tomb

the crypto undertaker
git clone git://parazyd.org/tomb.git
Log | Files | Refs | README | LICENSE
commit 482c4086093d326752a5d5edabbe563db9842286
parent d079876e0844073dec6a5bc369b3ade000e58b4c
Author: Jaromil <jaromil@dyne.org>
Date:   Tue, 11 Jan 2011 19:27:30 +0100

safe wipe of created temp key file

Diffstat:

Msrc/tomb | 10+++++++++-


1 file changed, 9 insertions(+), 1 deletion(-)

diff --git a/src/tomb b/src/tomb
@@ -47,6 +47,14 @@ else
     DD=dd
 fi
 
+# which wipe command to use
+which wipe > /dev/null
+if [ $? = 0 ]; then
+    WIPE="wipe -f -s -q"
+else
+    WIPE="rm -f"
+fi
+
 # usb auto detect
 # tested on ubuntu 10.04 - please test and patch on other systems if you can
 ask_usbkey() {
@@ -250,7 +258,7 @@ create_tomb() {
  
     
     cryptsetup --key-file ${keytmp} --cipher aes luksOpen ${nstloop} tomb.tmp
-    rm -f ${keytmp}
+    $WIPE ${keytmp}
 
     notice "Your tomb is read on ${FILE} and secured with key ${FILE}.gpg"
     act "now plug an external usb device to save the key separately:"