RHEL 9 must disable the kernel.core_pattern.

An XCCDF Rule

Details
Profiles

Description

A core dump includes a memory image taken at the time the operating system terminates an application. The memory image could contain sensitive data and is generally useful only for developers trying to debug problems.

ID: SV-257803r991589_rule
Version: RHEL-09-213040
Severity: Medium
References: CCI-000366
Updated: about 2 months ago

Remediation Templates

Configure RHEL 9 to disable storing core dumps.

Add or edit the following line in a system configuration file, in the "/etc/sysctl.d/" directory:

kernel.core_pattern = |/bin/false
The system configuration files need to be reloaded for the changes to take effect. To reload the contents of the files, run the following command:

$ sudo sysctl --system

RHEL 9 must disable the kernel.core_pattern.

Description

Remediation Templates

A Manual Procedure