Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

RHEL 8 CIS 5.5.3 Ensure password reuse is limited updating wrong file #10012

Closed
bmarshmn opened this issue Dec 23, 2022 · 1 comment
Closed

RHEL 8 CIS 5.5.3 Ensure password reuse is limited updating wrong file #10012

bmarshmn opened this issue Dec 23, 2022 · 1 comment
Labels
CIS CIS Benchmark related. RHEL8 Red Hat Enterprise Linux 8 product related.
Milestone
0.1.66

Comments

@bmarshmn
Copy link

the updates are done in /etc/pam.d/system-auth, but per CIS should be done against system-auth in the current authselect profile.
As is, future authselect runs will loose the pam_pwhistory.so updates

https://workbench.cisecurity.org/sections/1149671/recommendations/1873474
@marcusburghardt marcusburghardt added the CIS CIS Benchmark related. label Jan 10, 2023
@marcusburghardt marcusburghardt added this to the 0.1.66 milestone Jan 10, 2023
@marcusburghardt marcusburghardt added the RHEL8 Red Hat Enterprise Linux 8 product related. label Jan 10, 2023
@marcusburghardt
Copy link
Member

The rules related to pam_pwhistory.so were recently updated and are covering all authselect cases.
More details in #9994 and #10021

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
CIS CIS Benchmark related. RHEL8 Red Hat Enterprise Linux 8 product related.
Projects
None yet
Milestone
0.1.66
Development

No branches or pull requests
2 participants
@marcusburghardt @bmarshmn