Securing Faspex Firewall Settings Configuring Security Settings Securing Incoming and Outgoing Transfers Verify Private and Public Key Authentication for SSH Server Disabling SELinux SELinux (Security-Enhanced Linux), an access-control implementation, can prevent web UI access. Securing Admin Login Attempts from Unknown IP Addresses Enabling Terms of Service Agreement Installing a Signed SSL Certificate Provided by Authorities In a default IBM Aspera Faspex installation, Apache generates and uses a self-signed SSL certificate. Install a signed certificate provided by authorities to secure your server. Generating and Installing a New Self-Signed SSL Certificate Generate a self-signed certificate if you don't plan on sending your certificate to be signed by a Certified Authority (CA), or if you want to test your SSL implementation while waiting for the CA to sign your certificate. Regenerating Self-Signed SSL Certificate (Apache) File Encryption Options Use Faspex and IBM Aspera High-Speed Transfer Server together to encrypt files before they are transferred, encrypt files at the destination, and encrypt data transferred over the network. Obfuscating File Names in Packages For security reasons, you may want to obfuscate the names of files in your packages. The original file names are not visible in Faspex or in logs.