6 - Encryption

Information

Store the Username and Password in encrypted form

Stored Username and Passwords should be encrypted

Note: Nessus has not performed this check. It is included for informational purposes only.

Solution

The class org.eclipse.jetty.util.security.Password can be used to generate all varieties of passwords.

Run it without arguments to see usage instructions

Item Details

Category: SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|SC-13

Plugin: Unix

Control ID: 2120c102283ee70e93ae1a7068929fb3c87ec45946e823e0f72f140c584ece5f