  • Improved HTTP redirection
  • Improved web client error reporting
Version Official release notes — 10/25/2011
  • Added web administrator account request approval
  • Added web administrator security page
  • Added web administrator add/delete listener capability
  • Several web administration bug fixes and usability improvements
  • IP manager UI bug fix
  • Minor bug fixes
Version Official release notes — 10/17/2011
  • HTTP and HTTPS client access
  • Event support (SMTP notification, launch an external process)
  • New Summary page provides health, security and compliance status at a glance
  • New password change policy requirement options
  • New password expiration policies
  • New password storage options: Cryptographically salted MD5, SHA1, SHA256, SHA512
  • SSH SFTP password change support
  • Added file and directory listing permissions to virtual directories
  • Added FTP MODE Z compression support
  • SFTP now sends the welcome message as an SSH banner message
  • New account request via web HTTP/HTTPS
  • Added option to add additional account information like name, email, telephone
  • Added support for new FTP HASH command
  • Added ability to restrict login by protocol login on a per user and group basis
  • Added SSH MAC algorithms hmac-sha2-256, hmac-sha2-256-96, hmac-sha2-512, and hmac-sha2-512-96
  • Improved web administration performance and web administration options
  • New CSR generation tool
Version 4.0 Release Notes
Version Official release notes — 6/09/2014
  • Updated OpenSSL to 0.9.8za
Version Official release notes — 7/26/2012
  • Minor bug fixes
Version Official release notes —
  • Updated OpenSSL
  • Updated Installer
Version Official release notes — 10/30/2011
  • Added POST support to several web administration forms
Version Official release notes — 10/04/2011
  • Fixed a minor SSL accept bug
  • Fixed stats CSS file not getting copied over for reports
  • AD and LDAP SFTP users can now authenticate with public keys in addition to passwords
Version Official release notes — 7/25/2011
  • Server no longer creates the Global Home/%username% directory for AD users if it does not exist and the user fails login
  • Added a file open fix for a buggy SFTP client
  • Improved GUI/service communication
Version Official release notes — 6/22/2011
  • Added support for SFTP text and append mode
Version Official release notes — 5/19/2011
  • Fixed an FTPS bug that could prevent the server from accepting connections
Version Official release notes — 5/17/2011
  • Enhanced logging – more descriptive system messages and better syslog level mapping
  • Virtual directory roots are no longer deletable through FTP or SFTP commands
  • Notification of support agreement ending for licensed users
  • UI internal cleanup and optimizations
  • Entering a license key now prompts to restart the server
  • Allow DSA with SSH in FIPS mode
Version Official release notes — 4/15/2011
  • Recompiled with Visual Studio 2010 SP1 and latest SDK
  • Improved error checking
Version Official release notes — 4/07/2011
  • Removed an SSL shutdown check that could prevent certain buggy clients from disconnecting
  • Improved system performance
Version Official release notes — 3/27/2011
  • Allow zero length file transfers for FTPS connections
  • Ignore permission change requests with SITE CHMOD (meaningless on Windows)
  • SFTP permission rules now identical to FTP for deleting existing files
  • Better consistency with file operation logging and auditing between different protocols
  • Turn on and off specific screen log messages
Version Official release notes — 3/10/2011
  • Added elliptic curve key exchange for SSH SFTP as specified in RFC 5656
  • Added support for elliptic curve SSH client keys
  • FTPS performance improvements
  • No longer sets file size on file creation when SFTP clients request it
  • Fixed a bug in the STOU command introduced in version
Version Official release notes — 2/23/2011
  • Enhanced FTP and FTPS file and directory operation auditing and error reporting
  • Added basic FTP STAT command support
  • Improved FTP HELP command support
  • Fixed self-signed certificate wizard would fail if no email address was specified
  • Additional error checking during initial setup wizard
Version Official release notes — 2/17/2011
  • Fixed interface status pane was sometimes hidden
  • Fixed a remote settings save bug
  • New certificate verify dialog
  • New Cerberus logo and icon
Version Official release notes — 1/20/2011
  • Require verifying security settings before saving and applying new settings
  • Fixed a bug that could result in failure to decode file-based OpenSSH public keys
  • RFC conformance for active mode data connections established from non-standard FTP ports (L-1 instead of always from port 20)
  • RFC comformance for default data port when no PORT or PASV command is issued
  • Fixed a bug that could result in service shutdown when terminal services connections are terminated
Version Official release notes — 11/30/2010
  • Fixed rare bug that could cause failure to accept connections
  • Minor logging improvements
  • Added right-click log window copy to clipboard
  • Enabling or disabling remote web access not longer requires a service restart
  • Updated auto-updater for Windows 2000 machines
Version Official release notes — 11/22/2010
  • Improved SFTP channel window size handling
Version Official release notes — 11/15/2010
  • Added feature to allow manually specifying interfaces when an interface isn’t detected
  • Fixed UI to allow user mapping through the GUI when multiple LDAP servers have the same IP
