I'm up for both.
On Mon, Sep 30, 2013 at 11:41 AM, Shawn Wells <[email protected]> wrote: > On 9/30/13 11:28 AM, [email protected] wrote: > > All, > > Most of the guidance for RHEL security has suggested setting the following > in /etc/security/limits.conf: > > * hard core 0 > > I have generally set this to: > > * - core 0 > > Because this sets both the hard and soft limits on the system. Most SCAP > scanners are looking for very specific values there. I'm looking at > modifying the checks to pass either 'hard' or '-' for the value. > > I'd also to fix the maxlogins in the rule (*max_concurrent_login_sessions*) > in /etc/security/limits.conf to look for the DOD default (10) and lower to > satisfy the check. Security standards are there as a baseline, why 'fail' > the setting for exceeding the baseline value? > > > Good call. Make a patch. > > _______________________________________________ > scap-security-guide mailing list > [email protected] > https://lists.fedorahosted.org/mailman/listinfo/scap-security-guide > > -- Mind on a Mission <http://leamhall.blogspot.com/>
_______________________________________________ scap-security-guide mailing list [email protected] https://lists.fedorahosted.org/mailman/listinfo/scap-security-guide
