Slashdot Mirror

← Back to Stories (view on slashdot.org)

Second Hand Hard Discs Reveal Secrets

Posted by CmdrTaco on from the hasn't-anyone-heard-of-dd dept.

An anonymous reader writes "BBC News has a story about MIT grads buying old hard discs from eBay and elsewhere, and finding credit card numbers, ATM transactions, porn and emails all accessible on them. Comments? What's the strangest thing readers have found, or left, on a hard drive?"

5 of 445 comments (clear)

  1. Another Duplicate.... by Cubeman · · Score: 5, Informative

    This was posted before here.

  2. A simple script by Black+Copter+Control · · Score: 4, Informative
    dd if=/dev/urand bs=100k count=100 of=garbage
    while cat garbage garbage ; do true ; done | dd bs=100k of=/dev/hdaX

    You could put it on a floppy Linux distribution and sell it to windows users who want to wipe their disks .. $20 a pop!
    (or better yet -- a bootable CD business card so you could include the source).

    Just don't let your 5 year old nephew get hold of it -- or else!

    --
    OS Software is like love: The best way to make it grow is to give it away.
  3. Data from previous owners by Anonymous Coward · · Score: 5, Informative
    Okay, we've established this article is a dupe. But the original didn't have this juicy morsel:
    "What's the strangest thing readers have found, or left, on a hard drive?"
    Like many /. readers, I am considered the local "computer guy" that fixes the computers when things go wrong. One system I recently worked on was a throw-away by a local hospital. I was stunned and shocked when I went scouring the hundreds of .dbx and .dbf files, only to find that it still had on it medical records!

    Knowing this could cause legal trouble, I quickly got on the phone and called the hospital. They said that they thought the system was clean, and that I should destroy any data on the drive. I then called my lawyer. After a small consulting fee (about $60) he informed me that I shouldn't have anything to worry about, so long as I did as the hospital asked, and destroyed all copies of the records. And I did, and that was the first time I ever felt good about losing data!

    (Posting anonymously, in case any other slashdotters get any funny ideas... :)

  4. PGP! by Thud457 · · Score: 4, Informative
    PGP (for windows or mac, ie not GPG) has two commands related to this: wipe file and wipe free space. They overwrite the appropriate sectors of the disk with several patterns designed to ensure that no matter what (common) encoding scheme the hard disk uses, every bit will have been set at least once, zeroed at least once, and overwritten with pseudorandom data at least once. If you set in on a lot of passes, it does an even better job. This would be a cheap (free, except for time and bandwidth to download it) way to make sure your sensitive data doesn't get out.

    That said, experts would tell you that the only reliable way to make sure sensitive data doesn't get out is to thermite your drive.

    Also, what's the one-line unix command (running MacOS X here).

    • http://slashdot.org/comments.pl?sid=51331&cid=51 18950
    • http://slashdot.org/comments.pl?sid=50856&cid=50 91657
    --

    the preceding comment is my own and in no way reflects the opinion of the Joint Chiefs of Staff

  5. Re:Burglary Recovery! by TheTick · · Score: 4, Informative

    The system, as it turned out, belonged to one of their senior developer/programmers who, along with their system, had lost about seven years worth of intense work.

    [...]

    The moral of the story: Pay VERY close attention to what may be left on any hard drive[...]You could end up saving someone a ton of grief and lost hours.

    It's an interesting story, I agree, but the real moral ought to be make backups! There's no excuse for losing years of work just because a box was stolen. Some negligent sysadmin should've been canned over that.

    --

    --
    bachiatari na torisetsu o yome!