SV-214119r508027_rule
V-214119
SRG-APP-000514-DB-000383
PGS9-00-008200
CAT I
10
Configure OpenSSL to be FIPS compliant.
PostgreSQL uses OpenSSL for cryptographic modules. To configure OpenSSL to be FIPS 140-2 compliant, see the official RHEL Documentation: https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/6/html/Security_Guide/sect-Security_Guide-Federal_Standards_And_Regulations-Federal_Information_Processing_Standard.html
For more information on configuring PostgreSQL to use SSL, see supplementary content APPENDIX-G.
First, as the system administrator, run the following to see if FIPS is enabled:
$ cat /proc/sys/crypto/fips_enabled
If fips_enabled is not 1, this is a finding.
V-214119
False
PGS9-00-008200
First, as the system administrator, run the following to see if FIPS is enabled:
$ cat /proc/sys/crypto/fips_enabled
If fips_enabled is not 1, this is a finding.
M
3994