Excuse me for mentioning it but why not just use the format command?
format(1M)
- analyze
-
Run read, write, compare tests, and data
purge. The data purge
function implements the National Computer Security Center Guide to
Understanding Data Remnance (NCSC-TG-025 version 2) Overwriting
Algorithm. See NOTES.
-
The NCSC-TG-025 algorithm for overwriting
meets the DoD 5200.28-M (ADP
Security Manual) Eraser Procedures specification. The NIST Guidelines
for Media Sanitization (NIST SP 800-88)
also reference this algorithm..
And if the disk is buggered (a very technical term). A great big hammer!
Mark A. Carlson wrote:
Typically this is called "Sanitization" and could be
done as part of
an evacuation of data from the disk in preparation for removal.
You would want to specify the patterns to write and the number of
passes.
-- mark
Brian Kolaci wrote:
Hi,
I was discussing the common practice of disk eradication used by many
firms for security. I was thinking this may be a useful feature of ZFS
to have an option to eradicate data as its removed, meaning after the
last reference/snapshot is done and a block is freed, then write the
eradication patterns back to the removed blocks.
By any chance, has this been discussed or considered before?
Thanks,
Brian
_______________________________________________
zfs-discuss mailing list
zfs-discuss@opensolaris.org
http://mail.opensolaris.org/mailman/listinfo/zfs-discuss
www.eagle.co.nz
This email is confidential and may be legally
privileged. If received in error please destroy and immediately notify
us.
|
_______________________________________________
zfs-discuss mailing list
zfs-discuss@opensolaris.org
http://mail.opensolaris.org/mailman/listinfo/zfs-discuss
