Do you have private, secret, or confidential emails on your Microsoft Exchange server that you do not want someone else to see? One user of BleachBit seems to have mixed success with this task: on one hand some emails have been found, and on the other emails were deleted "so that even God could not read them."
To maximize the destruction of sensitive information you must physically destroy all storage devices that may have stored the information. Examples of physical destruction include thorough magnet degaussing followed by use of a hammer and blow torch, or just give it to a young child.
There are some scenarios where physical destruction is not possible or desirable such as: there are some emails you want to keep about yoga and wedding plans, you do not want to reinstall software, or you want to make it less obvious that you removed any information.
Assuming physical destruction is not possible, follow this guide to improve your results:
- Shut the doors and curtains, and turn on loud music.
- Using an email client such as a Blackberry smartphone delete the confidential emails. From the trash too.
- PROTIP: After you think you are done deleting emails, double check. Do a search for the keywords classified, secret, and Benghazi and the top-level-domains .gov and .mil.
- Wipe or destroy all BlackBerries and all other devices that were ever mail clients for the affected account.
- From a separate computer download portable BleachBit for Windows. The download is anonymous, free, and leaves no money trail.
- Unpack it onto a portable storage device such as a USB drive.
- On the email server:
- In Microsoft Exchange run a Page Zeroing operation to hide traces of the deleted emails, though this may still leave some traces.
- Connect the portable storage device to the email server.
- Disable and delete the Windows page file.
- Stop the Microsoft Exchange and other network services.
- Close all applications.
- Start BleachBit.
- Click File - Wipe Free Space, and use it for each fixed storage device. This will help eliminate residual traces of secret information on parts of the server's storage device that are marked not in use.
- Wait a long time.
- While you wait, clean the server's case, keyboard, and screen "like with cloth or something" to remove any fingerprints.
- Destroy the portable storage device.
- Destroy the replicated copies.
- Delete all backups.
- Do likewise on all remote email servers for all emails sent. For example if you sent emails to someone at state.gov, then you need to clean that email server too.
Because you probably do not have access to other people's email servers, the last step is the most difficult. It depends who you know.
Consult your Microsoft Exchange administrator for help. PROTIP: Consider what kind of witness would this person make.
Next time consider if you do not want someone to see private information, do not record it in the first place, and play by the rules.
See also the article BleachBit "stifles investigation" of Hillary Clinton.
Comments
ROCKNROLLKID
Sat, 08/27/2016 - 17:54
Permalink
"1. Shut the curtains and
"1. Shut the curtains and turn on loud music."
Maybe this should also say close your doors and lock them.
____________________
Also known as Alex.
Moderator for BleachBit and a maintainer for Winapp2.
Check out my open-source group on Steam: http://steamcommunity.com/groups/opencommunity
Windows 10 x64 (switching to ReactOS in the future).
Whyputaname
Sun, 08/28/2016 - 00:04
Permalink
Comical.. LOL....
Comical.. LOL....
Hey, ya know, at least she knew what program to use..
I do, and use it once a month..
KudzuKudu
Tue, 08/30/2016 - 15:54
Permalink
So, regarding the wiping in
So, regarding the wiping in step #4 -- you mean like with a cloth or something?
ROCKNROLLKID
Tue, 08/30/2016 - 19:48
Permalink
Make sure you use Lysol or
Make sure you use Lysol or Clorox, too.
____________________
Also known as Alex.
Moderator for BleachBit and a maintainer for Winapp2.
Check out my open-source group on Steam: http://steamcommunity.com/groups/opencommunity
Windows 10 x64 (switching to ReactOS in the future).
herojig
Tue, 09/06/2016 - 18:18
Permalink
One note: DO NOT give storage
One note: DO NOT give storage devices to small children for destruction, as these devices may contain small parts or sharp edges, and are not an approved toy by Child Protective Services.
Herojig Cartooning and Ballooning of Timi Nepal
pcdoctor01
Mon, 10/03/2016 - 04:42
Permalink
Hee hee. Too funny!
Hee hee. Too funny!
scgator2001
Thu, 11/03/2016 - 18:39
Permalink
Hillary is being made fun of
Hillary is being made fun of and I think it is very, very hurtful.
Hillary has dedicated her life to public service and we should show our appreciation. SInce we can't elect her due to her email scam, at least we can do is give her a place to live. Alcatraz was closed in 1963 but Levenworth is a good second choice. food and water and everything else is earned. Lying in Levenworth does NOT earn special privileges so she will be in a serious disadvantage there.
All the best Hillary, BJ Bill Clinton, Donna Brazille, Huma and all the email support team.
anthonymaw
Mon, 11/07/2016 - 16:00
Permalink
Given that Hillary's private
Given that Hillary's private Exchange server got wiped with BleachBit, is it true that Donald Trump suggested hiring "Russian analyst/hackers" to try to recover the deleted emails ?
andrew
Mon, 11/07/2016 - 16:16
Permalink
anthonymaw: Regarding what
anthonymaw: Regarding what Donald Trump said is a matter of public record in the news, right?
---
Andrew, lead developer
anthonymaw
Mon, 11/07/2016 - 16:30
Permalink
Interesting article thanks.
Interesting article thanks. Exchange database page-zeroing is enabled by default and can't be disabled. Yeah Hillary Clinton's infamous private email server was running Exchange 2010 the automatic page-zeroing feature made the FBI investigation much more difficult! https://blogs.technet.microsoft.com/timmcmic/2013/05/20/exchange-2010-pa...
robertjakw
Wed, 11/23/2016 - 04:27
Permalink
Curious enough, I went to the
Curious enough, I went to the BleachBit website to learn more about the tool. It is a free tool to clean files safely and free up disk space. It is important to note that BleachBit is not an Exchange tool - it is neither Exchange aware nor does it have any plug-ins / modules (which it calls "Cleaners") for Exchange. In fact, it does not mention e-mail, Exchange or Outlook on its features page. https://cloud.24liveblog.com/event/1361843
Mike Ellis
Fri, 12/23/2016 - 04:00
Permalink
I know how to send an email,
I know how to send an email, but it was amazing experience to learn about the ‘unsend’ feature of Outlook email by visiting https://recall-email.com/how-to-unsend-in-outlook/
nancyluise
Wed, 01/25/2017 - 03:48
Permalink
The first requirement, and
The first requirement, and that most organizations should not take lightly, you will need to take your device is running Exchange Server and Exchange Online. Do not use the test code downloaded from the Internet in a production environment without - Should you still need, here and elsewhere often follow the best time to use this practice.
bella-henry71
Tue, 05/09/2017 - 01:16
Permalink
Select the name of your Xhang
Select the name of your Xhang server and if the name and port number are applicable to the datagram of your domain controller, if you do not specify the domain controller, Exmirge will use the global catalog server to find users, this will take more time, But if you environment multiple environment Use this. 70-741 VCE
ethanliam
Wed, 05/24/2017 - 23:36
Permalink
Curious enough curiosity, I
Curious enough curiosity, I went to the BleachBit site to learn more about the tool. It is a free tool to safely clean files and free up disk space. Most importantly, BleachBit is not an exchange tool - the exchange is not aware, and does not have any plug-ins / modules (called "cleaners") for exchange. In fact, e-mail, Exchange, or Outlook does not mention the features of your page. https://www.mrcerts.com/70-533-test.html