Do you have some documentation as to what FIPS 140-2 Mode does when you enable it? We need to disallow use of ciphers using less than 112 bit key lengths. Will enabling this option do that, or can you tell me how I can configure the server to not accept these?
Thank you...
FIPS 140-2
-
- Site Admin
- Posts: 2082
- Joined: Tue Sep 29, 2009 6:09 am
Re: FIPS 140-2
Here is the explanation for FIPS 140-2 in Wikipedia: http://en.wikipedia.org/wiki/FIPS_140-2
How to enable it? See here: http://www.wftpserver.com/help/ftpserve ... aneous.htm, you just need to enable "FIPS 140-2 Mode", and after enabling it, all the SSL certificates need to be generated again.
Only have an option "Disable SSLv2", I think it will be secure enough, because modern FTP client software will support secure ciphers, so you don't need to worry about this.
How to enable it? See here: http://www.wftpserver.com/help/ftpserve ... aneous.htm, you just need to enable "FIPS 140-2 Mode", and after enabling it, all the SSL certificates need to be generated again.
Only have an option "Disable SSLv2", I think it will be secure enough, because modern FTP client software will support secure ciphers, so you don't need to worry about this.
-
- Posts: 1
- Joined: Tue Jul 17, 2018 7:58 am
Re: FIPS 140-2
Hello,
Can you please share the process, how to enable FIPS 140-2 mode from command line in Linux servers, without username & password. I have super user privileges on server.
Can you please share the process, how to enable FIPS 140-2 mode from command line in Linux servers, without username & password. I have super user privileges on server.
-
- Site Admin
- Posts: 2082
- Joined: Tue Sep 29, 2009 6:09 am
Re: FIPS 140-2
OK, so you can edit the file "Data/settings.xml" manually, just change the line 19 into:
<EnableFips>1</EnableFips>
And then restart the WingFTP service.
<EnableFips>1</EnableFips>
And then restart the WingFTP service.
-
- Posts: 6
- Joined: Wed Sep 24, 2014 11:30 am
Re: FIPS 140-2
Does anyone know exactly which ciphers/protocols are enabled/disabled after ticking the FIPS 140-2 box?
Thanks
Thanks