The current step-by-step guide recommends overwriting the storage 2 (English wiki) or 3 (German wiki) times with random numbers using the
shred program. However, as far as I'm aware, software-driven overwriting nowadays doesn't guarantee that the whole storage medium is actually deleted due to intricacies in device controllers and a deletion using the (S)ATA Secure Erase command issued to the device controller is the recommended way to delete all data on the drive in question.
I therefore wanted to ask whether there was a specific decision within the labdoo communicty to stick with the software-driven overwriting using
shred and if so, what the reasoning behind it was, or if it's just an instance of it's-the-way-we've-been-doing-things ;)
I can see the following points in favor of using shred:
- Easy to use (just issuing a terminal command, as opposed to issuing SATA Secure Erase which might require some BIOS tinkering from my experience)
- Secure enough for the use case (We probably don't expect (forensic) data recovery experts to disassemble the drive to reconstruct the data, so we can probably afford not overwriting bad sectors and such)
So, has this been discussed previously (I skimmed over this support wall but didn't see anything like it)? What is the position towards this within the community?