added additional note about changing root's home path when sudo'ing in a secure way.

m4rkw · m4rkw · commit 40be5d246ee0 · 2017-11-03T09:00:17.000Z
diff --git a/README.md b/README.md
@@ -2002,6 +2002,12 @@ Defaults env_keep += "HOME MAIL"
 
 Which stops sudo from changing the HOME variable when you elevate privileges. This means it will execute as root the bash dotfiles in the non-root user's home directory when you run "sudo bash". It is adviseable to comment this line out to avoid a potentially easy way for malware or a local attacker to escalate privileges to root.
 
+If you want to retain the convenience of the root user having a non-root user's home directory, you can append an export line to /var/root/.bashrc, eg:
+
+````
+export HOME=/Users/blah
+````
+
 
 ## Related software
 
