Installing Webmin & Enabling SSL

Webmin Setup Centos 5:

wget http://downloads.sourceforge.net/project/webadmin/webmin/1.530/webmin-1.530-1.noarch.rpm?r=http%3A%2F%2Fwww.webmin.com%2Fstandard.html&ts=1294339690&use_mirror=surfnet
[1] 24229
[2] 24230
[root@host ~]# --2011-01-06 21:48:20--  http://downloads.sourceforge.net/project/webadmin/webmin/1.530/webmin-1.530-1.noarch.rpm?r=http%3A%2F%2Fwww.webmin.com%2Fstandard.html
Resolving downloads.sourceforge.net... 216.34.181.59
Connecting to downloads.sourceforge.net|216.34.181.59|:80... connected.
HTTP request sent, awaiting response... 302 Found
Location: http://superb-sea2.dl.sourceforge.net/project/webadmin/webmin/1.530/webmin-1.530-1.noarch.rpm [following]
--2011-01-06 21:48:20--  http://superb-sea2.dl.sourceforge.net/project/webadmin/webmin/1.530/webmin-1.530-1.noarch.rpm
Resolving superb-sea2.dl.sourceforge.net... 209.160.57.180
Connecting to superb-sea2.dl.sourceforge.net|209.160.57.180|:80... connected.
HTTP request sent, awaiting response... 200 OK
Length: 16133333 (15M) [application/octet-stream]
Saving to: `webmin-1.530-1.noarch.rpm'

100%[===========================================================>] 16,133,333  4.89M/s   in 3.7s   

2011-01-06 21:48:24 (4.21 MB/s) - `webmin-1.530-1.noarch.rpm' saved [16133333/16133333]

rpm -ivh webmin-1.530-1.noarch.rpm
warning: webmin-1.530-1.noarch.rpm: Header V3 DSA signature: NOKEY, key ID 11f63c51
Preparing...                ########################################### [100%]
Operating system is CentOS Linux
   1:webmin                 ########################################### [100%]
Webmin install complete. You can now login to http://yourip.com:10000/
as root with your root password.
[1]-  Done                    wget http://downloads.sourceforge.net/project/webadmin/webmin/1.530/webmin-1.530-1.noarch.rpm?r=http%3A%2F%2Fwww.webmin.com%2Fstandard.html
[2]+  Done                    ts=1294339690

========
This isn't smart webmin is not configured with mandatory and default SSL so it is extremely insecure.  Imagine if the password is sniffed, then the person has root on your server!


yum install openssl-devel

Download Perl SSL module SSLeay:

wget http://download.webmin.com/download/Net_SSLeay.pm-1.23.tar.gz

tar zxvf Net_SSLeay.pm-1.23.tar.gz
Net_SSLeay.pm-1.23/
Net_SSLeay.pm-1.23/ptrcasttst.c
Net_SSLeay.pm-1.23/MANIFEST
Net_SSLeay.pm-1.23/RECIPE.Win32
Net_SSLeay.pm-1.23/Changes
Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50/
Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50/Makefile.PL
Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50/MANIFEST
Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50/test.pl
Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50/Handle.pm
Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50/Changes
Net_SSLeay.pm-1.23/examples/
Net_SSLeay.pm-1.23/examples/get_page.pl
Net_SSLeay.pm-1.23/examples/bio.pl
Net_SSLeay.pm-1.23/examples/makecert.pl
Net_SSLeay.pm-1.23/examples/cb-testi.pl
Net_SSLeay.pm-1.23/examples/ephemeral.pl
Net_SSLeay.pm-1.23/examples/cli-cert.pl
Net_SSLeay.pm-1.23/examples/bulk.pl
Net_SSLeay.pm-1.23/examples/get_page_cert.pl
Net_SSLeay.pm-1.23/examples/req.conf
Net_SSLeay.pm-1.23/examples/sslecho.pl
Net_SSLeay.pm-1.23/examples/https-proxy-snif.pl
Net_SSLeay.pm-1.23/examples/ssl_diff.pl
Net_SSLeay.pm-1.23/examples/sslcat.pl
Net_SSLeay.pm-1.23/examples/get_authenticated_page.pl
Net_SSLeay.pm-1.23/examples/passwd-cb.pl
Net_SSLeay.pm-1.23/examples/ssl-inetd-serv.pl
Net_SSLeay.pm-1.23/examples/minicli.pl
Net_SSLeay.pm-1.23/examples/stdio_bulk.pl
Net_SSLeay.pm-1.23/examples/callback.pl
Net_SSLeay.pm-1.23/examples/server_key.pem
Net_SSLeay.pm-1.23/SSLeay.pm
Net_SSLeay.pm-1.23/.rnd
Net_SSLeay.pm-1.23/README
Net_SSLeay.pm-1.23/SSLeay.xs
Net_SSLeay.pm-1.23/test.pl
Net_SSLeay.pm-1.23/Makefile.PL
Net_SSLeay.pm-1.23/QuickRef
Net_SSLeay.pm-1.23/README.Win32
Net_SSLeay.pm-1.23/ptrtstrun.pl
Net_SSLeay.pm-1.23/Credits
Net_SSLeay.pm-1.23/typemap



