Installing Webmin & Enabling SSL

Webmin Setup Centos 5:

wget http://downloads.sourceforge.net/project/webadmin/webmin/1.530/webmin-1.530-1.noarch.rpm?r=http%3A%2F%2Fwww.webmin.com%2Fstandard.html&ts=1294339690&use_mirror=surfnet
[1] 24229
[2] 24230
[root@host ~]# --2011-01-06 21:48:20--  http://downloads.sourceforge.net/project/webadmin/webmin/1.530/webmin-1.530-1.noarch.rpm?r=http%3A%2F%2Fwww.webmin.com%2Fstandard.html
Resolving downloads.sourceforge.net... 216.34.181.59
Connecting to downloads.sourceforge.net|216.34.181.59|:80... connected.
HTTP request sent, awaiting response... 302 Found
Location: http://superb-sea2.dl.sourceforge.net/project/webadmin/webmin/1.530/webmin-1.530-1.noarch.rpm [following]
--2011-01-06 21:48:20--  http://superb-sea2.dl.sourceforge.net/project/webadmin/webmin/1.530/webmin-1.530-1.noarch.rpm
Resolving superb-sea2.dl.sourceforge.net... 209.160.57.180
Connecting to superb-sea2.dl.sourceforge.net|209.160.57.180|:80... connected.
HTTP request sent, awaiting response... 200 OK
Length: 16133333 (15M) [application/octet-stream]
Saving to: `webmin-1.530-1.noarch.rpm'

100%[===========================================================>] 16,133,333  4.89M/s   in 3.7s   

2011-01-06 21:48:24 (4.21 MB/s) - `webmin-1.530-1.noarch.rpm' saved [16133333/16133333]

rpm -ivh webmin-1.530-1.noarch.rpm
warning: webmin-1.530-1.noarch.rpm: Header V3 DSA signature: NOKEY, key ID 11f63c51
Preparing...                ########################################### [100%]
Operating system is CentOS Linux
   1:webmin                 ########################################### [100%]
Webmin install complete. You can now login to http://yourip.com:10000/
as root with your root password.
[1]-  Done                    wget http://downloads.sourceforge.net/project/webadmin/webmin/1.530/webmin-1.530-1.noarch.rpm?r=http%3A%2F%2Fwww.webmin.com%2Fstandard.html
[2]+  Done                    ts=1294339690

========
This isn't smart webmin is not configured with mandatory and default SSL so it is extremely insecure.  Imagine if the password is sniffed, then the person has root on your server!


yum install openssl-devel

Download Perl SSL module SSLeay:

wget http://download.webmin.com/download/Net_SSLeay.pm-1.23.tar.gz

tar zxvf Net_SSLeay.pm-1.23.tar.gz
Net_SSLeay.pm-1.23/
Net_SSLeay.pm-1.23/ptrcasttst.c
Net_SSLeay.pm-1.23/MANIFEST
Net_SSLeay.pm-1.23/RECIPE.Win32
Net_SSLeay.pm-1.23/Changes
Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50/
Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50/Makefile.PL
Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50/MANIFEST
Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50/test.pl
Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50/Handle.pm
Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50/Changes
Net_SSLeay.pm-1.23/examples/
Net_SSLeay.pm-1.23/examples/get_page.pl
Net_SSLeay.pm-1.23/examples/bio.pl
Net_SSLeay.pm-1.23/examples/makecert.pl
Net_SSLeay.pm-1.23/examples/cb-testi.pl
Net_SSLeay.pm-1.23/examples/ephemeral.pl
Net_SSLeay.pm-1.23/examples/cli-cert.pl
Net_SSLeay.pm-1.23/examples/bulk.pl
Net_SSLeay.pm-1.23/examples/get_page_cert.pl
Net_SSLeay.pm-1.23/examples/req.conf
Net_SSLeay.pm-1.23/examples/sslecho.pl
Net_SSLeay.pm-1.23/examples/https-proxy-snif.pl
Net_SSLeay.pm-1.23/examples/ssl_diff.pl
Net_SSLeay.pm-1.23/examples/sslcat.pl
Net_SSLeay.pm-1.23/examples/get_authenticated_page.pl
Net_SSLeay.pm-1.23/examples/passwd-cb.pl
Net_SSLeay.pm-1.23/examples/ssl-inetd-serv.pl
Net_SSLeay.pm-1.23/examples/minicli.pl
Net_SSLeay.pm-1.23/examples/stdio_bulk.pl
Net_SSLeay.pm-1.23/examples/callback.pl
Net_SSLeay.pm-1.23/examples/server_key.pem
Net_SSLeay.pm-1.23/SSLeay.pm
Net_SSLeay.pm-1.23/.rnd
Net_SSLeay.pm-1.23/README
Net_SSLeay.pm-1.23/SSLeay.xs
Net_SSLeay.pm-1.23/test.pl
Net_SSLeay.pm-1.23/Makefile.PL
Net_SSLeay.pm-1.23/QuickRef
Net_SSLeay.pm-1.23/README.Win32
Net_SSLeay.pm-1.23/ptrtstrun.pl
Net_SSLeay.pm-1.23/Credits
Net_SSLeay.pm-1.23/typemap



