Blog

Managed File Transfer and Network Solutions

A QuickStart Guide To Transferring Files Using A Windows SFTP Client

Posted by John Carl Villanueva on Wed, Jun 22, 2016 @ 06:00 AM

Overview

Windows doesn't have a built-in SFTP client. So if you're looking to transfer files with an SFTP server but are using a Windows machine, you might want to check out this post. 

Read More

Topics: Security, AnyClient, Secure File Transfer, SFTP

SFTP Client Connection Issues Involving Diffie-Hellman-Group1-SHA1

Posted by John Carl Villanueva on Mon, Jun 13, 2016 @ 04:13 AM

Overview

If you're running a SFTP service, chances are you've already received connectivity-related complaints involving the diffie-hellman-group1-sha1 key exchange algorithm. Here's how you fix that.

Read More

Topics: Security, Secure File Transfer, SFTP

Port Confusion - Is Security Through Obscurity Bad?

Posted by John Carl Villanueva on Wed, Jun 01, 2016 @ 09:58 PM

Overview

Last week, while responding to one of the tickets at our HelpDesk, I noticed that the port number used wasn't standard. While we encounter this quite often, the use of non-standard ports is one of those practices where many IT folks have opposing views.

On one side you have those who consider the use of non-standard ports a form of "security through obscurity" and hence discourage it. On the other, you have those who actually recommend it. Clearly, the topic makes for an interesting discussion, so here we are to discuss it. 

Read More

Topics: Security, Secure File Transfer

HTTPS Not Required To Apply Digital Signatures On Your AS2 Messages

Posted by John Carl Villanueva on Fri, May 20, 2016 @ 04:50 AM

Overview

Although you can run AS2 over HTTPS in order to provide encryption, authentication, data integrity, and non-repudiation to your EDI exchanges, it's not necessary. You can still get the same level of protection if you use AS2's built-in support for encryption and digital signatures. We already talked about AS2 encryption in a previous post, so this time, let's focus on digital signatures. 

Read More

Topics: JSCAPE MFT Server, Managed File Transfer, Security, Secure File Transfer, AS2

SHA2 Certificates Are Imperative

Posted by John Carl Villanueva on Sun, May 15, 2016 @ 06:04 PM

Overview

Over the last few months, we've been receiving a growing number of inquiries on how to enable support for SHA2 certificates in JSCAPE MFT Server. We later learned that the intention was not just to accommodate SHA2-signed certs but to actually replace SHA1-signed certs with them. In this post, we explain why people are moving from SHA1 to SHA2 and why you need to do so as well. 

Read More

Topics: Security, Secure File Transfer, FTPS

Providing Network Services From An Internal Network While Prohibiting Inbound Connections

Posted by John Carl Villanueva on Fri, May 06, 2016 @ 05:36 AM

Overview

Some organizations that deal with exceptionally sensitive information need to employ very stringent access restrictions to their internal networks. While a DMZ consisting of firewalls and reverse proxies can, in most cases, meet such requirements, providing network services from the internal network to external clients while also prohibiting inbound connections can be quite challenging. This little reverse proxy enhancement can simplify things.  

Read More

Topics: JSCAPE MFT Gateway, Security, Compliance, PCI-DSS, Reverse Proxy, DMZ Streaming

What HSTS Is and How It Enhances The Effectiveness of HTTPS

Posted by John Carl Villanueva on Mon, Apr 18, 2016 @ 05:26 AM

Overview

When I first read about HSTS, my first reaction was, "What's this? A replacement for HTTPS? Considering the ubiquity of HTTPS, shouldn't we be working to improve it first instead of replacing it?" Turned out, my initial understanding of HTTP Strict Transport Security was off the mark. 

Read More

Topics: Security, Compliance, Secure File Transfer

Using Tags To Restrict Administrative Access to Certain Data In Your MFT Server

Posted by John Carl Villanueva on Mon, Mar 14, 2016 @ 09:14 AM

Overview

In our last post, we talked about how you could get more granular when delegating administrative privileges on your MFT Server by using what we call Administrative Roles. Today, we teach you how to get even more granular by employing Administrative Tags.

 

 

 

Read More

Topics: JSCAPE MFT Server, Managed File Transfer, Security, Tutorials

Get More Granular When Delegating Admin Privileges On Your MFT Server

Posted by John Carl Villanueva on Sat, Mar 05, 2016 @ 02:03 PM

Overview

Many MFT server deployments are being managed by multiple administrators. But because these admins usually have different tasks and responsibilities, there's been a growing clamor for greater granularity when delegating admin privileges. That granularity has finally arrived.

Read More

Topics: JSCAPE MFT Server, Managed File Transfer, Security

SSL vs SSH - A Not-So-Technical Comparison

Posted by John Carl Villanueva on Wed, Jan 06, 2016 @ 10:08 PM

Overview

The most widely used secure file transfer protocols, SFTP and FTPS, get their security from underlying protocols. SFTP from SSH and FTPS from SSL. Let's compare the two.  

Read More

Topics: Security, Secure File Transfer, SFTP, FTPS