SV-98995r1_rule
V-88345
SRG-APP-000514-DB-000382
VROM-PG-000610
CAT I
10
At the command prompt, execute the following commands:
# /opt/vmware/vpostgres/current/bin/psql -U postgres -c "ALTER SYSTEM SET ssl_ciphers TO 'FIPS: +3DES:!aNULL';"
# /opt/vmware/vpostgres/current/bin/psql -U postgres -c "SELECT pg_reload_conf();"
At the command prompt, execute the following command:
# grep '^\s*ssl_ciphers\b' /storage/db/vcops/vpostgres/data/postgresql.conf
If "ssl_ciphers" is not set to "FIPS: +3DES:!aNULL", this is a finding.
V-88345
False
VROM-PG-000610
At the command prompt, execute the following command:
# grep '^\s*ssl_ciphers\b' /storage/db/vcops/vpostgres/data/postgresql.conf
If "ssl_ciphers" is not set to "FIPS: +3DES:!aNULL", this is a finding.
M
3445