The filesystem that contains the current state of the running kernel and the information of the running processes is mounted on the "/proc" directory. This filesystem is called "proc filesystem". You can define the access controls for the proc filesystem. The screenshot is shown below.
When a process is created, a directory whose name is the pid of the process is created on the proc filesystem. You can define the access controls for the directory that is named the self-pid. In default configuration, read-access to this directory is allowed in the "global" domain.
You can define the access controls for the directories that contain the information of other processes.
These directories contain the information that is used by the system in common. The usual process need no write-access permission to these directories, but need read-access permission.
The running kernel outputs the log to this "/proc/kmsg" file.
You can define the access control for all files other than the above under the "/proc" directory. If you want to define the access controls in detail, you have to edit the original configuration files in SELinux.
By clicking this button, the inter-configuration files are updated with the changes.