Is setting a sudo time limit to 0 seconds still required for secure macOS operations?

sudo

Before Mac OS X Sierra, the sudo configuration did not enable the tty_tickets options. That meant that the credentials were cached and accessible by any tty.

Since Mac OS X Sierra, tty_tickets is enabled by defaults, meaning that the credentials are only cached for a specific tty - thereby disabled this set of exploits (i.e. monitoring /var/db/sudo and trying to exploit sudo within the timeout).

I think your memory is a bit fuzzy regarding spawning the same tty, as the problem was really as described above.

Mac OS X Sierra was released in 2016, so for the last 5 years, users of the latest operating system version have been safe here.

In terms of security risks in general, you should note that there is (ofcourse) always less risk involved in having no cached credentials (i.e. timestamp_timeout=0). It has to be balanced with user comfort, as there are also drawbacks associated with having to enter a password many times a day (when using password based credentials).

Related

Strange: Disk space is not free after removing file
Is it possible to augment macos finder's menus font size?
Is it possible to find out what video link an App on iOS accesses?
/Library/Fonts vs. Font Book
Changing system volume and changing it back to previous level
How do you find an AirTag on the web
I need a keyboard shortcut for Adding Bookmarks for multiple tabs in Safari
Mountain Lion: Not joining preferred WPA2 Wifi network
Using Automator to change the creation date of a folder in Mojave
Does unlicensed Apple hardware damage a late 2015 iMac?
What are normal schemes intuitively?
Odd digits of $2^n$