Skip to content
ATO Pathways
Log In
Overview
Search
Catalogs
SCAP
OSCAL
Catalogs
Profiles
Documents
References
Knowledge Base
Platform Documentation
Compliance Dictionary
Platform Changelog
About
Catalogs
XCCDF
Guide to the Secure Configuration of Alibaba Cloud Linux 2
System Settings
Account and Access Control
Secure Session Configuration Files for Login Accounts
Limit the Number of Concurrent Login Sessions Allowed Per User
Limit the Number of Concurrent Login Sessions Allowed Per User
An XCCDF Rule
Details
Profiles
Prose
Limit the Number of Concurrent Login Sessions Allowed Per User
Low Severity
Limiting the number of allowed users and sessions per user can limit risks related to Denial of Service attacks. This addresses concurrent sessions for a single account and does not address concurrent sessions by a single user via multiple accounts. To set the number of concurrent sessions per user add the following line in
/etc/security/limits.conf
or a file under
/etc/security/limits.d/
:
* hard maxlogins