Syncplify Developers Blog

Release notes and blog by the developers at Syncplify

Tag pki

Syncplify Devs
March 8, 2024

Syncplify Server! v6.2.28 released

Importance of this update: [OPTIONAL]
What’s changed?
  • Restored support for PKI authentication (SSH2/SCP/SFTP) using insecure RSA keys (SHA1 signature, insecure moduli, …), while secure RSA keys have never been dropped. We understand that transitioning to secure keys can be a challenge for some users. While we’ve provided resources and recommendations for dropping RSA keys for PKI authentication and switching to more secure keys (ECDSA, Ed25519, …), we recognize that some users may require more time, hence the choice to re-enable PKI auth support for these insecure keys. This does not make our server software less secure, it simply means it may allow certain insecure algorithms, but security-conscious users will simply configure our server software not to use them, thus keeping it completely safe and secure

IMPORTANT NOTE: those who are running the “worker” system service under a different account (not System or LocalSystem) will need to re-configure the service to run under such account after upgrading from any version number <= 6.1.12)

Upgrading from v6.x.y is a simple and fairly automatic process: simply download the latest version from the official download page, and install it over the existing version, all of your settings and license will be kept.

If, instead, you’re upgrading from an older (v4/v5) version, you find the upgrade instructions in our knowledge base.

Thank you all for trusting our software with your secure file transfers!

Leave a comment InRelease Notes Syncplify Server! WebClient!
Syncplify Devs
February 27, 2024

Syncplify Server! v6.2.26 released

Importance of this update: [HIGH]
What’s changed?
  • Upgraded the compiler to the latest version, which comes with many fixes in the compiler’s standard library
  • Huge improvement in Protector(TM) performance, strikes are now counted up to 1000x faster than before
  • Added STSPreload to the global configuration in the SuperAdmin UI
  • Slightly relaxed RSA key security requirements to restore functionality of PKI authentication using old and insecure RSA keys (only when already known to the server prior to the changes made to prevent Terrapin)
  • Upgraded back-end SyngoDB database server to v4.11.0

IMPORTANT NOTE: those who are running the “worker” system service under a different account (not System or LocalSystem) will need to re-configure the service to run under such account after upgrading from any version number <= 6.1.12)

Upgrading from v6.x.y is a simple and fairly automatic process: simply download the latest version from the official download page, and install it over the existing version, all of your settings and license will be kept.

If, instead, you’re upgrading from an older (v4/v5) version, you find the upgrade instructions in our knowledge base.

Thank you all for trusting our software with your secure file transfers!

Leave a comment InRelease Notes Syncplify Server! WebClient!
Syncplify Devs
April 12, 2023

Syncplify Server! v6.0.28 released 🔥

Importance of this update: HOT-FIX
Fixed
  • Password validation during User creation is only applied for user profiles which password authentication is not delegated to a back-end LDAP server
  • User authentication via PKI (over SSH/SCP/SFTP) is now carried out correctly even when the user profile has multiple public-keys associated to it
  • Exporting the public part of an SSH Host Key now works as expected

Upgrading from v6.0.x is a simple and fairly automatic process: simply download the latest version from the official download page, and install it over the existing version, all of your settings and license will be kept.

If, instead, you’re upgrading from an older (v4/v5) version, you find the upgrade instructions in our knowledge base.

Thank you all for trusting our software with your secure file transfers!

Leave a comment InRelease Notes Syncplify Server! WebClient!
Syncplify Devs
January 10, 2023

Syncplify Server! v6.0.3 released

Today we released Syncplify Server! v6.0.3; here’s what’s new and improved in this version.

Fixed
  • Restoring from old V4/V5 backups in some cases did not import the virtual sites’ admin(s)
  • Restoring from old V4/V5 backups skipped the structure validation, causing potential issues editing the configuration down the road (some changes would not persist)
  • Occasional 15-second timeout of the control connection while transferring data over a PASV data connections (FTP protocol family only)
  • Unit validation of some SI (standard international system) numeric values
  • In some user profiles it wasn’t possible to import a user-supplied public key for PKI authentication
Improved
  • The “System ID” is now immutable even across multiple uninstall/reinstall cycles
New
  • There is now an easy-to-see top-screen notification when updates/upgrades are available with instructions on how to obtain them

Upgrading from v6.0.x is a simple and fairly automatic process: simply download the latest version from the official download page, and install it over the existing version, all of your settings and license will be kept.

If, instead, you’re upgrading from an older (v4/v5) version, you find the upgrade instructions in our knowledge base.

Thank you all for trusting our software with your secure file transfers!

Leave a comment InRelease Notes Syncplify Server! WebClient!