On Dec 20, 2006, at 1:37 PM, Bill Sommerfeld wrote:
On Wed, 2006-12-20 at 03:21 -0800, james hughes wrote:
This would be mostly a "vanity erase" not really a serious "security
erase" since it will not over write the remnants of remapped sectors.
Yup. As usual, your milage will vary depending on your threat model.
My gut feel is that there's a cost-benefit sweet spot near a mechanism
which provides for the prompt overwrite of recently deallocated blocks
with either zeros or newly allocated data,
What happens when the machine crashes after the blocks are
deallocated but before they are scrubbed? Is that covered?
with more intensive bleaching
reserved for when disks are taken out of service.
If I had a choice of destroying disks or running a program that will
take hours to complete (with dubious quality), I would (and do)
choose to destroy the disk.
- Bill
_______________________________________________
zfs-discuss mailing list
zfs-discuss@opensolaris.org
http://mail.opensolaris.org/mailman/listinfo/zfs-discuss
