STIGQter STIGQter: STIG Summary: Canonical Ubuntu 20.04 LTS Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 10 Mar 2021:

The Ubuntu operating system must prevent the use of dictionary words for passwords.

DISA Rule

SV-238227r653856_rule

Vulnerability Number

V-238227

Group Title

SRG-OS-000480-GPOS-00225

Rule Version

UBTU-20-010056

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Configure the Ubuntu operating system to prevent the use of dictionary words for passwords.

Add or update the following line in the "/etc/security/pwquality.conf" file to include the "dictcheck=1" parameter:

dictcheck=1

Check Contents

Verify the Ubuntu operating system uses the "cracklib" library to prevent the use of dictionary words with the following command:

$ grep dictcheck /etc/security/pwquality.conf

dictcheck=1

If the "dictcheck" parameter is not set to "1" or is commented out, this is a finding.

Vulnerability Number

V-238227

Documentable

False

Rule Version

UBTU-20-010056

Severity Override Guidance

Verify the Ubuntu operating system uses the "cracklib" library to prevent the use of dictionary words with the following command:

$ grep dictcheck /etc/security/pwquality.conf

dictcheck=1

If the "dictcheck" parameter is not set to "1" or is commented out, this is a finding.

Check Content Reference

M

Target Key

5318

Comments