A file system is a way of organizing information on a storage device like a computer hard drive.
A file system is a way of organizing information on a storage device like a computer hard drive.
Questions tagged [file-system]
201 questions
12
votes
2 answers
What are the dangers of storing webserver temp files in the /tmp/ folder?
I have configured my first publicly accessible nginx server. I have configured it to use a /tmp/nginx folder to store temp files. This includes the body of http requests, proxy files etc. The /tmp folder is on external partition with nosuid,…
Galmi
- 223
- 2
- 5
11
votes
3 answers
What prevents this exploit from working (unix SUID)?
If I have a user on a unix system where Im allowed to create new files, what prevents me from downloading an executable file onto that system which is already SUID'ed to root on a different system?
Scenario:
I'm logged into a shell with my user…
Chris Dale
- 16,119
- 10
- 56
- 97
10
votes
2 answers
How can I identify / discover files hidden with ADS?
ADS, or alternate data streams, were added in to Windows in 1993 (First Windows NT version) as a feature of the new NTFS file system to help support some features of the Mac OS at the time. I like to read about security stuff, and I recently read…
cutrightjm
- 1,714
- 4
- 18
- 31
9
votes
3 answers
Finding artifacts of software
I was wondering if there is an established way to know what a running particular program on a system might leave behind (in terms of changes to a filesystem, such as in Linux). I am thinking of this in similar lines to how I think a forensics…
user45195
- 137
- 3
9
votes
8 answers
Overwriting hard drive to securely delete a file?
I am working on a computer that I am not allowed to install new software on. It does not have secure delete software installed. Suppose I have a file (or files) that are sensitive that I'd like to delete and prevent (or make it very difficult) to…
Drew
- 107
- 1
- 1
- 2
9
votes
2 answers
Best way for a hacker to hide a file on Linux?
Suppose a hacker obtains a shell on my Linux host and wants to hide a file. What's the best way for him to do this? You may assume unprivileged or root access.
My thoughts are
Use a .file filename (pretty easy to find these of course)
Write a…
Fixee
- 1,545
- 2
- 15
- 24
8
votes
1 answer
Anonymity of sneakernet: identifiable information on removable storage
Alice, an anonymous informant, would like to transmit digital documents to Bob while maintaining her anonymity.
For whatever reason, she chooses to copy the documents to some kind of physical removable storage, for example: USB flash drives,…
twisteroid ambassador
- 771
- 4
- 6
8
votes
3 answers
Secure cleaning of deleted files
So I know how to secure delete files. But at our company, we have a laptop which had many important documents, which now have been deleted, but not in a secure way.
We can't perform a full format of the disk since it would be a complex task to…
John
- 81
- 1
8
votes
3 answers
Can someone tell if you delete deleted files?
I am aware that to delete something completely we will have to use a program that over-writes the deleted file such that it is unrecoverable.
Is there anyway to tell that this has happened? Or is the resultant state so random that no one can tell…
Pacerier
- 3,253
- 6
- 34
- 61
8
votes
2 answers
Are there any filesystems that have secure deletion as a feature?
There's many 3rd party tools people have designed to perform secure deletion, but I don't know of any filesystems where secure deletion is built in. In fact, secure deletion has to work around features of filesystems like journaling that…
Steve Sether
- 21,480
- 8
- 50
- 76
8
votes
2 answers
How can I view the NTFS $MFT using correct field names?
I am trying to view an NTFS master file table. Each tool I have used so far extracts all of the entries, but puts non standard headers such as STANDARD_INFORMATION_ON instead of say $STANDARD_INFORMATION.
I have tried MFT2CSV, ntfswalk64, and…
Ninja2k
- 301
- 1
- 4
- 12
8
votes
1 answer
Database encryption or filesystem encryption?
Recently I've been working on some data which, although not directly governed by any infosec laws, is sensitive enough to warrant being encrypted. I'm interested in finding out about best practises with regards to storage of such data, in particular…
Richard Keller
- 183
- 1
- 4
8
votes
3 answers
Why are file URLs marked as not secure while HTTPS URLs are marked as secure in browsers?
I understand that modern HTTPS protocols are secure enough for an average user.
However, since these protocols need to fetch files from the server while the file protocol just tells the browser to find the file in your computer, I think file…
freezable
- 118
- 8
8
votes
9 answers
Is there a file system that doesn't support encryption?
I would prefer that no one, even me, could encrypt my files. I have no use for it, and don't want it.
Is there a way to permanently disable any sort of encryption at the OS level?
If not, is this a possible improvement that a future file system…
Thomas Roy
- 359
- 1
- 2
- 4
7
votes
3 answers
How effective is something like Deep Freeze against boot sector infections?
I work for an embedded system manufacturer and on our older generation systems, which are powered by Windows Embedded, a number of customers have been experiencing virus infections. Due to the real time nature of these systems, anti-virus solutions…
Stephen
- 173
- 5