Every shared-root server has the same origin story. One person spins up the VPS, a second needs access so they get handed the root password, a contractor joins and gets it too, and within a year nobody can say who logged in last week or who still knows the password that protects everything. When something is deleted at …