SSMC must enforce a delay of at least four seconds between logon prompts following a failed logon attempt.
An XCCDF Rule
Description
Limiting the number of logon attempts over a certain time interval reduces the chances that an unauthorized user may gain access to an account.
- ID
- SV-255240r991588_rule
- Version
- SSMC-OS-010060
- Severity
- Medium
- References
- Updated
Remediation Templates
A Manual Procedure
Configure SSMC to enforce a delay of at least four seconds between logon prompts following a failed logon attempt. To do so, perform the following steps.
1. Log on to SSMC appliance as ssmcadmin. Press "X" to escape to general bash shell.
2. Execute the following command:
$ sudo /ssmc/bin/config_security.sh -o config_failedlogin_delay -a enable -f