Detections
Analytics

1.1 UBTU-22-211015

Information

The operating system must disable the x86 Ctrl-Alt-Delete key sequence.

GROUP ID: V-260469
RULE ID: SV-260469r991589

A locally logged-on user who presses Ctrl-Alt-Delete, when at the console, can reboot the system. If accidentally pressed, as could happen in the case of a mixed OS environment, this can create the risk of short-term loss of availability of systems due to unintentional reboot.

Solution

Configure the operating system to disable the Ctrl-Alt-Delete sequence for the command line by using the following commands:

$ sudo systemctl disable ctrl-alt-del.target

$ sudo systemctl mask ctrl-alt-del.target

Reload the daemon to take effect:

$ sudo systemctl daemon-reload

See Also

https://workbench.cisecurity.org/benchmarks/22168

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-6b., CAT|I, CCI|CCI-000366, CSCv7|5.1, Rule-ID|SV-260469r991589_rule, STIG-ID|UBTU-22-211015, Vuln-ID|V-260469

Plugin: Unix

Control ID: 2b76a6b80416511b56bc9383c6b1191ca7766d77e8f9487be3794f08c399a1b3