Comment 16 for bug 220986

Is it possible to ask for a password even when no root password is set? Maybe ask the password of uid=1000? I think this should be fixed for all users as its a security hole.
> I share the opinion of the reporters: it is a blatant security hole because nobody expects this from a linux system.
Exactly.