Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-48043 | SOL-11.1-040160 | SV-60915r1_rule | Medium |
Description |
---|
As an immediate return of an error message, coupled with the capability to try again, may facilitate automatic and rapid-fire brute-force password attacks by a malicious user. |
STIG | Date |
---|---|
Solaris 11 SPARC Security Technical Implementation Guide | 2017-01-05 |
Check Text ( C-50479r1_chk ) |
---|
Check the SLEEPTIME parameter in the /etc/default/login file. # grep ^SLEEPTIME /etc/default/login If the output is not SLEEPTIME=4 or more, this is a finding. |
Fix Text (F-51655r1_fix) |
---|
The root role is required. # pfedit the /etc/default/login Locate the line containing: SLEEPTIME Change the line to read: SLEEPTIME=4 |