STIGQter: STIG Summary: IBM AIX 7.x Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 23 Apr 2021:

In the event of a system failure, AIX must preserve any information necessary to determine cause of failure and any information necessary to return to operations with least disruption to mission processes.

DISA Rule

SV-215407r508663_rule

Vulnerability Number

V-215407

Group Title

SRG-OS-000269-GPOS-00103

Rule Version

AIX7-00-003109

Severity

CAT II

CCI(s)

• CCI-001665 - The information system preserves organization-defined system state information in the event of a system failure.

Weight

10

Fix Recommendation

The "sysdumpdev" command should be used to configure dump device.

#sysdumpdev -p "Primary dump device"
#sysdumpdev -d <directory>

Note: The "-d <directory> " specifies the directory the device is copied to at boot time.

Check Contents

To display the current dump device settings enter the following command:
#sysdumpdev -l

primary /dev/lg_dumplv
secondary /dev/sysdumpnull
copy directory /var/adm/ras
forced copy flag TRUE
always allow dump FALSE
dump compression ON
type of dump fw-assisted
full memory dump disallow

If the primary device and copy directory is not configured, this is a finding.

Vulnerability Number

V-215407

Documentable

False

Rule Version

AIX7-00-003109

Severity Override Guidance

To display the current dump device settings enter the following command:
#sysdumpdev -l

primary /dev/lg_dumplv
secondary /dev/sysdumpnull
copy directory /var/adm/ras
forced copy flag TRUE
always allow dump FALSE
dump compression ON
type of dump fw-assisted
full memory dump disallow

If the primary device and copy directory is not configured, this is a finding.

Check Content Reference

M

Target Key

4012

Comments