STIGQter: STIG Summary: Solaris 11 SPARC Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021:

The operating system must enforce password complexity requiring that at least one lowercase character is used.

DISA Rule

SV-216328r603267_rule

Vulnerability Number

V-216328

Group Title

SRG-OS-000070

Rule Version

SOL-11.1-040080

Severity

CAT II

CCI(s)

• CCI-000193 - The information system enforces password complexity by the minimum number of lower case characters used.

Weight

10

Fix Recommendation

The root role is required.
# pfedit /etc/default/passwd

Locate the line containing:

MINLOWER

Change the line to read:

MINLOWER=1

Check Contents

Check the MINLOWER setting.

# grep ^MINLOWER /etc/default/passwd

If MINLOWER is not set to 1 or more, this is a finding.

Vulnerability Number

V-216328

Documentable

False

Rule Version

SOL-11.1-040080

Severity Override Guidance

Check the MINLOWER setting.

# grep ^MINLOWER /etc/default/passwd

If MINLOWER is not set to 1 or more, this is a finding.

Check Content Reference

M

Target Key

4022

Comments