RHEL 9 must not have the nfs-utils package installed.

STIG ID: RHEL-09-215025  |  SRG: SRG-OS-000095-GPOS-00049 |  Severity: medium |  CCI: CCI-000381 |  Vulnerability Id: V-257828 | 

Vulnerability Discussion

"nfs-utils" provides a daemon for the kernel NFS server and related tools. This package also contains the "showmount" program. "showmount" queries the mount daemon on a remote host for information about the Network File System (NFS) server on the remote host. For example, "showmount" can display the clients that are mounted on that host.

Check

Verify that the nfs-utils package is not installed with the following command:

$ sudo dnf list --installed nfs-utils

Error: No matching Packages to list

If the "nfs-utils" package is installed, this is a finding.

Fix

Remove the nfs-utils package with the following command:

$ sudo dnf remove nfs-utils
This website is not created by, run, approved, or endorsed by the U.S. Department of Defense. Use at your own risk. This website is created by open-source software.