Hardening/Linux - Segfault and Hardening/Linux - Segfault (apparmor is probably a far better way to restrict access to /proc anyway as we can remove access for files entirely) look interesting.
I’ve been thinking of hardening file permissions for a while but don’t have many ideas except restricting /boot.
There is also more here Security - ArchWiki