Allow Server to Accept ODBC Database Passwords that are MD5 Hashed

GlobalSCAPE 5 — Wed, 14 Oct 2009 09:04:00 GMT

Abstract:

THE INFORMATION IN THIS ARTICLE APPLIES TO:

EFT Server (All Versions)

DISCUSSION

When you create user accounts within EFT Server, ODBC is populated with the username along with a SHA-1 256 hash of their password. The registry entry described below will cause ODBC to use MD5 instead. The alternative is to use COM to create the users (reading in the list from a batch file or csv) and then let EFT Server add the users and encrypt the password using SHA1-256 or MD5 (depending on what is set).

If you are using an ODBC data source for authentication on your Server, and users receive an error saying they are not logged in, make sure the "anonymous" row in the "ftpserver_users" table is set to "0" or "1". It cannot be set to "Null".

This key is useful in the following instances:

If you have a policy where MD5 is preferred over SHA256 (unlikely)
If passwords are being generated externally and hash values are stored in database in MD5 format

When a user logs in to a Site that is using ODBC authentication, if this registry setting is turned on, EFT Server compares the MD5 hash of the password to the value stored in the database. If this reg value is not enabled, then EFT Server compares the SHA256 value instead.

With this key, MD5 is either turned off (default setting) or turned on. When the key is enabled, EFT Server handles everything in MD5, both for authenticating

Does EFT Server version 6.0 work with Windows 2008 Server R2?

GlobalSCAPE 5 — Thu, 08 Oct 2009 05:15:00 GMT

Abstract:

THE INFORMATION IN THIS ARTICLE APPLIES TO:
	EFT Server, version 6.0 and later
QUESTION
	Does EFT Server version 6.0 work with Windows 2008 Server R2?

ANSWER
	EFT Server v6 was released in March 2009 and was tested on the first release of Windows 2008 Server. Windows 2008 Server R2 was released in August 2009, *after* the release of EFT Server v6; therefore, GlobalSCAPE QA has not formally tested EFT Server v6 on Windows 2008 Server R2. Subsequent releases of EFT Server are tested with Windows 2008 Server R2, and we expect that EFT Server and its modules will be fully supported on this operating system. (Even though EFT Server v6 was not formally tested on Windows 2008 Server R2, we are not aware of any issues related to compatibility with Windows 2008 Server R2.)

GlobalSCAPE EFT Server failed to create folder monitor rules. Error: 80070003

GlobalSCAPE 5 — Wed, 07 Oct 2009 11:31:00 GMT

Abstract:

THE INFORMATION IN THIS ARTICLE APPLIES TO:

EFT Server, versions 4 and later

SYMPTOM

I have a Folder Monitoring rule that will perform an Action when a file is added. I’m getting an error in the Application Event Log each time I enable the Event Rule (e.g., GlobalSCAPE EFT Server failed to create folder monitor rules. Error: 80070003).

RESOLUTION

The most likely cause of this error is that the drive is a mapped drive. In this case, you would need to use the actual UNC path to which the mapped drive is pointing. The EFT Server service itself is not part of your interactive Windows environment, so it is not aware of any mapped drives.

Points to remember when creating Folder Monitor rules include:

To monitor a folder on a network share, supply the full UNC path to the network share. (The format for a UNC path is \\server\share\path\to\directory and is not case-sensitive. For example: \\FileServer2\Share3\WGroups\Network).

If the EFT Server service is running under the default “Local System” account, it will not be able to access remote drives. The EFT Server service must be running under an account that has sufficient access to the share and to the files and folders under the share. That is, make sure that the EFT Server Service has sufficient privileges to perform READ operations on the remote share. If you are using the "health chec

Error Starting CuteFTP Mac Pro on Snow Leopard

GlobalSCAPE Support 1 — Wed, 07 Oct 2009 10:30:00 GMT

Abstract:

THE INFORMATION IN THIS ARTICLE APPLIES TO:
	CuteFTP Mac Professional version 3.05 running on Mac OS X 10.6 (Snow Leopard)
SYMPTOMS
	When running OS X 10.6 (Snow Leopard), the following error message is encountered when attempting to start CuteFTP Mac Professional: *CuteFTP Mac quit unexpectedly.*

CAUSE
	In OS X 10.6, some of the system files needed to run CuteFTP are in new locations. When CuteFTP Mac 3 Professional version 3.05 attempts to access those files, they are no longer where CuteFTP expects them to be.

