Check: SOL-11.1-040080
Solaris 11 SPARC STIG:
SOL-11.1-040080
(in versions v2 r10 through v1 r10)
Title
The operating system must enforce password complexity requiring that at least one lowercase character is used. (Cat II impact)
Discussion
Complex passwords can reduce the likelihood of success of automated password-guessing attacks.
Check Content
Check the MINLOWER setting. # grep ^MINLOWER /etc/default/passwd If MINLOWER is not set to 1 or more, this is a finding.
Fix Text
The root role is required. # pfedit /etc/default/passwd Locate the line containing: MINLOWER Change the line to read: MINLOWER=1
Additional Identifiers
Rule ID: SV-216328r603267_rule
Vulnerability ID: V-216328
Group Title: SRG-OS-000070
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
| Number | Definition |
|---|---|
| CCI-000193 |
The information system enforces password complexity by the minimum number of lower case characters used. |
Controls
Controls tied to check. These are derived from the CCIs shown above.
| Number | Title |
|---|---|
| IA-5 (1) |
Password-Based Authentication |