{"id":1319,"date":"2009-12-25T06:55:41","date_gmt":"2009-12-25T11:55:41","guid":{"rendered":"http:\/\/g33kinfo.com\/info\/?p=1319"},"modified":"2009-12-25T06:55:41","modified_gmt":"2009-12-25T11:55:41","slug":"block-all-ftp-access-except-your-country","status":"publish","type":"post","link":"https:\/\/g33kinfo.com\/info\/block-all-ftp-access-except-your-country\/","title":{"rendered":"Block all ftp access except your country"},"content":{"rendered":"

I recently had a client that, because of constant security breaches, wanted me to block ftp access from everyone except his home country where all of his clients were located. <\/p>\n

Wait a minute… did you say… <\/p>\n

access… from everyone??? <\/p>\n

except your own country???? <\/p>\n

That fact was slow to dawn on me as the implications of this request slowly began to sink in. This basically meant blocking out the whoooooooole wiiiiiiiiiiiiiiiiide wooooooooooooorld except his home country. Nice huh? <\/p>\n

I do understand his dilemma because the ftp scanners were hitting him pretty hard and compromising his clients accounts left and right because of insecure ftp passwords. He decided to try and disable ftp access and it was up to me to figure out how to do it. <\/p>\n

I found using csf\/lfd and adding the ip cidr notated list from Country IP Blocks<\/a><\/u> to the
\n
\nvim \/etc\/csf\/csf.allow
\n<\/code>
\nfile and then editing the
\n
\nvim \/etc\/csf\/csf.conf
\n<\/code>
\nand removing the port 21 entry from line 40 (default line location) will effectively shut down port 21 (ftp access) except for the IP ranges listed in the csf.allow file, all of which are listed for his own country! <\/p>\n

You will also want to change the testing value in the csf.conf file (first entry) from 1 to 0 to enable the firewall. You will then be able to access the interface through WHM to make further configuration changes as needed.<\/p>\n

To install csf\/lfd simply run the following commands in order;
\n
\nrm -fv csf.tgz
\nwget http:\/\/www.configserver.com\/free\/csf.tgz
\ntar -xzf csf.tgz
\ncd csf
\nsh install.sh
\nperl \/etc\/csf\/csftest.pl
\nsh remove_apf_bfd.sh
\n<\/code><\/p>\n

This will install csf and uninstall apf<\/p>\n

If you are using a VPS, please take note; adding 1000 lines to your csf.allow list may cause an error similar to this:
\nError: The VPS iptables rule limit (numiptent) is too low (503\/512) – stopping firewall to prevent iptables blocking all connections, at line 1294<\/p>\n

You will need to modify this value in order to affect this change on the parent of your vps. To make the needed change, you will need to increase the \u201cNUMIPTENT\u201d value in the VPS configuration file which is located at \/etc\/sysconfig\/vz-scripts\/ directory and then reboot the instance for the changes to take effect.<\/p>\n","protected":false},"excerpt":{"rendered":"

I recently had a client that, because of constant security breaches, wanted me to block ftp access from everyone except his home country where all of his clients were located. Wait a minute… did you say… access… from everyone??? except your own country???? That fact was slow to dawn on me as the implications of… <\/p>\n