RESOLUTION
	This issue has been fixed in CuteFTP Mac 3 Professional version 3.06. You can download the most recent version of CuteFTP Mac 3 Professional from the CuteFTP Mac Support Center.

GlobalSCAPE Holiday Schedule

GlobalSCAPE Support 1 — Wed, 07 Oct 2009 06:44:00 GMT

Abstract:

GlobalSCAPE Holiday Schedule

GlobalSCAPE offices are closed for the following holidays.

Christmas Day - December 25
New Year's Day - January 1

How can I specify which SSL ciphers and versions to use or not use?

GlobalSCAPE 5 — Wed, 07 Oct 2009 03:57:00 GMT

Abstract:

THE INFORMATION IN THIS ARTICLE APPLIES TO:

CuteFTP Professional, 8.2 and later
Secure FTP Server, v3.3 and later (not applicable to FIPS version)
EFT Server, v4

Note: You do not need to do this in EFT Server v5 and later, because you can edit the cipher list in the Administrator.

The procedure below is not supported in Secure FTP Server FIPS.

QUESTION

How can I specify which SSL ciphers/versions to use or not use?

ANSWER

You can overwrite the existing ssl.dll and then use a registry value to force the use of (or limit to) predefined ciphers or SSL versions. The registry value overrides the values passed to it from the server or client engine.

The procedure below describes how to override the default ciphers and/or SSL versions allowed.

To deploy Secure Sockets Layer (SSL) library

Do one of the following:
For CuteFTP Pro:
1. Stop or finish any transfers in progress and exit the Transfer Engine.
2. Exit CuteFTP Pro.
For Secure FTP Server or EFT Server:
1. In the Administrator interface, stop all Sites, then close the Administrator.
2. In the Windows Services dialog box (Start > Run > services.msc), stop the Server.

In the installation folde

When you click a link in a Knowledge Base article that you found in a search, the link appears to be broken

GlobalSCAPE 5 — Mon, 05 Oct 2009 11:58:00 GMT

Abstract:

THE INFORMATION IN THIS ARTICLE APPLIES TO:

All articles in the GlobalSCAPE Knowledge Base

SYMPTOM

When you click a link in a Knowledge Base article that you found in a search, the link appears to be broken.

RESOLUTION

This is a known issue with the Knowledge Base tool that we are using. When you search for one or more terms in the Knowledge Base, those search terms are highlighted for you in the article and appear in the URL of the article.

For example, suppose you searched for script and then clicked the search result, Q10390 - HOWTO: Changing the Root Folder of EFT Server while Retaining Permissions. The URL of the article in the address bar is
http://kb.globalscape.com/article.aspx?id=10390&query=script
and the word script is highlighted in yellow throughout the article.

Unfortunately, one of the highlighted words is in a link. The link will not work, because the act of highlighting the link has changed its HTML code. The way to get around this is to remove the search information from the URL in the address bar, then press ENTER to reload the article without the search term highlighted.

In this example, the link is http://kb.globalscape.com/article.aspx?id=10390&query=script

and you must remove &query=script then press enter. This will remove the yellow highlighting from the text, and the links

Malware stole my FTP credentials!

GlobalSCAPE 5 — Mon, 05 Oct 2009 11:18:00 GMT

Abstract:

THE INFORMATION IN THIS ARTICLE APPLIES TO:

CuteFTP Home, versions 7 and 8
Cute FTP Professional, versions 7 and 8

SYMPTOM

Malware stole my FTP credentials!

RESOLUTION

The problem with being one of the world's best FTP clients is that bad people try to hack you. Certain malware attacks look specifically for files used by CuteFTP, then attempt to use the information in the file to access the FTP sites that you have configured in your Site Manager.

