May 14th, 2012· Minor UI bug fixes and improvements
· Added email notification option for approving or declining account requests
· UI updates to better support Windows 8 and Server 2012
· Added a MIME type mappings file to allow user customization of MIME types for the web client
· Updated OpenSSL to latest version
· Can now use a DNS-style domain name for AD authentication on Windows 2003 server and lower OS
· More flexible domain controller auto-selection for Windows 2003 server and lower
· Group IP whitelists are now applied to AD and LDAP users
April 21st, 2012· Added an option to create impersonated AD user before creating the intial home directory to ensure the AD user has owner rights on the home directory
· HTTP/S range support for partial content retrieval and file resume
· Updated the web client
· Updated controls for Users page of the User Manager
· Added ability to restrict IPs by user account or group
· Added maximum upload file size quota for user accounts
· Added event rule for disable-after-date events
· Fixed a bug where some symbols in URLs were not properly escaped
· Fixed events bug where server operations actions were not saved properly to file
· Fixed a bug where SSH clients attempting to open unsupported channels are not told of the failure
March 19th, 2012· Web client directory browser re-write for major performance improvements by performing paging, sorting, and filtering on the server
· Removed file and directory display limits from the web client directory browser
· New, dynamic user and group updates through the web client
· Enable or disable allowing user updating through the web client
· Enhanced certificate conversion now separates and includes CA certificates when converting a binary certificate bundle to PEM format
· Rolled back a change to FTP PORT socket binding introduced in 5.0.1.1
March 8th, 2012· Fixed a bug that prevented changing the default SOAP port
· Fixed a bug that prevented creating new users through the web admin if a password policy was set
· Added the ability to customize the web client login image, page title, default directory list count, and file date local time and timezone display from the UI
· Added a file preview feature to the web client
· Added an event time variable and the ability to filter by time
· Added server event targets delete and disable user or group
March 8th, 2012· Fixed an SFTP bug that resulted in an SFTP client timeout while establishing a session
· Added additional fault tolerance if the SOAP port is in use by another process
· Usability improvements to the Event Manager
· Smarter detection of SOAP port and protocol changes by the Cerberus UI
· Enhancements to port binding to require exclusive access to the port
· Improved error messaging for in-use ports in the log
February 9th, 2012· Added ability to enter a license key via web administration
· Cleanup and enhancement of the HTTP/S web client
· HTTP/S web client can now delete directories that are not empty
· HTTP/S web client file zip and unzip support added
· Added confirmation dialog before deleting files of directories in the web client
· Web administration enhancements and bug fixes
· The server no longer waits for a client SSH NEWKEYS before sending its own new keys message
· Fixed a bug in the Event Manager that would not allow deletion of an event sink
· Fixed a bug that could result in the group variable not getting set for some HTTP/S
· file transfer events
· Fixed a User Manager rename bug that resulted in user settings not getting when a user was
· changed right after getting renamed
· Fixed a group save bug that resulted list permission changes not getting saved
· Fixed an exception bug if TLS/SSL was disabled and an FTPS or HTTPS connection was attempted
January 13th, 2012· Fixed a bug when adding virtual directories in the User Manager
· Added icons for common file types to HTTP web client
January 13th, 2012· Added option to redirect HTTP to HTTPS for HTTP interfaces
· Added support for larger ephemeral keys during SSH key exchange
· ECDH SSH key exchange is now supported regardless of server host key type
· Updated cryptographic library
· Added event variable selection option to the event manager
January 13th, 2012· Improved HTTP/1.0 support
· Content-Disposition with filename now set for downloaded files
· Automatic conversion of certificates to PEM format for FIPS mode
· FTPS protocol checking bug fix
· Added option to turn on/off welcome message for HTTP/S connections
· Added option to turn on/off welcome message for SSH SFTP connections
· Added option to disable web account requests for HTTP/S connections
· Added option to stop checking authentication sources if user exists
· in a source but password was incorrect
· Performance improvements
January 13th, 2012· Fixed an HTTP protocol bug for x64
January 13th, 2012· Improved HTTP caching headers for better web client performance
· Improved HTTP error handling
· Added STARTTLS and TLS/SSL SMTP server support for email notification
· Added ability to permanently whitelist an IP address
· Added event manager support to web administration
· Added DoS protection for HTTP connections
· Fixed a problem with IE sending multiple cookies with the same name
· Fixed an SFTP append bug
· Fixed an HTTP bug that prevented some uploads with AD accounts
November 16th, 2011· Fixed bug with AD authentication and HTTP
