Home abi bus cachefiles coda crypto csky debug dev fs kernel net s390 s390dbf sunrpc user vm xen xpc

perf_event_paranoid

file: /proc/sys/kernel/perf_event_paranoid
variable: kernel.perf_event_paranoid
Official reference

Controls use of the performance events system by unprivileged users (without CAP_PERFMON). The default value is 2.

For backward compatibility reasons access to system performance monitoring and observability remains open for CAP_SYS_ADMIN privileged processes but CAP_SYS_ADMIN usage for secure system performance monitoring and observability operations is discouraged with respect to CAP_PERFMON use cases.

===  ==================================================================
 -1  Allow use of (almost) all events by all users.

     Ignore mlock limit after perf_event_mlock_kb without
     ``CAP_IPC_LOCK``.

>=0  Disallow ftrace function tracepoint by users without
     ``CAP_PERFMON``.

     Disallow raw tracepoint access by users without ``CAP_PERFMON``.

>=1  Disallow CPU event access by users without ``CAP_PERFMON``.

>=2  Disallow kernel profiling by users without ``CAP_PERFMON``.
===  ==================================================================
man/info ubuntu man lkml redhat kb github google source

Last update: 2026-03-30 12:00:00 UTC
Parsed kernel version 6.18 from git

Sysctl Explorer is available under the GPL-2.0.
Kernel documentation © the Linux kernel authors.
Linux® is a registered trademark of Linus Torvalds.

Updated by Ilya Vasilyev aka Nadz Goldman from Arviol ( vStack dep. ), ITG