[mtmail]

I met a sysadmin who made a backup of all user home directories, then ran a script to delete (rm -rf) all data from users that haven't been logged in the last months. On that system the home directory of the user 'root' was /home causing all directories to be wiped.

[levimaes]

This makes me want some kind of the OS X "System Integrity Protection", but for CentOS and Ubuntu. I mean there HAS to be something like this? Maybe this is what the substitute user is all about and I just kinda suck!

[viraptor]

SELinux is likely a good solution for things like this. If your script should only delete home directories -> that's all it should be allowed to do.