Check: ESX0020
VMware ESX 3 Server:
ESX0020
(in version v1 r2)
Title
An NFS Server is running on the ESX Server host (Cat II impact)
Discussion
Datastores may have several types of file system formats. These include VMFS, Raw Device Mappings, and NFS. VMFS is a proprietary file system developed by VMware that is built to handle a high amount of I/O generated by the ESX Server. Raw Device Mappings (RDM) is a mapping file in a VMFS volume that acts as a proxy for a raw physical device. An RDM can be thought of as a symbolic link from a VMFS volume to a raw LUN. An NFS volume is located on an NFS server. In normal usage there should be no case where an ESX host would be required to export an NFS directory or directories using an NFS server. If such a server were to exist within the ESX host operating environment, sensitive data from datastores to which the ESX server is attached may become compromised. Since there should never be a need for an ESX server to export a file system, the presence of a running NFS server is a finding.
Check Content
On the ESX Server service console, perform the following: # ps –ef | grep nfsd If you see the something other than the “grep nfsd” process, this is a finding.
Fix Text
Do not configure an NFS Server on the ESX Server host.
Additional Identifiers
Rule ID: SV-16723r1_rule
Vulnerability ID: V-15784
Group Title: An NFS Server is running on ESX Server host.
Expert Comments
CCIs
Number | Definition |
---|---|
No CCIs are assigned to this check |
Controls
Number | Title |
---|---|
No controls are assigned to this check |