STIGQter: STIG Summary: Red Hat Enterprise Linux 8 Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 23 Apr 2021:

RHEL 8 must ensure session control is automatically started at shell initialization.

DISA Rule

SV-230349r627750_rule

Vulnerability Number

V-230349

Group Title

SRG-OS-000028-GPOS-00009

Rule Version

RHEL-08-020041

Severity

CAT II

CCI(s)

• CCI-000056 - The information system retains the session lock until the user reestablishes access using established identification and authentication procedures.

Weight

10

Fix Recommendation

Configure the operating system to initialize the tmux terminal multiplexer as each shell is called by adding the following line to the end of the "/etc/bashrc" configuration file:

[ -n "$PS1" -a -z "$TMUX" ] && exec tmux

This setting will take effect at next logon.

Check Contents

Verify the operating system shell initialization file is configured to start each shell with the tmux terminal multiplexer with the following command:

$ sudo grep -i tmux /etc/bashrc

[ -n "$PS1" -a -z "$TMUX" ] && exec tmux

If "tmux" is not configured as the example above, is commented out, or missing from the "/etc/bashrc" initialization file, this is a finding.

Vulnerability Number

V-230349

Documentable

False

Rule Version

RHEL-08-020041

Severity Override Guidance

Verify the operating system shell initialization file is configured to start each shell with the tmux terminal multiplexer with the following command:

$ sudo grep -i tmux /etc/bashrc

[ -n "$PS1" -a -z "$TMUX" ] && exec tmux

If "tmux" is not configured as the example above, is commented out, or missing from the "/etc/bashrc" initialization file, this is a finding.

Check Content Reference

M

Target Key

2921

Comments