Installing Webmin & Enabling SSL

Webmin Setup Centos 5:

wget http://downloads.sourceforge.net/project/webadmin/webmin/1.530/webmin-1.530-1.noarch.rpm?r=http%3A%2F%2Fwww.webmin.com%2Fstandard.html&ts=1294339690&use_mirror=surfnet
[1] 24229
[2] 24230
[root@host ~]# --2011-01-06 21:48:20--  http://downloads.sourceforge.net/project/webadmin/webmin/1.530/webmin-1.530-1.noarch.rpm?r=http%3A%2F%2Fwww.webmin.com%2Fstandard.html
Resolving downloads.sourceforge.net... 216.34.181.59
Connecting to downloads.sourceforge.net|216.34.181.59|:80... connected.
HTTP request sent, awaiting response... 302 Found
Location: http://superb-sea2.dl.sourceforge.net/project/webadmin/webmin/1.530/webmin-1.530-1.noarch.rpm [following]
--2011-01-06 21:48:20--  http://superb-sea2.dl.sourceforge.net/project/webadmin/webmin/1.530/webmin-1.530-1.noarch.rpm
Resolving superb-sea2.dl.sourceforge.net... 209.160.57.180
Connecting to superb-sea2.dl.sourceforge.net|209.160.57.180|:80... connected.
HTTP request sent, awaiting response... 200 OK
Length: 16133333 (15M) [application/octet-stream]
Saving to: `webmin-1.530-1.noarch.rpm'

100%[===========================================================>] 16,133,333  4.89M/s   in 3.7s   

2011-01-06 21:48:24 (4.21 MB/s) - `webmin-1.530-1.noarch.rpm' saved [16133333/16133333]

rpm -ivh webmin-1.530-1.noarch.rpm
warning: webmin-1.530-1.noarch.rpm: Header V3 DSA signature: NOKEY, key ID 11f63c51
Preparing...                ########################################### [100%]
Operating system is CentOS Linux
   1:webmin                 ########################################### [100%]
Webmin install complete. You can now login to http://yourip.com:10000/
as root with your root password.
[1]-  Done                    wget http://downloads.sourceforge.net/project/webadmin/webmin/1.530/webmin-1.530-1.noarch.rpm?r=http%3A%2F%2Fwww.webmin.com%2Fstandard.html
[2]+  Done                    ts=1294339690

========
This isn't smart webmin is not configured with mandatory and default SSL so it is extremely insecure.  Imagine if the password is sniffed, then the person has root on your server!


yum install openssl-devel

Download Perl SSL module SSLeay:

wget http://download.webmin.com/download/Net_SSLeay.pm-1.23.tar.gz

tar zxvf Net_SSLeay.pm-1.23.tar.gz
Net_SSLeay.pm-1.23/
Net_SSLeay.pm-1.23/ptrcasttst.c
Net_SSLeay.pm-1.23/MANIFEST
Net_SSLeay.pm-1.23/RECIPE.Win32
Net_SSLeay.pm-1.23/Changes
Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50/
Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50/Makefile.PL
Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50/MANIFEST
Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50/test.pl
Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50/Handle.pm
Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50/Changes
Net_SSLeay.pm-1.23/examples/
Net_SSLeay.pm-1.23/examples/get_page.pl
Net_SSLeay.pm-1.23/examples/bio.pl
Net_SSLeay.pm-1.23/examples/makecert.pl
Net_SSLeay.pm-1.23/examples/cb-testi.pl
Net_SSLeay.pm-1.23/examples/ephemeral.pl
Net_SSLeay.pm-1.23/examples/cli-cert.pl
Net_SSLeay.pm-1.23/examples/bulk.pl
Net_SSLeay.pm-1.23/examples/get_page_cert.pl
Net_SSLeay.pm-1.23/examples/req.conf
Net_SSLeay.pm-1.23/examples/sslecho.pl
Net_SSLeay.pm-1.23/examples/https-proxy-snif.pl
Net_SSLeay.pm-1.23/examples/ssl_diff.pl
Net_SSLeay.pm-1.23/examples/sslcat.pl
Net_SSLeay.pm-1.23/examples/get_authenticated_page.pl
Net_SSLeay.pm-1.23/examples/passwd-cb.pl
Net_SSLeay.pm-1.23/examples/ssl-inetd-serv.pl
Net_SSLeay.pm-1.23/examples/minicli.pl
Net_SSLeay.pm-1.23/examples/stdio_bulk.pl
Net_SSLeay.pm-1.23/examples/callback.pl
Net_SSLeay.pm-1.23/examples/server_key.pem
Net_SSLeay.pm-1.23/SSLeay.pm
Net_SSLeay.pm-1.23/.rnd
Net_SSLeay.pm-1.23/README
Net_SSLeay.pm-1.23/SSLeay.xs
Net_SSLeay.pm-1.23/test.pl
Net_SSLeay.pm-1.23/Makefile.PL
Net_SSLeay.pm-1.23/QuickRef
Net_SSLeay.pm-1.23/README.Win32
Net_SSLeay.pm-1.23/ptrtstrun.pl
Net_SSLeay.pm-1.23/Credits
Net_SSLeay.pm-1.23/typemap



