Second Hand Hard Discs Reveal Secrets

An anonymous reader writes "BBC News has a story about MIT grads buying old hard discs from eBay and elsewhere, and finding credit card numbers, ATM transactions, porn and emails all accessible on them. Comments? What's the strangest thing readers have found, or left, on a hard drive?"

Another Duplicate....

[Cubeman]

This was posted before here.

Re:Another Duplicate....

[swordboy]

Actually,

I believe the original story was in the cache files on the hard drives in question.

BaDoom!

Re:Another Duplicate....

[Library+Spoff]

yeah the Microsoft/Record Label DRM story on the same technology page at BBC news was a better story I thought... *mutter mutter*

Karma... all spent up.

Re:Another Duplicate....

[WetCat]

Even this dup could be tolerable if it was posted yesterday,
when we have no news for some hours and were almost forced to discuss the stupid topic on XM and FM radio...
Hard drives are more interesting.
I have 2 SCSI Barracuda hard drives which hold some my internal information. The computer in which those drives were installed is already dead. Could you tell me any way to erase data without using SCSI controller?
I am not planning to physically damage the drives.
Is it possible?

Re:Another Duplicate....

[Ledskof]

You could pass it through the field of a powerful magnet. I'm a physics tard, so I don't know if you could pass it through a magnet strong enough to damage any of the electronics in it or anything.

Re:Another Duplicate....

[mmol_6453]

I wouldn't recommend it. A field that strong might leave a strong magnetic image on the metal parts of the drive. That image could interfere with the read-write heads of the drive.

Floppy disks aren't so bad, since A) they're cheap and B) they're mostly plastic.

Never took apart a Zip disk, though. Dunno what'd happen.

Re:Another Duplicate....

[Detritus]

You are going to find that it is almost impossible to find a magnet strong enough to erase the disk. At work, we have a number of super heavy-duty NSA approved degaussers. They can erase the credit cards in your wallet and jam cardiac pacemakers, just by being in the same room as the degausser, but they can't erase modern hard disks and newer tape formulations. The coercivity on modern media is just too high. The media must be overwritten by the device that created it or it must be physically destroyed.

Even if you found a magnet that was strong enough to erase the data, it would also destroy the servo information on the disk platters. That would render the drive useless, since it must have the servo information to position the head on the disk. The disk drive factory is the only place that has the equipment that can write servo information on the disk platters.

Re:Another Duplicate....

[lunatik17]

Sure, go download a program called Wipe and use it on the entire device. According to the DOD 5220.22-M specification, overwriting a file 5 to 7 times with random data is sufficient to prevent recovery. Wipe does it 34 times by default. When you use this program on a file or filesystem, it is gone. Period.

Re:Another Duplicate....

[SoupIsGoodFood_42]

I believe the original story was in the cache files on the hard drives in question.

On a more serious note. I think it's probably the fact that the original artical had a stupid title.

Data-mining has nothing to do with finding old data on people's hard drives (the original title had something to that effect). I'm not exactly sure what it means. But I'm pretty sure it has to do with statistics and finding trends and other info from a database of collected (and seemingly meaning less) data. Seems to be a popular marketing tool.

You can see how someone might get confused though. But you can't blame Taco for going by the title.

Re:Another Duplicate....

[WetCat]

you didn't understood my problem. I cannot connect those drives to the computer - I now have no SCSI interface on any of the computers I have access to.
The only thing I can do is connect this drive to power and experiment with its switches or scsi pins.

Re:Another Duplicate....

[karlandtanya]

Why is no SCSI card a problem?

Do you plan to sell the drives on ebay?

Search completed items on ebay for SCSI ADAPTER produces 11 pages of adapters and cables for under $10.00!!

If the drives are not worth $10.00+shipping, bust 'em open and stick the platters in the microwave.

Or use 'em for target practice.

Re:Another Duplicate....

[1u3hr]

You can see how someone might get confused though. But you can't blame Taco for going by the title.

Of course you shouldn't go by title. I just plugged "MIT" into Slashdot's search box and found the dupe immediately. What Slashdot NEEDS (OK, what I want) is for an automated system that compares a submission with recent articles for similarity -- this is off-the-shelf stuff now. These could be weighted to favour more recent ones, but I leave the formula up to experimentation. This would be useful to present related links, as well as warning of possible dupes.

I had a similar problem, editing a news site being fed articles from an office in Beijing. I had incredible trouble with the Chinese editors who never checked what was already on the site (this is the same day) and sent different versions of the same story (eg from Xinhua, China Daily, People's Daily). Wasted a huge amount of time. Not to mention the typos -- they couldn't be fucked to use a spellchecker, check URLS, etc. It's dead and buried now of course.

Re:Another Duplicate....

[SirCrashALot]

Like the one ring. It must be destroyed in the mountain that created it.

Re:Another Duplicate....

[perljon]

Actually, using electron scanning microscopes, you can see almost every change to a harddisk. Writing to it 1000 times wouldn't be good enough. That's why hard drives that once held top secret information are melted by the government. (Well, at least the platters are removed and melted.)

Re:Another Duplicate....

[3vi1]

Uhmmm... if Taco didn't read the comments the first time it was submitted, what makes anyone think he'll read this one and find out it's a dupe? :)

Re:Another Duplicate....

[WetCat]

Thank you, got ISA SCSI adaptor for $4!
Good idea

well...

[mschoolbus]

I found a bunch of Spice Girl stuff (3GB+) on my friends 'broken' hard drive he gave me... I was sorta afraid when I saw that, really makes me wonder about him...

Re:well...

[Hydrogenoid]

No wonder it broke...
That's a nasty thing to do to a poor HD...

Re:well...

[Gleng]

"I found a bunch of Spice Girl stuff (3GB+) on my friends 'broken' hard drive he gave me... I was sorta afraid when I saw that, really makes me wonder about him..."

Off topic, but that kind of reminds me about the time I went to make tea in a friends kitchen and, while searching for the cups, discovered his collection of what must have been well over 500 old TV guides.

I was very, very scared. It kind of had a Norman Bates feel to it.

Slashdot must be using these old hard drives

[PD]

How else can we explain how the editors are finding these old stories?

Re:Slashdot must be using these old hard drives

Wrong! I stumbled across one of Taco's old drives on Ebay. Slashdot wasn't bookmarked or in the cache. Explains a lot.

The neatest thing:

[Damion]

I found archives of old Slashdot stories and resubmitted them.

CmdrTaco's HD located!

[Motherfucking+Shit]

Yikes!

Looks like someone must have gotten ahold of CmdrTaco's recently discarded hard drive and recovered the links to old /. stories...

You'd think Taco would have at least used some sort of freespace wiping utility!

