Skip to content

File Systems security controls

Control : FILE-6344

The pseudo file system /proc reveals a process data for all users. Especially in shared environments, or where multiple users have access, this is a security risk. Even for a basic web server it may help restricting who can see process data in /proc, to prevent possible information leakage.

Control : FILE-6362

Check if a sticky bit is set on /tmp