Verify if there is an active mount before deactivating filesystems

[arturmartins]

It would be nice to guarantee that there is no active mount of the filesystem before removing its support from the kernel.

https://github.com/robertdebock/ansible-role-cis/blob/bf05e8f2cf36fe643b40a28ab0ad06434469b784/tasks/CentOS-8/initial_setup.yml#L4

WDYT?

[robertdebock]

About content: "install cramfs /bin/true":

This is described in the CIS guidelines.

I think it's a fair remark. Do you think you could write a pull-request for that?

I'll keep the issue open in case I need to follow-up.

[robertdebock]

On the other hand, modprobe will just fail if a the module is in use, which is sort of okay right?