I recently turned on the FIPS module under CentOS 6 (minimum installation).
The module confirmed the work :
cat /proc/sys/crypto/fips_enabled gives 1
cat /proc/sys/crypto/fips_enabled
1
openssl md5 somefile(failure) and openssl sha1 somefile(successful).
openssl md5 somefile
openssl sha1 somefile
openssl version gives OpenSSL 1.0.1e-fips 11 Feb 2013
openssl version
OpenSSL 1.0.1e-fips 11 Feb 2013
When I try to pass ssh to a field that I connect to daily, now I see a notification that says:
FIPS Integrity Check Error
The session continues and I can connect to the remote server. Is the connection secure?
Yes.
OpenSSL is known as FIPS Capable. In FIPS Capable, the library version can use proven cryptography.
FIPS_mode_set , . FIPS_mode_set , ( ), . , FIPS.
FIPS_mode_set