Prevent modification of environment variables by unauthorized users and groups.
Domain | ID | Name | Use | |
---|---|---|---|---|
Enterprise | T1562 | .003 | Impair Defenses: Impair Command History Logging |
Prevent users from changing the |
Enterprise | T1070 | .003 | Indicator Removal on Host: Clear Command History |
Making the environment variables associated with command history read only may ensure that the history is preserved.[1] |