Skip to content
ATO Pathways
Log In
Overview
Search
Catalogs
SCAP
OSCAL
Catalogs
Profiles
Documents
References
Knowledge Base
Platform Documentation
Compliance Dictionary
Platform Changelog
About
Catalogs
XCCDF
Guide to the Secure Configuration of Red Hat Enterprise Linux 7
Services
NFS and RPC
Configure NFS Servers
Restrict NFS Clients to Privileged Ports
Restrict NFS Clients to Privileged Ports
An XCCDF Rule
Details
Profiles
Prose
Restrict NFS Clients to Privileged Ports
Unknown Severity
By default, the server NFS implementation requires that all client requests be made from ports less than 1024. If your organization has control over systems connected to its network, and if NFS requests are prohibited at the border firewall, this offers some protection against malicious requests from unprivileged users. Therefore, the default should not be changed.
To ensure that the default has not been changed, ensure no line in
/etc/exports
contains the option
insecure
.