#cd Net_SSLeay.pm-1.23
#perl Makefile.PL
Checking for OpenSSL-0.9.6j or 0.9.7b or newer...
You have OpenSSL-0.9.8e installed in /usr
That's is newer than what this module was tested with (0.9.6j
or 0.9.7b). You should
consider checking if there is a newer release of this module
available. Everything will probably work OK, though.
*** Could not figure out which C compiler was used to compile /usr/bin/openssl. It is essentiall that OpenSSL, perl, and Net::SSLeay are compiled with the same compiler and flags. Mixing and matching compilers is not supported. at Makefile.PL line 140.
Checking if your kit is complete...
Looks good
Checking if your kit is complete...
Looks good
Writing Makefile for Net::SSLeay::Handle
Writing Makefile for Net::SSLeay
[root@host Net_SSLeay.pm-1.23]# make install
cp ptrtstrun.pl blib/lib/Net/ptrtstrun.pl
cp SSLeay.pm blib/lib/Net/SSLeay.pm
AutoSplitting blib/lib/Net/SSLeay.pm (blib/lib/auto/Net/SSLeay)
blib/lib/Net/SSLeay.pm: some names are not unique when truncated to 8 characters:
 directory blib/lib/auto/Net/SSLeay:
  do_https3.al, do_https2.al, do_https4.al, do_https.al truncate to do_https
  get_https.al, get_https3.al, get_https4.al truncate to get_http
  head_https.al, head_https3.al, head_https4.al truncate to head_htt
  post_https.al, post_https3.al, post_https4.al truncate to post_htt
  put_https.al, put_https3.al, put_https4.al truncate to put_http
  ssl_read_all.al, ssl_read_until.al, ssl_read_CRLF.al truncate to ssl_read
  ssl_write_all.al, ssl_write_CRLF.al truncate to ssl_writ
make[1]: Entering directory `/root/Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50'
cp Handle.pm ../blib/lib/Net/SSLeay/Handle.pm
Manifying ../blib/man3/Net::SSLeay::Handle.3pm
make[1]: Leaving directory `/root/Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50'
/usr/bin/perl /usr/lib/perl5/5.8.8/ExtUtils/xsubpp  -typemap /usr/lib/perl5/5.8.8/ExtUtils/typemap -typemap typemap  SSLeay.xs > SSLeay.xsc && mv SSLeay.xsc SSLeay.c
gcc -c  -I/usr/include -I/usr/inc32 -I/usr/kerberos/include -D_REENTRANT -D_GNU_SOURCE -fno-strict-aliasing -pipe -Wdeclaration-after-statement -I/usr/local/include -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 -I/usr/include/gdbm -O   -DVERSION=\"1.23\" -DXS_VERSION=\"1.23\" -fPIC "-I/usr/lib/perl5/5.8.8/i386-linux-thread-multi/CORE"  -DPERL5 -DOPENSSL_NO_KRB5 SSLeay.c
/bin/sh: gcc: command not found
make: *** [SSLeay.o] Error 127

