GEN000000-LNX00580 - The x86 CTRL-ALT-DELETE key sequence must be disabled.

Information

Undesirable reboots can occur if the CTRL-ALT-DELETE key sequence is not disabled. Such reboots may cause a loss of data or loss of access to critical information.

Solution

Ensure the CTRL-ALT-DELETE key sequence has been disabled and attempts to use the sequence are logged.
In the /etc/inittab file replace:
ca::ctrlaltdel:/sbin/shutdown -t3 -r now
with
ca:nil:ctrlaltdel:/usr/bin/logger -p security.info 'Ctrl-Alt-Del was pressed'

Once this change has been made, execute the following command to force the 'init' daemon to re-read /etc/inittab:

# telinit q

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Oracle_Linux_5_V2R1_STIG.zip

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-6b., CAT|I, CCI|CCI-000366, Rule-ID|SV-218180r603259_rule, STIG-ID|GEN000000-LNX00580, STIG-Legacy|SV-62991, STIG-Legacy|V-4342, Vuln-ID|V-218180

Plugin: Unix

Control ID: fa9dc09d411c2b13bb6e3c9250c63befe9308c303e4477df77eebe78cbb82c44