Windows NFS导出的共享信息泄露 修复咨询

我们使用翻译服务协助我们的用户。请原谅语法错误。

我叫乔纳森·迪夫斯。我是一名独立顾问，今天我很乐意为您提供帮助。

此论坛面向临时用户，由于您的问题更复杂，请使用 Technet 论坛，他们可以更好地为您提供帮助。
https://social.technet.microsoft.com/forums/zh-...

我们使用翻译服务协助我们的用户。请原谅语法错误。

您还可以使用 Microsoft 问答论坛（仅限英语）

https://learn.microsoft.com/en-us/answers/quest...

How to solve NFS Exported Share Information Disclosure and NFS Shares World Readable in Windows

Scanner found server 2016 NFS Exported Share Information Disclosure and NFS Shares World Readable. But we can not find proper way to solve it in Internet. Do you know?

Synopsis

It is possible to access NFS shares on the remote host.

Description

At least one of the NFS shares exported by the remote server could be mounted by the scanning host. An attacker may be able to leverage this to read (and possibly write) files on remote host.

Solution

Configure NFS on the remote host so that only authorized hosts can mount its remote shares.

Risk Factor

Critical

VPR Score

5.9

CVSS v2.0 Base Score

10.0 (CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)

============================================================================ =====================

Synopsis

The remote NFS server exports world-readable shares.

Description

The remote NFS server is exporting one or more shares without restricting access (based on hostname, IP, or IP range). See Also http://www.tldp.org/HOWTO/NFS-HOWTO/security.html

Solution

Place the appropriate restrictions on all NFS shares.

Risk Factor

Medium

CVSS v3.0 Base Score

7.5 (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N)

CVSS v2.0 Base Score

5.0 (CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N)

Plugin Information Published: 2009/10/26, Modified: 2020/05/05

我们使用翻译服务协助我们的用户。请原谅语法错误。

您应该使用上面的论坛之一来获取有关 Windows Server 的帮助。

I can not select catogory so I can not ask any questions on the community.