'%3e%3crect%20x='109.185'%20y='253.397'%20width='350.859'%20height='857.656'%20fill='white'/%3e%3cpath%20d='M274.77%20708.572H233.194V888.205H286.632C302.651%20888.205%20314.635%20883.711%20322.461%20875.088C330.287%20866.465%20334.322%20851.404%20334.322%20830.149V779.138C334.322%20752.539%20329.797%20734.2%20320.382%20723.997C310.966%20713.795%20295.681%20708.451%20274.77%20708.451V708.572Z'%20fill='%23FF5C00'/%3e%3cpath%20d='M310.966%20610.558C320.015%20601.206%20324.539%20585.295%20324.539%20563.19V530.518C324.539%20490.559%20308.887%20470.519%20277.705%20470.033H232.949V624.768H269.512C287.977%20624.768%20302.039%20619.91%20311.088%20610.436L310.966%20610.558Z'%20fill='%23FF5C00'/%3e%3cpath%20d='M277.582%200C124.362%200%200%20123.399%200%20275.704V1069.3C0%201221.48%20124.239%201345%20277.582%201345C430.803%201345%20555.165%201221.6%20555.165%201069.3V275.704C555.165%20123.52%20430.926%200%20277.582%200ZM426.523%20833.064C426.523%20878.367%20414.539%20912.739%20390.817%20936.423C375.898%20951.241%20356.7%20961.322%20333.221%20966.909V987.677C333.221%201002.5%20320.993%201014.64%20306.075%201014.64C291.156%201014.64%20278.805%201002.5%20278.805%20987.677V971.888H232.949V987.677C232.949%201002.5%20220.721%201014.64%20205.803%201014.64C190.884%201014.64%20178.655%201002.5%20178.655%20987.677V971.888H170.218C150.53%20971.888%20140.625%20962.05%20140.625%20942.496V415.743C140.625%20396.188%20150.53%20386.35%20170.218%20386.35H178.655V357.201C178.655%20342.383%20190.884%20330.238%20205.803%20330.238C220.721%20330.238%20232.949%20342.383%20232.949%20357.201V386.35H278.805V357.201C278.805%20342.383%20291.034%20330.238%20306.075%20330.238C321.115%20330.238%20333.221%20342.383%20333.221%20357.201V388.78C333.221%20389.994%20332.977%20391.087%20332.855%20392.18C354.499%20397.524%20371.863%20406.512%20384.703%20419.386C406.469%20441.491%20417.597%20475.377%20417.597%20521.045V544.364C417.597%20604.363%20397.42%20642.743%20357.556%20659.14V660.719C403.656%20676.265%20426.646%20717.074%20426.646%20782.782V833.064H426.523Z'%20fill='%23FF5C00'/%3e%3c/g%3e%3cdefs%3e%3cclipPath%20id='clip0_1_174'%3e%3crect%20width='555'%20height='1345'%20fill='white'/%3e%3c/clipPath%3e%3c/defs%3e%3c/svg%3e)
- Why is metadata a risk?
- On Linux (Debian)
- Other platforms (Windows and macOS)
Every time you create a digital file, be it a photo, office document, audio or video file, it contains metadata in the background. This information isn't directly visible when you open the file, but it's there, and can contain extremely sensitive elements.
Why is metadata a risk?
Metadata is data attached to a file, the role of which is to provide contextual information about the content. In an image, this can include the date and time the image was taken, precise GPS coordinates, the model of camera or smartphone used, and sometimes even technical settings. In a text document, it can include the author's name, the company's name, the user's session ID, creation and modification timestamps, or even internal comments left during editing.
This metadata may seem harmless, but it can be used by malicious actors to identify the author of a file, physically locate a person, reconstruct events or habits, or even exploit software flaws based on the version of software used.
Let's take a concrete example: you post a supposedly anonymous photo on a forum. If you haven't removed the EXIF metadata, a single click can reveal the precise GPS coordinates of your home, the model of your phone and the exact date the photo was taken. Similarly, a PDF document sent anonymously may contain your full name in its properties.
