TOSS 5 crypto policy files must match files shipped with the operating system.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-282615 | TOSS-05-000469 | SV-282615r1201495_rule | CCI-002450 | high |
| Description | ||||
| The TOSS 5 package "crypto-policies" defines the cryptography policies for the system. If the files are changed from those shipped with the operating system, it may be possible for TOSS 5 to use cryptographic functions that are not FIPS 140-3 approved. | ||||
| STIG | Date | |||
| Tri-Lab Operating System Stack (TOSS) 5 Security Technical Implementation Guide | 2026-04-01 | |||
Details
Check Text (C-282615r1201495_chk)
Verify the TOSS 5 package "crypto-policies" has not been modified using the following command:
$ rpm -V crypto-policies
If the command has any output, this is a finding.
Fix Text (F-87081r1200824_fix)
Reinstall the "crypto-policies" package to remove any modifications.
$ sudo dnf reinstall crypto-policies