Loading
 
 

1.800.290.5054 (U.S./Canada)
1.210.308.8267 (Worldwide)

Contact Us Request Free Trial

 
   
Skip Navigation LinksHome > Products & Services > Enhanced File Transfer (EFT) > Version History

EFT Platform Release Notes

Changes in 7.0.3

October 13, 2014

  • Additions:

  • EFT Server Enterprise only:

  • Added Content Integrity Control module and Event Rule action
  • High Availability (HA):

  • Added AD and LDAP support in high availability installations
  • Added default Event Rule load balancing settings for active-active clusters
  • Added cluster information to Status tab for active-active cluster nodes
  • Web Interfaces – General:

  • Changed Single-click URLs and single sign-on to use the HTML5 WTC instead of the Java WTC
  • Web Interfaces – Web Transfer Client (HTML5):

  • Added ability to refresh and keep user logged in
  • Added an indicator to illustrate that Global Search is "loading" when enabled
  • Created an upgrader to facilitate upgrading the WTC without upgrading EFT
  • Added simple mechanism for issuing a Terms & Conditions acceptance dialog to end users
  • Enabled the "If Using Web Transfer Client" condition in EFT's Event Rules for the HTML5 WTC
  • Enabled On File Upload for HTML5 WTC
  • Enabled On Verified File Upload for HTML5 Advanced WTC
  • Enabled uploads of large files, with up to 20GB tested
  • Enhancements:

  • Web Interfaces – Web Transfer Client (HTML5):

  • Improved performance of uploads in all supported browsers
  • Removed notification in "basic" HTML5 WTC that previously alerted users no licenses were available
  • Fixes:

  • EFT Server Enterprise and Standard:

  • Fixed issue where invalid home folder path results in corrupt ftp.cfg when upgrading from 6.5 to 7.x
  • Fixed a problem where adding users to a newly created Permission Groups fails with a message "Operation Failed"
  • Fixed an issue where "Show VFS Home folder" command not working for virtual folders
  • Fixed a problem where EFT 7.0 fails to load a 6.4 configuration on upgrade
  • Disabled "Create User Group" option for user-level admins
  • Fixed a problem where config backup wouldn't gracefully disconnect admin during backup
  • Fixed a problem where EFT logged every connect/disconnect to the server
  • Fixed a problem where "Browse VFS" dialog returned wrong path results in "Access Denied" message box
  • Fixed problem where renamed permission group fails to propagate new name to Folder Permissions list in VFS Tab
  • Fixed a problem where EFT logged that it was serializing the EFT.cfg file upon every client connect
  • Fixed a problem where SSH Server would not throttle bandwidth for connecting clients
  • Restored ability to Delete/Modify virtual folder in EFT VFS when physically deleted or inaccessible
  • Improved performance of RESTORE operation
  • Fixed a problem where a “User Admin” or “Change Password Admin” disabling a single account caused EFT to mark all user accounts the admin has access to as Updated
  • Fixed a problem where a new user's home folder is set to "/" even when "Automatically create a home folder for new users" is not selected
  • Fixed a GUI crash caused by an admin level "User" being unable to access VFS
  • Administrator Interface (AI):

  • Fixed Help> About of MTC Registration where it previously showed 0 licenses
  • Fixed an issue where under certain conditions expanding a node in the VFS Folder tree displays a persistent hourglass node with the text "Loading" that requires further interaction before going away
  • Fixed an issue where UI doesn't update properly when switching between settings templates and users
  • Addressed a memory leak in Admin GUI
  • Auditing and Reporting Module (ARM):

  • Fixed formatting error in Security Failed Logins report
  • Fixed a problem where upgrading to EFT 7 caused "Activity - By File Report" to not return files that were uploaded and then processed with "File Uploaded" event rule
  • Addressed cases where ARM failed to audit the parameters of some event actions
  • Authentication – Active Directory:

  • Fixed issue where AD Accounts in a child domain cannot connect to EFT over SFTP, while other protocols worked correctly
  • Fixed special character handling for AD Auth site's Domain and Group fields
  • Fixed issue where upgrades involving AD Sites with virtual directories broke user folder permissions
  • Fixed issue where AD physical home folder assignments had changed in 7.0
  • Fixed a problem where AD user accounts didn't update on service restart in HA mode
  • Fixed an issue where AD Password Expiration notifications were sent when corresponding feature was disabled by default
  • Fixed timeout when creating AD Sites with 150K + users
  • Authentication - LDAP:

  • Fixed LDAP issues when poorly connected/low performance server was in use
  • Authentication - ODBC:

  • Fixed reduction of ODBC synchronization process performance
  • Fixed a problem where CreateUserEx call for an ODBC site is 3-4x slower on average compared to 6.5
  • COM Interface:

  • Fixed an issue where site admins could obtain ARM password via COM
  • Improved usability of event rule function: rule.GetHASchedulingParams()
  • Event Rules:

  • Removed ability to add a non-existent AWE task to an event rule
  • Fixed a problem where Download actions did not work if username length is 40 or more characters and used mask in source path.
  • Fixed a problem where FM failed to move all files in HA configurations
  • Fixed an issue with "Monthly" and "Yearly" timers not working correctly in 7.0
  • Addressed a problem where scheduled event rules periodically stop working after upgrading to EFT 7
  • Fixed an issue where failure to deliver event is not being logged
  • Fixed a problem where event rules weren't executing on fully qualified domain names
  • Addressed scenario where enabling Event Rules via the Event Rules parent node caused "Operation failed." error message
  • Fixed a problem where an event rule couldn't utilise the Settings Template condition
  • High Availability (HA):

  • Fixed issue where additional items were added to the registry after a backup & restore
  • Fixed node name in error message when opening up a 2nd Admin console in an HA environment
  • Protocols - General:

  • Fixed a problem where Certificate Signing Utility returned "Error. Request not signed." error
  • Protocols - FTP/S:

  • Corrected issue where literal 'CWD ..' while in the root folder will return 501 syntax error
  • Added filenames and corrected wrong port number in u_ex log file
  • Corrected issue where "ls filename" command responds with a 550 permission denied message
  • Fixed issue where incorrectly configured FTP port range heavily raised CPU usage and broke passive mode with no errors
  • Restored ability to use backslash when changing directories with FTP
  • Protocols - SFTP:

  • Fixed a problem where Rename Transferred Files option does not work in event rules over SFTP
  • Web Interfaces – General:

  • Fixed issue where tbl_Protocol_commands does not record creation of Folders from WTC when folders are copied
  • Restored Web Session Timeout registry override units to minutes (6.5) instead of seconds (7.0)
  • Fixed a problem where HTTP redirection to built-in pages (login, change password, etc.) failed to work behind NLB or WAF even when X-ORIGINAL-PROTOCOL: https was used
  • Web Interfaces – Plain Text Client (PTC):

  • Fixed problem where users are unable to create new folders using PTC upon initial login

Changes in 7.0.1

August 11, 2014

  • EFT Platform (Standard and Enterprise):

  • Added HTTP CRC calculation logging
  • General

  • Improved performance of RESTORE operation
  • Improved Backup Configuration performance and stability
  • Web Interfaces - Web Transfer Client (WTC – HTML5 Advanced):

  • Upgraded Jument to 1.0.1 build 3
  • New text for login error on Web interface
  • Fixes

  • General:
  • Fixed a bug where EFT would send AD Password Expiration notifications when corresponding feature should be disabled by default
  • Fixed a problem where EFT logged sensitive information to EFT.log in specific cases
  • Fixed a memory leak related to FIPS SSL
  • Auditing and Reporting Module (ARM):

  • Fixed a bug where ARM failed to audit the parameters of some event actions
  • Addressed a scenario that caused a failure to upgrade Oracle database
  • Authentication:

  • Fixed a bug related to new user creation, where the home folder for the user was automatically assigned to be / even when "Automatically create a home folder for new users" was not selected.
  • Addressed a scenario where EFT may crash in high load when ODBC authentication is used.
  • COM Interface:
  • Refined usability of event rule function: rule.GetHASchedulingParams()
  • DMZ Gateway:

  • Addressed EFT hang during DMZ use.
  • Event Rules:

  • Addressed issue where enabling Event Rules via the Event Rules parent node caused "Operation failed." error message.
  • High Availability (HA):

  • Fixed issue where testing an AS2 connection via a proxy when a DMZ server is offline would cause the GUI to timeout.
  • Refined behavior of Restore from Backup button in the new site wizard to operate intuitively.
  • Corrected issue where EFT incorrectly balanced FM events with long file names
  • Addressed crash in HA when deleting HA timer rule
  • Installation:

  • Addressed scenarios where EFT 7.0 may fail to upgrade from 6.5 when a client had incorrect home folder
  • Protocols - FTP/S:

  • Fixed EFT service memory leak and crash while using literal site command to call custom command via FTP protocol
  • Fixed EFT service crash when using literal X-CRC command
  • Protocols - SFTP:

  • Fixed bug where SFTP created incorrect folder listing which may cause problems for some SFTP clients.
  • Web Interfaces - General:

  • Fixed bug where Web Services was not accessible via web browser. 404 returned.
  • Corrected HTTP redirection to built-in pages (login, change password, etc.).
  • Refined per-Site customization of Web interfaces to work as expected

Changes in 7.0

July 03, 2014

  • Added High Availability (HA) mode of operation for active-active failover and load balancing without requiring Windows Clustering Services nor Veritas Clustering
  • Added new HTML5 based Web Transfer Client to provide similar functionality to Java applet with fewer deployment problems
  • Updated OpenSSL library to version 0.9.8za
  • Updated OpenPGP library
  • Enable Large Address Aware feature so that EFT Service process can access up to 4GB memory
  • Updated password hashing mechanism to use salted, iterated PBKDF generation to improve security
  • Updated PCI/DSS module to audit compliance with PCI DSS v3
  • Improved skipped file handling during Event Rule Offload action
  • Improved CRC checksum calculations efficiency for files on high latency links to network share
  • Increased default ARM queue size to 1000
  • Added self-healing ARM connections
  • Event Rules:

  • Added support for load balancing Folder Monitor and Timer event rules in HA mode
  • Improved handling of asynchronous Custom Command and AWE Task execution for deterministic, reliable behavior under load
  • Auditing and Reporting:

  • Added end time to ARM database to record when an event action stopped in addition to its start time, which had already been recorded
  • Updated GUID generation to use sequential GUIDs to reduce index page fragmentation
  • Added High Availability reports to group output by cluster node performing the activity
  • COM Interface:

  • Added support for High Availability configuration
  • Installer:

  • Support HA installation mode, including enabling required Windows features to support message queuing
  • Provided command line installation options for serial number (activation) entry
  • Provided command line installation options for HA configuration
  • Fixes:

  • Numerous performance and usability enhancements

Changes in 6.5.16

February 26, 2014

  • Added support for Mobile Transfer Client (MTC) access
  • Added support for defining MTC security policies
  • Added support for using SSL certificates for outbound AS2 transfers for cert-based auth
  • Enhanced send login credentials email to use templating engine for dynamically building content
  • Private patch 6.5.15

  • Fixed bug where permission groups assigned to the last created user were also assigned to the next created user
  • Private patch 6.5.14

  • Fixed a failure to comply with RFC 2616 - message body was being returned for HEAD requests
  • Fixed a bug where AWE workflows would come up blank if the Site is stopped at server startup
  • Private patch 6.5.13

  • Fixed memory leaks in LDAP authentication manager and SSL communications
  • Private patch 6.5.12

  • Fixed a socket leak when using DMZ Gateway as an outbound proxy
  • Fixed crash or hang that would occur on transferring 9GB+ files over AS2
  • Fixed Java security warning popups that would occur when using WTC and SAT modules
  • Private patch 6.5.11

  • Added registry key override to set default upload/download skip behavior
  • Fixed crash that would occur if an “open file” call was ignored by the target file storage device
  • Private patch 6.5.10

  • Fixed problem where some VFS folders were hidden from the administrator interface on upgrade
  • Private patch 6.5.9

  • Fixed a Site startup failure on upgrade from EFT 6.4 if the legacy private key had a null passphrase
  • Fixed upgrade from 6.4 issue where accounts were disabled in error
  • Private patch 6.5.8

  • Fixed AS2 file size limitation bug where file size was correlated with available memory
  • Private patch 6.5.7

  • Fixed bug that blocked admins from assigning more than one email to new user accounts
  • Fixed bug that disallowed account modification after upgrading from 6.4 under certain conditions
  • Fixed event rule error when %email_address% contained multiple emails
  • Fixed bug where password expiration message wouldn’t work if multiple emails were specified
  • Private patch 6.5.6

  • Fixed COM bug with RemoveUserFromPermissionGroup
  • Fixed COM bug with GetPermissionGroupsOfUser()

Changes in 6.5.5

July 03, 2013

  • Fixed an issue where IE8 and earlier browsers would not allow the Plain Text Client (PTC) to download files because of the caching directives used with the cache control header.
  • Private patch 6.5.4

  • Fixed a server crash due to improper handling of binary MDN signatures when logging AS2 transfers.
  • Fixed an issue where the wrong port was used for inbound AS2 transactions when the client requested an Asynchronous MDN using a different port than that specified by the AS2 partner.
  • Fixed a memory leak caused by not releasing security token handles before acquiring new handle for authenticated client local transfers.
  • Fixed an issue where because of changes in Java 7u21 when loading the WTC or SAT Java displayed a "potentially unsafe components" warning dialog prompt.
  • Private patch 6.5.3

  • Fixed an issue introduced in version 6.5 that caused the COM method GetVirtualFolderList to return an empty list.
  • Fixed an issue introduced in version 6.5 where the EFT Server service could stop if the COM method GetPermPathsList was called.
  • Fixed an issue introduced in version 6.5.1 where if the CISite.GetBlankPermission COM method is called with a group instead of a user an error was returned stating an invalid user was passed in.
  • Private patch 6.5.2

  • Security: fixed an issue where the Virtual File System (VFS) group permissions were not properly applied. Depending on configuration this could result in user's being able to see folder's to which they did not have permission. Note that said user would still be prevented actual access to the folder.
  • Security: fixed an issue where folder permissions were improperly applied to subfolders.
  • Fixed an issue introduced in version 6.4.14 that caused uploads of files over 2GB in size using the Web Transfer Client to appear to fail with an erroneous status.
  • Fixed an issue that prevented the Folder Monitor rules that used the "renamed" trigger from functioning.
  • Private patch 6.5.1

  • Added the ability to override the default internal HTTP read buffer size to improve HTTP/S upload performance in environments where there is a significant delay in processing I/O requests between the EFT Server and the associated file store. Examples may include environments with poor disk performance or environments where high latency exists between the EFT Server machine and an SMB/CIFS server.
  • Added the ability to override the default reserved memory stack size for HTTP processing threads. This is an experimental feature that is intended for use in combination with increasing the HTTP read buffer size. This functionality provided greater control over memory consumption within the HTTP engine.
  • Fixed a performance issue where the Web Transfer Client Java Applet was using a 4K buffer when sending over HTTPS. A 16K buffer is now used to take full advantage of the SSL protocol record size.
  • Fixed a performance issue that could result in slow user provisioning via the COM interface in environments where there is a significant delay in processing I/O requests between the EFT Server and the associated file store. Examples may include environments with poor disk performance or environments where high latency exists between the EFT Server machine and an SMB/CIFS server. Specifically, these changes improve the performance of the ICISite GetBlankPermission and SetPermission COM methods.
  • Fixed an issue introduced in version 6.4.15 that prevented uploading of files whose file size is in excess of 4GB when using the Web Transfer Client.
  • Fixed an issue in the Secure Ad hoc Transfer (SAT) Module where recipients specified in the CC and/or BCC fields would receive (1) The Password notification email when the email behavior was configured as "UsernameToRecipientAndPasswordToSender" (2) The Username and Password emails when the email behavior was configured as "UsernameAndPasswordInSeperateEmailsToSender".
  • Fixed an issue where the application would incorrectly provision a new user account if a forward-slash was included in the username within the login process.
  • Fixed an issue within the Event Rule functionality that prevented the Overwrite option from functioning for the "Download (pull) file from host" and "Copy/Move (push) file to host" Actions.
  • Fixed an issue that prevented proper expansion of VFS folders within the Administration Interface when working with a large number of folders.

