SecScan SecScanSecurity Scanner for Linux
  • Tools
    • Site Tools
    • Recent Changes
    • Media Manager
    • Sitemap
    • Page Tools
    • Show pagesource
    • Old revisions
    • Backlinks
    • Export to PDF
    • Back to top
  • Log In

  1. You are here
  2. CentOS 7
  3. 5.5 Ensure root login is restricted to system console (Not Scored)
  4. 5.4 User Accounts and Environment

centos7:5:4

  • Show pagesource
  • Old revisions
  • Backlinks
  • Export to PDF
  • Share on ...
  • Google+
  • Twitter
  • LinkedIn
  • Facebook
  • Pinterest
  • Telegram
Table of Contents
  • 5.4 User Accounts and Environment
      • List of content
      • Description

5.4 User Accounts and Environment

List of content

  • 5.4.1 Set Shadow Password Suite Parameters
    • 5.4.1.1 Ensure password expiration is 90 days or less (Scored)
    • 5.4.1.2 Ensure minimum days between password changes is 7 or more (Scored)
    • 5.4.1.3 Ensure password expiration warning days is 7 or more (Scored)
    • 5.4.1.4 Ensure inactive password lock is 30 days or less (Scored)
  • 5.4.2 Ensure system accounts are non-login (Scored)
  • 5.4.3 Ensure default group for the root account is GID 0 (Scored)
  • 5.4.4 Ensure default user umask is 027 or more restrictive (Scored)

Description

This section provides guidance on setting up secure defaults for system and user accounts and their environment.

  • centos7/5/4.txt
  • Last modified: 2017/05/06 13:09
  • by Piotr Kłoczewski
Except where otherwise noted, content on this wiki is licensed under the following license: GNU Free Documentation License 1.3
GNU Free Documentation License 1.3 Built with Bootstrap 3 Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki