• Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.

Block Access to Domain and all web users via http

R

RolandE

New Pleskian
Apologies if I posted this in the wrong forum originally. :)

Hello,

I have a client who wishes to run one account on plesk purely for FTP (as network drives on Windows). The plesk web user interface is ideal for them as it makes it very easy to create ftp accounts in this way (without my involvement).

However, I need to block all http traffic to this domain and web users directories. I can't password protect them all because they will be created without my involvement. I have therefore tried to add the following to vhost.conf in the domain's conf directory:

<VirtualHost *IP address here*:80>
<Directory /var/www/vhosts/*my domain here*/httpdocs/>
Options None
AllowOverride None
Order deny,allow
Deny from all
</Directory>
</VirtualHost>

I reboot Apache and it makes no difference - whether I specify a web user's folder, the main httpdocs folder, with or without the Virtualhost tags.

I am assuming this is the way to achieve this result but I am open to suggestions. Hopefully someone can advise.

Thanks,


R.
 
What about something like

# /usr/local/psa/admin/sbin/websrvmng --add-protection --vhost-name=domain.com --directory=/var/www/vhosts/domain.com/httpdocs/
Click to expand...
 
Hello,

Thanks for your reply, unfortunately it doesn't seem to do anything. Initially it conflicted with my vhost.conf edits. I removed those, reran the command and rebooted apache - doesn't seem to restrict access in any way.

Any more ideas?

R.
 
Could you please describe it with more details - do you need fully disabled web service (http port 80) or you want that it worked, but has been protected?
 
Hi.

I would be happy with http completely blocked on that account only. It also needs to block any web user directories (eg. www.domain.com/~mike/) by default.

All other domains on Plesk need to run normally. It's just this account where I want the customer to use the FTP facilities but with no corresponding website/web access.
 
Hi. Thanks for your help. In the end, once I'd called in the new vhost.conf as per your post, the following worked:

<Directory /var/www/vhosts/domain.com/httpdocs/>
Options None
AllowOverride None
Order deny,allow
Deny from all
</Directory>
 
You must log in or register to reply here.

Similar threads

H
Question SSH user can see other subdomain directories even with chrooted shell?
Replies
3
Views
566
Raul A.
R
majdi draouil
Question How to Block Direct IP Access and Ensure All Traffic Routes Through Cloudflare
Replies
1
Views
655
Raul A.
R
J
Resolved Reset owner of folders and files in a domain
Replies
1
Views
717
JuanCar
J
M
Resolved Plesk restore from a ZIP after server failure.
Replies
0
Views
462
mad_inventor
M
Z
Issue Scheduled Backup: Not working anymore and access rights issues since 18.0.66
Replies
14
Views
1K
zamkc
Z
Back
Top