Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

How to determine the user of an uploaded file?

Discussion in 'Security' started by Musepuckl, Dec 31, 2017.

  1. Musepuckl

    Musepuckl Registered

    Joined:
    Dec 31, 2017
    Messages:
    1
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    Santa Barbara CA
    cPanel Access Level:
    Reseller Owner
    Hello,
    I apologize if this question sounds dumb to many here.

    Is there a way to determine which user uploaded a file into the public_html directory or any subdirectory (not into a /username/ directory)?
    I can see the upload date, but not the user.

    Thanks!
     
  2. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    42,802
    Likes Received:
    1,714
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Hello,

    As a reseller, you are limited to the amount of logs you have access to review. You could try downloading the "Raw Access" logs for the affected account to see if you can find the log entry that matches the timestamp associated with the creation of the malicious file:

    Raw Access - Version 68 Documentation - cPanel Documentation

    Thank you.
     
    quizknows likes this.
Loading...

Share This Page