#cd Net_SSLeay.pm-1.23
#perl Makefile.PL
Checking for OpenSSL-0.9.6j or 0.9.7b or newer...
You have OpenSSL-0.9.8e installed in /usr
That's is newer than what this module was tested with (0.9.6j
or 0.9.7b). You should
consider checking if there is a newer release of this module
available. Everything will probably work OK, though.
*** Could not figure out which C compiler was used to compile /usr/bin/openssl. It is essentiall that OpenSSL, perl, and Net::SSLeay are compiled with the same compiler and flags. Mixing and matching compilers is not supported. at Makefile.PL line 140.
Checking if your kit is complete...
Looks good
Checking if your kit is complete...
Looks good
Writing Makefile for Net::SSLeay::Handle
Writing Makefile for Net::SSLeay
[root@host Net_SSLeay.pm-1.23]# make install
cp ptrtstrun.pl blib/lib/Net/ptrtstrun.pl
cp SSLeay.pm blib/lib/Net/SSLeay.pm
AutoSplitting blib/lib/Net/SSLeay.pm (blib/lib/auto/Net/SSLeay)
blib/lib/Net/SSLeay.pm: some names are not unique when truncated to 8 characters:
 directory blib/lib/auto/Net/SSLeay:
  do_https3.al, do_https2.al, do_https4.al, do_https.al truncate to do_https
  get_https.al, get_https3.al, get_https4.al truncate to get_http
  head_https.al, head_https3.al, head_https4.al truncate to head_htt
  post_https.al, post_https3.al, post_https4.al truncate to post_htt
  put_https.al, put_https3.al, put_https4.al truncate to put_http
  ssl_read_all.al, ssl_read_until.al, ssl_read_CRLF.al truncate to ssl_read
  ssl_write_all.al, ssl_write_CRLF.al truncate to ssl_writ
make[1]: Entering directory `/root/Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50'
cp Handle.pm ../blib/lib/Net/SSLeay/Handle.pm
Manifying ../blib/man3/Net::SSLeay::Handle.3pm
make[1]: Leaving directory `/root/Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50'
/usr/bin/perl /usr/lib/perl5/5.8.8/ExtUtils/xsubpp  -typemap /usr/lib/perl5/5.8.8/ExtUtils/typemap -typemap typemap  SSLeay.xs > SSLeay.xsc && mv SSLeay.xsc SSLeay.c
gcc -c  -I/usr/include -I/usr/inc32 -I/usr/kerberos/include -D_REENTRANT -D_GNU_SOURCE -fno-strict-aliasing -pipe -Wdeclaration-after-statement -I/usr/local/include -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 -I/usr/include/gdbm -O   -DVERSION=\"1.23\" -DXS_VERSION=\"1.23\" -fPIC "-I/usr/lib/perl5/5.8.8/i386-linux-thread-multi/CORE"  -DPERL5 -DOPENSSL_NO_KRB5 SSLeay.c
/bin/sh: gcc: command not found
make: *** [SSLeay.o] Error 127

