mirror of
https://github.com/hardenedlinux/harbian-audit.git
synced 2025-09-25 18:58:58 +02:00
According to the latest STIG, modify minlen to 15.
This commit is contained in:
Samson-W
parent
1570943606
commit
654813d8b4
@ -84,7 +84,7 @@ apply_debian () {
|
|||||||
apt_install $PACKAGE
|
apt_install $PACKAGE
|
||||||
elif [ $FNRET = 2 ]; then
|
elif [ $FNRET = 2 ]; then
|
||||||
warn "$PATTERN is not present in $FILE, add default config to $FILE"
|
warn "$PATTERN is not present in $FILE, add default config to $FILE"
|
||||||
add_line_file_before_pattern $FILE "password requisite pam_cracklib.so retry=3 minlen=8 difok=3" "# pam-auth-update(8) for details."
|
add_line_file_before_pattern $FILE "password requisite pam_cracklib.so retry=3 minlen=15 difok=3" "# pam-auth-update(8) for details."
|
||||||
elif [ $FNRET = 3 ]; then
|
elif [ $FNRET = 3 ]; then
|
||||||
crit "$FILE is not exist, please check"
|
crit "$FILE is not exist, please check"
|
||||||
elif [ $FNRET = 4 ]; then
|
elif [ $FNRET = 4 ]; then
|
||||||
|
|||||||
@ -80,7 +80,7 @@ apply () {
|
|||||||
fi
|
fi
|
||||||
elif [ $FNRET = 2 ]; then
|
elif [ $FNRET = 2 ]; then
|
||||||
crit "$PATTERN is not present in $FILE, add default config to $FILE"
|
crit "$PATTERN is not present in $FILE, add default config to $FILE"
|
||||||
add_line_file_before_pattern $FILE "password requisite pam_cracklib.so retry=3 minlen=8 difok=3" "# pam-auth-update(8) for details."
|
add_line_file_before_pattern $FILE "password requisite pam_cracklib.so retry=3 minlen=15 difok=3" "# pam-auth-update(8) for details."
|
||||||
elif [ $FNRET = 3 ]; then
|
elif [ $FNRET = 3 ]; then
|
||||||
crit "$FILE is not exist, please check"
|
crit "$FILE is not exist, please check"
|
||||||
elif [ $FNRET = 4 ]; then
|
elif [ $FNRET = 4 ]; then
|
||||||
|
|||||||
@ -84,7 +84,7 @@ apply_debian () {
|
|||||||
apt_install $PACKAGE
|
apt_install $PACKAGE
|
||||||
elif [ $FNRET = 2 ]; then
|
elif [ $FNRET = 2 ]; then
|
||||||
warn "$PATTERN is not present in $FILE, add default config to $FILE"
|
warn "$PATTERN is not present in $FILE, add default config to $FILE"
|
||||||
add_line_file_before_pattern $FILE "password requisite pam_cracklib.so retry=3 minlen=8 difok=3" "# pam-auth-update(8) for details."
|
add_line_file_before_pattern $FILE "password requisite pam_cracklib.so retry=3 minlen=$OPTIONNAME difok=3" "# pam-auth-update(8) for details."
|
||||||
elif [ $FNRET = 3 ]; then
|
elif [ $FNRET = 3 ]; then
|
||||||
crit "$FILE is not exist, please check"
|
crit "$FILE is not exist, please check"
|
||||||
elif [ $FNRET = 4 ]; then
|
elif [ $FNRET = 4 ]; then
|
||||||
|
|||||||
@ -84,7 +84,7 @@ apply_debian () {
|
|||||||
apt_install $PACKAGE
|
apt_install $PACKAGE
|
||||||
elif [ $FNRET = 2 ]; then
|
elif [ $FNRET = 2 ]; then
|
||||||
crit "$PATTERN is not present in $FILE, add default config to $FILE"
|
crit "$PATTERN is not present in $FILE, add default config to $FILE"
|
||||||
add_line_file_before_pattern $FILE "password requisite pam_cracklib.so retry=3 minlen=8 difok=3" "# pam-auth-update(8) for details."
|
add_line_file_before_pattern $FILE "password requisite pam_cracklib.so retry=3 minlen=15 difok=3" "# pam-auth-update(8) for details."
|
||||||
elif [ $FNRET = 3 ]; then
|
elif [ $FNRET = 3 ]; then
|
||||||
crit "$FILE is not exist, please check"
|
crit "$FILE is not exist, please check"
|
||||||
elif [ $FNRET = 4 ]; then
|
elif [ $FNRET = 4 ]; then
|
||||||
|
|||||||
@ -85,7 +85,7 @@ apply_debian () {
|
|||||||
apt_install $PACKAGE
|
apt_install $PACKAGE
|
||||||
elif [ $FNRET = 2 ]; then
|
elif [ $FNRET = 2 ]; then
|
||||||
crit "$PATTERN is not present in $FILE, add default config to $FILE"
|
crit "$PATTERN is not present in $FILE, add default config to $FILE"
|
||||||
add_line_file_before_pattern $FILE "password requisite pam_cracklib.so retry=3 minlen=8 difok=3" "# pam-auth-update(8) for details."
|
add_line_file_before_pattern $FILE "password requisite pam_cracklib.so retry=3 minlen=15 difok=3" "# pam-auth-update(8) for details."
