Hello!
I have a few AlmaLinux 9.5 servers that are getting flagged by Qualys for nlockmgr vulnerability QID-66041, CVE-2000-0666. Looking for some advice here on how to remediate this. I have set lockd to run on a specific (non-standard) port and set fw rules for that port. Completely disabling NFS is the only way to I’ve been able to get Qualys to not pop on this. I believe this to be a false positive but have yet to actually try to exploit it (will be doing that tonight). Alma might not be affected by this but Qualys needs “an official statement” from Alma to that effect to not flag this as an issue.
kernel: 5.14.0-503.23.2.e19_5.x86_64