Kayla

Now reads:

1) Scan your valid identification card (driver's license or state issued ID, or your scanned passport if you do not have another form of ID)

__________________

H

Hey Geoff... A higher percentage of Canadians have their passports than Americans. And with the new regulations, it wouldn't hurt to get one.

Kickersny.com

I highly support this change, however I think that requiring proof of identification is very stupid. SSH hardly opens up any more of a risk of spammers/malicious users than allowing any scripting language. Example: PHP [url=http://perldoc.perl.org/functions/exec.html]Perl [exec()][/ur] Perl [system()] Ruby

The list goes on and on. Additionally, with the increased threat and severity of identity theft, I would be very hesitant to send a scan of an official ID to a private company, let alone one with no defined security policy or guarantee that it will not be compromised. Also, isn't your support contracted out? That compounds the issue...

I'll keep an eye on this policy, but until the issue detailed above is resolved (or at least addressed), I will continue migrating sites away when the time comes that each one needs SSH access.

__________________
- Evan Charlton | [site] | Server - SH58

Geoff

oh im fully into getting one, in fact i intend on it... i plan on travelling overseas in the comming year... but the hassle its gonna take is almost not worth it unless you're gonna use it lol. I need to file additional forms and they dont seem to be available for download from the passport office. so it means a trip into the city to get the additional forms (day trip), getting someone to notarize them, then applying.

my problem is that i havent lived in the area for very long, so i dont know anyone that is considered a "guarantor" (doctor, lawyer, school priniciple, etc), or atleast not for the required time.

__________________
Geoff Ellis - Surpass Dedicated Server Customer
www.adepttechs.net

Brandonnn

kickersny

__________________
poof

Kayla

Kickers, please give me an example of a web host that clearly lays out how they store customer information with all details. I'd be interested in seeing how they disclose information as sensitive as the very files and databases they are responsible for storing.

__________________

Kickersny.com

Kayla, I'm currently with Dreamhost after 1&1 and neither one required "proof of identity" for SSH access. Neither one charged for it, either. Also, I'm interested in your response as to how it presents a technical threat, though we can take that to PM if you want. Don't forget that cron jobs are quite literally SSH access too...

__________________
- Evan Charlton | [site] | Server - SH58

Brandonnn

let's say that I want... ssh access to your website kickers... I could easily pretend to be you and gain access... nuff said.

__________________
poof

Kayla

Rare as the technical/security threats may be, they are still possible. And yes, we have our fair share of server problems/abuse due to cron jobs. Truthfully, rogue cron jobs could possibly cause more issues in a month than any scripts ran by an SSH user.

And you didn't answer my question. :x But I failed to answer some of yours! We do have some outsourced support, but we also have nearly 30 staff in house, many who have been with us three years or more. Outsourced support, or even individuals doing remote support in different locations, is quite tempting as there is talent across the world that an online business can take advantage of.

By the way everyone, the form is up:
http://www.surpasshosting.com/forms/ssh-request.pdf

And it still requires a form of ID - for now at least.

__________________