Skip to content

The delay between login prompts following a failed login attempt must be at least 4 seconds.

An XCCDF Rule

Description

<VulnDiscussion>As an immediate return of an error message, coupled with the capability to try again, may facilitate automatic and rapid-fire brute-force password attacks by a malicious user.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

ID
SV-216100r603268_rule
Severity
Medium
References
Updated



Remediation - Manual Procedure

The root role is required.

# pfedit the /etc/default/login 

Locate the line containing: