OK, that could be useful, maybe.
But don't the many flavors of LSM we've seen endlessly discussed solve
the problem of what processes can do, and to whom?
Containers to associate processes together to be managed as a group
strategy (scheduling priority, permissions, etc) makes sense to me, but
doesn't seem to need pid hiding.
Just making processes invisible to each other by pid seems a bit fishy as
a security mechanism. It reminds me of using chroot for security, which
seems to be in disrepute:
Or is it more just lightweight virtualization?