Comment 5 for bug 25947
Revision history for this message
| Phil Housley (undeconstructed) wrote Re: Taking the administrative rights under users-admin from a normal user can be fatal!! | #5 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
a60fb26
(Get the code!)
I think the point is simply that if you have no users in the sudo group, you can't do anything as root anymore. I'm not about to try it out now, but I would imagine logging in to recovery mode would get around the problem.
A nice solution would be to check if the sudo group has any members left whenever:
* Trying to delete a user
* Trying to remove a user from a group
If the action would leave the sudo group empty, deny the action.