Home > Security Guide > dd or scrub, which is better for throwing random bits at your hard drive?

dd or scrub, which is better for throwing random bits at your hard drive?


The other day I received a note on IRC asking for a change to the Fedora Security Guide.  The change would be on the LUKS procedure, specifically the process for writing random bits to the hard drive before putting the encrypted partition on top.

Because my current schedule doesn’t allow for research I was hoping others could help me determine if scrub is a valid replacement for dd.  Specifically if scrub is faster without hurting security.

I believe the command for scrub is:
scrub -f -S -p random -b 8M /dev/md0
which would replace the dd command:
dd if=/dev/urandom of=/dev/

Anyone have any comments?

Advertisements
Categories: Security Guide
  1. No comments yet.
  1. No trackbacks yet.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s