Enhancement: file/audit/fortigate/password-policy.yaml by md

2023-05-03 18:23:47 -04:00 · 2023-05-03 18:23:47 -04:00 · 49774f45fb
parent b8bffb1251
commit 49774f45fb
1 changed files with 8 additions and 2 deletions
--- a/file/audit/fortigate/password-policy.yaml
+++ b/file/audit/fortigate/password-policy.yaml
@ -1,11 +1,15 @@
 id: password-policy

 info:
-  name: Password Policy not Set
+  name: Fortinet Password Policy - Detect
  author: pussycat0x
  severity: info
-  description: The Administrative Password Policy is not set. Use the password policy feature to ensure all administrators use secure passwords that meet your organization's requirements.
+  description: Fortinet administrative password policy is not set. Using this feature is recommended to ensure all administrators use secure passwords that meet organizations' requirements.
  reference: https://docs.fortinet.com/document/fortigate/6.2.0/hardening-your-fortigate/582009/system-administrator-best-practices
+  classification:
+    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
+    cvss-score: 0.0
+    cwe-id: CWE-200
  tags: fortigate,config,audit,file,firewall

 file:
@ -25,3 +29,5 @@ file:
          - "config router"
          - "config firewall"
        condition: or
+
+# Enhanced by md on 2023/05/03