Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S933260AbbBCIRc (ORCPT ); Tue, 3 Feb 2015 03:17:32 -0500 Received: from h1446028.stratoserver.net ([85.214.92.142]:34824 "EHLO mail.ahsoftware.de" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1753507AbbBCIR3 (ORCPT ); Tue, 3 Feb 2015 03:17:29 -0500 Message-ID: <54D08413.80600@ahsoftware.de> Date: Tue, 03 Feb 2015 09:17:23 +0100 From: Alexander Holler User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.4.0 MIME-Version: 1.0 To: Al Viro CC: linux-fsdevel@vger.kernel.org, linux-kernel@vger.kernel.org Subject: Re: [PATCH 1/5] WIP: Add syscall unlinkat_s (currently x86* only) References: <1422896713-25367-1-git-send-email-holler@ahsoftware.de> <1422896713-25367-2-git-send-email-holler@ahsoftware.de> <20150203060542.GZ29656@ZenIV.linux.org.uk> <54D071AA.1030302@ahsoftware.de> <20150203075616.GA29656@ZenIV.linux.org.uk> <54D08060.7070504@ahsoftware.de> <20150203081018.GB29656@ZenIV.linux.org.uk> In-Reply-To: <20150203081018.GB29656@ZenIV.linux.org.uk> Content-Type: text/plain; charset=windows-1252; format=flowed Content-Transfer-Encoding: 7bit Sender: linux-kernel-owner@vger.kernel.org List-ID: X-Mailing-List: linux-kernel@vger.kernel.org Content-Length: 1216 Lines: 29 Am 03.02.2015 um 09:10 schrieb Al Viro: > On Tue, Feb 03, 2015 at 09:01:36AM +0100, Alexander Holler wrote: >> Am 03.02.2015 um 08:56 schrieb Al Viro: >> >>> While we are at it, "overwrite with zeroes" is too weak if the attacker >>> might get hold of the actual hardware. Google for details - it's far too >>> long story for l-k posting. Look for data recovery and secure data erasure... >> >> You might read >> >> http://link.springer.com/chapter/10.1007/978-3-540-89862-7_21 >> >> Here is an article in german about that: >> >> http://www.heise.de/security/meldung/Sicheres-Loeschen-Einmal-ueberschreiben-genuegt-198816.html >> >> In short, it's enough to overwrite it once with zeros, > > Regardless of the media used? How does that work on e.g. flash? That's why "secure trim" should be used if available. Blame the storage people for not offering it. But as I've already mentioned, they would just answer that filesystems don't (didn't) delete files anyway. -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/