Changes in 6.4.19

July 02, 2013

  • Fixed an issue where outbound connections through a Gateway/SOCKS proxy were not using the preferred local IP setting from the Advanced settings tab.
  • Fixed an issue where because of changes in Java 7u21 when loading the WTC or SAT Java displayed a prompt warning of "potentially unsafe components."
  • Private patch 6.4.18

  • Fixed an issue introduced in version 6.4.14 that caused uploads of files over 2GB in size using the Web Transfer Client to appear to fail with an erroneous status.
  • Private patch 6.4.17

  • Fixed an issue introduced in version 6.4.15 that prevented uploading of files whose file size is in excess of 4GB when using the Web Transfer Client.
  • Private patch 6.4.16

  • Added the ability to override the default reserved memory stack size for HTTP processing threads. This is an experimental feature that is intended for use in combination with increasing the HTTP read buffer size. This functionality provided greater control over memory consumption within the HTTP engine.
  • Fixed a performance issue that could result in slow user provisioning via the COM interface in environments where there is a significant delay in processing I/O requests between the EFT Server and the associated file store. Examples may include environments with poor disk performance or environments where high latency exists between the EFT Server machine and an SMB/CIFS server. Specifically, these changes improve the performance of the ICISite GetBlankPermission and SetPermission COM methods.
  • Private patch 6.4.15

  • Added the ability to override the default internal HTTP read buffer size to improve HTTP/S upload performance in environments where there is a significant delay in processing I/O requests between the EFT Server and the associated file store. Examples may include environments with poor disk performance or environments where high latency exists between the EFT Server machine and an SMB/CIFS server.
  • Private patch 6.4.14

  • Fixed a performance issue where the Web Transfer Client Java Applet was using a 4K buffer when sending over HTTPS. A 16K buffer is now used to take full advantage of the SSL protocol record size.
  • Private patch 6.4.13

  • Added support for 128 and 256 bit AES CTR mode to the SFTP protocol
  • Private patch 6.4.12

  • Fixed DMZ Gateway to use port 20 instead of port 65300 for outgoing PORT mode FTP traffic
  • Fixed Event Rule MOVE Action to delete source file on resumed transfer
  • Private patch 6.4.11

  • Fixed UserDatabaseSynchronizationMode registry key to properly ignore user deletions during synchronization when in LoggingModeOnly

Changes in 6.5

February 15, 2013

  • EFT Platform (Standard and Enterprise):

  • Added comprehensive support for Unicode UTF-8 encoding (see help file for exceptions and special cases)
  • Added 128 and 256 bit AES CTR (counter mode) ciphers for SFTP (both as server and as client)
  • Added status viewer controls for stopping in-progress inbound and outbound transfers
  • Added a progress percent completion indicator for transfers displayed in the status viewer (where applicable)
  • Added the ability to override the limit on the number of entries in the auto-ban IP list. (KB Article)
  • Added the ability to override the limit on the number of entries in the IP access rules list. (KB Article)
  • Updated OpenSSL library to version 0.9.8t
  • Administrator Interface (AI):

  • Added an override for controlling the administrator interface timeout
  • Added checks for administrator inactivity timeout values that exceed the 15 minutes maximum mandated by PCI DSS 8.5.15
  • Improved administrator interface performance when managing large user bases (up to 150K users)
  • Improved the administrator interface to make it clear when a setting is inherited from its parent and what the actual value of the setting is
  • Advanced Workflow Engine (AWE):

  • Added support for the "Call Function" action
  • Auditing and Reporting Module (ARM):

  • Note: This release of the ARM module includes a significant database upgrade that will migrate existing ARM database to support storage of Unicode data
  • Note: Prior to upgrading the ARM database please refer to the "Upgrading the EFT Server Database" online help topic
  • Modified reporting to limit the report size to 1000 pages due to inherent limitations in the rendering system
  • Modified auditing of folder monitor event rules so that the "tbl_EventRules" table "ConditionValues" column now contains additional information
  • Client (Outbound):

  • Added support for renaming after offload for the SFTP, HTTP, and local protocols. Was previously only available for the FTP protocol
  • COM Interface:

  • Added support for specifying alternate credentials for Folder Monitors
  • Added support for specifying polling settings for Folder Monitors
  • Added additional methods to support management of existing AWE tasks
  • Added additional methods that map to new administrator interface controls, such as setting the administrator interface inactivity timeout values
  • Event Rules:

  • Added support for use of Virtual Path, Virtual Folder Name, Virtual Destination Path variables and conditions for Folder Monitor events
  • Installer:

  • Added persistent installer log file, located in \Installer.log
  • Added check of initial EFT Server administrator account password against configured Windows password policy
  • Added a database upgrader utility to facilitate auditing and reporting module (ARM) upgrades
  • Improved cleanup of deprecated files during upgrade process
  • Improved logging of installer operations
  • Secure Ad-hoc Transfer (SAT):

  • Updated the SAT applet jar files so that they have been signed with the latest Globalscape digital signing certificate
  • Mail Express:

  • Bundled Mail Express alongside EFT Server as an alternative to SAT for ad hoc file transfers
  • Added the ability to obtain (one way synch) various settings from EFT Server
  • Added event rule triggering in EFT Server for Mail Express initiated transfers
  • Added auditing and reporting to EFT Server for Mail Express initiated transfers
  • Added a number of Mail Express specific features as documented in the Mail Express version 3.3 release notes
  • Web Interfaces - General:

  • Account management page now uses standard login page rather than basic authentication
  • Web Interfaces - Web Transfer Client (WTC):

  • Updated the WTC applet jar files so that they have been signed with the latest Globalscape digital signing certificate
  • Fixes:

  • General:

  • Included fix made in 6.4.13 private patch: Added support for 128 and 256 bit AES CTR mode to the SFTP protocol
  • Included fix made in 6.4.12 private patch: DMZ Gateway to use port 20 instead of port 65300 for outgoing PORT mode FTP traffic
  • Included fix made in 6.4.12 private patch: Event Rule MOVE Action to delete source file on resumed transfer
  • Included fix made in 6.4.11 private patch: UserDatabaseSynchronizationMode registry key to properly ignore user deletions during synchronization when in LoggingModeOnly
  • Fixed an issue where the "Authority Key Identifier" and "Subject Key Identifier" fields were not included for SSL Certificates generated or signed by the application
  • Fixed minor stability issues within the applications
  • Fixed a minor memory leak in SSL certificate management routines
  • Fixed various performance issues related to working with a large number of user accounts
  • Fixed various performance issues related to working with a large number of VFS entries
  • Fixed various inconsistencies in logging configuration file (logging.cfg)
  • Administration Interface (AI):

  • Fixed an issue that could result in a hang if an admin logged in while a backup is in progress
  • Fixed an issue where all admins would be locked out if a user with a home folder specified as a physical path was deleted
  • Fixed an issue where some VFS folder rename failures were not reported in the user interface
  • Fixed minor user interface inconsistencies and formatting issues
  • Fixed an issue where the Status Viewer failed to open the client log file if the configured EFT Log File path contained a trailing backslash
  • Fixed an issue that would cause the interface to handle if selecting or hovering over an event rule whose repeat rate was greater than or equal to 24 hours
  • Fixed an issue where the QuickSearch functionality was not searching Cleanup or Backup action paths
  • Fixed a potential crash that could occur when clicking Success/Fail links in the Status Viewer
  • Advanced Workflow Engine (AWE):

  • Fixed an issue where the verbose logging setting was not affecting the log verbosity
  • Fixed an issue where the TextReplace function did not properly handle regex replacement
  • Fixed an issue where the %FS_FILE_SIZE% event rule variable was not set for AWE tasks run from a folder monitor event rule
  • Fixed an issue that prevented deletion of sample AWE tasks
  • Fixed an issue where the following variables were not available to AWE tasks: Folder Monitor Failure Reason, Precise Event Time Stamp, Base File Name, Install Folder
  • AS2:

  • Fixed "No MIME-boundary found" error when operating with Templar server. This issue occurred when the MDN response does did contain the "Content-length" header
  • Fixed a potential server crash due to failure to handle non-null terminated MDN strings properly
  • Fixed an failure that would occur if the username+password were longer than 78 characters
  • Fixed an issue where the configured HTTP Domain setting was not being used for the AS2 asynchronous MDN delivery address
  • Fixed an issue where the configured AS2 proxy settings were not being used
  • Auditing and Reporting Module (ARM):

  • Fixed an issue where the report filtering configuration was not updated in the interface when switching between reports
  • Fixed an issue where a stray CR/LF could cause a disconnection from an Oracle database
  • Fixed an issue that prevented the creation of 5 indexes for Oracle databases
  • Fixed an issue that caused erroneous error messages when running Oracle database creation scripts manually
  • Fixed an issue where a null character in an HTTP GET request could cause a disconnection from the database
  • Fixed an issue where files without an extension were being included in the Folder path column of the "Activity - All Transfers" report
  • Fixed an issue where transfers though the PTC/WTC were not appearing in the "Activity - By Group (Detailed)" report
  • Fixed an issue that could prevent reporting on AS2 transactions when running against an Oracle database
  • Fixed various discrepancies in reporting of paths and filenames in report between different protocols
  • Fixed an issue where the application would not reconnect to Oracle databases when receiving an ORA-03113 error
  • Fixed an issue where the application would not reconnect to Oracle databases when receiving an ORA-03135 error
  • Fixed an issue where the Admin Activity (Summary) report was showing successful admin connections as Denied
  • Fixed an issue where the Admin Activity (Summary) report was showing the incorrect local IP when connecting via IPv6
  • Fixed an issue where the custom command name was not included when auditing to the "tbl_ProtocolCommands" table
  • Fixed an issue where custom commands triggered by a connected client were not auditing to the "tbl_CustomCommands" table
  • Fixed an issue where the AS2 - Transactions Detailed reports were not order. They are now ordered by the transaction start time
  • Fixed an issue where the Admin Activity (Summary) report was not included in the set of SQL Server reports
  • Fixed inconsistencies in auditing of "PhysicalFolderName" and "FileSize" in "tbl_ProtocolCommands" table
  • Fixed an issue that would prevent import of SQL log files due to failure to properly obtain the identity value of a newly inserted row
  • Fixed an issue where an unused table "tbl_ResultCodes" was included in the database schema
  • Fixed an issue where the default size of the internal queue used to process audit events was too small and could result in performance issues on some systems. The default size has been increased
  • Authentication - General:

  • Fixed a performance issue where the "Refresh User Database" functionality was operational for stopped sites
  • Authentication - Active Directory:

  • Fixed an issue where a successful password change in the account management page was inaccurately reported as an error
  • Fixed an issue where the incorrect file path was used to locate custom change password error message files
  • Authentication - LDAP:

  • Fixed an issue where password change requests would fail with "ERROR [0x80640022] Invalid DN Syntax" error. This was due to referencing the "unicodePwd" field rather than the "userPassword" field
  • Authentication - ODBC:

  • Fixed a memory leak that could occur when an ODBC user had an empty home folder
  • Client (Outbound):

  • Fixed an issue that prevented outbound PWD command from working with z/OS
  • Fixed a memory leak in SSL handling for FTPS and HTTPS protocols
  • Fixed an issue where Copy/Move could fail for filenames containing extended ASCII characters
  • Fixed an issue where the rename feature of Copy/Move could fail for local LAN
  • Fixed an issue where a connection failure due to invalid credentials would use the credentials from a valid session and proceed
  • Fixed an issue where files did not retain the original date modified value for LAN copies or moves
  • Fixed an issue where filenames containing "[" would fail to transfer
  • Fixed an issue where downloads would fail when using a wildcard when connecting to a Microsoft IIS FTP server that does UNIX Directory style listing
  • Fixed an issue where move and download actions did not preserve the file creation time
  • Fixed an issue where the preferred local IP setting was not being used when using the DMZ Gateway/SOCKS proxy
  • Fixed minor memory leaks that could occur for SFTP offloads
  • Fixed an issue where the connection retry limit was not being honored for data channel connections
  • Fixed an issue where long client operations could prevent the server from stopping in a reasonable amount of time
  • Fixed an issue where the application was not following RFC 3659. It was using the MDTM command to set the modified time when it should be using the MFMT command
  • COM Interface:

  • Fixed an issue where out of range values were misinterpreted for the Folder Monitor configuration
  • Fixed an issue where the Site.DoesUsernameExist always returned false
  • Fixed an issue where the CITimerEventRuleParams.DateTimeStart was not using the date provided
  • DMZ Gateway (version 3.3.0):

  • Fixed an issue where communication failures for the peer notification channel were not being logged
  • Added support for IPv6 addressing when operating with Mail Express Server version 3.3 and later
  • Added support for Unicode strings in the log files and xml-based configuration files
  • Added support for Unicode strings in communications with EFT Server 6.5 and later
  • Changed installer so that it now ensures the DMZ Gateway Administration Interface is not running prior to making modifications
  • Fixed an issue that prevented binding to interfaces if IPv4 or IPv6 support was disabled in the operating system
  • Fixed an issue that would cause large delays in connection processing if a port mode connection was attempted through the DMZ Gateway and outbound connections were blocked by a firewall
  • Fixed minor user interface issues in the DMZ Gateway Administration Interface
  • Upgraded the embedded Java Runtime Environment to Version 1.7.0_09
  • Event Rules:

  • Fixed an issue where AWE variables were not populated when the event rule is called from Web Services
  • Fixed an issue where the %USER.LAST_LOGIN% was not returning the expected value when used with the "On User Disabled" event rule type
  • Fixed an issue where extended ASCII characters were not supported in event rule email notifications
  • Fixed an issue where %FS.PATH% variable was being allowed as the source file for an AS2 Timer Event rule. Use of this variable is now forbidden as it is not available for Timer Event rules
  • Fixed a rare issue where the presence of a large number of folder monitors with the health check option enabled could crash the server
  • Fixed an issue where some event rule variables would not retain their values after a "Move" step
  • Fixed an issue where the Reason, FileName, VirtualPath variables were not being properly set for "On Upload Failed" events
  • Fixed an issue where the thread pool used for monitoring folders would not shrink back to the default size over time
  • Fixed an issue where the application installation directory was used if no working directory was specified for a custom command. Now the directory of the specified executable will be used in this case
  • Fixed an issue that prevented passing event rule variables with inner spaces to compound custom command parameter
  • High Security Module (HSM):

  • Fixed various PCI reporting issues that were resulting in compensating controls being reported for each user. This could lead to excessively sized reports
  • Fixed various minor PCI report inconsistencies and text issues
  • Fixed an issue where the PCI admin interface inactivity timer would incorrectly trigger while a user was working in the AWE task editor
  • Installation:

  • Fixed an issue that prevented proper upgrade of files when the installer was run in silent mode
  • Fixed an issue that prevented the SQL Server Express database from being installer when the installer was run in silent mode
  • Fixed an issue where ARM would become enabled when running the installer in Repair mode
  • Fixed an issue where the "Allow Log on Locally" Windows privilege was required on accounts to log in to the Admin UI when providing an explicit Windows account during the login
  • Fixed an issue where the cluster installation path in the installer would not ask the user if they were installing the first node for some cases
  • Fixed an issue where the initial administration user was not created within the server if a node other than the first node was started first in a cluster environment
  • Fixed an issue where the ARM upgrade option was not provided when upgrading a cluster environment
  • OpenPGP Module:

  • Fixed an issue that prevented proper operation on files and folders containing percent signs
  • Fixed an issue that caused some successful decryptions to be reported as errors in the application log file
  • Protocols - General:

  • Security: Fixed an issue where the SSL protocol in the FTPS and HTTPS implementations was susceptible to a client initiated SSL renegotiation denial of service attack
  • Fixed an issue where the Site level data sanitization setting was not being honored for deletion of files for POST commands
  • Fixed an issue where accounts whose username or password contained extended ASCII characters could not log in to the application
  • Fixed an issue where communications threads were reserving more memory than required which could limit the maximum number of concurrent communications threads
  • Fixed an issue where the application fails to abide by RFC 959 for conversion to NVT-STANDARD of ASCII files
  • Fixed an issue where an incorrect "Reason" was determined for some disconnection events in the SFTP and HTTP/S protocols
  • Protocols - HTTP/S:

  • Security: Fixed an issue where insufficient randomness was present in the generated session tokens
  • Fixed an issue where SSL sessions ids were not being tracked properly which led to inefficient SSL handling
  • Fixed an issue that caused excessive CPU utilization when downloading from the server while rate limited to a small transfer rate
  • Fixed a rare crash that could occur when the IP Access policy is set to deny by default and a user who has the "Change password at next login" flag enables attempts to log in
  • Fixed a memory leak that could occur when using the PFX SSL certificate/key format
  • Fixed an issue where HEAD and GET requests returned the wrong content length when a range was included in the request
  • Fixed an issue where the range header was being incorrectly interpreted as being non-inclusive
  • Fixed an issue where directory listings were incorrect in the presence of a file containing a # character
  • Fixed an issue where the "Uploads per session" and "Downloads per session" transfer limits were being ignored
  • Fixed an issue where a 404 error was returned for deletions if a file was currently locked. A more appropriate 503 "service unavailable" error code is now returned
  • Protocols - FTP/S:

  • Security: Fixed an issue that allowed Active Directory users to traverse directories for which they did not have permission to access
  • Security: Fixed an issue where the PASV port was not randomized if a PASV port range was not specified
  • Fixed an issue where filenames with extended ASCII characters were not handled properly in listings
  • Fixed an issue that prevented listing the contents of folders with special characters in the folder name
  • Fixed an issue that prevented folder renames
  • Fixed an issue where the STOU command failed to work correctly when user account's "Treat home folder as the users' default root folder" setting was enabled
  • Fixed an issue that caused the auto-ban (DoS/Flood) detection to be too sensitive when applied to invalid FTP login attempts
  • Fixed an issue where the server may send a "226 Transfer complete" message before the data connection is closed
  • Protocols - SFTP:

  • Fixed an issue where sending FSETSTAT or SETSTAT to the application multiple times would cause a file not found error
  • Secure Ad-hoc Transfer (SAT):

  • Fixed an issue where the user was not being notified when no files had been attached
  • Fixed an issue where SAT would fail to upload folders if the "Enable WTC" checkbox was disabled
  • Fixed an issue that prevented the java applet from loading in FireFox or Chrome when using Java 7 on the client machine
  • Fixed an issue where the unsigned applet jar files were erroneously located in a directory called "Signed". They are now located in a directory called "Unsigned"
  • SMTP:

  • Fixed an issue where email delivery failed when operating with FirstClass ESMTP server
  • Web Interfaces - General:

  • Security: Fixed a minor issue where some debug and test comments were included in web application JavaScript and HTML
  • Security: Fixed an issue where the web applications could be susceptible to reflected Cross Site Scripting (XSS) attacks
  • Security: Fixed an issue where the machine name was included in the "Location" header for MOVE and COPY responses
  • Security: Fixed a false positive issue that was causing some security scanners to report that user credentials could be changed using GET. They are in fact only changed using a POST
  • Security: Fixed cache control directives for various resources to further mitigate potential security concerns
  • Fixed various minor issues that could result in unexpected messages in browser debugging windows
  • Fixed an issue that prevented loading of the account management page if the user account had a low transfer rate set
  • Fixed an issue where users were forced to change their password again after having already changed their password using the "Lost Password" work flow
  • Fixed an issue where the OpenFolder JSON response did not conform to the JSON specification
  • Fixed an issue where the "Forgot Password" feature was included for unsupported authentication types: Active Directory, LDAP
  • Fixed an issue where the Windows "Allow Log on Locally" privilege was required for login when explicitly supplying credentials
  • Web Interfaces - Web Transfer Client (WTC):

  • Fixed minor user interface inconsistencies and formatting issues
  • Fixed a file/path name rendering issue when certain special characters were present
  • Fixed an issue where users were unable to clear the filter after filtering by size
  • Fixed an issue that prevented files with "%" in the filename from being opened from the remote pane
  • Fixed an issue where "C:\" drive was included in "My Files and Folders" for Mac operating systems
  • Fixed an issue that prevented upload of 0-byte files
  • Fixed an issue where the interface would default to the root folder rather than the user's home folder for initial login
  • Fixed an issue where the user would be logged out when using the Open File button on a remote file
  • Fixed an issue where use of the delete key in the Change Password functionality would attempt to delete a file or folder
  • Fixed an issue where the timeout handling was not functioning for downloads when using the JSE client
  • Fixed an issue where the retry attempts did not include a sufficient delay and would thus quickly exhaust the number of attempts
  • Fixed an issue where filtering by date resulted in the user being logged out
  • Fixed an issue where a transfer could not be stopped using the "Kick User" functionality
  • Fixed an issue where the user was not taken to a remote folder when it is specified in the url
  • Web Interfaces - Plain Text Client (PTC):

  • Security: Fixed an issue where accounts in different Sites with identical user names could potentially access each other's resources
  • Fixed an issue where sorting by modified date was non-functional
  • Fixed an issue that prevented deletion or rename of files whose name contained certain special characters
  • Fixed a memory consumption issue that could occur when an invalid content length was provided by the client. Note that some clients incorrectly overflow the content length for files over 2GB in size.

