TinyCP - Any experiences?

YmpkerYmpker OGContent Writer
edited December 2019 in General

Has anyone been using TinyCP? Any experiences you can share regarding this cp?
It looks pretty light-weigth and clean.

Demo: https://tinycp.com/page/show/demo

Ympker's Shared/Reseller Hosting Comparison Chart, Ympker's VPN LTD Comparison, Uptime.is, Ympker's GitHub.

Thanked by (3)flips Abdullah Moe
Tagged:

Comments

  • SagnikSSagnikS Hosting ProviderOG

    @Ympker said:
    Has anyone been using TinyCP? Any experiences you can share regarding this cp?
    It looks pretty light-weigth and clean.

    Demo: https://tinycp.com/page/show/demo

    I started using it after facing several stupid issues with Virtualmin. The UI is really fast and clean, and seems to just work so far. I'd like to have nginx support though :sweat_smile:

    Thanked by (1)Ympker
  • YmpkerYmpker OGContent Writer

    @SagnikS said:

    @Ympker said:
    Has anyone been using TinyCP? Any experiences you can share regarding this cp?
    It looks pretty light-weigth and clean.

    Demo: https://tinycp.com/page/show/demo

    I started using it after facing several stupid issues with Virtualmin. The UI is really fast and clean, and seems to just work so far. I'd like to have nginx support though :sweat_smile:

    Thanks for the feedback :)

    Ympker's Shared/Reseller Hosting Comparison Chart, Ympker's VPN LTD Comparison, Uptime.is, Ympker's GitHub.

  • vyasvyas OGContent Writer

    Thanks.. just installed it - I agree that the UI is fast and clean. This is definitely something I can keep using on a test vps till it is ready for prime time.

    Thanked by (1)Ympker

    VPS reviews | | MicroLXC | English is my nth language.

  • AmitzAmitz OG
    edited December 2019

    The name of the panel though... Pedobear, pedobear...

    But it looks like a nice sleek panel. I wish there was something like a security audit that it has passed...

    Thanked by (1)Ympker

    Amitz, a very stable genius (it's true!) and Grand Rectumfier of the official LESLOS® (LES League of Shitposters).
    Certified braindead since 1974 and still perfectly happy.

  • YmpkerYmpker OGContent Writer

    @Amitz said:
    The name of the panel though... Pedobear, pedobear...

    But it looks like a nice sleek panel. I wish there was something like a security audit that it has passed...

    Free panels rarely pay for audits like this since they only live from donations anyway.

    Thanked by (1)Amitz

    Ympker's Shared/Reseller Hosting Comparison Chart, Ympker's VPN LTD Comparison, Uptime.is, Ympker's GitHub.

  • AmitzAmitz OG

    Sure. It just helps with trust issues... ;)

    Thanked by (1)Ympker

    Amitz, a very stable genius (it's true!) and Grand Rectumfier of the official LESLOS® (LES League of Shitposters).
    Certified braindead since 1974 and still perfectly happy.

  • SagnikSSagnikS Hosting ProviderOG
    edited December 2019

    Amitz said: I wish there was something like a security audit that it has passed...

    To be honest, if it were open source one can technically get it audited themselves, but it being closed source doesn't help :(

    Thanked by (1)Amitz
  • YmpkerYmpker OGContent Writer
    edited December 2019

    @SagnikS said:

    Amitz said: I wish there was something like a security audit that it has passed...

    To be honest, if it were open source one can technically get it audited themselves, but it being closed source doesn't help :(

    Well since they are (not yet) making any money from it, they don't have to proof anything to anyone. Those who like it can participate on their forums and get to know the members of the team, their ideals etc. those who don't.. well, can just use another free solution. If it was a paid panel, it'd be another story. I mean, my YmpKit on GitHub is nowhere near as stable/advanced as a project like Tinycp. But I also developed it for me to ease my personal workflow, not anyone elses. I shared it to get potential feedback/bug reports and to let others benefit from it, too. I don't want to proof anything to anyone though. That being said, I don't think they'd be opposed to someone donating them a security audit, or a security firm that wants their product to succeed, doing it for free. Wasn't there some security audit guy on this forum?

    Ympker's Shared/Reseller Hosting Comparison Chart, Ympker's VPN LTD Comparison, Uptime.is, Ympker's GitHub.

  • SagnikSSagnikS Hosting ProviderOG

    @Ympker said:

    @SagnikS said:

    Amitz said: I wish there was something like a security audit that it has passed...

    To be honest, if it were open source one can technically get it audited themselves, but it being closed source doesn't help :(

    Well since they are (not yet) making any money from it, they don't have to proof anything to anyone. Those who like it can participate on their forums and get to know the members of the team, their ideals etc. those who don't.. well, can just use another free solution. If it was a paid panel, it'd be another story. I mean, my YmpKit on GitHub is nowhere near as stable/advanced as a project like Tinycp. But I also developed it for me to ease my personal workflow, not anyone elses. I shared it to get potential feedback/bug reports and to let others benefit from it, too. I don't want to proof anything to anyone though. That being said, I don't think they'd be opposed to someone donating them a security audit, or a security firm that wants their product to succeed, doing it for free. Wasn't there some security audit guy on this forum?

