All Versions
95
Latest Version
Avg Release Cycle
34 days
Latest Release
-

Changelog History
Page 10

  • v1.180 Changes

    • 0๏ธโƒฃ All subheadings have been reduced in size when using the default MSC theme.
    • ๐Ÿ”ง All modules now use a new API for writing to configuration files, which ensures that the file does not get written to or truncated if the system is out of disk space.

  • v1.170 Changes

    • โฌ†๏ธ When installing a module from the command line, by it will be granted to the same users who receive new modules when Webmin is upgraded. By default, this is root and admin.
    • โž• Added basic support for multiple root directories, so that Webmin modules can be separated into core and third-party on the filesystem.
    • โฌ†๏ธ When installing or upgrading Webmin, password timeouts are now enabled by default. This protects against brute-force password guessing attacks.

  • v1.160 Changes

    • โž• Added support for Solaris 10.
    • ๐ŸŒ Included several additional translations for various languages and modules.
    • โž• Added support for config- files that allow a range of OS version numbers, and used this to reduce the number of standard config files.

  • v1.150 Changes

    • โšก๏ธ Updated the setup.sh script to use MD5 password encryption by default, on systems where Perl supports it.
    • ๐Ÿ›  Fixed a security hole in the maketemp.pl script, used to create the /tmp/.webmin directory at install time. If an un-trusted user creates this directory before Webmin is installed, he could create in it a symbolic link pointing to a critical file on the system, which would be overwritten when Webmin writes to the link filename (CVE bug CAN-2004-0559).
    • ๐Ÿ”ง When PAM is used for Unix authentication, expired passwords are now detected and the user is prompted to select a new password (if this feature is enabled on the Webmin Configuration module).
    • ๐Ÿ’ป Make all functions in ui-lib.pl themable, allowing themes to have more detailed control over modules that make use of this library.
    • ๐Ÿ–จ Updated all modules to call ui_print_header instead of calling header and printing <hr>, so that themes can avoid the <hr>. Also updated the MSC theme to do this.

  • v1.140 Changes

    • ๐Ÿ›  Fixed a security hole that allowed any user to view the configuration of any module, even those that they should not have access to.
    • ๐Ÿ›  Fixed a security hole that could allow an attacker to lock valid users by sending a bogus username or password.