usnistgov/macos_security
1
0
Fork 0
mirror of https://github.com/usnistgov/macos_security.git synced 2026-03-17 06:12:10 +00:00
Code Issues 21 Actions Packages Projects Releases Wiki Activity

Added ODV in more places

Browse Source
This commit is contained in:
Bob Gendler
2023-08-30 12:22:24 -04:00
parent e3d0cb1fd6
commit 40e4f147ca
1 changed files with 3 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
rules/pwpolicy/pwpolicy_lower_upper_case_character_enforce.yaml
View File

@@ -1,7 +1,7 @@
id: pwpolicy_lower_upper_case_character_enforce
title: "Require Passwords Contain a Minimum of One Lowercase Character and One Uppercase Character"
title: "Require Passwords Contain a Minimum of $ODV Lowercase Character and $ODV Uppercase Character"
discussion: |
The macOS _MUST_ be configured to require at least one lower-case character and one upper-case character be used when a password is created.
The macOS _MUST_ be configured to require at least $ODV lower-case character and $ODV upper-case character be used when a password is created.
This rule enforces password complexity by requiring users to set passwords that are less vulnerable to malicious users.
@@ -9,7 +9,7 @@ discussion: |
NOTE: The configuration profile generated must be installed from an MDM server.
check: |
/usr/bin/pwpolicy -getaccountpolicies 2> /dev/null | /usr/bin/tail +2 | /usr/bin/xmllint --xpath 'boolean(//*[contains(text(),"policyAttributePassword matches '\''.*[A-Z]{1,}[a-z]{1,}.*'\''")])' -
/usr/bin/pwpolicy -getaccountpolicies 2> /dev/null | /usr/bin/tail +2 | /usr/bin/xmllint --xpath 'boolean(//*[contains(text(),"policyAttributePassword matches '\''.*[A-Z]{$ODV,}[a-z]{$ODV,}.*'\''")])' -
result:
string: "true"
fix: |