    Fair enough, afaik, they have a plan to make it paid sometime in the future (about $1/mo iirc..?) They probably will get something done then I believe.

    Thanked by (1)Ympker
  • YmpkerYmpker OGContent Writer

    @SagnikS said:

    @Ympker said:

    @SagnikS said:

    Amitz said: I wish there was something like a security audit that it has passed...

    To be honest, if it were open source one can technically get it audited themselves, but it being closed source doesn't help :(

    Well since they are (not yet) making any money from it, they don't have to proof anything to anyone. Those who like it can participate on their forums and get to know the members of the team, their ideals etc. those who don't.. well, can just use another free solution. If it was a paid panel, it'd be another story. I mean, my YmpKit on GitHub is nowhere near as stable/advanced as a project like Tinycp. But I also developed it for me to ease my personal workflow, not anyone elses. I shared it to get potential feedback/bug reports and to let others benefit from it, too. I don't want to proof anything to anyone though. That being said, I don't think they'd be opposed to someone donating them a security audit, or a security firm that wants their product to succeed, doing it for free. Wasn't there some security audit guy on this forum?

    Fair enough, afaik, they have a plan to make it paid sometime in the future (about $1/mo iirc..?) They probably will get something done then I believe.

    Yeah, they suggest on the frontpage that they may be charging a "minimal fee" at some point. But until then, I believe that one shouldn't expect them to invest any money in an audit. Once they go commercial, that's another story.

    Thanked by (1)SagnikS

    Ympker's Shared/Reseller Hosting Comparison Chart, Ympker's VPN LTD Comparison, Uptime.is, Ympker's GitHub.

  • MoeMoe OG

    Thanks for this. I'm going to give this a try on my development server as a possible replacement for Virtualmin. The interface seems to be very clean and easy-to-use.

    Thanked by (1)Ympker
  • ulayerulayer Hosting ProviderOG

    It looks nice, I'll give it that, but their security claims on the index don't make much sense... kind of turned me away from it.

    Our custom security layer over HTTP.
Connection to the IP is now secured.
Our own guardian software.

    Universal Layer LLC, a privacy conscious hosting provider
    Check us out @ ulayer.net / twitter.com/ulayer_net

  • flipsflips OG

    Not HTTPS, but HTTP + some custom something? Sounds weird ... :p
    Did try it out a bit on Debian 9. A bit buggy for Apache. Will retry on Debian 10.

  • NeoonNeoon OG

    @ulayer said:
    It looks nice, I'll give it that, but their security claims on the index don't make much sense... kind of turned me away from it.

    Our custom security layer over HTTP.
Connection to the IP is now secured.
Our own guardian software.

    You can encrypt stuff with javascript on the client and then pass it to the server.
    So its even encrypted when send over HTTP, without HTTPS.

    Free NAT KVM | Free NAT LXC

  • ulayerulayer Hosting ProviderOG

    @Neoon said:

    @ulayer said:
    It looks nice, I'll give it that, but their security claims on the index don't make much sense... kind of turned me away from it.

    Our custom security layer over HTTP.
Connection to the IP is now secured.
Our own guardian software.

    You can encrypt stuff with javascript on the client and then pass it to the server.
    So its even encrypted when send over HTTP, without HTTPS.

    This sounds questionable. From their statement, can't really gather what they're doing at all, they're using buzzwords.

    The JavaScript to do all of that could be modified in transit if sent over HTTP though. It sounds like a backwards concept.

    Universal Layer LLC, a privacy conscious hosting provider
    Check us out @ ulayer.net / twitter.com/ulayer_net

  • YmpkerYmpker OGContent Writer

    @ulayer said:

    @Neoon said:

    @ulayer said:
    It looks nice, I'll give it that, but their security claims on the index don't make much sense... kind of turned me away from it.

    Our custom security layer over HTTP.
Connection to the IP is now secured.
Our own guardian software.

    You can encrypt stuff with javascript on the client and then pass it to the server.
    So its even encrypted when send over HTTP, without HTTPS.

    This sounds questionable. From their statement, can't really gather what they're doing at all, they're using buzzwords.

    The JavaScript to do all of that could be modified in transit if sent over HTTP though. It sounds like a backwards concept.

    Sounds weird indeed?

    Ympker's Shared/Reseller Hosting Comparison Chart, Ympker's VPN LTD Comparison, Uptime.is, Ympker's GitHub.

  • geekyhillbillygeekyhillbilly OG

    But aren't all the browsers wanting everyone to use HTTPS now? Or at least be moving your websites to use HTTPS in the near future.

  • YmpkerYmpker OGContent Writer

    @geekyhillbilly said:
    But aren't all the browsers wanting everyone to use HTTPS now? Or at least be moving your websites to use HTTPS in the near future.

    I think forcing SSL wouldn't be an issue. What the guys don't feel well about (including me) is that they use their "custom hardened HTTP" connection while they should be using HTTPS. Going with that people would assume there'd be more security flaws. Not that this has been proofed yet afaik but still..

    Thanked by (1)geekyhillbilly

    Ympker's Shared/Reseller Hosting Comparison Chart, Ympker's VPN LTD Comparison, Uptime.is, Ympker's GitHub.

Sign In or Register to comment.

This Site is currently in maintenance mode.
Please check back here later.

→ Site Settings