IBM zVM CA VM:Secure product PASSWORD user exit must be in use.

An XCCDF Rule

Description

The shorter the password, the lower the number of possible combinations that need to be tested before the password is compromised. Password complexity, or strength, is a measure of the effectiveness of a password in resisting attempts at guessing and brute-force attacks. Password length is one factor of several that helps to determine strength and how long it takes to crack a password. Use of more characters in a password helps to exponentially increase the time and/or resources required to compromise the password. Satisfies: SRG-OS-000078-GPOS-00046, SRG-OS-000480-GPOS-00227, SRG-OS-000480-GPOS-00227, SRG-OS-000266-GPOS-00101, SRG-OS-000075-GPOS-00043, SRG-OS-000070-GPOS-00038, SRG-OS-000071-GPOS-00039, SRG-OS-000069-GPOS-00037, SRG-OS-000072-GPOS-00040

ID: SV-237914r649582_rule
Version: IBMZ-VM-000520
Severity: Medium
References: CCI-000192 CCI-000193 CCI-000194 CCI-000195 CCI-000198 CCI-000205 CCI-000366 CCI-001619
Updated: 15 days ago

Remediation Templates

Configure a CA VM:Secure PASSWORD user exit that enforces a minimum 8-character password length.

Ensure that the following macros are updated with proper PASSWORD user exit:

FORCEPWC
VMXCHGPWMAINT
USE00080

IBM zVM CA VM:Secure product PASSWORD user exit must be in use.

Description

Remediation Templates

A Manual Procedure