Check: SOL-11.1-040110
Solaris 11 SPARC STIG:
SOL-11.1-040110
(in versions v2 r10 through v1 r10)
Title
The system must require passwords to contain no more than three consecutive repeating characters. (Cat III impact)
Discussion
Complex passwords can reduce the likelihood of success of automated password-guessing attacks.
Check Content
Check the MAXREPEATS setting. # grep ^MAXREPEATS /etc/default/passwd If the MAXREPEATS setting is greater than 3, this is a finding.
Fix Text
The root role is required. # pfedit /etc/default/passwd Locate the line containing: MAXREPEATS Change the line to read: MAXREPEATS=3
Additional Identifiers
Rule ID: SV-216331r603267_rule
Vulnerability ID: V-216331
Group Title: SRG-OS-000480
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
| Number | Definition |
|---|---|
| CCI-000366 |
The organization implements the security configuration settings. |
Controls
Controls tied to check. These are derived from the CCIs shown above.
| Number | Title |
|---|---|
| CM-6 |
Configuration Settings |