First of all, understand that, unlike certain other FTP clients, CuteFTP's Site Manager data is NOT stored in plain text. In addition, CuteFTP Pro and Home versions include optional encryption to protect your Site Manager data. Protecting your Site Manager data is as simple as configuring a Site Manager "master" password. This master password is different than the individual passwords that you use to connect to your FTP sites. The Site Manager password secures all of the Sites in your Site Manager using Blowfish encryption, which is recognized as a standard, secure encryption algorithm, locking down the Site Manager data file so that even CuteFTP can't read it until you enter the password. (Note that if you forget the password, you will not be able to use the protected Site Manager data and will have to create new Sites.)

To configure the Site Manager password, click Tools > Site Manager > Security > Encrypt Site Manager data, then provide a secure password in the dialog box that ap

CuteFTP Site Manager Inadvertently Password Protected

GlobalSCAPE 5 — Mon, 05 Oct 2009 11:16:00 GMT

Abstract:

The information in this article applies to:

CuteFTP Home (All versions)
CuteFTP Pro (All versions)

SYMPTOMS

When starting CuteFTP, the user is prompted for a Site Manager password even though Site Manager encryption has not been enabled.
The Site Manager password has been forgotten.

CAUSE

The Site Manager has somehow been corrupted or it has inadvertently been password protected or the Site Manager password has been forgotten.

RESOLUTION

The encrypted Site Manager data file (sm.dat) will need to be replaced with one from a previously saved backup. If no backup exists, then the Site Manager will need to be recreated.

To create a new Site Manager

Start CuteFTP and attempt to access the password-protected Site Manager. A prompt appears asking for a password.
In the Password box, provide an incorrect password so that it will be rejected, then click OK. The Incorrect Site Manager Password dialog box appears.

Click Backup to save the password-protected Site Manager

FTP Status and Error Codes

GlobalSCAPE 5 — Mon, 05 Oct 2009 11:12:00 GMT
Abstract:
During FTP sessions, servers send and receive various numbered codes to/from FTP clients. Some codes represent errors, most others simply communicate the status of the connection. Below are brief explanations for the most common status and error codes.
When determining a course of action, review the entire log; some codes are informational only, others indicate that you have entered the wrong information, and others indicate what the information is that you need to provide before continuing.
For troubleshooting Cute FTP connection problems, also refer to http://kb.globalscape.com/article.aspx?id=10152.
The table below is provided so that you have some idea whether you can solve the issue on your own (e.g., code 331=you need to provide a password) or you need to call your ISP for assistance (e.g., code 426=you are unable to connect to the remote server). These codes are not specific to CuteFTP, but are used by most FTP servers/clients.
NOTE: The information below is only offered as a courtesy to assist you in telling your Internet Service Provider what the error is so that they can help solve your issue. For example, if you get a code 426, the transfer was aborted and the connection closed. The solution to this error is to "try logging back in; contact your hosting provider to check if you need to increase your hosting account; try disabling the firewall on your PC to see if that solves the problem. If not, contact your hosting provider or ISP."
The list below contains standard FTP codes. Numbers outside this list are proprietary to the Server or Client that you are using.
THE INFORMATION IN THIS ARTICLE APPLIES TO:

All Products
SUPPORTED PRODUCTS
Technical support is provided in accordance with the GlobalSCAPE End of Life (EOL) and Support Life Policy. The following products are supported to the extent specified. Products not listed are no longer supported.

