[Case 59895] Host Access Control for FTP

planetcaravan

• February 06, 2014 16:09

I'm using: CentOS release 6.5 (Final) (64bit) with WHM 11.40.1 (build 11) I've set a rule on " Security Center " Host Access Control for an IP. There is an image in the attachment. After I put in the rule, I'm getting again this event on /var/log/messages. Feb 6 22:40:19 myhost pure-ftpd: (?@xx.37.xxx.163) [INFO] New connection from xx.37.xxx.163 Feb 6 22:40:25 myhost pure-ftpd: (?@xx.37.xxx.163) [WARNING] Authentication failed for user [user@user.tld] What's my fault?

• 

  vanessa

  • February 07, 2014 01:33

  If I understand correctly, your intention is to block this IP from accessing FTP. If so, you may wish to know that the feature you used is for cPanel services only (Ie cPanel, WHM) and does not apply to FTP, mail, or web services: [url=http://docs.cpanel.net/twiki/bin/view/AllDocumentation/WHMDocs/DenyAccess]Host Access Control If you don't have a firewall like CSF or APF installed (which will block these easily), just dump it directly to iptables: iptables -I INPUT -s $ip -j DROP service iptables save
  

  0
• 

  cPanelMichael

  • February 07, 2014 13:40

  Hello :) The ability to block IP addresses for ProFTPd and Pure-Ftpd is not currently supported in the Host Access Control option of WHM. There is an internal case (59895) open to address this issue. I suggest blocking the IP address with a firewall management tool such as CSF as a workaround. Thank you.

  0
• 

  planetcaravan

  • February 07, 2014 13:51

  Thanks! I will try as soon as possibile CSF.

  0

Please sign in to leave a comment.