An error occurred:

Check: GEN008440

Solaris 10 SPARC STIG: GEN008440 (in versions v2 r4 through v1 r19)

Title

Automated file system mounting tools must not be enabled unless needed. (Cat III impact)

Discussion

Automated file system mounting tools may provide unprivileged users with the ability to access local media and network shares. If this access is not necessary for the system's operation, it must be disabled to reduce the risk of unauthorized access to these resources.

Check Content

If the autofs service is needed, this vulnerability is not applicable. Check if the autofs service is running. # svcs svc:/system/filesystem/autofs If the autofs service is online this is a finding.

Fix Text

Stop and disable the autofs service. # svcadm disable autofs

Additional Identifiers

Rule ID: SV-227067r603265_rule

Vulnerability ID: V-227067

Group Title: SRG-OS-000480

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.
Number Definition
CCI-000366

The organization implements the security configuration settings.

Controls

Controls tied to check. These are derived from the CCIs shown above.
Number Title
CM-6

Configuration Settings