CCI-000879 requires terminating non-local sessions when maintenance is completed. Setting an SSH idle timeout meets this requirement.
Signed-off-by: Willy Santos <[email protected]> --- rhel6/src/input/services/ssh.xml | 1 + 1 files changed, 1 insertions(+), 0 deletions(-) diff --git a/rhel6/src/input/services/ssh.xml b/rhel6/src/input/services/ssh.xml index 9df23f0..049fc9f 100644 --- a/rhel6/src/input/services/ssh.xml +++ b/rhel6/src/input/services/ssh.xml @@ -120,6 +120,7 @@ to compromises on another. </rationale> <ident cce="3845-5" /> <oval id="sshd_idle_timeout" value="sshd_idle_timeout_value"/> +<ref disa="879"/> </Rule> -- 1.7.7.6 _______________________________________________ scap-security-guide mailing list [email protected] https://fedorahosted.org/mailman/listinfo/scap-security-guide