Changes in 6.4.10

July 31, 2012

  • EFT Server (standard) and Enterprise:

  • Fixed minor formatting issue in generation of JSON, which is used internally between EFT Server and WTC
  • Fixed memory and handle leak in Event Rule client SFTP
  • Security: Fixed a minor security issue that allowed user accounts with force password change specified to perform some actions such as file upload without first changing their password. This issue applies only to non-browser clients connecting over HTTP/HTTPS.
  • AS2 module:

  • Fixed AS2 outbound asynchronous MDN receipt URL, which did not contain the proper domain
  • Secure Ad Hoc Transfer (SAT) module:

  • Security: Fixed thread safety issue in SAT that caused incorrect home folders in EFT Server accounts

Changes in 6.4.7

June 06, 2012

  • EFT Server Enterprise only:

  • Fixed performance issues when synchronizing users or applying changes to group permissions when operating against an LDAP source with a large (>80k) number of users
  • EFT Server (standard) and Enterprise:

  • Security: Fixed a medium-high security vulnerability that allowed users to access the Virtual File System with elevated privileges. This only applied to Active Directory authenticated users after being forced to reset their password via the Web Transfer Client or Plain Text Client. (Note that the ability for Active Directory authenticated users to reset their passwords is off by default and can only be enabled via a registry setting).
  • Security: Fixed a medium level security vulnerability consisting of a memory leak caused by SSL negotiation under certain conditions (affected versions: 6.4.3 - 6.4.5(private))
  • Added a "User Account Enabled" event trigger
  • Added a "User Account Deleted" event trigger
  • Fixed an issue where "User Account Disabled" event trigger was not firing for all cases
  • Fixed issue where some user-related event conditions and event properties were not included for use with the "New User Created" event trigger
  • Fixed capitalization of the names of the "User Logged In" and "User Logged Out" event triggers
  • Fixed an issue where the internal IP address of the remote server was being used for outbound FTP/S PASV connections rather than the external IP address
  • Changed "New User Created" event trigger label to "User Account Created" for consistency

Changes in 6.4.3

March 28, 2012

  • EFT Server Enterprise only:

  • Added support for Common Access Card (CAC) authentication
  • Fixed a slow memory leak that occurred when using LDAP authentication
  • Help and Documentation:

  • Fixed an issue where the application help incorrectly displayed additional scroll bars
  • Fixed an inconsistency in the documentation concerning behavior of the "Require Active Directory domain trust relationship" Folder Monitor configuration item for upgrades
  • Auditing and Reporting Module (ARM):

  • Fixed a misspelling in the Oracle schema scripts that caused failures when auditing PCI DSS violations
  • Web Interfaces:

  • Fixed an issue that caused misalignment of icons in the Plain Text Client and Web Transfer Client interfaces when using Mozilla Firefox version 10 or later
  • Fixed an issue in the Web Transfer Client interface that prevented the browser from refreshing when clicking "OK" on the session expiration dialog
  • Fixed an issue that prevented proper operation of the Web Transfer Client interface for Sites using non-standard HTTP or HTTPS ports
  • Fixed an issue where the Web Transfer Client interface would display the help for an earlier version of the product
  • Fixed an issue where the Web Transfer Client interface would display an invalid status for timeouts during file downloads
  • Updated the user experience for Web Transfer Client interface Java Applet load failures
  • Fixed an issue that prevented download of files from the Plain Text Client interface when using Google Chrome version 16.0.912.63 or later
  • Fixed an issue that prevented the proper launch of the Legacy Transfer Client interface
  • Fixed an issue that prevented the use of the change password feature in the Legacy Transfer Client interface
  • Fixed an issue that prevented the use of the file/folder rename feature in the Legacy Transfer Client interface
  • Fixed an issue where the Legacy Transfer Client interface would display the Plain Text Client interface after a file upload
  • Updated the Legacy Transfer Client interface to display the login page on log out rather than offer to close the browser

Changes in 6.4.1

January 13, 2012

  • EFT Server (standard) and Enterprise:

  • Added a registry key (ReportsConnectionString) to allow specification of an alternate database connection string for use by the reporting functionality. This allows for the use of a reduced privilege account for reporting.
  • Removed unused, default security credentials from default report definition XML files
  • Fixed an issue that caused IP addresses in the FTP/S configuration and PASV settings for the DMZ Gateway configuration to be reversed when upgrading from releases earlier than 6.4.
  • Fixed an issue that prevented the proper operation of the LS command when used with a mask over the FTP and FTPS protocols

Changes in 6.3.16

January 12, 2012

  • EFT Server Enterprise only:

  • Fixed offload COPY of a non-existent file to default to ERROR instead of SUCCESS. Added a toggle to Offload Wizard to allow the selection of ERROR or SUCCESS.
  • Fixed event rule Copy/Move to support Danish high characters: "æøå"
  • Fixed event rule Copy/Move to not inherit credentials from a previous Copy/Move Action
  • Fixed issue locating user in LDAP during Change Password
  • Fixed event rule variables (%FS.FILE_NAME%) to contain the correct filename after a MOVE Action
  • Fixed issue that could cause duplicate execution of Timer rule under certain circumstances
  • EFT Server (standard) and Enterprise:

  • Added a registry key (ReportsConnectionString) to allow specification of an alternate database connection string for use by the reporting functionality. This allows for the use of a reduced privilege account for reporting.
  • Fixed crash when MLSD performed in a folder containing a VFS alias > 14 characters in length
  • Fixed issue which resulted in a locked file when an SFTP upload was abruptly terminated
  • Web Transfer Client (WTC):

  • Fixed HTTP to properly redirect to a specified folder after entering credentials on login page
  • COM API:

  • Added COM method to get/set Folder Monitor Event Rule alternate credentials
  • Added COM method to get/set Site's SFTP protocol state
  • Added COM method to get/set Site's default PGP key
  • Added COM method to get/set Offload/Download Action's "Rename After Transfer"
  • Added COM method to get/set Site->Security->Invalid logins "Count incorrect username" settings
  • Fixed a memory leak in COM CServer::Close and CSite::Close
  • Fixed COM Allow FXP, Allow COMB, and Allow XCRC getters and setters when using inheritance
  • Fixed COM FTP "Allow ZLIB compression" toggle
  • Fixed COM setting of Upload/Download proxy type
  • OpenPGP module:

  • Added registry key to control timeout for long running PGP operations
  • AS2 module:

  • Fixed inbound AS2 transfers from being redirected to login page when the HTTP User Agent appears to be a browser
  • Secure Ad Hoc Transfer (SAT) module:

  • Fixed SAT to properly populate the FROM email address in multi-domain environments

Changes in 6.4

December 07, 2011

  • EFT Server Enterprise only:

  • Added polling option to Folder Monitor, including ability to sweep the monitored folder on rule startup
  • Added archive option to Folder Monitor to avoid duplicate processing when polling option is enabled
  • Added ability to specify Event ID for Write to Windows Event Log action
  • Added UTF-8 option for Copy/Move and Download Event Rule actions
  • Added new column (optional) to EFT Server's CL log (Event Rule client log) that returns a success/failure code after the actual result (error) code. To enable: HKLM\SOFTWARE\GlobalSCAPE Inc.\EFT Server 4.0 value=Enable10ColumnInClientLog DWORD=1 (not present or 0 means disabled)
  • Added registry override to disable use of LAST SFTP command used to detect for existence of destination folder prior to transfer
  • Added registry override to aid in connecting to slower SFTP servers
  • Added registry override that sets the timer thread stack size for cases where lots (300-400) of timers are launching AWE tasks (For information regarding registry settings, refer to the GlobalSCAPE Knowledgebase, keyword: windows registry)
  • Enhanced SFTP client (Copy/Move and Download) performance significantly
  • Updated AS2 library component to 8.1.4276.0
  • Fixed FTP trace logging that was accidently removed in EFT 6.3
  • Fixed AS2 redirection bug introduced in EFT 6.3 that affected AS2 clients that identified themselves as a generic browser
  • Fixed crash caused by AS2 connections under certain conditions (specifics withheld to prevents DoS attacks on older servers)
  • Fixed issue where EFT Server's SMTP settings weren't being propagated to the registry for use by the AWE module
  • Fixed issue connecting to MVS systems. Now if EFT detects MVS using FTP SYST command it avoids use of PWD and CWD commands for overwrite logic
  • Fixed issue where EFT Server failed to retry offloads when the file was locked by another process and a ERROR_ACCESS_DENIED or ERROR_SHARING_VIOLATION was received
  • Fixed issue where LAN transfers with credentials override was failing because the Folder Monitor override credentials were being used instead
  • Fixed issue where LDAP change password attempts failed depending on how the username was constructed
  • Fixed issue where timer event could trigger twice under certain conditions
  • Fixed issue where client downloads would fail when downloading from a GXS server
  • Fixed issue where certain EFT Server context variables were not being passed to AWE
  • Fixed issue where files with a prefix of "as2" could not be downloaded
  • Fixed issue where FTP/S client (Copy/Move and Download action) wasn't respecting the ReceiveBufferSize registry override (HKEY_LOCAL_MACHINE\SOFTWARE\GlobalSCAPE\TED6\Settings\Transfer\ReceiveBufferSize)
  • EFT Server (standard) and Enterprise:

  • Added comprehensive IPv6 support including support for dual stacks (both IPv4 and IPv6)
  • Added support for multiple discrete listening IPs per site
  • Added support for CIDR masking (in addition to current wildcard masking) for IP Access/Ban rule IP definitions
  • Added option to treat missing source file(s) as success (rather than failure) for Copy/Move action (any protocol) and for Download action (LAN transfers only)
  • Added support for multiple emails assigned to user account (semicolon delimited)
  • Added support for using %USER.EMAIL% in the To, CC, and Bcc fields of the Email Notification action
  • Added toggle to certificate signing manager to automatically add newly signed certificate to certificate store trusted list
  • Added ability to create Site-specific templates for password reset reminder and required messages, and for login credentials message.
  • Added registry override for the default (10 minute) PGP timeout
  • Added registry override for the PGP log file name created by EFT Server
  • Updated PCI DSS coverage to account for PCI DSS 2.0 changes
  • Updated SSL library to 0.9.8r
  • Included all bug fixes made in EFT Server 6.3 private patch versions
  • Fixed issue with MODE command where certain parameters would cause EFT to return errors
  • Fixed issue in email notification where URLs exceeding certain length mangled in the HTML
  • Fixed hang that occurred when in FIPS mode, a certificate with non-FIPS approved algorithms was used for a client offload
  • Fixed issue where user was placed in root folder if user's home folder exceeded Windows' max_path
  • Fixed PGP decrypt performance issue introduced in EFT 6.3
  • Fixed issue where Event Rule comments were truncated if too long
  • Fixed crash caused in SFTP write operations under certain conditions (specifics withheld to prevents DoS attacks on older servers)
  • Fixed issue where the registry override to require delete permission for uploads that result in overwritten files wasn't being honored. (Reference)
  • Fixed issue where EFT Server failed to create a users' home folder if it did not already exist but "create home folder for new users" was enabled (after .AUD import)
  • Fixed crash that would occur during a trial extension request under certain conditions
  • Fixed issue where prompt would appear for PGP key that would prevent the user from further navigation, even though PGP was not being used
  • Fixed issue where file does not exist was returning incorrect FTP error code ("550 Permission denied" instead of "550 File does not exist")
  • Fixed issue where a failure and error was returned by PGP encryption logic under certain conditions
  • Fixed issue where duplicate users were reported in the .AUD file
  • Fixed issue where an On File Upload rule would fail to trigger if a Settings Template was specified as a conditional value
  • Fixed issue where EFT failed to log when PGP delete operation failed due to file being locked
  • Fixed issue where upgrade failed to import the entire list of banned IPs; increased threshold from 1,000 to 5,000
  • Administration Interface (AI):

  • Added "Deep Search" to the quick search feature (search in rules)
  • Added prompt to apply, discard, or cancel (revert) changes when switching to a different page in the administration interface without having first saved one's changes
  • Auditing and Reporting Module (ARM):

  • Switched to SQL Native Client 2008 R2 API
  • Fixed inconsistency between documentation and how ResultID was actually being audited to the ARM database
  • Secure Ad Hoc Transfer (SAT) module:

  • Added link to SAT send page from SAT admin page
  • Added numerous minor usability enhancements
  • Enhanced SAT's various templates, including the notification template
  • Enhanced SAT's transfer engine to use Java SE Runtime v6u26 and JFileUpload version 2.9C
  • Fixed issue where SAT module throws an MX Error 45 when changing settings template location
  • Fixed issue where SAT would incorrectly state that some content was delivered unsecured (only under certain conditions)
  • DMZ Gateway:

  • Added full IPv6 support including dual stack (both IP 4 and 6)
  • Added support for 6to4 and 4to6 translation
  • Web Transfer Client (WTC):

  • Added HttpOnly attribute to cookies (where supported) as a security precaution
  • Added Secure attribute to all cookies presented over HTTPS (except for special case when an HTTP session is temporarily redirected to HTTPS for the login portion, and then back to HTTP post login)
  • Added attribute to prevent auto-complete of FORM fill for login and password reset pages as a security precaution
  • Added X-Frame-Options: "sameorigin" to prevent clickjacking. To override that setting: HKEY_LOCAL_MACHINE\SOFTWARE\GlobalSCAPE Inc.\EFT Server 4.0\EFTClient DWORD value=disable_xframeoptions; DWORD=00000001 (to disable)
  • Added X-Content-Type-Options: "nosniff" header as a security precaution
  • Added X-XSS-Protection: "1; mode=block" header as a security precaution (For explanation of various headers)
  • Added date/time formatter to control how the Plain Text Client (PTC) shows dates, between US and European style date formats (Reference)
  • Removed certain GET requests from WTC and PTC definitions to eliminate false positives in security scanners
  • Fixed issue where subdirectory could no longer be accessed over HTTP/S directly using a URL
  • Fixed issue where the WTC would not load if AdBlockPlus was enabled on FireFox
  • Fixed issue where it was impossible to delete files in the PTC with certain characters in the filename
  • COM API:

  • Added several new methods and properties to support new functionality (Reference)
  • Fixed memory leak when using COM to query EFT Server repeatedly
  • Fixed issue where a COM exception would occur if GetVirtualFolderList() was invoked and no virtual folders existed
  • Fixed issue where GetPhysicalPath returned an error when the bstrFolderAlias passed to the function pointed to a virtual folder with a missing target (physical) path
  • Fixed issue where CreateVirtualFolder returns an error if bstrTarget doesn't exist on the server
  • Fixed issue where a small number COM properties worked incorrectly if those values were set to inherit from the Server

Changes in 6.3.8

July 21, 2011

  • EFT Server Enterprise only:

  • Fixed security vulnerability related to EFT Server's LDAP authentication provider. Refer to the security bulletin emailed to all EFT Server Enterprise customers for more information
  • Added post-transfer RENAME to event rule Offload for ftp/ftps
  • Added multi-threaded (simultaneously transfer multiple files) transfers to event rule offloads
  • Added ability to rename a downloaded file upon completion when the target destination for the file is a local/LAN folder
  • Added registry value to enable event rule client to send "CWD folder" instead of "CWD /folder"
  • Fixed credential handling when using Offload action to move a file to a remote folder/share
  • Fixed long delay when Event Rule client was transferring files to a remote folder that contains a large number of files (>150,000)
  • Fixed delays creating log files when Event Rule client was transferring a large number of files (>30,000 files)
  • Fixed an inconsistency in the result code when downloading a mask of files from a subfolder that did not contain any matching files
  • Fixed protocol and port values in client logs for LAN transfers
  • Fixed Event Rule client so in the Advanced options extensions list will now match a file even if that file doesn't have an extension
  • Fixed a crash that occurred for a specific type of LDAP query error
  • Added %SOURCE.FILE_NAME% and %SOURCE.BASE_FILE_NAME% variables to the Offload Wizard to facilitate control of the destination filename
  • Fixed Event Rule Offload Action alternate credentials to use a Windows logon type that does not require the remote share to be in the same Active Directory domain
  • Fixed %FS.VIRTUAL_PATH% variable for On File Deleted rules to match the pathnames depth reported by On File Upload rules
  • Fixed On Timer event rules so they stop when the site is stopped
  • Fixed On Timer event rules so they only fire once during daylight savings transition
  • Fixed On Timer event rule to properly run "today" ARM reports when using Oracle
  • Fixed CL log to accurately log transfer results for local file copies
  • Fixed folder monitor to properly delete source file when the resultant Offload action used alternate credentials to copy the file to a remote folder/share
  • EFT Server (standard) and Enterprise:

  • Added registry key to disable HTTP-to-HTTPS redirection
  • Added support for Unix style -lrt sorted listing to NLST
  • Added registry value to enable RENAME to overwrite an existing file
  • Added registry value to enable Clear Command Channel to expect an encrypted response to CCC request. This provides CCC interoperability with Sterling CONNECT Enterprise
  • Added 2 step save process used by ftp.cfg to AUD files to prevent corruption during save. "*.bak" and "*.corrupted" files are now created as necessary.
  • Fixed installer to properly create the EFT Server administrator account during cluster installs
  • Fixed Plain Text Client handling of paths that included a space during RENAME and DELETE
  • Fixed WGET file transfers over HTTP
  • Fixed invalid data in customer configuration files that could slow down file transfers
  • Fixed upgrades from EFT Server 5.x to maintain DMZ Gateway as the outbound proxy
  • Fixed uploads of small files (<100 bytes) from Rebex/Ultimate FTP libraries
  • Fixed issue in SFTP that would not allow a new Active Directory user to connect until an AD database synchronization or an FTP login occurred
  • Fixed NLST to once again support listings of filenames that contain special characters > 128
  • Fixed Site Administrator accounts to control the "Treat Home Folder as Root" setting
  • Fixed Event Rule LAN operations when paths contained multiple or incorrect slashes ("/", "\")
  • Fixed upgrades to EFT 6.3 from GSFTPS FIPS
  • Fixed server restore so all user home folders are restored when backup contains a large number of sites (14)
  • Fixed FireFox 4 issues in the Plain Text Client
  • Fixed Plain Text Client 403 and 404 errors when attempting to rename or delete a file from a subfolder if specific permissions were set
  • Fixed VFS to prevent orphan VFS permissions nodes hidden in ftp.cfg
  • COM API:

