@Mario, I'm a bit confused on why you didn't raise those concerns earlier, you knew about the upstream behaviour and even tested things on 18.10 for https://gitlab.gnome.org/GNOME/gnome-shell/issues/709 It would have been nice to have that discussion upfront and not have it lock the fwupd and bolt SRUs now...
Anyway, Ccing ubuntu-security team to have their input. Note that the "right" admin group use change landed before 18.10 so the behaviour you consider problematic is the default one is 18.10 today. I still think that if someone has physical access to your machine and an unlocked admin session in front of them then you are already in trouble and DMA attach isn't or not is not going to do much of a difference. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1800715 Title: Prompt for credential when it shouldn't To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/bolt/+bug/1800715/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
