Hi Ahmed, Such questions are more apt in the B2B Data Exchange community. Most of these requests look like feature requests. Better raise a case with GCS to confirm it.
Related to hashing of the passwords, surely MFT would be hashing the passwords with some algorithm as is the case in most enterprise apps. but whichever algorithm is being used right now in the backend, if already using SHA2 based functions, then your requirement would already be fulfilled.
The current upload restrictions rules are :
1) Allow Files with No Extension
2) Allow Files with an Extension.
3) And you have a file extension filter where you can give the extensions you wish should be filtered.
Besides these, if you want additional upload restriction logic, it would have to go as a feature request.