FULL SUPPORT
EFT Server 6.0.17
EFT Server Enterprise 6.0.17
WAFS 3.6.2
Mail Express 2.2
CuteFTP Professional 8.3.3
CuteFTP Home 8.3.3
CuteFTP Lite 8.3.3
FULL SUPPORT (Wind-down Period¹) (Extends 12 months maximum after EOL²)
Mail Express 2.1.1 (EOL was May 20, 2009, Full Support provided until May 19, 2010³.)
WAFS 3.5.2 (EOL was May 3, 2009, Full Support provided until May 2, 2010³.)
EFT Server 5.2.21 (EOL was Mar. 2, 2009, Full Support provided until Mar. 1, 2010³.)
Secure FTP Server 3.3.10 (EOL was Mar. 2, 2009, Full Support provided until Mar. 1, 2010³.)
Secure FTP Server FIPS 3.3.10 (EOL was Mar. 2, 2009, Full Support provided until Mar. 1, 2010³.)
PARTIAL SUPPORT (Extends 36 months after GA Date⁴ or 24 months after wind-down period, whichever is greater.)
Mail Express 2.0 (EOSL⁵ – Dec. 15, 2011)
CuteFTP Professional 8.2 (EOSL – Apr. 2, 2011)
CuteFTP Home 8.2 (EOSL – Apr. 2, 2011)
CuteFTP Professional 8.1 (EOSL – Nov. 27, 2010)
CuteFTP Home 8.1

Is CuteFTP Compatible with Microsoft Windows 7?

GlobalSCAPE Support 1 — Wed, 30 Sep 2009 02:28:00 GMT
Abstract:
THE INFORMATION IN THIS ARTICLE APPLIES TO:

CuteFTP Home (All Versions)
CuteFTP Professional (All Versions)
QUESTION

Is CuteFTP compatible with Microsoft Windows 7?

ANSWER

CuteFTP versions 8.3.3 and later have been tested with all editions of Microsoft Windows 7 (32 and 64 bit). There are no known issues that are specific to Windows 7.
No earlier versions of CuteFTP have been officially tested on Windows 7 and there are no plans to do so. Even so, we are unaware of any issues that will keep those earlier versions of CuteFTP from running on Windows 7.
To find out which version of CuteFTP is installed on your computer, start CuteFTP and then open the Help menu and click About CuteFTP. The most recent version is available for download from the Replacement Software Downloads page.

The Web Transfer Client is slow to respond when behind a proxy server

GlobalSCAPE 5 — Mon, 28 Sep 2009 12:01:00 GMT
Abstract:
THE INFORMATION IN THIS ARTICLE APPLIES TO:
EFT Server (all versions) with the Web Transfer Client
SYMPTOM
The Web Transfer Client is slow to respond when behind a proxy server.
RESOLUTION
When the Web Transfer Client (WTC) is behind a proxy, you can experience delays if the proxy's IP address is not defined in the Host file or the corporate DNS. If the proxy's IP address is defined in the Host file or the local DNS, you should not experience any delays.
To add your proxy's IP address to the Host file or internal DNS, contact your network system administrator.

Moving EFT Server from one server computer to another server computer.

GlobalSCAPE 5 — Mon, 28 Sep 2009 05:56:00 GMT
Abstract:
THE INFORMATION IN THIS ARTICLE APPLIES TO:

EFT Server, versions 5.x and later
Secure FTP Server (All Versions)
QUESTION

How can I move my Server from one computer to another and keep my configuration, users, permissions, etc.?

ANSWER

The process and file locations for manually copying your Server configuration from one computer to another, or if you need to rebuild the hard drive on which the Server is installed, depends on the version number of the old installation and the version number of the new installation.
In EFT Server Enterprise version 6, you can backup your server configuration on the old (EFT Server Enterprise v6) computer and then restore it on the new computer using the Migration Wizard. (NOTE: "Downgrading" from EFT Server Enterprise to EFT Server basic is not supported.)
Refer to the online help topic Backing Up or Restoring Server Configuration for details of using the Migration Wizard.
Refer to the online help topic Copying a Server Configuration to Several Computers for details of manually copying configuration.
Refer to File Location Changes for details of file location changes between versions.
In

What do the SAT module error codes mean?

GlobalSCAPE 5 — Fri, 25 Sep 2009 10:38:00 GMT
Abstract:
THE INFORMATION IN THIS ARTICLE APPLIES TO:

Secure Ad Hoc Transfer Module
QUESTION

What do the SAT module error codes mean?

