1.1.2.2.1 Ensure /dev/shm is a separate partition

Audit

-IF- /dev/shm is to be used on the system, run the following command and verify the output shows that /dev/shm is mounted. Particular requirements pertaining to mount options are covered in ensuing sections.

# findmnt -kn /dev/shm
/dev/shm tmpfs tmpfs rw,nosuid,nodev,noexec,relatime,seclabel

Remediation

For specific configuration requirements of the /dev/shm mount for your environment, modify /etc/fstab.

tmpfs /dev/shm tmpfs defaults,rw,nosuid,nodev,noexec,relatime,size=2G 0 0