Installing Webmin & Enabling SSL

Webmin Setup Centos 5:

wget http://downloads.sourceforge.net/project/webadmin/webmin/1.530/webmin-1.530-1.noarch.rpm?r=http%3A%2F%2Fwww.webmin.com%2Fstandard.html&ts=1294339690&use_mirror=surfnet
[1] 24229
[2] 24230
[root@host ~]# --2011-01-06 21:48:20--  http://downloads.sourceforge.net/project/webadmin/webmin/1.530/webmin-1.530-1.noarch.rpm?r=http%3A%2F%2Fwww.webmin.com%2Fstandard.html
Resolving downloads.sourceforge.net... 216.34.181.59
Connecting to downloads.sourceforge.net|216.34.181.59|:80... connected.
HTTP request sent, awaiting response... 302 Found
Location: http://superb-sea2.dl.sourceforge.net/project/webadmin/webmin/1.530/webmin-1.530-1.noarch.rpm [following]
--2011-01-06 21:48:20--  http://superb-sea2.dl.sourceforge.net/project/webadmin/webmin/1.530/webmin-1.530-1.noarch.rpm
Resolving superb-sea2.dl.sourceforge.net... 209.160.57.180
Connecting to superb-sea2.dl.sourceforge.net|209.160.57.180|:80... connected.
HTTP request sent, awaiting response... 200 OK
Length: 16133333 (15M) [application/octet-stream]
Saving to: `webmin-1.530-1.noarch.rpm'

100%[===========================================================>] 16,133,333  4.89M/s   in 3.7s   

2011-01-06 21:48:24 (4.21 MB/s) - `webmin-1.530-1.noarch.rpm' saved [16133333/16133333]

rpm -ivh webmin-1.530-1.noarch.rpm
warning: webmin-1.530-1.noarch.rpm: Header V3 DSA signature: NOKEY, key ID 11f63c51
Preparing...                ########################################### [100%]
Operating system is CentOS Linux
   1:webmin                 ########################################### [100%]
Webmin install complete. You can now login to http://yourip.com:10000/
as root with your root password.
[1]-  Done                    wget http://downloads.sourceforge.net/project/webadmin/webmin/1.530/webmin-1.530-1.noarch.rpm?r=http%3A%2F%2Fwww.webmin.com%2Fstandard.html
[2]+  Done                    ts=1294339690

========
This isn't smart webmin is not configured with mandatory and default SSL so it is extremely insecure.  Imagine if the password is sniffed, then the person has root on your server!


yum install openssl-devel

Download Perl SSL module SSLeay:

wget http://download.webmin.com/download/Net_SSLeay.pm-1.23.tar.gz

tar zxvf Net_SSLeay.pm-1.23.tar.gz
Net_SSLeay.pm-1.23/
Net_SSLeay.pm-1.23/ptrcasttst.c
Net_SSLeay.pm-1.23/MANIFEST
Net_SSLeay.pm-1.23/RECIPE.Win32
Net_SSLeay.pm-1.23/Changes
Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50/
Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50/Makefile.PL
Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50/MANIFEST
Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50/test.pl
Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50/Handle.pm
Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50/Changes
Net_SSLeay.pm-1.23/examples/
Net_SSLeay.pm-1.23/examples/get_page.pl
Net_SSLeay.pm-1.23/examples/bio.pl
Net_SSLeay.pm-1.23/examples/makecert.pl
Net_SSLeay.pm-1.23/examples/cb-testi.pl
Net_SSLeay.pm-1.23/examples/ephemeral.pl
Net_SSLeay.pm-1.23/examples/cli-cert.pl
Net_SSLeay.pm-1.23/examples/bulk.pl
Net_SSLeay.pm-1.23/examples/get_page_cert.pl
Net_SSLeay.pm-1.23/examples/req.conf
Net_SSLeay.pm-1.23/examples/sslecho.pl
Net_SSLeay.pm-1.23/examples/https-proxy-snif.pl
Net_SSLeay.pm-1.23/examples/ssl_diff.pl
Net_SSLeay.pm-1.23/examples/sslcat.pl
Net_SSLeay.pm-1.23/examples/get_authenticated_page.pl
Net_SSLeay.pm-1.23/examples/passwd-cb.pl
Net_SSLeay.pm-1.23/examples/ssl-inetd-serv.pl
Net_SSLeay.pm-1.23/examples/minicli.pl
Net_SSLeay.pm-1.23/examples/stdio_bulk.pl
Net_SSLeay.pm-1.23/examples/callback.pl
Net_SSLeay.pm-1.23/examples/server_key.pem
Net_SSLeay.pm-1.23/SSLeay.pm
Net_SSLeay.pm-1.23/.rnd
Net_SSLeay.pm-1.23/README
Net_SSLeay.pm-1.23/SSLeay.xs
Net_SSLeay.pm-1.23/test.pl
Net_SSLeay.pm-1.23/Makefile.PL
Net_SSLeay.pm-1.23/QuickRef
Net_SSLeay.pm-1.23/README.Win32
Net_SSLeay.pm-1.23/ptrtstrun.pl
Net_SSLeay.pm-1.23/Credits
Net_SSLeay.pm-1.23/typemap



