do we have already more information about configuration the WAF besides
the Getting started guide?
How are default simple OS things are done, like "password change".
As far as i know : implemention of 'passwd', auth with key auth and add SSH key management to the CLI are in the roadmap.
Please open a support for the other feature requests (I think this could be really userful too !).
You can access the CLI either by the console (vmware only) or ssh to the sensor and log in as waf-user (password waf-user). The user will be prompted to change the password at the first login.
To send transaction logs to a Security Event Manager via syslog. The address should be in the form PROTOCOL:HOSTNAME:PORT
PROTOCOL should be either 'tcp' or 'udp'
If PORT is omitted the standard syslog port 514 will be used.
The syslog messages will be formatted as described in RFC5424.
Thanks for your reply.
I Know that options and they are all included in the getting started guide.
If that are the only options available, you cannot change the password, once you have set one.
So, I had in mind information besides the getting started informations (e.g. password reset,
debugging commands like wget trace route or snmp config.) .
For the record, this is now implemented
qualys waf # help ssh
Syntax: ssh add
Add a public ssh key
Syntax: ssh delete <KEYNAME>
Delete a public ssh key
Syntax: ssh list
List current public ssh keys
qualys waf # help passwd
Change the password for this account.
Currently, the sensor allows access via SSH keys only in Amazon EC2 (so passwords aren't an issue), but a user can log in with a password on the .ovf (non-EC2) version. Password management functionality is included in the next sensor release.
There are some troubleshooting tools inside the CLI to look at routing, IP addressing, etc. However, we're trying to balance between what we can provide in a jailed CLI environment and what we can provide for troubleshooting (wget and cURL, for instance, aren't likely additions because they pose some danger to the WAF sensor itself). As Damien mentioned, any specific requests you may have will be helpful, as we can evaluate and add CLI tools fairly rapidly.
Retrieving data ...