STIGQter: STIG Summary: Red Hat Enterprise Linux 8 Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 23 Apr 2021: STIGQter: STIG Summary: Red Hat Enterprise Linux 8 Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 23 Apr 2021:SV-230310r627750_rule
V-230310
SRG-OS-000480-GPOS-00227
RHEL-08-010670
CAT II
10
If kernel core dumps are not required, disable the "kdump" service with the following command:
# systemctl disable kdump.service
If kernel core dumps are required, document the need with the ISSO.
Verify that kernel core dumps are disabled unless needed with the following command:
$ sudo systemctl status kdump.service
kdump.service - Crash recovery kernel arming
Loaded: loaded (/usr/lib/systemd/system/kdump.service; enabled; vendor preset: enabled)
Active: active (exited) since Mon 2020-05-04 16:08:09 EDT; 3min ago
Main PID: 1130 (code=exited, status=0/SUCCESS)
If the "kdump" service is active, ask the System Administrator if the use of the service is required and documented with the Information System Security Officer (ISSO).
If the service is active and is not documented, this is a finding.
V-230310
False
RHEL-08-010670
Verify that kernel core dumps are disabled unless needed with the following command:
$ sudo systemctl status kdump.service
kdump.service - Crash recovery kernel arming
Loaded: loaded (/usr/lib/systemd/system/kdump.service; enabled; vendor preset: enabled)
Active: active (exited) since Mon 2020-05-04 16:08:09 EDT; 3min ago
Main PID: 1130 (code=exited, status=0/SUCCESS)
If the "kdump" service is active, ask the System Administrator if the use of the service is required and documented with the Information System Security Officer (ISSO).
If the service is active and is not documented, this is a finding.
M
2921