I am not available for this <br>(also not qualified)...<br>but I would just like to suggest <br>that no matter how scientifically you<br>&quot;shred&quot; some data,<br>when someone enters a command<br>to delete a certain message, 
<br>you might want to <span style="font-weight: bold; text-decoration: underline;">also</span>, periodically<br>(like, maybe daily or weekly)<br>copy the &quot;mailbox&quot;<br>(messages that have NOT been <br>&nbsp; deleted / shredded)
<br>to a physically different drive,<br>and then do some kind of very thorough<br>erasure (like, the low-level formatting<br>type of thing -- maybe even also use some<br>strong magnets nearby... etc.)<br>
and over-writing of the data on the old <br>
media.<br>(or - - -maybe even physically shred the <br>&nbsp; metal and disk drive media surfaces)<br>(if you can afford to buy new ones <br>&nbsp; every so often)<br>Just a suggestion, because it sounds like<br>it is really important for the &quot;ghost images&quot;
<br>of erstwhile e-mail messages, to never<br>fall in to the wrong hands.<br>-- <br>Mike Schwartz&nbsp;&nbsp;&nbsp;&nbsp;<br>Glendale&nbsp;&nbsp;AZ <br><a href="mailto:schwartz@acm.org">schwartz@acm.org</a><br><a href="mailto:Mike.L.Schwartz@gmail.com">
Mike.L.Schwartz@gmail.com</a><br><br><div><span class="gmail_quote">On 10/5/06, <b class="gmail_sendername">George Toft</b> &lt;<a href="mailto:george@georgetoft.com">george@georgetoft.com</a>&gt; wrote:</span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
Anyone up to the task of changing the source?&nbsp;&nbsp;This is a for-pay<br>project, and if you can deliver, I can put it in the proposal.<br><br>George Toft, CISSP, MSIS<br>623-203-1760<br><br>&quot;That which does not kill us makes us stronger.&quot;
<br><br><br><br>Eric &quot;Shubes&quot; wrote:<br>&gt; George Toft wrote:<br>&gt;<br>&gt;&gt;Requirements:<br>&gt;&gt;1. Deleted files (say, qmail messages after pickup) are shredded upon<br>&gt;&gt;deletion.&nbsp;&nbsp;Immediately upon delete.&nbsp;&nbsp;Since an application is performing
<br>&gt;&gt;the delete, I must assume &quot;rm&quot; is not being issued, so I can't<br>&gt;&gt;substitute &quot;shred&quot; in its place.<br>&gt;&gt;<br>&gt;&gt;2. Files owned by vpopmail:vchkpw can only be read by said user:group -
<br>&gt;&gt;this includes root.&nbsp;&nbsp;We need to lock root (and every other user) out of<br>&gt;&gt;the messages.<br>&gt;&gt;<br>&gt;&gt;3. Encrypted file system to defend against physical theft.<br>&gt;&gt;<br>&gt;&gt;<br>&gt;&gt;#3 is easy.
<br>&gt;&gt;<br>&gt;&gt;#2 sounds like a job for SELinux.&nbsp;&nbsp;Alternatives are welcome :)<br>&gt;&gt;<br>&gt;&gt;What about #1?&nbsp;&nbsp;Any ideas?<br>&gt;&gt;<br>&gt;<br>&gt; Change the source and rebuild? Should be fairly easy with qmail as it's
<br>&gt; distributed as source. Other applications might not be as easy.<br>&gt;<br>---------------------------------------------------<br>PLUG-discuss mailing list - <a href="mailto:PLUG-discuss@lists.plug.phoenix.az.us">
PLUG-discuss@lists.plug.phoenix.az.us</a><br>To subscribe, unsubscribe, or to change&nbsp;&nbsp;you mail settings:<br><a href="http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss">http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
</a><br></blockquote></div>