Navigate

Check: SOL-11.1-040120

Solaris 11 x86 STIG: SOL-11.1-040120 (in versions v2 r10 through v1 r10)

Title

The system must not have accounts configured with blank or null passwords. (Cat II impact)

Discussion

Complex passwords can reduce the likelihood of success of automated password-guessing attacks.

Check Content

The root role is required. Determine if accounts with blank or null passwords exist. # logins -po If any account is listed, this is a finding.

Fix Text

The root role is required. Remove, lock, or configure a password for any account with a blank password. # passwd [username] or Use the passwd -l command to lock accounts that are not permitted to execute commands. or Use the passwd -N command to set accounts to be non-login.

Additional Identifiers

Rule ID: SV-216097r603268_rule

Vulnerability ID: V-216097

Group Title: SRG-OS-000480

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.

Number	Definition
CCI-000366	The organization implements the security configuration settings.

Controls

Controls tied to check. These are derived from the CCIs shown above.

Number	Title
CM-6	Configuration Settings