How to blacklist vboxguest?

Hi, I’m trying to blacklist the vboxguest kernel driver but I’m out of ideas. I have the following:

cat /etc/modprobe.d/50-ffs.conf
install vboxsf /bin/true
install vboxguest /bin/true
cat /etc/modprobe.d/blacklist.conf
blacklist vboxsf
blacklist vboxguest

I have ran apt purge virtualbox*. I have regenerated initrd dracut --force. I have rebooted. And yet the freakin module is still loaded:

lsmod | grep -i vbox
vboxguest

dmesg | grep -i vbox
vboxguest: host-version: 7.0.10...

The vboxsf driver is missing but vboxguest is still there. Is it something Whonix / debian specific? Or am I just dumb? Thanks.

(I’m on Whonix 17, everything updated).

Ah, you need to also omit the drivers explicitly in dracut’s config:

cat /etc/dracut.conf.d/50-ffs.conf
omit_drivers+=" vboxsf vboxguest "

dracut -f

aand reboot.

Why?

That didn’t work because these modules come with the mainline Linux kernel.

1 Like

related:
VirtualBox Guest Additions and Shared Folders chapter VirtualBox Guest Additions Security in Kicksecure wiki
(Whonix is based on Kicksecure.)