在使用 zabbix 的过程中由于默认密码过于简单,往往会修改密码并配置为自动登录,时间一长往往忘记密码,造成无法登录的情况,这种情况就需要重置密码。
Zabbix 的密码存储在数据库中,可通过数据库重置。在 Zabbix 5.0 版本之前,zabbix 用户密码使用 MD5 加密方式存储,从 5.0 版本开始使用 Bcrypt 加密方式。
BCrypt 是一种跨平台的文件加密工具,使用的是布鲁斯 · 施内尔在 1993 年发布的 Blowfish 加密算法。它是一种可生成随机盐值的单向 Hash 加密算法,Hash 值中包含了上一步生成的盐值(22 个字符)的不可逆加密算法。同一种明文,每次被加密后的密文都不一样,并且不可反向破解生成明文,破解难度非常大。大大提升了系统的安全性,因此要重置 5.0 以后版本的用户密码就需要注意,不能再使用 MD5 加密方式生成的密码。
可按照以下方法对 zabbix 的 Admin 用户密码进行重置 MySQL 数据库
1 | mysql -uzabbix -p |
PostgreSQL
1 | su - postgres |
重置后即可使用账号:Admin 密码:zabbix 登录系统,注意账号 Admin 的 A 为大写,区分大小写。
{"AlarmName":"AWS/WAF HostingProviderIPList BlockedRequests is more than 300 in 5 mins","AlarmDescription":null,"AWSAccountId":"861276109353","AlarmConfigurationUpdatedTimestamp":"2025-01-23T06:39:17.195+0000","NewStateValue":"OK","NewStateReason":"Threshold Crossed: 1 out of the last 1 datapoints [1.0 (23/01/25 06:35:00)] was not greater than the threshold (300.0) (minimum 1 datapoint for ALARM -> OK transition).","StateChangeTime":"2025-01-23T06:40:06.454+0000","Region":"Asia Pacific (Singapore)","AlarmArn":"arn:aws:cloudwatch:ap-southeast-1:861276109353:alarm:AWS/WAF HostingProviderIPList BlockedRequests is more than 300 in 5 mins","OldStateValue":"ALARM","OKActions":["arn:aws:sns:ap-southeast-1:861276109353:Monitoring-Prod-CloudWatch"],"AlarmActions":["arn:aws:sns:ap-southeast-1:861276109353:Monitoring-Prod-CloudWatch"],"InsufficientDataActions":[],"Trigger":{"MetricName":"BlockedRequests","Namespace":"AWS/WAFV2","StatisticType":"Statistic","Statistic":"SUM","Unit":null,"Dimensions":[{"value":"apx-prod-web-acl","name":"WebACL"},{"value":"ap-southeast-1","name":"Region"},{"value":"HostingProviderIPList","name":"LabelName"},{"value":"awswaf:managed:aws:anonymous-ip-list","name":"LabelNamespace"}],"Period":300,"EvaluationPeriods":1,"DatapointsToAlarm":1,"ComparisonOperator":"GreaterThanThreshold","Threshold":300.0,"TreatMissingData":"notBreaching","EvaluateLowSampleCountPercentile":""}}