The shred Command

Jan 29 2026

What is the shred Command?

The shred command is a powerful Linux utility used to securely delete files by overwriting them multiple times with random data. This ensures that the contents of the file cannot be recovered by data recovery tools or forensic analysis.

Why Use shred?

Data Security: If you're dealing with sensitive information (e.g., passwords, credit card details, or confidential documents), shred ensures that the data is irretrievable.
Prevents Data Recovery: Unlike the rm command, which simply deletes the file entry in the file system, shred overwrites the actual data blocks, making recovery nearly impossible.
Compliance: Useful for organizations that must comply with data protection regulations like GDPR or HIPAA.

How to Use the shred Command

Basic Syntax: shred [options] [file...]

Option	Description
-n	Number of times to overwrite the file (default: 5)
-z	Add a final overwrite with zeros (useful for hiding the file size)
-u	Remove the file after overwriting
-v	Verbose mode (shows progress)
-e	Specify the erase method (e.g., --random for random data)

Examples of Using shred

Securely Delete a File
shred -v sensitive_data.txt
This command will securely delete the file sensitive_data.txt by overwriting it 5 times.
Overwrite a File 10 Times
shred -n 10 -v secret_credentials.txt
This command overwrites the file secret_credentials.txt 10 times with random data.
Delete and Remove the File
shred -u -v important_report.txt
This command overwrites the file and then removes it from the file system, making it impossible to recover.
Securely Delete a Directory
shred -r -v /path/to/directory
The -r option tells shred to recursively delete all files and subdirectories within the specified directory.
Add Final Zero Overwrite
shred -z -v confidential_log.txt
This command overwrites the file with random data and then fills it with zeros, hiding the file size.

When to Use shred

Use Case	When to Use shred
Delete sensitive files	Always
Erase data from a drive	Before selling or disposing of a drive
Securely erase logs	After logging sensitive information
Comply with data protection laws	GDPR, HIPAA, etc.

Don’t Use rm for Sensitive Data

The rm command only deletes the file entry in the file system. The actual data remains on the disk until it's overwritten. So, for sensitive data, always use shred instead.

Final Tips

Use shred before deleting files that contain personal information.
Combine shred with rm for maximum security: shred -u file.txt.
For maximum privacy, use shred on external drives or SSDs before disposal.
Shred is more effective at deleting data on HDDs than on SSDs.