Unsafe Disposal of Digital Signatures

Question

Unsafe Disposal of Digital Signatures

Closed this issue 3 years ago · 2 comments

The grub-unsign command uses rm to dispose of outdated digital signatures. This is not a good practice for signatures that should not be used anymore. The shred --remove=unlink command might be better suited to dispose of the signatures.

A small problem with the shred command is that it uses the disk more than rm.

Answer 1 · 2021-07-22T21:04:57.000Z

Hey, I agree with that idea. I'll throw it in.

Answer 2 · 2021-07-22T21:17:24.000Z

Fixed in c7b049c