Skip to main content
Solved

FTPCaller - Protocols and algorithms for SFTP

  • August 15, 2024
  • 2 replies
  • 103 views
jonathan.spark
Contributor
Forum|alt.badge.img+4

We are in the process of building a new FME workspace that is using the FTPCaller transformer to upload a file to a remote SFTP server. To ensure we are compliant with our internal security standards around cryptography, I am looking into SSH protocol versions and cryptographic algorithms in use by the FTPCaller transformer.

My questions are:

  • Which versions of the SSH protocol does the FTPCaller support? I know from connecting to a local SSH-2-only SSH server that it supports SSH-2, but does it also support SSH-1? (I hope not!)
  • Is there any way of configuring the cryptographic algorithms used by the FTPCaller? Or, as an alternative, listing the supported/enabled algorithms?

Thank you,

Jonathan

Best answer by debbiatsafe

Hello @jonathan.spark 

The libssh2 library is used for SSH support in the FTPCaller. This library only allows SSH version 2 and does not support SSH version 1.

Unfortunately, there is currently no way to configure the algorithms used by the library, and also no way to list the supported algorithms in the transformer.

You can view the set of algorithms supported by this library on https://libssh2.org/. Since this library is updated periodically, the specific key exchanges, ciphers used by the FTPCaller would be based on the version of FME you’re using.

I hope this information helps.

View original
    Did this help you find an answer to your question?

    2 replies

    debbiatsafe
    Safer
    Forum|alt.badge.img+20
    • debbiatsafeSafer
    • Safer
    • Best Answer
    • August 16, 2024

    Hello @jonathan.spark 

    The libssh2 library is used for SSH support in the FTPCaller. This library only allows SSH version 2 and does not support SSH version 1.

    Unfortunately, there is currently no way to configure the algorithms used by the library, and also no way to list the supported algorithms in the transformer.

    You can view the set of algorithms supported by this library on https://libssh2.org/. Since this library is updated periodically, the specific key exchanges, ciphers used by the FTPCaller would be based on the version of FME you’re using.

    I hope this information helps.

    jonathan.spark
    Contributor
    Forum|alt.badge.img+4

    Hi @debbiatsafe,

    Thank you very much for your reply. These details are very helpful and I will be passing on these details to our internal security team to ensure we are in compliance.

    Thanks again and have a great day.

    Reply


    Helpful Members This Week

    Community Stats

    31,139
    Posts
    118,062
    Replies
    38,758
    Members

    Latest FME

    Terms & ConditionsCookie settings

    Cookie policy

    We use cookies to enhance and personalize your experience. If you accept you agree to our full cookie policy. Learn more about our cookies.

     
    Cookie settings
    A product of
    Safe Software respectfully acknowledges that we live, learn and work on the traditional and unceded territories of the Kwantlen, Katzie, and Semiahmoo First Nations.