CCI-001392 requires notifying the user of unsuccessful logins during org-defined period. pam_tally can be used for this purpose.
Signed-off-by: Willy Santos <[email protected]> --- rhel6/src/input/system/accounts/pam.xml | 2 +- 1 files changed, 1 insertions(+), 1 deletions(-) diff --git a/rhel6/src/input/system/accounts/pam.xml b/rhel6/src/input/system/accounts/pam.xml index a3e522c..c02d1c5 100644 --- a/rhel6/src/input/system/accounts/pam.xml +++ b/rhel6/src/input/system/accounts/pam.xml @@ -40,7 +40,7 @@ files, destroying any manually made changes and replacing them with a series of system defaults. One reference to the configuration file syntax can be found at http://www.kernel.org/pub/linux/libs/pam/Linux-PAM-html/sag-configuration-file.html.</warning> -<ref disa="1391" /> +<ref disa="1391,1392" /> <Group id="password_quality"> <title>Set Password Quality Requirements</title> -- 1.7.7.6 _______________________________________________ scap-security-guide mailing list [email protected] https://fedorahosted.org/mailman/listinfo/scap-security-guide