|
||||||
elif [ $FNRET = 3 ]; then
|
elif [ $FNRET = 3 ]; then
|
||||||
crit "$FILE is not exist, please check"
|
crit "$FILE is not exist, please check"
|
||||||
elif [ $FNRET = 4 ]; then
|
elif [ $FNRET = 4 ]; then
|
||||||
|
|||||||
@ -84,7 +84,7 @@ apply_debian () {
|
|||||||
apt_install $PACKAGE
|
apt_install $PACKAGE
|
||||||
elif [ $FNRET = 2 ]; then
|
elif [ $FNRET = 2 ]; then
|
||||||
crit "$PATTERN is not present in $FILE, add default config to $FILE"
|
crit "$PATTERN is not present in $FILE, add default config to $FILE"
|
||||||
add_line_file_before_pattern $FILE "password requisite pam_cracklib.so retry=3 minlen=8 difok=3" "# pam-auth-update(8) for details."
|
add_line_file_before_pattern $FILE "password requisite pam_cracklib.so retry=3 minlen=15 difok=3" "# pam-auth-update(8) for details."
|
||||||
elif [ $FNRET = 3 ]; then
|
elif [ $FNRET = 3 ]; then
|
||||||
crit "$FILE is not exist, please check"
|
crit "$FILE is not exist, please check"
|
||||||
elif [ $FNRET = 4 ]; then
|
elif [ $FNRET = 4 ]; then
|
||||||
|
|||||||
@ -84,7 +84,7 @@ apply_debian () {
|
|||||||
apt_install $PACKAGE
|
apt_install $PACKAGE
|
||||||
elif [ $FNRET = 2 ]; then
|
elif [ $FNRET = 2 ]; then
|
||||||
warn "$PATTERN is not present in $FILE, add default config to $FILE"
|
warn "$PATTERN is not present in $FILE, add default config to $FILE"
|
||||||
add_line_file_before_pattern $FILE "password requisite pam_cracklib.so retry=3 minlen=8 difok=3" "# pam-auth-update(8) for details."
|
add_line_file_before_pattern $FILE "password requisite pam_cracklib.so retry=3 minlen=15 difok=3" "# pam-auth-update(8) for details."
|
||||||
elif [ $FNRET = 3 ]; then
|
elif [ $FNRET = 3 ]; then
|
||||||
crit "$FILE is not exist, please check"
|
crit "$FILE is not exist, please check"
|
||||||
elif [ $FNRET = 4 ]; then
|
elif [ $FNRET = 4 ]; then
|
||||||
|
|||||||
@ -84,7 +84,7 @@ apply_debian () {
|
|||||||
apt_install $PACKAGE
|
apt_install $PACKAGE
|
||||||
elif [ $FNRET = 2 ]; then
|
elif [ $FNRET = 2 ]; then
|
||||||
warn "$PATTERN is not present in $FILE, add default config to $FILE"
|
warn "$PATTERN is not present in $FILE, add default config to $FILE"
|
||||||
add_line_file_before_pattern $FILE "password requisite pam_cracklib.so retry=3 minlen=8 difok=3" "# pam-auth-update(8) for details."
|
add_line_file_before_pattern $FILE "password requisite pam_cracklib.so retry=3 minlen=15 difok=3" "# pam-auth-update(8) for details."
|
||||||
elif [ $FNRET = 3 ]; then
|
elif [ $FNRET = 3 ]; then
|
||||||
crit "$FILE is not exist, please check"
|
crit "$FILE is not exist, please check"
|
||||||
elif [ $FNRET = 4 ]; then
|
elif [ $FNRET = 4 ]; then
|
||||||
|
|||||||
@ -84,7 +84,7 @@ apply_debian () {
|
|||||||
apt_install $PACKAGE
|
apt_install $PACKAGE
|
||||||
elif [ $FNRET = 2 ]; then
|
elif [ $FNRET = 2 ]; then
|
||||||
warn "$PATTERN is not present in $FILE, add default config to $FILE"
|
warn "$PATTERN is not present in $FILE, add default config to $FILE"
|
||||||
add_line_file_before_pattern $FILE "password requisite pam_cracklib.so retry=3 minlen=8 difok=3" "# pam-auth-update(8) for details."
|
add_line_file_before_pattern $FILE "password requisite pam_cracklib.so retry=3 minlen=15 difok=3" "# pam-auth-update(8) for details."
|
||||||
elif [ $FNRET = 3 ]; then
|
elif [ $FNRET = 3 ]; then
|
||||||
crit "$FILE is not exist, please check"
|
crit "$FILE is not exist, please check"
|
||||||
elif [ $FNRET = 4 ]; then
|
elif [ $FNRET = 4 ]; then
|
||||||
|
|||||||
@ -84,7 +84,7 @@ apply_debian () {
|
|||||||
apt_install $PACKAGE
|
apt_install $PACKAGE
|
||||||
elif [ $FNRET = 2 ]; then
|
elif [ $FNRET = 2 ]; then
|
||||||
warn "$PATTERN is not present in $FILE, add default config to $FILE"
|
warn "$PATTERN is not present in $FILE, add default config to $FILE"
|
||||||
add_line_file_before_pattern $FILE "password requisite pam_cracklib.so retry=3 minlen=8 difok=3" "# pam-auth-update(8) for details."
|
add_line_file_before_pattern $FILE "password requisite pam_cracklib.so retry=3 minlen=15 difok=3" "# pam-auth-update(8) for details."
|
||||||
elif [ $FNRET = 3 ]; then
|
elif [ $FNRET = 3 ]; then
|
||||||
crit "$FILE is not exist, please check"
|
crit "$FILE is not exist, please check"
|
||||||
elif [ $FNRET = 4 ]; then
|
elif [ $FNRET = 4 ]; then
|
||||||
|
|||||||
Loading…
x
Reference in New Issue
Block a user