Howdy all,
I’ve just finished rolling out Webmin version 1.760 for all Virtualmin repositories.
Changes since 1.750:
- Added the FirewallD module, for configuring the new default firewall seen on CentOS and RHEL 7.
- More German, Norwegian and Catalan translation updates.
- Fixed a bug that allowed the xmlrpc.cgi script to be used in an XSS attack (thanks to Peter Allow from IBM).
Note that this includes a security bug fix for an XSS vulnerability in the XML-RPC mechanism in Webmin (http://webmin.com/security.html) so updating as soon as possible is recommended.
Also, this includes a new module for firewalld, which is a large chunk of new code, so is in need of user testing across a wide variety of systems. So, if you use firewalld, please try out the module and report bugs or major usability issues. We don’t use firewalld on our own servers (it’s extremely limited for servers, compared to using iptables directly, especially for bridge or tun interfaces), so my experience with it is limited. But, it’s been very frequently requested since CentOS 7/RHEL 7 made it the default for managing firewalls, so Jamie dug in and made a new module over the past couple of weeks (because Jamie is amazing).
As always, file bugs in the tracker, ask questions in the forums (or if you’re a Virtualmin Pro or Cloudmin Pro user and you need a fast response, you can ask questions in the tracker).