search

kclinden / vmware-vrealize-automation-7-x-sles-stig-baseline

InSpec profile for the VMware vRealize Automation 7.x SLES DISA STIG
Apache License 2.0
0 stars 0 forks source link

V-89573 - The SLES for vRealize must store only encrypted representations of passwords #3

Closed kclinden closed 5 years ago

kclinden commented 5 years ago

Need to determine how to check /etc/shadow hashes are either $6$, *, or !.

Current code doesn't check for other options.

#Need to rework this. It currently will fail since several accounts have * or !
describe shadow do
  its('passwords'){ should cmp '$6$' }
end
kclinden commented 5 years ago

closed thanks to jerry