CCI-001133 requires the termination of a network connection at the end of a communication session or after a defined period of inactivity. In the case of inactivity of an SSH session, sshd_idle_timeout addresses this requirement.
Signed-off-by: Willy Santos wsantos@redhat.com --- rhel6/src/input/services/ssh.xml | 2 +- 1 files changed, 1 insertions(+), 1 deletions(-)
diff --git a/rhel6/src/input/services/ssh.xml b/rhel6/src/input/services/ssh.xml index 5b07857..94e9b31 100644 --- a/rhel6/src/input/services/ssh.xml +++ b/rhel6/src/input/services/ssh.xml @@ -121,7 +121,7 @@ to compromises on another. </rationale> <ident cce="3845-5" /> <oval id="sshd_idle_timeout" value="sshd_idle_timeout_value"/> -<ref disa="879"/> +<ref disa="879,1133"/> </Rule>