Rebex .NET components R6.6: Support for Windows Extended Protection, EWS enhancements

Support for 'Windows Extended Protection'

In response to state-sponsored HAFNIUM attacks against Exchange Server, Microsoft recently added support for Windows Extended Protection. This utilizes TLS channel binding to protect session against man-in-the-middle attacks on SSPI authentication ('Negotiate', 'NTLM' or 'Kerberos' authentication, also known as 'Integrated Windows authentication').

This release adds support for 'Extended Protection' to SMTP, IMAP, POP3, EWS, HTTPS and WebSocket libraries. Customers using on-premise Exchange Servers or IIS servers with 'Integrated Windows authentication' should consider upgrading to R6.6 and enabling 'Extended Protection' on their servers to protect against HAFNIUM-style attacks. Currently, this feature is only supported on Windows.

Exchange Web Services (EWS) enhancements

We optimized our Exchange Web Services library and improved error reporting and logging. If you are going to migrate to Microsoft 365 (formerly Office 365), we strongly recommend upgrading to this release. See the Rebex Extras repository for OAuth 2.0 authentication sample code.

Fixed space calculations in Sftp.GetFileSystemInfo

Sftp object's GetFileSystemInfo method has been fixed. It used to returned wrong information for macOS-based SFTP servers.

New constructor for SshPrivateKey/SshPublicKey

SshPrivateKey and SshPublicKey feature a new constructor that accepts an instance of AsymmetricKeyAlgorithm.

And more...

For a detailed list of changes, see the release history.