Information
The rcnfs entry starts the NFS, NIS and automount daemons during system boot. Additionally, it automounts filesystems with the attribute vfs = nfs.
Rationale:
NFS is a service with numerous historical vulnerabilities and should not be enabled unless there is no alternative.
Solution
Use the rmitab command to remove the NFS start-up script from /etc/inittab:
rmitab rcnfs
Also, to be certain NFS related services have been discounted - execute the following script:
/etc/nfs.clean
Default Value:
Uncommented
Additional Information:
If NFS related services are required, then read-only exports and mounts are recommended. NFS mounts should include the options nodev and nosuid to prevent unauthorized access. Further no filesystem or directory should be exported with root access.
Remember, Unless otherwise required the NFS related services should be disabled.