Check: SOL-11.1-040090
Solaris 11 SPARC STIG:
SOL-11.1-040090
(in versions v2 r10 through v1 r10)
Title
The system must require passwords to contain at least one numeric character. (Cat II impact)
Discussion
Complex passwords can reduce the likelihood of success of automated password-guessing attacks.
Check Content
Check the MINDIGIT setting. # grep ^MINDIGIT /etc/default/passwd If the MINDIGIT setting is less than 1, this is a finding.
Fix Text
The root role is required. # pfedit /etc/default/passwd Locate the line containing: MINDIGIT Change the line to read: MINDIGIT=1
Additional Identifiers
Rule ID: SV-216329r603267_rule
Vulnerability ID: V-216329
Group Title: SRG-OS-000071
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
| Number | Definition |
|---|---|
| CCI-000194 |
The information system enforces password complexity by the minimum number of numeric characters used. |
Controls
Controls tied to check. These are derived from the CCIs shown above.
| Number | Title |
|---|---|
| IA-5 (1) |
Password-Based Authentication |