Ubuntu OS must automatically exit interactive command shell user sessions after five minutes of inactivity.

Severity	Group ID	Group Title	Version	Rule ID	Date	STIG Version
medium	V-275643	SRG-OS-000279-GPOS-00109	RIIM-OS-412030	SV-275643r1147979_rule	2025-10-02	1

Description
Terminating an idle interactive command shell user session within a short time period reduces the window of opportunity for unauthorized personnel to take control of it when left unattended in a virtual terminal or physical console.

ℹ️ Check
Verify Ubuntu OS is configured to automatically exit interactive command shell user sessions after five minutes of inactivity or less by using the following command: $ sudo grep -E "\bTMOUT=[0-9]+" /etc/bash.bashrc /etc/profile.d/* /etc/profile.d/99-terminal_tmout.sh:TMOUT=300 If "TMOUT" is not set to "300" or less, is set to "0", is commented out, or missing, this is a finding.

✔️ Fix
Configure Ubuntu OS to exit interactive command shell user sessions after five minutes of inactivity. Create and/or append a custom file under "/etc/profile.d/" by using the following command: $ sudo su -c "echo TMOUT=300 >> /etc/profile.d/99-terminal_tmout.sh" This will set a timeout value of five minutes for all future sessions. To set the timeout for the current sessions, execute the following command over the terminal session: $ export TMOUT=300

✔️ Fix

Configure Ubuntu OS to exit interactive command shell user sessions after five minutes of inactivity. Create and/or append a custom file under "/etc/profile.d/" by using the following command: $ sudo su -c "echo TMOUT=300 >> /etc/profile.d/99-terminal_tmout.sh" This will set a timeout value of five minutes for all future sessions. To set the timeout for the current sessions, execute the following command over the terminal session: $ export TMOUT=300