Bitninja FTP Captcha Server

Symptoms

ProFTPD, sometimes outdated, appears to be running on FTP ports when Pure-FTPD is enabled and running on the system. If ProFTPD is not installed or running on the server, scanning tools like Nmap show that it is running on the traditional FTP ports, and if connecting to the FTP server shows a banner like this:

220 BitNinja FTP CAPTCHA server

Description 

According to BitNinja's documentation, BitNinja is a general-purpose security-as-a-service server defense tool powered by a social defense system and many active defense modules.

Read more about BitNinja here:

Bitninja - Introduction

One of the many modules that are included with BitNinja is the FTP Captcha Server Module. BitNinja's FTP CAPTCHA server runs as a go-between for the cPanel server's FTP service and the outside world. This can fool security scanners into reporting your server as having FTP vulnerabilities when your personal FTP server is up to date since it is actually scanning Bitninja's FTP server.

Read more about the FTP Captcha module here:

Bitninja Modules - Captcha FTP

Workaround

Make sure your BitNinja installation is up to date to ensure you have the latest version of each BitNinja module. This will ensure that ProFTPD server used by the FTP Captcha module is also up to date.

For updating on CentOS and Cloudlinux:

yum update bitninja

Read more about updating BitNinja here:

Bitninja Installation - Updating

Please note, that Bitninja FTP Captcha Server is not provided or supported by cPanel. We want everyone who uses cPanel to have an amazing experience, both with our software and our support. Sometimes that means pointing you to an expert or external resource about your particular problem if it is not a cPanel-related issue, or if the external resource will better address your reported issue.