More secure deletion options to choose from

[FraggleRockBoy]

In addition to the Secure file deletion options currently in CCleaner: Simple Overwrite -1 pass; DOD 5220.22-M -3 passes; NSA - 7 passes; and Gutmann - 35 passes. I was wondering if these delete/wiping methods listed below could be added to the options already available to choose from in options. these methods would be a great addition to the others because they are fast and quite secure.

 

Schneier (7-Pass)

This method is based on Bruce Schneier's algorithm. It relies on a cryptographically secure random number generator to wipe with random data. It will overwrite a file 7 times. It is very secure and should be used for private files.

 

 

Gutmann Subset (5-Pass)

This method is a subset of the Gutmann 35-Pass method. It takes the most effective patterns from the 35-Pass method and breaks them down to only 5 passes. It is secure and should be used for general files.

[marmite]

Hi FraggleRockBoy

 

Disagree . Personal opinion - waste of time. I'm not going to search for posts where I explain why, but look for posts particularly by me or augeas.

 

I REALLY wish piriform would have the cojones to remove the unnecessary plethora of multiple-overwrite options just because everyone else offers them. Or if they won't, at least justify their reasons for leaving them there rather than have these frustratingly repetitive discussions on the forums. Disk drive manufacturers must be laughing.

 

Unless you are worried about the (theoretical) possibility of the likes of NSA or GCHQ using sophisticated and specialist hardware to retrieve YOUR deleted data off YOUR drive (which I'd venture to say is fairly unlikely) then forget it.

 

If you have ANY evidence that overwriting just once on a healthy drive allows ANY software to read the previously stored data, I would be very interested to see it.

 

Edited to add: What really beats me is why some people (not aimed at the OP - just a general comment) get so concerned about the secure deletion of personal data ... why not just store things in an encrypted volume in the first place? If you don't it's gonna be a helluva lot less secure until you do delete it, what ever method you use!!

[Augeas]

Everything that Marmite said. The last thing that CC needs is another secure deletion method.

 

I had a scratch around at Bruce's method. He proposed this in 1996 (the same year as Gutmann), and gave no rationale apart from being paranoid and believing that the more overwrites the better. I believe he actually said using a 'cryptographically secure pseudo-random sequence': a random number generator would be nonsense, wouldn't it?

 

The whole concept is just wrong anyway. If you want to ensure that your data is eliminated to any sort of verifiable standard you wouldn't use a free general-purpose utility. I think CC is great, but I wouldn't dream of suggesting it should be used to clean data to any auditable standard. If anyone ever asked me, that is.

[ident]

Asingle write is sufficient if the overwrite is truly random.

 

and as marmite said. There is not one laboratory claiming it can recover over written files.

[aceldama]

the fact that piriform ccleaner overwrites the file itself is great, but i'm wondering why they haven't caught on to overwriting the file name itself. it would be great if there was an option for this. after all, filenames themselves can be quite incriminating, especially the shortcut links windows generates in your recent items. i don't want my boss to know whether i look at "cutecuddlyteddybears.lnk" or whatever the case may be. and if a program like recuva is run, that will still show up.

 

my suggestion is that a filename should be renamed as follows:

sample.txt (original)

akjdah.ahk (random chars of same length, to be repeated as many times as you wish)

x (single character)

[delete]

 

what do you think?

[Augeas]

With the secure file deletion option - what this thread is discussing - the file names are overwritten.

[ident]

what do you think?

 

 

that you shouldnt be looking at stuff that would be not considered work to tolerable

[fireryone]

...<snip> i don't want my boss to know whether i look at "cutecuddlyteddybears.lnk" or whatever the case may be.

 

If your Boss would not approve of you looking up "cutecuddlyteddybears.lnk" on his network, then maybe you should stop...

[aceldama]

If your Boss would not approve of you looking up "cutecuddlyteddybears.lnk" on his network, then maybe you should stop...

 

haha! wouldn't it be odd if he didn't mind about the "harcoreinterracial.lnk"...