Unsafe Disposal of Digital Signatures
Closed this issue · 2 comments
5265644D61736F6E commented
The grub-unsign
command uses rm
to dispose of outdated digital signatures. This is not a good practice for signatures that should not be used anymore. The shred --remove=unlink
command might be better suited to dispose of the signatures.
A small problem with the shred
command is that it uses the disk more than rm
.
Bandie commented
Hey, I agree with that idea. I'll throw it in.