Skip to content

Commit 722c08f

Browse files
committed
Added remediation advice for insufficient_security_configurability
1 parent 503ec07 commit 722c08f

1 file changed

Lines changed: 4 additions & 0 deletions

File tree

mappings/remediation_advice/remediation_advice.json

Lines changed: 4 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1027,6 +1027,10 @@
10271027
"https://www.owasp.org/index.php/Top_10-2017_A6-Security_Misconfiguration"
10281028
],
10291029
"children": [
1030+
{
1031+
"id": "insufficient_security_configurability",
1032+
"remediation_advice": "As a best practice, implement 2FA support. Preferably using time-based one-time passwords (TOTP) or hardware security keys (WebAuthn/FIDO2) as as a stronger option. Provide backup recovery codes during enrollment. Enforce 2FA for accounts with administrative privileges and encourage adoption across all user accounts."
1033+
},
10301034
{
10311035
"id": "lack_of_notification_email",
10321036
"remediation_advice": "As a best practice, consider sending a notification email when questionable activity occurs, such as multiple unsuccessful login attempts."

0 commit comments

Comments
 (0)