Skip to content
Log In

CCI-000206

Obscure feedback of authentication information during the authentication process to protect the information from possible exploitation and use by unauthorized individuals.

Applications using the database must obscure feedback of authentication information during the authentication process to protect the information from possible exploitation/use by unauthorized individuals.

1 rule found Severity: High

Logo

When using command-line tools such as db2, users must use a Connect method that does not expose the password.

1 rule found Severity: High

Logo

Applications must obscure feedback of authentication information during the authentication process to protect the information from possible exploitation/use by unauthorized individuals.

5 rules found Severity: High

Logo

When using command-line tools such as SQLCMD in a mixed-mode authentication environment, users must use a logon method that does not expose the password.

2 rules found Severity: High

Logo

MongoDB must obscure feedback of authentication information during the authentication process to protect the information from possible exploitation/use by unauthorized individuals.

3 rules found Severity: High

Logo

When using command-line tools such as Oracle SQL*Plus, which can accept a plain-text password, users must use an alternative login method that does not expose the password.

1 rule found Severity: High

Logo

When using command-line tools such as psql, users must use a logon method that does not expose the password.

2 rules found Severity: High

Logo

The BIG-IP appliance must be configured to obscure feedback of authentication information during the authentication process to protect the information from possible exploitation/use by unauthorized individuals.

1 rule found Severity: Medium

Logo

The network device must obscure feedback of authentication information during the authentication process to protect the information from possible exploitation/use by unauthorized individuals.

1 rule found Severity: High

Logo

The MySQL Database Server 8.0 must obscure feedback of authentication information during the authentication process to protect the information from possible exploitation/use by unauthorized individuals.

1 rule found Severity: High

Logo

Redis Enterprise DBMS must obscure feedback of authentication information during the authentication process to protect the information from possible exploitation/use by unauthorized individuals.

1 rule found Severity: High

Logo

The macOS system must disable password hints.

2 rules found Severity: Medium

Logo

The macOS system must remove password hints from user accounts.

2 rules found Severity: Medium

Logo

The application server must obscure feedback of authentication information during the authentication process to protect the information from possible exploitation/use by unauthorized individuals.

1 rule found Severity: Medium

Logo

The application must not display passwords/PINs as clear text.

1 rule found Severity: High

Logo

The Central Log Server must obfuscate authentication information during the authentication process so that the authentication is not visible.

1 rule found Severity: High

Logo

The container platform must obscure feedback of authentication information during the authentication process to protect the information from possible exploitation/use by unauthorized individuals.

1 rule found Severity: Medium

Logo

The DBMS must obscure feedback of authentication information during the authentication process to protect the information from possible exploitation/use by unauthorized individuals.

1 rule found Severity: High

Logo

The operating system must obscure feedback of authentication information during the authentication process to protect the information from possible exploitation/use by unauthorized individuals.

1 rule found Severity: Medium

Logo

ACF2 TSOTWX GSO record values must be set to obliterate the logon password on TWX devices.

1 rule found Severity: Medium

Logo

ACF2 TSOCRT GSO record values must be set to obliterate the logon to ASCII CRT devices.

1 rule found Severity: Medium

Logo

ACF2 TSO2741 GSO record values must be set to obliterate the logon password on 2741 devices.

1 rule found Severity: Medium

Logo

The Mainframe Product must obscure feedback of authentication information during the authentication process to protect the information from possible exploitation/use by unauthorized individuals.

1 rule found Severity: Medium

Logo

MariaDB must obscure feedback of authentication information during the authentication process to protect the information from possible exploitation/use by unauthorized individuals.

1 rule found Severity: High

Logo

The UEM server must obscure feedback of authentication information during the authentication process to protect the information from possible exploitation/use by unauthorized individuals.

1 rule found Severity: Medium

Logo

The VMM must obscure feedback of authentication information during the authentication process to protect the information from possible exploitation/use by unauthorized individuals.

1 rule found Severity: Medium

Logo

Rancher MCM must use a centralized user management solution to support account management functions. For accounts using password authentication, the container platform must use FIPS-validated SHA-2 or later protocol to protect the integrity of the password authentication process.

1 rule found Severity: High

Logo