5.3.1.3 Ensure libpam-pwquality is installed

Information

libpwquality provides common functions for password quality checking and scoring them based on their apparent randomness. The library also provides a function for generating random passwords with good pronounceability.

This module can be plugged into the password stack of a given service to provide some plug-in strength-checking for passwords. The code was originally based on pam_cracklib module and the module is backwards compatible with its options.

Strong passwords reduce the risk of systems being hacked through brute force methods.

Solution

Run the following command to install libpam-pwquality :

# apt install libpam-pwquality

See Also

https://workbench.cisecurity.org/benchmarks/17045

Item Details

Category: IDENTIFICATION AND AUTHENTICATION

References: 800-53|IA-5(1)

Plugin: Unix

Control ID: 7d6230bd6ca7c36b02a5ef7c1c5989b9cf1532f19a5381d2f7e7bec8c38d9b1a