How to prevent a user from checking list of processes started by another user ?
In other words, how do I forbid a user to see which processes are running by another user ?
Asked
Active
Viewed 65 times
1 Answers
0
There are several ways to achieve that.
The oldest I know would be using a kernel with grsecurty patches applied, which bring restrictions for procfs
Another one would be the PID namespace feature of cgroups.
And the latest one the hidepid feature of procfs.
When available, I'd go for the last one, as it is the least intrusive one.
zhenech
- 1,492
- 9
- 13