Your best friend for file transfer.

Fetch application logoFetch

Identifying supported ciphers in 5.8.2 (2 posts)

  • Started 2 years ago by Norm Roye
  • Latest reply 2 years ago from Jim Matthews
  • Norm Roye Member

    Amazon Vendor Central is upgrading their file transfer infrastructure and claim to have identified a deficiency in our SFTP connection security. They say:

    /*
    Since completing the SFTP URL migration, we’ve noted that you’re connected through weaker cipher keys. Weaker cipher key connections will start being rejected on July 31.

    You must take immediate action to ensure that your SFTP client uses strong cipher keys. If you don’t know which ciphers your client uses, make sure that you use the latest version of the SFTP client.
    */

    We are currently using Fetch 5.8.2 on macOS 11.6 Big Sur. How can I determine which ciphers Fetch supports?

    Thanks!

    Posted 2 years ago #

  • Jim Matthews Administrator

    Hi,

    Fetch uses the OpenSSH implementation included in macOS, so it uses whatever ciphers are provided by macOS. The

    ssh -Q cipher

    command in Terminal will list the supported ciphers on your machine. On my macOS 11.6.4 machine it lists:

    3des-cbc
    aes128-cbc
    aes192-cbc
    aes256-cbc
    rijndael-cbc@lysator.liu.se
    aes128-ctr
    aes192-ctr
    aes256-ctr
    aes128-gcm@openssh.com
    aes256-gcm@openssh.com
    chacha20-poly1305@openssh.com

    Thanks,

    Jim Matthews
    Fetch Softworks

    Posted 2 years ago #

Reply

  • Or nickname, if you prefer.
  • This will be kept confidential.
  • This is to ensure that you’re a person, not a spambot.