Is this likley to be an attempt at cracking his box? Besides to be malicious, I assume there is no point to deleting, or making the user root in-accessible.
How would this be possible anyway? (not from a crackers point of view, but the genuine user) Is it possible that it's a configuration error, or a partition not being mounted on boot or something??
You're welcome to ignore me here, I'm just curious!