· Fixed HTTP cookie not always getting set
· Fixed an AD directory mapping bug
· Fixed an HTTP upload bug in some version of IE
· Improved HTTP redirection
· Improved web client error reporting
November 16th, 2011· Added web administrator account request approval
· Added web administrator security page
· Added web administrator add/delete listener capability
· Several web administration bug fixes and usability improvements
· IP manager UI bug fix
· Minor bug fixes
October 25th, 2011· HTTP and HTTPS client access
· Event support (SMTP notification, launch an external process)
· New Summary page provides health, security and compliance status at a glance
· New password change policy requirement options
· New password expiration policies
· New password storage options: Cryptographically salted MD5, SHA1, SHA256, SHA512
· SSH SFTP password change support
· Added file and directory listing permissions to virtual directories
· Added FTP MODE Z compression support
· SFTP now sends the welcome message as an SSH banner message
· New account request via web HTTP/HTTPS
· Added option to add additional account information like name, email, telephone
· Added support for new FTP HASH command
· Added ability to restrict login by protocol login on a per user and group basis
· Added SSH MAC algorithms hmac-sha2-256, hmac-sha2-256-96, hmac-sha2-512, and hmac-sha2-512-96
· Improved web administration performance and web administration options
· New CSR generation tool
October 5th, 2011· Server no longer creates the Global Home/%username% directory for AD users if it does not exist and the user fails login
· Added a file open fix for a buggy SFTP client
· Improved GUI/service communication
June 28th, 2011· Added support for SFTP text and append mode
May 19th, 2011· Fixed an FTPS bug that could prevent the server from accepting connections
May 17th, 2011· Enhanced logging
· Virtual directory roots are no longer deletable through FTP or SFTP commands
· Notification of support agreement ending for licensed users
· UI internal cleanup and optimizations
· Entering a license key now prompts to restart the server
· Allow DSA with SSH in FIPS mode
April 22nd, 2011· Fixed a problem with interface settings not always saving
April 19th, 2011· Recompiled with Visual Studio 2010 SP1 and latest SDK
· Improved error checking
April 7th, 2011· Removed an SSL shutdown check that could prevent certain buggy clients from disconnecting
· Improved system performance
March 28th, 2011· Allow zero length file transfers for FTPS connections
· Ignore permission change requests with SITE CHMOD (meaningless on Windows)
· SFTP permission rules now identical to FTP for deleting existing files
· Better consistency with file operation logging and auditing between different protocols
· Turn on and off specific screen log messages
March 11th, 2011· Added elliptic curve key exchange for SSH SFTP as specified in RFC 5656
· Added support for elliptic curve SSH client keys
· FTPS performance improvements
· No longer sets file size on file creation when SFTP clients request it
· Fixed a bug in the STOU command introduced in version 4.0.8.3
February 23rd, 2011· Enhanced FTP and FTPS file and directory operation auditing and error reporting
· Added basic FTP STAT command support
· Improved FTP HELP command support
· Fixed self-signed certificate wizard would fail if no email address was specified
· Additional error checking during initial setup wizard
February 18th, 2011· Fixed interface status pane was sometimes hidden
· Fixed a remote settings save bug
· New certificate verify dialog
· New Cerberus logo and icon
January 21st, 2011· Require verifying security settings before saving and applying new settings
· Fixed a bug that could result in failure to decode file-based OpenSSH public keys
· RFC conformance for active mode data connections established from non-standard
· FTP ports (L-1 instead of always from port 20)
· RFC comformance for default data port when no PORT or PASV command is issued
· Fixed a bug that could result in service shutdown when terminal services connections are terminated
December 28th, 2010· Added an option to export the public key in 2 popular SSH formats
· Added a configuration option to only require an exclusive write lock when writing uploaded files instead of the default exclusive lock
· Changing remote admin username and password no longer requires a service restart to take effect
· Installers now download and install MSXML 6 if it isn't detected on the machine
December 1st, 2010· Fixed rare bug that could cause failure to accept connections
· Minor logging improvements
· Added right-click log window copy to clipboard
· Enabling or disabling remote web access not longer requires a service restart
· Updated auto-updater for Windows 2000 machines
November 21st, 2010· Improved SFTP channel window size handling
November 15th, 2010· Added feature to allow manually specifying interfaces when an interface isn't detected
· Fixed UI to allow user mapping through the GUI when multiple LDAP servers have the same IP
· Fixed a possible memory leak with LDAP authentication
· Fixed a virtual directory bug for overlapping paths
· Numerout UI improvements
· Performance improvements
November 2nd, 2010· Added a statistics file error detection and automatic repair feature
· Added logging output, statistics generation, and several several IP manager options to web administration
