| VID |
14144 |
| Severity |
30 |
| Port |
22 |
| Protocol |
TCP |
| Class |
LSC |
| Detailed Description |
The NFS configuration on that system is not secure. When allowing connections to NFS, you must specify which hosts are allowed to connect.
If you do not specify a host to allow access, sensitive information may be exposed to a large number of users
* Platforms Affected:
UNIX, Linux |
| Recommendation |
Set the user to be allowed to connect as follows.
<Solaris>
Specify the user to be allowed access in the /etc/dfs/dfstab file.
share -F nfs -o r=user1:user2 /home/secui
<Other systems>
Specify the user to be allowed access in the /etc/exports file.
/home/secui -acess=user1:user2,r |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
