Different password for all services

[Datcrack]

Hi,

When we change a password for a host, the cpanel, mysql, ftp and so passwords are all changed to the same. I believe this to be a security risk some how as not every person should have the cpanel access if he/she knows the ftp password for the host.

Further more, a person that has access to the FTP, has the access to the mail folders and could simply read the whole mail of the host or even delete the mail folder.

Is there any solution to this ?

Thanks.

[rpmws]

Hi,

When we change a password for a host, the cpanel, mysql, ftp and so passwords are all changed to the same. I believe this to be a security risk some how as not every person should have the cpanel access if he/she knows the ftp password for the host.

Further more, a person that has access to the FTP, has the access to the mail folders and could simply read the whole mail of the host or even delete the mail folder.

Is there any solution to this ?

Thanks.

Typically changing the main account password is done for a reason, often to stop unauthorized access by people who have the old password and / or to allow full access with the new credentials you set. NOT changing all the important passwords associated with the account would be the security risk IMHO. Not the other way around.

If you would like to grant FTP access to a specific user you can do that by creating a new FTP account and you can choose to give them access to ONLY the public_html or "www" folder.