Package: secure-delete
Version: 3.1-5
Severity: normal
Tags: security
sfill works by creating a "oooooooo.ooo" file as big as possible in
the specified directory. Hence, it does not wipe more than the maximum
file size supported by the underlying filesystem.
Practically speaking, on a vfat filesystem with more that 4G free
space, sfill only wipes 4G but doesn't warn the user in any way I
could find.
Demonstration:
# mkfs.vfat /dev/vg/test
# mount /dev/vg/test /mnt/tmp
# sfill -l -l -f -v -z /mnt/tmp/
Wipe mode is insecure (one pass [zero])
Wiping now ...
Creating /mnt/tmp/oooooooo.ooo ... * Wiping inodes ... Done ... Finished
# echo $?
While sfill is working, run in a second terminal:
$ while true ; do ls -lh /mnt/tmp/ ; df -h /mnt/tmp ; sleep 5 ; done
total 1015M
-rwxr-xr-x 1 root root 1015M Aug 17 16:17 oooooooo.ooo
Filesystem Type Size Used Avail Use% Mounted on
/dev/mapper/laizvg-test
vfat 6.0G 1015M 5.0G 17% /mnt/tmp
total 1.2G
-rwxr-xr-x 1 root root 1.2G Aug 17 16:17 oooooooo.ooo
Filesystem Type Size Used Avail Use% Mounted on
/dev/mapper/laizvg-test
vfat 6.0G 1.2G 4.9G 19% /mnt/tmp
[...]
total 4.0G
-rwxr-xr-x 1 root root 4.0G Aug 17 16:19 oooooooo.ooo
Filesystem Type Size Used Avail Use% Mounted on
/dev/mapper/laizvg-test
vfat 6.0G 4.1G 2.0G 67% /mnt/tmp
total 4.0G
-rwxr-xr-x 1 root root 4.0G Aug 17 16:19 oooooooo.ooo
Filesystem Type Size Used Avail Use% Mounted on
/dev/mapper/laizvg-test
vfat 6.0G 4.1G 2.0G 67% /mnt/tmp
total 0
Filesystem Type Size Used Avail Use% Mounted on
/dev/mapper/laizvg-test
vfat 6.0G 64K 6.0G 1% /mnt/tmp
Bye,
--
intrigeri <intrig...@boum.org>
| GnuPG key @ https://gaffer.ptitcanardnoir.org/intrigeri/intrigeri.asc
| OTR fingerprint @ https://gaffer.ptitcanardnoir.org/intrigeri/otr.asc
| Then we'll come from the shadows.
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
