Installing Webmin & Enabling SSL

Webmin Setup Centos 5:

wget http://downloads.sourceforge.net/project/webadmin/webmin/1.530/webmin-1.530-1.noarch.rpm?r=http%3A%2F%2Fwww.webmin.com%2Fstandard.html&ts=1294339690&use_mirror=surfnet
[1] 24229
[2] 24230
[root@host ~]# --2011-01-06 21:48:20--  http://downloads.sourceforge.net/project/webadmin/webmin/1.530/webmin-1.530-1.noarch.rpm?r=http%3A%2F%2Fwww.webmin.com%2Fstandard.html
Resolving downloads.sourceforge.net... 216.34.181.59
Connecting to downloads.sourceforge.net|216.34.181.59|:80... connected.
HTTP request sent, awaiting response... 302 Found
Location: http://superb-sea2.dl.sourceforge.net/project/webadmin/webmin/1.530/webmin-1.530-1.noarch.rpm [following]
--2011-01-06 21:48:20--  http://superb-sea2.dl.sourceforge.net/project/webadmin/webmin/1.530/webmin-1.530-1.noarch.rpm
Resolving superb-sea2.dl.sourceforge.net... 209.160.57.180
Connecting to superb-sea2.dl.sourceforge.net|209.160.57.180|:80... connected.
HTTP request sent, awaiting response... 200 OK
Length: 16133333 (15M) [application/octet-stream]
Saving to: `webmin-1.530-1.noarch.rpm'

100%[===========================================================>] 16,133,333  4.89M/s   in 3.7s   

2011-01-06 21:48:24 (4.21 MB/s) - `webmin-1.530-1.noarch.rpm' saved [16133333/16133333]

rpm -ivh webmin-1.530-1.noarch.rpm
warning: webmin-1.530-1.noarch.rpm: Header V3 DSA signature: NOKEY, key ID 11f63c51
Preparing...                ########################################### [100%]
Operating system is CentOS Linux
   1:webmin                 ########################################### [100%]
Webmin install complete. You can now login to http://yourip.com:10000/
as root with your root password.
[1]-  Done                    wget http://downloads.sourceforge.net/project/webadmin/webmin/1.530/webmin-1.530-1.noarch.rpm?r=http%3A%2F%2Fwww.webmin.com%2Fstandard.html
[2]+  Done                    ts=1294339690

========
This isn't smart webmin is not configured with mandatory and default SSL so it is extremely insecure.  Imagine if the password is sniffed, then the person has root on your server!


yum install openssl-devel

Download Perl SSL module SSLeay:

wget http://download.webmin.com/download/Net_SSLeay.pm-1.23.tar.gz

tar zxvf Net_SSLeay.pm-1.23.tar.gz
Net_SSLeay.pm-1.23/
Net_SSLeay.pm-1.23/ptrcasttst.c
Net_SSLeay.pm-1.23/MANIFEST
Net_SSLeay.pm-1.23/RECIPE.Win32
Net_SSLeay.pm-1.23/Changes
Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50/
Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50/Makefile.PL
Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50/MANIFEST
Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50/test.pl
Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50/Handle.pm
Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50/Changes
Net_SSLeay.pm-1.23/examples/
Net_SSLeay.pm-1.23/examples/get_page.pl
Net_SSLeay.pm-1.23/examples/bio.pl
Net_SSLeay.pm-1.23/examples/makecert.pl
Net_SSLeay.pm-1.23/examples/cb-testi.pl
Net_SSLeay.pm-1.23/examples/ephemeral.pl
Net_SSLeay.pm-1.23/examples/cli-cert.pl
Net_SSLeay.pm-1.23/examples/bulk.pl
Net_SSLeay.pm-1.23/examples/get_page_cert.pl
Net_SSLeay.pm-1.23/examples/req.conf
Net_SSLeay.pm-1.23/examples/sslecho.pl
Net_SSLeay.pm-1.23/examples/https-proxy-snif.pl
Net_SSLeay.pm-1.23/examples/ssl_diff.pl
Net_SSLeay.pm-1.23/examples/sslcat.pl
Net_SSLeay.pm-1.23/examples/get_authenticated_page.pl
Net_SSLeay.pm-1.23/examples/passwd-cb.pl
Net_SSLeay.pm-1.23/examples/ssl-inetd-serv.pl
Net_SSLeay.pm-1.23/examples/minicli.pl
Net_SSLeay.pm-1.23/examples/stdio_bulk.pl
Net_SSLeay.pm-1.23/examples/callback.pl
Net_SSLeay.pm-1.23/examples/server_key.pem
Net_SSLeay.pm-1.23/SSLeay.pm
Net_SSLeay.pm-1.23/.rnd
Net_SSLeay.pm-1.23/README
Net_SSLeay.pm-1.23/SSLeay.xs
Net_SSLeay.pm-1.23/test.pl
Net_SSLeay.pm-1.23/Makefile.PL
Net_SSLeay.pm-1.23/QuickRef
Net_SSLeay.pm-1.23/README.Win32
Net_SSLeay.pm-1.23/ptrtstrun.pl
Net_SSLeay.pm-1.23/Credits
Net_SSLeay.pm-1.23/typemap



