Help with Elastix / PIAF box

[firstchoice]

I have a friend that called me and was using a Elastix / PIAF box with no firewall protection. Apparently someone hacked it and started making long distance calls so he disabled the truck but now cannot get logged in either through gui or ssh. Whomever hacked in must have changed the password or ??? Is there anyway I can get in the box, he brough it by so I have it at my location and have matched the network scope so I can communicate but we cannot log in. Backdoor or generic passwords I can try ???

 

[kenn10]

He should have backups. If not, he will need to rebuild from scratch. The box is compromised. Reload it from scratch using PIAF and keep it secure.

 

[darmock]

Which is it? Elastix or PIAF? If it is Elastix you should be asking over on their forums. If it is PIAF there are NO backdoors or generic passwords. If you have physical access to the box you can start it in single user mode and reset password etc. Course if the box has been hacked the simplest way to fix it is to scrub and reinstall.

Tom

 

[firstchoice]

I am logged into the root with the box in front of me, I do not know the command to change the admin password so I
can log in via gui

 

[rossiv]

You still haven't answered Tom's question. Is it Elastix or PBX in a Flash? We NEED that to help you further without just saying "Nuke it and load PIAF."

 

[firstchoice]

elastix and I was able to change the root password and log in, then I turned on the httpd so I could access the web interface and now I need to change the admin password. It does not have the help-pbx menu like piaf so I am stuck as I do not know the commands. Surely there is a simple way to change the admin password once I am logged in as root

 

[Hyksos]

I often talk to people who have just received big telephone bills, I'm urged to ask if you plan on cleaning the machine or at this point you want to access it simply to backup some config files or whatever.

Do not attempt to put that machine back online without a reinstall even if you know and are sure of what you are doing!

There are businesses out there, criminal ones, that do that for a living, they know you will clean it and think it's clean, it's often their goal.

I guess if you ask for help with elastix you will gain control of the machine but what are you trying to achieve? Recovery of files or the system?

And out of curiosity if you would like to share? Was the box connected to the internet, pots line, both? Did you change all of his providers passwords now? Did you check for symptoms on other machines on his lan? They run it as a business and most are thorough!
(I'm not suggesting a rooted pbx via phonelines, only that sometimes the pbx is the goal but the entry point)

 

[firstchoice]

14 post and still not one person has answered what would seem to be a very easy question for a person familiar with the software... how to change the admin password from the root shell??? Without all the reteric and nonsense.

 

[wardmundy]

On PIAF boxes, there is no admin password. There is a maint password for FreePBX that can be changed by running passwd-master. I think you're probably visiting the wrong forum to get the necessary help with a system that none of us actively support. Suffice it to say, if the box has been compromised, it should not be put back into production without wiping the disk, reinstalling, and hopefully placing the server behind a secure firewall.

 

[dad311]

On PIAF boxes, there is no admin password. There is a maint password for FreePBX that can be changed by running passwd-master. I think you're probably visiting the wrong forum to get the necessary help with a system that none of us actively support. Suffice it to say, if the box has been compromised, it should not be put back into production without wiping the disk, reinstalling, and hopefully placing the server behind a secure firewall.

Yeah, there is no way I would place this box back into service without a TOTAL wipe and resinstall. I simply would not trust it!

 

[randy7376]

14 post and still not one person has answered what would seem to be a very easy question for a person familiar with the software... how to change the admin password from the root shell??? Without all the reteric and nonsense.

firstchoice,

First off, as several have mentioned already, this isn't the Elastix forum. Elastix has a completely different method of securing their distro than PBX In A Flash.

What you see as rhetoric or nonsense is just common sense advice. Seek help on the appropriate forum.

Secondly, Google is your friend. A lost admin password seems to be a fairly common theme over on the Elastix forums. It also appears the method for storing the admin password has changed between Elastix versions.

Lastly, you might want to have a look at this thread over on the Elastix forum as "achilles" seems to have the information you're seeking in that thread. No guarantees it will work. You're on your own now.

 

[Hyksos]

rhetoric and non sense? you're rude, not on the right forum for your PBX and googling "reset admin password elastix"

Gave me tons of good results on the first page which I cannot test since I do not run elastix...

http://www.elastix.org/component/ku...store-the-admin-password-from-elastix-15.html

http://www.elastix.org/component/kunena/3-help/67491-how-to-change-elastix-203-admin-password.html

http://www.elastix.org/component/kunena/39-others/52006-change-password-web-command-line.html

Check those out!

 

[darmock]

Since this thread has degenerated it is now closed start a new thread NOT about elastix support

Tom