Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-50827 | OL6-00-000259 | SV-65033r2_rule | Medium |
Description |
---|
Enabling the activation of the screen lock after an idle period ensures password entry will be required in order to access the system, preventing access by passersby. |
STIG | Date |
---|---|
Oracle Linux 6 Security Technical Implementation Guide | 2019-03-20 |
Check Text ( C-53299r2_chk ) |
---|
If the GConf2 package is not installed, this is not applicable. To check the status of the idle screen lock activation, run the following command: $ gconftool-2 --direct --config-source xml:readwrite:/etc/gconf/gconf.xml.mandatory --get /apps/gnome-screensaver/lock_enabled If properly configured, the output should be "true". If it is not, this is a finding. |
Fix Text (F-55621r1_fix) |
---|
Run the following command to activate locking of the screensaver in the GNOME desktop when it is activated: # gconftool-2 --direct \ --config-source xml:readwrite:/etc/gconf/gconf.xml.mandatory \ --type bool \ --set /apps/gnome-screensaver/lock_enabled true |