Wierd files

[mrtroy]

Well I bought a laptop back in the day...a p166 toshiba which to this day has enough power to word process...surf the internet, but unfortunately the battery and cdrom both died.
Now when I bought it I thought it was kinda wierd...it was in like a crayola theme and had lots of kids games on it and stuff, but the guy I got it from said it was his kids. So I am about to format it, since it was full of junk and the little 2 gig hd was filled, when all of a sudden what do i discover but a c:\private\ dir!!!
So...as any good person does I formatted without looking at it. *cough*
Turns out daddy had a gay pron fetish!
After being disgusted by this, especially since it was on his KIDS computer, I formatted and lived happily ever after.
Now, if someone was to buy the laptop from me they would find plenty of straight pron on it!!!
(and i just might leave it there as a little present)

Re:Wierd files

[Quazion]

Maybe it was a present to you, maybe he tought you where gay ;-P

Re:Wierd files

[E1v!$]

Maybe his wife was into it.

It's all Taco...

[devphil]

I'm seriously considering blocking CmdrTaco from the list of people whose stories I see. If you look back over the list of duplicates, nearly all of them are Taco's.

Psssst, Taco. A hint for ya: just because you started the site doesn't absolve you of the duty of looking at it once in a while. Say, before you click "Submit."

Re:It's all Taco...

[selderrr]

I don't understand how this gets moderated as 'funny'... Anyway, the fact that it reaches +5 means that moderators agree with it. Now if only the message gets thru to the editors :-(

Seriously taco & co : if once in a while someone posts trolls about dupes, you can mod them down and ignore them. But if 1 out of 5 posts gets a +5 remark, I think it really is time to consider actions.

At least say sumtin about it. Right now, the editor attitude "hu, can't hear ya" is seriously giving the impression that they don't give a flying fuck about it.

Re:It's all Taco...

[limekiller4]

Too bad there isn't a mechanism to meta-moderate slashdot stories for duplicates. That way you could filter out anything ranging from -1 (I don't care if it is a retread) to 5 (this has to be a beyond-all-doubt repost before I don't see it).

Re:It's all Taco...

[deranged+unix+nut]

It seems like it would be simple to require keywords to be submitted along with a story, say "MIT, HARD DRIVE, EBAY, CREDIT CARD" or maybe even a one-line summary "MIT grads find credit card and other personal data on old hard drives purchased on ebay."

Then do a keyword search and review any articles with a 60% or greater match that was submitted within the last two months to make sure that you aren't posting a dupe.

Re:It's all Taco...

[MyHair]

Anyway, the fact that it reaches +5 means that moderators agree with it.

The moderators seem somewhat divided on the subject. Here are the moderations for that post as of now:

Offtopic=2, Insightful=1, Interesting=1, Funny=5, Overrated=3, Underrated=1, Total=13

It got a new funny in the time between when I first read it and the time I looked at the mods. I'm sure it will go down and up a few more times.

Maybe I should post this as anonymous to avoid the Offtopic Karma hit. Nah, I'll just hit "No Karma Bonus" and feel the 2 point burn.

By the way, the grandparent post says CmdrTaco does most of the dupes; in my experience it's Timothy who is the king of dupes. I want my money back. :-)

Re:It's all Taco...

[Storm]

If you look back over the list of duplicates, nearly all of them are Taco's.

Now remember, gang, he's a newlywed...He is in that magical time between "I'm a geek and never have a date." and marriage being old hat (or just old). The boy's (possibly for the first time since the site started) got something other than slashdot on his mind...

Re:It's all Taco...

[TheFrood]

I'm seriously considering blocking CmdrTaco from the list of people whose stories I see. If you look back over the list of duplicates, nearly all of them are Taco's.

Actually, I think timothy is the worst about it. The problem is that timothy only seems to duplicate his own stories (how he manages to do that so often, I have no idea), so if you block timothy, you won't see those stories at all.

TheFrood

Re:It's all Taco...

[blitzrage]

Doesn't he get paid for this? He has to read stories and post them, and he can't check to see whether it's a duplicate? (Let alone a duplicate from last week. If he read anything on the front page, he would have even remembered it)

Re:It's all Taco...

[haggar]

Truth is, he's been doing it always. I guess I have developed a dilike for the guy, because I noticed his dupes since a couple of years ago.

Re:It's all Taco...

[stinky+wizzleteats]

If you look back over the list of duplicates, nearly all of them are Taco's.

Those of us who are married know exactly what's going on here. When male human becomes married, all memory functions are relegated to the wife. I've been married for 10 years, and I do well to remember to wear pants, much less retain sufficient buffer space to run a news site.

Re:It's all Taco...

[Eil]

Right now, the editor attitude "hu, can't hear ya" is seriously giving the impression that they don't give a flying fuck about it.

Er, because they don't. It's always been like this and it's usually people with high UIDs that seem to think it's not normal. Malda has repeatedly said over and over again that Slashdot goes in the direction that he and rest of the crew in Holland, MI take it. They have the final word. Not the users. The attitude may seem dictatorial, but if popularity is the judge, it's been working for them pretty well it seems.

Re:It's all Taco...

[matt_fk]

I read /. for the links.. not the lame comments moderated by lame moderators. This is probably the 18th.. or 19th comment I've read since I began reading /... and probably the 8th I've responded to. I've read it for a couple of years.. think *most* care about comments? I don't think so.. this is an MLP site.. simply put.

Re:It's all Taco...

[jmccay]

Give Taco a break between Work, Anime, and being a Newly Wed he might miss a few stories. ;)

Re:It's all Taco...

[machine+of+god]

heh, I seriously think he reads it on slashdot, and thinks "hey, that's interesting, I'll post it to slashdot".

Re:It's all Taco...

[whereiswaldo]

I don't understand how this gets moderated as 'funny'... Anyway, the fact that it reaches +5 means that moderators agree with it.

Not necessarily. Moderators are not supposed to moderate depending on whether they agree with the poster or not. If it's a good, well thought out post, that deserves a +X value, regardless of whether you agree with it or not.

Whether this guideline and reality match up is another matter.

Re:It's all Taco...

[dolmen.fr]

This is the solution I thought.

"Score 5 - Informative", if I had moderation points.

Re:It's all Taco...

[selderrr]

hm... you could be right about that, but such an attitude would not only be dictatorial indeed, it also clashes with the wannabe-billboard-of-the-nerd-community-attitude.

Let me explain : slashdot thrives on the horde of nerds that adhere to it. These nerds adhere to /. as a concept they themselves helped to grow into something amazing. They are the very food slashdot feeds on. If it wasn't for the nerds, /. wouldn't be where it is now. Rob recognises this (on his own website for instance) and embraces the community. But the /. editor flock goes further than this : they have an attitude which kinda claims some superiority and know-it-all when it comes to /. (not explicit, but not deniable either. I'm not eloquent enough to point it all out as I mean it, but I assume a regular reader understands what I mean. I'm not a native english speaker)

Basically what I'm trying to say is that the momentum of the /. website comes from the sheer amount of readers behind it, not the editors themselves. They hold the rudder, but we *are* the boat. Okay indeed, the rudder controls the boat, but any good captain rspects its boat. And if the boat cracks to much, it will be taken care of by a good captain.
With slashdot, I have the impression that we're on a leased boat. They *are* not the rudder anymore. They sold the rudder and te boat, and are now merely controlling it. and that's not a nice feeling.
Now I'm not saying that malda & co should worship their readers or anything, but a certain amount of grattitude and respect for the momentum that they receive from their reader base would be appropriate. And IMHO, grattitude is best expressed by doing your job with a sufficient amount of care and attention. Which I miss a bit...

