Originally Posted by keysorsoze
Ok so the sticky bit will serve as a buffer somewhat until root removes the sticky bit and then will be able to delete the directory?
Nope, the sticky bit and the immutable flags are different beasts.
The sticky bit is something standard amongst all Unix filesystem permissions, while the immutable flag is something specific to several filesystems (eg. ext2 and ext3 extended attributes).
It is however a good idea to have them set, thanks Emerson to remind it.
Such as rm -rf / (root has sticky bit enabled)
system reports error cannot delete /
Now root does a chmod on / and removes sticky bit
rm -rf / = sucess?
With the immutable bit set on / (chattr +i /), that should be OK.
By the way, it seems the Gnu version of rm is breaking the POSIX standards when allowing "rm -rf /" command to execute. Solaris rm is forbidding this same command to run:
# /bin/rm -rf /
rm of / is not allowed