From owner-freebsd-hackers@FreeBSD.ORG Mon Oct 30 19:32:45 2006 Return-Path: X-Original-To: freebsd-hackers@freebsd.org Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id ADF4516A514 for ; Mon, 30 Oct 2006 19:32:45 +0000 (UTC) (envelope-from dougb@FreeBSD.org) Received: from mail2.fluidhosting.com (mx21.fluidhosting.com [204.14.89.4]) by mx1.FreeBSD.org (Postfix) with SMTP id D7F8343E1A for ; Mon, 30 Oct 2006 19:26:19 +0000 (GMT) (envelope-from dougb@FreeBSD.org) Received: (qmail 17685 invoked by uid 399); 30 Oct 2006 19:26:11 -0000 Received: from localhost (HELO ?192.168.0.7?) (dougb@dougbarton.us@127.0.0.1) by localhost with SMTP; 30 Oct 2006 19:26:11 -0000 Message-ID: <454651D0.6090208@FreeBSD.org> Date: Mon, 30 Oct 2006 11:26:08 -0800 From: Doug Barton Organization: http://www.FreeBSD.org/ User-Agent: Thunderbird 1.5.0.7 (Windows/20060909) MIME-Version: 1.0 To: Bakul Shah References: <20061030191611.06DFF5B82@mail.bitblocks.com> In-Reply-To: <20061030191611.06DFF5B82@mail.bitblocks.com> X-Enigmail-Version: 0.94.1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Cc: perryh@pluto.rain.com, delphij@FreeBSD.org, freebsd-hackers@freebsd.org Subject: Re: [patch] rm can have undesired side-effects X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 30 Oct 2006 19:32:45 -0000 Bakul Shah wrote: > Sorry if I tuned in late:-) > > I vote for taking *out* -P. It is an ill-designed feature. > Or if you keep it, also add it to mv, cp -f & ln -f since > these commands can also unlink a file and once unlinked in > this matter you can't scrub it. And also fix up the behavior > for -P when multiple links. And since mv can use rename(2), > you will have to also dirty up the kernel interface somehow. > Not to mention even editing such a sensitive file can leave > stuff all over the disk that a bad guy can get at. If you > are truely paranoid (as opposed to paranoid only when on > meds) you know how bad that is! > > If you are that concious about scrubbing why not add > scrubbing as a mount option (suggested option: -o paranoid) > then at least it will be handled consistently. The patches to implement your suggestions didn't make it through on this message. Please feel free to post them for review and send the URL to the list. Doug -- This .signature sanitized for your protection