Rebex File Server 8.0.9673

Released: Jun 25, 2026

Updates in 8.0.9673

Funktionen

  • Asynchronous SSH/SFTP server core - Rebex File Server features a SSH and SFTP cores that has been upgraded to fully asynchronous mode, making it less thread-hungry and more scalable. A nice side-effect of this is the new asynchronous mode in PreAuthentication and Authentication events.
  • Server-side FTP protocol support - Rebex File Server now supports the FTP protocol in addition to SFTP. Modern FTP over TLS 1.3/1.2 is fully supported. Old-style plain FTP can be optionally enabled as well, which might still be useful when interfacing with legacy systems.
  • Server-side 'copy-data' in SFTP - Rebex FileServer supports copy-data SFTP extension, which makes it possible for compatible SFTP clients to copy files directly on the server.
  • File server API enhancements - Rebex FileServer now features additional events (PreNegotiation, ChangePassword, TunnelClosed. ServerSession has been enhanced as well, making it possible to determine client-side ciphers.
  • ML-KEM support in SSH - Rebex SSH library adds support for post-quantum ML-KEM key encapsulation algorithm. The following hybrid key exchange ciphers are supported: mlkem768nistp256-sha256, mlkem1024nistp384-sha384, mlkem768x25519-sha256. ML-KEM is supported out-of-box on up-to-date PQC-enabled Windows with .NET 3.5 or higher. On other platforms, a PQC plugin is needed.
  • ML-DSA support in SSH - Rebex SSH library also adds support for post-quantum ML-DSA signature algorithm. This is currently 'experimental', because the protocols have not been finalized yet. However, Rebex libraries with ML-DSA are already perfectly suitable for real-world testing. ML-DSA is supported out-of-box on PQC-enabled Windows with .NET 3.5 or higher, or on up-to-date Linux with .NET 10. On other platforms, a PQC plugin is needed.
  • FIPS 140-3 mode and cryptography updates - Instead of FIPS 140-2, the UseFipsAlgorithmsOnly setting now enables 'FIPS 140-3 mode', which limits usage of cryptographic algorithms, and forces usage of cryptographic modules to those provided by .NET or the operating system. Also migrated from the legacy CryptoAPI to the new Windows CNG API. Certificate.LoadPfx, CertificateChain.LoadPfx and Certificate.Associate methods now prefer CNG key stores by default instead of legacy CryptoAPI key stores. HKDF key derivation in XtsStream and FileEncryption classes has been updated to support SHA-2 family of hashes.
  • API updates, changes and deprecations - Version 8.0 of Rebex libraries introduces some breaking changes, either due to abandoning long-deprecating APIs, for security reasons, or to fix compatibility with third-party tools.