TOSS 5 crypto policy files must match files shipped with the operating system.

Severity
Group ID
Group Title
Version
Rule ID
Date
STIG Version
highV-282615SRG-OS-000478-GPOS-00223TOSS-05-000469SV-282615r1201495_rule2026-04-011

Description

The TOSS 5 package "crypto-policies" defines the cryptography policies for the system. If the files are changed from those shipped with the operating system, it may be possible for TOSS 5 to use cryptographic functions that are not FIPS 140-3 approved.

ℹ️ Check

Verify the TOSS 5 package "crypto-policies" has not been modified using the following command: $ rpm -V crypto-policies If the command has any output, this is a finding.

✔️ Fix

Reinstall the "crypto-policies" package to remove any modifications. $ sudo dnf reinstall crypto-policies