Description
Controlled privilege delegation can let ordinary accounts run configured programs as root through usermode helpers. It is for administrators maintaining legacy workflows that rely on userhelper and PAM policy.
Privilege delegation is a security boundary. Misconfiguration can expose root commands, weak prompts, or unsafe environment handling, so test rules from a recovery-capable session.