How do I use the public_ftp folder?
On your account by default there's a public_ftp folder. The public_ftp folder is only used for Anonymous Logins via FTP. For security reasons, on Web Hosting Hub servers anonymous logins by FTP are blocked. So even though the folder is placed there by cPanel, it has no purpose. You can delete the folder, however since our servers block anonymous logins it has no practical function.
Did you find this article helpful?
Tweet
« Prev
FAQ: Common Website Issues
Category
Website Troubleshooting
Comments
3 Points
|
2013-07-15 6:41 pm
This is really stupid not to have this. This is the first hosting company that I have ever used without it. If I had known, I would not have signed up for the service. Really really stupid not to have this feature.
|
Staff 12,339 Points
|
2013-07-15 7:39 pm
Hello abilityone,
For security reasons, we don't allow anonymous FTP logins, since it lets anyone upload files/folders to your account. I wouldn't recommend to any host, especially a shared host to allow this level of access to the world. For example, someone could upload a script that is used for kicking off malware/viruses, or upload a bunch of pharmaceutical adds and spam people with links to them. If you want to allow FTP access for an additional person, you can simply create an FTP account in cPanel. If you have any further questions, feel free to post them below. Thank you, -John-Paul |
n/a Points
|
2019-05-23 9:32 am
But if you wanted to allow read only access to files, what's the security risk? I need to host some images on my cpanel for a web page to access and don't want the user to have to log in every time... I need to use FTP because they are uploaded by an IoT device - this is working fine with a service account I have set up but getting the images out anonymously seems to not be possible... |
Staff 17,314 Points
|
2019-05-23 4:15 pm
Hello Jonathan,
The main issue is basically that if you're using public FTP then the images can be accessed by anyone who can get to your FTP. So, one avenue of possible security risk is being hit by an artificially generated request for files- basically, a DDOS (Distributed Denial Of Service) attack. It's typically an attempt to overwhelm the server by numbers of requests. There's a pretty good discussion about IoT devices (and the best protocol for sharing files) in this forum. You may also want to contact the manufacturer to ask if there's a more secure way of handling files for your device. |
Help Center Login
Related Questions
Here are a few questions related to this article that our customers have asked:
Ooops! It looks like there are no questions about this page.
Would you like to ask a question about this page? If so, click the button below!
We value your feedback!
There is a step or detail missing from the instructions.
The information is incorrect or out-of-date.
It does not resolve the question/problem I have.
new! - Enter your name and email address above and we will post your feedback in the comments on this page!