#cd Net_SSLeay.pm-1.23
#perl Makefile.PL
Checking for OpenSSL-0.9.6j or 0.9.7b or newer...
You have OpenSSL-0.9.8e installed in /usr
That's is newer than what this module was tested with (0.9.6j
or 0.9.7b). You should
consider checking if there is a newer release of this module
available. Everything will probably work OK, though.
*** Could not figure out which C compiler was used to compile /usr/bin/openssl. It is essentiall that OpenSSL, perl, and Net::SSLeay are compiled with the same compiler and flags. Mixing and matching compilers is not supported. at Makefile.PL line 140.
Checking if your kit is complete...
Looks good
Checking if your kit is complete...
Looks good
Writing Makefile for Net::SSLeay::Handle
Writing Makefile for Net::SSLeay
[root@host Net_SSLeay.pm-1.23]# make install
cp ptrtstrun.pl blib/lib/Net/ptrtstrun.pl
cp SSLeay.pm blib/lib/Net/SSLeay.pm
AutoSplitting blib/lib/Net/SSLeay.pm (blib/lib/auto/Net/SSLeay)
blib/lib/Net/SSLeay.pm: some names are not unique when truncated to 8 characters:
 directory blib/lib/auto/Net/SSLeay:
  do_https3.al, do_https2.al, do_https4.al, do_https.al truncate to do_https
  get_https.al, get_https3.al, get_https4.al truncate to get_http
  head_https.al, head_https3.al, head_https4.al truncate to head_htt
  post_https.al, post_https3.al, post_https4.al truncate to post_htt
  put_https.al, put_https3.al, put_https4.al truncate to put_http
  ssl_read_all.al, ssl_read_until.al, ssl_read_CRLF.al truncate to ssl_read
  ssl_write_all.al, ssl_write_CRLF.al truncate to ssl_writ
make[1]: Entering directory `/root/Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50'
cp Handle.pm ../blib/lib/Net/SSLeay/Handle.pm
Manifying ../blib/man3/Net::SSLeay::Handle.3pm
make[1]: Leaving directory `/root/Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50'
/usr/bin/perl /usr/lib/perl5/5.8.8/ExtUtils/xsubpp  -typemap /usr/lib/perl5/5.8.8/ExtUtils/typemap -typemap typemap  SSLeay.xs > SSLeay.xsc && mv SSLeay.xsc SSLeay.c
gcc -c  -I/usr/include -I/usr/inc32 -I/usr/kerberos/include -D_REENTRANT -D_GNU_SOURCE -fno-strict-aliasing -pipe -Wdeclaration-after-statement -I/usr/local/include -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 -I/usr/include/gdbm -O   -DVERSION=\"1.23\" -DXS_VERSION=\"1.23\" -fPIC "-I/usr/lib/perl5/5.8.8/i386-linux-thread-multi/CORE"  -DPERL5 -DOPENSSL_NO_KRB5 SSLeay.c
/bin/sh: gcc: command not found
make: *** [SSLeay.o] Error 127