#cd Net_SSLeay.pm-1.23
#perl Makefile.PL
Checking for OpenSSL-0.9.6j or 0.9.7b or newer...
You have OpenSSL-0.9.8e installed in /usr
That's is newer than what this module was tested with (0.9.6j
or 0.9.7b). You should
consider checking if there is a newer release of this module
available. Everything will probably work OK, though.
*** Could not figure out which C compiler was used to compile /usr/bin/openssl. It is essentiall that OpenSSL, perl, and Net::SSLeay are compiled with the same compiler and flags. Mixing and matching compilers is not supported. at Makefile.PL line 140.
Checking if your kit is complete...
Looks good
Checking if your kit is complete...
Looks good
Writing Makefile for Net::SSLeay::Handle
Writing Makefile for Net::SSLeay
[root@host Net_SSLeay.pm-1.23]# make install
cp ptrtstrun.pl blib/lib/Net/ptrtstrun.pl
cp SSLeay.pm blib/lib/Net/SSLeay.pm
AutoSplitting blib/lib/Net/SSLeay.pm (blib/lib/auto/Net/SSLeay)
blib/lib/Net/SSLeay.pm: some names are not unique when truncated to 8 characters:
 directory blib/lib/auto/Net/SSLeay:
  do_https3.al, do_https2.al, do_https4.al, do_https.al truncate to do_https
  get_https.al, get_https3.al, get_https4.al truncate to get_http
  head_https.al, head_https3.al, head_https4.al truncate to head_htt
  post_https.al, post_https3.al, post_https4.al truncate to post_htt
  put_https.al, put_https3.al, put_https4.al truncate to put_http
  ssl_read_all.al, ssl_read_until.al, ssl_read_CRLF.al truncate to ssl_read
  ssl_write_all.al, ssl_write_CRLF.al truncate to ssl_writ
make[1]: Entering directory `/root/Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50'
cp Handle.pm ../blib/lib/Net/SSLeay/Handle.pm
Manifying ../blib/man3/Net::SSLeay::Handle.3pm
make[1]: Leaving directory `/root/Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50'
/usr/bin/perl /usr/lib/perl5/5.8.8/ExtUtils/xsubpp  -typemap /usr/lib/perl5/5.8.8/ExtUtils/typemap -typemap typemap  SSLeay.xs > SSLeay.xsc && mv SSLeay.xsc SSLeay.c
gcc -c  -I/usr/include -I/usr/inc32 -I/usr/kerberos/include -D_REENTRANT -D_GNU_SOURCE -fno-strict-aliasing -pipe -Wdeclaration-after-statement -I/usr/local/include -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 -I/usr/include/gdbm -O   -DVERSION=\"1.23\" -DXS_VERSION=\"1.23\" -fPIC "-I/usr/lib/perl5/5.8.8/i386-linux-thread-multi/CORE"  -DPERL5 -DOPENSSL_NO_KRB5 SSLeay.c
/bin/sh: gcc: command not found
make: *** [SSLeay.o] Error 127

