Greetings,
to clearly separate privileges between users and root on Debian Desktop systems (wheezy), which mechanisms for privilege escalation that are normally installed need to be taken care of?
Currently, I guess that would be “don’t put your users in adm”, “don’t put your users in sudoers”, and, as the newest infraction, “install a no-nonsense policy for policykit”.
Did I miss anything?