· Added ability to add/modify/delete groups to web administration
· Significant improvements to web administration performance and layout
· Significantly increased the SSH maximum packet size to accomodate clients that use large packets
· Fixed a bug in WAN IP autodetection that could result in excessive processor utilitization
October 30th, 2010· Added logging output to the web administration interface
· Added several IP manager options to the web administration
· Added ability to add/modify/delete groups to web administration
· Significant improvements to web administration performance and layout
· Significantly increased the SSH maximum packet size to accomodate clients that use large packets
· Fixed a bug in WAN IP autodetection that could result in excessive processor utilitization
October 20th, 2010· Added a DoS option to IP autoblocking to allow blocking connection attempts that do not attempt to login
· LDAP and AD user to group mappings are no longer case sensitive
· LDAP users now honor the disabled flag if it is set on a mapped Cerberus group when authenticating with PK
· LDAP users no longer require the "Use Cerberus Groups and Directories" flag set when mapping LDAP users to groups
· All binaries are now compiled with VS2010 and linked with the v10 CRT
October 9th, 2010· New smaller, smarter and more reliable installer
· New complete server configuration backup and restore feature
· Statistics page generation can now be done while running as a service
· Larger list boxes on the Users and Groups page of the User Manager
October 2nd, 2010· Added web service block address method
· Fixed an SFTP bug that could result in corrupt file transfers for some Unix SFTP clients
· Updated logging library
September 27th, 2010· Added quotes around the path string when installing as a service
September 27th, 2010· Additional LDAP error logging
· Disable offering MAC MD5 algorithm for selection in FIPS 140-2 mode for SFTP
· FTP connection denied messages were not being encoded correctly
September 23rd, 2010· Faster startup time
· Improved public key authentication compatibility for SFTP clients based on OpenSSH
· Support for SFTP real path compose and compatibility improvements with some SFTP clients
September 3rd, 2010· Condensed authentication logging
· AD authentication will use the nearest domain controller for AD authentication instead of always using the PDC
· Fixed unable to select "Password" authentication without selecting a public key bug
· Fixed log file color of warning messages and added several suggest fix log file messages for common problems
· SFTP real path command improvements
September 3rd, 2010· Fixed a bug with Active Directory and LDAP authentication of SFTP users
August 18th, 2010· Lowered the SSH initial window size for a channel to work-around buggy SFTP clients
· Better SSH windows size negotiation support for large file transfers
August 18th, 2010· Added support for OpenSSH public key format
August 18th, 2010· Added Public Key authenticaton for SFTP
· Cleaned up the Interfaces tab to prevent duplicate ip/port changes and to warn about inconsistent interface/port combinations
July 21st, 2010· Fixed a bug with SFTP listings not allowing UNC virtual directories
· Improved compatibility with SFTP clients and very large directory listings
· Improved compatibility with SFTP clients that STAT the root directory
July 20th, 2010· Fixed a that could result in the passive port range being reset to the default when upgrading to version 4.0.3
· Fixed a minor bug that would result in directory listings failing when given the path "./"
July 1st, 2010· Default interface settings can now be set for all types of interfaces
· Newly detected IP addresses can now be configured to auto-bind to multiple types of listeners
· All lists can now be sorted on the LDAP and AD mapping tabs
· Fixed a bug in the web administration GUI that prevented changing download permission on a virtual directory
· Fixed a bug in the SITE PSWD command that would reject passwords with captial letters
· Fixed a bug in the MLSD and MLST commands that caused directory listings to always show hidden files
· Fixed a bug in client certificate authentication
· CA certs are now loaded when present in PKCS12 files
· Added support for Certificate Revocation Lists (CRLS)
· Added support for DSA and Elliptical curve certificates
· Added support for ephemeral RSA and Diffie-Hellman key exchange
· Added DSS key exchange support for SSH SFTP
· The self-signed certificate creation dialog now offers the choice of RSA, DSA, or Elliptical Curve certificates
· Added support for SSH2 public key authentication
· SSL settings can now be changed and applied without restarting the server
June 14th, 2010· Display bug fix for SSH connection ID always being zero for the first log message for that connection
· Fixed a bug with temporary IP blocks being released too early
· Whitelist IP mode now honors temporary auto-blocking (if set) instead of permanently removing an IP address
· User interface improvements for the IP Manager (context menu options and header sorting for the IP list)
· Added context menu options for filtering the onscreen log view
· Fixed a bug where max simultaneous connections wasn't tracked correctly for a user
· Fixed an AD user impersonation bug
