Encrypting Passwords

EFT Server provides the following password-encryption features:

Use a two-way TwoFish encryption cipher on passphrases that must be reversible.
Use a one-way hash for passphrases that do not need to be reversible.
Encrypt all passwords used in the following areas:
- ClientFTP.dll client authentication
- Authmanager.dll for AD, ODBC, and LDAP authentication
- PGP private key passphrases
- ARM connection string password

PCI DSS requirement 8.4 states that you should encrypt all passwords during transmission and storage on all system components.

This online help file is for EFT Server version 6.3.x. For other versions of EFT Server, please refer to http://help.globalscape.com/help/index.html.

(If the Index and Contents are hidden, click Show Contents pane in the top left corner of this topic.)

If this help topic did not help you, search the Knowledgebase or pose your question in the GlobalSCAPE User Forum.

For the most up-to-date information, to view version history, updates, and activation instructions; or to download a PDF of this user guide, visit the Support Center at http://www.globalscape.com/support.

Leave compliments or complaints regarding the help in the User Forum. At a minimum, please provide the topic title and why you needed help.

Last modified: 20-Dec-11 at 16:00:02