10.4 Restrict access to sys-suspend feature

Information

The /etc/default/sys-suspend settings control which users are allowed to use the syssuspend command to shut down the system.

Solution

Perform the following to implement the recommended state:
# cd /etc/default
# awk '/^PERMS=/ { $1 = "PERMS=-" }
{ print }' sys-suspend >sys-suspend.new
# mv sys-suspend.new sys-suspend
# pkgchk -f -n -p /etc/default/sys-suspend

See Also

https://workbench.cisecurity.org/files/614

Item Details

Category: ACCESS CONTROL

References: 800-53|AC-6(1)

Plugin: Unix

Control ID: c410acbe2cfe8ad1e9b07ee4dfb5aa8b6f71e28724e9ef10f08a1ef0d23f4847