| VID |
28022 |
| Severity |
40 |
| Port |
139 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
The minimum password age at system password policy is not set. Passwords should not be changed too rapidly, or some users will set a newly changed password to one they have used previously. Configure the minimum password age to the recommended value. A value of 1 or 2 days is recommended.
* Platforms Affected :
Microsoft Windows Any version |
| Recommendation |
dfTo configure the password age, follow the steps below, appropriate for your platform.
In Windows NT:
1. Open the User Manager. (From the Windows NT Start menu, select Programs, Administrative Tools (Common), User Manager.)
2. Select the account from the list.
3. From the Policies menu, select Account to display the Account Policy dialog box.
4. Under Minimum Password Age, set the minimum password age to the value that your security policy specifies.
For a Windows 2000 domain:
1. Start Microsoft Management Console (MMC).
2. Add Group Policy Snap-in.
3. Browse Group Policy Objects.
4. Select the Domain Policy of interest.
5. Traverse the following path: Computer Configuration, Windows Settings, Security Settings, Account Policies, Password Policy, Minimum Password Age
6. Set the Minimum Password Age to desired value.
For stand-alone Windows 2000 machines:
1. On the computer of interest, start gpedit.msc. The focus is local computer by default.
2. Traverse the following path: Computer Configuration, Windows Settings, Security Settings, Account Policies, Password Policy, Minimum Password Age
3. Set the Minimum Password Age to desired value.
For Windows XP, 2003, VISTA, 7, 2008, 8, 2012, 10, 2016, 2019:
1. Go to Start menu -> Run and Type 'gpedit.msc'
2. Traverse the following path: Computer Configuration, Windows Settings, Security Settings, Account Policies, Password Policy, Minimum Password Age
3. Set the Minimum Password Age to desired value. |
| Related URL |
CVE-2003-0717 (CVE) |
| Related URL |
8826 (SecurityFocus) |
| Related URL |
13413 (ISS) |
|
