icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

Webmin Server Detection

Low

Synopsis

The remote host is running an inherently insecure protocol or application.

Description

A Webmin server is running on this port in clear text. As webmin is a web interface to configure Unix systems, you should not let unciphered communication to be established on this service, as an attacker may sniff Webmin sessions and reuse the user passwords to take the control of this host.

Solution

Force the use of SSL in the webmin configuration file.