CCI-000196 requires enforcing password encryption for storage. no_hashes_outside_shadow meets this requirement.
Signed-off-by: Willy Santos <[email protected]> --- .../accounts/restrictions/password_storage.xml | 1 + 1 files changed, 1 insertions(+), 0 deletions(-) diff --git a/rhel6/src/input/system/accounts/restrictions/password_storage.xml b/rhel6/src/input/system/accounts/restrictions/password_storage.xml index 30a6f52..e989bd5 100644 --- a/rhel6/src/input/system/accounts/restrictions/password_storage.xml +++ b/rhel6/src/input/system/accounts/restrictions/password_storage.xml @@ -49,6 +49,7 @@ which is readable by all users. <ident cce="14300-8" /> <oval id="accounts_password_all_shadowed" /> <ref nist="IA-5" /> +<ident cci="CCI-000196" /> </Rule> </Group> -- 1.7.7.6 _______________________________________________ scap-security-guide mailing list [email protected] https://fedorahosted.org/mailman/listinfo/scap-security-guide
