Changeset 201

Show
Ignore:
Timestamp:
06/25/08 08:17:26 (2 months ago)
Author:
slawrence
Message:

Update password minimum length to 14 in pam conf (STIG GEN000580).
Increase new password difference requirement to 4 characters (8500.2 IAIA-2)

Files:

Legend:

Unmodified
Added
Removed
Modified
Copied
Moved

  • trunk/RHEL5.2/conf/pam/system-auth.pam

    r195 r201  
    1414account     required      pam_permit.so 
    1515 
    16 password    required      pam_cracklib.so try_first_pass retry=3 minlen=12 difok=3 dcredit=-2 ucredit=-2 ocredit=-2 lcredit=-2 
     16password    required      pam_cracklib.so try_first_pass retry=3 minlen=14 difok=4 dcredit=-2 ucredit=-2 ocredit=-2 lcredit=-2 
    1717password    sufficient    pam_unix.so sha512 shadow nullok try_first_pass use_authtok remember=12 
    1818password    required      pam_deny.so 

  • trunk/RHEL5.2/kickstart/clip.ks

    r200 r201  
    373373account     required      pam_permit.so 
    374374 
    375 password    required      pam_cracklib.so try_first_pass retry=3 minlen=12 difok=3 dcredit=-2 ucredit=-2 ocredit=-2 lcredit=-2 
     375password    required      pam_cracklib.so try_first_pass retry=3 minlen=14 difok=4 dcredit=-2 ucredit=-2 ocredit=-2 lcredit=-2 
    376376password    sufficient    pam_unix.so sha512 shadow nullok try_first_pass use_authtok remember=12 
    377377password    required      pam_deny.so 

  • trunk/RHEL5.2/scripts/stig-fix/cat2/gen000460.sh

    r198 r201  
    2424account     required      pam_permit.so 
    2525 
    26 password    required      pam_cracklib.so try_first_pass retry=3 minlen=12 difok=3 dcredit=-2 ucredit=-2 ocredit=-2 lcredit=-2 
     26password    required      pam_cracklib.so try_first_pass retry=3 minlen=14 difok=4 dcredit=-2 ucredit=-2 ocredit=-2 lcredit=-2 
    2727password    sufficient    pam_unix.so sha512 shadow nullok try_first_pass use_authtok remember=12 
    2828password    required      pam_deny.so