I use WHM and have a client that lost access to cpanel because the site's owner (an organization) turned over the management of the site to a new person. The previous person never used the site so he forgot the password to get into cpanel and ftp. I can login to the site using my WHM password, but I cannot change his password in cpanel because I don't know the old one. How can reset it?
today i changed the password for the admin panel for a customer (username eg. mylogin). 10 minutes later he called me and said that he cannot get into his emailaccount anymore. Checked the password and saw that the emailpassword for his emailaddress (eg. firstname.lastname@example.org) is now the same from the admin panel login. So i changed the emailpassword and checked the admin panel login - it now has the emailpassword. What a mess.. I'm running Plesk Panel 11.5.30 MU47.
i have a dedicated server with CENTOS Enterprise 4.6 i686 on standard i have main problem that there is an account on my server that the password can enter the FTP account normally but not enter the Cpanel i see that if the coanel pass is 951753 he can not log in the cpanel but can enter FTP why this problem ? and how to resolve it
I searched the forum articles but couldn not find specifically what I wanted.. just learning with my dedicated server...
I want to change my cpanel password and ftp password but NOT change the msql server password. I tried to do it in WHM it also changes the database to my website and causes it to go down. (so I changed it back)
I tried to change it under: [URL to actual WHM removed] Password Modification in WHM but it changed the databse program as well.
Again all I want to change is the Cpanel acces and main FTP pass
Im doing this to keep old programmers out of my server)
I'm having a problem with a hacker...using insecure scripts on my user's accounts he changes Cpanel passwords. I do not understand how a script running as user nobody would change a Cpanel password. Any ideas on that ?
I am using mod security (rules from gotroot.com), register_globals are disabled. I also disabled the password reset feature as I thought the hacker may be resetting the passwords and then reading the new password from the email account on the server using the insecure script.
Unfortunately this guy simply doesn't stop...he seems to have a reverse DNS list or something. He is only attacking accounts on one specific server of mine but I am pretty sure he doesn't have root access.
Our hosting clients use cpanel to login to their hosting accounts, however, if they have forgotten their passwords they have no option of having the password set to them, instead they have to contact us.
How can we set our cpanel so that they can have the passwords resent to them without haveing to go through us. The cpanel x theme doesnt seem to have this option.
I was wondering if it would be advisable to use the Password Protected Directory option in cPanels to limit part of my website to no more than 1,000 paying customers (yearly subsciption). Can cPanels handle this? Would accessing .htaccess and .htpassword to authenticate be too slow? Would management become too much? Has anyone attempted this? Are there any good alternatives such as open source programs? I've looked and found a few that are expensive and do way more than what I need.