What's defined as "trivial attack vector", and which kind of password is to be prompted during installation? Isn't that a hassle for the user to always enter a password during installation (and maybe upgrade) of a daemon? (I'm specifically thinking of headphoned here, because this change would probably affect my package and cause more work with no real benefit for me or the user in the case of headphoned)