3.4 Ensure 'PASSWORD_REUSE_MAX' Is Greater than or Equal to '20'

Information

As allowing reuse of a password within a short period of time after the password's initial use can make the success of both social-engineering and brute-force password-based attacks more likely, this value should be set according to the needs of the organization.

Solution

Remediate this setting by executing the following SQL statement. ALTER PROFILE DEFAULT LIMIT PASSWORD_REUSE_MAX 20;

See Also

https://workbench.cisecurity.org/files/601

Item Details

Category: IDENTIFICATION AND AUTHENTICATION

References: 800-53|IA-5(1)(e)

Plugin: OracleDB

Control ID: 177902ff9abd25cbece8a133b52d095461031d936a3980bec3dedcf07780a661