Skip to main content
Solved

FTPCaller - Protocols and algorithms for SFTP

  • August 15, 2024
  • 2 replies
  • 103 views

jonathan.spark
Contributor
Forum|alt.badge.img+4

We are in the process of building a new FME workspace that is using the FTPCaller transformer to upload a file to a remote SFTP server. To ensure we are compliant with our internal security standards around cryptography, I am looking into SSH protocol versions and cryptographic algorithms in use by the FTPCaller transformer.

My questions are:

  • Which versions of the SSH protocol does the FTPCaller support? I know from connecting to a local SSH-2-only SSH server that it supports SSH-2, but does it also support SSH-1? (I hope not!)
  • Is there any way of configuring the cryptographic algorithms used by the FTPCaller? Or, as an alternative, listing the supported/enabled algorithms?

Thank you,

Jonathan

Best answer by debbiatsafe

Hello @jonathan.spark 

The libssh2 library is used for SSH support in the FTPCaller. This library only allows SSH version 2 and does not support SSH version 1.

Unfortunately, there is currently no way to configure the algorithms used by the library, and also no way to list the supported algorithms in the transformer.

You can view the set of algorithms supported by this library on https://libssh2.org/. Since this library is updated periodically, the specific key exchanges, ciphers used by the FTPCaller would be based on the version of FME you’re using.

I hope this information helps.

View original
Did this help you find an answer to your question?

2 replies

debbiatsafe
Safer
Forum|alt.badge.img+20
  • Safer
  • Best Answer
  • August 16, 2024

Hello @jonathan.spark 

The libssh2 library is used for SSH support in the FTPCaller. This library only allows SSH version 2 and does not support SSH version 1.

Unfortunately, there is currently no way to configure the algorithms used by the library, and also no way to list the supported algorithms in the transformer.

You can view the set of algorithms supported by this library on https://libssh2.org/. Since this library is updated periodically, the specific key exchanges, ciphers used by the FTPCaller would be based on the version of FME you’re using.

I hope this information helps.


jonathan.spark
Contributor
Forum|alt.badge.img+4

Hi @debbiatsafe,

Thank you very much for your reply. These details are very helpful and I will be passing on these details to our internal security team to ensure we are in compliance.

Thanks again and have a great day.


Cookie policy

We use cookies to enhance and personalize your experience. If you accept you agree to our full cookie policy. Learn more about our cookies.

 
Cookie settings