Date: Sat, 15 Jan 2022 20:06:14 -0500 From: grarpamp <grarpamp@gmail.com> To: freebsd-questions@freebsd.org Cc: freebsd-security@freebsd.org, freebsd-net@freebsd.org, freebsd-hardware@freebsd.org Subject: Zeroing Storage Devices [re: dd, #OpenFabs #CryptoFunding #Meshnets] Message-ID: <CAD2Ti290QFrhXpM=nQL33OApWrgwF_i5DTzyymhrGXAB0S7u2Q@mail.gmail.com>
next in thread | raw e-mail | index | archive | help
> Nothing on the operating system side of the [disk] controller (and its > firmware) has got direct access to what's under the hood of the [disk]. Modern disk, tape, usb, ssd, etc... Some of them now show different read or write speeds depending on whether zero or random data was read or write from them... (users may need to eliminate system/random bottleneck by pregenerating random data into say 1GiB file on ramdrive source and going to/from there, /dev/null, /dev/zero.) Not since decades ago advent of badblock management in firmware has zero been even a remotely trustable method, now it's even worse. Minimum, effective, simple, at-rest data security protocol for the masses is now... buy drive dd if=/dev/random of=drive bs=1m encrypt drive use drive destroy key dd if=/dev/random of=drive bs=1m reuse or destroy drive None of today's CPU, NIC, plugin-hw, networks [1], etc are even the slightest bit trustable, at all, period. So while that protocol will always be needed, you really must start improving the hardware situation by routing around and displacing the old top-secret owners of the legacy system with completely new models... #OpenFabs , #OpenHW , #OpenAudit , #FormalVerification , #CryptoFunding , #OpenTrust High demand exists for a magnitude shift in HW trustability, a new open platform... total greenfield, highly profitable to whoever does it first, free-market voluntaryism at work. [1] While you're at it, lay your own P2P fiber/RF meshnets too. The legacy internet has refused to encrypt and fully chaff all its links, and censorship spyveillance control is rampant. So now you must route around that too with something much better, built by, for, and with openhw components piecewise owned and operated by... you, the individual users, outside central control, p2p, together in freedom, decentralized distributed encrypted, all around the globe. The economics of these things are all now possible, saved from cancelling decade of monthly subscriptions, crypto crowdfunding and even share ownership via privacy-enabled cryptocurrencies DAO's, etc... And of course, FreeBSD runs on and powers part of it too. Free your mind, get started, have fun :)
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAD2Ti290QFrhXpM=nQL33OApWrgwF_i5DTzyymhrGXAB0S7u2Q>