Tux Training

Sections
- Applications (41)
  - Gimp (1)
- Basics (65)
- Commandline Tools (54)
- Cracking (6)
- Desktop Environments (15)
  - Fluxbox (4)
  - Gnome (5)
  - KDE (5)
  - Xfce (1)
- Distribution Specific (43)
  - Arch (1)
  - Debian (6)
  - Fedora (6)
  - Gentoo (2)
  - Mandriva (2)
  - OpenSuse (19)
  - Redhat (3)
  - Ubuntu (15)
- Hardware (10)
- Linux+ (33)
- Misc. (1)
- Multimedia (6)
- Networking (41)
- Non-Linux OSes (2)
  - FreeBSD (1)
  - OpenSolaris (1)
- Scripts and Commands (3)
- Security (48)
- Servers (13)
  - CMS (1)
  - LAMP (9)
    - Apache (4)
    - Mysql (4)
    - Php (1)
  - Samba (2)
- Tweaks (20)
- Uncategorized (1)
- Virtualization (2)
- Windows (4)
Polls
Why Do You Use Linux (Pick Your Best Reason)
- The GPL License
- Free as in Beer
- Security
- Stability
- The Software Available
- How customizable it is
- Just to make Steve Ballmer mad
View Results
Loading ...
Archives
Ads

Securely Delete Files with Wipe

Posted on March 5th, 2008 in Security by admin

Recovery of supposedly erased data from magnetic media is easier than what many people would like to believe. A technique called Magnetic Force Microscopy (MFM) allows any moderately funded opponent to recover the last two or three layers of data written to disk; wipe repeadetly overwrites special patterns to the files to be destroyed, using the fsync() call and/or the O_SYNC bit to force disk access. In normal mode, 34 patterns are used (of which 8 are random). A quick mode allows you to use only 4 passes with random patterns, which is of course much less secure.

Install

For Suse: zypper in wipeFor Ubuntu/Debina: sudo apt-get install wipe

For Fedora: yum install wipe

Usage

wipe -rkq /home/username/name-of-file
then confirm that you wish to wipe the file, folder, or device.

Explaination of Options

-r (recurse into subdirectories) Will allow the removal of the entire directory tree. Symbolic links are not followed.



-q (quick wipe) If this option is used, wipe will only make (by default) 4 passes on each file, writing random data. See option -Q



-Q <number-of-passes> Sets the number of passes for quick wiping. Default is 4.



-k Keep files: do not unlink the files after they have been overwritten. Useful if you want to wipe a device, while keeping the device special file. This implies -F.



-F Don’t try to wipe file names. Normally, wipe tries to cover file names by renaming them; this does NOT guarantee that the physical location holding the old file name gets overwritten. Furthermore, after renaming a file, the only way to make sure that the name change is physically carried out is to call sync (), which flushes out ALL the disk caches of the system, whereas for ading and writing one can use the O_SYNC bit to get synchronous I/O for one file. As sync () is very slow, calling sync () after every rename () makes filename wiping extremely slow.


For the rest of the switches simply ‘man wipe’ or see the man page here.

For journaled file systems see:Securely Delete files from Journaling Filesystems in Linux

Bookmark It

Sections

Polls

Archives

Ads

Register

Search

Ads

News

Ads

Securely Delete Files with Wipe

Post a comment