No, we’re not vulnerable to the libssh attack CVE-2018-10933

Many of our customers these days have sent us emails asking our team if Syncplify software products are affected by the libssh vulnerability documented in CVE-2018-10933.

Good news: none of our software products is vulnerable.

As mentioned in previous articles in this knowledge base, our products are not based on 3rd party open source libraries and solutions (like OpenSSL, OpenSSH, libssh, …) therefore our software does not inherit their bugs.

Regarding the upcoming version 5

We, the Syncplfy team, have been asked by few customers and prospect customers about the upcoming version 5 of Syncplify.me Server! the release date for the last few months now. We know the release date keeps being postponed due to several reasons, some that were out of our hands. Syncplify’s goal and us, behind it, is to provide the most reliable and secure product to you. That’s one reason why we keep delaying the release of the new version. We run and re-run multiple tests and sessions to ensure the product satisfies us, then to relay the satisfaction to you. Although we understand some might be upset by the fact of “unfulfilled expectations”, we focus on long-term satisfaction and security. Thus, the Syncplify team asks you, our dear customers, to accept our apologies and continue to support us.

Thank you and sincerely yours,

Syncplify team

Syncplify.me Server! v4.2.5 released

We have just released version 4.2.5 of our Syncplify.me Server! software. This version features the following improvements:

  • Fixed: issue that prevented some secondary nodes in HA deployments from creating their own system services

Warning: upgrading to this version from any version prior to 4.0.34 will invalidate your license, so please if you are a customer – before you upgrade – contact us to request a license reset.

Note: if after the update you notice any unexpected behavior in the web interface, just hit Ctrl-F5 in your browser; that will force the browser to reload the page as well as all back-end scripts and update the ones that may have been cached from previous versions of the software.

As usual you can download this new release from our website.

Syncplify.me Server! v4.2.4 released

We have just released version 4.2.4 of our Syncplify.me Server! software. This version features the following improvements:

  • Fixed: occasional lingering of sockets in CLOSE_WAIT status when behind firewalls that act as proxies
  • Fixed: occasional huge delay upon accepting new connections when the number of VFSs is high

Warning: upgrading to this version from any version prior to 4.0.34 will invalidate your license, so please if you are a customer – before you upgrade – contact us to request a license reset.

Note: if after the update you notice any unexpected behavior in the web interface, just hit Ctrl-F5 in your browser; that will force the browser to reload the page as well as all back-end scripts and update the ones that may have been cached from previous versions of the software.

As usual you can download this new release from our website.

Syncplify.me Server! v4.2.3 released

We have just released version 4.2.3 of our Syncplify.me Server! software. This version features the following improvements:

  • Fixed: early detection and resolution of the [%USER_HOME%] parameter in the VFS target

Warning: upgrading to this version from any version prior to 4.0.34 will invalidate your license, so please if you are a customer – before you upgrade – contact us to request a license reset.

Note: if after the update you notice any unexpected behavior in the web interface, just hit Ctrl-F5 in your browser; that will force the browser to reload the page as well as all back-end scripts and update the ones that may have been cached from previous versions of the software.

As usual you can download this new release from our website.

Syncplify.me Server! v4.2.2 released

We have just released version 4.2.2 of our Syncplify.me Server! software. This version features the following improvements:

  • Fixed: bug that prevented correct import of virtual folder permissions when converting from an old version 3.x
  • Fixed: incorrect log line human-readable comment upon file rename

Warning: upgrading to this version from any version prior to 4.0.34 will invalidate your license, so please if you are a customer – before you upgrade – contact us to request a license reset.

Note: if after the update you notice any unexpected behavior in the web interface, just hit Ctrl-F5 in your browser; that will force the browser to reload the page as well as all back-end scripts and update the ones that may have been cached from previous versions of the software.

As usual you can download this new release from our website.

Syncplify.me Server! v4.2.1 released

We have just released version 4.2.1 of our Syncplify.me Server! software. This version features the following improvements:

  • Fixed: sporadic VFS reload issue that only affected HA (High-Availability) deployments

Warning: upgrading to this version from any version prior to 4.0.34 will invalidate your license, so please if you are a customer – before you upgrade – contact us to request a license reset.

Note: if after the update you notice any unexpected behavior in the web interface, just hit Ctrl-F5 in your browser; that will force the browser to reload the page as well as all back-end scripts and update the ones that may have been cached from previous versions of the software.

As usual you can download this new release from our website.

FAQ: How to receive support from Syncplify?

Occasionally our users ask us what their support options are. This article is intended to provide a clarification on that topic.If you are using the Free Edition of our products you can:

In addition to that, if you are still using the free edition for evaluation purposes and you intend to buy once your issue is resolved, you may also:

And, of course, if you are a registered customer with a valid and active support subscription, you are welcome to:

Why did my license revert back to FREE?

Occasionally we receive emails from customers whose paid license has reverted back to “free” or “freeware” mode, and they ask us why that happened.

To reduce the phenomenon of software piracy, Syncplify.me Server! binds its licenses to a so-called System-ID upon their activation. This means that, once a license has been activated, it is bound to that System-ID forever, unless we reset it (thus allowing activation on a new machine or VM).

You can find your System-ID in the License page of the SuperAdmin web interface:

Continue reading

Haven't found the answers you were looking for?Ask us your question!