I’m having a problem with one of the apps that interacts with something I’m hosting. Alternative apps aren’t having the same problem and neither is the webpage UI. Having purchased the app, I emailed the developer for some help and they said they didn’t know what the issue was and that it could probably fix it if they could access my server. I’m not really comfortable with that though. Should I be?
Maybe you can setup a clone with different passwords and no real data? I don’t thing your cautiousness is unreasonable.
Without more information it’s impossible to say.
I completely understand, but how will they access it? Over something like teamviewer where you can also see the screen and control the mouse keyboard would be preferable to ssh access where you have no idea whats happening until it’s over.
On the other hand, whatever he’s going to do he should hopefully know beforehand, otherwise it just sounds like a fishing session to try a few things.