Hi All,
For some time now, I've been adding 'hidepid=2' to my systems to limit process list access to the users that own the processes themselves.
I would like to propose that this be added to the SSG since it provides a very straightforward mechanism for reducing system process enumeration by regular users and/or rogue daemons.
Thanks,
Trevor
scap-security-guide@lists.fedorahosted.org