ANSWER

When errors occur during the operation of the SAT module, an error number appears at the top of the SendMail form. Use the error code to troubleshoot the issue.
If this article does not answer your question, please refer to the Secure Ad Hoc Transfer online help for your SAT version:
version 2
version 1
Also refer to Troubleshooting Errors in the Secure Ad Hoc Transfer M

Tips for working with AutoCAD

GlobalSCAPE 5 — Fri, 25 Sep 2009 10:32:00 GMT
Abstract:
THE INFORMATION IN THIS ARTICLE APPLIES TO:

WAFS
CDP
DISCUSSION

Refer to the following help topics:
WAFS/CDP v3.5.2: http://help.globalscape.com/help/availl/Tips_for_AutoCAD.htm
WAFS/CDP v3.6.x:
AutoCAD tips: http://help.globalscape.com/help/wafs3/Tips_for_AutoCAD.htm
Using Revit with GlobalSCAPE WAFS: http://help.globalscape.com/help/wafs3/Using_Revit_with_GlobalSCAPE_WAFS.htm

When I restart EFT Server, I lose all of the user accounts

GlobalSCAPE Support 1 — Wed, 16 Sep 2009 03:13:00 GMT
Abstract:
THE INFORMATION IN THIS ARTICLE APPLIES TO:
EFT Server, versions 5.2 and later
SYMPTOM
When I reboot EFT Server, I lose all of the user accounts.
CAUSES
The loss of user accounts and other settings can occur for one or both of the following reasons:
The EFT Server service runs under a user account, which must have full administrative rights to the folder in which you install EFT Server. With administrative rights, the EFT Server service can save all of your settings. If the service does not have administrative rights, you will lose settings and user accounts whenever you restart the EFT Server service, and you will need to reset permissions on the computer on which the EFT Server service is running.
The EFT Server service starts before the database has started.
RESOLUTION

THE INFORMATION IN THIS ARTICLE APPLIES TO:

EFT Server version 5.1 through 5.2.x, and version 6.0.4.1 and later.
(This key does not work in 6.0 through 6.0.4.0.)
DISCUSSION

After a transfer is complete, EFT Server will remove log files. In v5.1 through 5.2.x, you can create/edit a registry location to cause the ClientFTP.DLL engine to retain the client log files.
To activate this feature, create the following key:
[HKEY_LOCAL_MACHINE\Software\GlobalSCAPE Inc.\TED 6\]
"EnableLogging"=DWORD:00000001"
Set the DWORD value to "1" to retain log files. The log files appear in the same LOGS folder that the "cl" log files appear, in the file name format of "[07.11.30_12.11]-#000004.log".
Other values under the Settings\LogWindows key may need to be tweaked to ensure that logs are enabled and not being deleted.
Most importantly, the following values need to be set to 0 to prevent logs from being automatically deleted:
"DeleteSessionLogFiles" (one log per FTP session)
"DeleteItemLogFiles" (one log per FTP transfer)
"DeleteLogsAfterCloseTE" (deletes logs while the client is unloaded)
"CloseFinishedItemLogs" (deletes logs for successfully completed transfers)
You might also want to edit the following settings:

Secure FTP Server Version History

GlobalSCAPE 5 — Thu, 10 Sep 2009 12:03:00 GMT
Abstract:
Secure FTP Server Version History
(Please refer to http://www.globalscape.com/gsftps/history.aspx for a current listing.)
Changes in 3.3.7
Updated SSH libraries.
Improved audit logger database connectivity.
Changes in 3.3.5
Improved compatibility with Filezilla FTP client.
Improved compatibility with z/OS systems.
Improved resource usage when uploading via HTTP.

