GlobalSCAPE Knowledge Base

	Title
	Configuration and Security Best Practices Checklist
	EFT Penetration Test Results FAQ
	Specify CSP to Pass Security Web Scans and to use Google reCaptcha for Drop-Off (Advanced Property)
	Does GlobalSCAPE release security patches for products separate from general version releases?
	If DMZ Gateway Server hands all traffic to EFT on the inside network, wouldn’t this be seen as a risk and defeat the objective of having the DMZ Gateway broker connections?
	Globalscape's answers to potential vulnerabilities
	SSL Security Levels and CuteFTP
	Outbound SFTP connections to Tumbleweed SecureTransport (TST) server fail and SSH HMAC check fails
	Setting the max-age value for HSTS in seconds
	Penetration testing reports indicate that uploading files to EFT is a security risk. How can I prevent that?
	XFF and DoS Security Vulnerability
	Q: What is GlobalSCAPE’s response to the SSL/TLS BEAST exploit?
	Why are files in EFT Server's client folder available to a connecting client without authentication?
	Bleichenbacher's ROBOT Vulnerability
	Is EFT susceptible to the "Authentication Bypass via Out-of-bounds Memory Read " vulnerability?
	Is EFT susceptible to the "Denial of service via recursive Deflate Stream" vulnerability?
	How do the Microsoft Security changes affect Globalscape?
	Is calling a REST web service from AWE available in EFT Enterprise?
	Which local security policy setting is needed for Active Directory authentication?
	Override the OCSP responder URI specified in the certificate's AIA extension