{"description": "It is impossible to fully protect a system from an\nattacker with physical access, so securing the space in which the\nsystem is located should be considered a necessary step. However,\nthere are some steps which, if taken, make it more difficult for an\nattacker to quickly or undetectably modify a system from its\nconsole.", "warnings": [], "requires": [], "conflicts": [], "values": ["var_logind_session_timeout"], "groups": ["screen_locking"], "rules": ["coreos_disable_interactive_boot", "disable_ctrlaltdel_burstaction", "disable_ctrlaltdel_reboot", "grub2_disable_interactive_boot", "logind_session_timeout", "require_emergency_target_auth", "require_singleuser_auth", "service_debug-shell_disabled"], "platform": "system_with_kernel", "platforms": ["system_with_kernel"], "inherited_platforms": [], "cpe_platform_names": ["system_with_kernel"], "title": "Protect Physical Console Access", "definition_location": "/aptdata/openscap/scap-security-guide/linux_os/guide/system/accounts/accounts-physical/group.yml"}