STIGQter: STIG Summary: Red Hat Enterprise Linux 8 Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 23 Apr 2021:

RHEL 8 must enable the hardware random number generator entropy gatherer service.

DISA Rule

SV-230285r627750_rule

Vulnerability Number

V-230285

Group Title

SRG-OS-000480-GPOS-00227

Rule Version

RHEL-08-010471

Severity

CAT III

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Start the rngd service, and enable the rngd service with the following commands:

$ sudo systemctl start rngd.service

$ sudo systemctl enable rngd.service

Check Contents

Check that RHEL 8 has enabled the hardware random number generator entropy gatherer service.

Verify the rngd service is enabled and active with the following commands:

$ sudo systemctl is-enabled rngd

enabled

$ sudo systemctl is-active rngd

active

If the service is not "enable and "active", this is a finding.

Vulnerability Number

V-230285

Documentable

False

Rule Version

RHEL-08-010471

Severity Override Guidance

Check that RHEL 8 has enabled the hardware random number generator entropy gatherer service.

Verify the rngd service is enabled and active with the following commands:

$ sudo systemctl is-enabled rngd

enabled

$ sudo systemctl is-active rngd

active

If the service is not "enable and "active", this is a finding.

Check Content Reference

M

Target Key

2921

Comments