STIG ID: APPL-14-002003 | SRG: SRG-OS-000080-GPOS-00048 | Severity: medium | CCI: | Vulnerability Id: V-259479
Support for Network File Systems (NFS) services is nonessential and, therefore, must be disabled.
Configure the macOS system to disable network file system service with the following command:
/bin/launchctl disable system/com.apple.nfsd
The system may need to be restarted for the update to take effect.
Verify the macOS system is configured to disable network file system service with the following command:
/bin/launchctl print-disabled system | /usr/bin/grep -c '"com.apple.nfsd" => disabled'
If the result is not "1", this is a finding.