#cd Net_SSLeay.pm-1.23
#perl Makefile.PL
Checking for OpenSSL-0.9.6j or 0.9.7b or newer...
You have OpenSSL-0.9.8e installed in /usr
That's is newer than what this module was tested with (0.9.6j
or 0.9.7b). You should
consider checking if there is a newer release of this module
available. Everything will probably work OK, though.
*** Could not figure out which C compiler was used to compile /usr/bin/openssl. It is essentiall that OpenSSL, perl, and Net::SSLeay are compiled with the same compiler and flags. Mixing and matching compilers is not supported. at Makefile.PL line 140.
Checking if your kit is complete...
Looks good
Checking if your kit is complete...
Looks good
Writing Makefile for Net::SSLeay::Handle
Writing Makefile for Net::SSLeay
[root@host Net_SSLeay.pm-1.23]# make install
cp ptrtstrun.pl blib/lib/Net/ptrtstrun.pl
cp SSLeay.pm blib/lib/Net/SSLeay.pm
AutoSplitting blib/lib/Net/SSLeay.pm (blib/lib/auto/Net/SSLeay)
blib/lib/Net/SSLeay.pm: some names are not unique when truncated to 8 characters:
 directory blib/lib/auto/Net/SSLeay:
  do_https3.al, do_https2.al, do_https4.al, do_https.al truncate to do_https
  get_https.al, get_https3.al, get_https4.al truncate to get_http
  head_https.al, head_https3.al, head_https4.al truncate to head_htt
  post_https.al, post_https3.al, post_https4.al truncate to post_htt
  put_https.al, put_https3.al, put_https4.al truncate to put_http
  ssl_read_all.al, ssl_read_until.al, ssl_read_CRLF.al truncate to ssl_read
  ssl_write_all.al, ssl_write_CRLF.al truncate to ssl_writ
make[1]: Entering directory `/root/Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50'
cp Handle.pm ../blib/lib/Net/SSLeay/Handle.pm
Manifying ../blib/man3/Net::SSLeay::Handle.3pm
make[1]: Leaving directory `/root/Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50'
/usr/bin/perl /usr/lib/perl5/5.8.8/ExtUtils/xsubpp  -typemap /usr/lib/perl5/5.8.8/ExtUtils/typemap -typemap typemap  SSLeay.xs > SSLeay.xsc && mv SSLeay.xsc SSLeay.c
gcc -c  -I/usr/include -I/usr/inc32 -I/usr/kerberos/include -D_REENTRANT -D_GNU_SOURCE -fno-strict-aliasing -pipe -Wdeclaration-after-statement -I/usr/local/include -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 -I/usr/include/gdbm -O   -DVERSION=\"1.23\" -DXS_VERSION=\"1.23\" -fPIC "-I/usr/lib/perl5/5.8.8/i386-linux-thread-multi/CORE"  -DPERL5 -DOPENSSL_NO_KRB5 SSLeay.c
/bin/sh: gcc: command not found
make: *** [SSLeay.o] Error 127