Doh... I ramble too much. Sorry.

Re:It's all Taco...

[MrPink2U]

So stop reading them. Dupe post, dupe post! People who bitch about it are more a waste of bandwidth than the post itself.

As my momma always said, if you don't have something nice (I will even stretch and say constructive) to say, they don't say anything at all.

Hmm...

[egjertse]

from the hasn't-anyone-heard-of-dd dept.

Methinks someone else could do with a course in basic UNIX commandline tools... How about "grep" for instance?

Re:Hmm...

[AntiNorm]

grep? What good would a text-searching utility do here? "Hasn't anyone heard of dd" refers to the write-files-or-binary-patterns-here utility which can be used to overwrite the 'secret' data this article refers to.

Re:Hmm...

[valisk]

most of the fuckwits concerned use windows and have absolutley no idea what dd is, they would probably imagine it is something related a.d.d.
That doesn't excuse large banking institutions who are definately not called 'MORGAN STANLEY' and use Solaris, because they should know better than to throw out all their old SS20s without cleaning those disks.

Re:Hmm...

[MrResistor]

grep? What good would a text-searching utility do here? "Hasn't anyone heard of dd" refers to the write-files-or-binary-patterns-here utility which can be used to overwrite the 'secret' data this article refers to.

Well, a text search of the slashdot archive for "MIT grad students buying old hard drives on Ebay" or something similar might have revealed that this story has already been posted.

Unless, of course, Taco dd'ed over the archive...

Aw hell..

[zomB1kenoB]

You mean I can find GOOD STUFF on those old HDs if i don't wipe em first? Shit, I've been missing out. Damn my utter lack of curiosity.

Re:Aw hell..

[satterth]

Hell, we used to do this all the time.

When ever we would get rid of an old used drive, we would fill the damn thing up with random garbage. TV comercials, stupid movie clips, crazy funny songs, and what ever else we could think of. My personal favorite were corrupted word documents of random text.

Our thinking behind this was, if people are going to search the drive and profile you, we might as well keep them entertained.

I can just imagine the time people would take going through all the garbage. One time a guy came back to us fustrated that he couldn't open the word DOC's... LOL

In related news ...

[vogon+jeltz]

WWII is over and Soviet Russia ceased to exist ...
Come on Taco, do you ever read your own site?

What do I see on old hard drives?

[stienman]

I see duplicates. They're everywhere - they don't even know they're duplicates...

-Adam

HEHE

[RedWolves2]

Some MIT kid in the future is going to stumble across the Slashdot hard drives and go "God Damn they posted Duplicates alot."

snippet & loink to original SF Gate article

[HealYourChurchWebSit]

Discarded computer hard drives prove a trove of personal info

• So, you think you cleaned all your personal files from that old computer you got rid of?
• Two MIT graduate students suggest you think again.
• Over two years, Simson Garfinkel and Abhi Shelat bought 158 used hard drives at secondhand computer stores and on eBay

Morals?

[Pooh22]

I've rarely used second hand disks, but even if I did I'd just not look at what's on it. It's kind of like not looking in the neighbour's trashkan...

Of course, that's no excuse for companies to leave sensitive data from their customers on their leftovers!

Simon

Re:Morals?

[oliverthered]

Well, kinda.
Except you'll never see your neighbour.

I don't see any problem in looking, it might even give you some insight into other people.
Just don't do anything bad with the data. (I'm thinking right hand and some Kleenex)

Re:Morals?

[blurfus]

Except, of course, that it's not somebody else's stuff anymore.
It's YOURS after you buy it. I think you would have every right to look at (and inspect) everything you buy, specially second hand.

The neighbours trash can is not yours (it is still the neighbours). But when does the neighbour give up ownership of the items? Once the items are in the can or once the items left the can? (you can then claim finders-keepers I guess).

But say, for example, you buy an used car and after purchasing it you start cleaning it out and find a whole bunch of pr0n mags below the seat.

You open one mag up (of course =o) ) and find a credit card receipt for the susbcription payments. All the info you need is right there.

How is this inmoral?

Of course, the right thing to do is to shred the info (and toss the mags, if you must) and get on with using your car. It would be unethical to take advantage of the goodies you found.

Unless you are a crook (then BINGO!)
cheers

Re:Morals?

[geekoid]

If you bought a trash can from a neighbor, you would look in it. Actually, you SHOULD look onto it. There might be something on there that could incriminate its owner, AKA you, for crimes of the previous owner.

Re:Morals?

[Forgotten]

Except, of course, that it's not somebody else's stuff anymore. It's YOURS after you buy it. I think you would have every right to look at (and inspect) everything you buy, specially second hand.

Doubtful. Consider that you never own the copyrighted-by-others software on your drive (including the GPL stuff), only an explicit licence to use it. Data on the drive that you author or even just compile will likely still belong to you, regardless of the fact that you've sold the media. In the case of deleted or overwritten data this is even more defencible, especially with legislation like the DMCA - deletion here would be the "copy-protection" method (remember that the data must be copied to be represented in a manner that humans can use, even if only into RAM).

In the case of your collection of TS/TG porn images and movies, the drive purchaser certainly won't own them, because you probably didn't in the first place (most porn being pirated almost ad infinitum from the moment it first appears on the net). Unless, of course, you make original porn of yourself - in which case, my hat's off.

Re:Morals?

[blurfus]

You're right... I stand corrected...

However, the stuff I was referring to was the actual hard drive. You still have the right to inspect its contents and I do not believe this is inmoral (refering back to the original question here which was: is it moral to look at the HD's contents?)

Sure, you don't necessarily own the data contained in it (just like you don't own the credit card number found in the mag subscription receipt); but there is nothing inmoral (IMHO) in looking at (or inspecting) the goods purchased second hand.

MATRIX GLITCH !

[LePrince]

Arrgh, I saw the cat pass twice... Errr, the post twice ! :-)

(Note to moderator : this is a pityful attempt at humor, to get my karma from bad to neutral, since my first 2 posts were rated -1 and ever since I can't post that will get read, and my two other posts weren't offensive, so I deserve better). :-)

Some things I found

[baryon351]

I've come across quite a few older drives in machines that hadn't been cleaned out. One was an ancient Mac II which used to be used as a webserver, but was removed from that job in 1995, and had sat in a basement getting rustier and rustier. It was given to me in horrific condition, and the motherboard/PSU was toast, almost like it was washed through with saltwater. The HD looked a little better, and on firing it up in another machine, it clattered noisily, but still read most of the drive - on there was the website, last accessed 8 years ago. I copied that all off and archived it just because it was cool.

Oddly, the website nowadays isn't all that different :).

