In a recent newsletter 8 Feb 2023 Abhishek wrote about /dev/null as the Black Hole of Linux see What is /dev/null in Linux?
and this got me thinking about data security issues. I suspect that sending data to /dev/null is like sending it to a black hole at least after the system is powered down and the data no longer exists in RAM.
What happens when data is deleted from a file manager or by command rm? I suspect that the inode is deleted but the file can be recovered by a file recovery app so this is more like Hawkins black hole where information is preserved. Presumably the “deleted” files would be over-written eventually as other files are created but could exist for some time. I handle a few files received from other people containing sensitive information so when I have finished with them I shred them so that the information is lost, I hope.
The sensitive documents I handle are often received as attachments to emails. What happens when these emails and attachments are deleted eg from Thunderbird? I suspect that these files are recoverable. It is difficult to access specific emails and attachments other than through the Thunderbird menues so they cannot easily be shredded. Is there a way of shredding these files?
The small amount of sensitive data I deal with is unlikely to attract the attention of a sophisticated hacker so as a careful user and the usual precautions it seems unlikely that the “deleted” files would be accessed via malware. However if the PC/laptop was stolen a hacker would have unlimited time to recover “deleted” files using readily available file recovery apps.
Are these scenarios eg prolonged access to the PC/laptop, and subsequent stealing of sensitive data realistic? If so what are the alternatives for ensuring safety of data? What should I recommend to a colleague handling the same sensitive data who is not very computer literate and who uses Win10?
I think encrypting your disk is about the only workable solution. Then everything is protected automatically.
To have to chase individual files and scrub them is too much of a burden . Just protect everything.
It is possible to have encrypted email. My understanding is the two parties have to cooperate to achieve this. I dont know the details. Maybe someone else can elaborate.
I think what @nevj suggested makes a lot of sense.
Yes, quite right.
From personal experience I may say convincing the other party to setup encryption is the most difficult part.
OpenPGP, which is used by thunderbird comes with its own key management tools and it´s really easy to set up.
You can create the key pair (public and private key) without difficulties and providing the public (!) key to the other party is done either by uploading it to a public keyserver or (better still:) by sending it via an attachment.
Once the other party involved does the same and you have his/her public (!) key imported it´s super-easy to exchange encrypred e-mails.
Plus: if I´m not completely mistaken all attachments you send with the e-mail are also encrypted.
I guess that´s a completely differnt case then. Any person with (physical) access to the laptop would be able to decrypt encrypted e-mails together with their attachments as the key pair is stored locally…
So I guess that´s not the answer @Clivegg12 is looking for. Sorry.
Apart from that: it´s a splendid idea to encrypt e-mails (if you can talk the other party into using it as well).
Those .msf files are just indexes, so it´s the Aldi Talk file itself which contains the new mail.
This file - accorfing to the file command - is:
file Aldi\ Talk
Aldi Talk: Unicode text, UTF-8 text, with CRLF, LF line terminators
but trying to make any sense of its contents (and even modifying it) with the help of a text editor would be a futile attempt, I guess. It´s hard to impossible to make any sense of the mostly encrypted content. It´ll come across simply as gibberish… .
Hi Rosika and Neville many thanks for all the effort you have put in to the replies.
I should have mentioned that the sensitive emails I am concerned about may come from any of about 20 people so email encryption is a non starter.
Rosika’s explanation of the Thunderbird file structure prompted me to have a closer look at that. I sent myself an email with just ‘zzzzzzzz’ as subject and contents. went to the pop.gmail.com folder and did “grep -ir zzzzzzzz .” . Initially the email was found in the Inbox on lines with Subject and showing contents and also referenced in the .msf file. I then moved the message to “folderX” and grepped again. The message still appeared in the Inbox as Subject and contents and present in the .msf file but somewhere there must be a change to indicate that it does not display. The message also appears as expected in the “folderX” I then deleted it from folderX and grepped again when it appeared in Inbox, folderX and Trash. After deleting from Trash the message was still referenced in all three folders but of course the .msf files had been changed so that it does not display. Finally I compacted the emails when all references to the message were removed.
It seems that emails must be compacted to remove all copies of a message from the email folders but after compacting those copies are now in the state of Hawkins black hole ie the information will still remain until it is over-written.
It would be possible to extract the sensitive emails from the pop files but it may be more trouble than its worth. Much of the security could be achieved by compacting.
I will have another look at the import-export tools Rosika mentions, that may be a more secure route to follow.
With thanks Clive
An easy way to export the contents of an entire folder with the ImportExportTools NG add-on is this:
right-click on the respective (sub-) folder
choose “ImportExportTools NG”
choose “export all messages of the folder”
choose “HTML format”
That´ll give you a dedicated folder (following the path you chose).
Within it you get the items “messages” and “index.html”.
Although you can choose any of the exported mails one-by-one in the messages folder the “index.html” file may come in handy.
It´ll give you an overview of all the mails and you can open them from there as well just by clicking on any of the entries.
I am sorry for being so dumb,
Installed ImportExportTools NG’
I selected 2 emails for a test
It listed them, but it only offered archive or delete… there was nothing to click on to get ‘Save selected items’
If I clicked on Archive, it moved them to the Archive folder… I wanted it to save them to html?
What have I missed?
Yes, if it is webmail… but I store messages in local folders and delete them on the webmail account.
Maybe that is the wrong way to do it. ?
It is the local folders that I am concerned about accessing, should thunderbird disappear.
What I would really like, is a mail reader that just stores its local folders as directories and text files in the Linux filesystem…, Then I could read them with any app I wanted.
What @Rosika has suggested (using ImportExportTools addon to export them as html), goes close to that… but I have to drive it manually. I would like it automatic
It really does annoy me when an app like thunderbird developes its own special filesystem, just to store its files. What is wrong with using the Linux filesystem? Ext and btrfs are enormously reliable and robust and will always be supported. Why use something else on top of the linux filesystem?
I am tempted to suggest that it is a ploy to try and lock users into their mailer, and that is against the spirit of FOSS.
Here you see I right-clicked on the first e-mail “Bestätige Deineneue E-mail…” and a new context menu is visible now.
The first entry of this one is: “Ausgewählte Nachrichten speichern” (i.e. “save selected messages”).
Now I move the mouse-pointer over the first entry and another sub-menu is to be seen.
Here I choose the second entry: “Im HTML-Format” (i.e. "using html format").
The rest is simple. I just click on that one and choose a folder to save the e-mail to.
BTW: The last step throws two further messages at you which you may safely ignore. Just carry on and the e-mail is saved to the folder you selected in the process.
Hmm, I cannot imagine why that might be.
Are you sure the ImportExportTools NG add-on is active?
Evolution stores emails in separate text files but each file contains a lot of routing information and formatting information is also stored as plain text. You would need something like an email reader to be able to view the emails as received.
Data base files are in one of the Evolution directories so I suspect a database is used to keep track of which mail folder each email file is in etc. Clive
Well, the answer is… I selected the email(s) by left click. That gives a list of selected emails and offers archive or delete only.
So I followed your beautiful instructions more carefully and selected an email with right click… and yes I get a popup of choices, one of which is Save to html file, which I did and it works.
I tried to send a screenshot but upload is not working?
I noticed there are other options, like save as a text file
I think right click on a whole folder, rather than individual emails, is likely to be more useful, because then the html can index it.