Disable user login for reseller-managed accounts

[octo8]

I have a reseller package at a web hosting company, which I use for hosting my clients' sites. I always login to my reseller account, and access my clients' accounts from there. My clients don't need access to DirectAdmin themselves.

My reseller account is properly secured with two-factor authentication, but I don't want to set this up for each client user.

Out of a security perspective, it would be nice if I could just disable login access to my clients' DirectAdmin users completely. In that case, I'd only need to keep my reseller account secured. Could such a feature be added?

 

[shivahost]

you can add an ! to the beginning of all password fields in /etc/shadow.

 

[octo8]

you can add an ! to the beginning of all password fields in /etc/shadow.

Thanks for your suggestion! However, as I'm just a reseller (and no admin), I cannot edit this file. That's why I suggested an explicit feature for this.

 

[Richard G]

Easier solution is to keep hands of system files and just allow your own ip only to port 2222. However, also for this you need to be admin.

I doubt this suggestion will be honored because it's a strange request. I for example would never have my host set my email passwords for me.
There would be situations in which you wanted to do that, but only if you want for example customers to pay for every change made.

 

[wattie]

There would be situations in which you wanted to do that, but only if you want for example customers to pay for every change made.

Or if you have totally IT-illiterate customers which is not uncommon

 

[Richard G]

In that case you can't mix them on that reseller account with customers who do have some or a lot IT knowledge.
I would like to have both kinds of customers. IT-illiterate and non-IT-illiterate, more customers = more money.