Process core dumps must be disabled unless needed.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-209030 | OL6-00-000308 | SV-209030r793751_rule | Low |
| Description |
|---|
| A core dump includes a memory image taken at the time the operating system terminates an application. The memory image could contain sensitive data and is generally useful only for developers trying to debug problems. |
| STIG | Date |
|---|---|
| Oracle Linux 6 Security Technical Implementation Guide | 2021-12-03 |
Details
| Check Text ( C-9283r357875_chk ) |
|---|
| To verify that core dumps are disabled for all users, run the following command: $ grep core /etc/security/limits.conf /etc/security/limits.d/*.conf The output should be: * hard core 0 If it is not, this is a finding. |
| Fix Text (F-9283r357876_fix) |
|---|
| To disable core dumps for all users, add the following line to "/etc/security/limits.conf": * hard core 0 |