RHEL 9 libreswan package must be installed.

STIG ID: RHEL-09-252065  |  SRG: SRG-OS-000480-GPOS-00227 |  Severity: medium |  CCI: CCI-000366,CCI-000803 |  Vulnerability Id: V-257954

Vulnerability Discussion

Providing the ability for remote users or systems to initiate a secure VPN connection protects information when it is transmitted over a wide area network.

Satisfies: SRG-OS-000480-GPOS-00227, SRG-OS-000120-GPOS-00061

Check

Verify that RHEL 9 libreswan service package is installed.

Check that the libreswan service package is installed with the following command:

$ sudo dnf list --installed libreswan

Example output:

libreswan.x86_64 4.6-3.el9

If the "libreswan" package is not installed, this is a finding.

Fix

Install the libreswan service (if it is not already installed) with the following command:

$ sudo dnf install libreswan