Git-Mirrors/security-misc
1
0
Fork 0
mirror of https://github.com/Kicksecure/security-misc.git synced 2025-08-06 11:44:19 -04:00
Code Issues Projects Releases Packages Wiki Activity

disable proc-hidepid by default because incompatible with pkexec

Browse source 
and undo pkexec wrapper
This commit is contained in:
Patrick Schleizer 2020-04-12 16:48:13 -04:00
parent 938e929f39
commit 72be31e870
No known key found for this signature in database
GPG key ID: CB8D50BB77BB3C48
4 changed files with 7 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

5
debian/control vendored
View file

@ -175,8 +175,9 @@ Description: enhances misc security settings
`/lib/systemd/system/remount-secure.service`
`/usr/lib/security-misc/remount-secure`
.
* A systemd service mounts `/proc` with `hidepid=2` at boot to prevent users
from seeing each other's processes.
* An optional systemd service mounts `/proc` with `hidepid=2` at boot to
prevent users from seeing each other's processes. Not enabled because not
compatible with pkexec.
.
* The kernel logs are restricted to root only.
.