secure_deletion.mdwn 5.87 KB
Newer Older
1 2
[[!meta title="Securely delete files and clean diskspace"]]

3
[[!toc levels=1]]
4

5 6
<a id="why"></a>

7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32
Why use secure deletion?
========================

**Operating systems do not actually remove the contents of a file when it is
deleted**, even after emptying the trash or explicitly removing the file, from
the command line for example.

Instead, they simply remove the file's entry from the file system directory,
because this requires less work and is therefore faster. The contents of the
file—the actual data—remain on the storage medium. The data will remain there
until the operating system reuses the space for new data.

Likewise, reformatting, repartitioning or reimaging a system is not always
guaranteed to write to every area of the disk, though all will cause the disk to
appear empty or, in the case of reimaging, empty except for the files present in
the image, to most software.

Finally, even when the storage medium is overwritten, physical properties of the
medium may make it possible to recover the previous contents. In most cases
however, this recovery is not possible by just reading from the storage device
in the usual way, but requires using laboratory techniques such as disassembling
the device and directly accessing/reading from its components.

<p class="quoted-from">Quoted from [[!wikipedia Secure_file_deletion
desc="Wikipedia: %s"]].</p>

33 34
<a id="usb_and_ssd"></a>

35 36
Warning about USB sticks and solid-state disks
==============================================
37 38

**The methods described below will not work as expected on USB sticks and
39
solid-state disks.**
40

41
- The existing hard disk-oriented techniques for secure deletion of
42
  individual files are not effective.
43 44
- Overwriting twice the entire disk is usually, but not always,
  sufficient to securely clean the disk.
45

46
<div class="caution">
47

sajolida's avatar
sajolida committed
48 49
<p>Unfortunately, Tails does not currently allow you to perform this task
with graphical tools. See [[!tails_ticket 5323]].</p>
50

51 52
</div>

JesseW's avatar
JesseW committed
53
For more details read the corresponding section of the Wikipedia article on
Tails developers's avatar
Tails developers committed
54
[[!wikipedia Data_erasure#Limitations desc="Data erasure"]].
55 56 57 58

Securely delete files
=====================

sajolida's avatar
sajolida committed
59
In Tails you can securely delete files thanks to an [extension of the
60
file browser](http://wipetools.tuxfamily.org/nautilus-wipe.html).
61

sajolida's avatar
sajolida committed
62
  1. Open the file browser, either
Tails developers's avatar
Tails developers committed
63
  from the <span class="guimenu">Places</span> menu or the <span
emma peel's avatar
emma peel committed
64
  class="guilabel">home</span> icon on the desktop.
65

66
  1. Navigate to the folder containing the files that you want to delete.
67

68
  1. Select the files that you want to delete with the mouse.
69

70
  1. Right-click on the files and choose <span class="guimenuitem">Wipe</span>.
71

72
     [[!img wipe_files.png link=no alt="Right-click&nbsp;▸ Wipe"]]
73

74
  1. Confirm.
75

76 77
  1. The deletion will start. It can last from a few seconds to several minutes,
  according to the size of the files. Be patient…
78

79 80
<div class="caution">

sajolida's avatar
sajolida committed
81
<p>Securely deleting files does not erase the potential backup copies of
82
the file (for example OpenOffice creates backup copies that allow
sajolida's avatar
sajolida committed
83
you to recover your work in case OpenOffice stops responding).</p>
84 85 86

</div>

87
<a id="empty_trash"></a>
88

89 90 91
Emptying the trash
==================

JesseW's avatar
JesseW committed
92
Before considering [[securely cleaning the available space on a
93 94
disk|secure_deletion#index5h1]], make sure to empty the trash.

sajolida's avatar
sajolida committed
95
  1. Open the file browser, either from the <span class="guimenu">Places</span> menu or
emma peel's avatar
emma peel committed
96
     the <span class="guilabel">home</span> icon on the desktop.
97 98 99

  1. Click on the disk on which you want to empty the trash in the left
     pane to navigate to the root of this disk.
100 101 102 103 104 105
     
  1. In the titlebar, choose
     <span class="menuchoice">
        <span class="guimenu">[[!img lib/go-down.png alt="Menu" class=symbolic link=no]]</span>&nbsp;▸
        <span class="guimenuitem">Show hidden files</span></span>
     to show hidden files.
106 107 108 109

  1. Delete the <span class="filename">.Trash-1000</span> folder or
     similar.

110 111 112 113 114 115 116
<div class="tip">

<p>Apply this technique to the <span class="filename">Persistent</span>
folder to empty the trash of the persistent volume.</p>

</div>

117 118
<a id="clean_disk_space"></a>

119 120 121 122
Securely clean available disk space
===================================

In order to clean up the contents of all files that were previously suppressed
127.0.0.1's avatar
127.0.0.1 committed
123 124
but not securely deleted from a disk, it is also possible to securely clean all 
the free space on the disk.
125

126
<div class="caution">
127

128
<p>This method does not work as expected on solid-state disks or USB
129
sticks.</p>
130

131
</div>
132 133 134 135

The disk or the folder may or may not contain other files. Those files will not
be deleted during the operation.

sajolida's avatar
sajolida committed
136
  1. Open the file browser, either from the <span class="guimenu">Places</span> menu or
emma peel's avatar
emma peel committed
137
  the <span class="guilabel">home</span> icon on the desktop.
138

Tails developers's avatar
Tails developers committed
139 140
  1. Click on the disk that you want to clean in the left pane to
     navigate to the root of this disk.
141

Tails developers's avatar
Tails developers committed
142
  1. Right-click in empty space in the right pane and choose <span
143
     class="guimenuitem">Wipe available diskspace</span>.
144

145 146
     [[!img wipe_available_diskspace.png link=no alt="Right-click&nbsp;▸ Wipe
     available diskspace"]]
147

Tails developers's avatar
Tails developers committed
148 149 150 151 152 153
     <div class="tip">
     <p>On the previous screenshot, the trash in the <span
     class="filename">.Trash-1000</span> folder is not deleted. See the
     [[instructions above|secure_deletion#index4h1]].</p>
     </div>

154
  1. Confirm.
155

Tails developers's avatar
Tails developers committed
156
  1. The cleaning starts. It can last from a few minutes to a few hours,
157
     according to the size of the available diskspace. Be patient…
158

159 160
     Note that a file called <span
     class="filename">oooooooo.ooo</span> is created in the
sajolida's avatar
sajolida committed
161 162
     folder. It is made as big as possible to use all the available diskspace and
     then securely deleted.
163 164 165

<div class="caution">

166 167 168 169
<p>This option does not delete hidden files. Choose
   <span class="menuchoice">
      <span class="guimenu">[[!img lib/go-down.png alt="Menu" class=symbolic link=no]]</span>&nbsp;▸
      <span class="guimenuitem">Show hidden files</span></span>
spriver's avatar
spriver committed
170
   in the titlebar to show them.
171 172
</p>

173 174

</div>