File Systems security controls
Control : FILE-6344
The pseudo file system /proc reveals a process data for all users. Especially in shared environments, or where multiple users have access, this is a security risk. Even for a basic web server it may help restricting who can see process data in /proc, to prevent possible information leakage.
Control : FILE-6362
Check if a sticky bit is set on /tmp