how to protect webmin

Hello,

I've a default installation of webmin running and it scares me quite a lot that it asks for a password without having all the staff protected with .htaccess and .htpasswd files.

Could you pls tell me if the .htpasswd method is a good one to protect webmin little more? I've tryed to put the 2 files inside:

/usr/libexec/webmin

but I'm not even prompted for the .htpasswd request ... (even if it works in all the normal html directories).

Further, what port do you suggest for webmin?

thanks a lot!

 

 

 

 

Top