An error occurred:

Check: SOL-11.1-040090

Solaris 11 X86 STIG: SOL-11.1-040090 (in versions v3 r2 through v3 r1)

Title

The system must require passwords to contain at least one numeric character. (Cat II impact)

Discussion

Complex passwords can reduce the likelihood of success of automated password-guessing attacks.

Check Content

Check the MINDIGIT setting. # grep ^MINDIGIT /etc/default/passwd If the MINDIGIT setting is less than one, this is a finding.

Fix Text

The root role is required. # pfedit /etc/default/passwd Locate the line containing: MINDIGIT Change the line to read: MINDIGIT=1

Additional Identifiers

Rule ID: SV-216094r1016289_rule

Vulnerability ID: V-216094

Group Title: SRG-OS-000071

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.
Number Definition
CCI-000194

The information system enforces password complexity by the minimum number of numeric characters used.
CCI-004066

For password-based authentication, enforce organization-defined composition and complexity rules.

Controls

Controls tied to check. These are derived from the CCIs shown above.
Number Title
IA-5(1)

Password-based Authentication