AIX must prevent the use of dictionary words for passwords.

An XCCDF Rule

Details
Profiles

Description

If the operating system allows the user to select passwords based on dictionary words, then this increases the chances of password compromise by increasing the opportunity for successful guesses and brute-force attacks.

ID: SV-215229r991587_rule
Version: AIX7-00-001132
Severity: Medium
References: CCI-000366
Updated: 24 days ago

Remediation Templates

From the command prompt, run the following command to set "dictionlist" attribute for the default stanza in "/etc/security/user":
# chsec -f /etc/security/user -s default -a dictionlist="/etc/security/ice/dictionary/English"

From the command prompt, run the following command to set "dictionlist" attribute for users who have an empty "dictionlist" attribute:
# chsec -f /etc/security/user -s [user_name] -a dictionlist="/etc/security/ice/dictionary/English"

AIX must prevent the use of dictionary words for passwords.

Description

Remediation Templates

A Manual Procedure