[PATCH v2] modsign: use shred to overwrite the private key before deleting it

From: Alexander Holler
Date: Sat Jan 24 2015 - 05:46:24 EST

Next message: Jim Keir: "Re: [PATCH 2/2] Fix force effect modifications for the Microsoft Sidewinder Force Feedback Pro 2 joystick"
Previous message: Wincy Van: "[PATCH v3 6/6] KVM: nVMX: Enable nested posted interrupt processing."
Next in thread: Alexander Holler: "Re: [PATCH v2] modsign: use shred to overwrite the private key before deleting it"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This is for the more paranoid people, also it's
questionable what paranoid nowadays means.

It uses shred, in the hope it will somedays learn how to shred stuff on
FLASH based devices securely too, once that has become possible.

Signed-off-by: Alexander Holler <holler@xxxxxxxxxxxxx>
---
Makefile | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/Makefile b/Makefile
index 7ad66de..733421b 100644
--- a/Makefile
+++ b/Makefile
@@ -1132,7 +1132,7 @@ ifeq ($(CONFIG_MODULE_SIG_THROW_AWAY), y)
@echo "###"
@echo "### Deleting key used to sign modules."
@echo "###"
- @rm ./signing_key.priv
+ @shred -n1 -u ./signing_key.priv
@rm ./signing_key.x509
endif

--
2.1.0

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Jim Keir: "Re: [PATCH 2/2] Fix force effect modifications for the Microsoft Sidewinder Force Feedback Pro 2 joystick"
Previous message: Wincy Van: "[PATCH v3 6/6] KVM: nVMX: Enable nested posted interrupt processing."
Next in thread: Alexander Holler: "Re: [PATCH v2] modsign: use shred to overwrite the private key before deleting it"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]