Install with custom admin username

General questions about VestaCP
hdavis84
Posts: 8
Joined: Sat Apr 29, 2017 7:55 pm

Install with custom admin username

Postby hdavis84 » Sat Sep 09, 2017 7:32 am

I've been looking for progress on the topic of being able to change the username for the main admin account. I've noticed the link to the issue in the bug tracker (as seen in this forum thread) is no longer working.

Perhaps the install script would be the easiest way to incorporate a custom admin username. The same way the password is set, the username can be set.

When I go to log on via SSH to admin@, there's always a ton of failed login attempts. This is a big security flaw as the only thing a hacker needs to figure out is the password alone. The password will give them root access to the server as admin is given sudo privileges. We need to make being able to change the main admin account's username, or install with a custom username, a priority.

If I can help in any way, I would be glad to.
Last edited by hdavis84 on Sat Sep 09, 2017 7:53 am, edited 1 time in total.

hdavis84
Posts: 8
Joined: Sat Apr 29, 2017 7:55 pm

Re: Install with custom admin username

Postby hdavis84 » Sat Sep 09, 2017 7:48 am

New Issue:
https://bugs.vestacp.com/issues/584

Enhancement Suggestion - Set Admin username via install script:
https://bugs.vestacp.com/issues/585

hdavis84
Posts: 8
Joined: Sat Apr 29, 2017 7:55 pm

Re: Install with custom admin username

Postby hdavis84 » Sat Sep 09, 2017 8:02 am

Current suggestion to everyone is to create a user account to use for all your main websites, including the primary domain. You can then set the admin account to allow no ssh login.

mehargags
Moderators
Posts: 786
Joined: Sat Sep 06, 2014 9:58 pm
Contact:

Re: Install with custom admin username

Postby mehargags » Sat Sep 09, 2017 4:05 pm

Yes the admin username should be selectable, not hardcoded. I was one of the first users to open this feature request.

Anyhow as other suggested workarounds, also you can
1. block your VestaCP port 8083 and only allow certain IPs (you can use Dynamic IP also)
2. change Default VestaCP port to something else (obfuscate)

skurudo
VestaCP Team
Posts: 7798
Joined: Fri Dec 26, 2014 2:23 pm
Location: Moscow
Contact:

Re: Install with custom admin username

Postby skurudo » Tue Sep 12, 2017 8:48 am

Yeah, but it's hardcoded for now ;-(

Yet another option - use additional basic authorizaition in vesta-nginx:

Code: Select all

auth_basic "Restricted";
auth_basic_user_file /usr/local/vesta/nginx/conf/.htpasswd;
-> DigitalOcean competition - please, support us
-> fix for phpmyadmin - nice and sweet now


Return to “General Discussion”



Who is online

Users browsing this forum: No registered users and 7 guests

cron