LibSecRm
Libsecrm (LIBrary for SECure ReMoval) is a library which partially
(read below for limitations)
ensures secure data deleting by intercepting calls to some C library functions and
replacing them by its own substitutes.
The data that would be deleted from a file is first securely wiped, then the
original functions are called.
Libsecrm partially also takes care about memory security - some of the memory
allocation functions are intercepted, and the allocated memory is wiped before
passing it to the calling program.
Requirements for compiling:
- a non-root account. Please, NEVER compile or 'make' anything as root.
- a working C compiler
- development package for the C library (like glibc-devel and glibc-headers)
with the signal.h and (especially) fcntl.h, unistd.h and sys/stat.h headers.
The unistd.h contains functions needed for wiping to work at all. Nothing
will be done if this file is missing.
The sys/stat.h contains functions needed to check the wiped object's type.
Libsecrm will wipe only regular files. If this file is missing, nothing can
be wiped.
The dlfcn.h header contains functions needed to call the original functions.
It has to have RTLD_NEXT defined. Libsecrm wouldn't work without this, so it
won't compile without this.
The fcntl header has functions needed to prevent wiping files that are
set to be deleted, but still open. It has to have F_SETLEASE, F_GETSIG and
F_SETSIG defined in it (this is available on GNU/Linux, but may not be
available everywhere) for this feature to work.
Libsecrm will work without this, but strange things may happen. If you don't
have this, put /bin/bash in the program ban file and "ICE" (without the
double quotes) in the file ban file (read the "Manual configuration" chapter
in the "info" documentation).
- libdl, the dynamic loading library, with its development package
(unless the required functions are in the C library)
- the 'make' program
Type './configure' to configure the program for your system.
Type 'make' to compile the program.
Documentation comes complied (and can be copied right away), but can be changed
and recompiled, if you have the 'makeinfo' program ('texinfo' package).
Type 'make install' to install the program. Read the docs on how to make the program running.
Type 'info libsecrm' (after installation) or 'info doc/libsecrm.info'
(before installation) to get help.
RPM dependencies:
Libsecrm has been added to
Softpedia Mac and
Softpedia Linux.
THE LIBRARY HAS BEEN TESTED, BUT IT MAY NOW OR LATER CONTAIN ERRORS, WHICH MAY LEAD TO
UNINTENTIONAL DATA LOSS. READ THE LICENSE FOR A WARRANTY (THERE IS NONE).
Limitations
Libsecrm can do nothing if:
- The program using libsecrm has no write permissions to the file
- A program is using direct kernel calls, filesystem calls or non-standard calls,
thus bypassing even the C library
- Libsecrm is not loaded (read the "Installing" chapter in the "info" docs).
- A program is linked statically (so it doesn't use shared libraries and has all
the functions compiled in it).
- The operating system doesn't support shared libraries (like DOS)
- The operating system doesn't support preloading shared libraries before system libraries.
Screenshots of LibSecRm
Available at SourceForge.
System compatibility
LibSecRm compiles on the following systems:
- Fedora Core 4 GNU/Linux (i686 CPU)
- Mandriva 2008.1 GNU/Linux (i686 CPU)
- OpenBSD 3.8 (x86 CPU)
Download LibSecRm
Current version is 1.3.
Download this at SourceForge.
My other software
Check out Wipe Free Space and JYMAG on SourceForge.
See my other free software:
- Wipe Free Space - a program for cleaning of free space on filesystems
- KonqSec - a set of Konqueror security-related context menu entries
- JYMAG - a program for Sagem mobile phones
- LibHideIP - a security wrapper library for C library functions which could lead to revealing
your local IP address
- IMYplay - a program for playing iMelody ringtones (IMY files) and an IMY-to-MIDI converter
See also my assembly-related free software:
- AsmDoc - a HTML documentation generator for assembly language
- source converters between NASM, FASM and GAS
- C header to assembly header converters
- Kate/KWrite syntax highlighting for NASM/FASM
- some FASM macros
- Makefile generator for FASM
- Linux 2.6 kernel module helper for FASM
- A set of Autoconf macros
- Assembly converter for Doxygen
- Asm::X86 Perl module
My GPG/PGP key
GnuPG/PGP key used to sign the packages:
asc format
Number: 1C56DA1E, SHA1 fingerprint: E91E 699F 1026 D0EF 745E EC3B 353A D368 1C56 DA1E
Contact info
Contact me: bogdro AT users . sourceforge . net (English accepted, just say '[SOFT]' in the title).
GnuPG/PGP key the same as above.
Page info
This page is hosted at SourceForge.net.
This page is written using valid
HTML 4.01
![[Check my HTML 4.01]](valid-html401.png)
,
![[Checked by HTML Validator (based on HTML Tidy)]](tidy_32.png)
, for all browsers:
![[For all browsers]](anybrows.png)
This page uses a valid
CSS
![[Check my CSS]](valid-css.png)
This page doesn't use GIF images
and doesn't use JPG images.
This page is JavaScript-free, Java-free and Flash-free.