LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 03-02-2015, 03:40 PM   #16
suicidaleggroll
LQ Guru
 
Registered: Nov 2010
Location: Colorado
Distribution: OpenSUSE, CentOS
Posts: 5,561

Rep: Reputation: 2127Reputation: 2127Reputation: 2127Reputation: 2127Reputation: 2127Reputation: 2127Reputation: 2127Reputation: 2127Reputation: 2127Reputation: 2127Reputation: 2127

Unless you're running on bare metal (no virtualization) on your own server, even shred, dd, etc is no guarantee of anything. The virtualization software is capable of intercepting everything written to disk. It can make copies, incremental backups, whatever they want it to do.

If your data is sensitive, don't put it on a virtual server hosted in the cloud, bottom line. You have no idea who or what has access to the data you put on it.
 
Old 03-09-2015, 11:46 PM   #17
RobInRockCity
Member
 
Registered: Feb 2015
Posts: 141

Original Poster
Rep: Reputation: Disabled
Quote:
Originally Posted by Pearlseattle View Post
A final paranoia-boost:
read the "man shred" until the end. It is mentioned that overwriting files is not guaranteed to work with most of the filesystems.
The reason is that in order to save time or because of other functionality offered by the filesystem (e.g. historical snapshots of data), even when you overwrite a file the data is not going to land at the same place that the original file was using => the original data will still be lying somewhere on the HDD.
Just what I need... More paranoia!!


I know that I have all but accepted that philospohy on my personal laptop... There are just too many unknowns to think that password-protecting or encrypting particular files or directories is enough. The only way you can hope to be safe is to do Full Disk Encryption (FDE).

Of course, there is the rub with a VPS - you can't control the disks/machines!!


Rob
 
Old 03-09-2015, 11:48 PM   #18
RobInRockCity
Member
 
Registered: Feb 2015
Posts: 141

Original Poster
Rep: Reputation: Disabled
Quote:
Originally Posted by suicidaleggroll View Post
Unless you're running on bare metal (no virtualization) on your own server, even shred, dd, etc is no guarantee of anything. The virtualization software is capable of intercepting everything written to disk. It can make copies, incremental backups, whatever they want it to do.

If your data is sensitive, don't put it on a virtual server hosted in the cloud, bottom line. You have no idea who or what has access to the data you put on it.
It sucks being "privacy conscious" and yet being on a limited budget!!


Rob
 
Old 03-16-2015, 07:09 PM   #19
Pearlseattle
Member
 
Registered: Aug 2007
Location: Zurich, Switzerland
Distribution: Gentoo
Posts: 978

Rep: Reputation: 118Reputation: 118
Quote:
The only way you can hope to be safe is to do Full Disk Encryption (FDE).
Well, it probably doesn't matter if you do FDE or just a 2nd level ecryption like encfs (which I am using) - the disk controller will always end up deciding where the data ends up.
At that point what will matter will be the weakest link, which will probably be the host that you'll use to input/write your password => these thoughts will bring you to paranoia-level-2.

Paranoia-level-3 can be accomplished only with a full offline server.
Paranoia-level-4 is then really advanced, with no windows and double walls to avoid any kind of external leak of frequency.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Proftpd upload to a folder other than 'upload' fooboo Linux - Software 4 04-27-2006 08:51 PM
strategy for decrypting Y0jiMb0 Programming 9 11-23-2005 08:14 AM
fc update strategy woranl Fedora 5 01-26-2005 10:48 PM
IglooFTP-PRO refuses to upload files in folder when I upload folder eBopBob Linux - Software 0 08-27-2004 06:52 AM
Update strategy hypernetics Linux - General 3 05-29-2004 01:29 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie

All times are GMT -5. The time now is 10:33 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration