Skip to content
ATO Pathways
Log In
Overview
Search
Catalogs
SCAP
OSCAL
Catalogs
Profiles
Documents
References
Knowledge Base
Platform Documentation
Compliance Dictionary
Platform Changelog
About
Catalogs
XCCDF
Guide to the Secure Configuration of Red Hat Enterprise Linux CoreOS 4
System Settings
Kernel Configuration
Sign kernel modules with SHA-512
Sign kernel modules with SHA-512
An XCCDF Rule
Details
Profiles
Prose
Sign kernel modules with SHA-512
Medium Severity
This configures the kernel to build and sign modules using SHA512 as the hash function. The configuration that was used to build kernel is available at
/boot/config-*
. To check the configuration value for
CONFIG_MODULE_SIG_SHA512
, run the following command:
grep CONFIG_MODULE_SIG_SHA512 /boot/config-*
For each kernel installed, a line with value "y" should be returned.