SFTP

  • 03 Feb

    Limagito File Mover mitigates Vulnerability to the SSH Terrapin Attack

    The SSH Terrapin Attack

    In Limagito File Mover v2024.2.3.0 we made some changes to mitigate the SSH Terrapin attack problem. We did this by modifying the selection of the default algorithms in the following ways:

      1. chacha20-poly1305@openssh.com is no longer included by default. It can be re-added by specifying “+chacha20-poly1305@openssh.com” in the new UncommonOptions property we added.
      2. We kept the “-cbc” encryption modes because potentially too many servers would be affected by eliminating these encryption algorithms.
      3. We no longer include the “-etm” MAC algorithms, which are:
        • hmac-sha1-etm@openssh.com
        • hmac-sha2-256-etm@openssh.com
        • hmac-sha2-512-etm@openssh.com

        The -etm MAC algorithms can be re-added by specifying “+ssh-hmac-etm” in the new UncommonOptions property.

    For more information about the Terrapin attack, see https://terrapin-attack.com/

    limagito file mover sftp setup SSH Terrapin Attack

    • In the following example I re-added the -etm MAC algorithms by specifying “+ssh-hmac-etm” in the new “Uncommon Options” property (Advanced Tab).

    limagito file mover sftp setup

    #sftp #ssh #managedfiletransfer #filetransfer #filemanagement

    If you need any help with this ‘Terrapin Attack’, please let us know.

    Best Regards,

    Limagito Team

    By Limagito-Team SFTP ,
  • 30 Jan

    How to generate a RSA Key for SFTP

    How to generate a RSA Key for SFTP

    30th of January 2024

    At this moment we are adding an option which allows you to generate different kind of SSH Keys like DSA, RSA, .. which can be used for example with SFTP.

    limagito file mover generate RSA Key for SFTP

    #sftp #ssh #managedfiletransfer #filetransfer #filemanagement

    If you need any help with this ‘generate a RSA Key’ option, please let us know.

    Best Regards,

    Limagito Team

    By Limagito-Team SFTP , ,
  • 14 Jan

    Kicking sessions because of too many failed commands

    Kicking sessions because of too many failed commands

    Q: Dear support team, With one of our vendors our IP has been banned for invalid commands .

    2024-01-04 01:20:56,152 WARN [com.dymmyhost.mft.port ][6353] – |—Kicking sessions because of too many failed commands.—

    Looking at our log, I could see the error

    1/8/2024 9:31:48 AM SFTPRemoveFile, SB Delete Exception: %DELE-not found%

    What is that? Please consider that we use the option: “use .tmp extention”

    Regarding the .TMP extension, we used it to avoid that the 3rd party could get it before the file transmission. I don’t know if this is related to the error.

    limagito file mover sftp as destination setup

    A: This option is helpful when uploading large files and to prevent another process from picking up the files from the SFTP server before the file upload is complete as you said. We upload the file with a .tmp extension, for example “MyUpload.pdf” will be uploaded as “MyUpload.pdf.tmp”. When the upload is successful we first try to delete any existing “MyUpload.pdf” file on the SFTP server and next we’ll rename “MyUpload.pdf.tmp” to “MyUpload.pdf”. The fact that we are trying to delete an non existing file is giving you the issue with this SFTP server it seems.

    Reply Customer: For these jobs we use unique and progressive file names, so there is no possibility to have 2 files with the same name. For us is much better to manage this kind of exception instead of sending a command that periodically makes our IP banned.

    A: In version v2023.1.14.0 we added the following option ‘Use Temp Extension Method’.

    Open your SFTP as Destination setup and witch to the ‘Common’ tab. In your case (unique filenames), you could switch to ‘Rename Only’.

    • Default (Try delete before rename)
    • Check file exist before delete & rename
    • Rename Only

    limagito file mover sftp too many failed commands

    sftp #managedfiletransfer #filetransfer #filemanagement

    If you need any help with this ‘too many failed commands’ question, please let us know.

    Best Regards,

    Limagito Team

1 2 3 4 10
SEARCH