On Tue, 27 Jun 2023 at 04:10, Paul Wise <p...@debian.org> wrote: > > On Mon, 2023-06-26 at 20:04 -0400, nick black wrote: > > > furthermore, this is only true when procfs is mounted with a > > nonzero hidepid, right? > > I note that systemd does not support non-zero hidepid, so > procfs hidepid will always be off on systemd based systems: > > https://github.com/systemd/systemd/issues/12955 > > At least until Linux offers a way for systemd to have access > to /proc but other programs to not have access to it.
That has been implemented a long time ago, services can set ProtectProc= so that processes run with hidepid: https://freedesktop.org/software/systemd/man/systemd.exec.html#ProtectProc= Kind regards, Luca Boccassi
