Brent Clark
2017-09-28 08:30:02 UTC
Good day Guys
I came across this document:
https://linux-audit.com/linux-system-hardening-adding-hidepid-to-proc/
The idea is to increase security by hiding the display of running
processes, and their arguments, which belong to other users. This helps
avoid problems if users enter passwords on the command-line, and similar.
Its suggesting mount /proc with the option hidepid=2.
I would like to ask:
1) is it safe?
2) did you incur any issues?
3) what are your thoughts
The security audit tool, Lynis, also checks to see if /proc is mounted
hidepid?
[+] File systems
------------------------------------
- Checking mount points
snippet
- Testing /proc mount (hidepid) [ OK ]
Many thanks
Brent
P.s. I see its not suggested in the ''Securing Debian Manual"
I came across this document:
https://linux-audit.com/linux-system-hardening-adding-hidepid-to-proc/
The idea is to increase security by hiding the display of running
processes, and their arguments, which belong to other users. This helps
avoid problems if users enter passwords on the command-line, and similar.
Its suggesting mount /proc with the option hidepid=2.
I would like to ask:
1) is it safe?
2) did you incur any issues?
3) what are your thoughts
The security audit tool, Lynis, also checks to see if /proc is mounted
hidepid?
[+] File systems
------------------------------------
- Checking mount points
snippet
- Testing /proc mount (hidepid) [ OK ]
Many thanks
Brent
P.s. I see its not suggested in the ''Securing Debian Manual"