The operating system must enforce password complexity requiring that at least one lowercase character is used.
An XCCDF Rule
Description
Complex passwords can reduce the likelihood of success of automated password-guessing attacks.
- ID
- SV-216328r1016273_rule
- Version
- SOL-11.1-040080
- Severity
- Medium
- References
- Updated
Remediation Templates
A Manual Procedure
The root role is required.
# pfedit /etc/default/passwd
Locate the line containing:
MINLOWER