The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Pure-Ftp hole?

Discussion in 'General Discussion' started by adapter, Mar 9, 2009.

  1. adapter

    adapter Well-Known Member
    PartnerNOC

    Joined:
    Sep 17, 2003
    Messages:
    391
    Likes Received:
    0
    Trophy Points:
    16
    Hi

    we have different Cpanel server, this week we got a large number of account on different server that have upload .pl or .cgi spam script, checking the logs we have found that these files are upload by FTP

    Mar 8 21:26:56 pure-ftpd: (user@ips) [NOTICE] /home/user//public_html/scgi-bin/cgimail.pl uploaded (1331 bytes,

    as we can see in the log we dont have any failed login before of the upload so seem that there isnt any brute force attack

    i confirm that we already use complex ftp password with the whm generator and we have enable the brute force attack system on cpanel
     
Loading...

Share This Page