Re: zero filling a storage device (was: dd and mbr)
Date: Fri, 14 Jan 2022 18:53:07 UTC
On 1/14/22 09:10, Ralf Mardorf wrote: > On Fri, 14 Jan 2022 18:00:39 +0100, Ralf Mardorf wrote: >> Hi, >> >> zero filling is fishy for several reasons. It's never secure! >> However, I won't comment zero filling. I'm not an expert and to lazy to >> search for links. >> >> Related to the addressable blocks and real physical locations I've got >> a link at hand. >> >> On Fri, 14 Jan 2022 15:55:58 +1100, Greg 'groggy' Lehey wrote: >>> proof of the contrary >> Due to >> https://en.wikipedia.org/wiki/Wear_leveling >> the only way that could be (but not necessarily is) secure, is a secure >> erase command provided by the firmware. >> >> Regards, >> Ralf > PS: IIRC SSDs provide more disk space under the hood, than accessible by > a user. So you can't outwit wear leveling by overwriting the complete > disk. Probably it's still better to overwrite the complete accessible > disk space, than not to do so. > it depends on device but this is a common practice for low latency key/value stores like Aerospike. granted apps making using this have to have pretty specific knowledge of the underlying SSD device to fully exploit any latency gains. The industry term is Over-Provisioning: https://www.samsung.com/semiconductor/global.semi.static/S190311-SAMSUNG-Memory-Over-Provisioning-White-paper.pdf https://docs.aerospike.com/operations/plan/ssd/ssd_op -p -- Pete Wright pete@nomadlogic.org @nomadlogicLA