| VID |
14111 |
| Severity |
30 |
| Port |
22 |
| Protocol |
TCP |
| Class |
LSC |
| Detailed Description |
NFS (Network File System) access control configuration file can be accessed and changed even by ordinary users, so that unauthorized users can be registered and the file system can be mounted to attempt illegal tampering. Therefore, the NFS access control configuration file should be checked to make sure that it can not be modified by ordinary users.
* Affected platforms:
UNIX, Linux |
| Recommendation |
Take the following steps to change the owner and permissions of the file.
* Solaris
Change the owner and permissions of the "/etc/dfs/dfstab" file (owner root, permission 644)
#chown root /etc/dfs/dfstab
#chmod 644 /etc/dfs/dfstab
* Linux, * AIX, * HP
Change the owner and permissions of the "/etc/exports" file (owner root, permission 644)
#chown root /etc/exports
#chmod 644 /etc/exports |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
