From 984f04e7398e8dc67780fd2c3e001427edd748fa Mon Sep 17 00:00:00 2001
From: RageLtMan <rageltman [at] sempervictus>
Date: Fri, 8 May 2026 13:31:17 -0400
Subject: [PATCH] Force /bin/false return on dependent or forced load attempts

---
 blacklist_mods.yml | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/blacklist_mods.yml b/blacklist_mods.yml
index a1a12d1..5e34c5c 100644
--- a/blacklist_mods.yml
+++ b/blacklist_mods.yml
@@ -35,3 +35,11 @@
         state: present
       loop: "{{ modules_to_blacklist }}"
 
+    - name: Force /bin/false return on attempts to load kernel modules
+      lineinfile:
+        path: /etc/modprobe.d/blacklist.conf
+        line: "install {{ item }} /bin/false"
+        create: yes
+        mode: '0644'
+        state: present
+      loop: "{{ modules_to_blacklist }}"