  • Fixed a possible memory leak with LDAP authentication
  • Fixed a virtual directory bug for overlapping paths
  • Numerout UI improvements
  • Performance improvements
Version Official release notes — 11/01/2010
  • Added a statistics file error detection and automatic repair feature
  • Added logging output, statistics generation, and several IP manager options to web administration
  • Added ability to add/modify/delete groups to web administration
  • Significant improvements to web administration performance and layout
  • Significantly increased the SSH maximum packet size to accommodate clients that use large packets
  • Fixed a bug in WAN IP auto detection that could result in excessive processor utilization
Version 4.0.7 Official release notes — 10/19/2010
  • Added a DoS option to IP auto blocking to allow blocking connection attempts that do not attempt to login
  • LDAP and AD user to group mappings are no longer case sensitive
  • LDAP users now honor the disabled flag if it is set on a mapped Cerberus group when authenticating with PK
  • LDAP users no longer require the “Use Cerberus Groups and Directories” flag set when mapping LDAP users to groups
  • All binaries are now compiled with VS2010 and linked with the v10 CRT
Version 4.0.6 Official release notes — 10/08/2010
  • New smaller, smarter and more reliable installer
  • New complete server configuration backup and restore feature
  • Larger list boxes on the Users and Groups page of the User Manager
  • Statistics page generation can now be done while running as a service
Version Official release notes — 10/01/2010
  • Added web service block address method
  • Fixed an SFTP bug that could result in corrupt file transfers for some Unix SFTP clients
  • Updated logging library
Version Official release notes — 9/26/2010
  • Added quotes around the path string when installing as a service
Version Official release notes — 9/23/2010
  • Additional LDAP error logging
  • Disable offering MAC MD5 algorithm for selection in FIPS 140-2 mode for SFTP
  • FTP connection denied messages were not being encoded correctly
Version Official release notes — 9/10/2010
  • Faster startup time
  • Improved public key authentication compatibility for SFTP clients based on OpenSSH
  • Support for SFTP real path compose and compatibility improvements with some SFTP clients
Version 4.0.5 Official release notes — 9/02/2010
  • Condensed authentication logging
  • AD authentication will use the nearest domain controller for AD authentication instead of always using the PDC
  • Fixed unable to select “Password” authentication without selecting a public key bug
  • Fixed log file color of warning messages and added several suggest fix log file messages for common problems
  • SFTP real path command improvements
Version Official release notes — 8/17/2010
  • Fixed a bug with Active Directory and LDAP authentication of SFTP users
Version Official release notes — 8/16/2010
  • Lowered the SSH initial window size for a channel to work-around buggy SFTP clients
  • Better SSH windows size negotiation support for large file transfers
Version Official release notes — 8/12/2010
  • Added support for OpenSSH public key format
Version Official release notes — 8/9/2010
  • Added Public Key authentication for SFTP
  • Cleaned up the Interfaces tab to prevent duplicate ip/port changes and to warn about inconsistent interface/port combinations
Version Official release notes — 7/20/2010
  • Fixed a bug with SFTP listings not allowing UNC virtual directories
  • Improved compatibility with SFTP clients and very large directory listings
  • Improved compatibility with SFTP clients that STAT the root directory
Version Official release notes — 7/19/2010
  • Fixed a that could result in the passive port range being reset to the default when upgrading to version 4.0.3
  • Fixed a minor bug that would result in directory listings failing when given the path “./”
Version Official release notes — 7/08/2010
  • Fixed a bug with some default FTPS interface settings not getting saved correctly
  • Added a config setting to require common name and username matches when verifying client certificates
Version Official release notes — 6/30/2010
  • Default interface settings can now be set for all types of interfaces
  • Newly detected IP addresses can now be configured to auto-bind to multiple types of listeners
  • All lists can now be sorted on the LDAP and AD mapping tabs
  • Fixed a bug in the web administration GUI that prevented changing download permission on a virtual directory
  • Fixed a bug in the SITE PSWD command that would reject passwords with capital letters
  • Fixed a bug in the MLSD and MLST commands that caused directory listings to always show hidden files
  • Fixed a bug in client certificate authentication
  • CA certs are now loaded when present in PKCS12 files
  • Added support for Certificate Revocation Lists (CRLS)
  • Added support for DSA and Elliptical curve certificates
  • Added support for ephemeral RSA and Diffie-Hellman key exchange
  • Added DSS key exchange support for SSH SFTP
  • The self-signed certificate creation dialog now offers the choice of RSA, DSA, or Elliptical Curve certificates
  • Added support for SSH2 public key authentication
  • SSL settings can now be changed and applied without restarting the server
Version Official release notes — 6/14/2010
  • Display bug fix for SSH connection ID always being zero for the first log message for that connection
  • Fixed a bug with temporary IP blocks being released too early