Another belonged to a rather fascinating lady who seemed to use her computer from 1994 when it was new, until 2002 when I came across it from an ebay sale. All of her writing (some published, some not), drafts, her academic work, and her photography was on there. She did quite a few nudes and not only had published work, but every photo taken in between used to create those images. Slightly giggleworthy, but really just rather tasteful nude photos.

One other I was given, a compaq 486, belonged to an organiser of some of the behind the scenes work for the Sydney Olympics - it had names, addresses and phone numbers of dozens of celebrities, politicians, and anyone involved in the marketing pre-games, along with correspondence to those people. A fun read but kind of boring - I didn't keep the addresses either.

The biggest coincidence I came across was ordering a computer from ebay, from a town about 800km from me. it came to me with a HD full of various word documents - what a surprise to find it had originally been used as a wordprocessing machine in the same building I work in, and several years before. It came home :).

Nothing amazingly exciting, just a few curious little moments.

Re:Some things I found

[commanderfoxtrot]

One other I was given, a compaq 486, belonged to an organiser of some of the behind the scenes work for the Sydney Olympics - it had names, addresses and phone numbers of dozens of celebrities, politicians, and anyone involved in the marketing pre-games, along with correspondence to those people. A fun read but kind of boring - I didn't keep the addresses either.

Damn; you could have given those other chaps the Aussie PM's email address...

Offtopic, but more interesting than this thread.

[PaKettle]

Check out the photoshop that's going on over at Fark: unlikely Slashdot articles.

From the My-God-Will-Ya'll-Quit-Bitchin'-Dept

[jot445]

Please! If a story is a dupe, so what? Here's a thought. Don't read it. Don't even comment. Don't even "just say no". (OK, so that was several thoughts ;-)
Get outside, breathe the fresh air, and quit trying to come up with clever quotes that express your angst over a duplicate/semi-duplicate story.</RANT>

SET MODE KarmaTracking=ON
SET MODE ModeratorSuckup=ON

Re:From the My-God-Will-Ya'll-Quit-Bitchin'-Dept

[_xeno_]

You know, if dupes were an occasional thing, I'd agree with you. But they aren't. They're practically a weekly occurance. And it's annoying. The tag line is "News for Nerds" not "Repeats for Nerds." You can forgive an occasional accidental dupe. You can easily forgive a dupe from several months ago. This is a dupe from last week and is practically identical to the original.

If the writeup had at least made reference to the older story and made clear that this thread is supposed to be about interesting data found on "old" harddrives, then I would agree with you. But from the post it sounds like CmdrTaco hasn't even checked from last week to ensure that this isn't a duplicate.

This is their job. They are trying to get people to support them through subscriptions. Before I'd subscribe, I'd have to see some kind of perfessionalism. To be perfectly honest, the only reason I stick around Slashdot is not because of the editors but because of the community already here. Without the community, I wouldn't bother reading, because it wouldn't be worth reading. Posting dupes and generally not checking the stories they are posting make it seem like the editors don't care about the site anymore and make the community feel like they're being neglected.

Don't forget, a lot of the original very vocal Slashdotters already moved to another community. The lack of professionalism on the part of the editors is annoying and a slap in the face of the people for who the site is run. It would be very nice to have the editors explain that they are at the very least doing something to try and prevent duplicates. As things stand, it seems that the editors aren't listening to the community and are just ignoring us.

(Mind you - this goes both ways. It seems that a vocal group of Slashdotters feel that the editors "owe" the posters, while the editors seem to feel that the posters "owe" the Slashdot crew. Neither is true. Slashdot as we know it needs both. Without either, it would be nothing. "Slashdot" owes both the community and the editors for its existance.)

That's why you see people complaining about dupes. It let's them vent steam and hopefully get a message to the editors that they want change and hope that the editors will pay more attention and hopefully admit that they can screw up. The fact that they're getting modded up indicates that there are many people who agree with them. In this case, I feel that the bitching is justified.

Re:From the My-God-Will-Ya'll-Quit-Bitchin'-Dept

[Old+Wolf]

This site is mostly read by Americans and I think CmdrDupo is an American. It's well known by the rest of the world that you have to say things over and over to try and get Americans to understand it. Eg. hollywood movies. Hence the dupe posting. We should be culturally tolerant of Taco's need to service his people's intellectual capacity.

Re:From the My-God-Will-Ya'll-Quit-Bitchin'-Dept

[_xeno_]

Come again?

Probably why it's on BBC anyway...

[guusbosman]

Again a story that has been posted a little while ago. I won't rant about reading your own website or getting decent editors... not this time.

But I wouldn't be surprised if one of the factors for the attention BBC gives to this project is the fact that is has been on Slashdot.

Nice circle :)

Oh the irony....

[M.C.+Hampster]

There have to be 20 dupes about the fact that this is a dupe. Of course, I'm guessing this has already been pointed out...

Re:Oh the irony....

[JimDabell]

The obvious solution is to only post to point out that a story isn't a duplicate. Much less effort.

Re:Oh the irony....

[threeturn]

Damn I was going to say that! Oh well, dupes are the new black.

from criminal defense law firm

[jqh1]

Well, I for one didn't get around to posting on the first run :)

I once bought a HD from a storefront computer shop. Everything had been deleted, but it was so easy to undelete that I couldn't resist -- there were dozens of documents from a criminal law practice specializing in parole related procedures. Nothing terribly interesting, but definitely another lesson in the pitfalls of attorney-client privilege in the electronic age...

Re:from criminal defense law firm

[legojenn]

IANAL, just a nerdy Legal Assistant,

It would seem that solicitor-client privilege is maintained were these communications end up on a prosecuting attorney's . I know in Canada that it is. I could research this if taken to task. A google search revealed this site that described the status of solicitor-client privilege in various countries. (OLD-2000)

Re:from criminal defense law firm

[mark_lybarger]

nerdy Legal Assistant

you'll be tarred and gzipped and perhaps feathered too for using a term such as that 'round these parts. nerdy applies to neither legal nor assistant. i it person who surfs /. using win98 at home for games only while using IE at work because it's the standard while posting duplicate posts about duplicate stories on a day when the other nerdy people are all anxiously waiting the release of the wonderfull kde 3.1 with all its glorious eye-candy so that we can claim to use it at home while we're not gaming of course.

Re:from criminal defense law firm

[legojenn]

... but I don't have Windows 98 at home. I really don't. I have Slackware, and Mandrake on various PCs, but no Windows 98. My laptop runs Windows 2000 or Slackware depending on what classes I'm doing in college during any particular semester. I don't use KDE, but I am anxious for Slack 8.2 or 9.0 (whatever it will be called) to be released so I can use GNOME 2. I guess I could compile it myself, but I am too busy and Patrick et al do it so well. That doesn't mean I don't like games, that's what a boyfriend's computer is for.

I apologise for using the term 'nerdy' inappropriately. I would have responded to you more directly, but the only complete sentence you used was you'll be tarred and gzipped and perhaps feathered too for using a term such as that 'round these parts. The rest was unintelligible. I guess the inability to communicate is what makes one 'nerdy'.

