Lowercase (UNIX)

Module: Password Strength

When this option is enabled, passwords are checked for matches with the lowercase forms of words in enabled wordlists. If "Password = username" is selected, Symantec ESM checks each password for a match when the related user name is changed to all lowercase characters. Note that Symantec ESM changes only the alpha characters to lowercase; e.g., GOLF1 -> golf1.

The following table lists the error messages for the check.

Table: Error messages for Lowercase

Message String ID and Category	Platform and Message Numeric ID	Message Title and Description	Additional Information
String ID: STKU_GUESSPASS Category: ESM Error	UNIX (5330)	Title: Guessed user password Description:Symantec ESM guessed the passwords of the accounts listed below. This is a security problem because an intruder can also guess these passwords while trying to break into your system. You should immediately assign more secure passwords to these accounts. Then instruct each user to login, using the more secure password, and change the password again. A secure password should have six to eight characters, should not be found in any dictionary, and should have at least one non-alphabetic character. A secure password should also not match an account or host name.	Severity: red-4 Correctable: false Snapshot Updatable: false Template Updatable: false Information Field Format: [%s]
String ID: STKU_UNKNOWN_PAM_MODULE Category: ESM Error	UNIX (5368)	Title: Unknown PAM authentication module Description:ESM does not recognize any of the modules currently configured for authentication. Default Solaris hash types will be used for password cracking.	Severity: yellow-1 Correctable: false Snapshot Updatable: false Template Updatable: false Information Field Format: []

Message String ID and Category

Platform and Message Numeric ID

Message Title and Description

Additional Information

String ID: STKU_GUESSPASS

Category: ESM Error

UNIX (5330)

Title: Guessed user password

Description:Symantec ESM guessed the passwords of the accounts listed below. This is a security problem because an intruder can also guess these passwords while trying to break into your system. You should immediately assign more secure passwords to these accounts. Then instruct each user to login, using the more secure password, and change the password again. A secure password should have six to eight characters, should not be found in any dictionary, and should have at least one non-alphabetic character. A secure password should also not match an account or host name.

Severity: red-4

Correctable: false

Snapshot Updatable: false

Template Updatable: false

Information Field Format: [%s]

String ID: STKU_UNKNOWN_PAM_MODULE

Category: ESM Error

UNIX (5368)

Title: Unknown PAM authentication module

Description:ESM does not recognize any of the modules currently configured for authentication. Default Solaris hash types will be used for password cracking.

Severity: yellow-1

Correctable: false

Snapshot Updatable: false

Template Updatable: false

Information Field Format: []