  • Whitelist IP mode now honors temporary auto-blocking (if set) instead of permanently removing an IP address
  • User interface improvements for the IP Manager (context menu options and header sorting for the IP list)
  • Added context menu options for filtering the onscreen log view
  • Fixed a bug where max simultaneous connections wasn’t tracked correctly for a user
  • Fixed an AD user impersonation bug
Version 4.0.2 Official release notes — 6/7/2010
  • Disabled status is now taken into consideration for LDAP and AD groups
  • Disabled groups now show up faded on LDAP and AD mapping tabs
  • Auto blocking now works properly for SFTP connections
  • Fixed a handle leak with SFTP connections
  • Increased the size of the IP Manager
  • Added ability to search for an IP address in the IP Manager
  • Added Classless Inter-Domain Routing (CIDR) support for adding IP ranges to the IP Manager
  • Added option to change virtual directory paths in the User Manager
Version Official release notes — 5/27/2010
  • Fixed an LDAP authentication bug that allowed anonymous binds
  • Enhanced the “Check for Updates” dialog
Version 4.0.1 Official release notes — 5/24/2010
  • Improved support for SFTP key re-exchange
  • Several improvements to the web administration interface
  • Added an option to ignore SFTP channel window size violations
  • Added an option to disallow setting SFTP encryption to ‘none’
  • More forgiving directory parsing code for paths with multiple consecutive slashes in non-virtual directory mode
Version Official release notes — 5/18/2010
  • Improved SFTP support, especially for Linux and Unix clients
Version Official release notes — 5/14/2010
  • Improved the web administration interface and added new features
  • Fixed a bug with using SFTP in FIPS 140-2 mode
  • Fixed a bug with failing to recognize IP ranges during IP blocking
  • Updated SOAP support
Version Official release notes — 5/8/2010
  • Fixed a simple directories bug for SFTP
  • Fixed a passive connection bug
  • Fixed a bug that could result in problems changing interface ports
  • Updated the OpenSSL libraries to the latest version
Version Official release notes — 5/7/2010
  • Fixed a bug that could result in problems changing interface ports
  • Updated the OpenSSL libraries to the latest version
Version 4.0.0 Official release notes — 5/3/2010
  • Added File transfer over SSH (SFTP)
  • Added Implicit TLS/SSL FTP (FTPS)
  • Added ability Listen for connections on multiple ports for a single IP
  • Allow simultaneous FTP, SFTP, and FTPS for a single interface
  • Allow Active Directory domain authentication against multiple domains
  • Allow LDAP authentication against multiple LDAP servers
  • Associate Active Directory users and LDAP users with Cerberus Groups to allow customization for individual Active Directory or LDAP users
  • New policy page to allow configuring password length and complexity requirements
  • Auto-disable native accounts after too many failed password attempts
  • New Authentication chaining control to allow configuring the order that users are checked against authentication services
  • Temporary user and group accounts
Version 3.0 Release Notes
Version 3.1.4 Official release notes — 2/26/2010
  • Updated configuration files to encrypt some settings
  • Added a Verify button to the Security dialog to test certificates and keys
  • Service and GUI now sync up immediately when the GUI changes the username or password of the service
Version Official release notes — 2/12/2010
  • Fixed a bug that caused anonymous users to see blank directories
Version 3.1.3 Official release notes — 2/10/2010
  • Passed Windows 7 compatibility tests from Microsoft
  • Fixed Cerberus group settings ignored for require secure control and require secure data
Version 3.1.2 Official release notes — 2/05/2010
  • Adjustments to screen drawing code to better deal with screen DPI scaling
  • Added additional SSL connection auditing information (cipher used) to the log
  • Added capability to select the ciphers used and not used for secure connections
  • Fixed a bug where interfaces configured for passive mode DNS or manual IP could switch modes when running as a service
Version 3.1.1 Official release notes — 2/03/2010
  • Added a limiter to the user manager when enumerating Active Directory accounts
  • Improved error checking for some commands
  • Added support for SITE UTIME command (both formats)
  • Made sure to properly shutdown TLS/SSL connections for idle connection time outs
  • Added support for client command OPTS UTF8 OFF to turn off default UTF8 mode
Version Official release notes — 1/26/2010
  • Added an alternate IP address detection method for rare cases where an IP interface can’t be detected
  • Fixed a problem with the service always using the default passive port range
Version Official release notes — 12/17/2009
  • Fixed a bug that could cause connections to disconnect immediately after making a connection
  • Enhanced the listing commands with more UNIX-style options
  • Fixed listing commands with wildcards for network shares
Version Official release notes — 12/16/2009
  • Reorganized the Active Directory and LDAP authentication configuration pages
  • Added the option to pick a group to associate with an Active Directory user
  • Active Directory user home directories can now be located on non-anonymous shares
  • Added the option to select a “Global Home Directory” for LDAP users or a “Global Home Directory/%username%” just like for Active Directory users
