[Cialug] a thought on srm
Zachary Kotlarek
zach at kotlarek.com
Sun Jan 31 23:56:45 CST 2010
On Jan 31, 2010, at 11:44 PM, Todd Walton wrote:
> Memory. Do you wipe your swap on shutdown? It's good hygiene.
If you really meant it you'd write swap to an encrypted partition. It's pretty easy to create a new dm-crypt partition with a random key at boot and just not record the key. That will limit your swap bandwidth to about 100 MBps (CPU-limited at least in my experience, and dm-crypt is not multi-threaded) but then even an unexpected shutdown wipes swap.
And link ~/.bash_history to /dev/null -- that gives you in-session command history, but nothing saved to disk. Can be used in combination with other history-ignoring tricks.
Zach
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 2746 bytes
Desc: not available
Url : http://cialug.org/pipermail/cialug/attachments/20100131/d16a149c/attachment.bin
More information about the Cialug
mailing list