UCF STIG Viewer Logo

Password uniqueness does not meet minimum requirements.


Overview

Finding ID Version Rule ID IA Controls Severity
V-1107 4.014 SV-29648r1_rule IAIA-1 IAIA-2 Medium
Description
A system is more vulnerable to unauthorized access when system users recycle the same password several times without being required to change a password to a unique password on a regularly scheduled basis. This enables users to effectively negate the purpose of mandating periodic password changes.
STIG Date
Windows XP Security Technical Implementation Guide 2014-04-07

Details

Check Text ( None )
None
Fix Text (F-6576r1_fix)
Configure the system to remember a minimum of "24" used passwords.