mirror of
https://github.com/nikdoof/ansible-cis.git
synced 2025-12-13 09:32:15 +00:00
11 lines
224 B
YAML
11 lines
224 B
YAML
---
|
|
# Tighten down /proc
|
|
- name: Hide other user's PIDs for non-root users
|
|
ansible.posix.mount:
|
|
src: proc
|
|
path: /proc
|
|
opts: defaults,hidepid=1,gid=986
|
|
state: present
|
|
fstype: proc
|
|
notify: remount proc
|