Skip site navigation (1)Skip section navigation (2)
Date:      Thu, 18 Nov 1999 22:27:48 -0700
From:      Wes Peters <wes@softweyr.com>
To:        Dug Song <dugsong@monkey.org>
Cc:        Jonathon McKitrick <jcm@dogma.freebsd-uk.eu.org>, security@FreeBSD.ORG, questions@FreeBSD.ORG
Subject:   Re: secure filesystem wiping
Message-ID:  <3834DFD4.95D08AFD@softweyr.com>
References:  <Pine.BSO.4.10.9911181606420.12081-100000@funky.monkey.org>

next in thread | previous in thread | raw e-mail | index | archive | help
Dug Song wrote:
> 
> On Thu, 18 Nov 1999, Jonathon McKitrick wrote:
> 
> > Why isn't it possible to read unallocated sectors and write back sectors
> > full of garbage, or 0xFF?
> 
> this was the topic of a recent thread on comp.security.unix:
> 
> peter gutmann's excellent paper from the 6th USENIX security symposium is
> probably the definitive answer:
> 
>         http://www.fish.com/security/secure_del.html

That's the algorithm my "obliterate" program uses, modulo caching in the
disk controller, etc.  The idea occurred to me this afternoon it would be
relatively easy to wipe the unallocated sectors of a disk if it were
unmounted, right after a fsck or maybe as a final optional pass to fsck.
Such an operation would be excruciatingly slow on a disk of any size,
though.

-- 
            "Where am I, and what am I doing in this handbasket?"

Wes Peters                                                         Softweyr LLC
wes@softweyr.com                                           http://softweyr.com/


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3834DFD4.95D08AFD>