Bug List: (2 of 2)
Bug 2228466 - Please explain if "accounts_passwords_pam_faillock_interval" should apply to RHEL8.2+ or not [rhel-8.6.0.z]
Summary: Please explain if "accounts_passwords_pam_faillock_interval" should apply to ...
Keywords:
Status: VERIFIED
Alias: None
Product: Red Hat Enterprise Linux 8
Classification: Red Hat
Component: scap-security-guide
Version: 8.7
Hardware: All
OS: Linux
medium
medium
Target Milestone: rc
: ---
Assignee: Vojtech Polasek
QA Contact: Milan Lysonek
URL:
Whiteboard:
Depends On: 2209073
Blocks:
TreeView+ depends on / blocked
 
Reported: 2023-08-02 12:22 UTC by RHEL Program Management Team
Modified: 2023-08-17 15:25 UTC (History)
7 users (show)

Fixed In Version: scap-security-guide-0.1.69-1.el8_6
Doc Type: Bug Fix
Doc Text:
.Faillock settings clarification in STIG profile Mapping of rule `accounts_passwords_pam_faillock_interval` has been clarified in the STIG profile. The rule now covers both RHEL-08-020012 and RHEL-08-020013.The reason for this change is that the rule `accounts_passwords_pam_faillock_interval` checks for `faillock` configuration in all of these three files: `/etc/pam.d/password-auth`, `/etc/pam.d/system-auth` and `/etc/security/faillock.conf`. The STIG ID RHEL-08-020012 checks just `/etc/pam.d/password-auth` and `/etc/pam.d/system-auth`. The STIG ID RHEL-08-020013 checks only `/etc/security/faillock.conf`. Therefore, the rule `accounts_passwords_pam_faillock_interval` covers both these STIG IDs.
Clone Of: 2209073
Environment:
Last Closed:
Type: ---
Target Upstream Version:
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Issue Tracker RHELPLAN-164142 0 None None None 2023-08-02 12:23:34 UTC

Note You need to log in before you can comment on or make changes to this bug.
Bug List: (2 of 2)