Network File System (NFS): 2049

Security Weaknesses:

• NFSv2 and NFSv3 lack encryption, exposing data in transit.

• Vulnerable to unauthorized access and privilege escalation.

• Susceptible to DoS and data corruption attacks.

Security Defense and Mitigation Measures:

• Use NFSv4 with Kerberos authentication for secure access.

• Restrict NFS exports to specific IPs and subnets.

• Regularly monitor and update NFS servers.

Indicators of Compromise or Attack:

• Unusual file access patterns or unauthorized mounts.

• Unexpected changes in file or directory permissions.

• High latency or failed attempts to access NFS resources.