Am 05. Oct, 2006 schwätzte George Toft so:

> Requirements:
> 1. Deleted files (say, qmail messages after pickup) are shredded upon
> deletion.  Immediately upon delete.  Since an application is performing
> the delete, I must assume "rm" is not being issued, so I can't
> substitute "shred" in its place.

If you really want the data shredded I'd think you'll likely need to work
at the fs level for journalled filesystems.

Maybe there's a reiserfs module for shredding deleted data?

> 2. Files owned by vpopmail:vchkpw can only be read by said user:group -
> this includes root.  We need to lock root (and every other user) out of
> the messages.

Don't forget all the places the data might be such as in the network
stack, in memory, etc.

> 3. Encrypted file system to defend against physical theft.

Any that do shredding upon delete?

ciao,

der.hans
-- 
#  https://www.LuftHans.com/        http://www.CiscoLearning.org/
#  Join the League of Professional System Administrators! https://LOPSA.org/
#  "It is appallingly obvious that our technology exceeds our humanity."
#   -- Einstein