SSL certificate and 10000 port problem

4 posts / 0 new
Last post
#1 Fri, 11/13/2015 - 02:55
alexo

SSL certificate and 10000 port problem

Hello

Today i got SSL certificate and after installation i cann't login into webmin/virtualmin = no access to this port 10000 from all browsers ()

Chrome https://172.110.7.***:10000/ This webpage is not available

ERR_SSL_VERSION_OR_CIPHER_MISMATCH

#

Firefox https://172.110.7.***:10000/

Secure Connection Failed

An error occurred during a connection to 172.110.7.***:10000. Cannot communicate securely with peer: no common encryption algorithm(s). (Error code: ssl_error_no_cypher_overlap)

IE

Internet Explorer cannot display the webpage

the same is with domain.name

-but i have access to :20000 !!!

How can i restore my webmin access?

Is the problem with certificate or with webmin ?

Which files do i need to change to get access? (i have backups of this files miniserv.conf and miniserv.pem(

Any advice?

thank you !

Fri, 11/13/2015 - 08:44
andreychek

Howdy,

You may want to start by taking a look at /etc/webmin/miniserv.conf. In there, do you see any lines that are restricting the available ciphers?

-Eric

Fri, 11/13/2015 - 10:17
alexo

Here is miniserv.conf file

port=10000
root=/usr/libexec/webmin
mimetypes=/usr/libexec/webmin/mime.types
addtype_cgi=internal/cgi
realm=Webmin Server
logfile=/var/webmin/miniserv.log
errorlog=/var/webmin/miniserv.error
pidfile=/var/webmin/miniserv.pid
logtime=168
ppath=
ssl=1
no_ssl2=1
no_ssl3=1
env_WEBMIN_CONFIG=/etc/webmin
env_WEBMIN_VAR=/var/webmin
atboot=1
logout=/etc/webmin/logout-flag
listen=10000
denyfile=\.pl$
log=1
blockhost_failures=5
blockhost_time=60
syslog=1
session=1
server=MiniServ/1.760
userfile=/etc/webmin/miniserv.users
keyfile=/etc/webmin/miniserv.pem
passwd_file=/etc/shadow
passwd_uindex=0
passwd_pindex=1
passwd_cindex=2
passwd_mindex=4
passwd_mode=0
preroot=virtual-server-theme
passdelay=1
cipher_list_def=1
sessiononly=/virtual-server/remote.cgi
preload=
anonymous=/virtualmin-mailman/unauthenticated=anonymous
mobile_preroot=virtual-server-mobile
mobile_prefixes=m. mobile.
ssl_cipher_list=ECDHE-RSA-AES256-SHA384:AES256-SHA256:AES256-SHA256:RC4:HIGH:MEDIUM:+TLSv1:+TLSv1.1:$
logouttimes=
Fri, 11/13/2015 - 11:52
andreychek

Howdy,

Try commenting out the ssl_cipher_list line at the bottom, and then restart Webmin with this command:

/etc/init.d/webmin restart

After doing that, are you able to access Virtualmin?

-ERic

Topic locked