yum install gcc-*

make install

make[1]: Entering directory `/root/Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50'
Manifying ../blib/man3/Net::SSLeay::Handle.3pm
make[1]: Leaving directory `/root/Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50'
gcc -c  -I/usr/include -I/usr/inc32 -I/usr/kerberos/include -D_REENTRANT -D_GNU_SOURCE -fno-strict-aliasing -pipe -Wdeclaration-after-statement -I/usr/local/include -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 -I/usr/include/gdbm -O   -DVERSION=\"1.23\" -DXS_VERSION=\"1.23\" -fPIC "-I/usr/lib/perl5/5.8.8/i386-linux-thread-multi/CORE"  -DPERL5 -DOPENSSL_NO_KRB5 SSLeay.c
SSLeay.c: In function ‘XS_Net__SSLeay_state_string’:
SSLeay.c:2639: warning: assignment discards qualifiers from pointer target type
SSLeay.c: In function ‘XS_Net__SSLeay_rstate_string’:
SSLeay.c:2657: warning: assignment discards qualifiers from pointer target type
SSLeay.c: In function ‘XS_Net__SSLeay_state_string_long’:
SSLeay.c:2675: warning: assignment discards qualifiers from pointer target type
SSLeay.c: In function ‘XS_Net__SSLeay_rstate_string_long’:
SSLeay.c:2693: warning: assignment discards qualifiers from pointer target type
SSLeay.c: In function ‘XS_Net__SSLeay_d2i_SSL_SESSION’:
SSLeay.c:3142: warning: passing argument 2 of ‘d2i_SSL_SESSION’ from incompatible pointer type
SSLeay.c: In function ‘XS_Net__SSLeay_alert_desc_string’:
SSLeay.c:4891: warning: assignment discards qualifiers from pointer target type
SSLeay.c: In function ‘XS_Net__SSLeay_alert_desc_string_long’:
SSLeay.c:4909: warning: assignment discards qualifiers from pointer target type
SSLeay.c: In function ‘XS_Net__SSLeay_alert_type_string’:
SSLeay.c:4927: warning: assignment discards qualifiers from pointer target type
SSLeay.c: In function ‘XS_Net__SSLeay_alert_type_string_long’:
SSLeay.c:4945: warning: assignment discards qualifiers from pointer target type
Running Mkbootstrap for Net::SSLeay ()
chmod 644 SSLeay.bs
rm -f blib/arch/auto/Net/SSLeay/SSLeay.so
gcc  -shared -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector --param=ssp-buffer-size=4 -m32 -march=i386 -mtune=generic -fasynchronous-unwind-tables -L/usr/local/lib SSLeay.o  -o blib/arch/auto/Net/SSLeay/SSLeay.so     \
       -L/usr -L/usr/lib -lssl -lcrypto      \
     
chmod 755 blib/arch/auto/Net/SSLeay/SSLeay.so
cp SSLeay.bs blib/arch/auto/Net/SSLeay/SSLeay.bs
chmod 644 blib/arch/auto/Net/SSLeay/SSLeay.bs
Manifying blib/man3/Net::SSLeay.3pm
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/SSLeay.so
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/SSLeay.bs
Files found in blib/arch: installing files in blib/lib into architecture dependent library tree
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/Net/SSLeay.pm
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/Net/ptrtstrun.pl
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/Net/SSLeay/Handle.pm
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/post_https3.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/make_headers.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/sslcat.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/randomize.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/open_tcp_connection.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/do_https4.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/head_https.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/dump_peer_certificate.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/do_https2.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/do_https.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/get_https3.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/set_proxy.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/open_proxy_tcp_connection.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/set_server_cert_and_key.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/debug_read.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/do_https3.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/put_https.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/put_https3.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/new_x_ctx.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/ssl_read_CRLF.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/set_cert_and_key.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/want_nothing.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/https_cat.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/post_https4.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/ssl_read_all.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/get_https.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/want_read.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/ssl_write_all.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/head_https3.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/put_https4.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/autosplit.ix
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/want_write.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/get_https4.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/make_form.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/head_https4.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/want_X509_lookup.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/ssl_read_until.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/ssl_write_CRLF.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/post_https.al
Installing /usr/share/man/man3/Net::SSLeay::Handle.3pm
Installing /usr/share/man/man3/Net::SSLeay.3pm
Writing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/.packlist
Appending installation info to /usr/lib/perl5/5.8.8/i386-linux-thread-multi/perllocal.pod

Test the PERL SSL module:

perl -e 'use Net::SSLeay'

*If no output is shown this is good and means it is ready and the install was successful

Webmin
Backup Configuration Files
Change Language and Theme
Webmin Actions Log
*Webmin Configuration
Webmin Servers Index
Webmin Users

Click the "SSL Encryption" icon on the bottom right of the screen for "Webmin Configuration".
Choose the following:

Enable SSL if available?     *Yes No
Private key file    
Certificate file     *Same file as private key
Separate file
Redirect non-SSL requests to SSL mode?     *Yes No
SSL protocol version     Detect automatically
Allowed SSL ciphers     Detect automatically
Only strong PCI-compliant ciphers
Listed ciphers
Additional certificate files
(for chained certificates)


