calc2014

I might be wrong here but I think it might just be because of the syntax you are using for the block rule, the hyphen does not work in that way.. https://support.solarwinds.com/SuccessCenter/s/article/Setting-IP-Access-rules-in-Serv-U?language=en_US The hyphen is used to denote a range of numbers, so it can only be used…

Hi @"jeffpahf"- that would be the same for any software that has had a zero-day vulnerability. If you contact Solarwinds support they will assist you with logs etc to assess this for you. Not limited to Serv-U, if you wanted to check any file is what you expected when downloading from the internet, you could do a hash…

Did you manage to get this to work? As Serv-U has its own authentication and/or Windows/LDAP im not sure it allows for MFA token passthrough? Did you also plan to put this in front of FTP/SFTP protocols as well as the web interface as I'm intrigued how this would be configured.

It looks like this relates to a hack of someone using the old 15.2.3 HF1 which was patched by Solarwinds a while back (HF2). I dont think its a new vulnerability but an article about an old one? Here is the excerpt from the previous hotfix for this.. ======================================= SolarWinds® Serv-U® 15.2.3.742…

Thanks for that, really helpful @"[Deleted User]" - @"tomcrigger" all good on your install too after your update and reboot?

Great news! Just wondered if we need to go any further with the testing by restarting it manually to ensure it doesn't do the same service stopping issues on the 2nd (and beyond) reboot after the patch? It does mean waiting another 5 days though! It does look like it is resolved and the above is unlikely.

Thanks for the details @"[Deleted User]", if you could post here with any updates from support, that would be great! Appreciate you guys taking time to post on here.

Hi guys - once you manually restart the service does it then work ok? Presumably for another 5 days? Its strange as you would expect a license check to happen at startup, not every 5 days. @"ivodlouhy"can you help with this?

@"hildebrau" not yet, but there is another thread tracking this too... https://thwack.solarwinds.com/product-forums/serv-u-ftp-mft/f/forum/20277/new-serv-u-15-2-encryption-database-documentation If you find a way can you post it? :)

@"ivodlouhy" Please could we have a copy of the database integration guide?

Screenshot of error attached for reference @"dodster" @"epcc" Watch out for this bug as you appeared to be updating around the same time as me with the last update.

If you run the installer over the top it will upgrade it automatically upgrade it and retain the config. I'm not sure on how far you can jump in versions but never had an issue doing an upgrade.

Hi John, The 127.0.0.1:43958 address you are using uses the Serv-U Administrator password which is the local administrator password. This is defined in Global > Limits & Settings > Settings > Admin Password (button at the bottom). This is only used for the overall management of the Serv-U server. If you want to login as a…

Hi John, The 127.0.0.1:43958 address you are using uses the Serv-U Administrator password which is the local administrator password. This is defined in Global > Limits & Settings > Settings > Admin Password (button at the bottom). This is only used for the overall management of the Serv-U server. If you want to login as a…

Hi dboudah, you can see the failed login attempts in the 'Domain Activity' section.

I believe this is planned for a future release which is good news.. https://thwack.solarwinds.com/product-forums/serv-u-ftp-mft/f/forum/1603/what-we-re-working-on---serv-u-ftp-server-serv-u-mft-server-ftp-voyager If you hear when this might be, please let us know.

Hi Imran, you shouldnt experience Serv-U being slow after installation, could you let us know the parts that are slow and roughly how you have it set up?

Yes this would be useful as I believe it is also required for users who use a database to store the user accounts. @"ivodlouhy" would you be able to let us know on this?

Users and groups no longer get 'disabled' in 15.2.2. The old passwords will still not work after the 90 days (if they have not been automatically converted) but it will not change the 'enabled' state to 'disabled' on the users and groups which is a good improvement as this can cause havoc for other users in a group if it…

Generally mapped drives are not available to be used in applications that run as a service - the reason is that the mapped drive is only available in the current 'interactive' user session and to a service it does not exist. I believe this is why your full path works.

This is now all resolved in 15.2.1. Thank you for your swift help resolving this issue @"ivodlouhy", very much appreciated.

There may be a bug in this patch (15.2.1.446) that has started as of 26th September to disable accounts that use Public Key authentication as the password encryption method is not being updated by Serv-U. Even though the accounts do not use a password, Serv-U is disabling the account and groups it is associated with, every…

Thanks for the update @"chrisrow" . Yes, initial testing all looks good from here. Let us know if you have any issues, would be really really helpful! Cheers again.

sylvainj, bshopp is referring to the RC not the current release. We're waiting on this feature.

bshopp How about the TLS vulnerability dougpapenthien also highlighted above - this would suggest we may need checkbox options for TLS versions too?

I think there may be a bug in this patch (15.2.1.446) that has started as of 26th September to disable accounts that use Public Key authentication as the password encryption method is not being updated by Serv-U. Even though the accounts do not use a password, Serv-U is disabling the account and groups it is associated…

Thanks @"ivodlouhy" from some initial testing it seems to be working fine. I will do more testing over the next couple of days before putting into production. @"chrisrow"is this working for you now with 15.2.1?

Thanks - will there be an option to just allow TLS, no SSL v2/3?

Thats great @"ivodlouhy" - much appreciated. We look forward to hearing from you.

Thanks for your ideas. We didnt see anything initially and all other services were fine which is why I posted on there. I doubt anyone will post now about this unless it happens again but atleast it is documented. Thanks again.