  • Added CreateUserEx2() COM call that includes the user's email address so the account creation email can be sent at the time the user is created; all of the user/client details can now be set
  • Added support for hashed passwords to COM CreateUserEx to facilitate user migration from another EFT
  • Added 2 new COM methods to facilitate retrieval of VFS virtual folders and folder permissions
  • Fixed a crash that occurred with calling GetFolderPermissions via COM
  • Fixed COM DisableInheritPermissions method to set child folders to their parents' permissions instead of the root folder permissions
  • Fixed COM Event Rule enums to include "Greater than" and "Greater than equal to" conditional operators
  • Fixed COM new 6.3 method names that were inconsistent with the existing API
  • Secure Ad Hoc Transfer (SAT) module:

  • Fixed SAT for proper handling of non-US date formats
  • Fixed SAT to not authenticate against NTLM when "no auth" is selected
  • Fixed SAT Installer to identify 32 vs. 64 bit on same host installs
  • Fixed SAT Installer to use PCI compliant password complexity rules for admin accounts
  • Fixed SAT errors which prevent Admin page from loading
  • Fixed SAT web.config errors when a non-standard HTTPS port was used
  • Fixed SAT upgrade issues when SAT was not installed on C:
  • Fixed SAT Installer to not de-register COM
  • AS2 module:

  • Fixed AS2 to support multiple SSL public key certs in a single .crt file
  • Fixed a crash that occurred when formatting an AS2 synchronous MDN message
  • Web Transfer Client (WTC):

  • Fixed Web Transfer Client logout to not affect other open tabs in Internet Explorer (IE)
  • Fixed Web Transfer Client jars to be signed with a newer cert that doesn't expire until 2015
  • Fixed Web Transfer Client and Plain Text Client to initially place users in their home folder instead of the site root folder when "Treat Home Folder as Root" is turned off
  • Fixed IE9 and Chrome drag-n-drop issues in Web Transfer Client
  • Advanced Workflow Engine (AWE):

  • Fixed AWE "Stop Task" action to properly return SUCCESS or ERROR to the EFT Server Event Rule
  • Fixed AWE to support semicolons as a separator in "On Error" tab variables
  • Fixed AWE to properly display the "Send Email" action when editing the "On Error" tab
  • Fixed AWE GetTaskName to properly return the name of the task
  • Fixed AWE crash when a nesting of sub-tasks would ultimately delete the file that triggered an EFT Server folder monitor
  • Fixed some broken help hooks in the AWE Help
  • OpenPGP module:

  • Fixed "8000ffff: Catastrophic Failure" Errors when PGP encrypts multiple or single files

Changes in 6.3

March 30, 2011

  • Added RSA SecurID and RADIUS 2-factor authentication
  • Added Status Viewer to monitor in progress and recent file transfers
  • Added IP Access/IP Ban user interface that supports white listing
  • Added Event Rule Calendar supports custom calendars and import/export
  • Added "Write to Windows Event Log" Event Rule Action
  • EFT Server Enterprise only

  • Added RSA SecurID and RADIUS 2-factor authentication
  • Added Event Rule Calendar supports custom calendars and import/export
  • Added "Write to Windows Event Log" Event Rule Action
  • Added ability for multi-part transfers to be available in the Event Rule Copy/Move via a registry key
  • Added Copy/Move Event Rule Action support for alternate set of credentials for remote UNC shares
  • Added Copy/Move and Event Rule Action support for several overwrite and enumerate options
  • Added Folder Monitor support for two modes of operation: high throughput or high number of folder monitors
  • Added "Cleanup logs" action to the "Backup and Cleanup" Timer rule in new installs
  • Added HTTP and SFTP keyboard interactive login support for RSA and RADIUS pin creation
  • Added SIZE as a fallback for transfer verification when XCRC is not supported by remote server
  • Added registry option to use LOGON_NEW_CREDENTIALS instead of LOGON_INTERACTIVE for folder monitor
  • Added support for SFTP client Copy/Move and Download transfers of files greater than 4 GB
  • Added ability for user-level admins to unlock user accounts, in addition to enable/disable and change password
  • Added the AML task name to AWE debug logging
  • Added UTF-8 filenames support in AWE tasks
  • Added a warning message if a duplicate folder monitor is created for the same folder
  • Added TRACE level logging of AS2 HTTP headers
  • EFT Server (standard) and Enterprise

  • Added Status Viewer to monitor in progress and recent file transfers (requires ARM for historical transactions)
  • Added IP Access/IP Ban user interface that supports white listing
  • Added "IP Banned" Event Rule Condition and "Too many invalid commands" Event Reason
  • Added PGP Event Rule signature verification options
  • Added Event Rule "precise time stamp" context variable
  • Added multi-threaded PGP architecture
  • Added Denial of Service detection to all protocols
  • Added UTF-8 filenames support over HTTP and SFTP
  • Added EBCDIC "TYPE E" support
  • Added SYST value support
  • Added SFTP support for public key or password authentication
  • Added support for non-FIPS version of the OpenSSL library to version 0.9.8o
  • Added detailed logging of SFTP connections to connection log in Status Viewer
  • Added disable of auto import of ARM text files via a registry key
  • Added ability to sort objects in the AI left tree pane alphabetically
  • Added trigger of the "User Disabled" event rule when Users expire
  • Added ability to apply PGP Event Rule Actions to "On File Download" events
  • Administration Interface (AI):

  • Added left pane tree support for up to 100,000 EFT Server users; multi-select enable, unlock, delete, and reset password; and visual identification of EFT Server user accounts without an email address
  • Added Active Directory sites' ability to not show the domain name
  • Added PGP keys management from remote AIs
  • Added AI/EFT Server SSL certificates checks to validate connections
  • Added DER, PFX, and P7B output formats in addition to PEM for SSL cert export
  • Added AI upgrades and command line silent install support
  • Added summary list of folders to be deleted when a user is deleted
  • Added support to protect key folders (/usr) from deletion when a user is deleted
  • Advanced Workflow Engine (AWE):

  • Added sample tasks for demonstrating Expectations, IP black lists, etc.
  • Added Sharepoint Action
  • Added Compression Action: Added 7zip compress/uncompress
  • Added FTP Actions: FXP; synchronize method; FIPS 140 mode; FTPS clear command channel (CCC) mode
  • Added FTP advanced action file exist; folder exist; get crc; FTP tuning options (UseLargeBuffers)
  • Added FTP ability to get long list dataset shows file attributes
  • Added SFTP validation of server host key; SFTP provide protoversion prior to connection
  • Added Get File Info Action: Added ability to retrieve folder information
  • Added Send/Get email and Exchange Actions: Support for Exchange 2010 and ability to send custom headers
  • Added Send/Get email and Exchange Actions: Improved filter engine based on query for Imap and Webdav
  • Added Service Management: Added remote service install, start, stop, pause, resume
  • Added Web Service Action: Added support for SOAP 1.2 protocol
  • Added Full Unicode support across all Actions
  • Added Start Task and Stop Task Actions
  • Auditing and Reporting Module (ARM):

  • Replaced the integrated SQL Server Express 2005 installer with SQL Server Express 2008 R2
  • Added logging to the installer during creation or modification of the SQL schema
  • DMZ Gateway:

  • Added synchronization of messages with EFT Server to implement enhanced IP Access/IP Ban capabilities
  • Secure Ad Hoc Transfer (SAT) module:

  • Added new architecture that uses Java applet to transfer file directly to EFT Server bypassing IIS
  • Added new web-based administration and configuration
  • Added ability to transfer files larger than 2 GB
  • Added ability to transfer folders
  • Added installer support of upgrades; does not require uninstall
  • Added default SAT Event Rules in EFT Server to automatically send upload notifications, delete expired temporary users, and notify senders of upload(s) received from temporary users.
  • Web Transfer Client (WTC):

  • Added form-based login that supports branding and true login/logout sessions, and password reset
  • Added selection of WTC (Java) or Plain Text Client (PTC) from the login page
  • Added new "look" with improved buttons and use of CSS to support branding
  • Added Single Sign On (SSO) support in NTLM environments
  • Added branding process that doesn't require registry overrides
  • Added branding that can be EFT Server site specific
  • Added capabilities and status provided in the WTC transfer queue pane
  • Added requeue counter to the Settings panel for error-prone connections/servers
  • Added option to select Java JSE HTTP client for NTLM v2 proxy authentication
  • COM API:

  • Added numerous methods and properties to mirror the capabilities available in the AI:
  • Administrators and administrator privileges
  • LDAP, AD, and ODBC site creation and options
  • Event Rule Offload/Download Advanced tab
  • Write To Windows Event Log
  • Backup and Restore
  • IP Ban
  • AS2
  • FTP options: FXP, Noop, COMB, XCRC
  • AWE custom variables
  • Multiple SSH client keys and key export
  • Fixes:

  • Fixed Email notification file size for Copy/Move events
  • Fixed Web Services WSDL page accessibility
  • Fixed "User must change password on first login" with LDAP
  • Fixed ARM SQL connection details in GUI notifications to lesser privileged admins
  • Fixed LDAP "change password" implementation via LDAP calls instead of Active Directory
  • Fixed "Uploads per session" and "Downloads per session" limits for HTTP
  • Fixed Offload/Download wizard handling of forward and backward slashes
  • Fixed PGP passwords masking in DEBUG logging
  • Fixed "Stop Processing" and "If failed Action" listing in the Event Rule preview pane even when inactive
  • Fixed rejected SSL client cert trigger of the Event Rule "Connect Failed" Condition
  • Fixed "On User Created" Event Rule is trigger for first login of an AD or LDAP user
  • Fixed Event Rule client downloads of file with a % in the filename
  • Fixed Event Rule client traversal of directories with a # or % in the folder name
  • Fixed Administrator warning regarding outbound PORT mode support through DMZ Gateway
  • Fixed inconsistency of file paths in CREATE and DELETE lines of ARM reports
  • Fixed resuming of interrupted WTC transfers
  • Fixed ARM auditing of SFTP file offset to properly report transferred bytes
  • Fixed renaming of a group so that all members of the group are not removed from the group
  • Fixed crashes reported in Microsoft WinQual
  • Fixed parsing of multi-line HTTP headers
  • Fixed PGP temporary files creation
  • Fixed ability to "kick" and delete connected users
  • Fixed auditing of failed HTTP logins in ARM
  • Fixed (removed) "EFT Server" identifiable strings where possible to address security audit recommendation
  • Fixed WTC local pane display of system or hidden files or folders
  • Fixed 2048 bit SSL signed certs in AS2
  • Fixed HTTP login support of usernames with embedded spaces (Active Directory Display Name accounts)
  • Fixed error in ARM report templates that allowed non-admin user account to edit the template
  • Fixed error in WTC file rename in Safari browser
  • Fixed/eliminated long delay when uploading files via SFTP to a remote folder containing 100,000+ files

Changes in 6.2.31

January 26, 2011

  • Added the ability to rename virtual folders
  • Added ERROR logging to Active Directory calls during AD user synchronization
  • Added a timeout at the SFTP layer to detect hung connections from third-party servers
  • Added updating of Active Directory user home folders during AD synchronization
  • Added support for SSL cert settings for Event Rule downloads
  • Improved import time when migrating large numbers of users into EFT via COM
  • Added a registry value to control the Health Check Timeout for slow file servers
  • ARM now only audits "On File Upload" rules that perform an Event Rule Action
  • Active Directory user home folders are now updated during synchronization
  • Enhanced the COM API methods for specifying EFT Server Administrator privileges
  • Added registry setting to control the ARM report generation timeout
  • Added the new EULA for EFT Server
  • Added ability for Template Settings administrators to delete a user's home folder
  • Added/improved user password and account settings in the COM interface
  • Added/improved folder permissions inheritance and Encrypting File System (EFS) settings in the COM interface
  • Added/improved proxy, overwrite, COMB, and FXP transfer options in the COM interface
  • Added/improved Event Rule PGP options in the COM interface
  • Corrected the amount of time EFT Server logins were blocked when updating user quotas
  • Corrected issue that caused "home folder not deleted" error message when deleting a user
  • Corrected issue in Event Rule SFTP client when sending files larger than 4 GB
  • Corrected crash that could occur when an SFTP connection failed before a channel was established and EFT Server attempted to clean up the channel
  • Corrected crash in the EFT Server administration interface that occurred while an external VBS COM script was backing up the VFS
  • Corrected auditing of invalid transfer data by the Event Rule client for rare cases of failed transfers
  • Corrected Active Directory and LDAP sites to use standard password change page instead of a hard-coded, AD/LDAP-specific page
  • Corrected connection error in FTPS when remote folder contained 800+ files
  • Corrected crash that would result in a user's home folder being set to NULL
  • Fixed single-click URL construction to resolve file rename issue in the Plain Text Client
  • Fixed SFTP Event Rule client to honor connection retry settings
  • Fixed SFTP so 0-byte downloads do not trigger "On File Upload" rules
  • Fixed SFTP so users with a home folder at the site root do not trigger On File Upload rules upon login
  • Fixed handling of empty client SSL certificates for FTPS Explicit tranfers
  • Fixed crash that resulted from corrupt data in VFS permissions
  • Fixed error in the Event Rule client that would cause the creation of too many session-level debug log files when using a "*" mask
  • Fixed memory increases that prevented users from connecting to EFT site
  • Fixed single click download with URL containing .exe or .dll
  • Corrected crash when the Event Rule client attempts to download 400,000+ files
  • Corrected crash in remote AI GUI when changing user permissions in the VFS tab
  • Corrected issue that caused loss of PGP subkeys when upgrading from EFT 5.1 to 5.2 or later
  • Corrected issue so SFTP transfer limits are now honored
  • Corrected some timestamp errors in ARM reports generated using Oracle
  • Corrected error in tracking of Event Rule client transfers that caused EFT Server service to crash
  • Corrected slowdown that occured when an EFT site has a large number of VFS folders pointing to missing or non-accesible locations
  • Corrected and issue where auditing and reporting module didn't render certain parameters in a report
  • Corrected issue where trial extension requests did not behave as expected.
  • Corrected crash in SFTP occasionally caused by read errors
  • Corrected issue where OpenSSH client would require private key passphrase when using password authentication
  • Corrected issue rendering some Windows-1252 extended characters in the Plain Text Client (PTC)
  • Corrected crash in FTP when consecutive PASV commands were issued
  • Corrected issue so invalid username attempts will add the IP address to the ban list
  • Corrected crash when the mail template was less than 7 characters in total size and contained one of the following characters: f, i, l, e, :, /
  • Corrected issue in SFTP client that caused 0 length files to be created when downloading using a *.* file mask
  • Corrected crash in the Admin Interface (AI) when expanding site folders and navigating back to the Server tab
  • Restored ability to blind upload files without requiring LIST privilege
  • Corrected issue in SFTP upload MDTM that caused incorrect file date stamps
  • Corrected crash in SFTP caused by far side closing connection during or immediately after connection
  • Corrected hang in Scheduled Event Rule caused by AWE task crashed
  • Corrected issue in selected COM methods on Windows 2008
  • Corrected issue that prevented the custom Manage Account HTTP page from working on Firefox
  • Corrected two ARM reports that were not displaying the timestamp properly when the EFT Server database was running on Oracle
  • Corrected issue that caused the Web Transfer Client to stop working if the Site was configured to not allow the download of JavaScript (js) files
  • Corrected issue that prevented the Trial Extension Request from working on a 64 bit OS if the trial had expired
  • Corrected issue that caused "425" errors when making 10 or more concurrent FTPS PASV port connections through DMZ Gateway to a defined PASV port range
  • DMZ Gateway:

  • Added DMZ Gateway support of compressed messages sent from EFT Server
  • Corrected DMZ Gateway to correctly return ports to pool on PASV connection attempts
  • Corrected ERROR logs to display as DEBUG, as they are not Application Errors
  • Corrected PASV Ports to be assigned randomly instead of sequentially
  • Corrected connection issues when significant configuration data is passed between the interface and the Server
  • Corrected issues caused by bad message processing logic for certain network environments

Changes in 6.2.18

September 09, 2010

  • Added toggle for HTTP 100-CONTINUE message for interoperability with older AS2 systems that do not support HTTP 1.1
  • Added Quick Search (Control+F) feature to locate Users, Event Rules, Groups, etc. in the tree
  • Enhanced the Administrator user interface to support Trial Extension requests without requiring an administrator to login
  • Added optional directory listing method for customers with large numbers of files in a NAS folder (40,000). This method does not request the associated folder/file permissions during the directory listing. HKEY_LOCAL_MACHINE\SOFTWARE\GlobalSCAPE Inc.\EFT Server 4.0\LegacyDirListBehavior DWORD: any non-zero value activates the legacy (no permissions) directory listings
  • Added several VFS and Administrator methods to COM interface
  • Added more logging to SFTP and AS2 to provide greater visibility into transfer problems (enable in logging.cfg)
  • Corrected issue in quota calculation that was sometimes inconsistent for folders on a UNC share
  • Corrected crash in the administrator interface caused by copying an "if action FAILED" Event Rule statement
  • Corrected timing related crash if data socket was closed while trying to compute transfer speed
  • Corrected issue in AWE that caused AWE task that called a subtask to sometimes not complete
  • Corrected memory leak in LDAP user synchronization
  • Corrected issue that caused SFTP uploads to time out if a sizable number of On File Upload rules were enabled with email notifications
  • Corrected issue that caused filter options to be unavailable in Timer Event Rule Report Actions
  • Corrected issue where some user folders were not being restored from a backup
  • Corrected issue where the SFTP client’s automatic resume was not working properly
  • Corrected ASCII conversion issues that would occur during the RESUME once the network error was resolved
  • Corrected issue where the Cleanup Action was not deleting BAK files. Also added deletion of READONLY and HIDDEN files. The file path no longer has to end in a backslash \
  • Corrected issue where the EFT Server service/admin interface would hang during the changing of the priority of Event Rules
  • Corrected issue with memory leaks when adding a user to a permission group and other user-management tasks
  • Corrected issue where SFTP client keys would not work when upgrading from Secure FTP Server to EFT Server 6.x
  • Corrected issue where EFT Server created the default permission groups "Administrative" and "Guest" that are not appropriate for an ODBC Site
  • Corrected issue where the "Allow FXP" (site-to-site transfers) toggle was not being honored
  • Corrected issue where the Event Rule offload client retry setting was not being honored
  • Corrected issue that would halt future transfers of files by the Event Rule client for specific types of transfer errors
  • Corrected crash in the administrator interface that resulted from monitoring a user from other than the first Site
  • Corrected crash in the administrator interface that resulted from a speed calculation error
  • Corrected issue caused by improper processing of FTP MKDIR command
  • Corrected issue when connecting over SFTP using Transmit 3.5.4 client
  • Corrected issue in FTP directory listing - date sorting was sometimes out of order
  • Corrected delay that could occur to an FTP authentication while EFT admin was loading folders in the VFS tab
  • Corrected SFTP and HTTP login issue in Active Directory environments with multiple domains
  • Corrected issue where AS2 no longer requires the AS2-Version HTTP header for interoperability with older AS2 implementations
  • Corrected problem related to cleanup of OpenPGP temporary files
  • Corrected problem where OpenPGP would lockup if destination file already exists
  • Corrected issue where AWE module would hang related to the improper termination of AWE tasks
  • Corrected interoperability issue with WS_FTP Server related to large file transfers - other vendors have had to do the same
  • Corrected MDTM to always return values in GMT, even if EFT Server listings are configured for local time
  • Corrected parent folder permissions to no longer require SHOW and LIST
  • Corrected interoperability issue with OpenSSH
  • Corrected an issue where Event Rule comments were being lost
  • Corrected XCOPY custom commands errors
  • Corrected an issue where Event Rule Timer events would trigger 1 second early
  • Corrected issue with unnecessary SSH_DISCONNECT timeout messages
  • Web Transfer Client:

  • Added an option to the Web Transfer Client to select local time or GMT for the modified time for files in the local pane
  • Enhanced Web Transfer Client text to use "Current Password" instead of "Old Password" to reduce user confusion
  • Enhanced Web Transfer Client (WTC) to allow selection of GMT or local time for file timestamps in the remote pane
  • Corrected a CRC error that prevented Web Transfer Client from being able to successfully resume a download
  • Corrected issue where resume did not work on filenames > 35 characters when transferring files with the WTC
  • Secure Ad Hoc Transfer module:

  • Corrected issue in SAT that could cause the temporary accounts to not be created on EFT Server
  • Corrected issue in SAT that caused the previous value of the FROM email address to be used instead of the one supplied by the user

Changes in 6.2.7

May 14, 2010

  • Added new registry override for FTP SYST response. Default is "UNIX Type: L8"; common request is for "Windows_NT"
  • Corrected issue where home folders were being lost for AD users after an upgrade
  • Corrected crash that would occur under rare condition when corrupted configuration file was present
  • Corrected problem where EFT Server failed to notify user if site root physical folder was missing
  • Corrected problem where network errors would cause e-mail notifications to fail
  • Corrected problem where LDAP authentication would fail when a user was moved to a different OU or CN
  • Corrected memory leak resulting from COM API operations involving quota checker and folder monitor
  • Corrected crash that occurred upon manually refreshing user database for LDAP auth types
  • Corrected issue where user would not appear in EFT Server’s user list if the user connected prior to an AD synchronization event
  • Enhanced SFTP connection mechanism to work with non-RFC compliant SFTP servers

Changes in 6.2.3

April 05, 2010

  • Multiple administrators can now add objects of the same type (users, event rules, custom commands, and AWE tasks) at the same time
  • Fixed issue when editing an event rule email action when another administrator had modified the user list in a separate AI GUI
  • Removed EFT software version number from HTTP headers to address security concern
  • Modified buffer size on HTTP downloads to achieve comparable file transfer speeds with uploads
  • Updated SAT tables in ARM to provide better performance and robustness
  • Fixed SAT to log the proper filename, instead of the temporary filename, in ARM when SAT is installed on a server remote from EFT
  • Corrected issue in SQL files that could inhibit the creation of the ARM indices on MSDE
  • DMZ Gateway:

  • Fixed a problem where EFT Server Denial of Service updates could block legitimate client connection attempts.
  • Fixed a resource leak that appears under some environments leading to resource exhaustion.

Changes in 6.2.1

March 09, 2010

  • EFT Server and EFT Server Enterprise:

  • Corrected issue where (on new installations) PGP keys could not be created without a service restart
  • Changed default behavior for PGP signature verification to OFF by default (registry enabled). Search help for "signature verification" for instructions.
  • DMZ Gateway:

  • Corrected a problem with how DMZ Gateway handled certain error conditions that could affect the peer communication channel

Changes in 6.2

March 01, 2010

  • New – Active Directory accounts for EFT Server administration
  • Updated – Advanced Workflow module updated with many new actions
  • Updated – SSL certificate support for outbound transfers
  • Enhanced – Secure Ad Hoc module faster performance and new configuration options
  • Fixed – Consolidation of all bug fixes done in 6.1.x patches
  • EFT Server and EFT Server Enterprise:

  • Added Windows Authentication (Active Directory and local Windows accounts) to EFT Server’s administration authentication sub-system. Requires the High Security Module (HSM).
  • Added ability for EFT Server administrators to login via a desktop shortcut and Windows authentication without supplying credentials
  • Added ability to query the LDAP server to obtain a listing of all base DNs on the domain specified or the default domain.
  • Added ability to right-click a user account on the Server tab to open the user's VFS home folder on the VFS tab. You can also launch Windows Explorer from the VFS tree on the VFS tab.
  • Added ability to see virtual folders when using the FTP MLSD command.
  • Added Microsoft Encrypting File System (EFS) to EFT Server basic edition. Requires the High Security Module (HSM).
  • Added requirement for EFT Server administrator credentials when attempting to delete a Site or Server object in the administration interface.
  • Added SSL certificate options for EFT Server's client offload/download FTPS and HTTPS event rule actions.
  • Added support for the PFX format in the EFT Server SSL Certification Manager
  • Updated to version 0.9.8l the non-FIPS SSL libraries used by EFT Server for inbound and outbound SSL-based protocols.
  • Improved SSH key tool; when you rename an SSH key, EFT Server verifies that the name is unique and prompts you to change it if it is not unique.
  • Improved the remote administration interface installation process; the SFTPCOMInterface.dll and SSL.dll are automatically installed and registered.
  • Added Windows Event Log entries if long running custom commands or AWE tasks are terminated due to a timeout
  • Added signature verification to event rule OpenPGP decryption
  • Improved the folder monitor and event rule timers; EFT Server will "reset" only the affected (modified) folder monitor/timer when serializing to the configuration file, rather than all folder monitors and timers.
  • Improved text file auditing of Folder Monitor actions to aid Customer Support when assisting customers with Folder Monitors.
  • Added ODBC Authentication Manager SQL scripts for MS SQL and Oracle
  • Added a default logging.cfg file to EFT Server.
  • Plain HTML format can now be selected by appending ?html to the URL
  • DMZ Gateway:

  • Added ability to install DMZ Gateway on Unix, Linux, and Solaris operating systems (in addition to Windows). Available on both 32-bit and 64-bit operating systems.
  • Added more functionality to DMZ Gateway's interface to accommodate multiple profiles and extended communication information.
  • Centralized DMZ licensing to EFT Server to simplify DMZ installation and licensing.
  • Added ability to connect up to 15 EFT Server Sites simultaneously.
  • Added automatic propagation of IP address access policy changes to DMZ Gateway when the policy is modified in EFT Server, whether in the interface or by the auto-ban logic.
  • DMZ and EFT Server have been hardened to withstand attack from several Denial of Service (DoS) attack tools
  • Improved and expanded DMZ Gateway logging.
  • Auditing and Reporting Module (ARM):

  • Upgraded the SQL Server Express 2005 installer to SQL Server Express Edition, service pack 3.
  • Added three new intervals to the Generate Report Action: Today, Yesterday, and Last 24 hours.
  • Advanced Workflow Engine (AWE):

  • Added new EFT Server variables SERVER_PUBLIC_KEYRING_PATH and SERVER_PRIVATE_KEYRING_PATH to pass the location of the public and private key ring to the AWE module.
  • Added ability to send user-defined (custom) variables from EFT Server to the AWE module.
  • Added several new AWE actions in these categories: Internet, File, Network, Variable and Cryptography
  • COM API

    The following methods, properties, parameters, and enumerators were added or modified:
  • Server Interface (ICIServer) methods: ConnectEx, RemoveServerAdminAccount
  • Single-Site Interface (ICISite) properties: AllowChangePassword, ForcePasswordResetOnInitialLogin
  • Client Settings Interface (ICIClientSettings) methods: GetForcePasswordResetOnInitialLogin, SetForcePasswordResetOnInitialLogin
  • Enumerators and Constants: LoginType, ServerModule, PredefinedReportPeriod, AdminAccountType enumeration, AdminLoginType enumeration
  • Added more unique error descriptions
  • Secure Ad Hoc Transfer module:

  • Added ability to configure ad hoc permissions in the web.config file.
  • Added ability to define the default permissions used for the temporary user's home folder in the web.config file.
  • Added ability for SAT users to create subfolders in their home folder.
  • Added a variable in the web.config file to add a specified time delay before sending the password email.
  • Improved the speed of SAT upload transactions and when SAT is configured for File Copy to EFT Server.
  • Web Transfer Client:

  • Added ability for WTC users to control whether preemptive proxy BASIC authentication credentials are sent.
  • Fixes:

  • Fixed Oracle ODBC Authentication Manager character case problems: user login checks are no longer case sensitive and SQL commands are case consistent.
  • Updated tab sequences in various dialogs for Section 508 compliance.
  • Event Rule "if using WTC" condition now works properly in all scenarios.
  • Event Rule "On Server Startup" actions are now performed.
  • Email notifications are now sent for On Scheduled Timer events.
  • Access to the Web Services WSDL has been restored.
  • Fixed layout errors in some PCI Reports.
  • Fixed the SSH version number displayed in the Admin User Interface to reflect the update to SSH protocol version 4.
  • Fixed WTC to ensure user's AD credentials are used to access files and folders and not the EFT Server service credentials.
  • Fixed WTC so uploads are now as fast as downloads
  • Fixed a vulnerability to tampering in the messaging between the Admin GUI and the EFT Server
  • Fixed several instances where standard file deletion was being used instead of file sanitization
  • Fixed a timeout issue that would lead to a blank page being displayed by the plain text HTTP client during extremely large file uploads
  • Restored the ability to turn on detailed outbound client logging (controlled by registry key)

Changes in 6.1.10

March 01, 2010

  • Improved network error handling and added retry logic to the Web Transfer Client (WTC)
  • Improved ability to distinguish between SQL connection and non-connection related errors
  • Improved Installer to ensure SQL stored procedures are upgraded
  • Improvements to WTC’s proxy authentication capabilities
  • Improved EFT Server compatibility with WebDrive
  • Improved CreateUserEx COM method performance
  • Improved folder deletion performance
  • Improved configuration file read/write performance
  • Enhanced WTC so that its help contents are linked to version specific online help pages
  • Enhanced Auditing and Reporting Module (ARM) reconnection logic by using additional SQL timeout error codes
  • Corrected issue where EFT Server would attempt to send ARM status updates to Admin connections that was disconnecting
  • Corrected issue where WTC upload speeds wasn’t on par with download speeds
  • Corrected issue where Multi-site DMZ Gateway used the wrong interface when attempting to connect using PASV mode.
  • Corrected issue where Multisite DMZ used the wrong interface when performing outbound transfers
  • Corrected issue where WTC sessions would not retain and honor the user's Active Directory credentials
  • Corrected server crash in error handling in EFT Server’s authentication sub-system
  • Corrected issue triggered when ftp command socket was closed as data socket connected
  • Corrected issue on FTP connection when using NLST
  • Corrected issue where disabling an event in the "Event Rules" pane would cause the server to crash
  • Corrected cross site scripting vulnerability reported by QUALSGuard scanner when HTTP to HTTPS redirection was enabled
  • Corrected intermittent issue when deleting physical or virtual folders
  • Corrected discrepancy between the timezone used for the FS.FILE_CREATE and FS.FILE_CREATE_TIME event rule variables
  • Corrected COM script memory leak triggered by the processing of deleted or invalid folders
  • Corrected issue with %FILE.*% related Event Rule variables
  • Corrected issues interoperating with servers using SFTP protocol version 4 or greater
  • Corrected issue where internal SQL commands had inconsistent casing
  • Corrected issue where some login clients account dates were showing up as Dec 31, 1969
  • Corrected issue where upgrades could cause system service instability in rare instances
  • Corrected issue that prevented OpenPGP encryption from signing ASCII armored files
  • Corrected issue that made user names case sensitive when using Oracle as an authentication source
  • Corrected issue where UPN style logins didn't find their AD Profile home directory
  • Corrected issue where Event ACTIONS and GROUPS would trigger errors on SQL text file import
  • Corrected issue where virtual folders not pointing to the C:\ drive were not visible
  • Corrected issue during client authentication in SSL
  • Corrected issue where folder names did not display a '&' properly
  • Corrected minor GUI layout issue related to Advanced Workflow Engine (AWE) "Create Date" label

Changes in 6.1

November 09, 2009

  • Improved Active Directory user authentication and synchronization to provide better support for foreign domain users and groups
  • Added SSH.com or OpenSSH formatted keys selection to SFTP key creation wizard
  • Added Message Level Security (MLS) to the AS2 module
  • Added support for Folder Monitor Event Rule to operate across network shares/forests in Active Directory
  • Added Windows authentication in addition to SQL authentication for EFT Server ARM connections to SQL Server
  • Added extensive and configurable text file logging to aid Customer Support in identifying customer environment unique behaviors
  • Added support for user principal and common name formats for the AD/LDAP user Change Password function
  • Moved the AD/LDAP test connection from the Administrator Interface to the Server
  • Updated Move Action context variables %FS.PATH%, %FS.FILE_NAME%, and %FS.FOLDER_NAME% to match the new file location
  • Added support for Powershell to Event Rule commands
  • Improved support for UNC paths to hold the resulting backup file for Event Rule Backup Action
  • Added support for Event Rule client transfers function through ISA and SQUID proxies
  • Added support for multi-part POST uploads for Event Rule client for compatibility with Tumbleweed Secure Transport Server
  • Added Advanced Workflow task names to Event Rule reports
  • Improved OpenPGP support of the ASCII-armored file format for data files
  • Added support in the installer wizard to install EFT Server and DMZ Server in a cluster
  • Improved installer wizard for the setup and upgrade of ARM and the associated SQL database
  • Added support for installing EFT Server from a command line/with a batch file
  • Added ability to extend the initial 30-day trial
  • Added new methods and properties to the COM API and removed deprecated ones
  • Added support in the Web Transfer Client (WTC) to provide wider character support
  • Upgraded WTC libraries to provide better proxy, cookie, and HTTP compatibility
  • Upgraded Plain Text Client (PTC) libraries to provide better performance when listing folders with thousands of files and folders
  • Removed (hid) Change Password button in the WTC when the user account does not have permission to change the password
  • Added ability to email user login credentials from EFT Server
  • Added Clear Command Channel (CCC) and Clear Data Channel for FTPS
  • Added ability to import and export Advanced Workflow tasks in the Administrator Interface
  • Added ability to configure Secure Ad Hoc Transfer (SAT) to prevent "spoofing" by forcing FROM address to match AD before sending the message
  • Added logging to SAT, which now logs the IP address of the sender to ARM and displays the address in new reports
  • Added verification of prerequisites in the SAT installer to verify IIS and .NET are installed and have the correct versions
  • Added IIS role setting to the SAT installer
  • Updated SFTP client to provide higher performance, compatibility, and FIPS-certified encryption
  • Added ability for the SFTP SSH_FXP_SETSTAT command to modify the file's accessed, modified, and created timestamps
  • Added upload and download speed for SFTP connections to the Server's Status tab
  • Included headers from transactions to the AS2 Transaction Detail report
  • Added ability to configure inbound only or outbound only AS2 partners (no longer need to configure both)
  • Increased administrator password length from 20 to 99 characters
  • Increased Group and Settings Template name length to 255 characters
  • Provided new controls, notifications, and events regarding users that are locked out due to invalid login attempts
  • Fixed WTC properly supports the Euro symbol in folder and file names
  • Fixed WTC supports configuration of retries for users transferring large file sets over networks with intermittent errors
  • Fixed WTC properly throttles bandwidth per the specified limits for both uploads and downloads
  • Fixed WTC transfer percentages are displayed and updated correctly for resumed transfers
  • Fixed WTC properly notifies user if a remote folder cannot be created because it already exists on the remote server
  • Fixed WTC displays a single error dialog if the connection to the remote server is lost while transferring multiple files
  • Fixed WTC and PTC users are returned to their previous page instead of an error page when selecting CANCEL during login
  • Fixed PTC properly sorts file listings based on the Modified Date and Size columns
  • Fixed SAT detects if IIS 7 is installed and extends the maxAllowedContentLength value in the IIS ApplicationHost.config file to 2 GB
  • Fixed SAT supports semicolon delimiter for multiple email send addresses
  • Fixed DMZ Single Site now accepts the queued EFT Server connection when the active connection ends
  • Fixed Turning off SSL FIPS reenables Auto Negotiate
  • Fixed SSL cert creation wizard ensures a valid ISO country code is selected
  • Fixed NTLM user authentication renamed to "Local System Accounts"
  • Fixed Copy/move Action now honors the retry counter instead of trying indefinitely
  • Fixed On Timer rule supports specifying *.* or *.ext to download files from a remote folder
  • Fixed Restore places the AUD file in the correct folder
  • Fixed PCI DSS report is available in the Generate Report selection dropdown
  • Fixed XCRC now works on files greater than 2GB
  • Fixed A value in the Description column is not necessary for ODBC user entriesq
  • Fixed OpenPGP will not create a separate signature file if "Output to target file" is selected
  • Fixed Removed the Advanced FTP settings that were not relevant to SFTP
  • Fixed Users reenabled in Active Directory will be reenabled in EFT Server
  • Fixed AWE and AS2 "not registered" Windows Event Log entries are now INFO instead of ERROR
  • Added many additional stability, usability, and user interface improvements and fixes

Changes in 6.0.17

September 03, 2009

  • Fixed SFTP protocol command validation
  • Fixed DMZ issue that occurred when two EFT Servers used same IP/port
  • Fixed WTC to notify user if local folder creation failed due to invalid characters
  • Improved several prompts and messages in the WTC
  • Updated the Help files and the copyright date to 2009
  • Improved various error messages.
  • Added the ability to transfer folders containing subfolders.
  • Set status to "INTEGRITY CHECK FAILURE" only for CRC failures. CRC check failure caused by reasons other than CRC value difference are assigned the "UNABLE TO VALIDATE INTEGRITY" state.
  • Fixed the occasional missing icon problem.
  • Changed client SFTP key generation to use ssh.com style keys by default.
  • Removed spaces from LDAP query strings so comparisons match properly.
  • Enhanced WTC to provide a <%=client_ip%> token replacement in htm files.
  • Corrected a problem with binary to ASCII conversion over SFTP.
  • Fixed a crashing issue that could occur when user list was not in sync with authentication provider.
  • Made permissions checks when switching into a UNC directory consistent with that of switching into a local directory.
  • Fixed a crashing that occured when a PCI DSS report was generated on an LDAP site.
  • Fixed issue where files uploaded over HTTP using the PUT method were visibile while being transferred.
  • Fixed issue where webservices invocation failed because of random data being appended to parameters.
  • Fixed issue where server inactivity led to ADO errors being recorded to the system application log.
  • Fixed issue where AS2 would fail MDN verification.
  • Fixed issue where AS2 hot folder would fire early and send a 0 byte file.
  • Fixed hang that could occur when deleting a user while system quotas were enabled.
  • Fixed a crash that could happen when the system bans a user for disconnects.
  • Increased allowed length of administrator passwords.
  • Fixed issue that could lead to crash when using COM.
  • HTTP 401 page now redirects you to previous page in browser history.
  • Fixed hang that could occur when deleting a user while system quotas were enabled.
  • Fixed a crash that could happen when the system auto-bans a user.
  • Increased allowed length of administrator passwords.
  • Fixed issue that could lead to crash when using COM.
  • HTTP 401 page now redirects you to previous page in browser history.
  • COM ClientSettings Get/Set HTTPS/FTPS methods now work.

