Softpedia >Windows >Internet >Servers >FTP Servers >Cornerstone MFT >  Changelog

Cornerstone MFT Changelog

What's new in Cornerstone MFT 10.47 Build 1892

Oct 23, 2014
  • Fixed: Issue which could cause the modification date of a folder to become invalid if something was added/deleted under that folder and the Titan/Cornerstone service was not running under full rights to touch the file system modification dates for folders.
  • Fixed: Users can now Download-as-Zip Virtual Folders when using the WebUI.
  • Fixed: Bug in the IPAccess List feature in the Admin Application which could fail to add an IP address to the Permit/Deny list if there was already an IP Address which was similar. Meaning that if 173.1.2.3 was already in the list, 73.1.2.3 would not be added properly. This gave the false impression that the IP Access List would ‘max-out’ at a certain number of entries.
  • Fixed: But in the Events Manager which would cause double-free of memory and could cause the service to crash under certain situations.
  • Fixed: SFTP issue which could cause a memory leak if the client application timed-out or canceled an upload mid-stream.
  • Fixed: PGP issue which could cause a decrypt failure if streaming PGP was being used and the encrypted file had an odd block size. (Cornerstone MFT)
  • Fixed: srxCFG issue which failed to add a user to the proper groups when the user was initially created. This problem also occurred with users not being added to a group when the group was created.
  • Fixed: srxCFG issue which failed to return the DirAccess and VirtFolders information on a GET*ATTR call.
  • Fixed: SFTP Issue which could cause the client to fail to recognize a virtual folder if it was in the user’s home directory and referenced a UNC.
  • Fixed: During SFTP Public Key Authentication, the logfile now records the MD5 fingerprint of the raw/unencoded public key instead of the encoded public key. This helps to cross check the MD5 hash with other programs.
  • Fixed: The SFTP engine now supports stronger PCI compliant ciphers and macs including hmac-sha2-224, hmac-sha2-384, hmac-sha2-256, and hmac-sha2-512.
  • Fixed: The Certificate Manager and Host Key manager would allow a user to accidentally enter a blank space in the password. Spaces are not permitted in passwords when creating or exporting certificates and host keys.

New in Cornerstone MFT 10.46 (Oct 23, 2014)

  • Fixed: The Statistics Tracking engine would occasionally skip recording Upload events under heavy use.
  • Fixed: SFTP memory leak which could cause the server to crash if the client was using large buffers for transferring data.
  • Fixed: The USR_SetAttr method in the COM engine was not properly processing a set user password command.
  • Fixed: Reworked some logic in the subsystems which load directory permissions during login to help expedite logins for users who have many hundreds of permission ACEs.
  • Updated: There is an updated version of the help system.

New in Cornerstone MFT 10.42 Build 1840 (Mar 15, 2014)

  • Added: Cornerstone MFT Server’s SFTP engine now supports the “vendor-id” extension for SFTP version 6.
  • Added: The Web Interface Rebranding dialog now has an option to customize the name of the server presented to the user in the browser.
  • Added: Enhanced support for certificate based authentication over secure WebDAV and FTP/S when using SafeNet eTokens.
  • Fixed: Security vulnerabilities in the Web Interface which could potentially allow a user to access information from another folder through an HTTP proxy injection. ,CVE-2014-1841, CVE-2014-1842, and CVE-2014-1843.
  • Fixed: Updated the Java Uploader used in the WebUI to include required security attributes to eliminate warnings on some browsers.
  • Fixed: SFTP issue which returned invalid INIT response when using SFTP v6.
  • Fixed: SFTP issue which failed to return the proper response to WS_FTP for a special extended query command.
  • Fixed: WebUI Problem which caused multiple event actions to be fired during a large upload.
  • Fixed: Logfiles were being written in Unicode format even when the Unicode option was not selected. This was true in both the main Log File Manager and also in the Events Manager action for Log To File.
  • Fixed: Removed invalid/weak SFTP ciphers from the Server configuration left over from older installations. These are not supported by the SFTP engine and were resulting in clients being refused access to the server.
  • Fixed: Problem with WebUI which failed to generate a directory listing which was introduced in v10.30 as a result of the bug fix for the MLST command.
  • Fixed: During FTP/S connections, the MLST command was not returning any information.
  • Fixed: The MLST command was returning a full directory listing if the supplied folder name had a trailing slash, such as MLST myDocuments/ or MLST /
  • Fixed: Internal path processing error which could cause an invalid Access Denied error message if the input path data contained one or more ‘..’ folders and was suffixed with a ‘.’ folder, such as MLST /folder1/../.
  • Fixed: The MLST command will now properly return the same path/file information specified by the client as the path/file specification in the first 250-path_file response line.
  • Fixed: Updated the Client Upload utility for the WebUI to prevent Java security warning.

