TOSS 5 crypto policy files must match files shipped with the operating system.
Severity | Group ID | Group Title | Version | Rule ID | Date | STIG Version |
|---|---|---|---|---|---|---|
| high | V-282615 | SRG-OS-000478-GPOS-00223 | TOSS-05-000469 | SV-282615r1201495_rule | 2026-04-01 | 1 |
Description
The TOSS 5 package "crypto-policies" defines the cryptography policies for the system.
If the files are changed from those shipped with the operating system, it may be possible for TOSS 5 to use cryptographic functions that are not FIPS 140-3 approved.
ℹ️ Check
Verify the TOSS 5 package "crypto-policies" has not been modified using the following command:
$ rpm -V crypto-policies
If the command has any output, this is a finding.
✔️ Fix
Reinstall the "crypto-policies" package to remove any modifications.
$ sudo dnf reinstall crypto-policies