-
## Problem
Complete implementation documented / sized in the following proposal:
https://github.com/fleetdm/fleet/blob/main/proposals/fips/fleet-server-fips.md
-
While PowerStig is able to audit and configure many STIG rules, it leaves out rules that can only be audited and not changed (for example "WN10-00-000005 - Domain-joined systems must use Windows 10 En…
-
**NEW**
- [ ] RHEL-06-000534 V-97229 `fips=1` in the kernel cmdline
- [ ] RHEL-06-000244 V-97231 FIPS compliant MACs in sshd_config
**UPDATED**
- [x] RHEL-06-000078 thru RHEL-06-000099 `sysctl -…
-
This is STIG violation and as we know not good practice especially since it is in clear text. we can use the same approach that geoserver does and write the username password in a separate file and en…
-
## Description of problem:
Under RHEL9, I noticed that net.ipv4.conf.default.rp_filter was being flagged as failing when in fact the value set was correct. This appears to be down to the setting ap…
-
Hi There,
FIPS is the U.S. government standard of security for cryptography.
No place in this project have indication whether or not it support FIPS for communication with target devices.
will …
-
While the xrdp server supports FIPS mode. In xrdp-keygen only the MD5 digest is used, this causes openSSL internal error in FIPS mode.
To enforce FIPS we need to implemented a FIPS compatible digest …
-
### 🎛 As a government contractor we have to report our inspec findings as a checklist xml file. It would nice to have inspec generate one of those or to at minimum have the reporter report more info…
-
**What would you like to be added**:
I'd like to be able to use a pre-built FIPS version of the AL2 EKS AMI provided by Amazon; AFAIK the spec for this is described in this [blog](https://aws.ama…
-
**What would you like to be added**:
After a discussion with Vedran Lerenc and Jessica Katz, the following observations and ideas for improvements to the [Landing Page](https://gardener.cloud/) were …