From a8f1634901aa46307bb61c682f5c7a3a6dc37a17 Mon Sep 17 00:00:00 2001
From: netblue30 <netblue30@yahoo.com>
Date: Wed, 9 May 2018 11:17:56 -0400
Subject: testing hidepid

---
 test/hidepid-howto | 27 +++++++++++++++++++++++++++
 1 file changed, 27 insertions(+)
 create mode 100644 test/hidepid-howto

diff --git a/test/hidepid-howto b/test/hidepid-howto
new file mode 100644
index 000000000..f207c9109
--- /dev/null
+++ b/test/hidepid-howto
@@ -0,0 +1,27 @@
+1. Find an unused user group for hidepid exception:
+
+$ id
+uid=1000(netblue) gid=100(users) groups=100(users),10(wheel),90(network),
+92(audio),93(optical),95(storage),98(power)
+
+From /etc/group I pick up a group I am not part of:
+
+$ cat /etc/group
+[...]
+xmms2:x:618:
+rtkit:x:133:
+vboxsf:x:109:
+git:x:617:
+[...]
+
+I'll use group 618 (xmms2)
+
+2. Set hidepid and allow xmms2 users to bypass hidepid
+
+$ sudo mount -o remount,rw,hidepid=2,gid=618 /proc
+$ cat /proc/mounts | grep proc
+proc /proc proc rw,nosuid,nodev,noexec,relatime,gid=618,hidepid=2 0 0
+
+3. Test "firejail --list", "firejail --top", "firejail --tree", "firejail --netstats"
+
+
-- 
cgit v1.2.3-54-g00ecf