Can anyone tell me if there is a host provider out there that offers Fantastico and SSH? I am in need of a developers reseller account. Even though I am looking for a reseller acount I will not actually be reselling space at all. It is for numerous majro site developments I am working on. I utilize SSH solely to transfer my scritps form another ftp I keep everything on as well as packing unpacking tweaking scripts.

The advantage to the hsot provider is that I have extremely low loads and even BW since all sites are closed to the public and only available to developers working on the sites.

If anyone knows a place wold be greatly appreciated.

resellerzoom.com has Fantastico and Jailed Shell access upon request.

use hostgator man, its really good

HostGator does not allow SSH.

vbIce, maybe you should look for a small vps? That way you will have full root access to test your scripts.

From personal experience, developers tend to sometimes upload a php script (or any script) with a typo (simple as that really) which then loops nonstop and crashes the server. Developing in a shared production environment isn't the way to go. Check for a VPS, so you can't affect the other sites on the server.

st is good

allot of companies dont give SSH access for security reasons, maybe if you asked the host to do the work for you, they may do this free of charge depending on what it is.

allot of companies dont give SSH access for security reasons
To be honest, I'd be more afraid of those companies than the ones that actually offer SSH access. SSH access, if secured and managed correctly, is safer than allowing a user to use CGI or PHP.


Simon

Actually a good number of companies do offered jailed ssh. Some may require you to send a drivers license or sign a form of some type, but for the most part I believe most hosts will be fine with especially when the intentions are clear.

The advantage to the hsot provider is that I have extremely low loads and even BW since all sites are closed to the public and only available to developers working on the sites.

Honestly, developing in a production environment is not an advantage to the hosting provider. You really should look at a dedicated environment or a VPS for this type of requirement. Better yet, you should probably develop locally on your own machine - though, if you need to share your data with others and or the client - then a hosted solution is obviously required - I just dont think you should be in a shared environment...

To be honest, I'd be more afraid of those companies than the ones that actually offer SSH access. SSH access, if secured and managed correctly, is safer than allowing a user to use CGI or PHP.

I wouldnt go that far.... Personally, we like locking down the ssh port to only specific IP's. As you are well aware (probably better then most with your extensive hsphere experience), hsphere communicates to the various servers in the cluster via the ssh port - and locking this port down is just 1 less thing to worry about and generally will decrease the probability for problems, thereby increasing uptime. I do agree that ssh can be locked down to a point where it is more secure the cgi - however, this does not mean that every host should offer it and there is reason for concern if they dont....

I wouldnt go that far.... Personally, we like locking down the ssh port to only specific IP's. As you are well aware (probably better then most with your extensive hsphere experience), hsphere communicates to the various servers in the cluster via the ssh port - and locking this port down is just 1 less thing to worry about and generally will decrease the probability for problems, thereby increasing uptime. I do agree that ssh can be locked down to a point where it is more secure the cgi - however, this does not mean that every host should offer it and there is reason for concern if they dont....
Not offering SSH access is fine. It's the providers perogative, much in the same way that offering php, asp, cgi, etc. However, any provider that states SSH access is insecure is admitting that their servers are poorly managed, If a provider can't lock down SSH access properly then they have more problems internally than can be imagined by the average user.

Not offering it: fine - saying it's not offered because it's a security problem: evidence of an insecure company in many senses of the word.

Locking down SSH in a H-Sphere environment because of CP communication is fine but still leaves plenty of room outside the CP channel, so long as you don't accept H-Sphere's environment 'out of the box'. H-Sphere does certainly require a more innovative approach to user secure SSH access but it can be done. It depends, on a per-provider basis, whether the demand for it is there or not. I am sure if you got many requests for it, you'd implement it or at least entertain the idea :) - As you specifically target, with rather good effect, the CMS crowd I would be surprised if the demand is there for SSH access.

I don't mind providers simply not offering SSH access. It's the ones that justify it with a double-edged sword like answer of "it's insecure" that get me confused.


Simon

I don't mind providers simply not offering SSH access. It's the ones that justify it with a double-edged sword like answer of "it's insecure" that get me confused.

Fair enough :)

There are a few hosts I have come across that do offer such access to jailed ssh but you are right there are measures they have taken to ensure it is more secure than running a php script.

Can anyone tell me if there is a host provider out there that offers Fantastico and SSH? I am in need of a developers reseller account. Even though I am looking for a reseller acount I will not actually be reselling space at all. It is for numerous majro site developments I am working on. I utilize SSH solely to transfer my scritps form another ftp I keep everything on as well as packing unpacking tweaking scripts.