yum install gcc-*

make install

make[1]: Entering directory `/root/Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50'
Manifying ../blib/man3/Net::SSLeay::Handle.3pm
make[1]: Leaving directory `/root/Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50'
gcc -c  -I/usr/include -I/usr/inc32 -I/usr/kerberos/include -D_REENTRANT -D_GNU_SOURCE -fno-strict-aliasing -pipe -Wdeclaration-after-statement -I/usr/local/include -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 -I/usr/include/gdbm -O   -DVERSION=\"1.23\" -DXS_VERSION=\"1.23\" -fPIC "-I/usr/lib/perl5/5.8.8/i386-linux-thread-multi/CORE"  -DPERL5 -DOPENSSL_NO_KRB5 SSLeay.c
SSLeay.c: In function ‘XS_Net__SSLeay_state_string’:
SSLeay.c:2639: warning: assignment discards qualifiers from pointer target type
SSLeay.c: In function ‘XS_Net__SSLeay_rstate_string’:
SSLeay.c:2657: warning: assignment discards qualifiers from pointer target type
SSLeay.c: In function ‘XS_Net__SSLeay_state_string_long’:
SSLeay.c:2675: warning: assignment discards qualifiers from pointer target type
SSLeay.c: In function ‘XS_Net__SSLeay_rstate_string_long’:
SSLeay.c:2693: warning: assignment discards qualifiers from pointer target type
SSLeay.c: In function ‘XS_Net__SSLeay_d2i_SSL_SESSION’:
SSLeay.c:3142: warning: passing argument 2 of ‘d2i_SSL_SESSION’ from incompatible pointer type
SSLeay.c: In function ‘XS_Net__SSLeay_alert_desc_string’:
SSLeay.c:4891: warning: assignment discards qualifiers from pointer target type
SSLeay.c: In function ‘XS_Net__SSLeay_alert_desc_string_long’:
SSLeay.c:4909: warning: assignment discards qualifiers from pointer target type
SSLeay.c: In function ‘XS_Net__SSLeay_alert_type_string’:
SSLeay.c:4927: warning: assignment discards qualifiers from pointer target type
SSLeay.c: In function ‘XS_Net__SSLeay_alert_type_string_long’:
SSLeay.c:4945: warning: assignment discards qualifiers from pointer target type
Running Mkbootstrap for Net::SSLeay ()
chmod 644 SSLeay.bs
rm -f blib/arch/auto/Net/SSLeay/SSLeay.so
gcc  -shared -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector --param=ssp-buffer-size=4 -m32 -march=i386 -mtune=generic -fasynchronous-unwind-tables -L/usr/local/lib SSLeay.o  -o blib/arch/auto/Net/SSLeay/SSLeay.so     \
       -L/usr -L/usr/lib -lssl -lcrypto      \
     
chmod 755 blib/arch/auto/Net/SSLeay/SSLeay.so
cp SSLeay.bs blib/arch/auto/Net/SSLeay/SSLeay.bs
chmod 644 blib/arch/auto/Net/SSLeay/SSLeay.bs
Manifying blib/man3/Net::SSLeay.3pm
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/SSLeay.so
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/SSLeay.bs
Files found in blib/arch: installing files in blib/lib into architecture dependent library tree
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/Net/SSLeay.pm
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/Net/ptrtstrun.pl
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/Net/SSLeay/Handle.pm
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/post_https3.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/make_headers.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/sslcat.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/randomize.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/open_tcp_connection.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/do_https4.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/head_https.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/dump_peer_certificate.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/do_https2.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/do_https.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/get_https3.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/set_proxy.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/open_proxy_tcp_connection.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/set_server_cert_and_key.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/debug_read.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/do_https3.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/put_https.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/put_https3.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/new_x_ctx.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/ssl_read_CRLF.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/set_cert_and_key.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/want_nothing.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/https_cat.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/post_https4.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/ssl_read_all.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/get_https.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/want_read.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/ssl_write_all.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/head_https3.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/put_https4.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/autosplit.ix
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/want_write.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/get_https4.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/make_form.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/head_https4.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/want_X509_lookup.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/ssl_read_until.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/ssl_write_CRLF.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/post_https.al
Installing /usr/share/man/man3/Net::SSLeay::Handle.3pm
Installing /usr/share/man/man3/Net::SSLeay.3pm
Writing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/.packlist
Appending installation info to /usr/lib/perl5/5.8.8/i386-linux-thread-multi/perllocal.pod

Test the PERL SSL module:

perl -e 'use Net::SSLeay'

*If no output is shown this is good and means it is ready and the install was successful

Webmin
Backup Configuration Files
Change Language and Theme
Webmin Actions Log
*Webmin Configuration
Webmin Servers Index
Webmin Users

Click the "SSL Encryption" icon on the bottom right of the screen for "Webmin Configuration".
Choose the following:

Enable SSL if available?     *Yes No
Private key file    
Certificate file     *Same file as private key
Separate file
Redirect non-SSL requests to SSL mode?     *Yes No
SSL protocol version     Detect automatically
Allowed SSL ciphers     Detect automatically
Only strong PCI-compliant ciphers
Listed ciphers
Additional certificate files
(for chained certificates)


