[jasonjayr]

> Trusting random third party binaries with access to everything is increasingly too much of a gamble, even for more technical users.

Regardless, I'd still like the final say in making that decision, otherwise it's not really my computer anymore, is it.

[kitsunesoba]

Escape hatches should exist, but I think it's better if those exist on a per-program basis.

If a systemwide "disable all safeguards, give all programs access to everything all the time" switch exists, the level of friction encountered when accessing it should be very high to help deter social engineering attacks. It's a one-time action so the annoyance level of that friction is negligible, since those using it will only need to do so on clean installs.

[kergonath]

This why there are settings for this sort of things. Nobody in this thread is saying that something was impossible, just that some settings had to be changed and the UX was suboptimal.