Configure lockd to use static UDP port
An XCCDF Rule
Description
Configure the lockd daemon to use a static UDP port as
opposed to letting the RPC Bind service dynamically assign a port. Edit the
file /etc/sysconfig/nfs. Add or correct the following line:
LOCKD_UDPPORT=lockd-portWhere
lockd-port is a port which is not used by any other service on
your network.
Rationale
Restricting services to always use a given port enables firewalling to be done more effectively.
- ID
- xccdf_org.ssgproject.content_rule_nfs_fixed_lockd_udp_port
- Severity
- Unknown
- Updated