Setting the Password on First Login to FileWave Appliances (15.5+)
What
FwadminStarting insteadfrom FileWave version 15.5.0, there have been important changes to the default login process and security features of the FileWave Appliance:
Disabled Root Login: The root
user is now disabled from logging in directly to enhance security.
New Default User - fwadmin: Instead of logging in as root, you will now use the fwadmin user with the default password filewave.
Mandatory Password Change: On the first login, fwadmin will be prompted to change the password. It’s crucial to choose a secure password and keep a record of it.
Sudo Access: The fwadmin user has sudo privileges to perform administrative tasks that require root access.
Enhanced Security with Fail2Ban: Fail2Ban has been added to protect against unauthorized access attempts. It will temporarily block IP addresses after a number of failed login attempts.
Note: These changes forapply applianceto +new fail2banDebian-based Appliances starting from version 15.5.0 and onward. Existing Debian Appliances will not have these changes implemented unless you manually make the changes or migrate to a new Appliance.
When/Why
NowThese changes have been implemented to strengthen the security of your FileWave Appliance:
Prevent Unauthorized Access: Disabling direct root login reduces the risk of unauthorized access, as root accounts are common targets for attackers.
Enforce Stronger Passwords: Prompting a password change on first login ensures that
wedefault knowcredentials whatare thisnot functionused, iswhich usedare for,often when/whyexploited.
wouldMonitor weand Block Attacks: Fail2Ban helps in detecting and preventing brute-force attacks by banning IP addresses that show malicious signs.
Promote Best Security Practices: Encouraging the use
it?of sudo and secure passwords aligns with industry best practices for system administration.
Important: If you are using an existing Debian Appliance prior to version 15.5.0, these security enhancements will not be automatically applied. To benefit from these changes, you can:
Manually Implement the Changes: Adjust your current Appliance settings to match the new security configurations.
Migrate to a New Appliance: Set up a new Appliance with version 15.5.0 or later and migrate your data accordingly.
How
AndFirst now,Login sinceand wePassword knowChange
everything
else,Access howthe doAppliance: we use this functionConnect to
doyour somethingFileWave special?Appliance via SSH or console.
Login as fwadmin: Use the username fwadmin and the default password filewave.
Change Password: You will be prompted to change the password immediately.
Enter New Password: Choose a strong, unique password.
Confirm New Password: Re-enter the password to confirm.
Note the Password: Keep the new password in a secure place.
Using Sudo for Administrative Tasks
Run Commands with Sudo: Prefix administrative commands with sudo.
sudo apt-get update
Enter Password When Prompted: You may be asked for your fwadmin password when executing sudo commands.
Fail2Ban Security Measures
Automatic IP Blocking: After several failed login attempts, Fail2Ban will block the offending IP address temporarily.
Check Ban Status:
sudo fail2ban-client status sshd
Unban an IP (if necessary):
sudo fail2ban-client set sshd unbanip <IP_ADDRESS>
Best Practices
Do Not Expose SSH to the Internet: Keep SSH access limited to trusted networks.
Use Strong Passwords: Incorporate letters, numbers, and special characters.
Regularly Update the Appliance: Keep your system updated to patch vulnerabilities.
Monitor Access Logs: Regularly check logs for any unauthorized access attempts.
Related Content
