Hmmm...well I had not heard of /dev/random either... I see that SunOS has a /dev/random and a /dev/urandom symlink to it. I didn't find anything with man -k. I'll look around for some docs on this thing.
As for just writing zeroes once, yeah it's probably good enough if you don't have physical access to the disk. But to take a disk with sensitive data, write zeroes to it and then make it available to the web would give a security guy a heart attack.
Suppose a write operation failed because the disk is flakey? A good driver will detect that and arrange for the write to return -1. But bad drivers exist. And few programmers do a good job of checking return codes anyway. Later on, someone might get the data with a lucky read. And this line of "reasoning" applies equally to a disk that has been wiped a thousand times. Security guys think this way...
Originally posted by Perderabo Hmmm...well I had not heard of /dev/random either...
Just as a side note:
HP-UX famously lacks a /dev/random capability which every other major vendor implemented long ago. That is one of the reasons that extablishing an ssh connection from a HP-UX box is relatively slow -- entropy (used for generating keys) has to be gathered from the system which is much slower than pulling it from /dev
While I know that this is an old posting, I wanted to put my 2 cents in. If you really want to protect the sensative data, replace the drive. It's cheap, the hardware would be faster, and the disk would last longer. Take the old drive and put it on the shelf so that you could get the sensative data back (if you ever needed to).
We have a RHEL 5.8 server at the production level and we have a Java application on this server. I know of the SSL certificate generation at the OS (RHEL) level but it is implemented on the Java application by our development team using the Java keytool. My doubt is that is the SSL generation can... (3 Replies)
Suppose
b=50,0,0,40,1,0,5000,gold,0,0,0,0,32,9,2,0,10000,0,0,0,0,0,0,0,0,0,BSNL_SMS_Bundle ,null,null,null,null,null,null,null,null,null,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,null,null,0,0,405564245,0
c=11
After 13th comma, the value of 9 needs to be changed and to be filled by another... (4 Replies)
Hi Guys
I have a cool job to do and that's to destroy aix5.1 on two of my servers. I need to get rid of all information. I have thought of a way of doing this and wondered if any of you had any ideas!!
Get the machine into maint mode and run the dd cmd! (7 Replies)
13 th level