The IAO/NSO will ensure all default manufacturer passwords are changed.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-3143 | NET0240 | SV-3143r7_rule | ECSC-1 | High |
| Description |
|---|
| Devices not protected with strong password schemes provide the opportunity for anyone to crack the password thus gaining access to the device and causing network, device, or information damage, or denial of service. Not changing the password in a timely manner increases the likelihood that someone will capture or crack the password and gain unauthorized access to the device. |
| STIG | Date |
|---|---|
| Free Space Optics Device Security Technical Implementation Guide | 2011-10-07 |
Details
| Check Text ( C-3456r1_chk ) |
|---|
| Interview the network administrator and attempt to logon to several devices. |
| Fix Text (F-3037r2_fix) |
|---|
| Ensure all communication devices are in compliance with password policy. |