An error occurred:

Check: SOL-11.1-040080

Solaris 11 X86 STIG: SOL-11.1-040080 (in versions v3 r2 through v3 r1)

Title

The operating system must enforce password complexity requiring that at least one lowercase character is used. (Cat II impact)

Discussion

Complex passwords can reduce the likelihood of success of automated password-guessing attacks.

Check Content

Check the MINLOWER setting. # grep ^MINLOWER /etc/default/passwd If MINLOWER is not set to one or more, this is a finding.

Fix Text

The root role is required. # pfedit /etc/default/passwd Locate the line containing: MINLOWER Change the line to read: MINLOWER=1

Additional Identifiers

Rule ID: SV-216093r1016288_rule

Vulnerability ID: V-216093

Group Title: SRG-OS-000070

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.
Number Definition
CCI-000193

The information system enforces password complexity by the minimum number of lower case characters used.
CCI-004066

For password-based authentication, enforce organization-defined composition and complexity rules.

Controls

Controls tied to check. These are derived from the CCIs shown above.
Number Title
IA-5(1)

Password-based Authentication