Changes in 3.3.1
Corrected problem with inheritance and resulting folder permissions
Changes in 3.3.0
MD5 functions not thread safe causes crash - Repaired
Auto-lockout now resets on successful login (SFTP)
Corrected COM Memory leak when creating users
MLST now works according to specifications
COM method SetMaxSpace inputs correct amount
Corrected error where E-mail notifications fail in certain scenarios
Corrected error when restoring key from backup location
Show in list unchecked no longer allows viewing of directory
HTTPS component correctly handles large file transfers
MLSD correctly returns Virtual folders
COM method RemoveUser error corrected MX Error: 65280 (0000FF00)”
COM method RenameUser error corrected
HTML directory listing links now properly encode for special characters
Service crash error corrected faulting module to be ntdll.dll
Error returned incorrect SSH dates corrected
Correct file information now sent with SSH_FXP_STAT returns
403 and 404 errors corrected when there is no list permission (blind) in HTTP/S
Force auth dbase refresh now works
Folder listings for 1000+ virtual folders

GlobalSCAPE's Knowledge Base

Script to create a user causes the following error: MX Error: 27 (0000001B)

Scripts fail on EFT Server when installed on the 64-bit Windows 2008 operating system.

How much storage space does the ARM database require?

Error 12002. The operation timed out

Cannot delete roaming profile

I unlinked all of my Jobs without setting the Agent to mirror continuously, causing the Agent to go offline. How can I put the Agent back online?

WAFS Vault is filling up with large numbers of previous versions of files

Configuring the CuteFTP Pro Transfer Engine to run without having a user present.

HTTP Status and Error Codes

Comprehensive List of HTTP Status and Error Codes

Turning On/Off Encryption/Compression

Manually Adding the Keys

CuteFTP will not launch or will hang at the startup splash screen.

Is it possible to remove a user, their home directory and all its contents using the COM interface?

EFT Server in the Windows Event Viewer

Is there a limit to the number of files that can be transferred using the Web client?

How do I set up a home folder for AD authenticated users using something other than the default option?

How can I configure EFT Server’s outbound copy/move Event Rule action to route traffic through DMZ Gateway Server?

How do I monitor the performance of EFT Server or Secure FTP Server?

Under AD authentication, why does All Users list when creating a conditional event rule to limit groups or users?

Is it possible to import user passwords from Solaris to EFT server?

If DMZ Gateway Server hands all traffic to EFT Server on the inside network, wouldn’t this be seen as a risk and defeat the objective of having the DMZ Gateway broker connections?

What happens if a user of EFT Web Transfer Client needs to access EFT Server through a proxy, and the proxy is using Windows authentication?

Does EFT Server/Secure Server support chained certificates?

Automatically Home Folder

Why does the Web Transfer Client (WTC) display my cached locations, instead of my defaults?

Can Secure FTP Server or EFT Server authenticate users local to my machine, if my machine isn’t connected to the domain controller?

Secure Ad Hoc Transfer Module Installer does not detect presence of .NET and will not complete installation

SFTPCOMInterface.dll must be the same version on EFT Server and the Secure Ad Hoc Transfer module

Turn on/off the Change Password feature for AD users in the Web Transfer Client

Windows Registry Settings

Allow Server to Accept ODBC Database Passwords that are MD5 Hashed

Does EFT Server version 6.0 work with Windows 2008 Server R2?

GlobalSCAPE EFT Server failed to create folder monitor rules. Error: 80070003

Error Starting CuteFTP Mac Pro on Snow Leopard

GlobalSCAPE Holiday Schedule

How can I specify which SSL ciphers and versions to use or not use?

When you click a link in a Knowledge Base article that you found in a search, the link appears to be broken

Malware stole my FTP credentials!

CuteFTP Site Manager Inadvertently Password Protected

FTP Status and Error Codes

Is CuteFTP Compatible with Microsoft Windows 7?

The Web Transfer Client is slow to respond when behind a proxy server

Moving EFT Server from one server computer to another server computer.

What do the SAT module error codes mean?

Tips for working with AutoCAD

When I restart EFT Server, I lose all of the user accounts

Secure FTP Server Version History

Secure FTP Server Version History

(Please refer to http://www.globalscape.com/gsftps/history.aspx for a current listing.)

Changes in 3.3.7

Changes in 3.3.5

Changes in 3.3.1

Changes in 3.3.0