From ef1ef9917d896f1cd837f399def6a75704e9bfd2 Mon Sep 17 00:00:00 2001
From: Raja Grewal <rg_public@proton.me>
Date: Sun, 10 Jul 2022 04:53:25 +1000
Subject: [PATCH] Blacklist automatic loading of CD-ROM modules

---
 etc/modprobe.d/30_security-misc.conf | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/etc/modprobe.d/30_security-misc.conf b/etc/modprobe.d/30_security-misc.conf
index 2b6894a..697057d 100644
--- a/etc/modprobe.d/30_security-misc.conf
+++ b/etc/modprobe.d/30_security-misc.conf
@@ -144,3 +144,5 @@ blacklist udlfb
 # https://forums.whonix.org/t/blacklist-more-kernel-modules-to-reduce-attack-surface/7989/31
 #install cdrom /bin/disabled-by-security-misc
 #install sr_mod /bin/disabled-by-security-misc
+blacklist cdrom
+blacklist sr_mod