|
| Re: Ability to change admin username [message #66786 is a reply to message #65524] |
Tue, 02 June 2009 23:18   |
|
bump..
I know you made it possible to disable the admin account and just use auxiliary logins, but we want the ability to change the admin account name.
This is highly requested and few other panels support it. You could be the one to set a trend of allowing people to use any username for the admin account, unlike cpanel which mandates the username root. You would be the first to have this.
My Site
|
|
|
|
| Re: Ability to change admin username [message #66889 is a reply to message #66796] |
Wed, 03 June 2009 17:59 |
|
We could use the admin account without using a wholesale reseller account, or an auxiliary login. It would prevent brute force attempts against admin without having to disable the admin user in Kloxo.
Secondly, disabling it in Kloxo doesn't disable FTP, SSH, etc. meaning the threat is still VERY MUCH alive.
Thirdly, it would hopefully fix the bug you refuse to recognize where domains can't be properly moved from admin to a client.
My Site
|
|
|
| Re: Ability to change admin username [message #66891 is a reply to message #66889] |
Wed, 03 June 2009 18:05 |
Lxhelp
Messages: 23691
Registered: July 2006 |
The Champion |
|
|
This feature is available now. You can disable admin account and use the system exclusively via auxiliary id.
On Wed, Jun 03, 2009 at 09:59:52PM -0000, Arthur Thornton wrote:
>
>
> We could use the admin account without using a wholesale reseller account, or an auxiliary login. It would prevent brute force attempts against admin without having to disable the admin user in Kloxo.
>
> Secondly, disabling it in Kloxo doesn't disable FTP, SSH, etc. meaning the threat is still VERY MUCH alive.
>
> Thirdly, it would hopefully fix the bug you refuse to recognize where domains can't be properly moved from admin to a client.
|
|
|
| Re: Ability to change admin username [message #66892 is a reply to message #66891] |
Wed, 03 June 2009 18:15 |
|
That isn't what I want.
If you were to read the forum occasionally rather than use email, you would have read I want to merely change the admin username.
I don't want to use an auxiliary login because it doesn't remove the admin account from hosting or anything, meaning SSH, FTP, etc. are still vulnerable to brute force hacking attempts.
If I could change the admin account, they wouldn't be as likely to guess the username of the admin account to be able to brute force into FTP, SSH, etc.
This is very necessary for us, as we do not like auxiliary logins and we would prefer to simply be able to change the admin.
My Site
|
|
|
| Re: Ability to change admin username [message #66893 is a reply to message #66892] |
Wed, 03 June 2009 18:26 |
Lxhelp
Messages: 23691
Registered: July 2006 |
The Champion |
|
|
You can prevent ssh login to the admin account. Once that's done access to the system user admin account would not be possible.
Go to admin home -> shell access and set it to disable.
I can also provide a means to completely disable the system-user admin account.
With the new feature, you can disable the Control Panel access.
So as such, the admin name will not exist anywhere.
On Wed, Jun 03, 2009 at 10:15:45PM -0000, Arthur Thornton wrote:
>
>
> That isn't what I want.
>
> If you were to read the forum occasionally rather than use email, you would have read I want to merely change the admin username.
>
> I don't want to use an auxiliary login because it doesn't remove the admin account from hosting or anything, meaning SSH, FTP, etc. are still vulnerable to brute force hacking attempts.
>
> If I could change the admin account, they wouldn't be as likely to guess the username of the admin account to be able to brute force into FTP, SSH, etc.
>
> This is very necessary for us, as we do not like auxiliary logins and we would prefer to simply be able to change the admin.
> --
> http://www.zantagonox.com
> Number 2 community (non LxLabs-employed) poster on the forum. OVER 1000 help posts on this forum (over 1100 total)!
>
>
|
|
|
|
| Re: Ability to change admin username [message #66915 is a reply to message #66893] |
Thu, 04 June 2009 01:06 |
|
| Lxhelp wrote on Wed, 03 June 2009 18:26 | You can prevent ssh login to the admin account. Once that's done access to the system user admin account would not be possible.
Go to admin home -> shell access and set it to disable.
I can also provide a means to completely disable the system-user admin account.
With the new feature, you can disable the Control Panel access.
So as such, the admin name will not exist anywhere.
On Wed, Jun 03, 2009 at 10:15:45PM -0000, Arthur Thornton wrote:
>
>
> That isn't what I want.
