2.11 Disable automount Service

Information

The automount daemon is normally used to automatically mount NFS file systems from remote file servers when needed. However, the automount daemon can also be configured to mount local (loopback) file systems as well, which may include local user home directories, depending on the system configuration.

Rationale:

This service should be disabled if it is not required.

Solution

To disable this service, run the following command:

# svcadm disable svc:/system/filesystem/autofs

Additional Information:

By default, the Solaris 11 OS uses the automount service for local user home directories, so it should not be disabled without adjusting the home directory setting of each local user.

See Also

https://workbench.cisecurity.org/benchmarks/4777

Item Details

Category: SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|CA-9, 800-53|SC-7, 800-53|SC-7(5), CSCv7|9.2

Plugin: Unix

Control ID: a77e93392e6229ebae8c13381b7c8d547766cca0c12e550831a7b9ea0511efc1