Solved

unix security audit

Posted on 2011-03-08
5
507 Views
Last Modified: 2012-05-11
I need to know the Solaris / AIX / redhat file-setting that enforces:
Passwords must be at least 7 char long
Passwords must be alpah numeric.
The new password must not match any of the last 4 passwords
Account lockout after 6 attempts
Does the account auto unlock after so many minutes ?
Idle time in ssh is 15 minutes until it locks out your ssh sesson.

thank you





0
Comment
Question by:TIMFOX123
  • 2
  • 2
5 Comments
 
LVL 2

Accepted Solution

by:
prerakg earned 167 total points
ID: 35072749
In solaris OS this can be found under

under /etc/default
vi passwd

MAXWEEKS=8
MINWEEKS=
PASSLENGTH=8
WARNWEEKS=6
0
 
LVL 68

Assisted Solution

by:woolmilkporc
woolmilkporc earned 333 total points
ID: 35072814
AIX:

To list values:

lssec -f /etc/security/user -s default -a minlen -a minalpha -a minother -a histsize -a loginretries

There is no auto unlock in AIX. An ssh timeout does not exist either, see below how to emulate it.

To set the default values to what you desire:

chsec -f /etc/security/user -s default -a minlen=7 -a minalpha=1 -a minother=1 -a histsize=4 -a loginretries=6

Set values for individual users with:

chuser minlen=7 minalpha=1 minother=1 histsize=4 loginretries=6 userid

Emulate a 15 minute ssh timeout with:

ClientAliveCountMax 0
ClientAliveInterval 900

in /etc/ssh/sshd_config

wmp



0
 

Author Comment

by:TIMFOX123
ID: 35072832
thx,  

still a lot of things I still need :)  
0
 
LVL 68

Assisted Solution

by:woolmilkporc
woolmilkporc earned 333 total points
ID: 35081853
For RedHat check

/etc/pam.d/system-auth

wmp
0
 

Author Closing Comment

by:TIMFOX123
ID: 35084428
thx
0

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In my business, I use the LTS (Long Term Support) versions of Linux. My workstations do real work, and so I rarely have the patience to deal with silly problems caused by an upgraded kernel that had experimental software on it to begin with from a r…
This article will explain how to establish a SSH connection to Ubuntu through the firewall and using a different port other then 22. I have set up a Ubuntu virtual machine in Virtualbox and I am running a Windows 7 workstation. From the Ubuntu vi…
Learn how to find files with the shell using the find and locate commands. Use locate to find a needle in a haystack.: With locate, check if the file still exists.: Use find to get the actual location of the file.:
Learn how to navigate the file tree with the shell. Use pwd to print the current working directory: Use ls to list a directory's contents: Use cd to change to a new directory: Use wildcards instead of typing out long directory names: Use ../ to move…

776 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question