Changes in 5.2.21

September 03, 2009

  • Fixed SFTP protocol command validation
  • Fixed WTC FireFox issue that was introduced when new signing cert was used for jars
  • Merged 6.0/6.1 LDAP fix for base DN's that contain spaces
  • Added registry entry that will allow wildcard transfers of local files to fail if no files. Are found (legacy behavior is all wildcard operations succeed even if no files are found)
  • Update to authentication manager to correctly pull domain name in certain instances where it previously failed.
  • Fixed problem with random session expiration/timeouts over HTTP.
  • Automatic re-queue of file transfers when they fail.
  • Bug fixes to Web Transfer Client.
  • Fixed crash upon login caused by use of a special registry key.
  • Improved AD support for retrieving a user's domain.
  • Improved BlueCoat proxy support.
  • Fixed issue with Web Transfer Client only reporting 10 licenses even if more were registered.

Changes in 6.0.6

June 15, 2009

  • 0KB files uploaded via SFTP now trigger events and are reported in logs.
  • LIST permission is no longer required for a WTC upload.
  • Plain text web transfers now correctly handle sending files with an octothorpe (#) in the file name.
  • Opening a Microsoft Office document via the HTML Listing and Upload form in Internet Explorer no longer triggers a reauthentication prompt.
  • AD accounts in WTC can no longer rename and delete virtual folders.
  • WTC now allows signing certificate to be accepted.

Changes in 6.0.4

May 20, 2009

  • Enhanced ARM performance under load
  • Enhanced the layout of the User Templates, Groups, and Custom Command dialogs to support longer names
  • Corrected SQL connection timeout handling to ensure ARM auditing of all transactions
  • Corrected SQL error handling to eliminate repeated email notifications
  • Corrected issue that occurred if APPEND was disabled and a WTC user attempted to resume a transfer
  • Corrected database error triggered by AS2 configuration Test button
  • Updated SAT installer to grant permission to EFT /adhoc folder for Vista and Win2K8
  • Updated SAT installer to properly list/select the IIS web sites

Changes in 6.0.1

April 08, 2009

  • Enhanced WTC proxy support for JREs after 1.6.7
  • Enhanced EFT Server Enterprise installer to provide both the Single Site and Multi-Site DMZ Gateway sub-installers
  • Enhanced the logic used to complete the removal of a previous version of EFT Server or Secure FTP Server
  • Enhanced the SAT-related ARM reports to display multiple files if more than one file was sent per transaction
  • Enhanced the Administrator GUI to support User Setting Templates and Permission Groups with names greater than 20 characters (max of 255)
  • Enhanced EFT Server (core) with support for operation on 64 bit
  • Corrected issue with WTC Active Directory change password
  • Corrected issue in plain-text HTTP that required DELETE permission to download files
  • Corrected issue caused when uploading a file to a folder with a path exceeding 255 characters
  • Corrected issue with WTC not showing download prompt with Firefox
  • Corrected issue caused when Web Services interface was disabled but Event Rule invocation was attempted
  • Corrected logos and formatting issues in SAT and AS2 ARM reports
  • Corrected issue related to generation of output in Custom Command log files
  • Corrected EFT Server crash that occurred for Copy/Move Event Rule Actions that did not have a leading “\\”
  • Replaced HTTP Java update link with HTTPS link to eliminate warnings about "insecure content

Changes in 5.2.15

March 18, 2009

  • Fixed Java errors on the change password page
  • Fixed crash that occurred when there was a high number of user-to-group assignments
  • HTTPS clients without Java installed are now prompted to install it
  • Improved EFT Server stability by identifying and removing thread unsafe code
  • Fixed crash that occurred when logging in via SFTP and connection limit is already reached.
  • Fixed memory leak when uploading files via HTTP
  • Resolved issue wherein certain COM scripts would never time out
  • Resolved issue where custom command parameters would not appear in cmdout.log
  • Resolved issue where plain text client would not reload when a non-standard port was used
  • Fixed memory leak in the authentication managers
  • Fixed EFT Server hang issue caused by administrative users timing out
  • Fixed memory leak caused under certain circusmtances by NLST command

Changes in 6.0

March 02, 2009

  • Added - compatibility with x64 Windows including Server 2008
  • Added - Oracle database support added for Auditing & Reporting
  • Added - Backup and restore wizard for disaster recovery and migration between servers
  • Added - New Server Administrator role: "Create User" - has ability to create users within designated templates
  • Added - Optional Advanced Workflow Engine module - extends EFT Server event rules by over 200 additional actions, including send to mainframe, send SNMP traps, query SQL database, parse an XML or Excel file, and hundreds more
  • Added - New wizards for the Download (Pull) and Copy/Move (Push) Event Rules
  • Added - DMZ Gateway Enterprise - allows multiple EFT Servers to connect to the gateway.
  • Added - FIPS certified SSL and SSH libraries as part of High Security Module (HSM).
  • Added - Comprehensive auditing and reporting of all administrator changes made to the server (requires HSM)
  • Added - Ability to modify the default messages sent upon account creation and password expiration reminders
  • Added - Ability to switch between UTC/GMT and server local time for timestamps returned in directory listings
  • Enhanced - Setup (installation program) can configure EFT Server’s auditing database on an existing SQL or Oracle server
  • Enhanced - complete revamp of EFT Server’s Administrator Interface including dozens of small usability fixes
  • Enhanced - Support for designating EFT Server's configuration file path
  • Enhanced - New User setup wizard can now designate a home folder including variable names
  • Enhanced - Replaced MSDE with SQL Server Express for the bundled database
  • Enhanced - Updated PCI compliance to match the latest PCI DSS 1.2 specification (requires High Security Module)
  • Enhanced - Ability to create Custom Commands "on the fly" from within Event Rules
  • Enhanced - Various visual and usability improvements to the Event Rule builder
  • Enhanced - Send E-mail Event Rule action now allows multiple "To:" values
  • Enhanced - Send E-mail Event Rule action now includes an Address Browser to search and insert addresses with ease
  • Enhanced - Replaced OpenPGP library - provides many more options, including signing options, cipher/hash options, self-decryption archive creation, compression levels, and debug logging
  • Enhanced - Updated SFTP library - provides import/creation of OpenSSH keys and public key select/export
  • Enhanced - Ban IP address on invalid account now counts invalid login attempts when a non-existing username is provided.
  • Enhanced - Plain HTTP interface has been updated and exposed so that it can be completely customized
  • Enhanced - Web Transfer Client (WTC) interface updated and various minor bugs fixed
  • Enhanced - Dozens of minor usability and bug fixes in AS2
  • Added - Complete backwards compatibility with Secure FTP Server 3 and EFT Server 5
  • Enhanced - Password reset and complexity are now part of the core feature set
  • Fixed - Various defects of varying level of severity

Changes in 5.2.12

November 05, 2008

  • Corrected an issue with WTC logout on Firefox.
  • Added registry setting that allows OS-selected IP address assignment for outbound client connections (pre-5.2.11 behavior).
  • Internet Explorer Enhanced Security Window no longer interferes with the Administrator interface.
  • Added expiring session cookie for WTC on Chrome browser for logout (fixes the repeated logon issue in Chrome).
  • The Event Rule MailAction::FROM parameter is now exposed so that it can be overridden with an event rule specific value. If the FROM email address is not overridden in the rule, the Server level default value is used for the FROM address.
  • Now deploying PCI report files to PCI subfolder rather than Reports subfolder.
  • Provided option (via registry key) to redirect cl*.log output to the Windows Event Log.
  • OpenPGP keyrings can now be in a location other than the EFT Server installation folder.
  • OpenPGP updated to support selection of hashing algorithm.
  • EFT Server outbound client now uses site IP address instead of defaulting to OS-selected IP address.
  • (SAT) Fixed problem with send upload notification not functioning due to URL format supplied in user description field.
  • (SAT) Increased logging in send upload notification script.
  • (SAT) Fixed problem with uploading popup opacity and animated gif not moving in IE7.
  • (SAT) Fixed problem with “From” cookie storing more than one email address.
  • (SAT) Updated COM for compatibility with EFT 5.2.12.

Changes in 5.2.6

September 10, 2008

  • Corrected EFT Server service crash caused by NMAP scan of HTTP and HTTPS listener ports.
  • Corrected Web Transfer Client issue with Google Chrome beta. (Google Chrome requires Java SE 6 Update 10 RC or later.)
  • Added option to log protocol events to the Windows Event Log (activated via registry setting).
  • Added option to pass client IP address to LDAP server during user authentication (activated via registry setting).
  • (SAT) Added "one-click authentication"; a hyperlink can be included in the notification e-mail to automatically log the recipient in to the Web Transfer Client.
  • (SAT) Added configurable notification e-mail options: send one email with one-click authentication, send separate e-mails with username and password to recipient or sender, send username and password in the same e-mail as the link, or send username to recipient and password to sender.
  • (SAT) Upload notification process now sends one e-mail per transaction instead of one e-mail per file.
  • (SAT) Added "Smart Email" functionality to pull e-mail address from EFT Server. SAT completes the e-mail address based on first and last name if the user's full name and email fields are populated in EFT Server.
  • (SAT) Redesigned the sendmail form with a new layout, more interactivity, and more configurable options.
  • (SAT) Added the ability to show or hide the CC and BCC fields.
  • (SAT) Added the ability to remove the e-mail logo.
  • (SAT) Added the ability to add as many files as needed in one send.
  • (SAT) Added the ability to black list and white list destination domains in the To/Cc/Bcc fields.
  • (SAT) Added the ability to configure accounts to not expire.
  • (SAT) Added Virtual Folder support in EFT Server for user settings.
  • (SAT) Added the ability to use EFT Server's Local File Copy protocol when the User Settings Level is in a remote share.
  • (SAT) Added the ability to check for and warn on common configuration errors when the application is started.
  • (SAT) Fixed the problem pre-populating the From e-mail address. Subsequent e-mail messages contain the previous From e-mail address. The From address is stored in a cookie for one day after a successful e-mail has been sent.
  • (SAT) Fixed the problem where concurrent users generates errors.
  • (SAT) Fixed the problem where spaces in e-mail address list causes error

Changes in 5.2.5

August 26, 2008

  • Resolved issue where transfer status was not properly displayed in Web Transfer Client.
  • Updated Web Transfer Client to be compatible with Firefox 3.0 for Windows and Safari 3.1.1 for OS X.
  • Fixed PGP private key issue with whitespace in passphrases.
  • Improved HTTP POST memory and CPU efficiency and speed.
  • Fixed COM method GetUserSettings to be case insensitive.
  • Added GetPhysicalPath (string VirtualPath) function to COM interface.
  • Resolved ARM connection handling error to MSSQL2005.
  • Updated Site Setup Wizard to correctly require SSL certificate passphrase.
  • Added SSL close_notifiy message to ensure support for FileZilla client.
  • Added ability to change Active Directory password in Web Transfer Client.
  • Added ability to change expired Active Directory passwords in Web Transfer Client.
  • Added email notifications for Active Directory and LDAP passwords that are about to expire.

Changes in 5.1.34

August 12, 2008

  • Improved Web Transfer Client proxy connection handling.
  • Improved Web Transfer Client logout.
  • Enhanced Web Transfer Client date format options.
  • Enhanced Web Transfer Client to remember EFT login to reduce login popups when connecting through proxy.
  • Added support for NTLM authentication for browser/SAT module connections.
  • Corrected auditlogger SQL formatting issue when writing to disk file while disconnected from DB (MS SQL or Oracle).
  • Corrected idle admin port timeout issue.
  • Corrected Site Creation wizard error when specifying ports for additional network adaptors.
  • Corrected issue when failed LDAP query would disassociate users from groups.
  • Updated Oracle version of default ARM reports to match SQL.

Changes in 5.2.4

July 22, 2008

  • Improved refresh rate for AS2 Test GUI.
  • Improved AS2 configuration usability.

Changes in 5.2.3

July 18, 2008

  • Added Drummond-Certified AS2 support in compliance with RFC4130
  • Enhanced AS2 to include Multiple Attachment support
  • Enhanced AS2 to comply with the AS2 Reliability specification
  • Added support for Web Services invocation of Event Rules 
  • Enhanced PGP architecture by upgrading the core PGP libraries
  • Enhanced the PGP encrypt Event Rule action to automatically ignore files with *.pgp or *.gpg extensions for encrypt operations
  • Enhanced the PGP decrypt Event Rule action to process files with *.pgp or *.gpg extensions exclusively
  • Corrected issue where loss of LDAP connectivity would disassociate users from groups.
  • (SAT) Made compatible with EFT Server 5.2

Changes in 5.1.30

May 06, 2008

  • Added support for certificate based SSL authentication for Offload and Copy/Move event rule actions – requires registry entries to enable
  • Added new replacement variables for the FTP login banner (%DATE% and %TIME%)
  • Corrected a crash that occurred when specifying a non-existent group
  • Corrected the Send Report event rule action so that only the report output chosen is generated
  • Added a new context variable (%FS.REPORT_FILENAME%) for report generation, which is just the filename of the report, not the full path, for convenience in copy/move event rule actions
  • Added field to database to capture login name of users connected to the server's administrator port
  • Added optional registry setting that improves the internal save process for the server's configuration data - only affects very large configuration files (such as those with hundreds of event rules)
  • Added support of auditing to an Oracle database – requires a registry entry to enable
  • Corrected a crash that occurred when calling the AddIPAccessRule() method via COM
  • Corrected problem in which legacy configuration files were designated incorrectly as corrupted
  • Corrected a problem with Web Transfer Client filter results linking to other folders
  • Corrected FTP result codes for non-wildcard list command per RFC959 specifications
  • Corrected multiple GUI and service runtime crash conditions
  • Corrected an issue in which no error was being reported when the connection was lost while writing to a network resource
  • Corrected a crash that occurred occasionally at service shut down
  • Corrected problem with inheritance and resulting folder permissions
  • Corrected various memory and handle leaks
  • Performed various stability related improvements to the monitor folder event rule
  • Expanded LDAP connection string to support up to 512 characters
  • Increased the default timeout values for COM
  • Reduced timeout values for administrator login
  • (SAT) Corrected a problem with accented or special characters not being processed properly in SAT generated e-mails.
  • (SAT) Corrected a problem where concurrent use may cause SAT to become unresponsive.
  • (SAT) Corrected a problem with SAT not timing out properly once it has completed a send transaction.
  • (SAT) Removed an error message that would display when a port value was not supplied even though no protocol was defined.

Changes in 5.1.6

February 28, 2008

  • Added SOCKS outbound proxy support (available in Copy/Move Action dialog)
  • Added registry value that can be used to override default AD Auth Manager behavior of creating home folders that are virtual paths to the AD users home folder value
  • Added support for "X-ORIGINAL-PROTOCOL" header over HTTP/S to facilitate terminating SSL connections in front of the EFT Server or DMZ Gateway
  • Enhanced Copy/Move Event Rule to allow the use of context variables as a first entry in the destination path
  • Corrected two memory leaks (folder monitor health check, and when offloading files)
  • Corrected problem where rules can't be deleted when no actions are defined
  • Corrected Administrator Interface crash when applying changes to rules under certain conditions
  • Corrected problem where offload event using SFTP protocol sometimes fails
  • Corrected rare crash that may occur when multiple administrators are configuring the server simultaneously
  • Corrected problem where an LDAP site with thousands of groups would hang upon opening the site
  • Corrected problem where the Timer/Scheduler would not fire under rare conditions
  • Corrected problem with terminating a rule prematurely if changes are made to that rule while the rule is executing
  • Allowed system to disable users after multiple invalid login attempts even when PCI DSS HS Module is expired
  • Corrected problem with apostrophe in filenames not working properly in Web Transfer Client
  • Corrected problem with Filter button/command not working in Web Transfer Client on rare occasions
  • Corrected problem with sibling files and folders being transferred (not just selected folder) in Web Transfer Client
  • (SAT) Moved to ASP.NET technology to overcome file size limits when uploading
    very large attachments. Now the web page supports file uploads up to
    2GB in size.
  • (SAT) Corrected "Input string was not in a correct format" error.
  • (SAT) Corrected problem with creating extra folders on the EFT Server file system.
  • (SAT) Corrected administrator password encoder/decoder problem that resulted in failed connections between SAT and EFT Server.
  • (SAT) Corrected IIS copy vs. local copy problem where extra '/' would cause an error when trying to copy files between SAT and EFT Server.
  • (SAT) Corrected a problem where an EFT Server site name in URL format would cause connection problems between SAT and EFT Server.

