CCI-000050 requires the login banner to remain on the screen until users take 
explicit action for further access. enable_gdm_login_banner meets that 
requirement.

Signed-off-by: Willy Santos <[email protected]>
---
 rhel6/src/input/system/accounts/banners.xml |    2 +-
 1 files changed, 1 insertions(+), 1 deletions(-)

diff --git a/rhel6/src/input/system/accounts/banners.xml 
b/rhel6/src/input/system/accounts/banners.xml
index 443fbed..b5ce8ed 100644
--- a/rhel6/src/input/system/accounts/banners.xml
+++ b/rhel6/src/input/system/accounts/banners.xml
@@ -79,7 +79,7 @@ reinforces policy awareness during the logon process.
 </rationale>
 <ident cce="4188-9" />
 <oval id="banner_gui_enabled" />
-<ref nist="AC-3, CM-6, AC-8" disa="48" />
+<ref nist="AC-3, CM-6, AC-8" disa="48,50" />
 </Rule>
 
 <Rule id="set_gdm_login_banner_text">
-- 
1.7.7.6

_______________________________________________
scap-security-guide mailing list
[email protected]
https://fedorahosted.org/mailman/listinfo/scap-security-guide

Reply via email to