>
> If you were to read the forum occasionally rather than use email, you would have read I want to merely change the admin username.
>
> I don't want to use an auxiliary login because it doesn't remove the admin account from hosting or anything, meaning SSH, FTP, etc. are still vulnerable to brute force hacking attempts.
>
> If I could change the admin account, they wouldn't be as likely to guess the username of the admin account to be able to brute force into FTP, SSH, etc.
>
> This is very necessary for us, as we do not like auxiliary logins and we would prefer to simply be able to change the admin.
> --
> http://www.zantagonox.com
> Number 2 community (non LxLabs-employed) poster on the forum. OVER 1000 help posts on this forum (over 1100 total)!
>
>
|
Even after you said this, the post continued to get votes.
It is now 5/0 yes/no for this.
We use SSH under admin, and we also use it under root.
We use RSA private keys, though most do not.
You can't simply say to us that we have to use admin.aux (or similar) rather than arthur or bobhost as the username while maintaining all admin functionality.
My Site
|
|
|
| Re: Ability to change admin username [message #66928 is a reply to message #66915] |
Thu, 04 June 2009 05:06 |
Lxhelp
Messages: 23691
Registered: July 2006 |
The Champion |
|
|
You can use aurthur.aux for admin account. And completely disable shell access, and you get exactly what you want.
On Thu, Jun 04, 2009 at 05:06:17AM -0000, Arthur Thornton wrote:
> Even after you said this, the post continued to get votes.
>
> It is now 5/0 yes/no for this.
>
> We use SSH under admin, and we also use it under root.
>
> We use RSA private keys, though most do not.
>
> You can't simply say to us that we have to use admin.aux (or similar) rather than arthur or bobhost as the username while maintaining all admin functionality.
|
|
|
| Re: Ability to change admin username [message #66946 is a reply to message #66889] |
Wed, 03 June 2009 06:30 |
 lxbhargava 
Messages: 597
Registered: May 2009 |
Master |
|
|
Hello,
Added a feature to completely disable shell access.
Admin Home -> Shell Access -> Completely Disable System Access To This User
This completely disables system access. The earlier option disables control panel access, together which would mean that the 'admin' name will not exist in the system at all.
On Wed, Jun 03, 2009 at 09:59:52PM -0000, Arthur Thornton wrote:
>
>
> We could use the admin account without using a wholesale reseller account, or an auxiliary login. It would prevent brute force attempts against admin without having to disable the admin user in Kloxo.
>
> Secondly, disabling it in Kloxo doesn't disable FTP, SSH, etc. meaning the threat is still VERY MUCH alive.
>
> Thirdly, it would hopefully fix the bug you refuse to recognize where domains can't be properly moved from admin to a client.
> --
> http://www.zantagonox.com
> Number 2 community (non LxLabs-employed) poster on the forum. OVER 1000 help posts on this forum (over 1100 total)!
>
>
Thanks and Regards
S Bhargava
Lxlabs Support
|
|
|
|
|
| Re: Ability to change admin username [message #66979 is a reply to message #66968] |
Thu, 04 June 2009 12:39 |
Lxhelp
Messages: 23691
Registered: July 2006 |
The Champion |
|
|
We will fix this bug, and make sure that change owner works perfectly.
That should completely solve the problem of the 'admin' user.
On Thu, Jun 04, 2009 at 02:48:19PM -0000, Arthur Thornton wrote:
>
>
> We use ssh under admin. I dont want to have to use an auxiliary login. especially since we have to domains hosted under admin. Can't move them, nor do we want to due to a bug in kloxo and lxadmin.
|
|
|
|
| Re: Ability to change admin username [message #66996 is a reply to message #66981] |
Thu, 04 June 2009 14:26 |
Lxhelp
Messages: 23691
Registered: July 2006 |
The Champion |
|
|
You want to use another user-name right? That can be accomplished by moving the domains to another client.
If you want to use admin itself, then keep it as it is.
On Thu, Jun 04, 2009 at 05:21:27PM -0000, Arthur Thornton wrote:
>
>
> Except that we still use it for SSH.
>
> We still use it for hosting.
>
> We still use it!
> --
> http://www.zantagonox.com
> Number 2 community (non LxLabs-employed) poster on the forum. OVER 1000 help posts on this forum (over 1100 total)!