Tags:

installing, webmin, enabling, sslwebmin, centos, wget, http, downloads, sourceforge, webadmin, noarch, rpm, fwww, fstandard, html, ts, use_mirror, surfnet, resolving, connecting, awaiting, superb, dl, ok, length, octet, stream, mb, ivh, header, dsa, nokey, preparing, operating, linux, install, login, yourip, password, isn, configured, mandatory, default, ssl, insecure, sniffed, server, yum, openssl, devel, download, perl, module, ssleay, net_ssleay, pm, tar, gz, zxvf, ptrcasttst, manifest, recipe, makefile, pl, examples, get_page, bio, makecert, cb, testi, ephemeral, cli, cert, bulk, get_page_cert, req, conf, sslecho, https, proxy, snif, ssl_diff, sslcat, get_authenticated_page, passwd, inetd, serv, minicli, stdio_bulk, callback, server_key, pem, rnd, readme, xs, quickref, ptrtstrun, credits, typemap, newer, installed, usr, compiler, compile, bin, essentiall, compiled, flags, mixing, matching, compilers, supported, cp, blib, lib, autosplitting, auto, truncated, characters, directory, do_https, truncate, get_https, get_http, head_https, head_htt, post_https, post_htt, put_https, put_http, ssl_read_all, ssl_read_until, ssl_read_crlf, ssl_read, ssl_write_all, ssl_write_crlf, ssl_writ, manifying, extutils, xsubpp, xsc, mv, gcc, inc, kerberos, d_reentrant, d_gnu_source, fno, strict, aliasing, wdeclaration, d_largefile_source, d_file_offset_bits, gdbm, dversion, quot, dxs_version, fpic, multi, dperl, dopenssl_no_krb, sh, lsquo, xs_net__ssleay_state_string, rsquo, discards, qualifiers, pointer, xs_net__ssleay_rstate_string, xs_net__ssleay_state_string_long, xs_net__ssleay_rstate_string_long, xs_net__ssleay_d, i_ssl_session, incompatible, xs_net__ssleay_alert_desc_string, xs_net__ssleay_alert_desc_string_long, xs_net__ssleay_alert_type_string, xs_net__ssleay_alert_type_string_long, mkbootstrap, chmod, bs, rm, wp, d_fortify_source, fexceptions, fstack, protector, param, ssp, buffer, mtune, generic, fasynchronous, unwind, lssl, lcrypto, site_perl, architecture, make_headers, randomize, open_tcp_connection, dump_peer_certificate, set_proxy, open_proxy_tcp_connection, set_server_cert_and_key, debug_read, new_x_ctx, set_cert_and_key, want_nothing, https_cat, want_read, autosplit, ix, want_write, make_form, want_x, _lookup, packlist, appending, installation, info, perllocal, pod, output, configuration, servers, index, users, encryption, icon, enable, certificate, redirect, requests, mode, protocol, detect, automatically, ciphers, pci, compliant, listed, additional, chained, certificates,

Latest Articles

  • How To Stop DNSMasq from listening on all IPs/Interfaces and allow only localhost
  • du - VAS Billing Subscriptions Hack/Scam MLPremiumSub Invascom Astromart Issues Complaint
  • Docker Swarm vs Kubernetes Comparison Guide
  • When is it time to leave your VPS/VDS Cloud Hosting Provider?
  • 2024 Buyer's Guide: How to Choose and Buy the Best VPS/VDS for Your Needs - Tips and Strategies
  • Postfix / sendmail config for DKIM, SPF and DMARC Tutorial Guide E-mail Delivery for Hotmail.com Gmail.com and More HowTo
  • Install Grafana on Linux Debian Ubuntu Tutorial Guide
  • How To Completely Disable ufw in Linux Ubuntu Mint Debian
  • System has not been booted with systemd as init system (PID 1). Can't operate. Failed to talk to init daemon. Ubuntu Debian Linux Solution Cannot reboot
  • Mint Ubuntu Linux Gnome Showing Home Directory on Desktop instead of Desktop Directory
  • vi vim not doing code highlighting E319: Sorry, the command is not available in this version solution
  • Proxmox How To Rename Node Hostname Fix Solution
  • Linux how to get list of all timezones on system Ubuntu
  • Proxmox install issue cannot see the buttons or install wrong / bad resolution cannot see the entire screen problem solution
  • configure.ac:75: error: possibly undefined macro: AC_PROG_LIBTOOL If this token and others are legitimate, please use m4_pattern_allow. See the Autoconf documentation. solution
  • Can't exec "aclocal": No such file or directory at /usr/share/autoconf/Autom4te/FileUtils.pm line 326. autoreconf: failed to run aclocal: No such file or directory solution
  • /bin/sh: autoreconf: command not found solution
  • glib-2.0 required to compile QEMU solution
  • How To Upgrade Debian 8,9,10 to Debian 12 Bookworm
  • Linux dhcp dhclient Mint Redhat Ubuntu Debian How To Use Local Domain DNS Server Instead of ISPs