Open skepticalwaves opened 2 years ago
Hi,
Webmin is an admin tool and make it depend on a proxy is not something we can recommend doing in general.
I have to agree...It'd mean that if the web server is down for any reason, the user won't be able to use Webmin to recover it.
I'm not opposed to making it easier to switch, I guess, but it shouldn't be the default to put Webmin behind a proxy.
Sure, I get your reluctance here, but I didn't suggest removing the exposure on port 10000/20000, you can still have that. I'm just suggesting that the subdomains created be modernized to not do the redirect-to-port dance.
The only catch with proxying is that it would require setting up a separate Apache Virtualhost
for the admin
and webmail
sub-domains, which is a more complex config than the current redirects.
The redirect to a port 10000/20000 is crazy when we have proxying features available, and conflicts badly when the main domain might be configured in the DNS to point to another server. Here's a simple example of a manual modification I make to make webmail do something more sensible.
Then I disable the rewrite rules, and the aliases in the main auto-generated entries. This proxies the webmail/mail domain to the right port, uses the SSL cert, and makes everything more "normal" in the modern web sense. Same thing easily applies to admin subdomain