arhost Posted September 8, 2007 Share Posted September 8, 2007 Hi, WHMCS competitors are using cPanel/WHM Remote Access Key to create accounts etc… on the cPanel servers and why is WHMCS using the root password and not the Remote Access Key? Isn’t the Remote Access Key safer? Thanks. 0 Quote Link to comment Share on other sites More sharing options...
generic Posted September 8, 2007 Share Posted September 8, 2007 http://www.whmcs.com/forums/viewtopic.php?t=5833&highlight=remote+access+key 0 Quote Link to comment Share on other sites More sharing options...
WHMCS CEO Matt Posted September 8, 2007 WHMCS CEO Share Posted September 8, 2007 It is possible to use the WHM Remote Access Key but does it give any benefits? All other control panels (Plesk,DirectAdmin,Helm,TCAdmin) use a root username/password setup for remote access so might aswell do the same with cPanel. Matt 0 Quote Link to comment Share on other sites More sharing options...
bebop1065 Posted September 14, 2007 Share Posted September 14, 2007 Is the WHM Remote Access Key safer than user/pass? 0 Quote Link to comment Share on other sites More sharing options...
trine Posted September 14, 2007 Share Posted September 14, 2007 >>Is the WHM Remote Access Key safer than user/pass? Arguably, yes, in the instance where the root user + pass give you access to the panels and sometimes shell, whilst the access keys limit you to the api. But in either case, if either gets into the wrong hands, damage can be done. Best policy is to secure your box, and practice wise security policies across the board. For instance, don't allow ssh logins with user/password, use a 256bit rsa hash instead, and limit the root logins to specific IPs, etc, etc, etc. 0 Quote Link to comment Share on other sites More sharing options...
recoil Posted September 19, 2007 Share Posted September 19, 2007 Maybe I'm misunderstanding: So with WHMCS I have to change my server config any time I change my password (which is frequently)? If that's the case then we definitely need the Remote Access Key option. 0 Quote Link to comment Share on other sites More sharing options...
xperience Posted October 6, 2007 Share Posted October 6, 2007 I'd agree with that. 0 Quote Link to comment Share on other sites More sharing options...
simplybe Posted October 6, 2007 Share Posted October 6, 2007 personally I won't keep the root passwords in a php script. I find it safer to create a limited reseller account and use that password instead. The access key would be a a great addition to whmcs. 0 Quote Link to comment Share on other sites More sharing options...
bebop1065 Posted October 6, 2007 Share Posted October 6, 2007 ... I find it safer to create a limited reseller account and use that password instead. The access key would be a a great addition to whmcs. That is what I do and maybe we should make this a feature/security request. 0 Quote Link to comment Share on other sites More sharing options...
WHMCS CEO Matt Posted October 6, 2007 WHMCS CEO Share Posted October 6, 2007 Support for using the WHM Remote Access Key to interface with cPanel has already been added for 3.4. Matt 0 Quote Link to comment Share on other sites More sharing options...
xperience Posted October 6, 2007 Share Posted October 6, 2007 Support for using the WHM Remote Access Key to interface with cPanel has already been added for 3.4. Matt Brilliant news Matt - cheers! Simon 0 Quote Link to comment Share on other sites More sharing options...
bebop1065 Posted October 6, 2007 Share Posted October 6, 2007 Matt is so attentive. 0 Quote Link to comment Share on other sites More sharing options...
arhost Posted October 6, 2007 Author Share Posted October 6, 2007 Great news!!! Thanks. 0 Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.