Check: RHEL-09-412030
RHEL 9 STIG:
RHEL-09-412030
(in versions v1 r3 through v1 r1)
Title
RHEL 9 must prevent users from disabling session control mechanisms. (Cat III impact)
Discussion
The session lock is implemented at the point where session activity can be determined. Rather than be forced to wait for a period of time to expire before the user session can be locked, RHEL 9 must provide users with the ability to manually invoke a session lock so users can secure their session if it is necessary to temporarily vacate the immediate physical vicinity. Satisfies: SRG-OS-000324-GPOS-00125, SRG-OS-000028-GPOS-00009
Check Content
Verify RHEL 9 prevents users from disabling the tmux terminal multiplexer with the following command: $ grep -i tmux /etc/shells If any output is produced, this is a finding.
Fix Text
Configure RHEL 9 to prevent users from disabling the tmux terminal multiplexer by editing the "/etc/shells" configuration file to remove any instances of tmux.
Additional Identifiers
Rule ID: SV-258067r926188_rule
Vulnerability ID: V-258067
Group Title: SRG-OS-000324-GPOS-00125
Expert Comments
CCIs
| Number | Definition |
|---|---|
| CCI-000056 |
The information system retains the session lock until the user reestablishes access using established identification and authentication procedures. |
| CCI-002235 |
The information system prevents non-privileged users from executing privileged functions to include disabling, circumventing, or altering implemented security safeguards/countermeasures. |