# This file is derived from recommendations made by the Center for Internet 
# Security (CIS) Debian Linux 12 benchmark, v1.1.0.

# 1.1.1 Configure Filesystem Kernel Modules

# 1.1.1.1 Ensure cramfs kernel module is not available
install cramfs /bin/false
blacklist cramfs

# 1.1.1.2 Ensure freexvs kernel module is not available
install freevxfs /bin/false
blacklist freevxfs

# 1.1.1.3 Ensure hfs kernel module is not available
install hfs /bin/false
blacklist hfs

# 1.1.1.4 Ensure hfsplus kernel module is not available
install hfsplus /bin/false
blacklist hfsplus

# 1.1.1.5 Ensure jffs2 kernel module is not available
install jffs2 /bin/false
blacklist jffs2

# 1.1.1.8 Ensure udf kernel module is not available
install udf /bin/false
blacklist udf

# 1.1.1.10 Ensure unused filesystems kernel modules are not available
install afs /bin/false
blacklist afs
install ceph /bin/false
blacklist ceph
install cifs /bin/false
blacklist cifs
install fscache /bin/false
blacklist fscache
install gfs2 /bin/false
blacklist gfs2