tips
Remove
# /etc/webmin/uninstall.sh
# /etc/webmin/restart
port change & no ssl
# vi /etc/webmin/miniserv.conf
port=10000 [ change port ]
addtype_cgi=internal/cgirealm=Webmin Serverlogfile=/var/webmin/miniserv.logerrorlog=/var/webmin/miniserv.errorpidfile=/var/webmin/miniserv.pidlogtime=168ppath=ssl=1 [ change 0 -no ssl ]no_ssl2=1no_ssl3=1no_tls1=1no_tls1_1=1ssl_honorcipherorder=1no_sslcompression=1env_WEBMIN_CONFIG=/etc/webminenv_WEBMIN_VAR=/var/webminatboot=1logout=/etc/webmin/logout-flaglisten=10000denyfile=\.pl$log=1blockhost_failures=5blockhost_time=60syslog=1session=1premodules=WebminCoreuserfile=/etc/webmin/miniserv.users"/etc/webmin/miniserv.conf" 44L, 893CChange passwdLog into SSH as root
tail /var/webmin/miniserv.error
Reset your Webmin password with the changepass program:
/usr/libexec/webmin/changepass.pl /etc/webmin username password
/usr/libexec/webmin/changepass.pl /etc/webmin root Re@lly$trongP@SsWOrd
# /etc/init.d/webmin restart
# vi /etc/webmin/miniserv.usersADD:admin:mypassword
change the new user webmin password to some password
# /usr/libexec/webmin/changepass.pl /etc/webmin/ newusername your_password
/usr/libexec/webmin/changepass.pl /etc/webmin admin PASSWORD_HERE
# vi /etc/webmin/webmin.acl
admin: acl adsl-client ajaxterm apache at backup-config bacula-backup bandwidth bind8 burner change-user cluster-copy cluster-cron cluster-passwd cluster-shell cluster-software cluster-useradmin cluster-usermin cluster-webmin cpan cron custom dfsadmin dhcpd dovecot exim exports fail2ban fdisk fetchmail filemin file filter firewall6 firewalld firewall fsdump grub heartbeat htaccess-htpasswd idmapd inetd init inittab ipfilter ipfw ipsec iscsi-client iscsi-server iscsi-target iscsi-tgtd jabber krb5 ldap-client ldap-server ldap-useradmin logrotate lpadmin lvm mailboxes mailcap man mon mount mysql net nis openslp package-updates pam pap passwd phpini postfix postgresql ppp-client pptp-client pptp-server procmail proc proftpd qmailadmin quota raid samba sarg sendmail servers shell shorewall6 shorewall smart-status smf software spam squid sshd status stunnel syslog syslog-ng system-status tcpwrappers telnet time tunnel updown useradmin usermin vgetty webalizer webmincron webminlog webmin wuftpd xinetd virtual-server virtualmin-awstats jailkit virtualmin-htpasswd virtualmin-sqlite virtualmin-dav ruby-gems virtualmin-git php-pear virtualmin-init virtualmin-slavedns virtualmin-registrar
==========
admin: change-user awstats init passwd csf quota proc syslog logviewer system-status useradmin postfix bandwidth time shell custom xterm
root: acl adsl-client apache at backup-config bacula-backup bandwidth bind8 change-user cluster-copy cluster-cron cluster-passwd cluster-shell cluster-software cluster-useradmin cluster-usermin cluster-webmin cpan cron custom dfsadmin dhcpd dovecot exim exports fail2ban fdisk fetchmail filemin filter firewall firewall6 firewalld fsdump heartbeat htaccess-htpasswd idmapd inetd init inittab ipfilter ipfw ipsec iscsi-client iscsi-server iscsi-target iscsi-tgtd krb5 ldap-client ldap-server ldap-useradmin logrotate logviewer lpadmin lvm mailboxes mailcap man mount mysql net nis openslp package-updates pam pap passwd phpini postfix postgresql ppp-client pptp-client pptp-server proc procmail proftpd qmailadmin quota raid samba sarg sendmail servers shell shorewall shorewall6 smart-status smf software spam squid sshd status stunnel syslog-ng syslog system-status tcpwrappers time tunnel updown useradmin usermin webalizer webmin webmincron webminlog xinetd xterm csf awst
use this regex with multiple lookahead assertions (conditions):
^(?=.*?[A-Z])(?=.*?[a-z])(?=.*?[0-9])(?=.*?[#?!@$%^&*-]).{8,}$
^(?=.*?[A-Z])(?=.*?[a-z])(?=.*?[0-9])(?=.*?[#?!@$%^&*-]).{8,}$
This regex will enforce these rules:
At least one upper case English letter, (?=.*?[A-Z])
At least one lower case English letter, (?=.*?[a-z])
At least one digit, (?=.*?[0-9])
At least one special character, (?=.*?[#?!@$%^&*-])
Minimum eight in length .{8,} (with the anchors)
---------------------------------------------------