  • Better error checking and reporting for when there are problems accessing virtual directories
  • Miscellaneous performance improvements
Version 3.1 Official release notes — 11/22/2009
  • Renaming a group now updates users that include that group
  • The GUI can now be accessed when running as a service
  • Large performance improvements when running in service mode
Version 3.0.8 Official release notes — 10/15/2009
  • Fixed a bug that could cause the server to crash
  • Made all SOAP calls require login credentials
  • System-wide performance improvements
Version Official release notes — 10/06/2009
  • Fixed a bug that could allow an attacker to crash the server
Version 3.0.7 release notes — 10/05/2009
  • Fixed a bug that could allow multiple instances of Cerberus to run when running as a service
  • Vista and higher will no longer get interactive service messages when running as a service
  • Performance improvements
Version 3.0.6 release notes — 09/28/2009
  • Added loopback address detection for IPv6 addresses
  • Added support for clients that quote the filename passed for XCRC, XSHA1, XSHA256, XSHA512, and XMD5 commands
Version 3.0.5 release notes — 09/20/2009
  • Fixed a bug that could prevent HTTPS SOAP connections
  • Added the ability to use PKCS12 formatted certificates for the secure SOAP and built-in web server
  • Major improvements to the web-based user manager
  • XML reading and writing performance improvements
  • Minor system-wide performance improvements
Version 3.0.4 release notes — 09/12/2009
  • Miscellaneous system-wide performance improvements
  • Additional system logging and error checking
  • Added a log filter to the logging tab
  • Added a the capability to require secure control and data connections on a per user and per group basis
  • Minor UI improvements
  • Fixed a bug that resulted in not being able to select network shares or mapped drives from the dialog box for user directories
  • Made the SOAP API version 1.2 compliant
Version 3.0.3 release notes — 08/25/2009
  • Fixed a bug that resulted in interface activate settings not getting saved
  • Added right-click menus to connections and transfers tabs
Version 3.0.2 release notes — 08/16/2009
  • Fixed a bug that refused anonymous logins with empty passwords
  • Fixed a bug that sometimes prevented interface settings from being applied at startup
  • Fixed a crash bug
  • APPE can now append to files greater than 4GB in size
  • Added over a dozen new web service calls
  • Updated the help file
Version 3.0.1 release notes — 07/31/2009
  • Fixed General tab of IP Manager not displaying on Windows 2000 Server
  • Fixed IP block time not getting updated for connections
  • Fixed authentication so that the group setting for “Is Anonymous” and “Is Disabled” was considered for a user that was part of the group
  • Updated the help file
Version 3.0 release notes — 07/21/2009
  • Added LDAP authentication support
  • Added support for client commands XSHA256, XSHA512, ALLOC
  • Speed improvements to the login process
  • Completely rewritten web administration capability (Work in progress)
  • Linked against the FIPS 140-2 validated OpenSSL cryptographic module
  • Added FIPS 140-2 mode
  • Added support for the CCC, MFMT, and MFCT commands
  • Continued improved UTF-8 support and bug fixes
  • EPSV command support
  • International character set support (Unicode)
  • Added support for the CSID and RMDA extension commands
  • Added support for the MLST and MLSD extension commands
  • Added groups support
  • Converted the users and settings files to XML – No more dependency on the Windows Registry
  • Added a new auto-update system for upgrading Cerberus
  • Added support for the CLNT command (client name)
  • Added support for the XCRC command
  • Added support for the XSHA1 command
  • Added support for the SITE ZONE command
  • Added an option to bind to the localhost address
  • Complete rewrite of the underlying GUI framework
  • Updated to the latest versions of log4cxx, gsoap, and the OpenSSL libraries
  • Updated the look and feel of the GUI controls, new toolbar buttons, converted many icons to Vista quality
  • Added a moving chart to the statistics pane to show upload and download bandwidth used over time
  • Moved all configuration and user files from the Program Files group to the appropriate Application Data directory
  • Improved Vista compatibility
  • No more startup delay while detecting the WAN IP address
  • Improved the key strength and options for generating self-signed certificates
  • Native, 64-bit version
Version 2.50 Release Notes
Version 2.50 release notes — 05/04/2009
  • Fixed a bug in the response to the SIZE command when responding to directory SIZE requests
Version 2.49 release notes — 10/02/2008
  • Fixed an incompatibility with some FTP clients when using secure connections
  • Fixed a bug that sometimes resulted in the server service shutting down when a user logged out
  • Updated the log4cxx and OpenSSL packages to the latest versions
  • Cerberus now binds to the C-Runtime libraries dynamically
Version 2.48 release notes — 6/26/2008
  • The RETR command now correctly returns an error code when a path is a directory instead of a file – This should resolve Firefox incompatibilities
  • Updated the log4cxx and OpenSSL packages to the latest versions
Version 2.47 release notes — 2/10/2008
  • Fixed a bug that resulted in no response being sent back for an unsupported MODE
  • Added an option to disable/enable detection of IPv6 addresses
  • Fixed a toolbar display issue
  • The columns in the main tab window now auto-resize when the applications size changes
