| SRG-OS-000480-GPOS-00225 |
V2R2 |
The operating system must prevent the use of dictionary words for passwords. |
|
| SRG-OS-000480-GPOS-00226 |
V2R2 |
The operating system must enforce a delay of at least 4 seconds between logon prompts following a failed logon attempt. |
|
| SRG-OS-000480-GPOS-00227 |
V2R2 |
The operating system must be configured in accordance with the security configuration settings based on DoD security configuration or implementation guidance, including STIGs, NSA configuration guides, CTOs, and DTMs. |
|
| SRG-OS-000480-GPOS-00228 |
V2R2 |
The operating system must define default permissions for all authenticated users in such a way that the user can only read and modify their own files. |
|
| SRG-OS-000480-GPOS-00229 |
V2R2 |
The operating system must not allow an unattended or automatic logon to the system. |
|
| SRG-OS-000480-GPOS-00230 |
V2R2 |
The operating system must limit the ability of non-privileged users to grant other users direct access to the contents of their home directories/folders. |
|
| SRG-OS-000480-GPOS-00232 |
V2R2 |
The operating system must enable an application firewall, if available. |
|