[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Default number of overwrites in shred
|
From: |
Pádraig Brady |
|
Subject: |
Re: Default number of overwrites in shred |
|
Date: |
Thu, 22 Jan 2009 11:43:30 +0000 |
|
User-agent: |
Thunderbird 2.0.0.6 (X11/20071008) |
Jim Meyering wrote:
> Paul Eggert <address@hidden> wrote:
>> Jim Meyering <address@hidden> writes:
>>
>>> I too would feel better with a minimum of 2 or 3 passes, just in case.
>> If we want to be conservative, then the U.S. Defense Security
>> Service's Clearing and Sanitization Matrix (2005-06-27)
>> <http://www.dss.mil/isp/odaa/documents/clearing_and_sanitization_matrix.pdf>
>> specifies the following methods for rigid disk:
>>
>> * For clearing, "Overwrite all addressable locations with a single
>> character."
>>
>> * For sanitization, "Overwrite all addressable locations with a
>> character, then its complement. Verify 'complement' character was
>> written successfully to all addressable locations, then overwrite
>> all addressable locations with random characters; or verify third
>> overwrite of random characters. Overwrite utility must write/read
>> to 'growth' defect list/sectors or disk must be mapped before
>> initial classified use and remapped before sanitization."
>>
>> Oh, and big print above it, "THIS METHOD NOT APPROVED FOR SANITIZING
>> MEDIA THAT CONTAINS TOP SECRET INFORMATION." (Just thought you'd
>> like to know: the DoD requires degaussing or destruction instead,
>> for top-secret disks. Also, shredding does not count as
>> destruction: you have to disintegrate, incinerate, pulverize, or
>> melt)
>>
>> Anyway, 'shred' currently does the first, but not the second, as it
>> doesn't verify what it's written. That should get fixed, no?
>
> I agree.
>
>> How about this idea, to get 'shred' to conform to DoD 5220 rules
>> for sanitization for classified (but not top secret) disks?
>>
>> Change the default number of passes to 4.
>>
>> If the number of passes is 4 or more, then use these three passes
>> first:
>>
>> * Write all 1s.
>> * Write all 0s.
>> * Verify that all 0s were written.
>>
>> After that, do N - 3 passes the way that 'shred' already does them
>> (except omit the all-1s and all-0s passes). This would suffice for
>> sanitization.
>>
>> Pass 3 requires read access to the file, which 'shred' currently
>> doesn't do. I suggest that we require read access to the file; I have
>> some qualms about shredding something I can't see.
>
> Yes. Same here.
> I like your plan.
I noticed a couple of blog posts lately that reminded me of this.
http://www.g-loaded.eu/2009/01/22/effective-data-wiping-with-a-single-complete-overwrite/
http://www.ioncannon.net/system-administration/272/using-scrub-to-destroy-a-hard-drive/
Should be just change DEFAULT_PASSES to 3 now, and do the more complicated
process above when someone gets time?
cheers,
Pádraig.
- Re: Default number of overwrites in shred,
Pádraig Brady <=
- Re: Default number of overwrites in shred, Jim Meyering, 2009/01/22
- Re: Default number of overwrites in shred, Pádraig Brady, 2009/01/22
- Re: Default number of overwrites in shred, HggdH, 2009/01/23
- Re: Default number of overwrites in shred, Pádraig Brady, 2009/01/25
- Re: Default number of overwrites in shred, HggdH, 2009/01/26
- Re: Default number of overwrites in shred, Pádraig Brady, 2009/01/26
- Re: Default number of overwrites in shred, Pádraig Brady, 2009/01/26
- Re: Default number of overwrites in shred, HggdH, 2009/01/26
- Re: Default number of overwrites in shred, Pádraig Brady, 2009/01/26
- Re: Default number of overwrites in shred, HggdH, 2009/01/26