TCP 2077
Synopsis
- TCP port 2077 is used by cPanel/WHM’s Web Disk service (cpdavd) for unencrypted WebDAV access; the SSL variant is on 2078.
- Real-world example: shared hosting providers running cPanel (e.g., Bluehost, HostGator, many cPanel VPS/dedicated servers) expose 2077 so WebDAV clients like macOS Finder, Windows WebDAV, or Cyberduck can connect to “Web Disk.”
- This port is often targeted for brute-force or credential-stuffing attacks against cPanel Web Disk accounts when publicly exposed, particularly due to its non-SSL nature.
Observed activity
Last 30 days
Detailed chart