The RHEL 8 file system automounter must be disabled.

STIG ID: RHEL-08-040070  |  SRG: SRG-OS-000114-GPOS-00059 |  Severity: medium (CAT II)  |  CCI: CCI-000778 |  Vulnerability Id: V-230502

Vulnerability Discussion

Automatically mounting file systems permits easy introduction of unknown devices, thereby facilitating malicious activity.

Check

Verify RHEL 8 disables the ability to automount devices.

Check to see if automounter service is active with the following command:

Note: If the autofs service is not installed, this requirement is not applicable.

$ sudo systemctl status autofs

o autofs.service - Automounts filesystems on demand
Loaded: loaded (/usr/lib/systemd/system/autofs.service; disabled)
Active: inactive (dead)

If the "autofs" status is set to "active", this is a finding.

Fix

Configure RHEL 8 to disable the ability to automount devices.

Turn off the automount service with the following commands:

$ sudo systemctl stop autofs
$ sudo systemctl disable autofs
This website is not created by, run, approved, or endorsed by the U.S. Department of Defense. Use at your own risk. This website is created by open-source software.