Mounting is the attaching of an additional filesystem to the currently accessible filesystem of a computer. autofs is a program that allows automatic mounting of devices, typically including CD/DVDs and USB drives. With auto mounting enabled anyone with physical access could attach a USB drive or disc and have its contents available in system even if they lacked permissions to mount it themselves. Fixing this misconfiguration will disable auto mounting. Impact: Fixing this miconfiguration will prevent the systems from automatically mounting external devices.
Severity
critical
Category
Linux - Mounting Options Security
Resolution
Follow the below steps to resolve the misconfiguration.
Based on the service manager, run any of the following commands :
SysVinit based system : chkconfig autofs off
Systemd based system : systemctl disable autofs
Upstart based system : update-rc.d autofs disable
Potential issues that may arise after applying the resolution
Altering the existing security setting may create the following impact in your network operations.
Does remediation require reboot?
No
Vulnerability Manager Plus tracks security configurations and remediate misconfigurations in your network systems from a centralized console. View a list of all the security misconfigurations detected by Vulnerability Manager Plus.
