What's are the technical differences between "chmod -w file" and "chflags uchg file"

macos mac freebsd bsd

BSD/MacOS question.

chmod -w file will remove all the write permissions from file

chflags uchg file will set the user-immutable bit (aka "Locked" bit) on file

Beyond the obvious statement of "setting permissions vs setting a flag", what are the technical differences and behavior differences of these two commands? When is one preferred over the other?


Three differences come to mind off the top of my head:

  • The uchg flag locks the contents of the file and its directory entry, while the file permissions only apply to the file's contents. This means that a file with all write access removed can still be freely moved, renamed, or even deleted by any user with write access to the directory the file's in.
  • The root user ignores file permissions, but is subject to a uchg lock. But the root user can unlock the file, so this isn't that deep a difference.
  • At least on OS X, removing all write access in the POSIX permissions can be overridden by an access control list on the file. chmod -w will not remove ACL entries granting write access, so some users and/or groups may still have write permissions.

Related

Creating one big continuous space from 4 disks
Does an ISP have admin access to your modem/router?
Why does Windows 8 Upgrade assistant insist on downloading the upgrade from scratch when I quit it rather than resume the download?
Android-x86 6.0 Marshmallow in VirtualBox doesn't start
How can I play my MP3 files through my stereo system?
Shading groups of rows based on changing text values
Is there a way to combine text files using the Windows command line?
Keep Find bar open across all other tabs in Firefox 25
Term for self-replacing charities?
Why is it "noticeable" and not "noticable"?
What's the difference between a pathological problem and a normal problem?
Dangling or Misplaced Modifiers: the use of adverbs