Securely erasing your data on Linux
Many people choose to encrypt their disk drives because it ensures that their data stays secure and safe from the prying eyes of others. I always shy away from encrypting my disk because I don’t need that security. When one of my computers reaches the end of life, or I decide to sell it, then I take special measures to ensure that all the information is erased. I am also frequently called on to help clients dispose of old computers when they purchase new ones. What do you do when selling a computer or replacing an old spinning rust drive with a newer solid-state drive? That’s when I think of securely erasing them to remove confidential information before repurposing or disposing of them.
Fundamentally, disk erasure on Linux serves as a versatile solution that tackles security, compliance, performance, and sustainability needs, catering to the varied demands of users. For individual usage or organizational requirements, disk erasure is a forward-thinking data management and information security strategy. Here are five commands to erase a disk on Linux:
Here are five command sequences to ensure that data is securely erased from your Linux data drive(s).
dd command:
This command writes zeros to the entire disk, effectively erasing all data.
$ sudo dd if=/dev/zero of=/dev/sdX bs=1Mshred command:
$ sudo shred -v /dev/sdX
The shred command overwrites the disk multiple times, making data recovery very difficult.
wipe Command:
$ sudo wipe -r /dev/sdX
The wipe command is designed to securely erase disks by overwriting them with random data.
blkdiscard Command (for SSDs):
$ sudo blkdiscard /dev/sdX
This command discards all data on the specified SSD, effectively erasing it.
parted and mkfs Commands:
$ sudo parted /dev/sdX mklabel gpt
$ sudo mkfs.ext4 /dev/sdX
Using parted to create a new partition table followed by mkfs to format the disk erases the existing data. Replace /dev/sdX with your actual disk identifier. Double-check the device identifier before running these commands to avoid accidental data loss.
More Stories
The Linux Philosophy for SysAdmins, Tenet 14 — Use Open Source software
Image by Opensource.com: CC-by-SA 4.0 Author’s note: This article is excerpted in part from chapter 16 of my book, The...
A short review of Fedora 41
Fedora 41 was released on October 29, and I installed it on my primary workstation within a few minutes after...
Essential steps for creating a USB boot drive for Linux
I usually keep a bootable Linux USB drive with me because I never know when I will need to use...
From web to client: The Mastodon experience
Mastodon is an open-source social networking platform for microblogging. While it has a web-based interface, many users prefer to use a...
How I reverted from firewalld to iptables — and why
First, let's get something straight. Linux has only one firewall. One. Netfilter is a part of the Linux kernel and...
Open WebUI: A Powerful, Open Source Interface for LLM
OpenWebUI offers a robust, feature-packed, and intuitive self-Hosted interface that operates seamlessly offline. It supports various large language models like...