Version 2.46 release notes — 11/7/2007
  • Fixed a bug that prevented blocking a connected user from the GUI
  • Fixed a bug that caused the MDTM command to fail when setting a date/time and the file path contains spaces
  • Fixed a bug that resulted in a failure code being returned when a directory LIST or NLST filter returned no matching files
  • Fixed an XSS vulnerability in the web interface
Version 2.45 release notes — 4/27/2007
  • Fixed a bug that prevented blocking a connected user from the GUI
  • Fixed a dynamic DNS bug that resulted in the wrong external IP being used when multiple interfaces are resolving from different DNS addresses
  • Fixed a bug in the IP blocker dialog that sometimes failed to properly delete an IP address
Version 2.44 release notes — 3/27/2007
  • Fixed a display bug in the generate statistics function
  • Fixed a dynamic DNS bug
  • Fixed a bug in the IP block list that prevented IP addresses from being deleted
  • Fixed a bug in the IP block manager that resulted in corrupt block list upgrades from version 2.42 and below
  • Fixed a bug in that sometimes resulted in failed active data connections
  • Upgraded the IP block list file format to XML
Version 2.43 Official notes — 3/19/2007
  • Preliminary IPv6 Support
  • Resolved installation issues on Windows 2000
  • Added an option to always use the local address for passive commands when the connection is on the same LAN
Version 2.42 Official notes — 2/27/2007
  • Resolved a bug that could result in a crash when generating a statistics file
  • Resolved a bug resulting in a connection never terminating when a remote client’s connection is broken during an upload to the server
  • Compiled against the most recent version of OpenSSL
Version 2.41 Official notes — 2/21/2007
  • Updated the logging system to use the latest version of log4cxx
  • Fixed a bug that resulted in the log file failing to be updated when running as a service
  • Updated gSOAP support and fixed a realm authentication bug
  • Added support for the EPRT and EPSV commands
  • Compiled against the most recent version of OpenSSL
Version 2.4 Official notes — 9/09/2006
  • Fixed a GDI resource leak
  • Fixed an bug that caused an error message to be displayed when a user initiated a file backup
  • Compiled against the most recent version of OpenSSL
Version 2.4 BETA Notes
Version 2.4 BETA 3 notes — 5/18/2006
  • Added a confirmation dialog for deleting user and virtual directories
  • Added a users file backup and backup restore capability
  • Compiled against the latest OpenSSL release (0.98b)
Version 2.4 BETA 2 notes — 5/7/2006
  • Changed the FEAT command response to more closely match the FTP RFC
  • Added SSLv3/TLSv1 support
  • Added option to require SSL/TLS control and data protection
  • Added option to require NT users to be part of a security group before uthorizing access
  • Miscellaneous minor bug fixes and UI improvements
Version 2.4 BETA 1 notes — 11/20/2005
  • Fixed a DDoS bug
  • Added explicit TLS/SSL support
  • Fixed an incompatibility with Firefox that resulted in directory contents sometimes not being shown in Firefox
  • Improved web services support
  • New file logging system based on log4cxx (work in progress)
Version 2.3 Release Notes
Version 2.32 notes — 7/7/2005
  • Fixed an IP manager GUI bug
  • Added data validation to several IP manager fields
  • Fixed a bug that sometimes caused the server to crash when closing
Version 2.31 notes — 6/15/2005
  • Fixed Getting Started Wizard bug
  • Improved the login notification messages
  • Fixed several dialog inconsistencies
  • Added descriptions to several menu items
Version 2.3 notes — 6/12/2005
  • Fixed a bug that resulted in virtual directories mapped directly to drives sometimes not displaying without checking the “Show Hidden Folders” property
  • Added the SITE CHMOD command to allow for limited file property changes
  • Fixed a minor GUI resource leak
  • Improved the progress bar look
  • Progress bars no longer require 1% of the transfer to complete before appearing
  • Added tooltip help to many of the dialog controls
  • Added several new root directory options for NT authenticated users
  • Added color coding for different types of log messages
  • Added a desktop popup notification window for new connections
  • Corrected a minor bug that resulted in “log” being appended to whatever directory was selected as the log file directory for XML logging
  • Dialogs now tab correctly
  • New look to the Server, IP, and User manager
  • New Hi-color icons for the toolbar and dialog boxes
  • Improved WAN auto-detection with shorter timeout
  • Users can now launch the initial setup screen from the main menu
  • Numerous minor bug fixes and UI improvements
Version 2.2 Release Notes
Version 2.23 BETA notes — 2/05/2005
  • Replacing an existing file using rename now requires delete permission
  • Added number of connections and current transfer rates as tooltip bubbles on the notification icon
  • Corrected a bug that allowed users to continue to attempt to login after they had been auto blocked if the connection remained open
  • Replaced a few icons with enhanced Hi-color icons
  • Added current transfer rate indicators to the status bar
  • Corrected a bug that sometimes showed the date in the wrong format during a “LIST” operation
  • Corrected a few bugs that could result in incorrect transfer rates being displayed during a file transfer. Updated the transfer rates to reflect current transfer rate as opposed to average transfer rate.
