Webmin no longer secure

Previous post where I was able to secure Webmin with the help of this community: How can I secure Webmin with an LE cert?

Previous (more recent) post where I was able to fix cert auto-renewal: Renew with Crontab doesn't appear to be working


Today I noticed going into my webmin dashboard that it was no longer secure.
After checking a few things I’m back here for help.

(TYIA)
~Chris

@ccheath,

Can you provide details about the certificate that Apache is serving up vs the certificate that’s on disk?

# Served via Apache
echo | openssl s_client -connect www.example.com:443 -servername www.example.com 2>/dev/null | openssl x509 -noout -startdate -enddate -issuer

# On disk
openssl x509 -in /path/to/certificate -noout -startdate -enddate -issuer
1 Like
$echo | sudo openssl s_client -connect server.eyethrees.net:443 -servername server.eyethrees.net 2>/dev/null | openssl x509 -noout -startdate -enddate -issuer
notBefore=Jun 13 18:05:31 2020 GMT
notAfter=Sep 11 18:05:31 2020 GMT
issuer= /C=US/O=Let's Encrypt/CN=Let's Encrypt Authority X3

$sudo openssl x509 -in /etc/letsencrypt/live/server.eyethrees.net/cert.pem -noout -startdate -enddate -issuer
notBefore=Jun 13 18:05:31 2020 GMT
notAfter=Sep 11 18:05:31 2020 GMT
issuer= /C=US/O=Let's Encrypt/CN=Let's Encrypt Authority X3
1 Like

Webmin is now loading secure today… go figure…

1 Like