OVALFileLinker from SCAP Security Guide ssg: [0, 1, 79], python: 3.10.12 5.11.2 2025-11-20T12:29:24 Set Root Lockout Time for Failed Password Attempts Ubuntu 22.04 The unlock time after number of failed logins should be set correctly. /etc/pam.d/common-auth 1 /etc/pam.d/common-auth 1 /etc/pam.d/common-account 1 /etc/pam.d/common-auth 1 /etc/security/faillock.conf 1 ^\s*auth\N+pam_unix\.so ^\s*auth\s+(requisite|required)\s+pam_faillock\.so.*preauth.*[\s\S]*^\s*auth.*pam_unix\.so[\s\S]*^\s*auth\s+\[default=die\]\s+pam_faillock\.so\s+authfail ^\s*account\s+required\s+pam_faillock\.so\s*(#.*)?$ ^[\s]*auth[\s]+.+[\s]+pam_faillock.so[\s]+[^\n]*root_unlock_time=([0-9]+) ^[\s]*root_unlock_time[\s]*=[\s]*([0-9]+)