New in Cornerstone MFT 10.10 Build 1780 (Sep 28, 2013)

  • Added: For PGP enabled systems, there is a new optioned called 'Add PGP Extension' which is on by default. Turning this option OFF will result in all files uploaded to the server will retain their original file extension, even though they are encrypted.
  • Added: Various VB, C# and C/C++ sample applications illustrating how to use the COM interface to the server now ship with the product and are installed as a .zip file in the program files directory.
  • Added: On the HTTP/HTTPS tab, there is now a Require Certificates option which will reject HTTP/S connections from clients who do not supply a valid SSL certificate when connecting to the server.
  • Added: There is now a logging option for 'Unicode Formatted Logfiles'.
  • Added: There is a new C# sample application that illustrates how to gather new user account information from a WebForm and pass that data on to srxCFG to create a new user account. This sample can be easily extended to modify user, group and server information.
  • Fixed: During SFTP connections, the Language Tag string was not being returned to the client with the End Of File status during a directory listing. Some clients require this field and would time out waiting for the directory listing.
  • Fixed: For FTP connections, the send/receive timeout value was not always being honored.
  • Fixed: Issue with the StatsTrack engine starting during a Titan configuration. This feature is only available in the Cornerstone MFT product.
  • Fixed: Issue in the Admin server which could fail to recognize if a server name already existed during the process of creating a new server.
  • Fixed: StatsTrack issue where one of the Managers was not defined in the SQL Tables which preventing the logging of some Server based events.
  • Fixed: NTLM authentication issue and issue with WebDAV PROPFIND not returning 403 when access is denied.
  • Fixed: Some PCI scanners were throwing off a warning because of some of the HTTP response headers being sent over in the WebUI. These headers have been removed to clean up the PCI scan.
  • Fixed: Logging issue which improperly printed out some warning information if the DMZedge Server was being used.
  • Fixed: Added additional logging information when DMZedge Server is being used. This helps diagnose traffic between the DMZedge Server and the Cornerstone Server
  • Fixed: SSL Certificate problem which could cause the server to crash on FTP/S connections.
  • Fixed: Memory leak in the SSL Certificate code which could cause excess memory usage on FTP/S and HTTP/S connections.
  • Fixed: Issue in the 'Log To File' event action which prevented the writing of Unicode text to the logfile.
  • Fixed: When creating a new server, and the back end SQLServer name contained a ',', the New Server Wizard would fail. This issue has been corrected.
  • Fixed: Using SSL Certificates containing RSA private keys in .pem format would crash the Admin application. This has been corrected.

New in Cornerstone MFT 10.01 Build 1740 (Jul 26, 2013)

  • Fixed: The installer was missing a DLL which prevented the web interface from working properly on fresh installations.
  • Fixed: When upgrading from older v8 and v7 systems, access permissions were not being processed properly for virtual folders.
  • Fixed: Fixed problem in the Admin utility with the 'inherit home directory' setting not being displayed properly.
  • Fixed: When processing a PWD command during an FTP session, a 550 was being returned if the user had no permissions to the current directory. PWD is now allowed even with no permissions on the current directory.