Bug 437170

Summary: RFE: wipe swap on exit
Product: [Fedora] Fedora Reporter: Ray Todd Stevens <raytodd>
Component: cryptsetup-luksAssignee: Peter Jones <pjones>
Status: CLOSED NOTABUG QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: low Docs Contact:
Priority: low    
Version: rawhideCC: agk, dwysocha, mbroz, opensource, prockai
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2008-03-12 19:25:51 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Ray Todd Stevens 2008-03-12 18:40:09 UTC 
I am generally really liking the encrypted volume thing.   But I see a serious
security hole.   Yes it sure looks like getting into these volumes after a
shutdown (and they are closed) looks impossible.   But as the processes run they
will be used the swap file (which is not encrypted).   So on shutdown some small
pieces of the information on the volumes will be stored there.

How about an option to wipe the swap area by overwriting it on exist.  
Basically one off the last steps of shutdown would be to clear this area by
overwriting it, so that confidential data would be be able to be found there.
Comment 1 Bill Nottingham 2008-03-12 19:25:43 UTC 
If you want this, it's probably best to just set up swap as encrypted - that is
supported.