Check: GEN000800
VMware ESX 3 Server:
GEN000800
(in version v1 r2)
Title
The system must prohibit the reuse of passwords within five iterations. (Cat II impact)
Discussion
If a user, or root, used the same password continuously or was allowed to change it back shortly after being forced to change it to something else, it would provide a potential intruder with the opportunity to keep guessing at one user's password until it was guessed correctly.
Check Content
Verify the system is configured to prohibit the reuse of passwords within five iterations.
Fix Text
Configure the system to prohibit the reuse of passwords within five iterations.
Additional Identifiers
Rule ID: SV-4084r2_rule
Vulnerability ID: V-4084
Group Title: GEN000800
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
| Number | Definition |
|---|---|
| CCI-000200 |
The information system prohibits password reuse for the organization-defined number of generations. |
Controls
Controls tied to check. These are derived from the CCIs shown above.
| Number | Title |
|---|---|
| IA-5 (1) |
Password-Based Authentication |