我试图从我意外运行wipefs的ebs卷中恢复一些数据.
我使用了PhotoRec(http://www.cgsecurity.org/wiki/PhotoRec)……它恢复了我的文件,但也有大量其他不属于我的文件.
它有图像,文本文件,代码等…它们都是有效的数据,而不是来自我的帐户.
这导致我问…当我删除EBS卷时,我猜我的数据显然可供其他人使用?
解决方法
https://d0.awsstatic.com/whitepapers/aws-security-whitepaper.pdf描述了亚马逊发布的w / EBS处理流程.两个引用似乎相关:
Amazon EBS volumes are presented to you as raw unformatted block devices that have been wiped prior to being made available
但是也
An EBS snapshot is a block-level view of an entire EBS volume. Note that data that is not visible through the file system on the
volume,such as files that have been deleted,may be present in the EBS snapshot.
最可能的情况是您从已删除数据的快照创建卷.
我尝试使用新的PIOPS,gp2和磁卷在us-east-1中重现您的场景,并且无法恢复任何数据.
也就是说,您可以通过使用KMS加密卷来进一步保护您的EBS数据.