Tags:

installing, webmin, enabling, sslwebmin, centos, wget, http, downloads, sourceforge, webadmin, noarch, rpm, fwww, fstandard, html, ts, use_mirror, surfnet, resolving, connecting, awaiting, superb, dl, ok, length, octet, stream, mb, ivh, header, dsa, nokey, preparing, operating, linux, install, login, yourip, password, isn, configured, mandatory, default, ssl, insecure, sniffed, server, yum, openssl, devel, download, perl, module, ssleay, net_ssleay, pm, tar, gz, zxvf, ptrcasttst, manifest, recipe, makefile, pl, examples, get_page, bio, makecert, cb, testi, ephemeral, cli, cert, bulk, get_page_cert, req, conf, sslecho, https, proxy, snif, ssl_diff, sslcat, get_authenticated_page, passwd, inetd, serv, minicli, stdio_bulk, callback, server_key, pem, rnd, readme, xs, quickref, ptrtstrun, credits, typemap, newer, installed, usr, compiler, compile, bin, essentiall, compiled, flags, mixing, matching, compilers, supported, cp, blib, lib, autosplitting, auto, truncated, characters, directory, do_https, truncate, get_https, get_http, head_https, head_htt, post_https, post_htt, put_https, put_http, ssl_read_all, ssl_read_until, ssl_read_crlf, ssl_read, ssl_write_all, ssl_write_crlf, ssl_writ, manifying, extutils, xsubpp, xsc, mv, gcc, inc, kerberos, d_reentrant, d_gnu_source, fno, strict, aliasing, wdeclaration, d_largefile_source, d_file_offset_bits, gdbm, dversion, quot, dxs_version, fpic, multi, dperl, dopenssl_no_krb, sh, lsquo, xs_net__ssleay_state_string, rsquo, discards, qualifiers, pointer, xs_net__ssleay_rstate_string, xs_net__ssleay_state_string_long, xs_net__ssleay_rstate_string_long, xs_net__ssleay_d, i_ssl_session, incompatible, xs_net__ssleay_alert_desc_string, xs_net__ssleay_alert_desc_string_long, xs_net__ssleay_alert_type_string, xs_net__ssleay_alert_type_string_long, mkbootstrap, chmod, bs, rm, wp, d_fortify_source, fexceptions, fstack, protector, param, ssp, buffer, mtune, generic, fasynchronous, unwind, lssl, lcrypto, site_perl, architecture, make_headers, randomize, open_tcp_connection, dump_peer_certificate, set_proxy, open_proxy_tcp_connection, set_server_cert_and_key, debug_read, new_x_ctx, set_cert_and_key, want_nothing, https_cat, want_read, autosplit, ix, want_write, make_form, want_x, _lookup, packlist, appending, installation, info, perllocal, pod, output, configuration, servers, index, users, encryption, icon, enable, certificate, redirect, requests, mode, protocol, detect, automatically, ciphers, pci, compliant, listed, additional, chained, certificates,

Latest Articles

  • ImageMagick Convert PDF Not Authorized
  • ImageMagick Converted PDF to JPEG some files have a black background solution
  • Linux Mint Mate Customize the Lock screen messages and hide username and real name
  • Ubuntu/Gnome/Mint/Centos How To Take a partial screenshot
  • ssh how to verify your host key / avoid MIM attacks
  • Cisco IP Phone CP-8845 8800/8900 Series How To Reset To Factory Settings Instructions
  • ls how to list ONLY directories
  • How to encrypt your SSH private key file id_rsa
  • Linux Mint 18 Disable User Name List from showing on Login Screen
  • Firefox Cannot Hit Enter Key In Address Bar and Location History Not Working
  • Cisco Unified Communications Manager / CUCM IP 8.6,10,12 Install Error Solution
  • Ubuntu Debian Mint Linux SSHD OpenSSH Server Not Starting After Reboot Solution
  • nmap how to scan for all ports and not just the 1000 most common ports
  • Windows 7,8,10 and Server 2008, 2012, 2016, 2019 Read Only Attribute Won't Go Away
  • bind / named how to make a wildcard record and retain defined A records
  • Cisco Unified Communications Manager 12 Install Errors on Proxmox/KVM
  • Local Vs Universally Administered MAC Address NIC Refuses to come up
  • Cisco Unified Communications Manager 12 CUCM 12 - How To Enable Video Calling
  • Windows 7, 8, 10, Windows Server 2008, 2012, 2016, 2019 How To AC97 Audio Drivers and Other Unsigned Drivers
  • Cisco Unified Communications Manager / CUCM IP Telephony Definitions