  • User and group information should now be displayed for directory items listed during a wildcard “LIST”
  • Added configurable denied welcome message for when the server is set to not accept logins
  • The taskbar notification icon now changes when the server has at least one user connected
  • Cerberus can now detect and add itself to the Windows Firewall exclusion list
  • MDTM time can now be configured to set the modification time and access time on a file
Version 2.22 Official notes — 9/23/2004
  • Fixed a timeout bug in the “Optimized file transfer” mode
  • Cancelling a connection now properly terminates users who are transferring files
  • The correct tooltips are now displayed for the Connections and Transfers tabs
  • The Transfers tab now displays the bytes transferred out of total
  • The Speed value on the Transfers tab now has 2 decimal places of precision
  • Added right-click menu option to terminate a connection from the Transfers tab
  • Fixed a bug that resulted in connection IDs being displayed in the wrong base format
  • Fixed a bug in the IP Manager that could result in corrupt IP blocking file when only a single address was entered to block
Version 2.21 Official notes — 9/02/2004
  • Fixed a bug in the “Use Optimized Transfer mode” setting that resulted in corrupted files being transferred
  • Installer now changes default send and receive buffer size to 64KB
Version 2.2 Official notes — 8/30/2004
  • Added the SITE PSWD command to allow users to change their own passwords
  • Fixed a bug that could result in a file transfer error causing a 100% CPU utilization spike
  • Send and receive buffer settings now more directly affect file transfer speeds – Note: Has no impact when using “optimized file sending” mode
  • Anonymous passwords are now logged
  • Icon colors are now full color under all versions of Windows
  • New higher color Cerberus icon
  • Fixed “group name too long” directory listing bug
  • Long directory listings now correctly display the year when the file is a year or older.
  • New WAN IP Auto-detection feature
Version 2.2 BETA 3 notes — 6/06/2004
  • Added NT user and active directory authentication
  • User and group information is now displayed for files and directories during a long file listing (NT4, 2000, XP, 2003 only).
  • The “X” (Close) button now works in sub windows
  • Miscellaneous user interface fixes
  • Updated Help file
Version 2.2 BETA 2 notes — 5/10/2004
  • Corrected a Virtual Directory rename problem in the User Manager
  • Added a safeguard check to prevent renaming of Virtual Directories with forward or backslashes
Version 2.2 BETA 1 notes — 5/10/2004
  • Changed the directory listing commands to accept and interpret common UNIX “ls” flags within LIST and NLIST commands
  • Added a simple directory mode in addition to the standard virtual directory mode
  • Greatly improved support for wildcards within LIST and NLIST commands
  • Greatly improved support for the common MGET; ftp implementation thanks to better wildcards support
  • Pressing enter or esc after renaming an item in the User manager no longer closes the dialog box
  • Added support for Windows XP themes
  • Changed the look of many of the program icons
  • Added Web Services interface to many common FTP server tasks
  • Added a new simple virtual directory mode (see the help file for more details)
  • Added support for UNC paths as virtual directories
  • Users in the User manager are now sorted in alphabetical order
Version 2.1 Release Notes
Version 2.16 Official release notes — 3/25/2004
  • Fixed a bug that could result in an interface failing initialization in NT4
  • Added an option to disable the startup tip that appears when starting the server
Version 2.15 Official release notes — 2/06/2004
  • Fixed a major bug in the ‘Use different IP for PASV’ option.
Version 2.15 BETA release notes — 1/25/2004
  • Added a default interface to the interface configuration screen. The user-defined settings from the default interface are now applied to new interfaces automatically.
  • Added an automatic IP-blocker. Administrators can now configure filters to automatically block IP addresses (temporarily or permanently) that fail authentication after a certain number of attempts.
  • Added a new network checklist screen to the Getting Started Wizard. The new wizard will point out possible problems in the network configuration that may cause problems with an FTP Server.
  • Added an auto-detect IP address feature. The server can now automatically detect and activate new interfaces, as well as clean up and deactivate interfaces that have been released.
  • Added a line limit option to the onscreen logger.
  • Corrected a bug with the “Deny FXP Transfers” option.
