THE INFORMATION IN THIS ARTICLE APPLIES TO:
- EFT Server™, all versions
- CuteFTP Pro®, all versions
QUESTION
Do EFT Server and CuteFTP Pro support TLS 1.2?
ANSWER
Neither EFT Server nor CuteFTP Pro currently support TLS 1.2. It is expected that EFT Server will support it in the future, when/if OpenSSL does.
MORE INFORMATION
When you use CuteFTP to connect securely to a server that supports SSL or TLS (SSL v3), the two computers pass a sequence of commands to create a secure connection.
EFT Server uses TLS 1.0, SSL 2.0, or SSL 3.0
- EFT Server version 6.4 uses OpenSSL 0.9.8r; FIPS SSL is based on OpenSSL 0.9.8m
- EFT Server version 6.3 uses OpenSSL 0.9.8o; FIPS SSL is based on OpenSSL 0.9.7m
- EFT Server version 6.2 uses OpenSSL 0.9.8l (L)
- EFT Server version 6.1 and earlier use Open SSL 0.9.8a
For information about Using Ciphers for SSL connections with EFT Server, refer to http://help.globalscape.com/help/eft6-4/index.htm#mergedprojects/eft/using_ciphers_for_ssl_connections_with_server.htm
Refer to Knowledgebase article #11003: What is GlobalSCAPE's response to the SSL/TLS BEAST exploit for details of configuring SSL security settings in EFT Server.