File tree Expand file tree Collapse file tree 1 file changed +5
-5
lines changed Expand file tree Collapse file tree 1 file changed +5
-5
lines changed Original file line number Diff line number Diff line change @@ -44,7 +44,7 @@ config SECURITY_TIOCSTI_RESTRICT
4444
4545config SECURITY_MODHARDEN
4646 bool "Harden module auto-loading"
47- default y
47+ default n
4848 depends on MODULES
4949 help
5050 If you say Y here, module auto-loading in response to use of some
@@ -59,10 +59,10 @@ config SECURITY_MODHARDEN
5959 Alternatively, the administrator can add the module to the list
6060 of modules loaded at boot by modifying init scripts.
6161
62- Modification of init scripts will most likely be needed on
63- Ubuntu servers with encrypted home directory support enabled,
64- as the first non-root user logging in will cause the ecb(aes),
65- ecb(aes)-all, cbc(aes), and cbc(aes)-all modules to be loaded .
62+ This setting can be overridden at runtime via the
63+ kernel.modharden sysctl.
64+
65+ If unsure say N .
6666
6767config SECURITY
6868 bool "Enable different security models"
You can’t perform that action at this time.
0 commit comments