(Quote)

not come back to set it up for months. Sending passwords by email is extremely common.

(Quote)

Both, (a) and (b) are very important, do not buy a dedi without that! (And NO, "the IPMI/LOM requires a username and password" does not cut it!).

(Quote)

(Quote)

Next time send VPS password by Priority Mail.

(Quote)

If you wan't a VPS tuned for hosting static/dynamic sites (and not expecting cPanel at that price) I can make something for you personally that doesn't suck.

I never trust a single password given to me. As soon as I am in, I set my own password. And OP said they would share the pattern details, not PII details.

I guess it is possible if hackers use password lists and they are fast enough to probe it on your server and quickly change it. Such scenario seems rare to me unless you leave your server idle for lon

How? That is only possible if there is any MITM attack. And if they can do it, they can simply change your password and reach your server from your hosting's panel.

Because even assuming you won the world championship because you're very fast at changing your password; by that time your server is already compromised.

(Quote)

Can someone please explain what's wrong with sharing passwords in email in clear text? Are you that regarded to not change the password you got in the email? Are you special snowflake that you actuall

(Quote)

Don't let your customers to select their own root password at sign up, and modify your WHMCS email templates to not share the password via email. In the email template, include a link to your Knowledg

(Quote)

I'm not a SmokyHosts customer but from my personal experience, it's... the norm? Except those that let you or force you to use public key, almost all of them are sending the root password in plaintext

Why the fuck do you send password in plain text? It can be intercepted and your vps could be taken over and who knows what junk my be put on it.