From owner-freebsd-security  Thu May 20 23:47:29 1999
Delivered-To: freebsd-security@freebsd.org
Received: from xylan.com (postal.xylan.com [208.8.0.248])
	by hub.freebsd.org (Postfix) with ESMTP id 4060814A2E
	for <security@FreeBSD.ORG>; Thu, 20 May 1999 23:47:27 -0700 (PDT)
	(envelope-from wes@softweyr.com)
Received: from mailhub.xylan.com by xylan.com (8.8.7/SMI-SVR4 (xylan-mgw 2.2 [OUT]))
	id XAA17414; Thu, 20 May 1999 23:46:50 -0700 (PDT)
Received: from omni.xylan.com by mailhub.xylan.com (SMI-8.6/SMI-SVR4 (mailhub 2.1 [HUB]))
	id XAA22981; Thu, 20 May 1999 23:46:50 -0700
Received: from softweyr.com ([204.68.178.39]) by omni.xylan.com (4.1/SMI-4.1 (xylan engr [SPOOL]))
	id AA03739; Thu, 20 May 99 23:46:47 PDT
Message-Id: <37450157.181A953@softweyr.com>
Date: Fri, 21 May 1999 00:46:47 -0600
From: Wes Peters <wes@softweyr.com>
Organization: Softweyr LLC
X-Mailer: Mozilla 4.5 [en] (X11; U; FreeBSD 3.1-RELEASE i386)
X-Accept-Language: en
Mime-Version: 1.0
To: Joel Maslak <jmaslak@wind-river.com>
Cc: security@FreeBSD.ORG
Subject: Re: Secure Deletion
References: <3.0.6.32.19990520095507.00840010@india.wind-river.com>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

Joel Maslak wrote:
> 
> Let's keep standard BSD semantics here, please!
> 
> As for "secure" deletion...  Why doesn't someone just write a simple
> user-space program to do that.  True, it wouldn't handle calls to unlink(),
> but one would think that someone could modify the library really quick
> (provided no one does a system call directly, but uses the libc interface
> instead).  I think this would be much better for everyone involved.

It'd be ever so much easier to do it with a MIB (kern.shred) or a 
filesystem superblock or mount-time option for somewhat finer control.
In general, if you're worried enough about files to obliterate them
on deletion, you want to do so to every file, so a MIB makes sense.

-- 
       "Where am I, and what am I doing in this handbasket?"

Wes Peters                                                 Softweyr LLC
http://www.softweyr.com/~softweyr                      wes@softweyr.com


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message