SFTP Archives - File transfer tool from Limagito

12 Oct
SFTP Fingerprint option added to Limagito file mover
Q: I have a question related to SFTP fingerprints. When I create a new rule and add new Source -> SFTP, where can I configure the fingerprints of the Source host’s fingerprint? I would like to be sure that the server is valid.
A: We allow the fingerprint of the sftp server you added as source automatically. At this moment there is no option to add fingerprints of the host manually.
Q: Thanks for the very quick answer. Hopefully it will be possible on the next version. There is a possibility for MiTM attack.
A: In version v2024.10.12.0 we added the Fingerprint option for SFTP as Source and Destination.
The goal of the fingerprint is to verify the authenticity and integrity of the SFTP server you’re connecting to. This is a short, unique representation (a hash) of the server’s public key. The purpose of this fingerprint is to help you confirm that you’re connecting to the correct server and not a malicious or imposter server. This is optional and by default we allow any fingerprint.
E.g.
The default Hash Algorithm is MD5
68:ff:d1:4e:6c:ff:d7:b0:d6:58:73:85:07:bc:2e:d5
Please add one if the following prefixes to adjust the default Hash Algorithm:
SHA256:
SHA384:
SHA512:
SHA1:
SHA3-224:
SHA3-256:
SHA3-384:
SHA3-512:
In case you receive an error message regarding the Fingerprint Compare, please increase the RunTime Log Level to ‘Debug’:
RunTime Log example:
If the the fingerprint in your SFTP setup is not correct, the following error message will appear
Increasing the log level of the RunTime log will show you the Fingerprint the SFTP server is sending
You can compare this to the one in your setup, in the example below we used the SHA256 hash algorithm
If you need any help with this request, please let us know.
Best Regards,
Limagito Team
#sftp #managedfiletransfer #filetransfer #filemanagement
By Limagito-Team SFTP fingerprint, SFTP
14 Jul
SFTP Allowed Algorithms in Limagito File Mover
SFTP Set Allowed Algorithms in Limagito File Mover
14th of July 2024
By default, Limagito File Mover orders algorithms according to best practices, and pays attention to vulnerabilities such as the “Terrapin Attack”.
The following algorithms are supported by Limagito File Mover when our second API Vendor – CK is selected:
Hostkey:
ssh-ed25519
rsa-sha2-256
rsa-sha2-512
ecdsa-sha2-nistp256
ecdsa-sha2-nistp384
ecdsa-sha2-nistp521
ssh-rsa
ssh-dss
Key Exchange:
curve25519-sha256
curve25519-sha256@libssh.org
ecdh-sha2-nistp256
ecdh-sha2-nistp384
ecdh-sha2-nistp521
diffie-hellman-group14-sha256
diffie-hellman-group1-sha1
diffie-hellman-group14-sha1
diffie-hellman-group16-sha512
diffie-hellman-group18-sha512
diffie-hellman-group-exchange-sha256
diffie-hellman-group-exchange-sha1
Ciphers:
aes128-ctr
aes256-ctr
aes192-ctr
aes128-cbc
aes256-cbc
aes192-cbc
aes128-gcm@openssh.com
aes256-gcm@openssh.com
twofish256-cbc
twofish128-cbc
blowfish-cbc
(also chacha20-poly1305@openssh.com if explicitly allowed by the application)
MAC Algorithms:
hmac-sha2-256
hmac-sha2-512
hmac-sha1
hmac-ripemd160
hmac-sha1-96
hmac-md5
(also the following etm algorithms if explicitly allowed)
hmac-sha1-etm@openssh.com
hmac-sha2-256-etm@openssh.com
hmac-sha2-512-etm@openssh.com

Best Regards,
Limagito Team
#SFTP #managedfiletransfer #filetransfer #filemanagement
By Limagito-Team SFTP Algorithms
17 Mar
How to move files to different ftp folders under the same root
How to move files to different ftp folders under the same root on the same server
Q: Conditional destination request. We are looking for an easy way (one channel) to move files to different ftp folders (more than 100 folders) under the same root on the same server, where filename prefix (3 char) is the key to which folder. Prefix and folder name are different.
A few examples:
BBL > folder1
ABB > folder2
BYR > folder4
BYP > folder5
DAT > folder6
I have been looking at your blog post without finding anything like it. The list of prefixes and folders could be a text table in the script or in a csv file. Do you have a script for this?
A: Yes this is possible, please have a look at the following screenshots. This setup can be used with other Sources and Destinations too.
– We used a Windows folder as Source:
– Open our Pascal Script option
Please enable and add the following ‘On Destination’ Pascal Script:
Please add the following script: link
The script strips the first 3 characters from the filename by using ‘copy(psFilename, 1, 3)’
The stripped part is compared with ‘BBL’, ‘ABB’ .. ‘DAT’
Depending on the result of the compare, a folder name is added to our variable psVSA ( pascal script Var String A )
This psVSA variable will be used in the Destination setup as parameter (%VSA, which contains data from psVSA)
You’ll need to adjust the folder names and add more prefixes if needed
– In the FTP as Destination Setup, please adjust the ‘Create Subdir’ option to: %VSA\%SFS
Here we used the %VSA parameter, set in the Pascal Script, which contains the desired subdirectory name
– Feedback customer:
That looks easy. Thank you very much.
If you need any help with this new option, please let us know.
Best Regards,
Limagito Team
#ftp #sftp #managedfiletransfer #filetransfer #filemanagement
By Limagito-Team Filters FTP Pascal Script SFTP Conditional, different folders