From: Tom Vier <tmv@comcast.net>
To: reiserfs-list@namesys.com
Subject: Re: secure delete?
Date: Wed, 24 Mar 2004 22:49:37 -0500 [thread overview]
Message-ID: <20040325034937.GB8473@zero> (raw)
In-Reply-To: <1080170284.11768.1306.camel@arabia.home.lan>
On Thu, Mar 25, 2004 at 12:18:08AM +0100, Enrique Perez-Terron wrote:
> So, even a fairly cheap and quick encryption system combined with a
> "secure delete" facility makes it many orders of magnitude more
> expensive to recover any information from the disk. While it is hardly
> the first priority, there might still be many customers that will one
> day be willing to pay for this.
i really like the idea of a per file key in the inode. the fs could wipe the
key field itself, using the gutmann method, without too much trouble (like
wiping the entire file from within the kernel; that could be gigs and take
hours).
could this be implimented using plugins?
also, it was mentioned that reiserfs doesn't reserve space. so all
structures (except the superblock and journal, of course) are dynamic and
regular files can overwrite old nodes? if so, then wipe could use a regular
file to wipe free space fairly effectively. if not, maybe i could use the
reiserfsprogs libs to figure out what blocks are free (before it's mounted
of course).
btw, anyone know what the block coherancy is in 2.6? if i write to a blkdev,
then mount it, will the fs driver see the writes? i know if the fs writes to
the blkdev, reading the blkdev from userspace can return stale cache. too
bad you can't do something like umount; bsync; (now safely read/write the
blkdev).
--
Tom Vier <tmv@comcast.net>
DSA Key ID 0x15741ECE
next prev parent reply other threads:[~2004-03-25 3:49 UTC|newest]
Thread overview: 29+ messages / expand[flat|nested] mbox.gz Atom feed top
2004-03-19 10:13 secure delete? Peter Foldiak
2004-03-19 11:01 ` Cami
[not found] ` <20040319110748.GA30491@chihiro.cern.ch>
2004-03-19 11:29 ` Hans Reiser
2004-03-19 11:51 ` Peter Foldiak
2004-03-19 16:04 ` Hubert Chan
2004-03-19 17:54 ` Bennett Todd
2004-03-20 23:45 ` The Amazing Dragon
2004-03-20 23:59 ` Andrew Clausen
2004-03-23 1:37 ` Jurgen Botz
2004-03-23 2:49 ` Valdis.Kletnieks
2004-03-23 6:22 ` Hans Reiser
2004-03-23 6:40 ` Hendrik Visage
2004-03-23 16:34 ` Jürgen Botz
2004-03-23 21:03 ` Jason Holt
2004-03-23 21:40 ` Hans Reiser
2004-03-24 2:36 ` Tom Vier
2004-03-24 6:26 ` Jason Holt
2004-03-24 7:39 ` Hans Reiser
2004-03-24 15:38 ` Jason Holt
2004-03-29 12:59 ` Hans Reiser
2004-03-24 7:54 ` Hans Reiser
2004-03-24 8:04 ` Vladimir Saveliev
2004-03-24 23:18 ` Enrique Perez-Terron
2004-03-25 3:49 ` Tom Vier [this message]
2004-03-25 13:00 ` Vladimir Saveliev
2004-03-24 18:20 ` Valdis.Kletnieks
2004-03-25 3:16 ` Tom Vier
2004-03-30 1:10 ` Valdis.Kletnieks
-- strict thread matches above, loose matches on Subject: below --
2004-03-30 2:13 Burnes, James
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20040325034937.GB8473@zero \
--to=tmv@comcast.net \
--cc=reiserfs-list@namesys.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.