Our features site is undergoing a refresh! Be sure to explore the revamped site and discover our latest product roadmap launching here on Monday, March 18th.
New Topic
cPanel & WHM Feature RequestsTopicFile Management
Properties
Category File Management
Tags security, pure-ftpd, ftp, anonymous, default, pci, SWAT, v70

FTP service more secure by default

Feature Importer shared this idea 13 years ago
Completed

As a Server Administrator, I want the FTP service more secure by default, so that the overall security regarding the default settings for FTP is increased.


Currently the default setting for Anonymous FTP in Pure-FTPd allows anonymous logins. Changing this to disallow anonymous logins would aid in increasing initial server security.


We should disallow anonymous logins disallow anonymous uploads and disallow root logins via FTP by default.


  1. Allow Anonymous Logins = No
  2. Allow Anonymous Uploads = No
  3. Allow Logins with Root Password = No

16 I like this idea 0  
Best Answer
photo
Kelli Gray 6 years ago

This was shipped in v70 for new installs.

https://documentation.cpanel.net/display/70Docs/70+Release+Notes#id-70ReleaseNotes-AllowrootloginstoFTPoptiondefaultstoNoinnewinstallations

Replies (3)

photo
1
Michael Findlay 8 years ago

I can see the features on the WHM side now? But i agree all three should be no by default.

photo
1
benny@cpanel.net 8 years ago

It looks like the only option that isn't currently defaulted to 'no' is logins with the root password. I'll definitely see what we can do about getting that one adjusted as well!

photo
1
Kelli Gray 6 years ago

This was shipped in v70 for new installs.

https://documentation.cpanel.net/display/70Docs/70+Release+Notes#id-70ReleaseNotes-AllowrootloginstoFTPoptiondefaultstoNoinnewinstallations

Replies have been locked on this page!

cPanel, WebHost Manager and WHM are registered trademarks of cPanel, L.L.C. for providing its computer software that facilitates the management and configuration of Internet web servers.