Web lists-archives.com

System hardening: adding hidepid to /proc?




Good day Guys

I came across this document:

https://linux-audit.com/linux-system-hardening-adding-hidepid-to-proc/

The idea is to increase security by hiding the display of running
processes, and their arguments, which belong to other users. This helps
avoid problems if users enter passwords on the command-line, and similar.

Its suggesting mount /proc with the option hidepid=2.

I would like to ask:

1) is it safe?

2) did you incur any issues?

3) what are your thoughts


The security audit tool, Lynis, also checks to see if /proc is mounted
hidepid?

[+] File systems
------------------------------------
  - Checking mount points

snippet

  - Testing /proc mount (hidepid)                             [ OK ]

Many thanks

Brent

P.s. I see its not suggested in the ''Securing Debian Manual"