On 2/5/10 3:49 PM -0500 c.hanover wrote:
Two things, mostly related, that I'm trying to find answers to for our
security team.
Does this scenario make sense:
* Create a filesystem at /users/nfsshare1, user uses it for a while, asks
for the filesystem to be deleted * New user asks for a filesystem and is
given /users/nfsshare2. What are the chances that they could use some
tool or other to read unallocated blocks to view the previous user's data?
Over NFS? none.
Related to that, when files are deleted on a ZFS volume over an NFS
share, how are they wiped out? Are they zeroed or anything. Same
question for destroying ZFS filesystems, does the data lay about in any
way? (That's largely answered by the first scenario.)
In both cases the data is still on disk.
If the data is retrievable in any way, is there a way to a) securely
destroy a filesystem, or b) securely erase empty space on a filesystem.
Someone else will have to answer that.
-frank
_______________________________________________
zfs-discuss mailing list
zfs-discuss@opensolaris.org
http://mail.opensolaris.org/mailman/listinfo/zfs-discuss
