Menu
▾
▴
Re: [webmin-l] how secure is webmin
|
From: <mai...@lo...> - 2008-04-01 10:55:35
|
abhishek jain wrote .. > Dear Friends, > I over the years is using webmin for my personal VPS and personal domains, i > want to give it a shot on for hosting domains and public webspaces . i want > to use the free version of virtualmin. > > I want to know how secure is it, i mean is there a chance of users sharing a > security glitch, if yes what? By security i mean eg. users eg. logged in via > ftp can see other users files and also apache seeing files of other users. > > Also does webmin or apache for that matter support virtual users. Users in a > mysql table. > > Pl. reply. > Thanks, > abhishek I've not had any problems with it except one and that was easily mitigated. When I purchased my server the server host set up webmin on the server. MySQL root had no password but was not allowed to access the server other than via local host. When I installed phpMyAdmin I was unaware of this and one day tried to log in as root. Imagine my horror as I discovered that no password let me in. I set a password quick sharp but it is still a potential issue to be aware of even though it's not a webmin problem specifically and equally could effect any system with a poor MySQL set up. -Matt http://lordmatt.co.uk http://lordmattandyou.com |