I did read all your thoughts. Thanks for your input, we’re certainly always interested in hearing what folks think.
A few notes about some comments you made –
sorta restrictiv regarding server config (no 3rd p.-repos
Well, it’s not that you can’t use a third party repo… moreso, it’s that not all third party repo’s are compatible with Virtualmin and with each other.
Not all ClamAV packages are built the same, for example. And although each may work just as well, they’re built differently and not compatible. Enabling a third party repo could cause it to try to bring down incompatible ClamAV packages.
So, the key in using third party repos is to enable the repo, and define which packages you want to bring down from it. Most packages are actually likely to work just fine.
I actually don’t understand, why you’re delivering your own packages instead of using the already existing stuff.
Believe it or not, we go out of our way not to provide our own packages
We try to stick to distribution supplied packages where ever possible. When that’s not the case, there’s typically a pretty good reason.
That includes PHP – by default, the PHP version used is what’s included with the distro. The only time Virtualmin offers PHP is for folks who explicitly enable a bleeding edge repository on CentOS.
Unfortunately, CentOs ships with PHP 5.1.6, and many web apps don’t run on that version… so due to popular demand, we ended up offering a bleeding edge PHP 5.2.x package for folks needing to use web apps that required it.
I saw a few CPs offering Jail-configuration by default so I was very surprised, that Webmin doesn’t.
One of the problems there is that jailing SSH users only provides an appearance of security, not security itself. So long as the user can still browse the filesystem using a web-based file manager (since web apps aren’t chrooted), chrooting SSH doesn’t prevent the user from poking around.
However, if you were to install a tool such as lshell (or any other restrictive shell), you could configure new users to use it by default by going into System Customization -> Custom Shells.
I’ll look into some of your other ideas – and I still owe you some thoughts on mirroring and failover
A quick answer there – the way we used to suggest mirroring was to automate a backup and restore to a remote system using the command line tools. I believe that Cloudmin is now handling some failover setup now, though I need to look into that more, I’m not actually familiar with how that feature works at the moment