01-17-2012 03:24 AM
Hi All,
We have Veritas file system running in our sun fire solaris. We need to secure erase the data in it. Is there any Veritas secure eraser tools to erase Veritas file system?
Rg
Jack
Solved! Go to Solution.
01-18-2012 02:09 AM
The SF admin guide says:
01-17-2012 03:39 AM
Nop, no such tool from veritas .... you might need to use external Unix shredder utilities
G
01-17-2012 06:57 AM
You can (assuming you are using vxvm as well as vxfs) in version 6 of volume manager - see:
where it says:
When you decommission a disk that contained sensitive data, you may need to destroy any remaining data on the disk. In this release, VxVM provides the ability to shred the data on the disk to minimize the chance that the data is recoverable. When you specify the disk shred operation, VxVM shreds the entire disk, including any existing disk labels. After the shred operation, VxVM writes a new empty label on the disk to prevent the disk from going to the error state. The VxVM shred operation overwrites all of the addressable blocks with a digital pattern in one, three, or seven passes.
You could delete volume and use "init=zero" to recreate volume to zero out data, but would be easier to use dd to write zeros to the volume (dd if=/dev/zero of=/dev/vx/dsk/dg_name/volume_name) after umounting filesystem or use an O/S util if you need this to be properly shredded.
Note, if security is important for deleted files in filesytems you are keeping, then if you use "-o blkclear" when mounting filesystem then deleted files are completely erased before the space is reused - see vxfs_admin guide "Mount Options"
Mike
01-17-2012 08:28 PM
Thanks mike, do you think Secure deletion of Veritas Volume Manager disks uses algorithm? e.g. dod, nnsa or usarmy?
01-18-2012 02:09 AM
The SF admin guide says: