POODLE, SSL and EnterpriseDT software

Security researchers at Google recently discovered the POODLE SSL vulnerability, a security flaw in an older version of the SSL/TLS protocol, SSL 3.0.
Important facts about POODLE

SFTP, SCP and SSH are not vulnerable to POODLE attacks – only FTPS and HTTPS are vulnerable as they use SSL/TLS.
POODLE affects the SSL3 protocol. SSL3 is an older member of […]

Read More
By |October 17th, 2014
Announcements|Comments Off on POODLE, SSL and EnterpriseDT software

7 million DropBox passwords stolen – corporate data at risk

7 million DropBox passwords have been stolen (read more). A friend who works at a well-known Australian company has told us that IT admins are warning staff to immediately change their DropBox passwords. Despite company policy stating that company files must not be stored on external computers, staff of this company have found DropBox […]

Read More
By |October 14th, 2014
Announcements|Comments Off on 7 million DropBox passwords stolen – corporate data at risk

Microsoft no longer recommends “FIPS mode”

Microsoft no longer recommends using “FIPS mode” on their operating systems.

FIPS is the United States Federal Information Processing Standard , which defines the cryptographic algorithms approved for use by US Federal government computer systems.

Enabling FIPS mode in Windows enforces the use of only FIPS-validated cryptographic algorithms. 

Why doesn’t Microsoft recommending using FIPS mode any more? There’s multiple reasons, […]

Read More
By |October 11th, 2014
Announcements, Blogs|Comments Off on Microsoft no longer recommends “FIPS mode”

Shellshock, the bash bug, bashdoor

Shellshock is the latest security bug to grab the media’s attention. It’s a security flaw in the popular bash shell, which is an open source Unix shell. A shell is a command-line interpreter, similar to the Windows command prompt – commands are typed into the shell and executed by it.

The bug causes bash to unintentionally execute commands […]

Read More
By |October 1st, 2014
Announcements, Blogs|Comments Off on Shellshock, the bash bug, bashdoor

CompleteFTP – banning file extensions

We’ve just released CompleteFTP 8.1.2, which allows you to ban uploading files that have filenames matching the set filename filters.

So you can enter a filter such as *.exe , and any attempt to upload a file with a name matching that filter will result in an error. Files also cannot be renamed to have matching filenames, otherwise users could simply upload […]

Read More
By |September 30th, 2014
Announcements, Blogs|Comments Off on CompleteFTP – banning file extensions

EnterpriseDT gets a website makeover

We’ve recently completed a complete makeover of our website. This has included updating the user forums to a more modern look, and the entire site is now responsive, i.e. easily viewable on a mobile device. We hope you like the result!

Read More
By |June 27th, 2014
Announcements|Comments Off on EnterpriseDT gets a website makeover

Heartbleed – a catastrophe

According to Bruce Schneier, the “Heartbleed” OpenSSL bug is a catastrophic one.

Attackers can access all of a server’s memory, including user names, passwords, private keys – anything at all.

It’s probably safer not to use Internet banking and other services that rely on SSL to secure HTTP sessions for the time being, until your financial […]

Read More
By |June 23rd, 2014
Announcements|Comments Off on Heartbleed – a catastrophe

CompleteBox adds private file storage

CompleteFTP 8.1.0 has recently been released, and includes CompleteBox 1.1, which has some neat new features.

CompleteBox is a file sharing client that integrates with CompleteFTP. The most important of the new features is private storage. As well as sharing files publicly, users can now use CompleteBox to store their own files and retrieve them […]

Read More

CompleteFTP file-sharing

With the release of CompleteFTP 8.0 recently, collaborative file-sharing has been added to CompleteFTP’s many capabilities (in the Professional and Enterprise editions).

CompleteFTP now ships with a file-sharing client called CompleteBox. A user account must be set up on the CompleteFTP server, and the CompleteBox client installed on the user’s local machine. The user enters […]

Read More
By |December 11th, 2013
Announcements|Comments Off on CompleteFTP file-sharing

Port forwarding feature added

From version 7.4.0, CompleteFTP (Professional and Enterprise Editions only) supports local SSH port forwarding (often known as SSH tunneling). This means SSH tunnels can be established between a client machine and CompleteFTP that other protocols can use.

Why would you use SSH port forwarding (also called SSH tunneling)? There are two reasons – firewalls and […]

Read More
By |October 9th, 2013
Announcements|Comments Off on Port forwarding feature added