TOSS 5 crypto policy files must match files shipped with the operating system.

Overview

Finding IDVersionRule IDIA ControlsSeverity
V-282615TOSS-05-000469SV-282615r1201495_ruleCCI-002450high
Description
The TOSS 5 package "crypto-policies" defines the cryptography policies for the system. If the files are changed from those shipped with the operating system, it may be possible for TOSS 5 to use cryptographic functions that are not FIPS 140-3 approved.
STIGDate
Tri-Lab Operating System Stack (TOSS) 5 Security Technical Implementation Guide2026-04-01

Details

Check Text (C-282615r1201495_chk)

Verify the TOSS 5 package "crypto-policies" has not been modified using the following command: $ rpm -V crypto-policies If the command has any output, this is a finding.

Fix Text (F-87081r1200824_fix)

Reinstall the "crypto-policies" package to remove any modifications. $ sudo dnf reinstall crypto-policies