AIX process core dumps must be disabled.
Severity | Group ID | Group Title | Version | Rule ID | Date | STIG Version |
|---|---|---|---|---|---|---|
| medium | V-215396 | SRG-OS-000480-GPOS-00227 | AIX7-00-003093 | SV-215396r991589_rule | 2026-02-06 | 3 |
Description
A core dump includes a memory image taken at the time the operating system terminates an application. The memory image could contain sensitive data and is generally useful only for developers trying to debug problems.
ℹ️ Check
From the command prompt, run the following command:
# lsuser -a core ALL
root core=0
daemon core=0
bin core=0
sys core=0
adm core=0
uucp core=0
snapp core=0
ipsec core=0
srvproxy core=0
esaadmin core=0
sshd core=0
doejohn core=0
If any user does not have a value of "core = 0", this is a finding.
✔️ Fix
Run command:
# chsec -f /etc/security/limits -s default -a core=0