Announcements

Critical DNS security flaw found

A nasty bug has been found in the software that translates Internet computer names (hostnames) into numerical addresses that computers on a network can use (IP addresses).  This is known as DNS software, which stands for Domain Name System.

When you navigate to www.enterprisedt.com in your web browser, your machine’s DNS software contacts a DNS server […]

Read More
By |February 25th, 2016
Announcements, Blogs|Comments Off on Critical DNS security flaw found

Apple warns its customers about backdoors

Apple today released a letter to its customers that is extraordinary in its content, and strongly related to today’s post about the UK’s “snooper’s charter”. The UK government has stated they do not want to mandate backdoors into security products.

The situation has suddenly become very different in the US. Apple is claiming that the […]

Read More
By |February 18th, 2016
Announcements, Blogs|Comments Off on Apple warns its customers about backdoors

edtFTPj/PRO adds TLS 1.2

We’ve just released edtFTPj/PRO 5.0, adding support for TLS 1.2.

At the start of the new year, it’s interesting to look back over the release history of edtFTPj/PRO. Amazingly, it’s been over 12 years since 1.0 was released with basic support for FTPS! And it was based on the open source Java FTP client, edtFTPj/Free, which was released […]

Read More
By |January 18th, 2016
Announcements, Blogs, Discussion|Comments Off on edtFTPj/PRO adds TLS 1.2

OpenSSL security audit

OpenSSL is to undergo a comprehensive security audit by NCC Group.

OpenSSL is one of the most widely deployed software libraries in the world, and is a critical part of the Internet’s security infrastructure. It is an open source implementation of the Secure Sockets Layer (SSL 2/3) and Transport Layer Security (TLS), and is used […]

Read More
By |March 14th, 2015
Announcements, Blogs|Comments Off on OpenSSL security audit

Phasing out SHA-1

Hash algorithms such as MD5 and SHA-1 are important mathematical functions used widely in software, particularly in secure protocols such as SSL/TLS and SSH.

These functions are supplied a block of data, known as the message, and produce a much smaller hash value, known as the message digest or simply the digest. The same message will always result in the […]

Read More
By |February 12th, 2015
Announcements, CompleteFTP|Comments Off on Phasing out SHA-1

The CompleteFTP roadmap for 2015

CompleteFTP, our secure FTP server for Windows, has quite a long development history, and has undergone considerable change since its inception. HTTP support, clustering, a multi-protocol gateway, file sharing and custom extensions are just some of the key features added in the last few years.

But what of the future? What can CompleteFTP users expect from 2015?

Last year we […]

Read More
By |January 21st, 2015
Announcements, CompleteFTP|Comments Off on The CompleteFTP roadmap for 2015

CompleteFTP wins SFTP server recommendation from users

Survey reveals that more than 4 out of 5 CompleteFTP users would recommend it to others in need of secure FTP server software. CompleteFTP is SFTP server software trusted by thousands of organisations worldwide to securely transfer files and automate business processes every day. In research conducted early in 2014, customers rated a powerful feature-set, […]

Read More
By |November 4th, 2014
Announcements|Comments Off on CompleteFTP wins SFTP server recommendation from users

The POODLE SSL vulnerability resolved

By now most people will have heard of the POODLE SSL vulnerability, a flaw in the SSL 3.0 protocol that affects FTPS and HTTPS. We’ve recently blogged about POODLE in some detail. We’ve spent the last couple of weeks updating our products to deal with POODLE, and can today say that the latest versions […]

Read More
By |November 4th, 2014
Announcements, Blogs|Comments Off on The POODLE SSL vulnerability resolved

POODLE SSL Vulnerability addressed in CompleteFTP 8.1.3

We recently posted about the POODLE vulnerability, a flaw in the SSL 3.0 protocol that affects FTPS and HTTPS. This has now been addressed in the release of CompleteFTP 8.1.3, which disables SSL 3.0 by default. SSL 3 is superceded by TLS, and over 99% of clients should support TLS 1.0 or higher. Users […]

Read More
By |October 23rd, 2014
Announcements, Blogs|Comments Off on POODLE SSL Vulnerability addressed in CompleteFTP 8.1.3

POODLE, SSL and EnterpriseDT software

Security researchers at Google recently discovered the POODLE SSL vulnerability, a security flaw in an older version of the SSL/TLS protocol, SSL 3.0.
Important facts about POODLE

SFTP, SCP and SSH are not vulnerable to POODLE attacks – only FTPS and HTTPS are vulnerable as they use SSL/TLS.
POODLE affects the SSL3 protocol. SSL3 is an older member of […]

Read More
By |October 17th, 2014
Announcements|Comments Off on POODLE, SSL and EnterpriseDT software