Read More<\/i><\/a><\/div>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[9],"tags":[],"class_list":["post-1319","post","type-post","status-publish","format-standard","hentry","category-info"],"yoast_head":"\nBlock all ftp access except your country - Linux Shtuff<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/g33kinfo.com\/info\/block-all-ftp-access-except-your-country\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Block all ftp access except your country - Linux Shtuff\" \/>\n<meta property=\"og:description\" content=\"I recently had a client that, because of constant security breaches, wanted me to block ftp access from everyone except his home country where all of his clients were located. Wait a minute… did you say… access… from everyone??? except your own country???? That fact was slow to dawn on me as the implications of... Read More\" \/>\n<meta property=\"og:url\" content=\"https:\/\/g33kinfo.com\/info\/block-all-ftp-access-except-your-country\/\" \/>\n<meta property=\"og:site_name\" content=\"Linux Shtuff\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/fb.me\/g33kinf0\" \/>\n<meta property=\"article:author\" content=\"https:\/\/fb.me\/g33kinf0\" \/>\n<meta property=\"article:published_time\" content=\"2009-12-25T11:55:41+00:00\" \/>\n<meta name=\"author\" content=\"g33kadmin\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@https:\/\/twitter.com\/drsinger1111\" \/>\n<meta name=\"twitter:site\" content=\"@drsinger1111\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/g33kinfo.com\\\/info\\\/block-all-ftp-access-except-your-country\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/g33kinfo.com\\\/info\\\/block-all-ftp-access-except-your-country\\\/\"},\"author\":{\"name\":\"g33kadmin\",\"@id\":\"https:\\\/\\\/g33kinfo.com\\\/info\\\/#\\\/schema\\\/person\\\/c022e4c40b13ea1b678e6f020756f547\"},\"headline\":\"Block all ftp access except your country\",\"datePublished\":\"2009-12-25T11:55:41+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/g33kinfo.com\\\/info\\\/block-all-ftp-access-except-your-country\\\/\"},\"wordCount\":350,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/g33kinfo.com\\\/info\\\/#\\\/schema\\\/person\\\/c022e4c40b13ea1b678e6f020756f547\"},\"articleSection\":[\"General Info\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/g33kinfo.com\\\/info\\\/block-all-ftp-access-except-your-country\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/g33kinfo.com\\\/info\\\/block-all-ftp-access-except-your-country\\\/\",\"url\":\"https:\\\/\\\/g33kinfo.com\\\/info\\\/block-all-ftp-access-except-your-country\\\/\",\"name\":\"Block all ftp access except your country - Linux Shtuff\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/g33kinfo.com\\\/info\\\/#website\"},\"datePublished\":\"2009-12-25T11:55:41+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/g33kinfo.com\\\/info\\\/block-all-ftp-access-except-your-country\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/g33kinfo.com\\\/info\\\/block-all-ftp-access-except-your-country\\\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/g33kinfo.com\\\/info\\\/block-all-ftp-access-except-your-country\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/g33kinfo.com\\\/info\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Block all ftp access except your country\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/g33kinfo.com\\\/info\\\/#website\",\"url\":\"https:\\\/\\\/g33kinfo.com\\\/info\\\/\",\"name\":\"Linux Shtuff\",\"description\":\"Because I have CRS Syndrome...\",\"publisher\":{\"@id\":\"https:\\\/\\\/g33kinfo.com\\\/info\\\/#\\\/schema\\\/person\\\/c022e4c40b13ea1b678e6f020756f547\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/g33kinfo.com\\\/info\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":[\"Person\",\"Organization\"],\"@id\":\"https:\\\/\\\/g33kinfo.com\\\/info\\\/#\\\/schema\\\/person\\\/c022e4c40b13ea1b678e6f020756f547\",\"name\":\"g33kadmin\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/g33kinfo.com\\\/info\\\/wp-content\\\/uploads\\\/2022\\\/07\\\/minion-researchA.gif\",\"url\":\"https:\\\/\\\/g33kinfo.com\\\/info\\\/wp-content\\\/uploads\\\/2022\\\/07\\\/minion-researchA.gif\",\"contentUrl\":\"https:\\\/\\\/g33kinfo.com\\\/info\\\/wp-content\\\/uploads\\\/2022\\\/07\\\/minion-researchA.gif\",\"width\":512,\"height\":512,\"caption\":\"g33kadmin\"},\"logo\":{\"@id\":\"https:\\\/\\\/g33kinfo.com\\\/info\\\/wp-content\\\/uploads\\\/2022\\\/07\\\/minion-researchA.gif\"},\"description\":\"I am a g33k, Linux blogger, developer, student and Tech Writer for Liquidweb.com\\\/kb. My passion for all things tech drives my hunt for all the coolz. I often need a vacation after I get back from vacation....