Re:from criminal defense law firm

[Angry+White+Guy]

Dropline installer from dropline gnome will get you a full Gnome 2 desktop w/o the need to compile anything! Farmiliar installer too.
I suggest you try it out.

Data Mining... for BRAINS!

[HomerNet]

1.) All right allready! We now have established beyond a shadow of a doubt that yes, a similar story was posted earlier this week.

2.) It amuses me that people seem to think that /. editors have so much time on their hands that all they have to do all day is read headline and forum posts. That's what moderators and metamoderators are for, and they may not catch every story that comes down the pike.

3.) Perhaps the most enjoyable "data mining" find on an old hard drive for me was over 1000 songs in MP3 format. After deleting the ones that I didn't like, there were still nearly 950 of them. They now make up the bulk of my music library.

Re:Data Mining... for BRAINS!

[Tim+C]

2.) It amuses me that people seem to think that /. editors have so much time on their hands that all they have to do all day is read headline and forum posts. That's what moderators and metamoderators are for, and they may not catch every story that comes down the pike.

If deciding what story submissions get posted based on content and similarity to recent stories isn't an editor's job, I'd like to know what is.

Your comment about that being what mods and meta-mods are for would be true on a site like k5, but until moderators can mod stories off the front page here, that's what the editors are supposed to be for.

Re:Data Mining... for BRAINS!

[Alsee]

1000 songs in MP3 format. After deleting the ones that I didn't like, there were still nearly 950 of them.

I can't help picturing you walking into a video dating service, watching 10 tapes, and after rejecting the ones you don't like you announce you'd like to date 9 and a half of them :)

-

Re:Data Mining... for BRAINS!

[HomerNet]

I said:

1000 songs in MP3 format. After deleting the ones that I didn't like, there were still nearly 950 of them.

You said:
I can't help picturing you walking into a video dating service, watching 10 tapes, and after rejecting the ones you don't like you announce you'd like to date 9 and a half of them :)

Heh! :) I did say that I had over 1000...

How about LANs?

[toddestan]

I find it most interesting at places where lots of computers are hooked up to a network, like at a college dorm. It's amazing the clueless dolts that share their entire harddrive over the network. You can learn a lot by browsing someone's internet cache. Also, since Windows seems to share My Documents by default, you can read people's homework (usually boring as hell though). About the most interesting was the person sharing all of their instant messaging chat logs. Lets just say that person got around a lot... The only thing is that you have to be careful, these people who are that clueless usually have a ton of virii, so don't click on goatse.ch.vbs!

Re:How about LANs?

[dunkstr]

I had a friend of mine saying that while looking through the university network she found a picture of ME on some random windows share. Evidently, I found this mildly disturbing as I have about two pictures of me on the web. The irritating thing is that she can't find the share anymore so I can't find out who this person is...

Re:How about LANs?

[ArcCoyote]

Most people who get around a lot have a ton of virii!

Re:How about LANs?

[linux_student]

I have known that for quite awhile on the university network, there are people sharing all kinds of $h!t: Homework (even read a guys term paper), pr0n, warez, pictures...My desktop wallpaper was taken from the university's digital imaging center's hard drive as well. If you really want to be a whore about this, there is a software package called ShareScan that works really well...

Cathlic Church Hard Drives

I know you don't care, but I was changing out a certain head priest's hard drive for a Catholic organization(Something to do with a Little Flower) in Chicago, and I was moving his documents and found a folder that was holding a few letters to an S&M house down in Springfield saying that he wanted some services and he was a single salesmen from Milwaukee...well he got the single part right.

Not to make this too long, but the funny part is they got pretty explicate about what he was wanting, and when I asked him if he wanted me to scratch and reinstall windows on the hard drive before I moved it over to the convent where the head Mother was going to be using it, he told me no, and I just went and installed it on here desk....God only knows how that went over?

Re:Cathlic Church Hard Drives

Hell yeah!

Re:Cathlic Church Hard Drives

[Chordonblue]

Actually, given all the scandals that have plaqued the CatLick Church lately, who WOULDN'T believe it? That is, unless you're a drone.

Re:Cathlic Church Hard Drives

[mister_jpeg]

Of course it's bullshit.
The mod points were given to reward the 11 grammar/spelling errors in two short paragraphs.

A simple script

[Black+Copter+Control]

dd if=/dev/urand bs=100k count=100 of=garbage
while cat garbage garbage ; do true ; done | dd bs=100k of=/dev/hdaX

You could put it on a floppy Linux distribution and sell it to windows users who want to wipe their disks .. $20 a pop!
(or better yet -- a bootable CD business card so you could include the source).

Just don't let your 5 year old nephew get hold of it -- or else!

Re:A simple script

[droid_rage]

Not quite that simple.
Yeah, that would work for newer desktops, but OnTrack, which sells disk wiping software (the only one I know, since that's what we use), also has a decent collection of basic SCSI drivers on their disk. You can load other drivers from a floppy if yours isn't there.

Incidentally, the US government requires triple-overwrite on any computers leaving government facilities, and for anything sensitive they wipe it, then drill holes through the disk. Yes, I know this for a fact. I have done IT work for a government site.

Re:A simple script

[tbj61898]

Thank you,
I just blow up my second hard disk just to test the script.

Re:A simple script

[Black+Copter+Control]

I just blow up my second hard disk just to test the script.

I do hope you were joking, because I just laughed my head off, when I read it.

Just in case you weren't joking, I'll reiterate the lesson that you (should have) learned here:

• Never run random programs if you don't have at least a rudimentary understanding of what it'll do.

My social debt being paid, this gives me flashbacks to the days of BSD 4.0 (we're talking the original BSD -- not the freeBSD, openBSD, etc). It was back at a time when a color text terminal might have been a show-stopper at Comdex. Color not being available, the BSD people decided to set up ls(1) so that, when printing to a terminal, it would run in '-F' mode -- indicating directories with a trailing /, executables with a '*' and unprintable characters with a '?'.

This was also in the early days of rogue (precursor to hack). accidently hitting the 's'ave function read-filename routine was the one part of rogue where hitting 'esc' wouldn't back you out. If you hit 'esc' 'enter', it would save your rogue session with a name of 'esc'. For wierd anti-cheat reasons, the save file was also executable.

Well one day this new grad student walks by and asks me for some help. lots of his files were missing and, whenever he explained his predicament to any knowledgable user/sysadmin type, they would literally ROTFL.

After I solemnly promised not to laugh, he explained that rogue had created this wierd file and he'd wanted to delete it. Next thing he knows, he gets a bunch of error messages and all his files are gone. Since it appeard on his screen as '*?" (escape key as name, and executable), he'd typed in

rm *?

After the few seconds of silence that it took to hold down my composure, I explained to him that

1. *? was evaluated by the shell as a wildcard for any file with at least one character in it's name
2. (this was not long after star wars) There was a unix-universe StarWars spoof making the rounds of usenet (nee netnews) .. In 'DecWars', Darth Vadic was building his deadly, filesystem crunching 'arem star' (pronounced 'rm *'). This poor sod, had managed to unwittingly managed to live Vadic's dream and unleashed the full power of "the Empire's ultimate program: the Are-Em Star". -- albeit on his own file system.

