deny super user to read a file created by normal user

Hello all,
Using the following

we cannot allow the super user to delete the file created by another user.

May I know how can I deny super user to change the permission for a file created by a normal user.


( when file permission has been set to ---rwx--- it can again be changed by the super user )

Is there really a way ?

Thanks in advance,
Murugesan

Under normal circumstances this would be impossible.
Only a toast machine would allow that operation.

On a Unix system, root is GOD. God is all seeing, all knowing, and all doing. There is no stopping God.

Regards,

jlk

Some alternatives:
1. deny su to idiot users who are deleting files. Regular users should not have su access unless they are actually doing sysadmin work.
2. mv the files in question to a special directory and add them to a tarball there or a gzip archive.
3. rename the files to some special form, and check that your file maintenance scripts do not do a "rm -f *.*" or the equivalent.
4. if the su types are the bosses, put them in chroot jail, then
copy the special files off to a file branch they chroot jail types cannot see.

Thanks to all your contirubutions.

On a Unix system, root is GOD
not on a NFS mounted partition, here root is nobody
why are you playing with chmod?

I haven't messed with it in ages, and I think it may be linux specific (ext2/3)... not sure anymore, but it might possibly worth a thought ... i believe the command was attr (extended attributes), which changes the file or directory inode attributes. If the root user is unaware of attr, you may be able to keep your files "hidden" in that way.

course you will have to reset the attributes when you want to access the file, because they are not user specific, and root would be able to do this too, if he/she knows what's up.

just a thought...

does anyone else here know more about this? I have been using FreeBSD for ages, and I don't think it is available for the filesystem FreeBSD natively uses (ufs).

-Steven