https://bugzilla.suse.com/show_bug.cgi?id=1215652 https://bugzilla.suse.com/show_bug.cgi?id=1215652#c5 --- Comment #5 from Matthias Gerstner <matthias.gerstner@suse.com> --- I'm not quite sure about this line in the for loop:
rules.push("unix-group:"+g);
So if the caller is in one of the groups then only its own account is eligible as admin. But if this is not the case then any members of that group are eligible as admin. So what is this supposed to do? When there are accounts A and B which are members of an admin group and an account C which is not a member of an admin group, then C may authenticate as either A or B or root to gain admin? I tried to reproduce this behaviour but somehow it doesn't work, Polkit always wants to authenticate as root, there is no user selection or anything. -- You are receiving this mail because: You are on the CC list for the bug.