In Usermin’s MySQL Database module, how can I restrict the databases that each user can see and use?
By default the module will list all of the databases on your system on the main page, even if some are not actually usable by the logged-in user. To change this, follow these steps :
Login to Webmin on the same server, and enter the Usermin Configuration module.
Click on Usermin Module Configuration.
Click on MySQL Database in the list.
In the Database access control list field, remove the existing *: * line and enter one line per user, containing the username, a colon and
list of databases he is allowed to use. For example, you could enter :
jcameron: database1
fred: database2 database3
joe: *
A * in the database column means all databases, while a * in the username column means any user not listed so far.
Hit the Save button to activate the restrictions.
In Usermin’s Read Mail module, how can I set users’ From addresses when my server hosts multiple virtual domains?
By default, when a user composed email the From field contains username@systemhostname. This can be changed by following these steps :
Login to Webmin on the same server, and enter the Usermin Configuration module.
Click on Usermin Module Configuration.
Click on Read Mail.
In the Default hostname for From: addresses field, enter the domain or hostname that you want to appear after the @ in users’ From addresses.
If you want to stop users from changing their From address (to prevent mail forging), set the Allow editing of From: address option to No.
If you have multiple virtual domains and want different users to have different domains in their From addresses, you will need to set the
From: address mapping file to the name of a file that maps real email addresses to virtual domain email addresses.
This must be a text file, with each line containing :
The username part of each line must be the user’s Usermin login, and the fromaddress is the new From address to assign to that user. The
username can also be the user’s full email address as it currently appears, such as joe@yourserver.com.
Follow these steps :
In the Perl Modules module of Webmin, install
In the PAM Authentication module, add a new PAM service called webmin that uses Unix authentication.
In the Webmin Users module, create a new user called something like unixer, with access to the modules that you want all your Unix users to have access to.
In each of the modules unixer has access to, change the module access control to give your users rights only to their own accounts. For example, in the Change Passwords module you should select Only this user for the Users whose passwords can be changed so that Unix users logging in can only change their own passwords.
Click on Configure Unix user authentication below the list of Webmin users and choose Allow any Unix user to login with permissions of user unixer.
Any Unix user should now be able to login to Webmin on your system.
Again, if your system does not use PAM the first two steps can be skipped, and Webmin will read /etc/passwd or /etc/shadow file directly to authenticate users.
Another alternative to doing all this is to install Usermin, which allows all Unix users to login and access only settings belonging to them, using a similar interface to Webmin.
Running Webmin from inetd?
The steps you need to follow are:
Stop webmin with the command
Add the line
inetd=1 to /etc/webmin/miniserv.conf
Remove the line
session=1 from /etc/webmin/miniserv.conf
Edit /etc/services and add a line like :
Edit /etc/inetd.conf and add a line like :
webmin stream tcp nowait root /usr/libexec/webmin/miniserv.pl miniserv.pl /etc/webmin/miniserv.conf
If you have installed webmin somewhere else, you will have to change the /usr/libexec/webmin part of the path above.
Restart inetd to make the changes take effect.
You should now be able to access webmin on port 10000 as normal.
Using the Bootup and Shutdown module, make sure that inetd is configured to start at boot time, and that webmin is not.
How can I make a Webmin user always use the same password as their shell login?
This can be done by following these steps :
In the Perl Modules module of Webmin.
install Authen::PAM from CPAN.
In the PAM Authentication module, add a new PAM service called webmin that uses Unix authentication.
In the Webmin Users module, click on the user that you want to symchronize with Unix and set his Password option to Unix Authentication.
If PAM is not used on your operating system, the first two steps can be skipped.
Webmin will instead read the /etc/passwd or /etc/shadow file directly to authenticate users who are using the Unix Authentication password mode.
