I’ve just rolled out version 1.940 of Webmin. This is a pretty big release, with major theme and File Manager changes among other things. The most important to be aware of and most complicated may be the change from using a bundled tiny ACME client for Let’s Encrypt to using the full-blown
certbot client, which is large and has a lot of dependencies (we don’t really like doing depending on stuff that has huge dependency chains if they aren’t in the OS standard repos, but in order to get something that supports all the newest protocol features, including wildcard certs, we needed to do so).
For Debian and Ubuntu, certbot is available in the OS standard repositories, and I believe it will be installed automatically when you upgrade.
For CentOS 6, there is currently no good way to get
certbot. I’m not sure how we’re going to solve this. I’m looking into building it for CentOS 6, but it depends on a bunch of newer Python features and is likely going to be impossible (at least for me) to build there. We may have to fall back to an updated version of the ACME tiny client we’ve been bundling from the beginning (just updated to actually work with the new LE protocol). But, CentOS 6 reaches end of life in a few months, so hopefully most people have already started moving off of it onto newer distributions.
For CentOS 7, if you’ve installed in the past 2-3 years you’ll have EPEL enabled, which provides
certbot and its depdendencies, and
certbot will probably be installed automatically when you upgrade (and if not, you can install it using yum). Edit: I was wrong…it does not get installed automatically. RPM/yum doesn’t do smart things with recommended packages (and we can’t make a it a hard dependency because it’d prevent installation anywhere certbot isn’t available). For systems installed more than 2-3 years ago, I’ve added
certbot and its dependencies to our repos…I think it’ll Just Work, but let me know if it doesn’t. I may have missed a dependency or messed something else up.
Changes since 1.932:
- Removed Webmin’s built-in Let’s Encrypt client, in favor of recommending the official certbot command.
- Added support for creating “safe-mode” Webmin users who have access only to modules and permissions that don’t grant root access.
- Added support for CAA records in the BIND module.
- Postfix maps with more than 100 entries by default are now shown with a search box.
- Updated the Authentic Theme to the latest version, which includes numerous improvements to the file manager and overall UI.