Hardening Linux Systems: Account Security, Authentication Controls, and Network Defense
1.1 Securing System Accounts Non-interactive system accounts should be assigned /sbin/nologin as their shell to prevent interactive logins: grep '/sbin/nologin$' /etc/passwd sudo usermod -s /sbin/nologin backupsvc To disable dormant accounts without deletion: sudo usermod -L inactive_user sudo pass...