Anonymous systems

Prerequisites

 * System must be secure
 * Administators must be trusted
 * Operating system must be *nix

User data
Most important are home directories. Each must be encrypted by a strong cypher, such that physical access alone cannot compromise data.

CFS
sunrpc must be started with mount daemon:

Also:

Determine whether user is logged in:

Determine when to remove decrypted home directory:

NB: Do not log in via unencrypted protocols (e.g. rlogon, telnet, etc.)

NB2: If no external users need to log in, firewall ports used by these daemons.

Time stamps
Mount all file systems with noatime:

Change sensitive ctimes periodically:

Volatile temporary data
Use tmpfs or zram to store non-permanent data.

Adjust sizes according to amount of system RAM.

tmp
Wiping tmp is not required if tmp is a ramdisk. tmp should be on a separate partition, otherwise this will fill whatever larger partition it is on.

Wiping spool is required only if a printer is used.