1.5.5 Ensure Automatic Error Reporting is not enabled

Information

The Apport Error Reporting Service automatically generates crash reports for debugging

Apport collects potentially sensitive data, such as core dumps, stack traces, and log files. They can contain passwords, credit card numbers, serial numbers, and other private material.

Solution

Edit /etc/default/apport and add or edit the enabled parameter to equal 0 :

enabled=0

Run the following commands to stop and mask the apport service

# systemctl stop apport.service
# systemctl mask apport.service

- OR -

Run the following command to remove the apport package:

# apt purge apport

See Also

https://workbench.cisecurity.org/benchmarks/17074

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-6, 800-53|CM-7, CSCv7|9.2

Plugin: Unix

Control ID: bc0ff025a1a88b7bf46afcbb8a526b5bb402730a80cb7d0a6caa3ce0aea533de