Skip to content
ATO Pathways
Log In
Overview
Search
Catalogs
SCAP
OSCAL
Catalogs
Profiles
Documents
References
Knowledge Base
Platform Documentation
Compliance Dictionary
Platform Changelog
About
Catalogs
XCCDF
Guide to the Secure Configuration of Red Hat Enterprise Linux CoreOS 4
System Settings
Installing and Maintaining Software
System and Software Integrity
System Cryptographic Policies
Configure BIND to use System Crypto Policy
Configure BIND to use System Crypto Policy
An XCCDF Rule
Details
Profiles
Prose
Configure BIND to use System Crypto Policy
High Severity
Crypto Policies provide a centralized control over crypto algorithms usage of many packages. BIND is supported by crypto policy, but the BIND configuration may be set up to ignore it. To check that Crypto Policies settings are configured correctly, ensure that the
/etc/named.conf
includes the appropriate configuration: In the
options
section of
/etc/named.conf
, make sure that the following line is not commented out or superseded by later includes:
include "/etc/crypto-policies/back-ends/bind.config";