Policykit – Gaining visibility in the administrative user interfaces
PolicyKit recognizes users and the objects they want to manipulate through a three-part classification (Subject, Action, Object) that is familiar throughout the security field, whether in the Unix “who-permissions-object” model (”group X has write permission to file Y”)
With Alpha 3, PolicyKit integration is gaining visibility in the administrative user interfaces. PolicyKit makes it possible to run administrative applications as a normal user, and have them get a particular set of extra privileges for certain operations, which allows fine grained control over user permissions and enhances usability, as well as eliminating the security implications of running the whole application as root.
This feature is included in Ubuntu hardy heron