[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Erase Files

To: Mark <judas_iskario@web.de>
Subject: Re: Erase Files
From: Bert Koelewijn <bert.koelewijn@planet.nl>
Date: Sun, 07 Sep 2003 11:56:39 +0200
Cc: misc@openbsd.org
References: <000501c374bb$05de0a90$7f01a8c0@hawk> <3F5A50B1.2070900@deekayen.net> <001d01c374c6$1e5ace40$7f01a8c0@hawk>
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.4) Gecko/20030624

Trusting on 'secure' deletion of files is not a solution. If you have
confidential information, encrypt it and pay close attention to how
you store your keys and where you decrypt your data.

If files are in use 24x7: secure your server room and servers.

This way, professional criminal hackers hired by the mafia, are far more 
likely to steal your data, than the burglars.

good luck!

Mark wrote:
> Thanks for the help. :-)
> 
> 
>>This is in the archives. Theo essentially put the hammer down and
>>said no, so forget it.
> 
> 
> Ok...wait a moment... *reading something from the website*
> "Our efforts emphasize portability, standardization, correctness, proactive
> security and integrated cryptography."
> Security -> Goal:
> "..."  "Our aspiration is to be NUMBER ONE in the industry for security (if
> we are not already there)."
> 
> I've 2 questions yet:
> 
> 1.
> 
> How could importent data be stored secure if there's no method to delete
> something "secure"?
> The OS itselfs seams to be secure, ok. But what if the hdd will be robbed?
> This is VERY importent....
> 
> And there is (in german) a newsline:
> http://www.heise.de/newsticker/data/uma-06.09.03-002/
> Very short version: 2 persons robbed an hdd from the australian customs
> department with top secret data.
> 
> So I think it's importent to delete data as secure as we can.
> 
> 2.
> 
> Theo if you said NO I will hope that you will change your mind.
> Secure deleting is importent and it's not only a tool for the "bad boys".
> I'm not a coder but I know some coders and so (from my point of view) it's
> not difficult to implementate such an "option".
> I know nothing about your standarts and if you told me "rm has to be
> compatible with..." I told you: then do not include such a function in rm.
> Code a tool called "erase" or so.
> 
> Think about Theo.
> Your personal data could be abused too if an hdd will be stolen from some
> company or the gov.
> And if you would read a crazy example:
> The Mafia (e.g. in germany) will pay a lot of money if you give them hdd's
> from lawyers / police or such persons / organisations.
> These hdd musn't be stolen because every ~4-6 years they will be sale.
> The persons/organisations have to wipe the hdd before they could sale it but
> if the mafia buy these hdd's after wiping the method seams not realy secure.
> And NO: That's not a joke with the mafia...
> 
> So I hope you change your mind Theo..
> 
> mfg. Mark

References:
- Erase Files
  - From: "Mark" <judas_iskario@web.de>
- Re: Erase Files
  - From: David Norman <deekayen@deekayen.net>
- Re: Erase Files
  - From: "Mark" <judas_iskario@web.de>

Prev by Date: Re: 3.3 upgrade with Postix
Next by Date: Re: Poweredge 1650 raid question
Prev by thread: Re: Erase Files
Next by thread: Re: Erase Files
Index(es):
- Date
- Thread