The advantage to the hsot provider is that I have extremely low loads and even BW since all sites are closed to the public and only available to developers working on the sites.

If anyone knows a place wold be greatly appreciated.

Tons of web hosts will fit those requirements. I'd suggest taking a look at some of the top reviewed reseller web hosts over at HostSearch.com, you'll be sure to find a suitable quality web host.

Thanks to all who replied. Thought I would just clarify a few points here though for some as well.

My main use for ssh was to be able to utilize wget to grab scripts etc from my main ftp server I have on the net. Most ssh activities are for the purpose of packing unpacking scripts as they are worked on. Pico and nano are excellent tools to utilize from shell. Another private script I utilize frequently is a string search replace script (private label script) that I run from shell to replace strings inside pages throughout the entire site thus cutting down the time it takes to open each file 1 by 1 etc.

At any given time I have 4 developers from 3 different countries developing various scripts thereby requiring the development zone to be online with Cpanel active 24/7.

Web hosts who state that ssh is too much of a vulnerability should very simply NOT be in the business of selling hosting! Anyone who says ssh is too much of a vulnerability on Cpanel machines (I know nothing about hsphere or its vulnerabilities, so comments relate strictly to cpanel machines) might as well remove cgi and php from their servers too. Because if they cannot properly lock down ssh then most likely they have open doors on cgi and php as well. I can do almost as much damage with php as I can with ssh!

I have seen hosts lock down the use of wget because “it allows people upload malicious scripts to the server” like ftp won’t do the same thing? Where did these people learn server administration, from a Cracker Jack box? When one sees hosting providers stating this there is only one thing the potential client should do RUN, and RUN very FAST!

Unfortunately in today’s environment it seems almost anyone thinks they can be a server “Admin”!


I do thank all for their comments just the same. After considering everything and remembering past experiences with net users/hosts I contacted Cpanel to obtain a license just for development, it is easier, faster, cheaper, and more reliable to have my High Speed ISP install a 2nd high speed modem solely for the use of doing my developments! Anyone else interested in actually just utilizing a server for development purposes might want to consider contacting Cpanel and obtain a developers license just make sure your ISP assigns you a static IP Address and someone knows how to lock down the server and ports etc on it.

vbIce

in reference to SSH, you should be fine with Jailed access. And CPanel should be online with all hosts 24x7 unless they schedule Maintenance.

CyberHostPro...

Yes you are absolutely correct, jailed ssh has more features then I would normally use. Normal ssh is excess of what I will ever have a need for on these accounts.

Nice to see someone mentioning jailed ssh here.

I believe Jailed SSH is the only version cPanel hosts offer (or should...should never underestimate some people...)

forgive me if I am wrong here as I am by no means a server security guru, but I thought the whole point of ssh was and is a as the name suggests a SECURE way of server administration utilising encryption for script and file transfer other then FTP, which in itself to someone who knows what they are doing can bypass or take advantage of any sercurity holes in a server if they so exist as with php and cgi. I tend to agree that if a hosting company blatently will not entertain the use of ssh but infact has ftp php and cgi then this is a worrying situation for the customers, and would presume that these companies servers are infact less sercure then a company that would offer it..!!

forgive me if I am wrong here as I am by no means a server security guru, but I thought the whole point of ssh was and is a as the name suggests a SECURE way of server administration utilising encryption for script and file transfer other then FTP, which in itself to someone who knows what they are doing can bypass or take advantage of any sercurity holes in a server if they so exist as with php and cgi. I tend to agree that if a hosting company blatently will not entertain the use of ssh but infact has ftp php and cgi then this is a worrying situation for the customers, and would presume that these companies servers are infact less sercure then a company that would offer it..!!

Not really. A company not offering SSH simply doesn't want to take the risk. Nothing is completely 100% hack-proof no matter how much you secure. Exploits and work-arounds will be found. Companies not offering SSH shows they are putting customers before money.

Other companies may not advertise it, but do offer SSH if you ask them. Others may not advertise and not offer it as well..

Some companies request information from the customer and ID before giving SSH access..

Every company makes such decisions based on a reason. Nothing to do about having faith in their boxes security etc..

Hi,

Yes i run a home server that operates a cpanel development licence it can be very usefull, the olny problem I have is that my isp will not give me a static ip only a 180 leased one. (Cpanel do nto like this)

belkihost_sean

Companies not offering SSH shows they are putting customers before money.

Let me disagree with you, althrough I agree with you about that nothing is completely secure, then, those same host offering PHP or Perl are putting money before their customers?
A host not offering SSH just because it may be insecure, it does only show their ignorance about security.

I got account on resellerzom, and tho ALL features are not there, service is good. Uptime is good.