Changes in 5.1.1

December 19, 2007

  • Added the ability to create PCI DSS Sites for all supported authentication types
  • Added new wizard page to optionally enable Data Sanitization when creating a new site
  • Added a compliance check for data sanitization per PCI DSS 9.10.2
  • Added a compliance check for NOOP command and site-to-site transfers per PCI DSS 2.2.3
  • Added a compliance check for SSL clear command and data channels per PCI DSS 4.1
  • Added a compliance check for more than one admin with full control over EFT Server per PCI DSS 7.1
  • Added a compliance check for any expired certificates or keys per PCI DSS 3.6.4.9
  • Added support for AES-256 cipher (SFTP)
  • Added SSL certificate chaining to mitigate the problem of expired intermediate keys
  • Added new COM methods for client account lockout and IP access controls (see help file for details)
  • Added a new Web Transfer Client "signing" security mechanism to mitigate risk of rouge servers deploying malicious web transfer clients
  • Added a progress bar and animated graphic to communicate transfer progress in the Web Transfer Client
  • Added true "logout" for Web Transfer Client (previously you had to close the browser to kill the session)
  • Added ability to hide files marked with a "hidden" attribute on the local file system (Web Transfer Client)
  • Added new client (user) context variables including last login time, password expiration date/time, reset password at first login, account expiration date, and whether account is active or not. See help file for details
  • Added functionality to check for improper PGP passphrases when a new encrypt/decrypt rule is created
  • Added an error message to the Windows application event log when SSL fails to initialize
  • Enhanced the sorting algorithms used for users, groups, commands, event rules, etc.
  • Enhanced EFT Server GUI icons with high-color and XP-color definition
  • Enhanced usability by setting default values and by improving text throughout the UI
  • Enhanced PCI DSS reporting to create HTML format reports if a PDF reader not available
  • Enhanced checksum calculations (incremental CRC32 for improved throughput on transfer verification) for Web Transfer Client
  • Enhanced Auditing and Reporting module (ARM) database connectivity logic (connection pooling) to provide superior performance when under heavy loads
  • Increased character limit for the AD user description field from 100 to a limit of 1024 characters
  • Corrected instability issues that caused crashes or hangs under rare situations, due to deadlocks and/or race conditions
  • Corrected directory listing problems on Mac OS (Web Transfer Client)
  • Corrected drag and drop within remote pane intermittently failing (Web Transfer Client)
  • Corrected various instability issues that could cause crashes in the Web Transfer Client
  • Corrected a potential security vulnerability where a user could change into a directory that they had no permissions to (affects SFTP only)
  • Corrected issue with Apply button not being disabled once an Event Rule is deleted
  • Corrected inconsistency with how accounts were shown as enabled/disabled when using AD authentication
  • Corrected LDAP user authentication issue where an extra comma was being supplied in the bind string
  • Corrected incompatibility issue with Windows 2000 where EFT would fail to start (EFT 5.1 and above)
  • Corrected error when calling COM method AddUserToPermissionGroup() under LDAP sites
  • Corrected problem where new SSH keys were not displaying in the SFTP public key select window
  • Corrected problem where SFTP login failed Event Rule would trigger twice (or multiple times) rather than just once upon login failure
  • Corrected problem where newly created SSH keys were not appearing in the SFTP key manager key selection list
  • Corrected problem where Timer Event Rule triggers where sometimes skipped
  • Corrected problem where renaming a folder in the VFS or by a connected client no longer causes permissions on all subfolders to reset their permissions to "inherit"
  • Corrected problem where users would disappear from a group if they were moved to a different User Settings Level template
  • Corrected problem where users disappeared from a group after being moved from a different group upon site restart (using LDAP authentication)
  • Corrected problem where the file copy/move Event Rule action would trigger a failure even when the file was moved successfully
  • Corrected problem where EFT would generate temporary files in the install directory for no apparent reason (.041 extension)
  • Corrected problem where downloads using wildcards were failing to use the DMZ Gateway as a proxy server (when set to do so)
  • Corrected problem where allowed/denied IPs weren’t applied until site restart
  • Corrected problem where an incompletely defined download rule could be saved, possibly corrupting EFT’s configuration file
  • Corrected problem where reconnecting to the auditing database would result in a near-instant disconnection
  • Corrected problem where DMZ gateway did not retain its "Client IP" settings on restart (requires update to DMZ Gateway server)
  • Corrected problem with files re-uploading when Refresh is selected (Web Transfer Client)
  • Corrected problem with not being able to rename files in Safari over HTTP protocol (Web Transfer Client)
  • Corrected problem with resume download not working (sometimes resume button not appearing at all, other times it would appear but resume would fail)
  • Corrected problem with transfer resume under SFTP protocol with some SFTP clients
  • Corrected problem with large (2 GB+) files over SFTP to certain servers, such as ProAtria SFTP Plus
  • Corrected problem with not being able to add a user/group to virtual folders or subfolders until Refresh button was clicked
  • Corrected problem with user account impersonation: files could be renamed over some protocols but not others even when rename permission was provided
  • Corrected problem with admin console session being lost when testing event rules
  • Corrected problem with wild cards in a download action not downloading files that matched the mask
  • Corrected problem with not being able to change the Site Root folder (it would revert back to the previous root folder upon restart)
  • Corrected problem with the Event Rule Offload action not using the DMZ Gateway Server as an outbound proxy (when set to do so)
  • Corrected problem with server response code returning 250 instead of expected 230 for successful logins
  • Corrected problem with %Event Reason% parameter tag always showing "Action Completed Successfully" rather than the appropriate failure reason
  • Corrected problem with auditing of large (over 2 gig) transfer sizes to the Auditing and Reporting database (SFTP transfers only were affected)
  • Corrected problem with zero or negative values being stored in identity field in the ARM database after auditing entered failure state.
  • Corrected problem with the ARM Component One Report Editor help file not displaying
  • Corrected problem with COM method CreateComplexPassword() not handling VBScript reference parameters
  • Corrected problem with EFT’s COM functionality not working in 5.1 when called from VB apps. Error received was MX Error 52 (00000034)
  • (SAT) Corrected SFTPComInterface.dll for EFT 5.1 compatibility.
  • (SAT) Updated temporary user account creation to use complex passwords according
    to EFT Server's password security settings.

Changes in 5.1.0

November 14, 2007

  • Added optional high security module to monitor and alert Payment Card Industry Data Security Standard (PCI DSS) violations
  • Default password, banner message, or port values in use (PCI DSS 2.1)
  • Unsecure protocols in use (PCI DSS 2.2.2)
  • Password length, expiration and complexity violations (PCI DSS 8.5.10,11)
  • Disk quota not set (PCI DSS 3.1)
  • Administrator IP address filter not set (PCI DSS 1.3.1, 1.4.1)
  • Secure remote administration not set (PCI DSS 2.3)
  • DMZ Gateway not set (PCI DSS 1.3.4)
  • DoS and flood settings too low (PCI DSS 6.5.9)
  • Encrypting File System (EFS) in use (PCI DSS 3.4.1)
  • Check if passwords are being reused for any account (PCI DSS 8.5.12)
  • Added daily automatic or manually generated report on current PCI DSS compliance status, including all violations, justifications, and compensating controls (PCI DSS 10.6)
  • Added optional high security module to enforce compliance with Payment Card Industry Data Security Standard (PCI DSS)
  • Disabling of anonymous account types (PCI DSS 8.5.8)
  • Disabling of weak SSL versions and ciphers (PCI DSS 4.1)
  • Disabling of weak keys (PCI DSS 3.6.1)
  • Disabling ability to reuse prior passwords (PCI DSS 8.5.12)
  • Added new high security features as part of PCI DSS HS module
  • Data wiping (sanitization) (PCI DSS 9.10.2)
  • Removal of old data automatically (PCI DSS 3.1)
  • Removal of or disabling of inactive accounts (PCI DSS 8.5.5)
  • Redirecting HTTP to HTTPS port; previously could only be configured in the registry, is now available in EFT Administrator (PCI DSS 2.2)
  • Forced expiration of user account passwords (PCI DSS 8.5.9)
  • Forced password reset on initial login (PCI DSS 8.5.3)
  • Temporarily lockout users if incorrect login attempts limit is exceeded over a specified time (PCI DSS 8.15.13,14 )
  • Automatically disconnect users after a specified time of inactivity. (PCI DSS 8.5.15)
  • Audit server configuration changes to database (PCI DSS 10.2.2)
  • Audit initialization of auditing & reporting system (PCI DSS 10.2.6)
  • Added SSL certificate-based authentication (in addition to certificate + password)
  • Added IP filter masking feature at account (user) level
  • Added support for importing and authentication of multiple SFTP keys stored in a single key file, association of one or more keys to a user account, and assignment of the same key (or keys) to more than one user account
  • Enhanced the Server, Site, New User, and New Connection wizards
  • Enhanced one-way encryption applied to all passwords stored in EFT Server’s configuration

Changes in 5.0.1

July 27, 2007

  • Added SHA256 based password hashing to stored passwords
  • Added "%SERVER.NODE_NAME%" to Server Context Variables and Condition builder
  • Added Event Rule Builder tree line thickening and colorization
  • Added missing keyboard accelerator under Security tab
  • Added prompt when password-only administrators queue up multiple actions before applying changes
  • Added ability to sort by users in Password Management admin GUI
  • Enhanced Admin connection SSL failure handling
  • Enhanced Local file system copy/move actions are now logged to the CL log file
  • Corrected issue where auto-assigned home folders failed when specifying an AD group
  • Corrected issue with renaming a group name
  • Corrected issue where site administrators could not manage PGP keys
  • Corrected issue with offloading files through SFTP protocol
  • Corrected issue where users received GlobalSCAPE EFT Server Administrator crash report after reboot
  • Corrected issue where users were not able to offload to TitanFTP using SFTP protocol
  • Corrected issue where Connect to TE button was not available after clicking disconnect from TE
  • Corrected issue with bandwidth throttle causing FTP upload problems
  • Corrected problem with the configuration file being read when NT/AD domains were unavailable
  • Corrected Web nag Issue with DMZ Gateway
  • Corrected issue where Timer events would execute more often than expected
  • Corrected duplicate keyboard accelerator for New User Account Setup wizard
  • Corrected issue where retry logic for SFTP offload reported incorrectly after success
  • Corrected issue where the server incorrectly returned "Delete selected admin account" prompt
  • Corrected issue where NTLM/AD full permissions were required to delete or rename
  • Corrected issue where VFS tab displayed two EFT local servers incorrectly
  • Corrected issue where "If protocol does equal FTP over TLS" condition could fail
  • Corrected problem with "Download file from host" condition incorrectly displaying "Source" and "Destination" fields
  • Corrected issue under Server-Administration tab where focus incorrectly switched after GUI refresh
  • Corrected issue where Server administrators could delete themselves if logged in with a name that differs from original only in case
  • Corrected issue where Settings Level admin could remove/rename inaccessible folders in VFS
  • Corrected issue where Server level sub-administrators could alter their own delegations
  • Corrected issue where sub administrators could not rename themselves properly
  • Corrected problem with Admin management confirmation dialog
  • Corrected issue where validation was not handled properly while deleting super-admin account in EFT
  • Corrected issue where Site Rename option did not function properly
  • Corrected issue where "Apply your changes or refresh settings" dialog box appeared twice
  • Corrected issue where User Login Failed event rule did not run when using SFTP with an invalid account
  • Corrected issue with ARM losing connection to the SQL database
  • Corrected issue where EFT did not detect changes to the users home folder in AD
  • (SAT) Corrected problem where registered module may report that it has run out of
    transactions.
  • (SAT) Updated help file instructions for setting up automated maintenance in EFT 5

Changes in 5.0

June 27, 2007

  • Added complex event rule creation supporting multiple actions, simple or compound conditions, else statements and nested logic
  • Added ability to clone an existing Event Rule
  • Improved Event Rule sorting, displaying, comments, selecting, and tooltips
  • Added multiple settings to the offload/download Event Rule action (connection limit, use proxy, retry, - see help file for complete list)
  • Added ability to conduct EFT Server offload/download initiated events through the DMZ Gateway
  • Added auto-heal, polling, and failure notification feature to the Folder Monitor Event Rule trigger
  • Added a new Folder Clean-up Action to remove old files
  • Added many more date/time options to the Timer/Scheduler Event Rule trigger
  • Added new file events, event types, and conditions to the Event Rule system (see help file for details)
  • Added User customizable SFTP Banner Message
  • Added SSL cipher selection list and manual specify cipher option
  • Added HTTP to HTTPS redirection (enabled from registry – see help file)
  • Added option to choose from one or more SSL versions
  • Added Password Complexity feature with granular options including min. length, must contain N number of digits, chars, special chars, not in a dictionary forward or backwards, contains username, or has N repeating characters.
  • Added multiple levels of Delegated Administration including server admin, site admin, settings level admin, and help desk (change password) admin options. Concurrent administration also supported
  • Improved Web Transfer Client functionality – folder transfers, logout, change password, and UTF-8 encoding support
  • Added alpha sort to Administrative GUI interface
  • Added type-ahead functionality to Administrative GUI interface
  • Added custom user fields to Administrative GUI and COM
  • Added new LDAP advanced settings – page size, referral chasing, LDAP version choice, timeout, search scope, use server page control, and select attributes
  • Added LDAP and Active Directory Test Query function for authentication troubleshooting
  • Expanded COM API to include more methods and properties (see help file for complete list)
  • Corrected issue IBM z/OS 1.7 using SSL explicit connections
  • Corrected issue with setup wizard “create home folder” checkbox not taking precedence over default settings
  • Corrected issue with OnTimer events not triggering as scheduled
  • Corrected issue where EFT field character limits were shorter than Active Directory limits
  • Added 8bitmime support to SMTP
  • Corrected issue where DMZ required a manual restart on IP Access table changes
  • Corrected issue where DMZ internal communications were not always over EFT Servers Home IP
  • Corrected issue with certain SFTP clients where file resume did not always work
  • Removed prompt from VFS when deleting last selected item under Server tab
  • Corrected timeout issue with specific On Service Start/Stop event rules
  • Corrected issue where site administrators received operation errors under specific configurations
  • Corrected problem with ampersand character flagging an email address as invalid
  • Corrected issue with Timer Rule events improperly handling files with no extension
  • Corrected issue where the server engine was not properly handling daylight savings time
  • Corrected problem with Active Directory authentication when pulling from Universal Groups that contain empty global groups
  • Corrected DMZ issue with irregular PORT reply in multiple IP environments
  • Corrected hanging issue in SMTP code
  • Corrected issue where specific changes to the ACL returned a 530 error to the user
  • Corrected issue where login failure email notifications did not occur under specific conditions
  • Corrected improper quota handling under HTTP/S protocols
  • Corrected File Integrity Check issue with Web Transfer Client and large files over HTTPS
  • (SAT) Initial Release
  • (SAT) Added e-mail send failure handling: When an e-mail fails to send, the e-mail
    will be saved to a temp folder (in the SAT install folder) so that the admin
    can deal with it later.
  • (SAT) Improved e-mail address validation in sendmail.asp by ignoring whitespace.
  • (SAT) Modified debug logging levels (set in global.asa):
    0 = off, 1 = basic logging, 2 = verbose
  • (SAT) Corrected problem with installing on an IIS 6.x server with non-sequential
    web site numbers.
  • (SAT) Corrected problem of upload notifications including an extra "/" in the URL.
  • (SAT) Improved file receive message and file download message templates.
    (e-mail text)

Changes in 4.3.4

April 16, 2007

  • Corrected Daylight Savings Time (DST) problem in recurring Timer Events where the server overcompensated for DST changes
  • Corrected issue with Event Rule's "Download" action causing files to be downloaded as folders when the file lacked an extension
  • Corrected problem with the EFT Web Transfer Client (WTC) hosted under the latest version of the Java (1.6) Runtime Environment
  • Corrected a minor security vulnerability (denial of service) when negotiating the data channel for PASSIVE mode transfers in the FTP protocol through the GlobalSCAPE DMZ Gateway product

Changes in 4.3.3

January 30, 2007

  • Corrected problem with user level permissions using Active Directory authentication
  • Corrected issue with home folder quota calculation over HTTPS connections
  • Corrected issue with On Timer event logic and daylight savings time
  • Added permissions checking logic to basic HTML interface for Active Directory authentication
  • Corrected issue where HTTP engine reported incorrect port to logging
  • Fixed response parsing for SSH_FX_STAT command
  • Added error handling for Event Rule SFTP downloads using Public Key Authentication
  • Fixed refresh issue with the SSL Certificate Manager interface
  • Modified MLST command for RFC compliance
  • Added AES-128 option for SFTP connections
  • Corrected issue with ARM registration messages
  • Corrected problem with DMZ Gateway alternating between connected and disconnected states
  • Corrected problem with reports not generating when clicking on another report while generating an existing one
  • Fixed crash caused by logging in with wrong administrative password
  • Fixed crash caused by internal integrity checks when external software modifies the server executable
  • Corrected problem with event rule "stop processing" action not being respected

Changes in 4.3.2

November 07, 2006

  • Added auditing module fail-over logic and notification handling
  • Added support for Active Directory Universal Groups
  • Added double-click report launching
  • Added mechanism to cancel in-progress reports from loading
  • Added logic to distinguish between a user-disabled vs. system disabled folder monitor due to a severed UNC resource connection
  • Added ability for LDAP accounts to authenticate against the LDAP server on demand
  • Added checks to gracefully decline encryption and decryption of files larger than 2GB
  • Corrected issue where renaming reports could cause the reports to stop working
  • Removed internal overhead from Operational Failures report
  • Corrected issue where HTTP/S passwords were not being audited
  • Installation will no longer proceed without creation of ARM database password
  • MSDE installation size is reported correctly during installation
  • Corrected problem where trial serial numbers were not remembered under certain conditions
  • Corrected truncation problem with renaming files on OpenSSH servers
  • Corrected problem with performing MLST/MSLD listings on files larger than 2GB
  • Corrected problem with Web Transfer Client CRC checking of large files transmitted over HTTP/S
  • Corrected problem where the server returned errors over SFTP when resuming transfer

Changes in 4.3

August 01, 2006

  • Added Auditing and Reporting Module (ARM)
  • Added support for wildcards "*" and "?" for physical FTP directory listings
  • Added ability to define proxy settings through the registry for Copy/Move (outbound) and download (inbound) Event Rule actions

Changes in 4.2

June 27, 2006

  • Added the ability to delete the source file after a successful download operation as part of the event rule download action
  • Optimized EFT’s handling of configuration data to support many thousands of event rules
  • Optimized IP Access list so that IPs are shown in sequential order
  • Optimized HTML listing to support RFC 1738 guidelines for “special” characters (sec. 2.2)
  • Optimized quota checker to automatically refresh used disk space value
  • Corrected problem with e-mail notification action message formatting
  • Corrected problem with stability when transferring huge amounts of data over SFTP protocol from the DMZ Gateway to EFT Server
  • Corrected problem where LDAP authentication failed if base DN was not pointing to an OU just below the O
  • Corrected %FS.VIRTUAL_PATH% context variable for SFTP transactions to be consistent with values shown when other protocols are used
  • Corrected problem where offload return codes showed as “failed” even if the transfer was successful
  • Corrected problem where offloading a large file would lockup inbound connections to the server
  • Corrected problem with OpenPGP key importing that would cause the keyring to become corrupted
  • Corrected problem with folder monitor event where if a change was made to the event it would not process the change until the server was restarted
  • Corrected problem with timer event rule sometimes failing to execute
  • Corrected problem with folder monitor event rule sometimes failing to trigger when files were added to the folder using FTP

Changes in 4.1.1

June 02, 2006

  • Corrected problem with configuration file message size limits that would prevent the addition of event rules once a large amount of rules were present.
  • Corrected problem with the email action editor dialog to avoid improper CR/LF handling and incorrect display.

