> On Unix, we can do this the right way with PolicyKit. We don't need popups to log in
> as a different user for a particular action.
What's "the right thing" when an unprivileged user wants to change a privileged system setting that
they are not allowed to change? For example: deleting a user account, or installing software
system-wide. The solution in Windows (and OSX) is to ask you if you'd like to authenticate using an
suitably-privileged-user's credentials in order to perform that task.
The idea is that perhaps that user can be called in to allow the task which you yourself are not
trusted to do.