Eraser, Far as I can see, only overwrite clustertips and free space. (Should it do more, please ignore this posting. [
])
Also, as stated in the related papers, a one-pass overwrite may not be enough to stop recovery by physical examination of the drive.
If I delete a file the old-fashioned way and my system then overwrites the sector with a new file, this exactly constitutes a one-pass overwriting of the old file. However, this sector will not be touched by Eraser, and so the old file remains vulnerable to physical recovery.
To overcome this vulnerability, you might take a backup of your HD, then use the Nuke-disk in dos to erase everything, put the files back and from that day on always use "erase recyclebin" instead of emptying it.
But alas, something still slips through. files may be deleted by a program (internet cache for instance) not passing through the recycle bin or files may simply shrink in size, leaving behind an unused sector that gets occupied by a new file before a scheduled ERASER-run has been performed.
Given that scheduling a Nuke-disk wipeout and reinstallation on a daily basis is unappealing from a practical viewpoint, maybe theres a need for a file-rewrite feature? This weakness might be a small one, but since most other erasing-programs dont seem to do this either, Eraser has a chance to get ahead of the competition here [8D]
Possible method:
When cleaning file F, Eraser creates a swapfile where file F is copied into. The contents of F is then overwritten with a given algorithm before F is written back in its old place. Note that simply writing F into the same sector several times over dosnt give the same security (no randomness). The files to perform this on could be selected based on their "last modified" property, making this a relatively quick operation for scheduling.
Youll probably note weaknesses in this method, particularly how a file can get "lost in limbo" if the machine crashes during the operation, but Im just tossing this in as a proof-of-concept.
Maybe you can make the system move the file to an empty and previously cleaned sector? such moving around happens all the time on a sector-to-sector basis during defragmentation.
Your devoted Eraser-user
Lauritz
])Also, as stated in the related papers, a one-pass overwrite may not be enough to stop recovery by physical examination of the drive.
If I delete a file the old-fashioned way and my system then overwrites the sector with a new file, this exactly constitutes a one-pass overwriting of the old file. However, this sector will not be touched by Eraser, and so the old file remains vulnerable to physical recovery.
To overcome this vulnerability, you might take a backup of your HD, then use the Nuke-disk in dos to erase everything, put the files back and from that day on always use "erase recyclebin" instead of emptying it.
But alas, something still slips through. files may be deleted by a program (internet cache for instance) not passing through the recycle bin or files may simply shrink in size, leaving behind an unused sector that gets occupied by a new file before a scheduled ERASER-run has been performed.
Given that scheduling a Nuke-disk wipeout and reinstallation on a daily basis is unappealing from a practical viewpoint, maybe theres a need for a file-rewrite feature? This weakness might be a small one, but since most other erasing-programs dont seem to do this either, Eraser has a chance to get ahead of the competition here [8D]
Possible method:
When cleaning file F, Eraser creates a swapfile where file F is copied into. The contents of F is then overwritten with a given algorithm before F is written back in its old place. Note that simply writing F into the same sector several times over dosnt give the same security (no randomness). The files to perform this on could be selected based on their "last modified" property, making this a relatively quick operation for scheduling.
Youll probably note weaknesses in this method, particularly how a file can get "lost in limbo" if the machine crashes during the operation, but Im just tossing this in as a proof-of-concept.
Maybe you can make the system move the file to an empty and previously cleaned sector? such moving around happens all the time on a sector-to-sector basis during defragmentation.
Your devoted Eraser-user
Lauritz
]