OL6-00-000372 - The operating system, upon successful logon/access, must display to the user the number of unsuccessful logon/access attempts since the last successful logon/access.

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

Users need to be aware of activity that occurs regarding their account. Providing users with information regarding the number of unsuccessful attempts that were made to login to their account allows the user to determine if any unauthorized activity has occurred and gives them an opportunity to notify administrators.

Solution

To configure the system to notify users of last logon/access using 'pam_lastlog', add the following line immediately after 'session required pam_limits.so':

session required pam_lastlog.so showfailed

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Oracle_Linux_6_V1R18_STIG.zip

Item Details

Category: ACCESS CONTROL

References: 800-53|AC-9(1), CAT|II, CCI|CCI-000366, Group-ID|V-59375, Rule-ID|SV-209052r603263_rule, STIG-ID|OL6-00-000372, STIG-Legacy|SV-73805, STIG-Legacy|V-59375, Vuln-ID|V-209052

Plugin: Unix

Control ID: d135fd36839b6755c56fdc112663f413909f19c7297e36b36c7a2b5d10a01c9b