Description
Kernel-module exposure can be reduced with modprobe.d blacklist rules generated from the current modulejail code. Administrators choose this Git package when they need newer hardening behavior or fixes.
It changes which kernel modules may load. Test hardware, boot, storage, and network functions before relying on generated blacklists.