https://bugzilla.kernel.org/show_bug.cgi?id=92271 --- Comment #22 from Theodore Tso <tytso@xxxxxxx> --- Alexander, merely overwriting the blocks won't necessarily help if you are using a SSD or something like dm-thin. That's the point; such patches will be making promises that can't be kept in all circumstances. In the case of an SSD, it might be require accessing the flash cells directly without the FTL getting in the way. So before you advertise such a scheme, you need to be very clear what your threat model and what capabilities the adversary is supposed to have. And, also, what responsibility you might bear (or a commercial company like Red Hat or SuSE might bear --- both in terms of legal liability and reputational damage) if they advertise such a feature, and then it turns out that the way the user happened to configure their system, it wasn't secure after all. -- Ted -- You are receiving this mail because: You are watching the assignee of the bug. -- To unsubscribe from this list: send the line "unsubscribe linux-ext4" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
