In ftpUtilities.py file, there is ftp.password = hash.hexdigest(). You should replace hash.hexdigest() with password. That’s all you need. Nothing else. Use normal ftp:// port 21 not sftp://
I guess none of the early users of CP on ubuntu 22.04 use FTP.
Ubuntu 22.04 (and RH 9 Rocky 9 alma 9) have PureFTPd 1.5x which does not support MD5 hash.
CP uses MD5 hash for FTP passwords.
A safer solution at the moment is to install the following from Ubuntu 20.04 and put them on hold for updates:
libssl1.1_1.1.1 (which has the openssl vulnerability patched)
pure-ftpd-common 1.49
pure-ftpd-mysql 1.49
The Deb packages are available for download from the ubuntu 20.04 archive.
Anyone know when a fix will be available?
I’ve run into this issue and now I have to change 100+ hashed passwords into plaintext ones as otherwise connections don’t work anymore. Any other solution? pure-ftp config is set do MD5 hashing.
Hi there, got the problem on a fresh Alma Linux 9 install, Cyberpanel up to date with latest commit, fixed it the dirty way by editing /usr/local/CyberCP/plogical/ftpUtilities.py