  • Changed the look of the taskbar icon
Version 2.11 release notes — 12/21/2003
  • Changed the permissions structure so that uploaded files cannot overwrite existing files unless the user has delete permission
  • The MDTM command can now be used to set the date/time on an uploaded file
  • Enhanced file send operations by allowing the OS to cache files
  • Added an option under the “Advanced” tab of the server manager that instructs the server to use the “TransmitFile” API call to send files. Not available on Windows 98.
Version 2.11 BETA 2 release notes — 11/11/2003
  • Added automatic import of previous Cerberus settings(except interfaces)
  • Fixed a buffer overflow vulnerability
  • Added experimental support for the OPTS and LANG commands
  • Fixed a bug the caused a “550 Invalid Path” error message whenever a CWD to the root (“/”) was issued
  • Resolved a bug that caused settings changes to be lost on restart when Cerberus was installed as a service
  • Corrected some cosmetic flaws in the GUI’s server manager
  • Fixed a bug that turned off command logging when connection logging was turned off
Version 2.11 BETA release notes — 10/29/2003
  • Adjusted the dialog button positioning so that the buttons wouldn’t get clipped on XP
  • The login process has been changed so that incorrect usernames will now be prompted for passwords. This is a security enhancement.
  • Fixed a UI bug that could cause the Getting Started Wizard to keep showing up after a reboot
  • Added an option under the “Advanced” tab of the server manager to deny FXP transfers.
  • Added an option under the “Advanced” tab of the server manager to deny PORT commands on the reserved ports (Ports below 1025).
  • Passwords are not longer stored in the user file. Passwords are now SHA-1 encrypted, and then only the password message digest is stored.
  • Default programs are now invoked, instead of always Internet Explorer, for external links. Ex: mailto, Cerberus homepage web link, statistics file display.
  • The interface limit of 5 has been removed. Cerberus can now listen on an unlimited number of interfaces.
  • The list command has been changed to display the contents of directories passed as parameters
  • Updated help file
  • Numerous minor bug fixes and performance enhancements
Version 2.1 Release notes — 3/18/2003
  • Added support for P@SW command to allow certain SMC Barricade routers to work with passive mode
  • Added support for MDTM command
  • Added additional support for FEAT command
  • Improved support for running as a service
  • Added option to display file times in local or UTC format
  • Greatly reduced flicker on screen resizing
  • Added “Getting Started” wizard to the GUI
  • Improved support for IE, Netscape, and Opera FTP clients
  • Improved communication performance between the GUI and the server
  • Fixed bug which caused the PORT command to sometimes fail on NT4
  • Better error checking to provide additional fault-tolerance
  • Several minor bug fixes
Version 2.0 Release Notes
Version 2.02 Release notes — 1/07/2003
  • Official release
  • Added PASV port range option to the ‘Advanced’ Server Configuration
Version 2.02 BETA Release notes — 12/22/2002
  • Resolved a bug that allowed multiple versions of Cerberus to be started if Cerberus was running as a service, and a Terminal Services client started another version.
  • Fixed a bug that could, on rare occasions, cause the server to continuously attempt to terminate a connection that had already been terminated
  • Added an option to log server replys
  • Rewrote underlying socket communications to improve performance
  • Several minor bug fixes and performance improvements
Version 2.01 Release notes — 10/17/2002
  • Enhanced error detection and recovery
  • Corrected a bug which prevented networked drives from being displayed to clients
  • Changed the appearance of the Status Pane
  • Changed some of the toolbar icons to Hi-color icons
  • Added several commands to the ‘right-click’ menu of the User Manager
  • Added the option to ‘Clone’ (use as a base template) a user
  • Checked, and corrected where necessary, all string and buffer manipulations routines to make sure they were “buffer-overflow proof”
  • The uninstall program now removes Cerberus from the NT Service list
Version 2.0 Official Release notes — 10/07/2002
  • Corrected a bug that could result in an uploaded file being corrupt when overwriting and existing file of the same name
  • Added the ability to control how many times an account can be logged into simultaneously
Version 2.0 BETA 4 Release notes — 9/21/2002
  • Corrected a bug which could prevent Cerberus from starting up on Windows 95 and 98
  • Fixed a bug in the registry access routines which could cause Cerberus to crash
Version 2.0 BETA 3 Release notes — 9/20/2002
  • Corrected the “The descriptor is not a socket” bug
Version 2.0 BETA 2 Release notes — 9/16/2002
  • New User Manager
  • Several GUI changes and improvements
Version 2.0 BETA 1 Release notes — 8/11/2002
  • Completely new core. No more MFC!
