5.3.1 Ensure password creation requirements are configured - minlen

Information

Strong passwords protect systems from being hacked through brute force methods.

Solution

Edit /etc/security/pwquality.conf to add or update the following settings to conform to site policy: minlen=14 dcredit=-1 ucredit=-1 ocredit=-1 lcredit=-1

See Also

https://workbench.cisecurity.org/files/1863

Item Details

Category: IDENTIFICATION AND AUTHENTICATION

References: 800-53|IA-5(1), CSCv6|5.7, CSCv6|16.12, CSCv7|4.4

Plugin: Unix

Control ID: 3aa89ffc23fbbb4ec44e94908abe1513d703fda4f51dae7ca733506276705aed