It's possible to delete access control entries. Operator can not access channel locked by user.
vulners.com/securityvulns/securityvulns:doc:8660