Basically to secure the servers from the hacker, the strong server root password is required else server root password will compromise in brute force attacks. When you received the new server root or admin login details make sure that you have changed the password as per following instruction.
* Make sure that password length is at least 8 but no more than 255 allowed characters limit.
* At least contain two non-alphanumeric character.
* Do not select the password which is based on the dictionary word.
* Make sure that new password won’t have user name in the password.
You can changed the password by using the “passwd” command from the shell, you will have to enter your new password twice to ensure that you didn’t make any typo mistake.