STIGQter STIGQter: STIG Summary: SUSE Linux Enterprise Server 15 Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 23 Apr 2021:

The SUSE operating system must employ user passwords with a minimum lifetime of 24 hours (one day).

DISA Rule

SV-234890r622137_rule

Vulnerability Number

V-234890

Group Title

SRG-OS-000075-GPOS-00043

Rule Version

SLES-15-020210

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Configure the SUSE operating system to enforce 24 hours/one day or greater as the minimum password age for user accounts.

Change the minimum time period between password changes for each [USER] account to "1" day with the command, replacing [USER] with the user account that must be changed:

> sudo passwd -n 1 [USER]

Check Contents

Verify the SUSE operating system enforces a minimum time period between password changes for each user account of one day or greater.

Check the minimum time period between password changes for each user account with the following command:

> sudo awk -F: '$4 < 1 {print $1 ":" $4}' /etc/shadow

smithj:1

If any results are returned that are not associated with a system account, this is a finding.

Vulnerability Number

V-234890

Documentable

False

Rule Version

SLES-15-020210

Severity Override Guidance

Verify the SUSE operating system enforces a minimum time period between password changes for each user account of one day or greater.

Check the minimum time period between password changes for each user account with the following command:

> sudo awk -F: '$4 < 1 {print $1 ":" $4}' /etc/shadow

smithj:1

If any results are returned that are not associated with a system account, this is a finding.

Check Content Reference

M

Target Key

5274

Comments