As a system administrator. sometimes we see the users are trying some commands dangerous for the system health and remove them from their individual coomand history file.
How it is possible to enforce that the normal usres will will not be able to modify the history.
If they know how to use history files youre doomed...
Alternatives?
Well
1) audit on the those commands...
2) remove execute privilege for them on those commands and install and use sudo so they have to use sudo to execute those commands (you will have to configure properly the sudoers file...) for sudo will log all the sudo activity AND the user cannot remove sudo logs...