Detections
Analytics
SLES-15-040010 - The SUSE operating system must enforce a delay of at least four seconds between logon prompts following a failed logon attempt.
Information
The SUSE operating system must enforce a delay of at least four seconds between logon prompts following a failed logon attempt.Solution
Configure the SUSE operating system to enforce a delay of at least four seconds between logon prompts following a failed logon attempt.Edit the file "/etc/pam.d/common-auth".
Add a parameter "pam_faildelay" and set it to:
> delay is in micro seconds
auth required pam_faildelay.so delay=4000000
See Also
https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_SLES_15_V2R6_STIG.zip
Item Details
Audit Name: DISA SUSE Linux Enterprise Server 15 STIG v2r6
Category: CONFIGURATION MANAGEMENT
References: 800-53|CM-6b., CAT|II, CCI|CCI-000366, Rule-ID|SV-234983r991588_rule, STIG-ID|SLES-15-040010, Vuln-ID|V-234983
Plugin: Unix
Control ID: aef5d037cf94510e21f65545b00c4006349aa8eab33629ac74aa8571fb5aaa31