The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

[Case 59895] Host Access Control for FTP

Discussion in 'Security' started by planetcaravan, Feb 6, 2014.

  1. planetcaravan

    planetcaravan Member

    Joined:
    Feb 6, 2014
    Messages:
    8
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    I'm using: CentOS release 6.5 (Final) (64bit) with WHM 11.40.1 (build 11)
    I've set a rule on » Security Center » Host Access Control for an IP. There is an image in the attachment.

    After I put in the rule, I'm getting again this event on /var/log/messages.

    Feb 6 22:40:19 myhost pure-ftpd: (?@xx.37.xxx.163) [INFO] New connection from xx.37.xxx.163
    Feb 6 22:40:25 myhost pure-ftpd: (?@xx.37.xxx.163) [WARNING] Authentication failed for user [user@user.tld]

    What's my fault?
     

    Attached Files:

    • zxc.png
      zxc.png
      File size:
      4.3 KB
      Views:
      6
  2. vanessa

    vanessa Well-Known Member
    PartnerNOC

    Joined:
    Sep 26, 2006
    Messages:
    817
    Likes Received:
    22
    Trophy Points:
    18
    Location:
    Virginia Beach, VA
    cPanel Access Level:
    DataCenter Provider
    If I understand correctly, your intention is to block this IP from accessing FTP. If so, you may wish to know that the feature you used is for cPanel services only (Ie cPanel, WHM) and does not apply to FTP, mail, or web services:

    Host Access Control

    If you don't have a firewall like CSF or APF installed (which will block these easily), just dump it directly to iptables:

    Code:
    iptables -I INPUT -s $ip -j DROP
    service iptables save
     
  3. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,723
    Likes Received:
    660
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    Hello :)

    The ability to block IP addresses for ProFTPd and Pure-Ftpd is not currently supported in the Host Access Control option of WHM. There is an internal case (59895) open to address this issue. I suggest blocking the IP address with a firewall management tool such as CSF as a workaround.

    Thank you.
     
  4. planetcaravan

    planetcaravan Member

    Joined:
    Feb 6, 2014
    Messages:
    8
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    Thanks! I will try as soon as possibile CSF.
     
Loading...

Share This Page