jonathan_at_solarwinds

Looks like 10.110.2.214 to me. Should also note that IPv6 addresses are most often expressed in hex rather than the decimal notation used for IPv4 addresses. For example: fe80::2571:c4ab:270a:72b7

SolarWinds Serv-U MFT Server has also published a PCI DSS file transfer server guide. (Unlike most other SolarWinds products, Serv-U MFT Server IS often used to directly handle batches of information that include cardholder data, so it features a deployment model that keeps data out of the DMZ, etc.)

Absolutely. When I worked for RhinoSoft (since purchased by SolarWinds) I helped design the Serv-U Gateway, and I spec'ed out the "no data in the DMZ, no connections from the DMZ to the internal network" requirements of the Serv-U Gateway specifically to meet PCI-DSS requirements about holding CCNs or other sensitive data…

This is pretty common in file transfer workflows. Sometimes the server will delete or rename a file as soon as it's downloaded (e.g., here's how Serv-U deletes after download), but this is also something that's often asked of individual clients. (Scripting a "rename" after a successful download is easy in FTP client…

A related "make the auditors" happy post from a Texas system administrator using Kiwi Syslog Server came in today. http://thwack.solarwinds.com/message/199717

>> That's all changed now that you're at SolarWinds though right Jonathan? If you look closely enough you'll see that I'm technically in marketing now. 

Two-minute video of the new secure file sharing feature in action:

You can take a guided tour of ad hoc secure file sharing in this short (2:24) video. Secure File Sharing with SolarWinds Serv-U MFT Server - YouTube

If you're interested in learning more about ad hoc file sharing with Serv-U, please join our Webinar on July 25th (2013): https://www1.gotomeeting.com/register/666423776

Very nice article! Let me expand on the encryption comment a little. >> choosing the SHA1 algorithm ahead of bcrypt, scrypt, or PBKDF2 wasn’t a great move * After the incident, LivingSocial did switch to bcrypt instead of SHA1 (see their updated FAQ). * PBKDF2 can and often does use SHA1 (e.g., SP 800-132 Section 5.3), but…

If you're interested in learning more about ad hoc file sharing with Serv-U, please join our Webinar on July 25th (2013): https://www1.gotomeeting.com/register/666423776

Quick screenshot of the new web client interface: More web transfer screenshots.

Another great article! Piling on: * A related article, "Work in IT? You're a Military Target" is now available over on SolarWinds' new CMDPrompt blog. * If you're worried about TeamViewer (and it appears you should be), you may want to check out SolarWinds' DameWare instead for remote access, remote end user support and…

If you're interested in learning more about ad hoc file sharing with Serv-U, please join our Webinar on July 25th (2013): https://www1.gotomeeting.com/register/666423776

Solutions to all these use cases are coming in Serv-U v15 as the new "File Sharing" feature in Serv-U MFT Server. We'll be holding a webinar to announce and demonstrate the new functionality in late July (2013), and the release containing the functionality will be out before September. Feel free to contact a Serv-U sales…

1) Ignore the CSR...you already have the "Signed Certificate" that you Requested 2) Choose this as your certificate 3) Choose this as your CA certificate 4) You shouldn't need this...the intermediate CA should be enough 5) Make sure you select the key file that was generated when you created your CSR and the original cert…

Did I mention that this is easier with users in a DB? Let me copy/paste a couple of entries from my export to show you the leading pattern. * 1,4,Dir,D:\\temp\\toast\\cleeuser,Access,7967 * 1,2,Dir,D:\\code * 2,2,Dir,D:\\temp\\serv-u_demo_staging,4,Dir,D:\\temp\\serv-u_demo_staging\\Upload,Access,7967 The leading number (1…

>> Do you happen to be a developer of the product? I see you are jonathan at solarwinds, so that should be official enough. Yes, I work here. Did the orange shirt polo and khaki pants give it away?

>> Is it feasible to just copy the private key a from node1 with same password to node2 and utilize the same signed cert? Yes, that's exactly what you should do. (Get it working on one node, and then copy the SIGNED cert and key to the other node and use the same password.) -=-=-=-=-=-=-=- Get Certified File Transfer…

"One throat to choke" if you use the SolarWinds Log Forwarder. 

1) Get OpenSSL for Windows (a great command-line utility) here: http://slproweb.com/products/Win32OpenSSL.html 2) Follow instructions for generating a 2048 certificate, key and CSR like these: http://www.networksolutions.com/support/csr-for-apache-with-mod-ssl-openssl/ (note the "rsa:2048" argument) 3) Go to your favorite…

My pleasure. BTW, if you like what I'm saying, please click the "like" key on the responses - it will help other people see this thread and learn from it as well. Now, on to the second group of questions: #1) Exactly right. Serv-U is a server, which means that it will support client attempts to resume, but that the client…

Yes, any modern "real time" virus scanner will stand in front of applications trying to access local files under after it scans them. That applies to Serv-U too. The one place you need to watch carefully might be enormous files (e.g., >1GB). Different virus scanners behave differently once you start working with files that…

How do you use Serv-U's user export function? It's on the "Domain Users" tab. You click the "Export" button, select an export path, type an export filename (e.g., userdump.csv), and end up with a CSV with all your users and many, many columns of interesting data.

The "Interactive Services detection window" bit makes me think that what you called has actually popped a prompt. For example: What is Interactive Services Detection and Why is it Blinking at Me? If you're just trying to trigger an existing scheduled task, have you tried the "schtasks" command? e.g., How to run existing…

I set up a quick test on my machine. As soon as I started to push some Syslog traffic across I saw the same thing: C:\Users\mynamehere>netstat -ano | find "7116" TCP 127.0.0.1:2225 0.0.0.0:0 LISTENING 7116 TCP 127.0.0.1:2225 127.0.0.1:55878 ESTABLISHED 7116 UDP 0.0.0.0:65066 *:* 7116 Essentially, I think what Kiwi Secure…

>> We have this installed on a Linux server not a Windows server, so RDP (etc.) would not be helpful. Aha - yes, it's the norm to NOT be on the box when configuring Linux servers. I haven't tried it, but if you're up for some fun you may want to try: * Note the binding and port Serv-U is using on your Linux box to handle…

This is great news. FWIW, I'm tracking managed file transfer responses to the Heartbleed crisis on my blog.

Oderks is right: akazi's option #3 is the correct way. Or, you can use a wildcard cert - I've done that too. -=-=-=-=-=-=-=- Get Certified File Transfer Professional (CFTP) certified today at http://www.cftpcert.com.

>> I'm really not 100% certain what features it contains in comparison with Kiwi This page covers the main feature differences: Kiwi Syslog vs. LEM Comparison