Hsphere light?

[somereseller]

Let's face it, Hsphere is bloated with unsecure or crippled software (phpmyadmin, webmail, etc.)

Could we get an Hsphere light?
Why are our users forced to see the badly implemented IMP when phpBB is optional per example.

I think every app should be optional. We know what's best for our customers (and unsecure apps won't do for mine ).

[Btw the next IMP is really, really good.]

[admin]

Hey there is alway CPanel, Ensim and ect, ect...

Not a one of them give you this option ether ( At least last time i checked ).

You can turn some of the things you said below off e.g. phpBB should be able to disable this in your plan config as far as i know.

I would say 80% of the stuff is an option now. I will send an email over to Psoft about this issue and see what have to say..


As far as IMP we will upgrade this when Psoft does for ever other H-Sphere web host. We are no longer doing any beta's.. Not saying we will not take some RC releases but we will not be the first to take them..

[somereseller]

I know the other CPs don't allow for any change, but Hsphere does, but only on some items (based on what?). I hope they will get everything as an option.

We really need to get rid of IMP, sqwebmail, phpmyadmin and phppgadmin. It's too dangerous.

It's nice to know that we're not the front line anymore

[admin]

We will never be able to drop any WEB Mail but they may be able to make it an option. But thats not going to stop users from going to mail.theredomain.com as this is not some thing that is custom. Only thing Psoft could do without a rewrite of about 40% of there code is disable it from the CP maybe. That also goes for phpMyAdmin and pgMyAdmin.

These are just options there for the clients. We could maybe pust a waring at the top of the page saying this page is not secure but they should really already know this. If they need secure they would need to install it on there own domain and setup SSL for that domain.

Anther option is if you set it up for them on a domain with SSL and tell them to go there.

[somereseller]

Yeah, we already have alternative pages, but when you give to your customers access to a CP, he will certainly experiment and see that phpmyadmin link, thinking, great, it's integrated in the CP, not knowing what the risks are.
Even if he realises that his password is sent in clear, what will I tell him now? "Hum..don't use this, it's just there to give the impression that we offer a lot"

Let's wait for Psoft's answer on this.


About mail.domain, it's not too damagable since users don't know about that page unless you tell them, but I would love to be able to get rid of that monster

[ramjet]

somereseller or admin,
just wondering if you could list what is a problem in h-sphere and why. I know they're all over the forums, but it would be nice to have all the "dangers" listed in one place so we can make informed decisions and give good advice to clients.
for example, what goes wrong with phpmyadmin?
and why is mail.domain.com a problem?
Once bitten, twice shy.
cheers.
Murray.

[admin]

There is not bugs per say in the programs.. What he is talking about is they don't use SSL.

Just my two cents but if we didn't offer these features all we would hear is that "My users have no easy way of admining their databases" or how come you don't offer webmail. I am glad that your users are intelligent programmers who apprently all care a great deal about security instead of ease of use but ours are not. Keep in mind we use this as well for virtuals not just for selling resellers.....

I know it's real easy to say "just upgrade to the new version" or "remove this" and "customize that" but come on we serve a large group of people and the only thing they care about is price, features and uptime. They don't care about security until their site gets hacked. So when we say we don't offer phpmyadmin or imp webmail all they know is that 30 other webhosts do. If I tell them thats its for security reasons then I get "Well my last host had it and ""I""" never had a problem.

We are making a large effort to make this thing stable, secure and reliable but we can't get hsphere to rewrite the entire thing. If you think you have a good idea that they should hear then post it on their site under suggestions. They are more liable to take that into account then me slipping a suggestions email into the 12 other emails or so I send everyday.

Hsphere is the best reseller panel on the market right now. Period end of story.

By the way I know my tone is bad on that paragraph above but just letting out my frustration.. I don't like it anymore than you do about the security issues but I like having customers as well. Believe me we are trying to find a balance...

Somereseller I swear I am going to have to give you your own discussion catagory just to keep up with your upgrade suggestions

Anyway if you really want psoft to change things in the control panel then post there as well.

The more they hear perhaps the more they will listen.

Well anyway I guess I have said my peace

[somereseller]

I will post on their forum, but they don't seem to care much about the posted suggestions.

I'm not asking to get rid of everything, but to offer the option to be able to do it.

I know many people want these programs in the panel and resellers who sell on the street want as much features as they can.

I sell web solutions and the panel is a bonus so that my customers can administrate their accounts. Nobody understands why they have to leave their secure environement to access their DB from the cp and when I tell them that the other URL I gave them is the one to use, then they don't understand why there is that unsecured link in the cp. It just makes no sense to us, does it really to Psoft?

I know that shared hosting is not really the solution for security conscious entreprises, but few SMEs can afford a dedicated server.

[dwhite]

Quote:

Originally posted by hostnet
[b]Just my two cents but if we didn't offer these features all we would hear is that "My users have no easy way of admining their databases" or how come you don't offer webmail. I am glad that your users are intelligent programmers who apprently all care a great deal about security instead of ease of use but ours are not. Keep in mind we use this as well for virtuals not just for selling resellers.....

What do you mean by this? Every poll I've seen regarding hosting and networks lists security within the top three concerns, often right at the top! Denying that it is a top concern is just sticking your head in the sand. I have no trouble convincing my customers that security is a top priority. But as somereseller has stated, we do not have the options available to us. Laying it off on PSoft when it is your choice as the hosting domain seems to me like a horserider blaming the saddlemaker for the saddle not being cinched securely. Maybe I just don't understand your point, but I hope you do mine.