Lynis security controls



Controls

ControlCategoryDescription
FILE-6344File SystemsRestricting process details to users

The pseudo file system /proc reveals a process data for all users. Especially in shared environments, or where multiple users have access, this is a security risk. Even for a basic web server it may help restricting who can see process data in /proc, to prevent possible information leakage.

FILE-6362File SystemsSticky bit on /tmp

Check if a sticky bit is set on /tmp