I have 1 server with a cluster configured to update and run commands on other servers. After upgrading to 1.993 all the servers responded with “RPC error : Invalid user for RPC”.
This error comes when i try to connect either with an Unrestricted webmin user (a copy of root) or when i try to connect with user root itself.
Both users have “Can accept RPC calls?” enabled at the webmin user setup on the remote servers.
I had to downgrade all servers to 1.991 again, else i could not manage them anymore.
Is it ok to wait with updating till a new version is released with this solution or was the security fix that serious that updating is needed asap? Due to the nature of the bug updating would mean: update with the cluster and then manually log in to every server to change 2 digits.
I dont have unpriveliged users, user linulex has an acl whitelist from our ip adres and fail2ban is active on logins.
regards Jan and thanks again for fixing it so fast.