\",\"sameAs\":[\"https:\\\/\\\/thelinuxreport.com\",\"https:\\\/\\\/fb.me\\\/g33kinf0\",\"https:\\\/\\\/x.com\\\/https:\\\/\\\/twitter.com\\\/drsinger1111\"]}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Block all ftp access except your country - Linux Shtuff","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/g33kinfo.com\/info\/block-all-ftp-access-except-your-country\/","og_locale":"en_US","og_type":"article","og_title":"Block all ftp access except your country - Linux Shtuff","og_description":"I recently had a client that, because of constant security breaches, wanted me to block ftp access from everyone except his home country where all of his clients were located. Wait a minute… did you say… access… from everyone??? except your own country???? That fact was slow to dawn on me as the implications of... Read More","og_url":"https:\/\/g33kinfo.com\/info\/block-all-ftp-access-except-your-country\/","og_site_name":"Linux Shtuff","article_publisher":"https:\/\/fb.me\/g33kinf0","article_author":"https:\/\/fb.me\/g33kinf0","article_published_time":"2009-12-25T11:55:41+00:00","author":"g33kadmin","twitter_card":"summary_large_image","twitter_creator":"@https:\/\/twitter.com\/drsinger1111","twitter_site":"@drsinger1111","schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/g33kinfo.com\/info\/block-all-ftp-access-except-your-country\/#article","isPartOf":{"@id":"https:\/\/g33kinfo.com\/info\/block-all-ftp-access-except-your-country\/"},"author":{"name":"g33kadmin","@id":"https:\/\/g33kinfo.com\/info\/#\/schema\/person\/c022e4c40b13ea1b678e6f020756f547"},"headline":"Block all ftp access except your country","datePublished":"2009-12-25T11:55:41+00:00","mainEntityOfPage":{"@id":"https:\/\/g33kinfo.com\/info\/block-all-ftp-access-except-your-country\/"},"wordCount":350,"commentCount":0,"publisher":{"@id":"https:\/\/g33kinfo.com\/info\/#\/schema\/person\/c022e4c40b13ea1b678e6f020756f547"},"articleSection":["General Info"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/g33kinfo.com\/info\/block-all-ftp-access-except-your-country\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/g33kinfo.com\/info\/block-all-ftp-access-except-your-country\/","url":"https:\/\/g33kinfo.com\/info\/block-all-ftp-access-except-your-country\/","name":"Block all ftp access except your country - Linux Shtuff","isPartOf":{"@id":"https:\/\/g33kinfo.com\/info\/#website"},"datePublished":"2009-12-25T11:55:41+00:00","breadcrumb":{"@id":"https:\/\/g33kinfo.com\/info\/block-all-ftp-access-except-your-country\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/g33kinfo.com\/info\/block-all-ftp-access-except-your-country\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/g33kinfo.com\/info\/block-all-ftp-access-except-your-country\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/g33kinfo.com\/info\/"},{"@type":"ListItem","position":2,"name":"Block all ftp access except your country"}]},{"@type":"WebSite","@id":"https:\/\/g33kinfo.com\/info\/#website","url":"https:\/\/g33kinfo.com\/info\/","name":"Linux Shtuff","description":"Because I have CRS Syndrome...","publisher":{"@id":"https:\/\/g33kinfo.com\/info\/#\/schema\/person\/c022e4c40b13ea1b678e6f020756f547"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/g33kinfo.com\/info\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":["Person","Organization"],"@id":"https:\/\/g33kinfo.com\/info\/#\/schema\/person\/c022e4c40b13ea1b678e6f020756f547","name":"g33kadmin","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/g33kinfo.com\/info\/wp-content\/uploads\/2022\/07\/minion-researchA.gif","url":"https:\/\/g33kinfo.com\/info\/wp-content\/uploads\/2022\/07\/minion-researchA.gif","contentUrl":"https:\/\/g33kinfo.com\/info\/wp-content\/uploads\/2022\/07\/minion-researchA.gif","width":512,"height":512,"caption":"g33kadmin"},"logo":{"@id":"https:\/\/g33kinfo.com\/info\/wp-content\/uploads\/2022\/07\/minion-researchA.gif"},"description":"I am a g33k, Linux blogger, developer, student and Tech Writer for Liquidweb.com\/kb. My passion for all things tech drives my hunt for all the coolz. I often need a vacation after I get back from vacation....","sameAs":["https:\/\/thelinuxreport.com","https:\/\/fb.me\/g33kinf0","https:\/\/x.com\/https:\/\/twitter.com\/drsinger1111"]}]}},"_links":{"self":[{"href":"https:\/\/g33kinfo.com\/info\/wp-json\/wp\/v2\/posts\/1319","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/g33kinfo.com\/info\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/g33kinfo.com\/info\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/g33kinfo.com\/info\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/g33kinfo.com\/info\/wp-json\/wp\/v2\/comments?post=1319"}],"version-history":[{"count":0,"href":"https:\/\/g33kinfo.com\/info\/wp-json\/wp\/v2\/posts\/1319\/revisions"}],"wp:attachment":[{"href":"https:\/\/g33kinfo.com\/info\/wp-json\/wp\/v2\/media?parent=1319"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/g33kinfo.com\/info\/wp-json\/wp\/v2\/categories?post=1319"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/g33kinfo.com\/info\/wp-json\/wp\/v2\/tags?post=1319"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}