yum install gcc-*

make install

make[1]: Entering directory `/root/Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50'
Manifying ../blib/man3/Net::SSLeay::Handle.3pm
make[1]: Leaving directory `/root/Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50'
gcc -c  -I/usr/include -I/usr/inc32 -I/usr/kerberos/include -D_REENTRANT -D_GNU_SOURCE -fno-strict-aliasing -pipe -Wdeclaration-after-statement -I/usr/local/include -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 -I/usr/include/gdbm -O   -DVERSION=\"1.23\" -DXS_VERSION=\"1.23\" -fPIC "-I/usr/lib/perl5/5.8.8/i386-linux-thread-multi/CORE"  -DPERL5 -DOPENSSL_NO_KRB5 SSLeay.c
SSLeay.c: In function ‘XS_Net__SSLeay_state_string’:
SSLeay.c:2639: warning: assignment discards qualifiers from pointer target type
SSLeay.c: In function ‘XS_Net__SSLeay_rstate_string’:
SSLeay.c:2657: warning: assignment discards qualifiers from pointer target type
SSLeay.c: In function ‘XS_Net__SSLeay_state_string_long’:
SSLeay.c:2675: warning: assignment discards qualifiers from pointer target type
SSLeay.c: In function ‘XS_Net__SSLeay_rstate_string_long’:
SSLeay.c:2693: warning: assignment discards qualifiers from pointer target type
SSLeay.c: In function ‘XS_Net__SSLeay_d2i_SSL_SESSION’:
SSLeay.c:3142: warning: passing argument 2 of ‘d2i_SSL_SESSION’ from incompatible pointer type
SSLeay.c: In function ‘XS_Net__SSLeay_alert_desc_string’:
SSLeay.c:4891: warning: assignment discards qualifiers from pointer target type
SSLeay.c: In function ‘XS_Net__SSLeay_alert_desc_string_long’:
SSLeay.c:4909: warning: assignment discards qualifiers from pointer target type
SSLeay.c: In function ‘XS_Net__SSLeay_alert_type_string’:
SSLeay.c:4927: warning: assignment discards qualifiers from pointer target type
SSLeay.c: In function ‘XS_Net__SSLeay_alert_type_string_long’:
SSLeay.c:4945: warning: assignment discards qualifiers from pointer target type
Running Mkbootstrap for Net::SSLeay ()
chmod 644 SSLeay.bs
rm -f blib/arch/auto/Net/SSLeay/SSLeay.so
gcc  -shared -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector --param=ssp-buffer-size=4 -m32 -march=i386 -mtune=generic -fasynchronous-unwind-tables -L/usr/local/lib SSLeay.o  -o blib/arch/auto/Net/SSLeay/SSLeay.so     \
       -L/usr -L/usr/lib -lssl -lcrypto      \
     
chmod 755 blib/arch/auto/Net/SSLeay/SSLeay.so
cp SSLeay.bs blib/arch/auto/Net/SSLeay/SSLeay.bs
chmod 644 blib/arch/auto/Net/SSLeay/SSLeay.bs
Manifying blib/man3/Net::SSLeay.3pm
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/SSLeay.so
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/SSLeay.bs
Files found in blib/arch: installing files in blib/lib into architecture dependent library tree
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/Net/SSLeay.pm
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/Net/ptrtstrun.pl
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/Net/SSLeay/Handle.pm
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/post_https3.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/make_headers.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/sslcat.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/randomize.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/open_tcp_connection.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/do_https4.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/head_https.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/dump_peer_certificate.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/do_https2.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/do_https.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/get_https3.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/set_proxy.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/open_proxy_tcp_connection.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/set_server_cert_and_key.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/debug_read.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/do_https3.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/put_https.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/put_https3.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/new_x_ctx.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/ssl_read_CRLF.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/set_cert_and_key.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/want_nothing.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/https_cat.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/post_https4.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/ssl_read_all.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/get_https.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/want_read.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/ssl_write_all.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/head_https3.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/put_https4.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/autosplit.ix
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/want_write.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/get_https4.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/make_form.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/head_https4.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/want_X509_lookup.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/ssl_read_until.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/ssl_write_CRLF.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/post_https.al
Installing /usr/share/man/man3/Net::SSLeay::Handle.3pm
Installing /usr/share/man/man3/Net::SSLeay.3pm
Writing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/.packlist
Appending installation info to /usr/lib/perl5/5.8.8/i386-linux-thread-multi/perllocal.pod

Test the PERL SSL module:

perl -e 'use Net::SSLeay'

*If no output is shown this is good and means it is ready and the install was successful

Webmin
Backup Configuration Files
Change Language and Theme
Webmin Actions Log
*Webmin Configuration
Webmin Servers Index
Webmin Users

Click the "SSL Encryption" icon on the bottom right of the screen for "Webmin Configuration".
Choose the following:

Enable SSL if available?     *Yes No
Private key file    
Certificate file     *Same file as private key
Separate file
Redirect non-SSL requests to SSL mode?     *Yes No
SSL protocol version     Detect automatically
Allowed SSL ciphers     Detect automatically
Only strong PCI-compliant ciphers
Listed ciphers
Additional certificate files
(for chained certificates)