yum install gcc-*

make install

make[1]: Entering directory `/root/Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50'
Manifying ../blib/man3/Net::SSLeay::Handle.3pm
make[1]: Leaving directory `/root/Net_SSLeay.pm-1.23/Net-SSLeay-Handle-0.50'
gcc -c  -I/usr/include -I/usr/inc32 -I/usr/kerberos/include -D_REENTRANT -D_GNU_SOURCE -fno-strict-aliasing -pipe -Wdeclaration-after-statement -I/usr/local/include -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 -I/usr/include/gdbm -O   -DVERSION=\"1.23\" -DXS_VERSION=\"1.23\" -fPIC "-I/usr/lib/perl5/5.8.8/i386-linux-thread-multi/CORE"  -DPERL5 -DOPENSSL_NO_KRB5 SSLeay.c
SSLeay.c: In function ‘XS_Net__SSLeay_state_string’:
SSLeay.c:2639: warning: assignment discards qualifiers from pointer target type
SSLeay.c: In function ‘XS_Net__SSLeay_rstate_string’:
SSLeay.c:2657: warning: assignment discards qualifiers from pointer target type
SSLeay.c: In function ‘XS_Net__SSLeay_state_string_long’:
SSLeay.c:2675: warning: assignment discards qualifiers from pointer target type
SSLeay.c: In function ‘XS_Net__SSLeay_rstate_string_long’:
SSLeay.c:2693: warning: assignment discards qualifiers from pointer target type
SSLeay.c: In function ‘XS_Net__SSLeay_d2i_SSL_SESSION’:
SSLeay.c:3142: warning: passing argument 2 of ‘d2i_SSL_SESSION’ from incompatible pointer type
SSLeay.c: In function ‘XS_Net__SSLeay_alert_desc_string’:
SSLeay.c:4891: warning: assignment discards qualifiers from pointer target type
SSLeay.c: In function ‘XS_Net__SSLeay_alert_desc_string_long’:
SSLeay.c:4909: warning: assignment discards qualifiers from pointer target type
SSLeay.c: In function ‘XS_Net__SSLeay_alert_type_string’:
SSLeay.c:4927: warning: assignment discards qualifiers from pointer target type
SSLeay.c: In function ‘XS_Net__SSLeay_alert_type_string_long’:
SSLeay.c:4945: warning: assignment discards qualifiers from pointer target type
Running Mkbootstrap for Net::SSLeay ()
chmod 644 SSLeay.bs
rm -f blib/arch/auto/Net/SSLeay/SSLeay.so
gcc  -shared -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector --param=ssp-buffer-size=4 -m32 -march=i386 -mtune=generic -fasynchronous-unwind-tables -L/usr/local/lib SSLeay.o  -o blib/arch/auto/Net/SSLeay/SSLeay.so     \
       -L/usr -L/usr/lib -lssl -lcrypto      \
     
chmod 755 blib/arch/auto/Net/SSLeay/SSLeay.so
cp SSLeay.bs blib/arch/auto/Net/SSLeay/SSLeay.bs
chmod 644 blib/arch/auto/Net/SSLeay/SSLeay.bs
Manifying blib/man3/Net::SSLeay.3pm
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/SSLeay.so
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/SSLeay.bs
Files found in blib/arch: installing files in blib/lib into architecture dependent library tree
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/Net/SSLeay.pm
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/Net/ptrtstrun.pl
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/Net/SSLeay/Handle.pm
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/post_https3.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/make_headers.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/sslcat.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/randomize.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/open_tcp_connection.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/do_https4.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/head_https.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/dump_peer_certificate.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/do_https2.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/do_https.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/get_https3.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/set_proxy.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/open_proxy_tcp_connection.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/set_server_cert_and_key.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/debug_read.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/do_https3.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/put_https.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/put_https3.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/new_x_ctx.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/ssl_read_CRLF.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/set_cert_and_key.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/want_nothing.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/https_cat.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/post_https4.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/ssl_read_all.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/get_https.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/want_read.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/ssl_write_all.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/head_https3.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/put_https4.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/autosplit.ix
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/want_write.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/get_https4.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/make_form.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/head_https4.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/want_X509_lookup.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/ssl_read_until.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/ssl_write_CRLF.al
Installing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/post_https.al
Installing /usr/share/man/man3/Net::SSLeay::Handle.3pm
Installing /usr/share/man/man3/Net::SSLeay.3pm
Writing /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/auto/Net/SSLeay/.packlist
Appending installation info to /usr/lib/perl5/5.8.8/i386-linux-thread-multi/perllocal.pod

Test the PERL SSL module:

perl -e 'use Net::SSLeay'

*If no output is shown this is good and means it is ready and the install was successful

Webmin
Backup Configuration Files
Change Language and Theme
Webmin Actions Log
*Webmin Configuration
Webmin Servers Index
Webmin Users

Click the "SSL Encryption" icon on the bottom right of the screen for "Webmin Configuration".
Choose the following:

Enable SSL if available?     *Yes No
Private key file    
Certificate file     *Same file as private key
Separate file
Redirect non-SSL requests to SSL mode?     *Yes No
SSL protocol version     Detect automatically
Allowed SSL ciphers     Detect automatically
Only strong PCI-compliant ciphers
Listed ciphers
Additional certificate files
(for chained certificates)


