GlobalSCAPE Knowledge Base

	Title
	Configuration and Security Best Practices
	EFT Penetration Test Results FAQ
	Specify CSP to Pass Security Web Scans and to use Google reCaptcha for Drop-Off
	Why are files in EFT Server's client folder available to a connecting client without authentication?
	Q: What is GlobalSCAPE’s response to the SSL/TLS BEAST exploit?
	Globalscape's answers to potential vulnerabilities
	Which local security policy setting is needed for Active Directory authentication?
	XFF and DoS Security Vulnerability
	Setting the max-age value for HSTS in seconds
	Penetration testing reports indicate that uploading files to EFT is a security risk. How can I prevent that?
	Does GlobalSCAPE release security patches for products separate from general version releases?
	Java Security Warning prompt appears while the WTC/SAT is loading
	SSL Security Levels and CuteFTP
	PTC and WTC trigger security violations
	Has penetration testing been done against EFT Server?
	SAT encounters "Generate Username" error during user creation
	Advanced password expiration options no longer available
	Internet Explorer security warning
	Cannot connect to the Secure Ad Hoc Transfer module or Web Transfer Client websites in Internet Explorer.
	If DMZ Gateway Server hands all traffic to EFT Server on the inside network, wouldn’t this be seen as a risk and defeat the objective of having the DMZ Gateway broker connections?