June 7th, 2010· Disabled status is now taken into consideration for LDAP and AD groups
· Disabled groups now show up faded on LDAP and AD mapping tabs
· Autoblocking now works properly for SFTP connections
· Fixed a handle leak with SFTP connections
· Increased the size of the IP Manager
· Added ability to search for an IP address in the IP Manager
· Added Classless Inter-Domain Routing (CIDR) support for adding IP ranges to the IP Manager
· Added option to change virtual directory paths in the User Manager
May 24th, 2010· Improved support for SFTP key re-exchange
· Several improvements to the web administration interface
· Added an option to ignore SFTP channel window size violations
· Added an option to disallow setting SFTP encryption to 'none'
· More forgiving directory parsing code for paths with multiple consecutive slashes in non-virtual directory mode
May 18th, 2010· Improved the web administration interface and added new features
· Fixed a bug with using SFTP in FIPS 140-2 mode
· Fixed a bug with failing to recognize IP ranges during IP blocking
· Updated SOAP support
May 10th, 2010· Fixed a simple directories bug for SFTP
· Fixed a passive connection bug
· Fixed a bug that could result in problems changing interface ports
· Updated the OpenSSL libraries to the latest version
May 7th, 2010· Fixed a bug that could result in problems changing interface ports
· Updated the OpenSSL libraries to the latest version
May 6th, 2010· Added File transfer over SSH (SFTP)
· Added Implicit TLS/SSL FTP (FTPS)
· Added ability Listen for connections on multiple ports for a single IP
· Allow simultaneous FTP, SFTP, and FTPS for a single interface
· Allow Active Directory domain authentication against multiple domains
· Allow LDAP authentication against multiple LDAP servers
· Associate Active Directory users and LDAP users with Cerberus Groups to allow customization for individual Active Directory or LDAP users
· New policy page to allow configuring password length and complexity requirements
· Auto-disable native accounts after too many failed password attempts
· New Authentication chaining control to allow configuring the order that users are checked against authentication services
· Temporary user and group accounts
April 30th, 2010· Updated configuration files to encrypt some settings
· Added a Verify button to the Security dialog to test certificates and keys
· Service and GUI now sync up immediately when the GUI changes the username or password of the service
February 10th, 2010· This release fixes a few bugs and is the first release to be tested and pass the Microsoft "Compatible with Windows 7" test suite.
February 6th, 2010· Adjustments to screen drawing code to better deal with screen DPI scaling
· Added additional SSL connection auditing information (cipher used) to the log
· Added capability to select the ciphers used and not used for secure connections
· Fixed a bug where interfaces configured for passive mode DNS or manual IP could switch modes when running as a service
February 3rd, 2010· Added a limiter to the user manager when enumerating Active Directory accounts
· Improved error checking for some commands
· Added support for SITE UTIME command (both formats)
· Made sure to properly shutdown TLS/SSL connections for idle connection time outs
· Added support for client command OPTS UTF8 OFF to turn off default UTF8 mode
January 27th, 2010· Added an alternate IP address detection method for rare cases where an IP interface can't be detected
· Fixed a problem with the service always using the default passive port range
December 18th, 2009· Fixed a bug that could cause connections to disconnect immediately after making a connection
· Enhanced the listing commands with more UNIX-style options
· Fixed listing commands with wildcards for network shares
December 16th, 2009· Reorganized the Active Directory and LDAP authentication configuration pages
· Added the option to pick a group to associate with an Active Directory user
· Active Directory user home directories can now be located on non-anonymous shares
· Added the option to select a "Global Home Directory" for LDAP users or a "Global Home Directory/%username%" just like for Active Directory users
· Better error checking and reporting for when there are problems accessing virtual directories
· Miscellaneous performance improvements
November 23rd, 2009· Renaming a group now updates users that include that group
· The GUI can now be accessed when running as a service
· Large performance improvements when running in service mode
October 26th, 2009· Fixed GUI resizing issues when running as a service running as a service
· Fixed a recurring handle leak
October 15th, 2009· Fixed a bug could cause the server to crash
· Made all SOAP calls require login credentials
· System-wide performance improvements
October 7th, 2009· Fixed a bug that could allow an attacker to crash the server
October 5th, 2009· Fixed a bug that could allow multiple instances of Cerberus to run when running as a service
· Vista and higher will no longer get interactive service messages when running as a service
· Performance improvements
September 28th, 2009· Added loopback address detection for IPv6 addresses
· Added support for clients that quote the filename passed for XCRC, XSHA1, XSHA256, XSHA512, and XMD5 commands
September 21st, 2009· Minor bug fixes and performance improvements
