Hi,
This is regarding Ubuntu 24.04, but should apply also to 22.04.
Currently user2 - a standard user, can edit a file owned by root using gnome-text-editor, and then save it successfully by typing in the admin account's password into the Gnome dialog
I have checked, this is not sudo capability. I have voided user2 of all rights to use sudo in the sudoers file.
Where can I add a rule to deny user2 of ever (using the admin password) accomplishing anything admin-nish in Gnome ? A standard user should Forever remain a standard user, regardless of what password she
possesses.
I will add 2FA later to restrict user2 from logging to the admin account even if she has the correct password.
Thanks
Bookmarks