STIGQter: STIG Summary: Red Hat Enterprise Linux 7 Security Technical Implementation Guide Version: 3 Release: 3 Benchmark Date: 23 Apr 2021: STIGQter: STIG Summary: Red Hat Enterprise Linux 7 Security Technical Implementation Guide Version: 3 Release: 3 Benchmark Date: 23 Apr 2021:SV-204576r603261_rule
V-204576
SRG-OS-000027-GPOS-00008
RHEL-07-040000
CAT III
10
Configure the operating system to limit the number of concurrent sessions to "10" for all accounts and/or account types.
Add the following line to the top of the /etc/security/limits.conf or in a ".conf" file defined in /etc/security/limits.d/ :
* hard maxlogins 10
Verify the operating system limits the number of concurrent sessions to "10" for all accounts and/or account types by issuing the following command:
# grep "maxlogins" /etc/security/limits.conf /etc/security/limits.d/*.conf
* hard maxlogins 10
This can be set as a global domain (with the * wildcard) but may be set differently for multiple domains.
If the "maxlogins" item is missing, commented out, or the value is not set to "10" or less for all domains that have the "maxlogins" item assigned, this is a finding.
V-204576
False
RHEL-07-040000
Verify the operating system limits the number of concurrent sessions to "10" for all accounts and/or account types by issuing the following command:
# grep "maxlogins" /etc/security/limits.conf /etc/security/limits.d/*.conf
* hard maxlogins 10
This can be set as a global domain (with the * wildcard) but may be set differently for multiple domains.
If the "maxlogins" item is missing, commented out, or the value is not set to "10" or less for all domains that have the "maxlogins" item assigned, this is a finding.
M
2899