On 4/26/12 8:05 PM, Willy Santos wrote:
CCI-000205 requires the enforcement of minimum password lengths. This is met by
password_min_len rule.
Signed-off-by: Willy Santos<[email protected]>
---
.../accounts/restrictions/password_expiration.xml | 1 +
1 files changed, 1 insertions(+), 0 deletions(-)
diff --git
a/rhel6/src/input/system/accounts/restrictions/password_expiration.xml
b/rhel6/src/input/system/accounts/restrictions/password_expiration.xml
index 7af1a0d..f017c4c 100644
--- a/rhel6/src/input/system/accounts/restrictions/password_expiration.xml
+++ b/rhel6/src/input/system/accounts/restrictions/password_expiration.xml
@@ -86,6 +86,7 @@ behavior that may result.
<ident cce="4154-1" />
<oval id="accounts_password_minlen_login_defs" value="var_password_min_len"/>
<ref nist="CM-6, CM-7, IA-5, AC-3" />
+<ident cci="CCI-000205" />
</Rule>
Ack
--
Shawn Wells
Technical Director,
U.S. Intelligence Programs
(e) [email protected]
(c) 443.534.0130
_______________________________________________
scap-security-guide mailing list
[email protected]
https://fedorahosted.org/mailman/listinfo/scap-security-guide
