Fortiscue

Oh, I forgot to mention, during my testing there was some inconclusive results regarding files with data that were contained entirely within their MFT entries. Can you verify whether or not CCleaner is supposed to do be able to securely delete those?

Hi Augeas, Thanks for the reply. Yes, I have now looked at CCleaner's behaviour with a sector editor and verified that it does zeroize files. This is excellent - I appreciate letting me know of this change. However, I will note, this is a marked change from earlier behaviour and currently undocumented. Previously it was documented as being pseudo-random data for the single pass, and the methods iterated above for the multi-pass. Either the specifications noted in the documentation are being modified, or an aditional zeroizing pass is being performed. For me either is fine, I really just want the data zeroized. But perhaps I could suggest a modification to the documentation to state exactly what is being done. Thanks again for the reply.

I meant overwriting, not setting the file to zero length. CCleaner has several methods of secure overwriting, none of which to my knowledge involve overwriting with zeros. The methods currently are: Single pass - one pass of pseudo-random data 3-pass - Labelled as "DOD 5220.22-M", which is one pass each of zeros, ones, and pseudo-random data 7-pass - Labelled as NSA, but there is no specification I know for this, so I don't know what CCleaner is doing here, but given that none of the other ones end with a zeroizing pass, I doubt this one does either. 35-pass - Guttman, this is the unfortunate researcher that started the multi-pass overwrite craze. His method involves 4 passes of pseudo-random data, a whole bunch of passes that aim to mimic specific MFM patterns, then a final 4 passes of more pseudo-random data. I am proposing that: There be a single-pass overwrite-with-zeros method added A setting to add a final "zero" pass to the other methods, so you can still do a pass with pseudo-random data but end with zeros. Multi-pass overwriting is not required. Guttman was tinfoil-hat paranoid back in the 90's when he wrote his paper, and the need for it has only diminished with increasing data densities. That's not my point, though. Let the paranoid people have multiple-pass overwriting. I just want to see the ability to overwrite with zeros because it makes things a whole lot easier in some cases.

Currently, for files that CCleaner is deleting, you can choose to simply delete them (where they are not overwritten) or delete and overwrite them with one or more passes of pseudo-random data. I would like to see an option to have the final (or only) overwrite pass be to zeroize data. Pseudo-random is used for a couple reasons, and I'm not going to get into them or start a debate on this. But having the option to zeroize instead of or as a final pass after pseudo-randomizing has many benefits. Not the least of which is your drive becomes a whole lot more compressable if you are making compressed disk images. It is also beneficial for those who are concerned about disproving the pressence of hidden data on their drive. This is important... in fact vital... in certain circumstances.