STIGQter: STIG Summary: Red Hat Enterprise Linux 8 Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 23 Apr 2021:

RHEL 8 must disable core dump backtraces.

DISA Rule

SV-230315r627750_rule

Vulnerability Number

V-230315

Group Title

SRG-OS-000480-GPOS-00227

Rule Version

RHEL-08-010675

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Configure the operating system to disable core dump backtraces.

Add or modify the following line in /etc/systemd/coredump.conf:

ProcessSizeMax=0

Check Contents

Verify the operating system disables core dump backtraces by issuing the following command:

$ sudo grep -i ProcessSizeMax /etc/systemd/coredump.conf

ProcessSizeMax=0

If the "ProcessSizeMax" item is missing, commented out, or the value is anything other than "0" and the need for core dumps is not documented with the Information System Security Officer (ISSO) as an operational requirement for all domains that have the "core" item assigned, this is a finding.

Vulnerability Number

V-230315

Documentable

False

Rule Version

RHEL-08-010675

Severity Override Guidance

Verify the operating system disables core dump backtraces by issuing the following command:

$ sudo grep -i ProcessSizeMax /etc/systemd/coredump.conf

ProcessSizeMax=0

If the "ProcessSizeMax" item is missing, commented out, or the value is anything other than "0" and the need for core dumps is not documented with the Information System Security Officer (ISSO) as an operational requirement for all domains that have the "core" item assigned, this is a finding.

Check Content Reference

M

Target Key

2921

Comments