What is .ftpaccess? And, how it can help to secure your hosting account?

Continuing on the subject of security, I would like to explain what .ftpaccess is and how this could help you to keep your hosting account protected.

Let’s go…

What is .ftpaccess?
.ftpaccess is just a simple file which may contain access rules for the FTP service on your hosting server. In other words, this file may contain a set of rules that will allow or deny the connection via FTP depending on different aspects or the situation. Here is an example. Let’s say you want to deny connections via FTP to your account from all IP’s except yours. In this case, .ftpaccess is what you need. Here is what you will need to insert in to your .ftpaccess:

<Limit ALL>
DenyAll
Allow 127.0.0.1
Allow w.x.y.z
</Limit>

Just replace w.x.y.z with your actual IP address. If you are not sure where to find your IP, please visit www.whatismyip.com. It will show you your IP address. Another IP (127.0.0.1) is used for system purposes, so it’s recommended to leave it.

However there are a few things that you should be aware of. The first thing is related to your IP address. Depending on your local ISP, you could have a static or dynamic IP address.

Static IP is a unique identifier (IP address) which is assigned by your ISP to your network. This address will never change until you change/cancel your subscription with your local ISP. If you have a static IP address with your local ISP, then it’s highly recommended to use the .ftpaccess file for advanced account security. If you are not sure whether you have a static or dynamic IP, then you should contact your local ISP to find the answer.

Dynamic IP is not a permanent identifier (IP address). This type of IP address always changes. It means that you could have problems to connect to your hosting account via FTP if you use .ftpaccess since your IP address will always change. If you still want to use the .ftpaccess and have a dynamic IP, then my recommendation is to deny all connections using this set of rules:

<Limit ALL>
DenyAll
Allow 127.0.0.1
</Limit>

If one day you will need to login via FTP,  then simply to login in your hosting control panel and remove the above rule from your .ftpaccess file. This modification can be easily done with a File Manager program which is supported by all hosting companies. After you done what you need, please return back the above deny rule. Having a dynamic IP you will need to perform this set of simple actions every time you need to connect via FTP, so this might be a bit annoying, but there is no other option unless you upgrade to a static IP with you local ISP.

Overall the .ftpaccess file can noticeably help you to increase the protection of your account, since a lot of hacking attempts are done via FTP.

Another thing you should be aware of is the .ftpaccess file should be located in the root folder of your hosting account. Also please bear in mind  that .ftpaccess doesn’t work on all servers. This firm function only works for those servers where the ProFTPD software is installed. At Fluid Hosting, we use ProFTPD on our Linux servers.

If you have realized that .ftpaccess doesn’t work on your hosting account, then you may need to contact you hosting company and ask them to confirm which FTP program is installed on their server.

I hope this article will help you to understand .ftpaccess file and how it can increase the protection of your hosting account.

2 Responses to “What is .ftpaccess? And, how it can help to secure your hosting account?”

  1. [...] This article is already available. Please find more her: What is .ftpaccess? And, how it can help to secure your hosting account? [...]

  2. [...] Excerpt from:  What is .ftpaccess? And, how it can help to secure your hosting … [...]