On 12/10/13, 9:41 AM, Steinke, Leland J Sr CTR DISA FSO (US) wrote:
If the account is locked, rather than disabled via shell, this problem vanishes.
So are you saying we can finally remove CCE-26966-2, "Ensure that System Accounts Do Not Run a Shell Upon Login," from the STIG as it's known to break things? ;)
http://people.redhat.com/swells/scap-security-guide/RHEL6/output/rhel6-guide-custom.html#no_shelllogin_for_systemaccounts _______________________________________________ scap-security-guide mailing list [email protected] https://lists.fedorahosted.org/mailman/listinfo/scap-security-guide
