A system administrator is hardening a Linux server based on a security policy that requires disabling all unused file systems. The audit identifies that the 'udf' file system is enabled but not required. Which of the following is the MOST effective method to persistently prevent the 'udf' kernel module from being loaded?
Run the command modprobe -r udf.
Run the command rmmod udf.
Create a file in /etc/modprobe.d/ with the content install udf /bin/true.
Add the line udf /mnt/udf udf noauto,user 0 0 to /etc/fstab.
The correct method to permanently prevent a kernel module like 'udf' from loading is to create a configuration file in the /etc/modprobe.d/ directory. Adding the line install udf /bin/true to a .conf file in this directory instructs the system to run the command /bin/true (which does nothing and exits successfully) instead of loading the module. This is a robust method that prevents the module from being loaded directly or as a dependency of another module. The rmmod udf command only removes the module from the currently running kernel and does not persist after a reboot. Editing /etc/fstab is incorrect as this file is used for mounting block devices and partitions, not for managing kernel modules. The modprobe -r udf command is equivalent to rmmod and is also a temporary solution that does not survive a system restart.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is the purpose of `/etc/modprobe.d/`?
Open an interactive chat with Bash
What does the `install udf /bin/true` directive do?
Open an interactive chat with Bash
Why are `rmmod` and `modprobe -r` not persistent solutions?
Open an interactive chat with Bash
CompTIA Linux+ XK0-006 (V8)
Security
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
IT & Cybersecurity Package Join Premium for Full Access