Yes, I wasn't under the impression the users had the sudo ALL flag in use. My suggestion would be useless if they had permission to use chattr. Although, if they did have access to everything, it would be VERY difficult to lockout files. Mike David Phillips wrote: > Mike M writes: > >>If the file is something that rarely gets changed, you could make it >>immutable with chattr. This would not prevent the user with sudo >>privileges from viewing the file, but it would prevent him or her from >>editing the file. > > > Wrong. A user with root privileges would be able to clear the flag. > _______________________________________________ TCLUG Mailing List - Minneapolis/St. Paul, Minnesota http://www.mn-linux.org tclug-list at mn-linux.org https://mailman.real-time.com/mailman/listinfo/tclug-list