-
Exploits on Webmin 1.8xx and earlier
Developers have just announced the release of Webmin 1.930. This includes some important security fixes. If you have an older Webmin version please update urgently to insure your server remains secure. In particular they described an exploit that is fairly major. Should your install be too old to update, you can fix the bug by…
-
Replace webmin self-signed certificate to avoid sec_error_invalid_key error
Recent browser versions (e.g. Firefox 33) refuse to work with older Webmin installs. They give a sec_error_invalid_key error, offer a ‘Try again’ button, but do not offer an option to add an exception. Firefox 33 no longer supports certificates with private keys smaller than 1024 bits. You can replace your webmin certificate with a new…
-
Keeping your hosting panel updated
From time to time hosting control panels (Such as Plesk) get updated by their creators. Those updates may often include patches to critical vulnerabilities, so its a good idea to keep track of those. We try to keep our customers informed. One example is a recent notification from Parallels affecting some older versions of Plesk.…
-
PCI compliance – a basic HOWTO
A lot of people are wanting to be PCI compliant these days, and this is generally a good thing. PCI compliance is not just a server spec, but a list of procedures, policies, controls over access to data. Therefore the server side is only one part of the process. It can be expensive and time…
-
Virtualmin and Webmin upgrade errors & the fix
We had a customer email in saying they were having a problem upgrading. The error was fairly verbose, but the general gist was this –> Processing Dependency: /usr/libexec/webmin for package: wbt-virtual-server-mobile –> Processing Dependency: /usr/libexec/webmin for package: wbm-virtualmin-mailman –> Processing Dependency: /usr/libexec/webmin for package: wbm-ruby-gems –> Processing Dependency: /usr/libexec/webmin for package: wbm-ruby-gems –> Finished Dependency…