Information
NFS is frequently exploited to gain unauthorized access to files and systems. There is no need to run the NFS server-related daemons on hosts that are not NFS servers. If the system is an NFS server, the admin should take reasonable precautions when exporting file systems, including restricting NFS access to a specific range of local IP addresses and exporting file systems 'read-only' and 'nosuid' where appropriate. For more information consult the share_nfs manual page.