Unusual Question

Matthias Apitz guru at unixarea.de
Mon Jul 10 05:41:23 UTC 2017


El día domingo, julio 09, 2017 a las 10:33:40p. m. -0700, Doug Hardie escribió:

> > I do not think that this approach worked in the sense of overwriting all
> > blocks of the disk. While walking through at some point the kernel will
> > miss sectors of the disk, for example of memory mapped files of shared
> > libs of other running processes or swapped out memory to disk. And the kernel
> > will just crash or halt and you will notice that as terminating ssh session.
> > Do not rely on the fact that the (sensitive) information on the disk was
> > overwritten. The only secure way is doing this from a system running on
> > some other disk and even this would allow to recover information with
> > forensic tools reading beside of the tracks. Only physical destruction
> > will help, for example burning the thing, as you said.
> 
> The swap space was on this drive so it should be overwritten also.  Physical memory will go when the power goes off.  It would be nice to be able to get the drive back and see just how much was overwritten, but that is not possible. I don't see why dd would not run to completion. The first test I ran it reported that it had cleared over 300 GB on a 500 GB drive.  I may see if I can setup another system here and try that where I can monitor and test the result.

Doug, you missed my point. Your dd proc will overwrite at some point the
swaped-out pages and/or text segments which have been memory mapped by
the kernel. The kernel will miss them and crash and so you have only
overwritten a (maybe small) part of the disk.

	matthias

-- 
Matthias Apitz, ✉ guru at unixarea.de, ⌂ http://www.unixarea.de/  ☎ +49-176-38902045
Public GnuPG key: http://www.unixarea.de/key.pub
8. Mai 1945: Wer nicht feiert hat den Krieg verloren.
8 de mayo de 1945: Quien no festeja perdió la Guerra.
May 8, 1945: Who does not celebrate lost the War.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <http://lists.freebsd.org/pipermail/freebsd-questions/attachments/20170710/2995e6e9/attachment.sig>


More information about the freebsd-questions mailing list