Is it possible to either change the default login page for Virtualmin or to make my own login page and then “forward” the login to the correct login validation page within Virtualmin without compromising security?
You could probably make a copy of the Virtualmin login screen, put it on your own website on port 80, and just make sure that it passes the login information to Virtualmin on port 10000 when someone clicks “Login”. I think that’ll work, but I’ve never tested it, nor is there documentation for this