STIGQter: STIG Summary: Oracle Linux 6 Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021:

Process core dumps must be disabled unless needed.

DISA Rule

SV-209030r603263_rule

Vulnerability Number

V-209030

Group Title

SRG-OS-000480

Rule Version

OL6-00-000308

Severity

CAT III

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

To disable core dumps for all users, add the following line to "/etc/security/limits.conf":

* hard core 0

Check Contents

To verify that core dumps are disabled for all users, run the following command:

$ grep core /etc/security/limits.conf /etc/security/limits.d/*.conf

The output should be:

* hard core 0

If it is not, this is a finding.

Vulnerability Number

V-209030

Documentable

False

Rule Version

OL6-00-000308

Severity Override Guidance

To verify that core dumps are disabled for all users, run the following command:

$ grep core /etc/security/limits.conf /etc/security/limits.d/*.conf

The output should be:

* hard core 0

If it is not, this is a finding.

Check Content Reference

M

Target Key

2928

Comments