At one time, one could not log in to a GNOME session on Fedora as the root account. Now, you can, out of the box. For me, this seems like less of a "getting in the user's way" thing, and more of a common sense default security policy - especially given all the work done to make things work smoothly with polkit. Am I missing something? If not, what about going back to blocking root login to desktop environments?