On Wed, Feb 09, 2000 at 05:35:00PM +0100, Matthew Wilcox wrote:

[...]

How about secure deletion? 

1.3 used to have some simple minded overwriting of deleted data when the 
's' attribute was set.  That got lost with 2.0+. 

Secure disk overwriting that is immune to 
manual surface probing seems to take a lot more effort  (Colin Plumb's 
sterilize does 25 overwrites with varying bit patterns). Such a complicated
procedure is probably better kept in user space. What I would like is some
way to have a sterilize daemon running, and when a get 's' file gets
deleted the VFS would open a new file descriptor for it, pass it to 
sterilized (sterild?) using a unix control message and let it do its job.

What does the audience think? Should such a facility have kernel support
or not?  I think secure deletion is an interesting topic and it would be
nice if Linux supported it better.

sterilize also does some tricks to overwrite entries in directories, but
I see no easy way to make that fit into the kernel. 

Comments? 

-Andi
-- 
This is like TV. I don't like TV.

Reply via email to