UCF STIG Viewer Logo

Process core dumps must be disabled unless needed.


Finding ID Version Rule ID IA Controls Severity
V-218054 RHEL-06-000308 SV-218054r505923_rule Low
A core dump includes a memory image taken at the time the operating system terminates an application. The memory image could contain sensitive data and is generally useful only for developers trying to debug problems.
Red Hat Enterprise Linux 6 Security Technical Implementation Guide 2020-09-03


Check Text ( C-19535r377177_chk )
To verify that core dumps are disabled for all users, run the following command:

$ grep core /etc/security/limits.conf /etc/security/limits.d/*.conf

The output should be:

* hard core 0

If it is not, this is a finding.
Fix Text (F-19533r377178_fix)
To disable core dumps for all users, add the following line to "/etc/security/limits.conf":

* hard core 0