3.1.2.13 minother

Information

Defines the number of characters within a password which must be non-alphabetic.

Rationale:

In setting the minother attribute, it increases password complexity by enforcing the use of non-alphabetic characters in every user password.

Solution

In /etc/security/user, set the default user stanza minother attribute to be greater than or equal to 2:

chsec -f /etc/security/user -s default -a minother=2

This means that there must be at least 2 non-alphabetic characters within a password.

Default Value:

default minother=2

See Also

https://workbench.cisecurity.org/files/3525

Item Details

Category: IDENTIFICATION AND AUTHENTICATION

References: 800-53|IA-5(1), CSCv7|4.4

Plugin: Unix

Control ID: 527d11c6cf07a841fc746527bf590ddb569414ead1c738b006e635f5bb65b400