Webhost support team can access database

[RLJ]

Hi all,

 

This is probably a very basic question, but it has recently come to my attention that the support team of the webhost that is hosting my website+database (shared hosting) can create a new user with full privileges and access my database.

 

Is this normal? Seems like a bit of a security gap...

Can I prevent this?

 

Thanks!

[ryanfilard]

The web host can get to your database. If you have passwords you should encrypt them. What host do you use?

[RLJ]

Yeah passwords are encrypted, but I would rather not that the webhost can access any information stored in the database. Is there any way of preventing this?

 

The webhost that I am using is iPage (www.ipage.com).

 

Cheers.

[ryanfilard]

I don't think you can block them because they have access to your server. Maybe someone else knows a way around that.

[trq]

If you really have these types of concerns don't use shared web hosting.

[AMcHarg]

Yea, this would be kind of like the landlord of the house you're renting not having a key. They probably won't come in without your permission but you wouldn't leave your magazine collection just lying around.