Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Secure the Root Login Please

Discussion in 'General Discussion' started by psychodreams, Jun 2, 2007.

  1. psychodreams

    psychodreams Well-Known Member

    Joined:
    Apr 14, 2004
    Messages:
    84
    Likes Received:
    0
    Trophy Points:
    156
    I really think you need to patch up cpanel I use to use the same passwords on my own domains as my root password but it seems any user on the server that has the same password as the root password will have access to everyones domain. Granted you should have a pretty secure root password but you never know by some freak of nature someone could change there password and happen to be the same as your root password.
     
  2. rainboy

    rainboy Active Member

    Joined:
    Mar 2, 2004
    Messages:
    28
    Likes Received:
    0
    Trophy Points:
    151
    Location:
    Eindhoven
    Like you said, the chances that someone got the same password as you would be 1 in a billion if you use a secure password, besides the chance they would try to do this with root is even larger as they would try it with a random user name. And much more productive anyways.

    :confused: I frankly dont understand your complain / suggestion at all.
     
    #2 rainboy, Jun 2, 2007
    Last edited: Jun 2, 2007
  3. eNetHosts

    eNetHosts Well-Known Member

    Joined:
    Apr 21, 2007
    Messages:
    191
    Likes Received:
    0
    Trophy Points:
    166
    I agree.

    Unless you're setting really easy passwords or dictionary based words with a few regular pattern numbers you should be fine. Try to avoid password generators as well.

    Use a form of number, letter, letter, number, number, letter, letter, letter or something like that at random to set your passwords.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  4. eNetHosts

    eNetHosts Well-Known Member

    Joined:
    Apr 21, 2007
    Messages:
    191
    Likes Received:
    0
    Trophy Points:
    166
    And also I forgot to ask, it's okay saying secure the root login but how would you do it?

    Linux to my understanding is username root and password x

    Maybe a double password wouldn't be so bad in some cases for high security servers but setting a hard to remember password in the first place would resolve the need for securing the root password.

    Every time we change our root passwords as a hosting provider, it takes me a few days to remember it after typing it in so many times. If it's easy for anyone just to type off they're head straight away, it probably isn't secure in the first place.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
Loading...

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice