O
O
Oval Enoc2019-07-05 01:43:24
Network administration
Oval Enoc, 2019-07-05 01:43:24

Does hosting have access to my VPS?

Hello.
When contacting support, they always ask for the password and port for the root user.
It suggests that they do not have any third-party access to my server (KVM).
Is it so? Can administrators safely log into my servers via SSH? Can they know what domains are configured in Nginx?

Answer the question

In order to leave comments, you need to log in

5 answer(s)
S
Sanes, 2019-07-05
@ovalenko

You can get access if you want. VDS will have to be disabled or restarted with a password reset.
Therefore, they ask.

C
CityCat4, 2019-07-05
@CityCat4

Does hosting have access to my VPS?

Full. One hundred percent. Non-switchable.
Why are they asking? And it's easier for them. But if necessary, they stupidly mirror your disk, create another machine, reset the password, and you won't do anything.

P
Puma Thailand, 2019-07-05
@opium

They have access by ssx no, reset the password in theory for five seconds

V
Viktor Taran, 2019-07-05
@shambler81

physically, the admin has access to your ones and zeros because he has access to the physical device on which they are stored, so the answer to the first part of the question is yes, no matter how you twist it.
BUT there are some BUTs
, in particular, the hoster may want to distance himself from your ones and zeros, in which case a
certain group of people who have access to the system "for example, developers of APIs and methods of working with your VM"
work in isolation and cannot have physical access to the production server, and they can steer and turn with the air force on the test site.
In the production loop, there may not be an employee with sufficient rights to enter your machine, and the data may be encrypted.
Passwords are stored in md5 - which you yourself understand is not recoverable.
So it turns out that if you want, the two-loop work of production and dev groups of employees can lead to the following: the
first group does not have real data, the
second does not have sufficient rights to manage your data
, only the person who uploads the first to the second remains, theoretically he could make changes to the code and deploy, leaving yourself a backdoor. but it is also easy to remove.
In general, the answer is
YES, but if the hoster himself needs it, he will make it so that his employees will not be able to do it physically.

C
cher_roma, 2019-07-06
@cher_roma

On OpenVZ virtualization, access to the file system will be without knowing the password and you can copy files without intrusion into your Vps.
On KVM, you need to reset the password and stop Vps in order to be able to copy the files (or rather the image).

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question