Yes, you can host websites for friends or family members under your shared hosting account. We do not limit who you host sites for. However, if you give this person access to your web hosting control panel, they will have full access to your entire hosting account. They can make changes, delete websites, databases, email accounts, files, and more at will.

While this arrangement is technically allowed, we strongly recommend against sharing your control panel credentials for security reasons. It is far safer for them to purchase their own separate hosting account. Keeping your account details secure is your responsibility, and we are not responsible for any damages that may result from someone else purposely or accidentally deleting items.

#Why This Arrangement Matters on Shared Hosting

Shared hosting environments place multiple websites under a single account and resource pool. This simplifies management and billing but creates a single point of administrative control. When you add sites for others, you must consider both technical permissions and real-world accountability. A friend or family member may lack experience with server administration, increasing the chance of accidental changes that affect every site on the account. Clear boundaries prevent disputes and protect your primary websites, applications, and data.

#Security Risks of Sharing Control Panel Access

Granting control panel login details removes all restrictions for that user. They gain the same rights you have, including the ability to alter configurations, manage DNS, install applications, and remove content. In practice this often leads to unintended consequences even when the intent is helpful. Experienced administrators treat control panel credentials with the same caution as root or administrator passwords on any system.

  • - Full read/write access to all files and directories, allowing deletion of critical website files or configuration data - Ability to create, modify, or drop databases and their contents, which can break multiple sites at once - Management of email accounts, including deletion of messages or changes to forwarding rules - Installation of unvetted scripts or applications that may introduce security vulnerabilities - Changes to account-wide settings that could affect performance or availability of your own properties

These actions can occur through honest mistakes, such as misunderstanding the file structure, or through external compromise if the other person reuses passwords. Once the damage is done, recovery depends on your backups and can take significant time. Our position remains clear: we are not liable for losses caused by shared credentials.

The safest approach is to keep control panel access to yourself. You can still provide hosting services by managing the technical details on their behalf. If ongoing collaboration is required, limit exposure by creating scoped permissions rather than full account access. Many users find that encouraging friends and family to open their own accounts avoids complications entirely and gives them independent control over backups, upgrades, and support requests.

  • - Do not share your primary control panel username or password under any circumstances - Upload and configure their website files yourself using the built-in file manager or your own FTP client - Create isolated FTP accounts that restrict the user to only their website directory and nothing else - Set up separate databases with unique credentials so one site cannot access another - Have the friend or family member open their own hosting account for complete separation of resources and responsibility

#Steps to Add and Manage an Additional Website Safely

To host another site without exposing your full account, perform all administrative work under your own login. First log into the control panel using your credentials. Locate the section for domains or website management and add the new domain or subdomain, pointing it to a dedicated folder under your main account directory. Create any required databases through the dedicated database manager, assigning strong, unique usernames and passwords. If the site owner needs to upload files, generate a separate FTP account that is locked to their specific path. Test the site thoroughly before handing over any limited credentials. This workflow keeps you in control while meeting their hosting needs.

Review account logs periodically to confirm that only your IP addresses are accessing the control panel. Change passwords on a schedule and avoid reusing the same password across services. If you ever need to revoke access, you can disable or delete the limited FTP account instantly without affecting the rest of your hosting environment.

#Practical Takeaway

Hosting websites for friends or family is permitted and common, but never extend to sharing full control panel credentials. Maintain strict separation of administrative access, use limited FTP accounts where collaboration is necessary, and direct others toward their own accounts when practical. This approach fulfills the original request while protecting your data, reputation, and compliance with account security policies. For questions about adding domains or configuring FTP users, open a support ticket with specific details about your plan.