Changes in 4.1

May 24, 2006

  • Enhanced the Monitor Folder rule sub-system so that multiple folder monitor rules could execute actions concurrently.
  • Enhanced COM Admin Interface by adding methods for GetAppletEnabled and SetAppletEnabled under ICIClientSettings Interface.
  • Enhanced the "Append" permission in the VFS to apply to all protocols, not just the "APPE" command in FTP.
  • Enhanced the product's Event Rule command error logging to output failed command parameters to CMDOUT.LOG.
  • Enhanced logging to hide passwords for failed logins, rather than show incorrect passwords in plain text.
  • Enhanced Web Transfer Client performance through various internal optimizations.
  • Enhanced FTP Protocol to support a new command "XNOP" to avoid command channel timeouts during long transfers. XNOP is returned as part of the FEAT response so that clients can that support XNOP can take advantage of this command.
  • Corrected SMTP engine to be compliant with RFC 2821 (Simple Mail Transfer Protocol) for end-of-line character sequences.
  • Corrected issue where adding a slash "/" to the path value in the copy/move action would prevent copy/move from offloading data.
  • Corrected loss of NT/AD user settings after service restart where the network was unavailable
  • Corrected a problem where the port conflict message would appear inappropriately
  • Corrected Web Transfer Client performance issue when attempting to open a folder containing thousands of files.
  • Corrected problem where addition of new event rules would fail when the size of the event rule configuration grew beyond 32KB.
  • Corrected fault when the event rules list was altered while multiple uploads were occurring that caused event rules to fire.
  • Corrected problem with the "Require certificates from connected clients" feature incorrectly applying to more than one site.
  • Corrected authentication problem with users connecting via SFTP using AD with password-based authentication.
  • Corrected problem with File Upload Failed notification action not being triggered.
  • Corrected problem with Event Rule parameter %FS.FILE_NAME% not being populated when a file was removed from monitored folder.
  • Corrected listing issue with NLST (ls) being unable to produce a directory listing when connecting via PORT mode over the DMZ Gateway.
  • Corrected problem with Event Rules triggering a command that failed causing other Event Rules to stop working.
  • Corrected issue with Event Rules "If Failed" action being executed even when it was unchecked after having been previously checked.
  • Corrected problem with "Monitor Folder" Event Rule that caused EFT Server to stop processing more rules after a period of time.
  • Corrected issue with resumed uploads of 0 bytes causing an "On Upload" even to fire.
  • Corrected problem with VFS when usernames with an underscore caused groups with similar names not to appear in the VFS user list.
  • Corrected internal thread synchronization problem that sporadically caused EFT’s service to stop and EASServer.exe to go into a non-responding mode.
  • Corrected problem where NT Auth users were not able to login using logon name i.e (Domain\Username) over sftp protocol on the first attempt.
  • Corrected crash when EFT Server was behind an Alteon switch.
  • Corrected problem where, under certain upgrade paths, all OpenPGP keys created in the prior build displayed a key size of 1024 (affected only the display of this value).
  • Corrected issue with users being duplicated after successful connection with different login credentials such as('Domain\Username') for the same user.
  • Corrected HTTP such that the realm value shown to connecting HTTP clients when authenticating does not show the internal address.
  • Corrected EFT Server service crash when connecting to AD/NTLM site with an invalid username.
  • Corrected a problem where the home folder setting at the user's settings level was not always being used to set the home folder for a new user.
  • Corrected problem with SFTP Public Key Authentication (PKA) for the Download action of Event Rules that prevented connection to remote SFTP servers.
  • Corrected a display issue in the DMZ Gateway where it was showing a negative number of active connections.
  • Corrected problem where users were unable to connect to EFT Server using .NET 2.0 Framework FTP object.

Changes in 4.0.11

February 16, 2006

  • Enhanced the Monitor Folder rule sub-system so that multiple folder monitor rules could execute actions concurrently.
  • Enhanced COM Admin Interface by adding methods for GetAppletEnabled and SetAppletEnabled under ICIClientSettings Interface.
  • Enhanced the "Append" permission in the VFS to apply to all protocols, not just the "APPE" command in FTP.
  • Enhanced the product's Event Rule command error logging to output failed command parameters to CMDOUT.LOG.
  • Enhanced logging to hide passwords for failed logins, rather than show incorrect passwords in plain text.
  • Enhanced Web Transfer Client performance through various internal optimizations.
  • Enhanced FTP Protocol to support a new command "XNOP" to avoid command channel timeouts during long transfers. XNOP is returned as part of the FEAT response so that clients can that support XNOP can take advantage of this command.
  • Corrected SMTP engine to be compliant with RFC 2821 (Simple Mail Transfer Protocol) for end-of-line character sequences.
  • Corrected issue where adding a slash "/" to the path value in the copy/move action would prevent copy/move from offloading data.
  • Corrected loss of NT/AD user settings after service restart where the network was unavailable
  • Corrected a problem where the port conflict message would appear inappropriately
  • Corrected Web Transfer Client performance issue when attempting to open a folder containing thousands of files.
  • Corrected problem where addition of new event rules would fail when the size of the event rule configuration grew beyond 32KB.
  • Corrected fault when the event rules list was altered while multiple uploads were occurring that caused event rules to fire.
  • Corrected problem with the "Require certificates from connected clients" feature incorrectly applying to more than one site.
  • Corrected authentication problem with users connecting via SFTP using AD with password-based authentication.
  • Corrected problem with File Upload Failed notification action not being triggered.
  • Corrected problem with Event Rule parameter %FS.FILE_NAME% not being populated when a file was removed from monitored folder.
  • Corrected listing issue with NLST (ls) being unable to produce a directory listing when connecting via PORT mode over the DMZ Gateway.
  • Corrected problem with Event Rules triggering a command that failed causing other Event Rules to stop working.
  • Corrected issue with Event Rules "If Failed" action being executed even when it was unchecked after having been previously checked.
  • Corrected problem with "Monitor Folder" Event Rule that caused EFT Server to stop processing more rules after a period of time.
  • Corrected issue with resumed uploads of 0 bytes causing an "On Upload" even to fire.
  • Corrected problem with VFS when usernames with an underscore caused groups with similar names not to appear in the VFS user list.
  • Corrected internal thread synchronization problem that sporadically caused EFT’s service to stop and EASServer.exe to go into a non-responding mode.
  • Corrected problem where NT Auth users were not able to login using logon name i.e (Domain\Username) over sftp protocol on the first attempt.
  • Corrected crash when EFT Server was behind an Alteon switch.
  • Corrected problem where, under certain upgrade paths, all OpenPGP keys created in the prior build displayed a key size of 1024 (affected only the display of this value).
  • Corrected issue with users being duplicated after successful connection with different login credentials such as('Domain\Username') for the same user.
  • Corrected HTTP such that the realm value shown to connecting HTTP clients when authenticating does not show the internal address.
  • Corrected EFT Server service crash when connecting to AD/NTLM site with an invalid username.
  • Corrected a problem where the home folder setting at the user's settings level was not always being used to set the home folder for a new user.
  • Corrected problem with SFTP Public Key Authentication (PKA) for the Download action of Event Rules that prevented connection to remote SFTP servers.
  • Corrected a display issue in the DMZ Gateway where it was showing a negative number of active connections.
  • Corrected problem where users were unable to connect to EFT Server using .NET 2.0 Framework FTP object.

Changes in 4.0.10

January 11, 2006

  • Corrected limitation to the amount of event rules that could be created
  • Added capability to authenticate using e-mail aliases in Active Directory (requires registry tweak - contact support for instructions if you desire to use this auth method.)
  • Corrected a problem where decrypting a file from a Monitor Folder operation could result in a deleted file
  • Disabled a keyboard shortcut resulting in GUI Administrator close when Enter pressed
  • Corrected registration information displayed in the Help About box after activation
  • Corrected a problem where the Create Certificate command not functioning when a certain combination of options enabled.
  • Corrected OpenPGP key expiration logic
  • Corrected presentation of certain menus so they would only appear in the right context
  • Corrected PGPv9 and GnuPGP migration issues
  • Corrected VFS rename issue that resulted in undesired creation of new folder
  • Corrected wrong context variable for "local port," "Home IP," and other variables for certain event rule actions
  • Corrected event rule trigger for https protocol operations when the User Quota Exceeded is used
  • Corrected "Use Mode Z Compression" toggle under settings so that it can be unchecked
  • Corrected a minor AD authentication issue with DOMAIN/username sequence
  • Corrected fringe crash when deleting groups created under certain conditions
  • Corrected fringe crash when going through a particular menu selection sequence
  • Corrected an upgrade incompatibility when upgrading from EFT 4.0.5 to 4.0.11
  • Corrected security problem where blank usernames could be utilized for admin login IDs
  • Corrected file removal issue under certain fringe conditions
  • Corrected problem with multiple e-mail notifications being sent under certain event rule triggers
  • Corrected minor toolbar icon, typos, incorrect prompts, and other small UI issues
  • Corrected Web Transfer Client folder naming issue when escape codes or brackets were used as part of the folder name

Changes in 4.0.9

January 05, 2006

  • Corrected DMZ Gateway port management for Active Mode FTP connections
  • Corrected COM interface marshaling problem in Monitor Folder event that caused OpenPGP operations to fail
  • Improved Custom On Timer event to allow hour ranges greater than 24 hours
  • Improved Folder Monitor event rule so that file system context variables are updated to new filenames after OpenPGP operations
  • Improved wildcard operations (OpenPGP, Move/Copy) so that they do not operate on FOLDERS, only FILES
  • Added context variable placeholders to the OpenPGP Action dialog for Monitor Folder event
  • Corrected issue with encryption of folders when *.or is used

Changes in 4.0.8

December 08, 2005

  • Improved thread synchronization of OpenPGP library operations
  • Added mechanism to API interface to optionally remove folder inheritance
  • Added mechanism to API interface for LDAP site creation
  • Corrected error that could cause service crash when passing parameters to custom commands
  • Corrected Web Transfer Client registration status information
  • Corrected DMZ Gateway to properly close ports when connection is closed
  • Corrected LDAP Authentication provider to disallow blank passwords on account verification
  • Improvements to Web Transfer Client visualization
  • Improvements to Web Transfer Client operation on non-Internet Explorer browsers
  • Improvements to performance on OS X 10.4+. The EFT Web Client requires OS X 10.4 or better.
  • Encryption of large files over applet uploads now functions as expected.

Changes in 4.0.6

November 09, 2005

  • Updated OpenPGP Libraries to support AES cipher
  • Improved cookie handling for Web Transfer Client to avoid inactive timeout failures
  • Added manual resume transfer operation for Web Transfer Client
  • Added memory mechanism for last remote folder location for Web Transfer Client
  • Fixed CRC validation issues in Web Transfer Client, including proper impersonation of user account for NT/AD site
  • Fixed issue with SFTP file operations when user home folder is set as root folder
  • Fixed issue where stop & start service caused user SSH keys to be forgotten
  • Fixed issue with ON TIMER event that caused the timer to stop operating when action failed
  • Updated Web Transfer Client interface for improved Transfer Queue layout
  • Added "Passive Mode IP Address" feature to DMZ Gateway Server to better handle use behind NAT
  • Added "pong" response to EFT Server "ping" message sent to DMZ Gateway Server to keep Peer Notification Channel alive
  • Fixed issue where DMZ Gateway server incorrectly fragmented FTP responses to client

Changes in 4.0.5

September 20, 2005

  • Fixed wildcard support for OpenPGP and MOVE/COPY file actions in event rules
  • Fixed issue when EFT "Block site to site transfers" restriction failed to account for PASV commands coming through the DMZ Gateway
  • Fixed instability issue from setting up IP Access on EFT while using DMZ
  • Users without list permission now receive the HTTP/S default page instead of a 403 error
  • Added captions to web transfer client buttons
  • Added disable CRC check option to Web transfer client
  • Added MOVE and COPY feature to the web transfer client
  • Added auto-resume functionality in the web transfer client
  • Improved logic for automatically adding quotes to parameters used in Custom Commands via Event Rules

Changes in 4.0.4

September 06, 2005

  • Event rule processing modified to process download, move, and decrypt actions together for On Timer event rules.
  • Corrected event rule processing so a successful Copy/Move action does not trigger "If action FAILED then" notification email.
  • Improved display of Trial registration “Evaluation days left” immediately after registration message is received.
  • Corrected version EFT 3.5.1 upgrade issue where On File Download event rule gets renamed to File Rename
  • Corrected error when modifying user VFS permissions then selecting Refresh.
  • Corrected "Enable time out" option to properly disconnect SFTP sessions.
  • Improved resuming SFTP uploads when user's home folder is treated as default root

Changes in 4.0.3

July 29, 2005

  • Improved reporting of Event Rule variables currently being displayed as N/A
  • Corrected manual registration emails addresses
  • Improved Web Transfer Client functionality by eliminating double login
  • Improved Event Rule logic so Download Fail events are not processed when loading the Web Transfer Client
  • Implemented "keep alive" message between EFT Server and DMZ Gateway to avoid network devices closing inactive peer notification channels

Changes in 4.0.2

July 27, 2005

  • Signed EFT Web Transfer Client files so the certificate is shown as trusted

Changes in 4.0.1

July 15, 2005

  • Added loading indicator to web transfer client
  • Improved security during first install of web transfer client Java applet (changed Java HTTP link to HTTPS when connected via HTTPS)
  • Added workaround prompt for attempts to use the web transfer client when Java has not been installed and when authenticating through a proxy
  • Improved use of the event rule timer control
  • Improved reporting of 404 errors when performing data integrity checks through the web transfer client
  • Corrected an error when restarting the EFT Server service using remote administration
  • Removed "or subnet" text from IP restriction dialog to clarify use
  • Corrected error with cmdout.log not being created or written to file
  • Added more branding options to for the deployable web transfer client

Changes in 4.0

July 07, 2005

  • Enhanced communication between EFT and Gateway
  • Corrected problem with OpenPGP encryption/decryption speed

Changes in 3.5.1

June 14, 2005

  • Added support for DMZ Gateway product for secure transactions across firewall boundaries with no inbound holes in firewall required
  • Improved Event Rules functionality though addition of "on failed" events, event reordering
  • Added ability to monitor a folder for change and execute an event action upon change 
  • Add a timer based download action for retrieving files from remote inboxes
  • Added streaming repository encryption
  • Added MODE Z support with ZLIB compression engine
  • Added support to choose SSL versions allowed for secure session (over FTPS and HTTP/S)
  • Added support for capturing and displaying connection-activity in real-time
  • Improved logging information and provided option for "Standard" and "Verbose" logging
  • Added support to limit the number of total concurrent user logins
  • Improved Web Transfer Client load times

Changes in 3.5.0

June 13, 2005

  • Added LDAP authentication support (LDAP Auth Manager)
  • Added data integrity support (CRC32) for EFT Web Transfer Client
  • Corrected event rule locked-file errors for HTTP/S form-based file uploads
  • Corrected browser refresh (F5) issue with expired Web Transfer Client sessions.

Changes in 3.4.0

May 19, 2005

  • Added wildcard support for OpenPGP and MOVE/COPY actions in event rules
  • Added OpenPGP encrypt/decrypt/sign to OnLogout Event for improved "batch processing"
  • Modified "Default Settings Level" to have "max connections per user" and "max connections from same IP" to be UNLIMITED, not 10
  • Corrected Web Transfer Client license count validation on server startup
  • Corrected issue causing HTTP/S to improperly return "503 Service Unavailable" messages to clients under certain conditions
  • Corrected issue with COM Admin improperly set site values, causing unpredictable behavior

Changes in 3.3.0

May 03, 2005

  • Added EFT Web Transfer Client
  • Corrected parent path issue in HTTP/S
  • Corrected NTLM/AD impersonation issues in HTTP/S
  • Corrected file locking problems that caused some files to not appear after uploads when a user home folder was specified to be the root folder.
  • Improved COM interface error reporting by implementing ISupportErrorInfo interface
  • Updated registration mechanism such that successful registration automatically restarts the service to bring new registration values into effect

Changes in 3.2.0

April 04, 2005

  • Added FORM-based file upload feature
  • Corrected issue so bandwidth limits are now honored by SFTP, HTTP/S
  • Corrected issue so disk quotas now honored by SFTP, HTTP/S
  • Corrected issue so transfer quotas now honored by SFTP, HTTP/S
  • Corrected issue so SSH transfers record file sizes
  • Corrected issue so all IP addresses are recognized on multi-homed Win2K3 box
  • Corrected issue so logging records the server port number
  • Corrected issue for PUT method failing for some uploads: returns "400 Bad Request"
  • Corrected issue with right-click editing multiple docs
  • Corrected issue in some instances where On File Upload events not triggered when using SFTP
  • Corrected issue where some Event Rules did not release handles correctly

Changes in 3.1.0

March 21, 2005

  • Corrected issue with COM Interface communicating with Service
  • Updated internal account management logic to support large (30,000+) number of users in authentication store
  • Corrected HTTP(S) authentication against domain controller so that domain name is not required as part of username (DOMAIN\username)

Changes in 3.0.1

January 04, 2005

  • Corrected issue with COM Interface communicating with Service
  • Updated internal account management logic to support large (30,000+) number of users in authentication store
  • Corrected HTTP(S) authentication against domain controller so that domain name is not required as part of username (DOMAIN\username)

3.0 Initial Release

November 17, 2004