[Nottingham] Secure deletion of files
Jon Masters
jonathan at jonmasters.org
Fri May 27 00:39:57 BST 2005
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Martin Garton wrote:
| If you really want the data to be safely deleted it should have been
| written to a dm_crypt partition mounted using a random key and
| unmounted only when you no longer need the data. (just make sure you
| don't have a crash or power outage!)
I wouldn't use dm-crypt yet. It was written as a quick hack for some
college or University project by someone and I've not seen enough real
world use to trust it with serious data. cryptoapi is much more well
known and has been around a fair bit longer at this point.
| Of course that assumes you can trust at least your processor and ram and
| probably more.
More a question of trusting newish kernel code. In fact, if you look
through the lkml (Linux Kernel Mailing List) archives you'll see that we
had a discussion about keeping software suspend images secure - this is
a wonderful can of worms to get into.
Cheers,
Jon.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org
iD8DBQFCll4geTyyexZHHxERApVPAJ9RST4QVl9GaZhNwasrNdkb3qaMQgCeNCpK
J+Ym6lhLW3CKHaihqUnxO+4=
=jreC
-----END PGP SIGNATURE-----
More information about the Nottingham
mailing list