usnistgov/macos_security
1
0
Fork 0
mirror of https://github.com/usnistgov/macos_security.git synced 2026-02-03 05:53:24 +00:00
Code Issues 21 Actions Packages Projects Releases Wiki Activity

Add --no-rcs to compliance script #104

New Issue
Closed
opened 2026-01-19 18:29:14 +00:00 by michael · 1 comment
michael commented 2026-01-19 18:29:14 +00:00
Owner
Copy Link

Originally created by @golbiga on GitHub.

https://scriptingosx.com/2024/03/zsh-scripts-and-root-escalations/

We should add --no-rcs to the #!/bin/zsh shebang

Originally created by @golbiga on GitHub. https://scriptingosx.com/2024/03/zsh-scripts-and-root-escalations/ We should add `--no-rcs` to the #!/bin/zsh shebang
michael commented 2026-01-19 18:29:15 +00:00
Author
Owner
Copy Link

@nihil-admirari commented on GitHub:

Maybe it would've been better to make sudo sanitise $HOME, which is what every Linux distro out there is doing?

Proposed fix: comment the following from /etc/sudoers (other environment variable may be worth sanitising too)

Defaults  env_keep += "HOME MAIL"
@nihil-admirari commented on GitHub: Maybe it would've been better to make sudo sanitise `$HOME`, which is what every Linux distro out there is doing? Proposed fix: comment the following from `/etc/sudoers` (other environment variable may be worth sanitising too) ``` Defaults env_keep += "HOME MAIL" ```
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
No items
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
michael
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: usnistgov/macos_security#104
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?