No, There are several bug that work without root access. How ever I don’t know what have been patched or not. I recommend to not install it. Very easy it is not developed at the moment.
For alternatives for VestaCP on CentOS I don’t know I don’t use CentOS…
You’re in the hestiacp forum here, the fact that you were not able to register at vesta forum should be already enough proof, that the project is dead. Most of the issues are root escalation issues, some are potential phishing attack - both combined = you’re fucked.
Vesta isnt maintained anymore, so it’s your decission to switch or not .
They seem to be pushing a update tomorrow I think it is, I don’t know what the updates about but I do agree it’s very insecure and best left alone, there is one guy that pushes the odd update but it’s not often, infarct on gihib you can see when merges happen and it’s not often
Stick with hestiacp, the Dev team is awesome, pushes out regular patches and updates.
The forum support is top notch, documentary is great.
Hestiacp is used in commercial and personal systems (I run it personally to host my 2 websites and it’s easier than doing it manually) also hestiacp and the Devs been so awesome have seen me wanting to learn PHP etc etc…