Join the Reckless Community* indicates requiredEmail Address *First Name *Last Name *
Back to Red Hat Enterprise Linux 6 Security Technical Implementation Guide
Severity: Medium
<VulnDiscussion>Legitimate device files should only exist in the /dev directory. NFS mounts should not present device files to users.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>
To verify the "nodev" option is configured for all NFS mounts, run the following command: $ mount | grep "nfs " All NFS mounts should show the "nodev" setting in parentheses, along with other mount options. If the setting does not show, this is a finding.
Add the "nodev" option to the fourth column of "/etc/fstab" for the line which controls mounting of any NFS mounts.