yum install gcc-*

make install

make[1]: Entering directory `/root/Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50'
Manifying ../blib/man3/Net::SSLeay::Handle.3pm
make[1]: Leaving directory `/root/Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50'
gcc -c  -I/usr/include -I/usr/inc32 -I/usr/kerberos/include -D_REENTRANT -D_GNU_SOURCE -fno-strict-aliasing -pipe -Wdeclaration-after-statement -I/usr/local/include -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 -I/usr/include/gdbm -O   -DVERSION=\"1.23\" -DXS_VERSION=\"1.23\" -fPIC "-I/usr/lib/perl5/5.8.8/i386-linux-thread-multi/CORE"  -DPERL5 -DOPENSSL_NO_KRB5 SSLeay.c
SSLeay.c: In function ‘XS_Net__SSLeay_state_string’:
SSLeay.c:2639: warning: assignment discards qualifiers from pointer target type
SSLeay.c: In function ‘XS_Net__SSLeay_rstate_string’:
SSLeay.c:2657: warning: assignment discards qualifiers from pointer target type
SSLeay.c: In function ‘XS_Net__SSLeay_state_string_long’:
SSLeay.c:2675: warning: assignment discards qualifiers from pointer target type
SSLeay.c: In function ‘XS_Net__SSLeay_rstate_string_long’:
SSLeay.c:2693: warning: assignment discards qualifiers from pointer target type
SSLeay.c: In function ‘XS_Net__SSLeay_d2i_SSL_SESSION’:
SSLeay.c:3142: warning: passing argument 2 of ‘d2i_SSL_SESSION’ from incompatible pointer type
SSLeay.c: In function ‘XS_Net__SSLeay_alert_desc_string’:
SSLeay.c:4891: warning: assignment discards qualifiers from pointer target type
SSLeay.c: In function ‘XS_Net__SSLeay_alert_desc_string_long’:
SSLeay.c:4909: warning: assignment discards qualifiers from pointer target type
SSLeay.c: In function ‘XS_Net__SSLeay_alert_type_string’:
SSLeay.c:4927: warning: assignment discards qualifiers from pointer target type
SSLeay.c: In function ‘XS_Net__SSLeay_alert_type_string_long’:
SSLeay.c:4945: warning: assignment discards qualifiers from pointer target type
Running Mkbootstrap for Net::SSLeay ()
chmod 644 SSLeay.bs
rm -f blib/arch/auto/Net/SSLeay/SSLeay.so
gcc  -shared -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector --param=ssp-buffer-size=4 -m32 -march=i386 -mtune=generic -fasynchronous-unwind-tables -L/usr/local/lib SSLeay.o  -o blib/arch/auto/Net/SSLeay/SSLeay.so     \
       -L/usr -L/usr/lib -lssl -lcrypto      \
     
chmod 755 blib/arch/auto/Net/SSLeay/SSLeay.so
cp SSLeay.bs blib/arch/auto/Net/SSLeay/SSLeay.bs
chmod 644 blib/arch/auto/Net/SSLeay/SSLeay.bs
Manifying blib/man3/Net::SSLeay.3pm
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/SSLeay.so
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/SSLeay.bs
Files found in blib/arch: installing files in blib/lib into architecture dependent library tree
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/Net/SSLeay.pm
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/Net/ptrtstrun.pl
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/Net/SSLeay/Handle.pm
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/post_https3.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/make_headers.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/sslcat.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/randomize.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/open_tcp_connection.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/do_https4.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/head_https.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/dump_peer_certificate.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/do_https2.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/do_https.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/get_https3.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/set_proxy.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/open_proxy_tcp_connection.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/set_server_cert_and_key.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/debug_read.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/do_https3.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/put_https.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/put_https3.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/new_x_ctx.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/ssl_read_CRLF.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/set_cert_and_key.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/want_nothing.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/https_cat.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/post_https4.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/ssl_read_all.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/get_https.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/want_read.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/ssl_write_all.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/head_https3.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/put_https4.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/autosplit.ix
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/want_write.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/get_https4.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/make_form.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/head_https4.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/want_X509_lookup.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/ssl_read_until.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/ssl_write_CRLF.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/post_https.al
Installing /usr/share/man/man3/Net::SSLeay::Handle.3pm
Installing /usr/share/man/man3/Net::SSLeay.3pm
Writing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/.packlist
Appending installation info to /usr/lib/perl5/5.8.8/i386-linux-thread-multi/perllocal.pod

Test the PERL SSL module:

perl -e 'use Net::SSLeay'

*If no output is shown this is good and means it is ready and the install was successful

Webmin
Backup Configuration Files
Change Language and Theme
Webmin Actions Log
*Webmin Configuration
Webmin Servers Index
Webmin Users

Click the "SSL Encryption" icon on the bottom right of the screen for "Webmin Configuration".
Choose the following:

Enable SSL if available?     *Yes No
Private key file    
Certificate file     *Same file as private key
Separate file
Redirect non-SSL requests to SSL mode?     *Yes No
SSL protocol version     Detect automatically
Allowed SSL ciphers     Detect automatically
Only strong PCI-compliant ciphers
Listed ciphers
Additional certificate files
(for chained certificates)


Tags:

installing, webmin, enabling, sslwebmin, centos, wget, http, downloads, sourceforge, webadmin, noarch, rpm, fwww, fstandard, html, ts, use_mirror, surfnet, resolving, connecting, awaiting, superb, dl, ok, length, octet, stream, mb, ivh, header, dsa, nokey, preparing, operating, linux, install, login, yourip, password, isn, configured, mandatory, default, ssl, insecure, sniffed, server, yum, openssl, devel, download, perl, module, ssleay, net_ssleay, pm, tar, gz, zxvf, ptrcasttst, manifest, recipe, makefile, pl, examples, get_page, bio, makecert, cb, testi, ephemeral, cli, cert, bulk, get_page_cert, req, conf, sslecho, https, proxy, snif, ssl_diff, sslcat, get_authenticated_page, passwd, inetd, serv, minicli, stdio_bulk, callback, server_key, pem, rnd, readme, xs, quickref, ptrtstrun, credits, typemap, newer, installed, usr, compiler, compile, bin, essentiall, compiled, flags, mixing, matching, compilers, supported, cp, blib, lib, autosplitting, auto, truncated, characters, directory, do_https, truncate, get_https, get_http, head_https, head_htt, post_https, post_htt, put_https, put_http, ssl_read_all, ssl_read_until, ssl_read_crlf, ssl_read, ssl_write_all, ssl_write_crlf, ssl_writ, manifying, extutils, xsubpp, xsc, mv, gcc, inc, kerberos, d_reentrant, d_gnu_source, fno, strict, aliasing, wdeclaration, d_largefile_source, d_file_offset_bits, gdbm, dversion, quot, dxs_version, fpic, multi, dperl, dopenssl_no_krb, sh, lsquo, xs_net__ssleay_state_string, rsquo, discards, qualifiers, pointer, xs_net__ssleay_rstate_string, xs_net__ssleay_state_string_long, xs_net__ssleay_rstate_string_long, xs_net__ssleay_d, i_ssl_session, incompatible, xs_net__ssleay_alert_desc_string, xs_net__ssleay_alert_desc_string_long, xs_net__ssleay_alert_type_string, xs_net__ssleay_alert_type_string_long, mkbootstrap, chmod, bs, rm, wp, d_fortify_source, fexceptions, fstack, protector, param, ssp, buffer, mtune, generic, fasynchronous, unwind, lssl, lcrypto, site_perl, architecture, make_headers, randomize, open_tcp_connection, dump_peer_certificate, set_proxy, open_proxy_tcp_connection, set_server_cert_and_key, debug_read, new_x_ctx, set_cert_and_key, want_nothing, https_cat, want_read, autosplit, ix, want_write, make_form, want_x, _lookup, packlist, appending, installation, info, perllocal, pod, output, configuration, servers, index, users, encryption, icon, enable, certificate, redirect, requests, mode, protocol, detect, automatically, ciphers, pci, compliant, listed, additional, chained, certificates,

Latest Articles

  • ssh Too many authentication failures not prompting for password
  • LightDM Mint Ubuntu Debian won't start errors Nvidia Graphics
  • WARNING: Unable to determine the path to install the libglvnd EGL vendor library config files. Check that you have pkg-config and the libglvnd development libraries installed, or specify a path with --glvnd-egl-config-path. Linux Ubuntu Mint Debian E
  • How To Upgrade Linux Mint 18.2 to 18.3 to 19.x and 20.x
  • MP3s Won't Play / ID3 Version 2.4 Issues in Cars and Other MP3 Players/CDs/DVDs Solution
  • LXC Containers LXD How to Install and Configure Tutorial Ubuntu Debian Mint
  • GlusterFS HowTo Tutorial For Distributed Storage in Docker, Kubernetes, LXC, KVM, Proxmox
  • Ubuntu Mint audio output not working pulseaudio "pulseaudio[13710]: [pulseaudio] sink-input.c: Failed to create sink input: too many inputs per sink."
  • How To Shrink Dynamically Allocated VM QEMU KVM VMware Disk Image File
  • How To Enable Linux Swapfile Instead of Partition Ubuntu Mint Debian Centos
  • 404 Not Found [IP: 151.101.194.132 80] apt update Debian 11 Bullseye Solution The repository 'http://security.debian.org bullseye/updates Release' does not have a Release file.
  • WARNING: Can't download daily.cvd from db.local.clamav.net freshclam clamav error solution
  • (firefox:9562): LIBDBUSMENU-GLIB-WARNING **: Unable to get session bus: Failed to execute child process "dbus-launch" (No such file or directory) Solution
  • Debian Mint Ubuntu Which Package Provides missing top, ps and w Solution
  • Vbox Virtualbox DNS NAT Network Mode NOT working
  • Docker Tutorial HowTo Install Docker, Use and Create Docker Container Images Clustering Swarm Mode Monitoring Service Hosting Provider
  • Zoom Password Error 'That passcode was incorrect' - Solution Wrong Passcode Wrong Meeting Name
  • How To Startup and Open Remote/Local Folder/Directory in Ubuntu Linux Mint automatically upon login
  • How To Reset Windows Server Password 2019, 2022, 7, 8, 10, 11 Recovery and Removal Guide Using Linux Ubuntu Mint Debian
  • How To Create OpenVPN Server for Secure Remote Corporate Access in Linux Debian/Mint/Ubuntu with client public key authentication