The only consolation I could give him was that he'd brightened up many sysadin's days, and he hadn't used the '-r' (rebel base?) option, so his subdirectories were safe.

Re:A simple script

[Black+Copter+Control]

and for anything sensitive they wipe it, then drill holes through the disk.

I've generally been of the opinion that the only way to be absolutely sure that old data could never be recovered from a disk was 'judicious application of a blast furnace'.

In any case, for the person who feels that triple-write was a bit excessive for today's bit densities: One poster back in the 80's noted that his company found that the rules for securely erasing disks that had been used on test systems by 'sensitive' government organizations was so onerous that it was cheaper to just melt them down. When you consider that, back then, a 40MB hard disk (on a 14" multihead platter) would set you back $5digits, I think it's fair to say that they did far more than 3 overwrites back then.

To give you an idea of the lengths to which spies will go to decode really sensitive data, some of the russian secret messages intercepted in the late 40's and thought to be about nuclear weapons espionage were still being decoded in the early 80's (as far forward as FOI requests for this sort of data will get you).

Re:A simple script

[msim]

When i worked in the Australian Govt in the IT sector, one of the lead admin's had a silvery lump on his desk he used as a paperweight.

When asked about it, he told me that it used to be the hard disk in the laptop of one of the heads of the Dept of Foreign Affairs, and security policy for the computer hardware of someone of that rank meant that the dead hard disk was required to be melted.

Re:A simple script

[tbj61898]

Hey BCC (Black Copter Control),
don't worry I was only joking! ;)

I'll have to admit:
some months ago, I decided to stop using an hibrid windows/Linux machine and to drop off windows. A dual boot machine is nearly useless for me, since I really don't like to reboot every time I need to switch OS (and I don't need to switch OS, thanks to wine and plex86). So I bang in slack and times passed by.

One night I back home, I was really drunk. Well, it was about 4am, so I sit down in front of slack, I started Evolution, checked mail and I find out a friend of me telling to check a site for a nice flash movie.

Ok, go on mozilla, ROAR, navigate to that site, find out the link... and HANG. Mozilla hanged, probably the bastard flash player. Ok, let's try once more. Open mozilla, go to the site, follow the link, killall mozilla.

You must know that my patience is VERY limited when I'm drunk, especially in front of a gray-buzzing-box with some gadget (say:mouse and keyb) attached.

Suddenly my self control went down, alcool fills up my skull and I banged in my Windows CD.

I was able to see the flash movie in two hour, but since I was drunk I drop something like 7000 audio files, some gb of videos and lots of other files. As you now, critical documents have backups, and backups sometimes work. It worked.

That night I learned a lesson: never NEVER manage my partition table while drunk, especially when I have to repartition disc one, and I edit partition on disc two.

Andrè

Re:A simple script

[droid_rage]

True, but with oxidation and triple-wipe, anything recoverable will probably be gotten using an electron microscope. Maybe they sent some off to be melted, but there wasn't anything on-site that I know of that could melt a HD. There was some sensitive data where I worked, but nothing the Russians or anybody with the processing power and financial backing handy for the job were likely to want. Mostly just lies from the 50s and 60s they wanted to keep from the American public, probably.

Note to Mods: Clearly OT

I'm not trying to bash baryon, but really, is this the place to be discussing information gleaned from old hard drives?

Every other poster has managed to stay within the confines of this discussion, which is clearly about Duplicate stories being posted to Slashdot.

I don't think it's fair to them, or the rest of the readers, if this post doesn't get modded down to -1 Offtopic.

Re:Note to Mods: Clearly OT

uhh "What's the strangest thing readers have found, or left, on a hard drive?" he's well within the topic, which is not about duplicate /. articles //fly//

Re:Note to Mods: Clearly OT

[gabec]

Nah, you'll probably find that his entry is a duplicate... just copy/pasted from the last time this discussion was posted!

Re:Note to Mods: Clearly OT

[SethDev]

I'm not trying to bash Mr. Coward, but really, is this the place to be discussing duplicate stories being posted to Slashdot?

Every other poster has managed to stay within the confines of this discussion, which is clearly about information gleaned from old hard drives.

I don't think it's fair to them, or the rest of the readers, if this post doesn't get modded down to -1 Offtopic. ;)

Not quite a duplicate ...

[dougmc]

Yes, we've seen the story about the hard drives. Many times, in many different places.

However, this part --

What's the strangest thing readers have found, or left, on a hard drive?"

is not a duplicate. I think the question would better fit into the Ask Slashdot section, but oh well ...

Perhaps somebody was just trying to start up a discussion about things that have been left on harddrives, not about how many times we can call it a dup.

Re:omfg, same story found on old hd!

[Apro+im]

Only 15?

I leave all sorts on my drives

[MartinG]

But it doesn't matter of course because I use crypto-loop for exactly these reasons.

something interesting I found

[catwh0re]

when digging through an old work hard drive other than finding the usual outdated business documents and porn. I also found someone's personal stash of sort of secret info files they were keeping tabs on everyone in the office, *cuts and pastes*:

"Tuesday 8th of February 1997, Tony is pissing me off today, he's already taken 4 coffee breaks, sticking me with the rest of the work, note to self report to boss. Julie is looking rather sexy today, comment to her at lunch about lovely blouse."

It got spicy here and there and read like a badly written journal, still it was great to read about the daily intricate moments that one of my ex collegues had felt.

Re:something interesting I found

[Dirtside]

Uh, in February 1997, the 8th was a Saturday, not a Tuesday.

I'll leave conclusions to the reader. :)

Re:something interesting I found

[Kizzle]

Those would make a great website.

I once repaided Garry Glitter's computer and...

[brejc8]

Errr Id better not tell this one.

Don't think of it as a dupe

[IainHere]

Think of it as an opportunity for even the dimmest of slashdotters to appear funny - go grabbing the funniest comments from the original story! For example:

"Luckily for me, my Ebay'd hard drives are safe: I only sell broken ones."

"Two MIT grad students bought used drives from eBay and secondhand computer stores.
Don't I feel inferior. I've done the same with used HD's in the past and I only have a HS edumacation."

"Your old HD is safe, I can get creditcard numbers faster on kazaa."

"Was it Pete Townshend's drive?"

"How do I destroy a HD? I just wait for my warranty to run out - it becomes unreadable shortly thereafter!"

Number 8? Number 8? Your order is up

[Gambit+Thirty-Two]

One time when I came home from work, there was a PC by the dumpster at our apartment complex. I brought it in to harvest it for parts (never can have enough screws), and i decided to boot it up first to see what it was. Low end pentium, like a 75mhz. 8megs of ram. Ran DOS and Win 3.11.

Turned out the machine used to be a Kiosk machine at a deli counter at a local grocery store. There wasnt TOO much of interest on it, but there was a huge list of peoples meat and cheese orders.

The things you'll see...

