Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

wrong permission with ftp user made in cpanel ?

Discussion in 'General Discussion' started by xzyyy, Dec 13, 2009.

  1. xzyyy

    xzyyy Registered

    Joined:
    Dec 13, 2009
    Messages:
    3
    Likes Received:
    0
    Trophy Points:
    51
    for example, make a file using root user, when you create a ftp user like abc@abc.com, login with it in windows explorer, you will find that you can delete this file without any problem.... in other words, virtual ftp user(with domain name), made in cpanel, login with win explorer can delete any files on the server. the worst thing is, such a user can delete all .htaccess files on the server even though you change these files to premission 000.
    could anybody help me to solve it? or just is a bug of cpanel?
    thanks
     
    #1 xzyyy, Dec 13, 2009
  2. xzyyy

    xzyyy Registered

    Joined:
    Dec 13, 2009
    Messages:
    3
    Likes Received:
    0
    Trophy Points:
    51
    could anybody help me, i try once and once but there isn't any solution about this problem....
    thanks
     
    #2 xzyyy, Dec 14, 2009
  3. Kailash1

    Kailash1 Well-Known Member

    Joined:
    Nov 27, 2006
    Messages:
    253
    Likes Received:
    2
    Trophy Points:
    168
    cPanel Access Level:
    Root Administrator
    Twitter:
    If the file is owned by root user, a normal FTP user can not delete/modify/move the file. I tested this on cPanel server, I could not delete the files owned by root. You will need to check further why you are able to delete root owned files using normal FTP user.

    Kailash
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #3 Kailash1, Dec 18, 2009
  4. xzyyy

    xzyyy Registered

    Joined:
    Dec 13, 2009
    Messages:
    3
    Likes Received:
    0
    Trophy Points:
    51
    hey Kailash1,
    sure, you can't delete it in a general ftp client, like flashfxp and so on. but when you login with windows exploror(visit ftp://user@yourdomain.com in windows exploror, fill your usr & passwd into the blank), you can delete it certainly. i try many times, actually you can delete any file with this method. could you please try as my method? thanks
     
    #4 xzyyy, Dec 24, 2009
(You must log in or sign up to post here.)
Loading...
Similar Threads - wrong permission user
  1. speckados

    Wrong format in transfer license

    speckados, Apr 3, 2018, in forum: General Discussion
    Replies:
    1
    Views:
    72
    cPanelMichael
    Apr 3, 2018
  2. karlog

    Mail SSL with AutoSSL gives wrong cert on shared ip

    karlog, Feb 18, 2018, in forum: E-mail Discussion
    Replies:
    2
    Views:
    255
    karlog
    Feb 27, 2018
  3. ItsMattSon

    SOLVED Something went wrong while saving this configuration: Validate class not found from basename

    ItsMattSon, Jan 31, 2018, in forum: General Discussion
    Replies:
    2
    Views:
    506
    cPanelMichael
    Feb 1, 2018
  4. Vijai

    POST notification wrong time and no host address

    Vijai, Jan 17, 2018, in forum: General Discussion
    Replies:
    2
    Views:
    178
    Vijai
    Jan 20, 2018
  5. Bryan Minihan

    Account Transfer + Restore = wrong domain owner

    Bryan Minihan, Jan 16, 2018, in forum: Bind/DNS/Nameserver
    Replies:
    3
    Views:
    231
    cPanelMichael
    Jan 19, 2018

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice