Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-7998 | DSN18.13 | SV-8484r1_rule | ECSC-1 | Medium |
Description |
---|
Requirement: The IAO will ensure that management ports that receive three consecutive failed logon attempts will be unavailable for at least 60 seconds. After three failed logon attempts the system should be configured to force the user to wait for 60 seconds. This measure will prevent unauthorized access through the means of hacking a password. If the time that the port is unavailable is substantially greater than 60 seconds, denial of service could result by maliciously attempting logins on all ports. |
STIG | Date |
---|---|
Defense Switched Network STIG | 2015-01-02 |
Check Text ( C-7372r1_chk ) |
---|
Have the IAO or SA demonstrate compliance with the requirement; minimally on a sampling of the related or effected devices. Inspect configuration files as applicable. |
Fix Text (F-7573r1_fix) |
---|
Ensure the system is configured to make the port unavailable for 60 seconds after 3 failed logon attempts. |