Bugtraq mailing list archives
Re: Shred 1.0 Bug Report
From: Wietse Venema <wietse () PORCUPINE ORG>
Date: Wed, 11 Oct 2000 06:33:54 -0400
M. Leo Cooper:
It has been a couple of years since I actively worked on "shred". In response to your e-mail, Jeff, when I tested the program, it no longer worked as specified. In fact, when compiled on a glibc 2.1 machine, "shred" coredumps. It appears that this package is a victim of the changes made to libc.
The shredding problem is not in libc. The problem is that shred(1) should have called fsync() after each overwrite iteration, in order to request that data be flushed from the kernel buffers to the disk blocks.
I therefore advise discontinuation of the use of the "shred" package. I have no plans to bugfix or update it, since Tom Vier's "wipe" package accomplishes the same job, and in a more thorough fashion. Jeff, I do have to question whether it was appropriate to notify Bugtraq, since "shred" was never, to my knowledge, a part of any Linux distribution.
shred(1) installs with redhat 6.2, out of the box. Beware, software never dies. Once you release it things are out of your control.
Thanks for the notification.
Wietse
Current thread:
- Shred 1.0 Bug Report Jeff Harlan (Oct 10)
- Re: Shred 1.0 Bug Report Guenther H. Leber (Oct 10)
- Re: Shred 1.0 Bug Report Frank Wiles (Oct 11)
- Re: Shred 1.0 Bug Report M. Leo Cooper (Oct 11)
- Re: Shred 1.0 Bug Report Wietse Venema (Oct 11)
- Re: Shred 1.0 Bug Report Alfred Perlstein (Oct 12)
- Re: Shred 1.0 Bug Report Mitchell Blank Jr (Oct 13)
- Re: File "shredding" Kurt Seifried (Oct 13)
- Re: Shred 1.0 Bug Report Wietse Venema (Oct 11)
- Re: Shred 1.0 Bug Report M. Leo Cooper (Oct 11)
- Re: Shred 1.0 Bug Report Dan Kaminsky (Oct 12)
- Re: Shred 1.0 Bug Report Guenther H. Leber (Oct 10)