OL 9 must have the packages required for encrypting offloaded audit logs installed.

STIG ID: OL09-00-000355  |  SRG: SRG-OS-000120-GPOS-00061 |  Severity: medium |  CCI: CCI-000803 |  Vulnerability Id: V-271510

Vulnerability Discussion

The rsyslog-gnutls package provides Transport Layer Security (TLS) support for the rsyslog daemon, which enables secure remote logging.

Check

Verify that OL 9 has the rsyslog-gnutls package installed with the following command:

$ dnf list --installed rsyslog-gnutls
Installed Packages
rsyslog-gnutls.x86_64 8.2310.0-4.el9 @AppStream

If the rsyslog-gnutls package is not installed, this is a finding.

Fix

Install the rsyslog-gnutls package with the following command:

$ sudo dnf install -y rsyslog-gnutls
This website is not created by, run, approved, or endorsed by the U.S. Department of Defense. Use at your own risk. This website is created by open-source software.