STIGQter: STIG Summary: Red Hat Enterprise Linux 8 Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 23 Apr 2021:

RHEL 8 must disable storing core dumps.

DISA Rule

SV-230314r627750_rule

Vulnerability Number

V-230314

Group Title

SRG-OS-000480-GPOS-00227

Rule Version

RHEL-08-010674

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Configure the operating system to disable storing core dumps for all users.

Add or modify the following line in /etc/systemd/coredump.conf:

Storage=none

Check Contents

Verify the operating system disables storing core dumps for all users by issuing the following command:

$ sudo grep -i storage /etc/systemd/coredump.conf

Storage=none

If the "Storage" item is missing, commented out, or the value is anything other than "none" and the need for core dumps is not documented with the Information System Security Officer (ISSO) as an operational requirement for all domains that have the "core" item assigned, this is a finding.

Vulnerability Number

V-230314

Documentable

False

Rule Version

RHEL-08-010674

Severity Override Guidance

Verify the operating system disables storing core dumps for all users by issuing the following command:

$ sudo grep -i storage /etc/systemd/coredump.conf

Storage=none

If the "Storage" item is missing, commented out, or the value is anything other than "none" and the need for core dumps is not documented with the Information System Security Officer (ISSO) as an operational requirement for all domains that have the "core" item assigned, this is a finding.

Check Content Reference

M

Target Key

2921

Comments