Comment by Nextgrid

Yep on the terminal that would work... though I still think it should be the default.

On the other hand I'm not sure NOPASSWD would affect desktop environments - any desktop stuff goes via PolicyKit or whatever the latest systemd iteration is and I doubt it's smart enough to read Sudo's config (and there's an argument it shouldn't - if anything it should be the other way around, a system-wide generic "this is single-user machine, the only user is effectively root anyway" flag that both Sudo and Polkit should obey).

In both cases yes it's solvable, but I wish it became the default if there are no other interactive user accounts, or at least be easy to configure - if anything, by a simple "don't ask me again" on the permissions popup.