|
|
|
|
|
|
by tiberious726
719 days ago
|
|
|
If you were using centos for fedramp, unless you got a variance from the feds, you were not in compliance. No one actually paid to have NIST evaluate centos's binaries (evaluation/certification must be of the compiled binary, not the source code, barring an exception made for openssl, and only openssl, not the kernel) |
|
|
Not that I am not saying it wasn't a clusterfuck of epic proportions in general.