STIGQter: STIG Summary: SLES 12 Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021: STIGQter: STIG Summary: SLES 12 Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021:SV-217120r603262_rule
V-217120
SRG-OS-000266-GPOS-00101
SLES-12-010180
CAT II
10
Configure the SUSE operating system to enforce password complexity by requiring at least one special character.
Edit "/etc/pam.d/common-password" and edit the line containing "pam_cracklib.so" to contain the option "ocredit=-1" after the third column.
Verify the SUSE operating system enforces password complexity by requiring that at least one special character.
Check that the operating system enforces password complexity by requiring that at least one special character be used by using the following command:
# grep pam_cracklib.so /etc/pam.d/common-password
password requisite pam_cracklib.so ocredit=-1
If the command does not return anything, the returned line is commented out, or has a second column value different from "requisite", or does not contain "ocredit=-1", this is a finding.
V-217120
False
SLES-12-010180
Verify the SUSE operating system enforces password complexity by requiring that at least one special character.
Check that the operating system enforces password complexity by requiring that at least one special character be used by using the following command:
# grep pam_cracklib.so /etc/pam.d/common-password
password requisite pam_cracklib.so ocredit=-1
If the command does not return anything, the returned line is commented out, or has a second column value different from "requisite", or does not contain "ocredit=-1", this is a finding.
M
4033