File: rule.yml

package info (click to toggle)
scap-security-guide 0.1.78-1
  • links: PTS, VCS
  • area: main
  • in suites: forky, sid
  • size: 114,600 kB
  • sloc: xml: 245,305; sh: 84,381; python: 33,093; makefile: 27
file content (37 lines) | stat: -rw-r--r-- 1,092 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
 
documentation_complete: true


title: 'Install crypto-policies package'

description: |-
    {{{ describe_package_install(package="crypto-policies") }}}

rationale: |-
    Centralized cryptographic policies simplify applying secure ciphers across an operating system and
    the applications that run on that operating system. Use of weak or untested encryption algorithms
    undermines the purposes of utilizing encryption to protect data.

severity: medium

identifiers:
    cce@rhel8: CCE-82723-8
    cce@rhel9: CCE-83442-4
    cce@rhel10: CCE-89668-8

references:
    ospp: FCS_COP.1(1),FCS_COP.1(2),FCS_COP.1(3),FCS_COP.1(4),FCS_CKM.1,FCS_CKM.2,FCS_TLSC_EXT.1
    srg: SRG-OS-000396-GPOS-00176,SRG-OS-000393-GPOS-00173,SRG-OS-000394-GPOS-00174

ocil_clause: 'the package is not installed'

ocil: '{{{ ocil_package(package="crypto-policies") }}}'

template:
    name: package_installed
    vars:
        pkgname: crypto-policies

fixtext: |-
    {{{ describe_package_install(package="crypto-policies") }}}

srg_requirement: '{{{ srg_requirement_package_installed("crypto-policies") }}}'