Comment # 5 on bug 1215652 from Matthias Gerstner 
I'm not quite sure about this line in the for loop:

> rules.push("unix-group:"+g);

So if the caller is in one of the groups then only its own account is
eligible as admin. But if this is not the case then any members of that group
are eligible as admin.

So what is this supposed to do? When there are accounts A and B which are
members of an admin group and an account C which is not a member of an admin
group, then C may authenticate as either A or B or root to gain admin?

I tried to reproduce this behaviour but somehow it doesn't work, Polkit always
wants to authenticate as root, there is no user selection or anything.

You are receiving this mail because: