LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

Secure deletion with journaling?

Secure deletion with journaling?

Posted Dec 7, 2006 15:04 UTC (Thu) by abatters (✭ supporter ✭, #6932)
Parent article: Secure deletion and trash bin support

According to the man page for 'shred', overwriting a file stored on a journaled filesystem (via normal write() system calls) does not necessarily overwrite the actual data on disk. I do not see how moving a deleted file to a special directory makes it possible to perform a subsequent secure delete if the VFS doesn't special-case it in other ways. This is especially true if the data had been written to blocks in the filesystem that are no longer associated with the file.

OTOH, the man page for chattr does mention a 'data journaling' attribute; maybe you are supposed to turn off data journaling at the same time as setting secure delete (preferably before writing any actual sensitive data to the file). Does anyone know if this flag is honored?

(Log in to post comments)

Secure deletion with journaling?

Posted Dec 7, 2006 15:20 UTC (Thu) by zlynx (subscriber, #2285) [Link]

Overwrite the file with O_DIRECT set? Create a new filesystem flag so that even the most cache-happy journaled FS does the right thing?

Secure deletion with journaling?

Posted Dec 7, 2006 16:52 UTC (Thu) by rvfh (subscriber, #31018) [Link]

The secure deletion resides in the FS part for sure. Only the undelete part can be in the VFS (just a mv after all).

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds