Kernel core dumps must be disabled unless needed.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-22404	GEN003510	SV-26059r1_rule	ECSC-1	Medium

Description
Kernel core dumps may contain the full contents of system memory at the time of the crash. Kernel core dumps may consume a considerable amount of disk space and may result in Denial-of-Service by exhausting the available space on the target file system. The kernel core dump process may increase the amount of time a system is unavailable due to a crash. Kernel core dumps can be useful for kernel debugging.

Description

Kernel core dumps may contain the full contents of system memory at the time of the crash. Kernel core dumps may consume a considerable amount of disk space and may result in Denial-of-Service by exhausting the available space on the target file system. The kernel core dump process may increase the amount of time a system is unavailable due to a crash. Kernel core dumps can be useful for kernel debugging.

STIG	Date
UNIX SRG	2013-03-26

Details

Check Text ( C-29242r1_chk )
Determine if kernel core dumps are enabled on the system. If so, this is a finding.

Fix Text (F-26261r1_fix)
Disable kernel core dumps on the system.