| View previous topic :: View next topic |
| Author |
Message |
simbad
Senior Member
Joined: 30 Jun 2011
Posts: 106
|
 Posted: Tue Apr 17, 2012 12:42 pm Post subject: Hacked server? |
 |
|
How is it possible that after a few days I can not log into Webmin with the 1000% correct data and returns the user name and password? Someone broke into the server?
I run webmin on port 443
|
|
| Back to top |
|
gerasimos_h
Site Admin
Joined: 09 Aug 2007
Posts: 1757
Location: Greece
|
| Posted: Tue Apr 17, 2012 1:10 pm Post subject: |
|
|
I doubt it,
1. Check if webmin is running...
2. Look at /etc/webmin/webmin.acl to check if users are correct...
3. You can reset webmin password any time with
| Code: | | /usr/local/webmin/changepass.pl /etc/webmin [your user] [yournewpassword] |
4. Look at "var/log/secure" for possible break in attempts.
That's a reminder to add a fail2ban filter for webmin 
gerasimos_h
_________________
Superb! Mini Server Project Manager
http://sms.it-ccs.com |
|
| Back to top |
|
simbad
Senior Member
Joined: 30 Jun 2011
Posts: 106
|
| Posted: Tue Apr 17, 2012 5:22 pm Post subject: |
|
|
root@xenya:~# pico /etc/webmin/webmin.acl
"myusername": webmincron clamav pam syslog-ng system-status dhcp-dns dansguardian dovecot mailscanner dyndns xinetd iscsitarget bsdexports dfsad$
user: status
root@xenya:~# /usr/local/webmin/changepass.pl /etc/webmin "myusername" "mynewpass"
The Webmin user "myusername" does not exist
The users on your system are: admin user
root@xenya:~# /usr/local/webmin/changepass.pl /etc/webmin admin "mypass"
Updated password of Webmin user admin
root@xenya:~#
...and i cant reset pass with sms tool
After reset pass with command line, i can t see module in webmin, only system info
what is the problem?
|
|
| Back to top |
|
baboo
Senior Member
Joined: 04 Sep 2007
Posts: 676
|
| Posted: Tue Apr 17, 2012 6:07 pm Post subject: |
|
|
Hi simbad:
I have had trouble with changing passwd. For some reason webmin did not like my passwd. So, I do admin admin, then login to webmin and click on webmin users --> admin and set password to what I want.
Don't know if that will solve your problem but might be worth a try.
|
|
| Back to top |
|
gerasimos_h
Site Admin
Joined: 09 Aug 2007
Posts: 1757
Location: Greece
|
| Posted: Tue Apr 17, 2012 6:42 pm Post subject: |
|
|
what is in your /etc/webmin/webmin.groups?
You webmin.acl has myusername, either change it to admin or add admin followed with your modules...
syntax is
user : modules allowed to see...
gerasimos_h
_________________
Superb! Mini Server Project Manager
http://sms.it-ccs.com |
|
| Back to top |
|
simbad
Senior Member
Joined: 30 Jun 2011
Posts: 106
|
| Posted: Wed Apr 18, 2012 11:01 am Post subject: |
|
|
I have change "myusername" to admin and resest password with sms tools
administrators:"myusername":backup-config change-user usermin webminlog webmin servers acl init passwd quota mount fsdump logrotate mailcap proc at cron sentry software inittab man syslog useradmin apache bind8 dhcpd fetchmail mysql openslp openvpn postfix proftpd procmail $
Users:user:status::
| Description: |
|
| Filesize: |
47.02 KB |
| Viewed: |
2262 Time(s) |
|
|
|
| Back to top |
|
gerasimos_h
Site Admin
Joined: 09 Aug 2007
Posts: 1757
Location: Greece
|
| Posted: Wed Apr 18, 2012 11:33 am Post subject: |
|
|
edit webmin.groups and add admin to admiistrators...
| Code: | | administrators: admin myusername: backup-config change-user usermin webminlog webmin servers acl init passwd quota mount fsdump logrotate mailcap proc at cron sentry software inittab man syslog useradmin apache bind8 dhcpd fetchmail mysql openslp openvpn postfix proftpd procmail $ |
Aslo there shouldn't be any quotes in ("myusername")
gerasimos_h
_________________
Superb! Mini Server Project Manager
http://sms.it-ccs.com |
|
| Back to top |
|
simbad
Senior Member
Joined: 30 Jun 2011
Posts: 106
|
| Posted: Wed Apr 18, 2012 11:48 am Post subject: |
|
|
| i have this whitout ""
|
|
| Back to top |
|
simbad
Senior Member
Joined: 30 Jun 2011
Posts: 106
|
| Posted: Fri Apr 20, 2012 8:13 am Post subject: |
|
|
| It is not working
|
|
| Back to top |
|
gerasimos_h
Site Admin
Joined: 09 Aug 2007
Posts: 1757
Location: Greece
|
| Posted: Fri Apr 20, 2012 9:12 am Post subject: |
|
|
Assuming you have admin user in webmin.acl and webmin.groups just run changepass.pl script with
| Code: | | /usr/local/webmin/changepass.pl /etc/webmin admin [yournewpassword] |
and it should work....
If that doesn't work backup /usr/local/webmin directory and re-install webmin with
| Code: | slapt-get -u
slapt-get -i webmin --reinstall |
gerasimos_h
_________________
Superb! Mini Server Project Manager
http://sms.it-ccs.com |
|
| Back to top |
|
|
