* Lennart Poettering:
I mean, polkit has some issues, but I am pretty sure that
"pkexec" is
not what I'd consider the big problem with it. Or to say this
differently: the whole concept of tools like
su/sudo/setpriv/runuser/suid binaries is questionnable: i.e. I am
pretty sure we'd be better off if we would systematically prohibit
acquiring privs through execve(), and instead focus on delegating
privileged operations to IPC services — but of course that would be
quite a departure from traditional UNIX.
One issue is that it's harder to prevent other users from doing execve
than it's denying them access to some IPC service. In this sense, SUID
programs are more robust.
Thanks,
Florian