{"description": "In traditional Unix security, if an attacker gains\nshell access to a certain login account, they can perform any action\nor access any file to which that account has access. Therefore,\nmaking it more difficult for unauthorized people to gain shell\naccess to accounts, particularly to privileged accounts, is a\nnecessary part of securing a system. This section introduces\nmechanisms for restricting access to accounts under\nUbuntu 22.04.", "warnings": [], "requires": [], "conflicts": [], "values": ["var_authselect_profile"], "groups": ["accounts-banners", "accounts-pam", "accounts-physical", "accounts-restrictions", "accounts-session"], "rules": ["authconfig_config_files_symlinks", "enable_authselect"], "platform": "", "platforms": [], "inherited_platforms": [], "cpe_platform_names": [], "title": "Account and Access Control", "definition_location": "/aptdata/openscap/scap-security-guide/linux_os/guide/system/accounts/group.yml"}