Red Hat Bugzilla – Bug 232995
FIPS 200: limit the number of concurrent sessions
Last modified: 2008-04-04 07:53:43 EDT
+++ This bug was initially created as a clone of Bug #232993 +++
Requirement for FIPS 200
The information system limits the number of concurrent sessions for any user to
[Assignment: organization-defined number of sessions].
According to sgrubb:
"Just checked with pam maintainer and he feels that pam_limits covers this one.
I think we should have the rejection tied to the audit system. So, we are
closer than I thought. It should work so that we can check that item off, but
we can make it better."
pam_limits is in RHEL-4 already the rejects based on concurrent sessions are
just not explicitely audited -> closing as NEXTRELEASE as RHEL-5 is fixed.