The problem is that wayland as a security measure *either* gives you access to the display server *or* to root => the interactive part of gufw needs to be running with the user account and the small portions root privilleges are needed for need to be run by policykit. Which is a good idea - but which synaptic and gufw currently fail to do.
The problem is that wayland as a security measure *either* gives you access to the display server *or* to root => the interactive part of gufw needs to be running with the user account and the small portions root privilleges are needed for need to be run by policykit. Which is a good idea - but which synaptic and gufw currently fail to do.