Question Restrict FTP access by IP / user

[Salvatore Brosio]

Hi,
i'm trying to restrict access to my ftp service using an .ftpaccess configuration file, but the server is ignoring it.
the content of .ftpaccess is:

<Class ip_allowed>
From 1.2.3.4
</Class>
<IfUser my_user>
<Limit LOGIN>
AllowClass ip_allowed
DenyAll
</Limit>
</IfUser>

Are .ftpaccess disabled by Plesk default settings?
Is this a correct approach?

Thanks in advance!
Salvatore

 

[IgorG]

Actually, Plesk has no functionality to manage .ftpaccess file. The file should be managed manually by editing them through Plesk File Manager

The ProFTPd package shipped with Plesk is shipped with required modules to support .ftpaccess configurations:

mod_core.c
mod_xfer.c
mod_auth.c
mod_ls.c
mod_log.c
mod_site.c

 

[Salvatore Brosio]

Hi Igor, thanks for your reply!

Established that .ftpaccess works by default in Plesk, why ProFTPd is ignoring it?

I can still access my_user home folder with a different user and any IP despite .ftpaccess settings...

 

[IgorG]

I suppose that mod_ban ProFTPd module is required additionally for your purpose.

 

[Alban Staehli]

Actually I found the way to make it work - perfectly working with Plesk Onyx - content of the .ftpaccess file:

<Limit ALL>
    Order allow, deny
    Allow from 127.0.0.1 
    Allow from IP1
    Allow from IP2
    Allow from IP3
    DenyAll
</Limit>