2011/2/9 shimi <[email protected]> > > > On Wed, Feb 9, 2011 at 9:50 PM, Uri Even-Chen <[email protected]> wrote: >> >> Thank you. >> >> Wiping files is part of pretty good privacy (PGP) - if you want >> privacy you need to wipe your deleted files. >> >> > > I would trust having them all at encrypted-state at all times (and avoiding > using swap) to be a must better approach. > > I couldn't care less if someone takes my random data which he has no key for, > and read it for fun... I suspect this is not too different than reading > /dev/random. > > -- Shimi >
That's the concept for ZFS secure deletion. As per http://www.c0t0d0s0.org/archives/5793-Secure-Deletion-with-ZFS.html : <snip> Use encryption and when you want to delete the data throw away the matching key. <snip> And this is exactly the way, secure deletion will be done with ZFS. It´s done by encryption. You will be able to define an encryption key by dataset and when you want to delete a dataset securely just throw a way the key. Remember that creating a dataset is as easy as creating a directory in ZFS. ZFS Crypto will be the solution for the secure delete challenge. > > _______________________________________________ > Linux-il mailing list > [email protected] > http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il > _______________________________________________ Linux-il mailing list [email protected] http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il
