MacOS sudo wtf

19 Oct 2017 22:55 | macOS | security

I’ve just discovered something totally batshit about sudo on macOS.

Spot the difference..

Linux:

$ ls -la /tmp/wtf ls: cannot access ‘/tmp/wtf’: No such file or directory $ echo “touch /tmp/wtf” >> ~/.bashrc $ sudo bash

ls -la /tmp/wtf

ls: cannot access ‘/tmp/wtf’: No such file or directory

macOS:

$ ls -la /tmp/wtf ls: /tmp/wtf: No such file or directory $ echo “touch /tmp/wtf” >> ~/.bashrc $ sudo bash

ls -la /tmp/wtf

-rw-r–r– 1 root wheel 0 19 Oct 22:58 /tmp/wtf

!!!!!

So when sudo’ing to root it executes ~/.bashrc in the original user’s home directory.. as root?!

Just to make sure I wasn’t going crazy or that this wasn’t an artefact of my customised dotfiles I tried it on a fresh 10.13 VM with a fresh user account.

---- Update 19/10 23:16

Turns out this is the default on macOS:

grep HOME /etc/sudoers

Defaults env_keep += “HOME MAIL”

So when you elevate you retain your home dir and it will execute the dotfiles there rather than in /var/root/

Madness.

all posts

[year]
2026
2025
2024
2023
2022
2021
2020
2019
2018
2017
2016
2015

[tag]
AWS
agile
apple
apple watch
aws
bash
cryptocurrency
development
email
exploits
iOS
iphone
linux
macOS
mining
mysql
php
ruby
scrum
security
synology
tailscale
touchID
vim
work

Mark Wadham

MacOS sudo wtf

19 Oct 2017 22:55 | macOS | security

ls -la /tmp/wtf

ls -la /tmp/wtf

grep HOME /etc/sudoers