The operating system must not allow logins for users with blank passwords.

An XCCDF Rule

Details
Profiles

Description

If the password field is blank and the system does not enforce a policy that passwords are required, it could allow login without proper authentication of a user.

ID: SV-216128r959010_rule
Version: SOL-11.1-040480
Severity: High
References: CCI-000366
Updated: about 2 months ago

Remediation Templates

The root role is required.

Modify the /etc/default/login file.

# pfedit /etc/default/login
Insert the line:

PASSREQ=YES

The operating system must not allow logins for users with blank passwords.

Description

Remediation Templates

A Manual Procedure