  • Can now be installed as a Native NT Service
  • Data Connections established through the PORT command now correctly binds to local port 20 (RfC959). Should help with firewalls
  • Corrected a bug that occasionally caused uploaded files to be closed before the last few kilobytes were written
  • The User Manager has been revamped again. Automatically saves changes, instead of constantly asking for permission
  • Ability to control whether or not to display hidden files and directories
  • New toolbar icons
  • Added a context menu to the connections page
  • Ability to manually add interfaces
  • Support for files greater than 4GB
  • Too many security and bug fixes to list
Version 1.0 Release Notes
Version 1.71 Release notes — 2/07/2002
  • Only one copy of Cerberus can start at a time
  • The User Manager has been made more user friendly
  • Settings and user lists now save automatically when Windows is shutting down
  • Rewrote the directory parsing routines for greater reliability
Version 1.7 Release notes — 12/16/2001
  • Fixed the “Invalid Path” error that showed up when a file or directory with more than one period was used in a command
  • Directories added to a user’s virtual root can now have different permissions
  • The user manager has been redesigned to be more user friendly
  • Fixed a bug that caused processor utilization to sometimes spike when a file was downloaded.
  • Command progress indication. The user page will tell whether a command is in progress or complete. For file downloads, the percentage left to download will be displayed
  • Fixed a bug that could cause the server to crash if a message greater than 4KB was specified in either the welcome, goodbye, or max connection edit boxes.
  • Fixed a bug that could cause the server to crash if the server wasn’t restarted after a message was changed.
  • Several other bug fixes
Version 1.6 Beta Release notes — 8/29/2001
  • Fixed a major security bug that allowed unrestricted access to the server machine by using periods in the change directory path
  • Modified the directory retrieval commands to more closely model Unix behavior. Should fix the problems encountered using the mget * command and several other security problems
  • Complete rewrite of the underlying directory parsing functions.
  • Lots of other minor fixes and improvements
Version 1.5 Release notes — 5/21/2001
  • Added a new virtual root directory file structure
  • Added support for the APPEnd command
  • The server now remembers whether an interface is disabled or enabled
  • Enhanced the fault tolerance for clients that send incorrect or unsupported commands by ensuring a reply code is always sent
  • Added this help file.
  • Corrected a bug in the IP Manager that caused all IP addresses placed inside to be blocked regardless of whether the deny or allow button was selected.
  • CWD command now fails if anything other than a valid directory is passed
  • Activated the “Allow Login” feature for particular interfaces
  • Server now handles X-versions(experimental) of commands
  • Maximum connection settings are now enforced
  • Streamlined a lot of the underlying code
Version 1.22 Release notes — 5/08/2001
  • Fixed a security problem that always uses c:\ as the root directory for anonymous logins.
  • Replaced the imbedded directory control in User Manager with a more stable one.
  • Rewrote the command parsing routines to provide greater fault tolerance for incorrectly formatted, or garbage strings on the control connection.
Version 1.2 Release notes — 5/03/2001
  • Changed OS returned from SITE command. Should improve FTP auto-detect.
  • Fixed a security hole that allowed people to execute certain commands without being logged in
  • Removed the hard-coded paths. International versions of Windows should work now.
  • Some stability improvements
Version 1.1 Release notes — 4/25/2001
  • Fixed the CWD command to fail when the remote directory requested doesn’t exist
  • Added support for the CDUP command
  • Added additional log messages for file transfers
  • Major code rewrites to improve overall performance
  • New statistic generator
  • Added additional error checking during remote path resolution
  • Some GUI changes/improvements
  • Fixed a major bug that caused PASV file uploads to fail
  • Several other minor bug fixes
  • Modified the directory structure sent with the LIST command to mirror UNIX exactly
  • Increased compatibility with popular FTP clients
  • Partial support for the ABORt command
Version 1.05 Release notes — 4/16/2001
  • Added support for the SIZE and REST commands. The server can now restart failed file transfers from the point of failure
  • Fixed a MAJOR security issue that caused upload/download permissions to not be checked for users.
  • Added the creation of the ‘log’ directory so that the AutoLog option wouldn’t error when attempting to open the log file.
  • Corrected the “incorrect user file version” bug that appears when you restart the server (note: delete the old user and block files).
  • Corrected a bug in the STOU command that caused the wrong procedure to be called.
  • Optimized the file transfer code and added improved error detection.
  • Thanks to everyone who has submitted bug reports.
Version 1.03 Release notes — 4/14/2001
  • Corrected a bug introduced in the last version that resulted in the wrong OS being detected (currently harmless, but annoying).
Version 1.02 Release notes — 4/13/2001
  • Added an IP Manager to control connection attempts.
  • Added an option to automatically record a log file while the server is running.
  • More event tracking added to the log.
  • Enhanced error detection and recovery.
Version 1.01 Release notes — 4/5/2001
  • Added menu options to the taskbar icon.
  • You can now hide or show the Cerberus manager window from the taskbar.
  • Added an option to hide the server manager window at startup.
  • Added my email address to the about dialog for tech support.
  • Activated the ability to save a copy of the log screen to file.
Version 1.0 Release notes — 3/14/2001
  • Initial Release