Tags:

installing, webmin, enabling, sslwebmin, centos, wget, http, downloads, sourceforge, webadmin, noarch, rpm, fwww, fstandard, html, ts, use_mirror, surfnet, resolving, connecting, awaiting, superb, dl, ok, length, octet, stream, mb, ivh, header, dsa, nokey, preparing, operating, linux, install, login, yourip, password, isn, configured, mandatory, default, ssl, insecure, sniffed, server, yum, openssl, devel, download, perl, module, ssleay, net_ssleay, pm, tar, gz, zxvf, ptrcasttst, manifest, recipe, makefile, pl, examples, get_page, bio, makecert, cb, testi, ephemeral, cli, cert, bulk, get_page_cert, req, conf, sslecho, https, proxy, snif, ssl_diff, sslcat, get_authenticated_page, passwd, inetd, serv, minicli, stdio_bulk, callback, server_key, pem, rnd, readme, xs, quickref, ptrtstrun, credits, typemap, newer, installed, usr, compiler, compile, bin, essentiall, compiled, flags, mixing, matching, compilers, supported, cp, blib, lib, autosplitting, auto, truncated, characters, directory, do_https, truncate, get_https, get_http, head_https, head_htt, post_https, post_htt, put_https, put_http, ssl_read_all, ssl_read_until, ssl_read_crlf, ssl_read, ssl_write_all, ssl_write_crlf, ssl_writ, manifying, extutils, xsubpp, xsc, mv, gcc, inc, kerberos, d_reentrant, d_gnu_source, fno, strict, aliasing, wdeclaration, d_largefile_source, d_file_offset_bits, gdbm, dversion, quot, dxs_version, fpic, multi, dperl, dopenssl_no_krb, sh, lsquo, xs_net__ssleay_state_string, rsquo, discards, qualifiers, pointer, xs_net__ssleay_rstate_string, xs_net__ssleay_state_string_long, xs_net__ssleay_rstate_string_long, xs_net__ssleay_d, i_ssl_session, incompatible, xs_net__ssleay_alert_desc_string, xs_net__ssleay_alert_desc_string_long, xs_net__ssleay_alert_type_string, xs_net__ssleay_alert_type_string_long, mkbootstrap, chmod, bs, rm, wp, d_fortify_source, fexceptions, fstack, protector, param, ssp, buffer, mtune, generic, fasynchronous, unwind, lssl, lcrypto, site_perl, architecture, make_headers, randomize, open_tcp_connection, dump_peer_certificate, set_proxy, open_proxy_tcp_connection, set_server_cert_and_key, debug_read, new_x_ctx, set_cert_and_key, want_nothing, https_cat, want_read, autosplit, ix, want_write, make_form, want_x, _lookup, packlist, appending, installation, info, perllocal, pod, output, configuration, servers, index, users, encryption, icon, enable, certificate, redirect, requests, mode, protocol, detect, automatically, ciphers, pci, compliant, listed, additional, chained, certificates,

Latest Articles

  • Linux qemu-kvm How To Enable Soundcard in Guestl
  • QEMU-KVM Windows and Server Guest Installs Mouse Tracking Pointer Location Solution
  • SSH Keep Alive To stop Disconnections
  • Linux How To Disable SATA NCQ For Better Performance
  • the sign-in method you're trying to use isn't allowed. For more info, contact your network administrator - solution for active directory
  • gsmartcontrol for Windows to Check the SMART S.M.A.R.T status
  • WebRTC Vulnerability Shows Local IP Address Even When Using a Proxy or VPN Firefox Fix And Disable Solution
  • chroot in Linux Howto Simple and Easy Guide
  • qemu-kvm qemu-system Image format was not specified for '/mnt/space/cucm12.img' and probing guessed raw. Automatically detecting the format is dangerous for raw images, write operations on block 0 will be restricted. Specify the 'ra
  • Linux Over VNC VMWare How To Switch Virtual Terminals Console Without Using Ctrl+Alt+F1
  • Skype For Business 2015 and 2019 Guide, Reference, Howto and Troubleshooting Solutions
  • Centos 6 or 7 no DHCP IP during startup on first boot or reboot solution
  • Debian / Mint / Ubuntu net-tools packages provides netstat, ifconfig, route, arp and other classic network admin tools
  • Linux Mint XWindows Ubuntu MATE or Cinnamon How To Restart The GUI / Graphics / Session if it freezes without losing current windows or programs
  • Linux bash prompt why does it not show username@host and the current directory?
  • Microsoft SQL Server Check What Version is Running
  • How to install and setup LXC Containers (OpenVZ alternative) on Centos 6 / 7
  • Cisco CUCM Unified Communication Manager Howto Guide and Tutorials
  • SSH persistent and automatic login script for proxy
  • SSH proxy/command in the background or from cron script