Skip to content
ATO Pathways
Log In
Overview
Search
Catalogs
SCAP
OSCAL
Catalogs
Profiles
Documents
References
Knowledge Base
Platform Documentation
Compliance Dictionary
Platform Changelog
About
Catalogs
XCCDF
SUSE Linux Enterprise Server 15 Security Technical Implementation Guide
SRG-OS-000072-GPOS-00040
The SUSE operating system must require the change of at least eight of the total number of characters when passwords are changed.
The SUSE operating system must require the change of at least eight of the total number of characters when passwords are changed.
An XCCDF Rule
Details
Profiles
Prose
The SUSE operating system must require the change of at least eight of the total number of characters when passwords are changed.
Medium Severity
<VulnDiscussion>If the SUSE operating system allows the user to consecutively reuse extensive portions of passwords, this increases the chances of password compromise by increasing the window of opportunity for attempts at guessing and brute-force attacks.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>