UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

AIX process core dumps must be disabled.


Overview

Finding ID Version Rule ID IA Controls Severity
V-215396 AIX7-00-003093 SV-215396r508663_rule Medium
Description
A core dump includes a memory image taken at the time the operating system terminates an application. The memory image could contain sensitive data and is generally useful only for developers trying to debug problems.
STIG Date
IBM AIX 7.x Security Technical Implementation Guide 2021-06-16

Details

Check Text ( C-16594r294639_chk )
From the command prompt, run the following command:

# lsuser -a core ALL
root core=0
daemon core=0
bin core=0
sys core=0
adm core=0
uucp core=0
snapp core=0
ipsec core=0
srvproxy core=0
esaadmin core=0
sshd core=0
doejohn core=0

If any user does not have a value of "core = 0", this is a finding.
Fix Text (F-16592r294640_fix)
Run command:
# chsec -f /etc/security/limits -s default -a core=0