03-01-2024 , 01:27 AM
Cerberus FTP Server 24.1.0
Changes in Cerberus FTP Server 24.1 (2024-02-29):
Changes in Cerberus FTP Server 24.1 (2024-02-29):
- New: Added support for SSH strict Kex extension to address Terrapin style attacks (CVE-2023-48795)
- New: Added TOTP and Duo two-factor authentication support for SSH passwords with SFTP/SCP
- New: Upgraded DataTables to 1.13.6
- New: Upgraded ZipArchive to 4.6.9
- New: Upgraded jQuery to 3.7.1
- New: upgraded to OpenSSL 3.0.13 to address CVE-2024-0727, CVE-2023-6237, CVE-2023-6129, and CVE-2023-5678
- New: upgraded to cURL 8.6.0 to address CVE-2023-46218 and CVE-2023-46219
- New: upgraded to log4cxx 1.2.0
- New: upgraded to gSoap 2.8.132
- Improved: Upgraded Duo to support Duo Universal Prompt
- Improved: Users and groups support requiring 2FA for SFTP/SCP login
- Improved: Added support to run a Scheduled Task as queued event which runs as soon as possible
- Improved: Defaulting the public sharing SMTP will now auto-save
- Improved: All the fields of Event Mail can be included or excluded via configuration
- Fixed: Admin account modification is no longer possible with SOAP API if the primary admin account is 2FA-enabled
- Fixed: IP Listeners Window now correctly shows security icon status
- Fixed: SSO Users unable to use public shares with One Time Password
- Fixed: Resolved issue with admin removal of a public share
- Fixed: Themes for webclient login page are functional now
https://www.cerberusftp.com/files/CerberusInstall64.exe