IP Blocker misdetecting rules

Kent Brockman

July 19, 2015 18:16

Hello guys, you may want to review this issue. It happens when you have a complex dynamic website, and you need to enforce the security by blocking public access to diverse components by using a command like "Deny from". The problem arise when you simply use "Deny from all", because cPanel identifies the "all" as an IP. And given that the UI does not allow to use IP's, it may for instance confuse end users. You can see an example in the below pasted link: - Removed Please Attach Images to Posts - Is there any possibility that you filter out those useless "all" in the IP Blocker screen? Thanks in advance!

Comments

7 comments

cPanelMichael

July 28, 2015 14:34
Hello :) Could you attach the image directly to your post instead of linking to a third-party image hosting website? This will allow us to review the example you referenced. Thank you.
0
Infopro

July 28, 2015 14:37
First post updated with image.
0
Kent Brockman

July 28, 2015 14:58
Thank you INFOPRO!
0
cPanelMichael

August 28, 2015 13:42
Hello :) The current behavior is by design. For instance, the "IP Blocker" option in cPanel will display the corresponding entry if you add "Deny From All" to /home/$username/public_html/.htaccess. This helps to prevent duplicate entries in the event an IP address is already blocked in the .htaccess file. Could you elaborate on how you would prefer the interface to handle these entries? Thank you.
0
Kent Brockman

September 14, 2015 02:03
I think I wasn't totally clear on this one. The problem is that the IP Blocker feature read every ocurrence of "Deny from" string an print it in screen. The screen capture I've attached is obtained when you have a .htaccess file with something like this (a common security config for WordPress sites):
Require all denied Order allow,deny Deny from all Require all denied Order allow,deny Deny from all Require all denied Order allow,deny Deny from all Require all denied Order allow,deny Deny from all Require all denied Order allow,deny Deny from all
Try uploading this to a root ftp folder, and then check the IP Blocker screen at the acocunt's cpanel, it should be self-explanatory :)
0
cPanelMichael

September 14, 2015 19:44
The problem is that the IP Blocker feature read every ocurrence of "Deny from" string an print it in screen

Internal case FB-48372 should address this issue. There's currently no time frame for it's release, but you can monitor our change log at:
0
Kent Brockman

September 14, 2015 23:13
Thanks. Great to see it will be addressed sometime.. :)
0

Please sign in to leave a comment.

Comments

Didn't find what you were looking for?