Tags:

installing, webmin, enabling, sslwebmin, centos, wget, http, downloads, sourceforge, webadmin, noarch, rpm, fwww, fstandard, html, ts, use_mirror, surfnet, resolving, connecting, awaiting, superb, dl, ok, length, octet, stream, mb, ivh, header, dsa, nokey, preparing, operating, linux, install, login, yourip, password, isn, configured, mandatory, default, ssl, insecure, sniffed, server, yum, openssl, devel, download, perl, module, ssleay, net_ssleay, pm, tar, gz, zxvf, ptrcasttst, manifest, recipe, makefile, pl, examples, get_page, bio, makecert, cb, testi, ephemeral, cli, cert, bulk, get_page_cert, req, conf, sslecho, https, proxy, snif, ssl_diff, sslcat, get_authenticated_page, passwd, inetd, serv, minicli, stdio_bulk, callback, server_key, pem, rnd, readme, xs, quickref, ptrtstrun, credits, typemap, newer, installed, usr, compiler, compile, bin, essentiall, compiled, flags, mixing, matching, compilers, supported, cp, blib, lib, autosplitting, auto, truncated, characters, directory, do_https, truncate, get_https, get_http, head_https, head_htt, post_https, post_htt, put_https, put_http, ssl_read_all, ssl_read_until, ssl_read_crlf, ssl_read, ssl_write_all, ssl_write_crlf, ssl_writ, manifying, extutils, xsubpp, xsc, mv, gcc, inc, kerberos, d_reentrant, d_gnu_source, fno, strict, aliasing, wdeclaration, d_largefile_source, d_file_offset_bits, gdbm, dversion, quot, dxs_version, fpic, multi, dperl, dopenssl_no_krb, sh, lsquo, xs_net__ssleay_state_string, rsquo, discards, qualifiers, pointer, xs_net__ssleay_rstate_string, xs_net__ssleay_state_string_long, xs_net__ssleay_rstate_string_long, xs_net__ssleay_d, i_ssl_session, incompatible, xs_net__ssleay_alert_desc_string, xs_net__ssleay_alert_desc_string_long, xs_net__ssleay_alert_type_string, xs_net__ssleay_alert_type_string_long, mkbootstrap, chmod, bs, rm, wp, d_fortify_source, fexceptions, fstack, protector, param, ssp, buffer, mtune, generic, fasynchronous, unwind, lssl, lcrypto, site_perl, architecture, make_headers, randomize, open_tcp_connection, dump_peer_certificate, set_proxy, open_proxy_tcp_connection, set_server_cert_and_key, debug_read, new_x_ctx, set_cert_and_key, want_nothing, https_cat, want_read, autosplit, ix, want_write, make_form, want_x, _lookup, packlist, appending, installation, info, perllocal, pod, output, configuration, servers, index, users, encryption, icon, enable, certificate, redirect, requests, mode, protocol, detect, automatically, ciphers, pci, compliant, listed, additional, chained, certificates,

Latest Articles

  • How To Upgrade Debian 8,9,10 to Debian 12 Bookworm
  • Linux dhcp dhclient Mint Redhat Ubuntu Debian How To Use Local Domain DNS Server Instead of ISPs
  • Docker dockerd swarm high CPU usage cause solution
  • Docker Minimum Requirements/How Efficient is Docker? How Much Memory Does Dockerd Use?
  • qemu-nbd: Failed to set NBD socket solution qemu-nbd: Disconnect client, due to: Failed to read request: Unexpected end-of-file before all bytes were read
  • apache2 httpd apache server will not start [pid 22449:tid 139972160445760] AH00052: child pid 23248 exit signal Aborted (6) solution Mint Debian Ubuntu Redhat
  • How to use the FTDI USB serial cable to RJ45 adapter to connect to the console on Cisco/Juniper Switch Router Firewall in Linux Ubuntu Debian Redhat
  • How To Setup Python3 in Ubuntu Docker Image for AI Deep Learning
  • How to Configure NVIDIA GPUs with Docker on Ubuntu: A Comprehensive Guide for AI Deep Learning CUDA Solution
  • Linux Ubuntu Mint how to check nameservers when /etc/resolv.conf disabled solution
  • Docker cannot work on other overlayfs filesystems such as ecryptfs won't start overlayfs: filesystem on '/home/docker/overlay2/check-overlayfs-support130645871/upper' not supported as upperdir
  • Linux How To Access Original Contents of Directory Mounted Debian Mint CentOS Redhat Solution
  • ecryptfs how to manually encrypt your existing home directory or other directory
  • How to Reset CIPC Cisco IP Communicator for CME CUCM CallManager
  • Internet Explorer Cannot Download File "Your security settings do not allow for this file to be downloaded." Security Settings Solution
  • Linux How To Upgrade To The Latest Kernel Debian Mint Ubuntu
  • Firefox how to restore and backup saved passwords and history which files/location
  • Linux How To echo as root solution to use tee permission denied solution Ubuntu Debian Mint Redhat CentOS
  • Linux how to keep command line bash process running if you are disconnected or need to logout of SSH remotely
  • Linux swapping too much? How to check the swappiness and stop swapping