Re: Iceweasel 2.0.0.5 and /dev/hda

To: debian-user@lists.debian.org
Subject: Re: Iceweasel 2.0.0.5 and /dev/hda
From: Douglas Allan Tutty <dtutty@porchlight.ca>
Date: Thu, 2 Aug 2007 08:42:27 -0400
Message-id: <[🔎] 20070802124227.GA8690@titan>
Mail-followup-to: debian-user@lists.debian.org
In-reply-to: <[🔎] f8rvh5$ub$1@sea.gmane.org>
References: <[🔎] f8rvh5$ub$1@sea.gmane.org>

On Thu, Aug 02, 2007 at 07:01:57AM +0000, Steven wrote:

> Also, if I `dd if=/dev/hda of=test bs=512 count=16384 && strings -a test 
> | less` I see several explicit module paths, a reference to an old kernel 
> which isn't on the system anymore (that I know of), and what looks like 
> an irc proxy.
> 

[snip related to iceweasel]  I don't know.  Perhaps you should get the
iceweasel source and search for the strings of interest and see why
they're there.

> The relevant output from dd /dev/hda:
> 
[snip]

What is the question re /dev/hda?  'deleting' a file on a filesystem
simply removes the file name out of a directory listing and marks the
inodes as free.  The data is still left on the drive untill written
over.  Actually, even after being written over its still possible to
retrieve it forensically.  

What you are showing is a prime example of why its a good idea to have
an encrypted swap and /tmp on tmpfs so that nothing from memory or /tmp
can end up on the drive enclare.

Doug.

Reply to:

References:
- Iceweasel 2.0.0.5 and /dev/hda
  - From: Steven <hairpinblue@yahoo.com>

Prev by Date: Re: kde command line desktop switching
Next by Date: Re: Ownership Question
Previous by thread: Iceweasel 2.0.0.5 and /dev/hda
Next by thread: Ownership Question
Index(es):
- Date
- Thread