nodev mount option is not enabled for /home directory
Description
Mounting is the attaching of an additional filesystem to the currently accessible filesystem of a computer. The /home directory is used to support disk storage needs of local users. This directory is not meant for mounting block devices. Therefore, it is advisable to enable nodev mount option for /home directory to prevent block devices from mounting on /home.
Severity
important
Category
Linux - Mounting Options Security
Resolution
Follow the below steps to resolve the misconfiguration.
Edit the /etc/fstab file and add nodev to the fourth field (mounting options) for the /home partition.
mount -o remount,nodev /home
Potential issues that may arise after applying the resolution
Altering the existing security setting may create the following impact in your network operations.
Does remediation require reboot?
No
Vulnerability Manager Plus tracks security configurations and remediate misconfigurations in your network systems from a centralized console. View a list of all the security misconfigurations detected by Vulnerability Manager Plus.
