Unattended or automatic login via the GUI must not be allowed.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-75495	UBTU-16-010330	SV-90175r3_rule		High

Description
Failure to restrict system access to authenticated users negatively impacts Ubuntu operating system security.

STIG	Date
Canonical Ubuntu 16.04 Security Technical Implementation Guide	2019-03-13

Details

Check Text ( C-75199r3_chk )
Verify that unattended or automatic login via the GUI is disabled. Check that unattended or automatic login is disabled with the following command: # sudo grep -i autologin-user /etc/lightdm/lightdm.conf autologin-user= autologin-user-timeout=0 If the "autologin-user" parameter is blank, or is commented out, this is a finding. If the "autologin-user-timeout" parameter is not 0, or is commented out, this is a finding.

Check Text ( C-75199r3_chk )

Verify that unattended or automatic login via the GUI is disabled.

Check that unattended or automatic login is disabled with the following command:

# sudo grep -i autologin-user /etc/lightdm/lightdm.conf

autologin-user=
autologin-user-timeout=0

If the "autologin-user" parameter is blank, or is commented out, this is a finding.
If the "autologin-user-timeout" parameter is not 0, or is commented out, this is a finding.

Fix Text (F-82123r4_fix)
Configure the GUI to not allow unattended or automatic login to the system. Comment the following lines in "/etc/lightdm/lightdm.conf" file: #autologin-user= #autologin-user-timeout=0