41 lines
1.0 KiB
Plaintext
41 lines
1.0 KiB
Plaintext
|
|
# This file is derived from recommendations made by the Center for Internet
|
|
# Security (CIS) Debian Linux 12 benchmark, v1.1.0.
|
|
|
|
# 1.1.1 Configure Filesystem Kernel Modules
|
|
|
|
# 1.1.1.1 Ensure cramfs kernel module is not available
|
|
install cramfs /bin/false
|
|
blacklist cramfs
|
|
|
|
# 1.1.1.2 Ensure freexvs kernel module is not available
|
|
install freevxfs /bin/false
|
|
blacklist freevxfs
|
|
|
|
# 1.1.1.3 Ensure hfs kernel module is not available
|
|
install hfs /bin/false
|
|
blacklist hfs
|
|
|
|
# 1.1.1.4 Ensure hfsplus kernel module is not available
|
|
install hfsplus /bin/false
|
|
blacklist hfsplus
|
|
|
|
# 1.1.1.5 Ensure jffs2 kernel module is not available
|
|
install jffs2 /bin/false
|
|
blacklist jffs2
|
|
|
|
# 1.1.1.8 Ensure udf kernel module is not available
|
|
install udf /bin/false
|
|
blacklist udf
|
|
|
|
# 1.1.1.10 Ensure unused filesystems kernel modules are not available
|
|
install afs /bin/false
|
|
blacklist afs
|
|
install ceph /bin/false
|
|
blacklist ceph
|
|
install cifs /bin/false
|
|
blacklist cifs
|
|
install fscache /bin/false
|
|
blacklist fscache
|
|
install gfs2 /bin/false
|
|
blacklist gfs2 |