{"description": "\nThe <code>libpam-pwquality</code> package can be installed with the following command:\n<pre>\n$ apt-get install libpam-pwquality</pre>", "rationale": "Use of a complex password helps to increase the time and resources required\nto compromise the password. Password complexity, or strength, is a measure\nof the effectiveness of a password in resisting attempts at guessing and\nbrute-force attacks. \"pwquality\" enforces complex password construction\nconfiguration and has the ability to limit brute-force attacks on the system.", "severity": "medium", "references": {"srg": ["SRG-OS-000480-GPOS-00225"], "cis": ["5.3.1.3"], "stigid": ["UBTU-22-215010"], "stigref": ["SV-260478r991587_rule"]}, "control_references": {"cis": ["5.3.1.3"], "stigid": ["UBTU-22-215010"]}, "components": [], "identifiers": {}, "ocil_clause": "the package is not installed", "ocil": "\nRun the following command to determine if the <code>libpam-pwquality</code> package is installed:\n<pre>$ dpkg -l  libpam-pwquality</pre>", "oval_external_content": null, "fixtext": "", "checktext": "", "vuldiscussion": "", "srg_requirement": "", "warnings": [], "conflicts": [], "requires": [], "policy_specific_content": {}, "platform": "package[pam]", "platforms": ["package[pam]"], "sce_metadata": {}, "inherited_platforms": [], "cpe_platform_names": ["package_pam"], "inherited_cpe_platform_names": [], "bash_conditional": null, "fixes": {}, "title": "Install pam_pwquality Package", "definition_location": "/aptdata/openscap/scap-security-guide/linux_os/guide/system/accounts/accounts-pam/package_pam_pwquality_installed/rule.yml", "template": {"name": "package_installed", "vars": {"pkgname": "libpam-pwquality"}, "backends": {}}}