Port 2078: cPanel Web Disk (SSL) — The Port the Hosting Industry Claimed

What Port 2078 Is

IANA has never officially assigned port 2078 to any service. It sits in the registered port range (1024-49151), available for formal registration, claimed by no one on paper.

In practice, the shared hosting industry claimed it anyway.

Port 2078 is where cPanel serves its Web Disk feature over SSL/TLS. Web Disk is cPanel's implementation of WebDAV, the protocol that lets you mount a remote web server as a local drive, drag files in and out as if it were a USB drive plugged into your computer. Port 2077 handles the unencrypted version. Port 2078 handles the encrypted one.

If you have ever hosted a website on a shared host, Bluehost, HostGator, A2 Hosting, dozens of others, your account almost certainly has port 2078 open, listening, waiting for a WebDAV client to connect.¹

The Registered Port Range

The registered range (1024-49151) sits between the well-known ports (0-1023, requiring root/administrator privileges to bind) and the ephemeral ports (49152-65535, used for temporary client-side connections). Registered ports don't require elevated privileges to bind, and IANA maintains a registry of official assignments, but that registry is not enforced. Software can use any port in this range it wants.

Port 2078 illustrates what happens when a dominant piece of software picks a number and the industry follows: the port becomes de facto standardized without ever touching the IANA registry.²

What Runs Here

cPanel Web Disk (cpdavd) over SSL

The cpdavd daemon handles WebDAV connections on cPanel servers. Port 2077 receives unencrypted connections. Port 2078 receives connections wrapped in TLS.

To connect, a WebDAV client points at https://yourdomain.com:2078/. On macOS, you can use Finder's "Connect to Server" dialog. On Windows, you can map a network drive. The server authenticates you and presents your hosting account's file system.

Security Considerations

Port 2078 is a common target for credential brute-force attacks. Automated scanners probe it constantly on cPanel servers, testing username and password combinations. If Web Disk is enabled and you're not using it, disabling it removes the attack surface.

If you're running cPanel and need Web Disk, restrict port 2078 by IP at the firewall level when possible. The feature supports SSL, so at minimum your credentials travel encrypted, but authentication is still the weak point.

How to Check What's Listening on Port 2078

On any Unix/Linux system:

# See if something is listening on port 2078
ss -tlnp | grep 2078

# Or with older systems:
netstat -tlnp | grep 2078

# Test if a remote host has port 2078 open:
nc -zv hostname.example.com 2078

On macOS:

lsof -i :2078

On Windows:

netstat -ano | findstr :2078

Why Unassigned Ports Matter

The IANA registry is a convention, not a law. When widely deployed software consistently uses a port, that port becomes meaningful regardless of registration status. Port 2078 is part of the silent vocabulary of the shared hosting world: admins, firewall rules, and server hardening guides all reference it, even though officially it belongs to no one.

This is how the Internet actually works. Standards bodies document what's already happened as much as they prescribe what should.