BUG REPORT: possible security issue due to partition mounting weakness

book

Article ID: 158826

calendar_today

Updated On:

Products

Encryption Management Server Gateway Email Encryption

Issue/Introduction

On Symantec Encryption Management Server the /boot partition is not mounted with the "nodev" flag. For security reasons it is recommended to set this flag.

A vulnerability scanner might report:

The following issues were discovered: /boot partition does not have 'nodev'

Cause

The /boot partition is not mounted with "nodev" flag.

Resolution

This potential security issue is resolved in 3.3.1 MP1.

Please contact technical support if a workaround for previous versions is required until the server can be upgraded.


Applies To

PGP Universal Server or Symantec Encryption Management Server below version 3.3.1 MP1.