Re: [cobalt-users] One User - Admin for multiple domains

[Diana Brake <diana@xxxxxxxxxxxxx>]

Carrie wrote


> This whole thing really has me stumped. When I was at Communitech as a
> hosting client, as far as I could tell *none* of the security stuff we talk
> about was in place. (It may have changed by now.)  Anyone at any time could
> FTP on up the tree and read whatever they wanted to. We automatically got
> shell accounts when our account was set up - and we could browse all over
> the machine.
> And now I'm thinking - how in the WORLD could they do that without going
> insane worrying about their security?
> How could they let us think that our .htpasswd files and out-of-the-web
> files were safe from snooping eyes when they really weren't?
>
> Just blows me away. Here I am with one server and a handful of clients, and
> I'm worried to death about keeping everyone's private stuff PRIVATE.
> Communitech has thousands of clients - have they found some way that they
> can sleep at night not worrying or do they just not care?
>
> Carrie

I agree Carrie, seems scary to me to now when I look back at AIT and my 
accounts there. I had a shell account there and when I was "packing up" to 
leave there, I was trying to create a tarball of everything in my 
accounts..(3 of them..supposed to all be on different machines according to 
them.) I found all three of my accounts on the same machine...and tons of 
others that I could navigate to. When I started the tar process...it began 
collecting EVERYTHING...including all the accounts around mine. I had to 
stop the process because the tarball was gonna be 100s of megs,..maybe gigs 
big. Scary stuff ..no telling what I could have gotten. Glad I'm outta 
there..:)

I too watch things carefully...now I have a machine I can control and limit 
and I'm happy..:)
Glad you got your admin thing working...:)

see ya,
Diana