From owner-freebsd-current  Thu Oct  3 17:33:51 1996
Return-Path: owner-current
Received: (from root@localhost)
          by freefall.freebsd.org (8.7.5/8.7.3) id RAA15244
          for current-outgoing; Thu, 3 Oct 1996 17:33:51 -0700 (PDT)
Received: from parkplace.cet.co.jp (parkplace.cet.co.jp [202.32.64.1])
          by freefall.freebsd.org (8.7.5/8.7.3) with ESMTP id RAA15235
          for <current@freebsd.org>; Thu, 3 Oct 1996 17:33:48 -0700 (PDT)
Received: from localhost (michaelh@localhost) by parkplace.cet.co.jp (8.8.0/CET-v2.1) with SMTP id AAA21011; Fri, 4 Oct 1996 00:30:49 GMT
Date: Fri, 4 Oct 1996 09:30:49 +0900 (JST)
From: Michael Hancock <michaelh@cet.co.jp>
To: Andrew Stesin <stesin@gu.net>
cc: current@freebsd.org
Subject: Re: Immutable flags (was: Re: WARNING: botched ld.so commit! :-()
In-Reply-To: <Pine.BSI.3.95.961003131028.2552E-100000@creator.gu.kiev.ua>
Message-ID: <Pine.SV4.3.93.961004092808.20989B-100000@parkplace.cet.co.jp>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-current@freebsd.org
X-Loop: FreeBSD.org
Precedence: bulk

On Thu, 3 Oct 1996, Andrew Stesin wrote:

> Hello,
> 
> On Thu, 3 Oct 1996, Michael Hancock wrote:
> 
> > /kernel is marked immutable.  I'd like to be able to configure systems
> > such that you can't change the flags unless you are in single user mode
> > even if you're root.
> 
> 	May be the following is dumb...
> 
> 	What about an append-only / if securelevel > 0 ?
> 
> 	This way one can create a subtree of appendonly dirs
> 	with immutable files in them, thus an Immutable Subtree
> 	in the filesystem.  I think this might be very useful.

The functionality is fine as it is, it's just not exported to you when you
configure your kernel.