The Photon operating system must have the OpenSSL FIPS provider installed to protect the confidentiality of remote access sessions.

An XCCDF Rule

Details
Profiles

Description

Without confidentiality protection mechanisms, unauthorized individuals may gain access to sensitive information via a remote access session. OpenSSH on the Photon operating system when configured appropriately can utilize a FIPS validated OpenSSL for cryptographic operations. Satisfies: SRG-OS-000033-GPOS-00014, SRG-OS-000393-GPOS-00173, SRG-OS-000394-GPOS-00174, SRG-OS-000423-GPOS-00187, SRG-OS-000425-GPOS-00189, SRG-OS-000426-GPOS-00190

ID: SV-258806r933479_rule
Version: PHTN-40-000013
Severity: High
References: CCI-000068 CCI-002418 CCI-002420 CCI-002422 CCI-002890 CCI-003123
Updated: about 2 months ago

Remediation Templates

At the command line, run the following command:

# tdnf install openssl-fips-provider

The Photon operating system must have the OpenSSL FIPS provider installed to protect the confidentiality of remote access sessions.

Description

Remediation Templates

A Manual Procedure