>From 4fd38a04e521b2d5f183f419fabf1d65d94b8323 Mon Sep 17 00:00:00 2001 From: Shawn Wells <sh...@redhat.com> Date: Wed, 19 Sep 2012 14:45:01 -0400 Subject: [PATCH 14/14] Created OCIL for max_concurrent_login_sessions
--- RHEL6/input/system/accounts/session.xml | 7 +++++++ 1 files changed, 7 insertions(+), 0 deletions(-) diff --git a/RHEL6/input/system/accounts/session.xml b/RHEL6/input/system/accounts/session.xml index c85f446..b7da2d2 100644 --- a/RHEL6/input/system/accounts/session.xml +++ b/RHEL6/input/system/accounts/session.xml @@ -36,6 +36,13 @@ Where <i>MAX</i> is the maximum number of login sessions allowed. problems caused by excessive logins. Automated login processes operating improperly or maliciously may result in an exceptional number of simultaneous login sessions. </rationale> +<ocil>Run the following command to ensure the <tt>maxlogins</tt> value is configured for all users +on the system: +<pre># grep "maxlogins" /etc/security/limits.conf</pre> +You should receive output simular to the following: +<pre>* hard maxlogins <i>MAX</i></pre> +Where <i>MAX</i> represents the value you have chosen. +</ocil> <!-- <oval id="max_concurrent_login_sessions" value="max_concurrent_login_sessions_value" /> --> <ref disa="54"/> </Rule> -- 1.7.1
_______________________________________________ scap-security-guide mailing list scap-security-guide@lists.fedorahosted.org https://lists.fedorahosted.org/mailman/listinfo/scap-security-guide
