Is writing random data before full disk encryption really necessary ?

J

jeudi

Hello,
I'm about installing FreeBSD using the full disk encryption.
On GNU/Linux I used to write random data on the disk before
installation but now I wonder if it's really necessary or just some
maniac thing caused by my OCD.
I know it's more secure because you can't see wherer the encrypted
files are, but if you encrypt your disk just in case of stealing by
a random thief....
What's your opinion ?
 
jeudi said:
Hello,
I'm about installing FreeBSD using the full disk encryption.
On GNU/Linux I used to write random data on the disk before
installation but now I wonder if it's really necessary or just some
maniac thing caused by my OCD.
I know it's more secure because you can't see wherer the encrypted
files are, but if you encrypt your disk just in case of stealing by
a random thief....
What's your opinion ?
Click to expand...
If the encryption you’re using is weak enough that you’re concerned about a hypothetical thief finding “where the files are” on the drive, something is wrong.

No need to waste time doing this.
 
That's also my thinking. Unless the agency with the three letters is after you you have nothing to fear. And if the agency is after you
all of your encryption will not help you in anyway.
Save your time.
 
If you're using an SSD, then you would also have to disable TRIM. This would degrade performance and shorten the lifespan of the drive.

Security is a trade-off. What is your threat model? What are you trying to protect? Remember that this is encryption at rest.
 
You must log in or register to reply here.
Back
Top