added sdelete path variable, added logic for secure delete, removed import and secure_delete commands

2022-09-14 18:35:02 -04:00
parent 8938c0378a
commit f9bef2bce2
1 changed files with 9 additions and 5 deletions
--- a/bitwardenBackup.py
+++ b/bitwardenBackup.py
@@ -13,7 +13,6 @@ import hmac as pyhmac
 import datetime
 import time
 import shutil
-from secure_delete import secure_delete
 from kmip.core import enums
 from kmip.pie import client

@@ -346,6 +345,7 @@ if __name__ == "__main__":
    if os_detected == "Windows":
        bitwarden_cli_executable = os.path.join(script_directory, "lib", "Bitwarden CLI", "bw.exe")
        gpg_executable = os.path.join(script_directory, "lib", "gpg", "bin", "gpg.exe")
+        sdelete_executable = os.path.join(script_directory, "lib", "sdelete.exe")
    elif os_detected == "Linux":
        bitwarden_cli_executable = os.path.join(script_directory, "lib", "Bitwarden CLI", "bw_linux")
        gpg_executable = "gpg"
@@ -493,10 +493,14 @@ if __name__ == "__main__":
                logger.debug((subprocess.run([gpg_executable, '--no-options', '--batch', '--passphrase', vault_password, '--symmetric', '--cipher-algo', 'AES256', '--digest-algo', 'SHA512', '--compression-algo', 'Uncompressed', '--output', zip_filename + '.zip.gpg', zip_filename + '.zip'], capture_output=True).stdout).decode())

                logger.info("Securely deleting files")
-                secure_delete.secure_delete(working_directory)
-                secure_delete.secure_delete(zip_filename + ".zip")
-                logger.info("Removing working directory")
-                #shutil.rmtree(working_directory)
+                if os_detected == "Windows":
+                    # sdelete.exe .\working\ -p 5 -s
+                    logger.debug((subprocess.run([sdelete_executable, '-p', '5', '-s', working_directory], capture_output=True).stdout).decode())
+                    logger.debug((subprocess.run([sdelete_executable, '-p', '5', zip_filename + ".zip"], capture_output=True).stdout).decode())
+                elif os_detected == "Linux":
+                    # find <directory> -depth -type f -exec shred -v -n 1 -z -u {} \;
+                    logger.debug((subprocess.run(['find', working_directory, '-depth', '-type', 'f', '-exec', 'shred', '-v', '-n', '5', '-u', '/{/}', '\/', ';'], capture_output=True).stdout).decode())
+                    logger.debug((subprocess.run(['shred', '-v', '-u', '-n', '5', zip_filename + '.zip'], capture_output=True).stdout).decode())

            else:
                logger.error("Unable to unlock vault, please check vault password")