Skip to content

Sle16 pci dss password rules patches#14607

Merged
teacup-on-rockingchair merged 2 commits intoComplianceAsCode:masterfrom
teacup-on-rockingchair:sle16_pco_dss_password_rules_patches
Mar 30, 2026
Merged

Sle16 pci dss password rules patches#14607
teacup-on-rockingchair merged 2 commits intoComplianceAsCode:masterfrom
teacup-on-rockingchair:sle16_pco_dss_password_rules_patches

Conversation

@teacup-on-rockingchair
Copy link
Copy Markdown
Contributor

@teacup-on-rockingchair teacup-on-rockingchair commented Mar 29, 2026

Description:

  • SLE16/SLE15 password related rules patches in context of pcidss profile

Rationale:

  • Use sufficient control in bash_ensure_pam_module_configuration macro remediation for pam_faillock rules to avoid duplication
  • Replace unsupported cracklib with pwquality rules

@teacup-on-rockingchair
Use sufficient in remediation for pam_faillock rules
ad537ee 
Usage of [success=1 default=ignore] confuses set_password_hashing_algorithm_commonauth rule(it is reported as failed)
and remediation for set_password_hashing_algorithm_commonauth adds new
pam_unix.so sha512 line. Change to sufficient for pam_unix.so is also added to set_password_hashing_algorithm_commonauth
@teacup-on-rockingchair
Replace unsupported cracklib with pwquality rules
af81647
@teacup-on-rockingchair teacup-on-rockingchair requested a review from a team as a code owner March 29, 2026 14:41
@teacup-on-rockingchair teacup-on-rockingchair added Update Rule Issues or pull requests related to Rules updates. pci-dss labels Mar 29, 2026
@teacup-on-rockingchair teacup-on-rockingchair added this to the 0.1.81 milestone Mar 29, 2026
@svet-se svet-se self-assigned this Mar 30, 2026
@teacup-on-rockingchair teacup-on-rockingchair merged commit 61106d7 into ComplianceAsCode:master Mar 30, 2026
63 of 65 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@svet-se svet-se svet-se approved these changes

Assignees

@svet-se svet-se

Labels

pci-dss Update Rule Issues or pull requests related to Rules updates.

Projects

None yet

Milestone

0.1.81

Development

Successfully merging this pull request may close these issues.

2 participants

@teacup-on-rockingchair @svet-se