STIGQter: STIG Summary: Solaris 10 SPARC Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 22 Jan 2021:

Process core dumps must be disabled unless needed.

DISA Rule

SV-226875r603265_rule

Vulnerability Number

V-226875

Group Title

SRG-OS-000480

Rule Version

GEN003500

Severity

CAT III

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Change the process core dump configuration.
# coreadm -d global
# coreadm -d process
# coreadm -d global-setid
# coreadm -d proc-setid
# coreadm -d log

Edit /etc/system and remove the coredumpsize parameter.

Check Contents

Check the process core dump configuration.
# coreadm |grep enabled
OR
# egrep "COREADM_.*_ENABLED" /etc/coreadm.conf.

If any lines are returned by coreadm or if any lines are not set to no in /etc/coreadm.conf, this is a finding.

# grep coredumpsize /etc/system
If the value is 1, this is a finding.

Vulnerability Number

V-226875

Documentable

False

Rule Version

GEN003500

Severity Override Guidance

Check the process core dump configuration.
# coreadm |grep enabled
OR
# egrep "COREADM_.*_ENABLED" /etc/coreadm.conf.

If any lines are returned by coreadm or if any lines are not set to no in /etc/coreadm.conf, this is a finding.

# grep coredumpsize /etc/system
If the value is 1, this is a finding.

Check Content Reference

M

Target Key

4060

Comments