UBTU-16-010060 – Ubuntu operating system sessions must be automatically logged out after 15 minutes of inactivity – timeout

Details

An Ubuntu operating system needs to be able to identify when a user’s sessions has idled for longer than 15 minutes. The Ubuntu operating system must logout a users’ session after 15 minutes to prevent anyone from gaining access to the machine while the user is away.

Solution

Configure the Ubuntu operating system to initiate a session logout after a ’15’ minutes of inactivity.

Create a file to contain the system-wide session auto logout script (if it does not already exist) with the following command:

# sudo touch /etc/profile.d/autologout.sh

Add the following lines to the ‘/etc/profile.d/autologout.sh’ script:

TMOUT=900
readonly TMOUT
export TMOUT

Supportive Information

The following resource is also helpful.

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_CAN_Ubuntu_16-04_LTS_V2R3_STIG.zip

This security hardening control applies to the following category of controls within NIST 800-53: Access Control.This control applies to the following type of system Unix.

References

800-53|AC-11a.
CAT|II
CCI|CCI-000057
Rule-ID|SV-214945r610931_rule
STIG-ID|UBTU-16-010060
STIG-Legacy|SV-90121
STIG-Legacy|V-75441
Vuln-ID|V-214945

Source

Tenable.com/audits

Updated on July 16, 2022

Was this article helpful?

Yes No

Details

Solution

Supportive Information

References

Source

Related Articles