- doc
- encryption and privacy
- Securely deleting files and clean diskspace
Why use secure deletion?
سیستمعاملها هنگام پاک کردن فایلها محتوای آنها را کامل از بین نمیبرند، حتی پس از خالی کردن سطل آشغال رایانه یا پاک کردن فایل از راههای دیگر مانند استفاده از خط فرمان.
Instead, they simply remove the file's entry from the file system directory, because this requires less work and is therefore faster. The contents of the file—the actual data—remain on the storage medium. The data will remain there until the operating system reuses the space for new data.
به همین ترتیب فرمت کردن دوباره، پارتیشنبندی یا گرفتن تصویر دوباره از رایانه همیشه تضمینکنندهٔ پاک کردن تمام نقاط دیسک نیست، با این که با انجام دادن هر کدام از آنها از نظر نرمافزار این طور به نظر میآید که دیسک خالی است؛ یا در مورد گرفتن ایمج دوباره، دیسک به جز فایلهای موجود در تصویر خالی است.
Finally, even when the storage medium is overwritten, physical properties of the medium might make it possible to recover the previous contents. In most cases however, this recovery is not possible by just reading from the storage device in the usual way, but requires using laboratory techniques such as disassembling the device and directly accessing/reading from its components.
To learn more, see the Wikipedia article on data erasure.
Warning about USB sticks and SSDs
Secure deletion is not as reliable on USB sticks and SSDs (solid-state drive) as it is on traditional hard disks.
USB sticks and SSDs sometimes copy the same data to various memory cells to extend the lifetime of the device. USB sticks and SSDs also have 10–20% of spare memory cells for the same reason.
As a consequence, part of the data from a given file might still be written on the device even after securely deleting it.
This data could be recovered using advanced data forensics techniques, for example by professional data recovery services.
To mitigate this risk, you can:
Encrypt the device before use, to make it hard to recover any data.
Securely delete the entire device. Some old data might still be present in the spare memory cells.
Physically destroy the device.
Securely deleting files
Securely deleting files does not erase the potential backup copies of the file (for example LibreOffice creates backup copies that allow you to recover your work in case LibreOffice stops responding).
Open the Files browser.
به پوشهای بروید که فایلهایی که میخواهید پاک کنید در آن هستند.
فایلها را که میخواهید پاک کنید با موشواره انتخاب کنید.
Right-click (on Mac, click with two fingers) on the files and choose
.تأیید کنید.
The deletion will start. It can last from a few seconds to several minutes, according to the size of the files. Be patient…
Securely cleaning available disk space
همچنین میتوان برای پاک کردن محتویات تمام فایلها که پیش از این حذف شده بودند اما به طور امن پاک نشده بودند، به طور امن تمام فضای خالی دیسک را پاک کرد.
The disk or the folder can contain other files. Those files will not be deleted during the operation.
Open the Files browser.
دیسکی که میخواهید پاک کنید را از سمت راست انتخاب کنید تا به روت دیسک برسید.
Click on the
button in the right corner of the title bar and choose Show Hidden Files.
If you want to empty the trash, delete the .Trash-1000 folder or similar.
Right-click (on Mac, click with two fingers) in empty space in the right pane and choose
.تأیید کنید.
The cleaning starts. It can last from a few minutes to a few hours, according to the size of the available diskspace. Be patient…
Note that a file with a name similar to tmp.7JwHAyBvA9 is created in the folder. It is made as big as possible to use all the available diskspace and then securely deleted.
Securely erasing an entire device
Open the Disks utility.
All the current storage devices are listed in the left pane.
Plug in the USB stick or SSD that you want to securely delete.
A new device appears in the list of storage devices. Click on it:
Check that the description of the device on the right side of the screen corresponds to your device: its brand, its size, etc.
Click on the Format Disk… to erase all the existing partitions on the device.
button in the titlebar and chooseIn the Format Disk dialog:
Choose to Overwrite existing data with zeroes in the Erase menu.
Choose Compatible with all systems and devices (MBR/DOS) in the Partitioning menu.
Click Format….
In the confirmation dialog, make sure that the device is correct. Click Format to confirm.