Issue is fixed in 5.2.1 SP7 patch 7 and 5.3.1 Patch 11 and above. When the user exists however, they can try to brute force the password or DOS the server indefinitely. It also works as expected when the user does not exist. This works as expected for SSH transfers. The number can be configured in the Admin UI > Setup > Miscellaneous > Disconnect after X failed login attempts. SecureTransport used to not disconnect FTP users after number of failed authentication attempts when the user exists in ST.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |