[PATCH] UBUNTU: SAUCE: [net] disable autoloading of rare protocols

Tim Gardner tcanonical at tpi.com
Wed Jan 12 23:34:52 UTC 2011

On 01/12/2011 05:06 PM, Kees Cook wrote:
> On Wed, Jan 12, 2011 at 03:41:21PM -0600, Tim Gardner wrote:
>> Why don't we blacklist these modules instead of carrying more SAUCE patches?
> I think that shipping a blacklist file is more of a pain since it would end up as a
> debian conffile in /etc, so local changes would cause install debconf questions, etc.

I think the folks that would enable these modules are also capable of 
dealing with answering a debconf question. Furthermore, /etc/modprobe.d 
is a well known place for module loading control. Isn't /etc/modprobe.d 
where Jockey does its thing when switching between nvidia and nouveau ?

> Another option would be to filter it during the modules.aliases file creation so the
> list is all in one place.

I'm not sure I follow you here. Are you suggesting we add code in the 
post install hook for the kernel that elides the protocol module 
aliases? That doesn't seem like a very good idea to me wrt updates.

Tim Gardner tim.gardner at canonical.com

More information about the kernel-team mailing list