Allowed MACs for HMAC-SHA2-512 and HMAC-SHA2-256 are disabled upon ugrade


THE INFORMATION IN THIS ARTICLE APPLIES TO:

  • EFT v7.2.1 and later

DISCUSSION

When EFT version 7.2.0 build is upgraded to version 7.2.1, the allowed MACs for HMAC-SHA2-512 and HMAC-SHA2-256 are disabled, while other allowed MACs are still enabled. You must enable these new ciphers if you want to use them. During new installs, these MACs are enabled by default.

Globalscape chose not to modify any existing SSH configuration during upgrade, allowing the customer to decide whether to enable them.