New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
File shredding tool for Linux?
Good day!
I've been tasked to find commercial file shredding tool for Linux(Ubuntu specifically) server that support DoD 5220.22-M method.
I'm having a hard time finding such tool. I know there's couple of good free tools such as shred, wipe and scrub. But my organization insist on commercial tool backed with support. I blamed my compliance team.
Requirement
Support DoD 5220.22-M method
Not free. Commercially-backed by a company
Doesn't matter CLI-only or with GUI
Do you know any?
Comments
Do the servers use conventional HDDs? If they don't, good luck.
https://www.blancco.com/about-us/supported-standards/
Google : "secure delete file dod buy license"
But I'd rather resign from such a moronic organization
shred
is good enough?Its a mix of HDD + SSD.
I know the limitation of it and journal filesystem.
All 3 mentioned Windows-only. Unless I miss anything?
Please re-read the requirement.
I think some of them run under Unix (or are actually a bootable disk running some Unix).
Or just tell Moronic Organization Inc. that the software runs under Wine running under Ubuntu, they'll be happy, problem solved.
Another choice : BCWipe by Jetico.
Sorry I need some coffees.
@bigcat
a) Paragon Disk Wiper Business
b) Active @ KillDisk Industrial (http://www.killdisk.com/killdisk-industrial.htm)
The KillDisk link specifically mentions the U.S. DoD 5220-22M erasure procedure.
Even then the drives won't forget easily.
Degaussing is the only real option.
@bigcat I think if you want to do it properly, you would remove the disk from whatever computer it is in and attach it externally to the one running the wiping program.
if it is in a server right now so you can't pull it. you probably want to have an iso that you can (virtually) mount and boot from (like @Shot2 already mentioned) so you can do it via ipmi?
I think you should get in contact with the companies mentioned to clarify on your specific use case - and maybe get a quote already to tell your company about the costs. maybe then suddenly the requirements are changing. ;-)
This (non-free) icon is said to work.
Edit: Sorry, it's been a long day! But I know that file-shredding is a serious matter.
No reason to be sorry.
You done well.
Thanks.
I tried.
I'm not as quick at images/memes as you guys.
pinging @HillaryClinton
(from another thread ... not sure if this runs linux though ...)
@bigcat Just take their drive and tell them you've pulverized it out of existence from their realm and now, it's in a better place. (And look gazingly towards the sky.)
look like @HillaryClinton shredded her User Profile.
"The user you were looking for could not be found."
If the value of the data is really that high, just use a hammer because there is no real savings using other options where there's always the possibility of recovery. AFAIK there is no backdoor for smashed memory chips or magnetic plates.
But what if that's what they want you to believe!!?
You should ban yourself for not reading the requirements.
I am afraid Vanilla will break, just assume I was banned for 1 minute.
Or find a company who will give you support with a free tool, if necessary. Make a Service Level Agreement with them and pay them an x ammount per month?
Buy a RHEL license and then use its shred, wipe, and scrub.
EDIT:
Wait, you are using Ubuntu already.
Buy a Ubuntu Advantage license and then use its shred, wipe, and scrub. You can get the FIPS-certified cryptographic modules. Compliance will think that is secure.
I'd want to clean boot the PC from a bootable ISO / rescue system to do the exercise and not boot off the hard drive I'm wiping.
Once the data is overwritten... there isn't really a reliable way to resurrect it all in one piece... so just don't be too paranoid on this.