All Versions
95
Latest Version
Avg Release Cycle
34 days
Latest Release
-
Changelog History
Page 10
Changelog History
Page 10
-
v1.180 Changes
- 0️⃣ All subheadings have been reduced in size when using the default MSC theme.
- 🔧 All modules now use a new API for writing to configuration files, which ensures that the file does not get written to or truncated if the system is out of disk space.
-
v1.170 Changes
- ⬆️ When installing a module from the command line, by it will be granted to the same users who receive new modules when Webmin is upgraded. By default, this is root and admin.
- ➕ Added basic support for multiple root directories, so that Webmin modules can be separated into core and third-party on the filesystem.
- ⬆️ When installing or upgrading Webmin, password timeouts are now enabled by default. This protects against brute-force password guessing attacks.
-
v1.160 Changes
- ➕ Added support for Solaris 10.
- 🌐 Included several additional translations for various languages and modules.
- ➕ Added support for config- files that allow a range of OS version numbers, and used this to reduce the number of standard config files.
-
v1.150 Changes
- ⚡️ Updated the setup.sh script to use MD5 password encryption by default, on systems where Perl supports it.
- 🛠 Fixed a security hole in the
maketemp.pl
script, used to create the /tmp/.webmin directory at install time. If an un-trusted user creates this directory before Webmin is installed, he could create in it a symbolic link pointing to a critical file on the system, which would be overwritten when Webmin writes to the link filename (CVE bug CAN-2004-0559). - 🔧 When PAM is used for Unix authentication, expired passwords are now detected and the user is prompted to select a new password (if this feature is enabled on the Webmin Configuration module).
- 💻 Make all functions in
ui-lib.pl
themable, allowing themes to have more detailed control over modules that make use of this library. - 🖨 Updated all modules to call
ui_print_header
instead of calling header and printing<hr>
, so that themes can avoid the<hr>
. Also updated the MSC theme to do this.
-
v1.140 Changes
- 🛠 Fixed a security hole that allowed any user to view the configuration of any module, even those that they should not have access to.
- 🛠 Fixed a security hole that could allow an attacker to lock valid users by sending a bogus username or password.