Detections
Analytics

1.332 OL08-00-040170

Information

The x86 Ctrl-Alt-Delete key sequence must be disabled on OL 8.

GROUP ID: V-248869
RULE ID: SV-248869r991589

A locally logged-on user, who presses Ctrl-Alt-Delete when at the console, can reboot the system. If accidentally pressed, as could happen in the case of a mixed OS environment, this can create the risk of short-term loss of system availability due to unintentional reboot. In a graphical user environment, risk of unintentional reboot from the Ctrl-Alt-Delete sequence is reduced because the user will be prompted before any action is taken.

Solution

Configure the system to disable the Ctrl-Alt-Delete sequence for the command line with the following commands:

$ sudo systemctl disable ctrl-alt-del.target $ sudo systemctl mask ctrl-alt-del.target

Created symlink /etc/systemd/system/ctrl-alt-del.target -> /dev/null

Reload the daemon to take effect:

$ sudo systemctl daemon-reload

See Also

https://workbench.cisecurity.org/benchmarks/23791

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-6b., CAT|I, CCI|CCI-000366, Rule-ID|SV-248869r991589_rule, STIG-ID|OL08-00-040170, Vuln-ID|V-248869

Plugin: Unix

Control ID: 8a169732e545cda09499e91a58fa5df42305eff276f7813babe44d1a4cd9ac2f