Ensure that /etc/default/apport do not exist

Description

Ensure that the apport packages are purged and /etc/default/apport has been removed.

Rationale

Apport collects potentially sensitive data, such as core dumps, stack traces, and log files. They can contain passwords, credit card numbers, serial numbers, and other private material.

Audit

@test "Verify that /etc/default/apport do not exist" {
  run bash -c "stat /etc/default/apport"
  [ "$status" -eq 1 ]
}

Remediation

shell

apt-get --assume-yes purge apport*
rm /etc/default/apport

References

EUD Security Guidance: Ubuntu 18.04 LTS
https://wiki.ubuntu.com/Apport

results matching ""

    No results matching ""