Web-based server configuration with Webmin
Manage your Linux server system with the easy and flexible Webmin tool.
Life without Linux as a server system is hard to imagine. Excellent performance, fabled stability, and impressive scalability have helped Linux conquer an increasing share of the server market. Despite this success in the server room, setting up, managing, and maintaining the services is often a complex task that requires in-depth knowledge of services and config files.
Various graphical tools have appeared to facilitate easier configuration. Whereas most tools are limited to a couple of services, Webmin , a free Perl-based remote management application, lets you manage a full range of Linux services through a single, standardized interface. A single interface configures daemons and firewalls, as well as watches logfiles, disk partitions, system processes, and configuration parameters. The project also offers a useful collection of modules  that extends the reach of Webmin's graphical oversight.
Most distributions have Webmin in their repositories, although the Webmin packages are missing from Debian and Ubuntu. Webmin is available in both RPM and DEB package format and as a generic tarball with detailed documentation for any other distribution. A compatibility list of the supported Linux versions is available online .
The Webmin project puts a great deal of effort into maintaining and developing the software. Users with older distributions will probably want to ignore the obsolete version in their distribution's repository and download the current version  (1.480 when this issue went to press). Depending on your distribution, first become root and type rpm -ivh webmin-Version.noarch.rpm or dpkg -i webmin_Version_all.deb to install Webmin on your system. The installation routine will report the successful completion of the install process.
Because Webmin has its own lean web server that serves up the administrative interface, you can access Webmin through the URL http://IP_address:10000 from any workstation on the network. After you authenticate as the administrator, the browser shows the configuration framework welcome page with some basic information on hard disk usage and the server operating system. On the left side of the window is a list of topics; clicking an item opens the matching submenu.
The use of an administrative password as the default security feature has rightly been criticized in the past. Before you start using Webmin, you should use the on-board tools to harden the system against unauthorized access. First, select Webmin | Webmin Configuration to open the selection window. The important settings related to security include IP Access Control, Ports and Addresses, Authentication, and Trusted Referrers. Clicking an icon opens a new window with detailed modification options. For example, you can specify which computers on the local network are allowed to access Webmin. To exclude users or machines without administrative tasks, block their user- or hostname. If the computer has an Internet connection, it makes sense to change the default port of 10000.
To prevent automated brute force attacks on Webmin, you need to set the password timeout in Authentication to introduce a wait before allowing a second login attempt after an invalid login. To keep unauthorized users from accessing the Webmin server if a user forgets to log out, it is a good idea to enable the auto-logout feature, which logs users off after a defined inactivity period.
The Others | System and Server Status option gives an overview of the active daemons and allows you to monitor their activities. From the table that displays active daemons, and you can check the box of an entry to add it to the permanent or temporary watch list. If something goes wrong, the service notifies you. Additionally, the System | Running Processes item gives detailed information on all of the active processes running on the system.
The Servers module on the left side of the Webmin window takes you to the service configuration features. The software lists all the modules that Webmin has loaded for server operations as individual menu items. If you follow one of the links, the corresponding configuration window appears, and you can click the buttons to modify the options. Most configuration items are self-explanatory, which removes the need to learn the details of the individual services.
Because Webmin writes modifications directly to the configuration files of individual services, you can still modify the configuration manually without the risk of conflicts or redundancy.
Buy this article as PDF
Mozilla’s product think tank sinks silently into history.
TODO group will focus on open source tools in large-scale environments.
New tool will look like GParted but support a wider range of storage technologies.
New public key pinning feature will help prevent man-in-the-middle attacks.
Carnegie Mellon researchers say 3 million pages could fall down the phishing hole in the next year.
The US government rolls new best-practice rules for protecting SSH.
Klaus Knopper announces the latest version of his iconic Live Linux system.
DARPA and NICTA release the code for the ultra-secure microkernel system used in aerial drones.