Ensure NFS and RPC are not enabled (Not Scored) The Network File System (NFS) is one of the first and most widely distributed file systems in the UNIX environment. It provides the ability for systems to mount file systems of other servers through the network. If the server does not export NFS shares or act as an NFS client, it is recommended that these services be disabled to reduce remote attack surface. Fix: Remove or comment out start lines in /etc/init/rpcbind-boot.conf: # start on virtual-filesystems and net-device-up IFACE=lo Remove any start links for nfs-kernel-server from /etc/rc*.d: # rm /etc/rc*.d/S*nfs-kernel-server oval:org.secpod.oval:def:33875 SCAP Repo OVAL Definition 2016-04-19