AlmaLinux OS 9 must prevent kernel profiling by nonprivileged users.
An XCCDF Rule
Description
Setting the kernel.perf_event_paranoid kernel parameter to "2" prevents attackers from gaining additional system information as a nonprivileged user. Satisfies: SRG-OS-000132-GPOS-00067, SRG-OS-000138-GPOS-00069
- ID
- SV-269426r1050309_rule
- Version
- ALMA-09-041160
- Severity
- Medium
- References
- Updated
Remediation Templates
A Manual Procedure
Configure AlmaLinux OS 9 to prevent kernel profiling by nonprivileged users with the following command:
$ echo "kernel.perf_event_paranoid = 2" > /etc/sysctl.d/60-perf.conf
Load settings from all system configuration files with the following command:
$ sysctl --system