RHEL 9 libreswan package must be installed.

STIG ID: RHEL-09-252065  |  SRG: SRG-OS-000480-GPOS-00227 |  Severity: medium |  CCI: CCI-000366,CCI-000803 |  Vulnerability Id: V-257954 | 

Vulnerability Discussion

Providing the ability for remote users or systems to initiate a secure VPN connection protects information when it is transmitted over a wide area network.

Satisfies: SRG-OS-000480-GPOS-00227, SRG-OS-000120-GPOS-00061

Check

Verify that RHEL 9 libreswan service package is installed.

Check that the libreswan service package is installed with the following command:

$ sudo dnf list --installed libreswan

Example output:

libreswan.x86_64 4.6-3.el9

If the "libreswan" package is not installed, this is a finding.

Fix

Install the libreswan service (if it is not already installed) with the following command:

$ sudo dnf install libreswan
This website is not created by, run, approved, or endorsed by the U.S. Department of Defense. Use at your own risk. This website is created by open-source software.