About 6 months ago, I was taking out the trash in my apartment when I noticed a computer case next to the dumpster. Being the pack rat I am, I grabbed that baby and haulled it up to my room. It was absolutly caked in smoke and dust, so after an hour of totally cleaning it, I was ready to fire it up. The system was a 166 P1 and was in perfect working order, dispite the dust bunnies. Windows 95 loaded up painfully slow, but I managed. And the wealth of crap I found on there, lemme tell ya.

The first thing I found was an exchange of messages between the previous owner and a company that had shipped him a crate of mushrooms. Yes, mushrooms. Apperantly, customs has distroyed his first order and he wanted the company to ship a replacement. But it doesn't stop here.

The second thing I found was a pile of emails between the previous owner and his ex-girlfriend. Wow were they at eachothers necks. Apperantly, the previous owner was your average college drunkard and basically rapped this girl. I won't go into the specifics of it, but man, it was like watching a train wreck. I couldn't stop from reading every last juicy detail.

Anyway, that was about it... not CC# or anything like that, just sex and drugs.

Re:A simple script (grr)

[Black+Copter+Control]

dd if=/dev/urand bs=100k count=100 of=garbage

should be

dd if=/dev/urandom bs=100k count=100 of=garbage

(I was sure that I'd fixed that)

Re:You are in a maze of twisty little stories...

[perky]

George, is that you?

In further news...

[grub]

- The Allies win the war!
- Einstein Dies!
- Korea is a stalemate!
- Al Gore invents the Internet!

From ...

[Koyaanisqatsi]

From the hasn't-anyone-heard-off dept

Suggested new name for Slashdot:

[The+Gline]

Slashdotdotdotdotdotdot.

Slashdot is the matrix

[Neophytus]

And duplicate articles are the black cat.
Something has 'changed' - watch out guys!

Re:Real Secrets Revealed!

[stevejsmith]

...News at 11, and 11:30, it seems.

There's a lesson here...

[Tar-Palantir]

Before you sell a computer, wipe the damn hard drive! Don't just reformat - do a low-level reformat and have it overwritten with zeros. If you're really worried, use PGP to do it. Then re-install the system and whatever else belongs there.

If you know somebody who's selling/giving away a computer, make sure they know that the Trash/Recycle Bin doesn't really delete anything.

Re:There's a lesson here...

[FatAlb3rt]

RTFPSTTD - Read The F'n Parent Story To This Duplicate. Or perhaps the link. Summary: the best way to reformat is random 1's and 0's at least 7 times. Just writing 0's once does not make the data unrecoverable.

Re:There's a lesson here...

[Tar-Palantir]

While that is correct, seven passes isn't really necessary in most cases. The only time you'd really need to use that much security is if you've got highly sensitive data (like, say, corporate secrets). Average users almost certainly do not need to go that far. One pass makes it "gone" enough that Norton can't get it back, and that's good enough for me.

MODERATORS

[pyr0]

Seeing as this story is completely redundant, wouldn't all those posts being moderated as such be *on* topic? :)

Dupe filtering

[jensend]

Slashdot ought to implement a dupe filtering system along the lines of the following: People indicate in their prefs whether or not they want to see dups (for the extra discussion). When a dupe is posted and an editor later recognizes it as a dupe, the editor flags it as a dupe and it no longer shows up on the pages of people who have asked not to see dupes.

Re:Dupe filtering

[MORTAR_COMBAT!]

This is a sensible idea. Mod parent up.

Re:Dupe filtering

[Reziac]

Could this include a feature to eliminate "Clueless dupes who post comments to such articles"? ;)

Re:Dupe filtering

[SlightlyMadman]

In addition, they should install a dupe comment rating system, so I can assign a -5 to any comment bitching about dupes.

Thank you for at least offering something constructive, though, instead of just saying "Taco can't spell, I mean didn't check to see if it had been posted, already!"

Also, to play the devil's advocate, I must suggest adding a meta-dupe-comment rating system be installed, so one can also assign -5 to any comment bitching about comments bitching about dupes.

Re:Dupe filtering

[Alsee]

dupe filtering system

Oh wonderful (groan). The next day you'd have several thousand baffled people trying to figure out why the hell the front page is completely blank.

-

Re:Dupe filtering

[oh]

You are already modded up to 5, so I can't mod you higher. I'll just reply and say I think this is a good idea. Please implement!!!!

Look what my Data Mining turned up

[teamhasnoi]

C:\WINDOWS\MYDOCUME~1\ToRepost
C:dir

HDMINING.TXT
CMDTACO.TXT
CBYNEAL.TXT
ASCIPR0N.TXT
FLEXDISP.TXT
MSSUXORS.TXT
SDVERTSE.TXT
IHATETRL.TXT
OSXROCKS.TXT
RPOSTALL.CGI
SLASH.HTM

VOLUME SLASDT
20030023 bytes free 34789287 bytes used

C:

Re:Look what my Data Mining turned up

[gottabeme]

...Windows? Is this an obscure form of insult to CmdrTaco?

hasn't-anyone-heard-of-deja-vu

[ackthpt]

This was posted before here

[Re: BBC] Sometimes it takes longer for the news to make it to that side of the pond.

hasn't-anyone-heard-of-deja-vu

Doesn't Taco actually read his own site anymore? Maybe there's should be a utility for scrubbing embarassing duplicate stories from Slashdot. ;-)

An easy way to fix the problem

Since all the hard drive manufacturers that I've dealt with (Seagate, Maxtor, Western Digital, etc.) all make you jump through hoops to find the right utilities for various drives, there's an easy way to do a low-level and fix the problem:

dd if=/dev/zero of=/dev/hdX# bs=1k

Using this with Toms RTBT, you've got a very handy utility floppy.

Data from previous owners

Okay, we've established this article is a dupe. But the original didn't have this juicy morsel:

"What's the strangest thing readers have found, or left, on a hard drive?"

Like many /. readers, I am considered the local "computer guy" that fixes the computers when things go wrong. One system I recently worked on was a throw-away by a local hospital. I was stunned and shocked when I went scouring the hundreds of .dbx and .dbf files, only to find that it still had on it medical records!

Knowing this could cause legal trouble, I quickly got on the phone and called the hospital. They said that they thought the system was clean, and that I should destroy any data on the drive. I then called my lawyer. After a small consulting fee (about $60) he informed me that I shouldn't have anything to worry about, so long as I did as the hospital asked, and destroyed all copies of the records. And I did, and that was the first time I ever felt good about losing data!

(Posting anonymously, in case any other slashdotters get any funny ideas... :)

So how come...

[patrixx]

YOU are posting in this thread? Following your own advice you should be outside breathing fresh air. Tsk tsk ;-)

Instead of bitchin'

[slackerfilm]

Not to defend the Taco (ok, to defend the Taco) but if you'd read the damn article, you would see that it is a request for your experience.

Sheesh, you'd think the 'nerds' would pay attention to the details. But then, you are not really nerds. Are you?

Re:Instead of bitchin'

[whovian]

If so, then I would like to submit respectfully to Taco that given the track record here with respect to reposts, isn't it reasonable to ask for a warning or disclaimer up-front? At least for a little while?

