Thread: FTP access disabled for main cPanel admin accounts
View Single Post
  #6 (permalink)  
Old 29-04-09, 04:28 PM
Dan's Avatar
Dan Dan is offline
Got root?
  
Join Date: Aug 2007
Location: England, UK.
Posts: 1,340
Send a message via ICQ to Dan Send a message via AIM to Dan Send a message via MSN to Dan Send a message via Yahoo to Dan Send a message via Skype™ to Dan
Default
Quote:
Originally Posted by James View Post
We have turned off default FTP access for main cPanel admin accounts on all our shared web hosting servers because a sustained FTP brute force attack was targeting our shared servers. During security audit our Admins have noticed that number of malicious scripts were uploaded via FTP on the server using legit cPanel login details and the account owners were not even aware of such incidence.

Usually customers using weak FTP passwords are more susceptible to such attacks. We can change the FTP port but its not going to solve the problem. We strictly recommend all our clients to use strong FTP passwords. A strong password comprises of upper case, lower case, numeric and special characters. You should use the combination of these characters to build strong passwords for your FTP accounts.

There is no need to change your cpanel login password as FTP access has been disabled for the master cPanel login username.
Thanks for the info James
__________________
Webhosting.UK.com || cPanel VPS Hosting || Reseller Hosting

Sales: 0808-262-0855
Support: 0800-612-8725
International: +44 191 303 8191
Reply With Quote