I wrote another thread that touched on this topic, but I feel the need to bring it up again.
The way Virtualmin handles administrators seems to me to have a serious security problem. There is a single username/password that is used to:
In the first two, the login is encrypted. However, in the third, it is by definition transmitted in the clear. This really bugs me. Its insecure to have a login that can be transmitted in the clear also be the login that has total control over the domain.
I don't see any way to untie ftp access and admin logins. Adding an ftp user assumes only sub-folder access, not access to the full website. As far as I can tell, the main ftp user has to have admin access as well.
Am I totally wrong about all of this? Curious what people think. Its the one thing that is really bothering me as I'm migrating a box to Virtualmin.