| VID |
17068 |
| Severity |
40 |
| Port |
111 |
| Protocol |
TCP,UDP |
| Class |
RPC |
| Detailed Description |
The target host is running a nfsd daemon, but is not exporting any file systems. You should disable it if it's not needed.
* Platforms Affected:
NFS Any version
* References:
http://www.iss.net/security_center/static/327.php |
| Recommendation |
Disable the NFS daemon if it is not needed. Nfsd is most often started from an rc script, but may also be started from the /etc/inetd.conf file.
To disable the daemon from an rc script, comment it out as appropriate for your operating system. As an example for disabling nfsd under SunOS 5.x, execute the following commands:
# /etc/init.d/nfs.server stop
# mv /etc/init.d/nfs.server /etc/init.d/DISABLED_nfs.server
To disable the daemon from inetd.conf:
1. Edit the /etc/inetd.conf (or equivalent) file.
2. Locate the line that controls the daemon.
3. Insert a # at the beginning of the line to comment out the daemon.
4. Revoke inetd daemon.
Solaris 10, Solaris 11:
# svcadm disable svc:/network/nfs/server:default
Enterprise Linux 6.4, CentOS 6.4, Fedora 19:
# /sbin/service nfs stop
# mv /etc/init.d/nfs.server /etc/init.d/DISABLED_nfs.server |
| Related URL |
CVE-1999-0548 (CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
