1 |
On Mon, 03 May 2004 17:49:14 -0700 |
2 |
Daniel Lynch <offmore@×××××××××.net> wrote: |
3 |
|
4 |
> Btw, coreutils comes with the 'shred' utility to secure delete files. So |
5 |
> if you are really paranoid, you could symlink rm to shred or something |
6 |
> (or create an alias in bash). |
7 |
> |
8 |
shred is not reliable on modern filesystems. Clever block allocation |
9 |
algorithms, journalling and on-disk write-caches make secure deletion from |
10 |
userspace unreliable (shred's man page lists even more examples). |
11 |
|
12 |
The only reliable solution would be a filesystem specific implementation |
13 |
inside the kernel, a new VFS call. I don't know if something like that |
14 |
will ever be accepted into the kernel. |
15 |
|
16 |
-- |
17 |
gentoo-security@g.o mailing list |