>
>
|
|
|
| Re: Ability to change admin username [message #67001 is a reply to message #66996] |
Thu, 04 June 2009 15:00 |
|
We want to be able to modify the admin username.
We want to keep hosting under admin, but change the username.
So do numerous clients of yours. We don't want to keep the username admin, but we want the admin account. What is so hard to understand about that. Having the username stationary makes it very vulnerable to hacking attempts.
It seems like the implementation would be quite simple.
My Site
|
|
|
| Re: Ability to change admin username [message #67008 is a reply to message #67001] |
Thu, 04 June 2009 15:21 |
Lxhelp
Messages: 23691
Registered: July 2006 |
The Champion |
|
|
Changing 'admin' name to something else, involves the exact same steps. You will have to use another user for system management, exactly like how it is done now.
On Thu, Jun 04, 2009 at 07:00:29PM -0000, Arthur Thornton wrote:
>
>
> We want to be able to modify the admin username.
>
> We want to keep hosting under admin, but change the username.
>
> So do numerous clients of yours. We don't want to keep the username admin, but we want the admin account. What is so hard to understand about that. Having the username stationary makes it very vulnerable to hacking attempts.
>
> It seems like the implementation would be quite simple.
> --
> http://www.zantagonox.com
> Number 2 community (non LxLabs-employed) poster on the forum. OVER 1000 help posts on this forum (over 1100 total)!
>
>
|
|
|
| Re: Ability to change admin username [message #97754 is a reply to message #67008] |
Fri, 20 April 2012 03:19 |
|
Ye changing admin but keeping the wholt functionalilty alltogether that it has to drive the server is what you want ,mainly play it a la Houdini to trick the eye and see instead of admin guantanamera2042 ,but not shattered but having admin intact,yes I agree but this guys will delay in add it to an upgrade,it is very possible however to achieve this on your side in fact Ill might do this since I want admin to be off seen certainly from hackers as you depict,I managed to achieve it in the past and like Im an unorthodox programmer certainly forget to write down stuff,and now I dont remind how I did it cos I remember I could log with aux very allright and whenever admin user was used it was disabled to log in so the problem was solved,really dont think I used ssh/and drop down menu disabled then click the arrow where it says Completely Disable System Access To This User because now I do that and it just dont work.
Can anybody help me to remind how to truly disable admin in order to use aux for loggin in?
Maybe I went and edited some files,but dont remember.
Look men we all know that in order to change admin for other words is required a new rule ,so please help me bring this rule to life and tell me in which file to addit,explaining carefully in which part of page and also bringing paths please.
see ya best girl me
[Updated on: Fri, 20 April 2012 03:22] Report message to a moderator |
|
|
|
|
|
| Re: Ability to change admin username [message #106544 is a reply to message #65524] |
Wed, 15 May 2013 22:30 |
|
I'm looking for exactly the same function/feature that OP wants and that is to have admin account with different username but completely the same functions/features/privileges. So because dudes from lx team can't understand it, ill explain at very simple: when im logging in with admin account i wouldn't like to type "admin", i'd rather type something like "djelica", but when i login as "djelica" i'd like to have everything the same like I've typed "admin". That also means that when I try to login with username "admin" it would show error because username "admin" after applied function/feature shouldn't exist right ? Ok, that also means that SSH access is available for "djelica" and NOT for "admin".
I've never moded/changed my kloxo installations as im not even near linux expert, but from my current thinking (without digging deeper into problem) simple function/script that applies the feature would be:
lets say we are changing from "admin" to "djelica"
# rename directory /home/admin to /home/djelica
# update sql tables where it says user "admin" change to be "djelica"
# remove SSH access to "admin" and add access to "djelica"
# rename ftp username from "admin" to username "djelica"
.
.
.
probably a few more
end of god damn simple function...
And viola, we have user djelica with everything the same like user admin, but now our current admin isn't exposed to dead simple attacks that target username "admin".
I've tried to simplify it as much as i could and make it clear and i understand that you guys in Lx team probably aren't getting paid for your "job", but this is dead simple and shouldn't take longer than one day for one programmer to write the script, add feature to kloxo and test it, you don't even need new button with icon in kloxo, just list new input under some of existing buttons.
|
|
|
|
|
|
HyperVM & Kloxo Support
Members
Search
Help
Register
Login
Home
8 / 100%
