1
0
mirror of https://github.com/PrivSec-dev/privsec.dev synced 2024-12-22 21:01:34 -05:00

added mention of not giving terminal full disk access

This commit is contained in:
kimg45 2024-08-29 12:22:04 -05:00 committed by GitHub
parent 96201b1979
commit 725d97a5d9
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194

View File

@ -109,10 +109,12 @@ Mac computers have an [IOMMU](https://support.apple.com/guide/security/direct-me
macOS is a Unix-like, so certain security practices carry over from other systems. Consider setting a [stricter umask](https://support.apple.com/en-us/101914). macOS is a Unix-like, so certain security practices carry over from other systems. Consider setting a [stricter umask](https://support.apple.com/en-us/101914).
## Terminal Secure Keyboard Entry ## Terminal Security
To prevent other apps from detecting what you type in Terminal, enable [Secure Keyboard Entry](https://support.apple.com/guide/terminal/use-secure-keyboard-entry-trml109/mac). To prevent other apps from detecting what you type in Terminal, enable [Secure Keyboard Entry](https://support.apple.com/guide/terminal/use-secure-keyboard-entry-trml109/mac).
Avoid giving the Terminal full disk access so that unsandboxed apps can't abuse it to gain unauthorized access.
## Standard User Account ## Standard User Account
When you first set up your Mac, you will create an Administrator account that has powerful access to the OS. [Apple recommends](https://support.apple.com/guide/mac-help/set-up-your-mac-to-be-secure-flvlt003/mac) limiting the number of Administrator accounts on your machine and using a Standard user account when Aministrator privileges aren't needed. When you first set up your Mac, you will create an Administrator account that has powerful access to the OS. [Apple recommends](https://support.apple.com/guide/mac-help/set-up-your-mac-to-be-secure-flvlt003/mac) limiting the number of Administrator accounts on your machine and using a Standard user account when Aministrator privileges aren't needed.