September 12th, 2009· Miscellaneous system-wide performance improvements
· Additional system logging and error checking
· Added a log filter to the logging tab
· Added a the capability to require secure control and data connections on a per user and per group basis
· Minor UI improvements
· Fixed a bug that resulted in not being able to select network shares or mapped drives from the dialog box for user directories
· Made the SOAP API version 1.2 compliant
August 25th, 2009· Fixed a bug that refused anonymous logins with empty passwords
· Fixed a bug that sometimes prevented interface settings from being applied at startup
· Fixed a crash bug
· APPE can now append to files greater than 4GB in size
· Added over a dozen new web service calls
· Updated the help file
July 31st, 2009· Fixed General tab of IP Manager not displaying on Windows 2000 Server
· Fixed IP block time not getting updated for connections
· Fixed authentication so that the group setting for "Is Anonymous" and "Is Disabled" was
· considered for a user that was part of the group
· Updated the help file
July 22nd, 2009· Added LDAP authentication support
· Minor bug fixes
July 22nd, 2009· Fixed a bug that prevented default interface settings from being applied to new interfaces
July 22nd, 2009· Fixed a bug that prevented authenticating FTP accounts against NT domain users
June 18th, 2009· Features present or being worked on in this beta
· International character set and FTP UTF-8 support
· FIPS 140-2 Validated Cryptography
· Groups support
· Added an auto-update system to detect and automatically upgrade to newer versions of Cerberus
· Added support for several new commands, including CLNT command (client name),XCRC,XSHA1,SITE ZONE, CCC, MFMT, and MFCT
· Converted the users and settings files to XML - No more dependency on the Windows Registry
· Complete rewrite of the underlying GUI framework
· Changed library linking to dynamically link to CRT libraries instead of static linking
· Updated the look and feel of the GUI controls, new toolbar buttons, converted many icons to Vista quality
· Added a moving chart to the statistics pane to show upload and download bandwidth used over time
· Certificate Authority and Client Certificate Verification support
· Certificate Revocation List support
· Native 64 bit version of Cerberus FTP Server
· Improved SOAP support
May 6th, 2009· Updated the OpenSSL packages to the latest versions
· Fixed a bug with the SIZE command
October 2nd, 2008· Added an option to disable shutting down the server when the operating system is shutting down
· Updated the log4cxx and OpenSSL packages to the latest versions
· Fixed an incompatibility with some FTP clients when using secure connections
· Fixed a bug that sometimes resulted in the server service shutting down when a user logged out
· Updated the log4cxx and OpenSSL packages to the latest versions
· Cerberus now binds to the C-Runtime libraries dynamically
June 27th, 2008· The RETR command now correctly returns an error code when a path is a directory instead of a file. This will improve Firefox compatibility.
· Updated the log4cxx and OpenSSL packages to the latest versions
February 11th, 2008· Fixed a bug that resulted in no response being sent back for an unsupported MODE
· Added an option to disable/enable detection of IPv6 addresses
· Fixed a toolbar display issue
· The columns in the main tab window now auto-resize when the applications size changes
November 8th, 2007· Fixed a bug that prevented blocking a connected user from the GUI
· Fixed a bug that caused the MDTM command to fail when setting a date/time and the file path contains spaces
· Fixed a bug that resulted in a failure code being returned when a directory LIST or NLST filter returned no matching files
· Fixed an XSS vulnerability in the web interface
April 27th, 2007· Fixed a bug that prevented blocking a connected user from the GUI
· Fixed a dynamic DNS bug that resulted in the wrong external IP being used when multiple interfaces are resolving from different DNS addresses
· Fixed a bug in the IP blocker dialog that sometimes failed to properly delete an IP address
March 28th, 2007· Fixed a display bug in the generate statistics function
· Fixed a dynamic DNS bug
· Fixed a bug in the IP block list that prevented IP addresses from being deleted
· Fixed a bug in the IP block manager that resulted in corrupt block list upgrades from verison 2.42 and below
· Fixed a bug in that sometimes resulted in failed active data connections
March 20th, 2007· Preliminary IPv6 Support
· Resolved installation issues on Windows 2000
· Added an option to always use the local address for passive commands when the connection is on the same LAN
February 28th, 2007· Resolved a bug that could result in a crash when generating a statistics file
· Resolved a bug resulting in a connection never terminating when a remote client's connection is broken during an upload to the server
· Compiled against the most recent version of OpenSSL (0.9.8e)
February 22nd, 2007· Updated the logging system to use the latest version of log4cxx
· Fixed a bug that resulted in the log file failing to be updated when running as a service
· Updated the gSOAP support and fixed a realm authentication bug
· Added support for the EPRT and EPSV commands
· Compiled against the most recent version of OpenSSL (0.9.8d)
Find us on Google+