That's why some media publishing and communication platforms automatically remove metadata from your photos. These include X (Twitter), Instagram, Signal and Session. On the other hand, other platforms don't remove metadata at all: this is the case with most online forums, many e-mail clients, or even when you publish directly on a website.
It's an essential reflex to adopt: as soon as a file leaves your private sphere, you need to think about cleaning up its metadata to avoid disclosing personal or sensitive information without your knowledge. Let's take a look at how to do this, depending on your operating system.
On Linux (Debian)
Using ExifTool
The most complete and reliable means of managing and deleting metadata is the ExifTool, developed by Phil Harvey. It is compatible with a large number of file formats (JPG, PNG, PDF, MP3, DOCX...) and enables both display and removal of metadata.
- Step 1: Install ExifTool
To install it on a Debian distribution (Ubuntu), open a terminal and type the command:
sudo apt update sudo apt install libimage-exiftool-perl
This package installs
exiftool, which you can then use directly from the command line.- Step 2: Viewing file metadata
To view all the metadata contained in a file, use the following command:
exiftool name.webp
Replace
name.webp with the real name of your file. Also make sure you're positioned in the directory containing this image. For example, if I have a photo of the Satoshi Nakamoto statue in the /Downloads directory, I can display its metadata by running the following command:cd Downloads exiftool Satoshi-Nakamoto-Lugano.webp
You'll then see a long list of attributes, potentially including:
- Date and time of creation
- GPS location
- Camera manufacturer and model
- The software used for editing
- Information about the author...
This gives you a complete overview of what you're about to publish or transmit.
- Step 3: Delete the metadata
To delete all unnecessary metadata from a file, use the command:
exiftool -all= name.webp
This command automatically creates a copy of the original file with the metadata removed. The original is preserved with the
_original extension added to its name.If you don't want to keep the original, you can delete it with the command:
exiftool -all= -overwrite_original name.webp
If we look again at our file's metadata, we can see that all unnecessary or sensitive metadata has been removed.
- Step 4: Clean up an entire directory
If you have several files to process in the same directory, you can use a generic command such as:
exiftool -all= *.webp
This deletes the metadata of all JPEG files in the current directory. You can adapt the extension to suit your needs (
*.webp, *.pdf...).Using MAT2
As an alternative to ExifTool, you can use MAT2 (Metadata Anonymization Toolkit v2).
- Installing MAT2:
sudo apt install mat2
Once installed, you can use it from the command line like this:
mat2 fichier.pdf
By default, MAT2 does not modify the original file: it creates a cleaned-up version in the same directory with the
-clean suffix added.To clean an entire directory, such as the
/Downloads directory:mat2 ~/Downloads/*
Other platforms (Windows and macOS)
On Windows and macOS, there are several methods for removing metadata from your documents. In my opinion, the easiest is to use the open source software ExifCleaner. This lightweight tool features a graphical Interface and can handle most file formats by simply dragging and dropping. By dropping one or more files onto the Interface, the software automatically removes unnecessary metadata and replaces the original files in the same directory. ExifCleaner is available for Windows, macOS and Linux.
It's extremely easy to use: just run the software, then drag and drop one or more files into the window.
Wait a few moments while the tool cleans up the metadata. Once the process is complete, you'll see a summary showing the initial and final metadata counts. All superfluous information will have been removed.
Cleaning up the metadata of the files you share is therefore a good practice to adopt when it comes to IT security. Thanks to the simple tools presented in this chapter, it's a habit you can easily implement on a daily basis.
We've come to the end of this section on securing your computer. In the next section, we'll be taking an in-depth look at one of your machine's most critical programs: the web browser. It alone centralizes a large proportion of your digital activities, making it a prime target in terms of both security and privacy.
Quiz
Quiz1/5
scu2023.5
Why do digital file metadata represent a risk to privacy?