NixOS must enforce password complexity by requiring that at least one uppercase character be used.

An XCCDF Rule

Details
Profiles

Description

Use of a complex password helps to increase the time and resources required to compromise the password. Password complexity, or strength, is a measure of the effectiveness of a password in resisting attempts at guessing and brute-force attacks.

ID: SV-268126r1039266_rule
Version: ANIX-00-000730
Severity: Medium
References: CCI-004066
Updated: about 2 months ago

Remediation Templates

Configure NixOS to enforce password complexity. 

Add/modify /etc/nixos/configuration.nix to include the following lines:

environment.etc."/security/pwquality.conf".text = ''
ucredit=-1'';

Rebuild the system with the following command:

$ sudo nixos-rebuild switch

NixOS must enforce password complexity by requiring that at least one uppercase character be used.

Description

Remediation Templates

A Manual Procedure