Feature #5323

Better way to wipe Flash media

Added by Tails almost 4 years ago. Updated 7 months ago.

Status:ConfirmedStart date:
Priority:NormalDue date:
Assignee:spriver% Done:


Target version:-
QA Check:Info Needed Blueprint:
Feature Branch: Easy:No
Type of work:Communicate Affected tool:


As pointed out in the forum, former versions of our documentation on secure deletion, was wrongly stating that overwriting twice the available diskspace [on a USB or solid-state drive] is usually, but not always, sufficient to securely clean the drive.

This basically says that in order to securely delete a file from a USB you could delete the file and then the run "Wipe available diskspace" even if you have other files on the volume. Which is wrong according to the paper by Wei & al..

We could propose to wipe the entire device and then reformat it. But srm doesn't seem to run on block devices: I get "Warning: /dev/sdc is not a regular file, rename/unlink only!". On the other hand shred seems to work as usual. It is included in Tails but doesn't have a graphical interface.

So we cannot document a GUI procedure to truly wipe a USB stick at the moment.

The documentation was fixed in June.

Now that the plans for nautilus-wipe to be based on diskscrub are abandoned, the most sensible way to fix this would probably be:

  1. add an option to wipe with 3 random passes, rather than a mere zero one, to the udisks Format method
  2. add access to this feature from Palimpsest, which seems a more appropriate place to trigger destructive operations at the block device level than a Nautilus extension

Next thing to do: report this as wishlist tickets upstream.

Related issues

Related to Tails - Feature #8047: Document the wipe features of Disks In Progress 10/09/2014


#1 Updated by intrigeri over 3 years ago

  • Subject changed from wiping flash media to Better way to wipe Flash media
  • Easy set to No

#2 Updated by intrigeri almost 3 years ago

  • Type of work changed from Upstream to Communicate

#3 Updated by sajolida over 1 year ago

  • Related to Feature #8047: Document the wipe features of Disks added

#4 Updated by sajolida 7 months ago

  • Assignee set to spriver
  • QA Check set to Info Needed

I tested GNOME Disks "Format Disk... → Erase" option on a USB stick and it indeed overwrite the entire device. So we might have a solution here. Still, we need to check whether doing one pass only (zeroes) is enough on flash media (reading the paper by Wei & al again as a start). And then adapt /doc/encryption_and_privacy/secure_deletion.html.

spriver: do you want to have a look?

Also available in: Atom PDF