I have a customer who wants to connect using SFXCL and hmac-sha2-512. Under the hmac settings in Core v2-659, I see md5, sha1, sha256, sha384, and sha512. Is it possible to use hmac-sha2-512 with Core FTP?
Follow-up: my customer reports that hmac-sha2-512 and hmac-sha512 are the same thing. He says SFXCL is getting an indication from Core that it's supported but when it tries to initiate use, Core is failing and closing the connection.There's really not much to go on in the Core logs. It just has:
[20180927 15:38:59] [136.181.195.46] connecting
[20180927 15:38:59] [136.181.195.46] connected
[20180927 15:38:59] [136.181.195.46] disconnected ()
The SFXCL logs are pretty detailed. I can submit them if interested.
Is hmac-sha2-512 available?
-
ForumAdmin
- Site Admin
- Posts: 979
- Joined: Mon Mar 24, 2003 4:37 am
Re: Is hmac-sha2-512 available?
it is but the default hmac order will put other hmacs in front if it (ie: sha1/sha256) unless the client only specifies that hmac-sha2-512 be used first. You can change the server order in the SSH/SFTP "..." settings -> mac algorithms, settings
There were also some recent fixes so if you aren't using build 665 or greater, recommend you install that over your existing build.
There were also some recent fixes so if you aren't using build 665 or greater, recommend you install that over your existing build.