change the passphrase

Mike Touloumtzis
Fri Nov 16 20:17:01 2001

On Fri, Nov 16, 2001 at 09:22:20AM -0500, Brad Tilley wrote:
> I work on Linux systems that contain financial data. Some of our most
> sensitive data are stored on ro media like CDRs. Besides using GNUpg
> encryption, we physically destroy old CDRs. Any files that were copied from
> the CDRs to HDDs are shredded (up to 25 passes, and the HDDs are reformatted
> and tested throughly before being used for other, less sensitive, tasks. My
> point is that some people _do_ physically destroy media, but, as you said,
> most don't.

Agreed, I'm not saying no one needs to destroy media, I'm just saying
that advising new users to physically destroy hard drives is a great
way to scare them off using gnupg at all :-).  Most people who have a
legitimate need to shred media, like you, already know it.