Tag: security

Posted on

Ensuring Data Security Through Disk Erasure

Many people choose to encrypt their disk drives because it is one way of ensuring that your data stays secure and safe from the prying eyes of others. I always shy away from encrypting my disk because I don’t have theneed for that kind of security. When one of my computers reaches end or life or I decide to sell it then I take special measures to ensure that all the information is erased. II am also frequently called on to help clients to help them dispose of an old computer when they purchase a new one. What do you do when selling a computer or replacing an old spinning rust drive with a newer solid state drive? That’s when I think of securely erasing them to ensure that confidential information is removed before repurposing or disposing of them. 

Fundamentally, disk erasure on Linux serves as a versatile solution that tackles security, compliance, performance, and sustainability needs, catering to the varied demands of users. Whether for individual usage or organizational requirements, disk erasure is a forward-thinking strategy in data management and information security.Here are five commands to erase a disk on Linux:

Here are five command sequences to ensure that data is securely erased from your Linux data drive(s).

dd command:

$ sudo dd if=/dev/zero of=/dev/sdX bs=1M

This command writes zeros to the entire disk, effectively erasing all data.

shred command:

$ sudo shred -v /dev/sdX

The shred command overwrites the disk multiple times, making data recovery very difficult.

wipe Command:

$ sudo wipe -r /dev/sdX

The wipe command is designed to securely erase disks by overwriting them with random data.

blkdiscard Command (for SSDs):

$ sudo blkdiscard /dev/sdX

This command discards all data on the specified SSD, effectively erasing it.

parted and mkfs Commands:

$ sudo parted /dev/sdX mklabel gpt
$ sudo mkfs.ext4 /dev/sdX

Using parted to create a new partition table followed by mkfs to format the disk erases the existing data.

Replace /dev/sdX with your actual disk identifier. Always double-check the device identifier before running any of these commands to avoid accidental data loss.

Posted on

Why Flatpaks on Linux Make Sense for Users

Introduction

Linux is celebrated for its flexibility and customization options. However, one aspect that has historically presented challenges for users is software installation and management. Thankfully, the advent of Flatpak has revolutionized the Linux ecosystem, offering a solution that simplifies software deployment and enhances user experience.

Streamlined Software Distribution

Flatpak, a universal package management system, allows users to install and update software from a central repository effortlessly—no need to look for the latest package or manually resolve complex dependencies. With Flatpaks, you no longer need to worry about conflicting library versions or package compatibility issues, as applications are bundled with all their necessary dependencies, creating a self-contained environment. This streamlined software distribution ensures a seamless experience, freeing users from the burdensome tasks of dependency hunting and manual installation.

Enhanced Security

Computer users ‘ security is a paramount concern, and Flatpaks significantly boosts this area. By encapsulating applications and their dependencies within sandboxes, Flatpak offers a layer of isolation that helps prevent software vulnerabilities from compromising the entire system. Each Flatpak runs in its container, limiting its access to system resources and ensuring any potential security breaches remain within the sandbox. Moreover, with frequent updates and security patches available through the central repository, users can easily stay protected against emerging threats.

Application Portability

One of the standout advantages of Flatpak is its ability to run applications consistently across different Linux distributions. By packaging applications with their necessary libraries, Flatpaks eliminate compatibility issues and allow users to enjoy their favorite software regardless of the underlying distribution. This application portability level dramatically simplifies switching between different Linux flavors or even sharing applications with friends and colleagues. With Flatpak, you can say goodbye to the frustrating search for software that works on your specific distribution.

Isolated Environments for Testing

Flatpak provides an excellent environment for testing new software without the risk of destabilizing your system. Creating isolated application sandboxes allows you to freely experiment with beta versions, bleeding-edge releases, or even unfamiliar software without worrying about potential conflicts or unintended consequences. This remote testing environment safeguards your system from potential harm and allows you to explore and discover new software confidently.

Community-driven Collaboration

Flatpak is an open-source project that benefits from a thriving community of developers and enthusiasts. This collaborative ecosystem ensures a wide variety of software is available in Flatpak format, with developers actively contributing to the central repository. Moreover, Flatpak empowers users to provide feedback, report bugs, and even contribute to the packaging efforts, fostering a sense of ownership and community participation. By embracing Flatpak, users become part of a more significant movement that aims to enhance the Linux experience for everyone.

Conclusion

In conclusion, adopting Flatpaks on Linux offers users various compelling advantages. From streamlined software distribution to enhanced security and application portability, Flatpak simplifies the once-complex landscape of software management on Linux. With isolated testing environments and a vibrant community-driven ecosystem, Flatpak paves the way for a more user-friendly and inclusive Linux experience. 

This article was written with an assist from ChatGPT.

Posted on

Are you looking for a password manager?

Are you looking for a password manager? Password managers abound and many are open source. Which one will you choose? I was letting a browser store my passwords until an upgrade to my system left my browser based solution wanting. That’s when I started looking for a password manager. I looked in the software store of my Linux distribution. I downloaded and tried out a number of them. That list included Keepassx, Keepass2.and Bitwarden. Then I opted for a free proprietary solution. That worked until recently when the free solution put some conditions on the use of their product. 

Last week while listening to Linux Unplugged I heard Chris Fisher recommend Bitwarden. Hindsight is 20/20 and now I wonder why I didn’t choose Bitwarden in the first place. There is value in making mistakes and learning from them. I like that I can install Bitwarden on my computer and have it backed up in the cloud or in my own self hosted solution

The software runs on Windows, MacOS and Linux. You can integrate Bitwarden into your favorite web browser and that list includes Firefox, Chrome, Opera, Safari, Microsoft Edge and others. Bitwarden is mobile too. You can download it for iOS and Android. You can opt to install the software from the command line too. I like that I can access Bitwarden from any computer via the web vault too. I love that the data is fully encrypted end to end with AES-256. Learn more about Bitwarden’s security resources

You can create a Bitwarden account for free. Bitwarden is open source and released under GPL v. 3.0.  You can easily inspect the code. The Bitwarden community is vibrant and it is easy to become a part of that by visiting their forum to learn more about the software and pose questions. You can follow Bitwarden on Twitter and Reddit. The project maintains excellent documentation to help you use it well. 

What is your favorite open source password management solution?

Posted on

Free Software for Windows

I’m frequently called as I was this morning to support Windows computers. Many of those calls come from senior citizens as was the case this morning. The fellow was running Windows 7 and had recently purchased virus protection for it. He didn’t know how to install it and had called me to do that for him. That’s when I used Ninite to help him out. One of the Windows 7 options is to install Microsoft Security Essentials. Though Windows 7 reached end of life in January 2020 , MSE lives on and will continue to be updated. I told the chap that I wouldn’t recommend using the computer for secure transactions. I suggested that I could install Linux on the computer for him if he wanted to do that. I explained to him that I could easily install Linux on his computer and then short of hardware failure he’d have a viable desktop PC for the foreseeable future. He was tickled to be able to return the unopened antivirus software that he had purchased for $85 at a local store.

I recommend Ninite for much more than security software too. It’s a great collection of easily installable free software. Many of the titles are FOSS projects like LibreOffice which is my own “go-to” office suite.