Re:Instead of bitchin'

[slackerfilm]

Yeah, They used to do that. I have been kind of wondering why that pracice stopped

Saw 2 HP machines

[PotatoHead]

in a dumpster.

A friend went back to claim them, this is what he ended up with:

2 HP Server class machines PIII 450Mhz good working condition once the cigarette ashes were removed.

1 DLT Tape backup

19 New tapes in wrapper and cleaning kit

Cables and other accessories.

The machines were used by a financial company. Everything worked and booted up. NT server loaded and ready....

We shut them down and wiped everything. Pretty scary actually, who knows what was on those machines!

Re:snippet & loink to original SF Gate article

[Gudlyf]

Simson Garfinkel

Dear lord, that poor bastard must've been subject to so many Simon & Garfunkel jokes.

That's easy

[Chocolate+Teapot]

What's the strangest thing readers have found, or left, on a hard drive?

Windows '95

Re:That's easy

[chaddarland]

Windows ME

./ configuration request: Exclude Duplicates

[1st1]

Preferences|Homepage|Exclude Stories from the Homepage|Topics|Duplicate stories = Ticked

This story is part of a striped disk array

[leek]

This story is part of a striped disk array, which is why its content looks similar, but not identical, to the other stripe, which was discovered a week ago.

PGP!

[Thud457]

PGP (for windows or mac, ie not GPG) has two commands related to this: wipe file and wipe free space. They overwrite the appropriate sectors of the disk with several patterns designed to ensure that no matter what (common) encoding scheme the hard disk uses, every bit will have been set at least once, zeroed at least once, and overwritten with pseudorandom data at least once. If you set in on a lot of passes, it does an even better job. This would be a cheap (free, except for time and bandwidth to download it) way to make sure your sensitive data doesn't get out.

That said, experts would tell you that the only reliable way to make sure sensitive data doesn't get out is to thermite your drive.

Also, what's the one-line unix command (running MacOS X here).

• http://slashdot.org/comments.pl?sid=51331&cid=51 18950
• http://slashdot.org/comments.pl?sid=50856&cid=50 91657

Re:PGP!

[Panoramix]

PGP (for windows or mac, ie not GPG) has two commands related to this: wipe file and wipe free space. [...] Also, what's the one-line unix command (running MacOS X here).

On Linux, I've always used shred(1). I think is part of fileutils. I guess that for wiping an entire harddrive, you could shred the device. Or run a couple of dd's from urandom.

Re:PGP!

[Eil]

On a GNU system, "man shred".

Re:PGP!

[Door-opening+Fascist]

One has to keep in mind that these programs are not designed to work with journaling filesystems. The presence of a journal means that the wiper is not actually certain that the blocks were overwritten.

If one is giving away a hard drive, it is a good idea to low-level format the drive (if it is SCSI), and/or create a partition spanning the entire disk, dd from /dev/zero on to the disk until it is full, and then use a wiper to delete that file.

Re:PGP!

[Captain+Large+Face]

Also, what's the one-line unix command (running MacOS X here).

shred

Helpful hint to avoid duplicates

[JHandey]

When you use a story written in a foreign paper about a US college...

It MAY have been reported in a US paper first.

Ok?

A couple questions

[nochops]

1. Are you Tony? How many coffee breaks have you had today?

2. Got any nice pictures of Julie?

Re:solution to this

[Oculus+Habent]

I once used this technique to wipe a disk:

cat /mnt/mp3/* > /dev/hd1

With DV editing or tv capture cards, it's even easier.

Duplicate as Inspiration

[RevDobbs]

Sure, the story is a dupe... but the original one is why I picked up two computers that were sitting on the curb this morning :-D

Instead of a dupe...

[Eccles]

How about this story about Congress realizing that patent problems may take away their blackberrys? Who knows, maybe they'll wake up a bit to all that we've been kvetching about for some long...

What a way to learn someone's fetishes

[Blue+Lozenge]

Some dude was fired from our company a while back.

When we sorted through his equipment, not only did he have volumes of she-male pr0n, but he had been subscribed to she-male pr0n emailing lists using his company email account.

It certainly explained his freaky looking "girlfriend".
:)

A whole slew of games

[mao+che+minh]

I very recently purchased a hard drive off of Ebay for a friend that had at least 12 modern games installed, all with cracks and no-CD patches applied. Jedi Knight 2, Quake 3, Unreal Tournament 2003, Civilization, you name it, this guy had it. We had tons of fun for a while (hell, I imaged the hard drive right away :-) )

Re:A whole slew of games

[barc0001]

And not just hard drives. Browsing around the company LAN, we find all sorts of things on peoples's shares. And once a couple of years back, my colleague and I discovered some persons of questionable parentage had gotten into one of our colocated servers and was using it as an FTP site for trading games. Our reaction was like this:

Me: "Where did all the disk space go?"

Co-worker: "And this new account?"

Me: "Damn! I knew we should have replaced this POS(a 2 year old install)! It's been compomised!"

Co-worker: "Here's where it went. They've got an FTP site up for trading games. It's taking up 30 gigs!"

Me: "Bastards! .... Is there anything good in there?"

Co-worker: "Actually.... yes..."

Me: "OK. Shut that account out, let's prepare to redo the system. And maybe we should archive that. You know, for evidence...."

Strangest thing found

[bstadil]

The strangest most surreal thing found so far is a copy of the same story on Slashdot.org from a few days ago.

strangest thing i've left on a hard drive

[tekkitan]

strangest thing i've left on a hard drive? Windows ME ! :p

Re:Morsals?

[blahlemon]

Morsals from my neighbors trashcan? That's disgusting. My goodness, there are foodbanks all over the place, you don't need to eat...from...

(goes back and checks spelling)

Oh, MORALS. Silly Moral...I mean mortal.

On topic, however, considering what some people do with their neighbors looking in their trashcan wouldn't reveal any surprises. Truth is if you don't want people to know what you've done either a: don't do it or b: don't give it away. Just don't trust anyone else to treat you right.

Tomorrow on New Scientist

[Longjmp]

15:08 21 January 03

At a worldwide conference held in Atlanta, GA, leading scientists and publishers agreed on a new measurement unit to describe the common phenomenon of news stories getting published repeatedly on internet news sites.

1 Taco = 3 dpm (dupes per minute)

After a lengthy discussion we eventually agreed to name the new unit after "CmdrTaco", founder of the famous web site Slashdot. We are really happy now, this has been bothering us since the beginning of the internet. said Sag. S. Nochmal, German publisher and chairman of the convention.

"CmdrTaco" himself was unavailable for comment. He was last seen yelling "Eternal fame" and "must write automatic re-post script now."

Re:Tomorrow on New Scientist

[thlayli]

C'mon, give this guy a break.. It's not like he has made crimes against humanity like Hitler or anything
like that..

Re:Tomorrow on New Scientist

[gymbrall]

19:22 21 January 03

BREAKING NEWS

There was a thrill of genuine excitement today in the normall dull world of weights and measures as Culbert Pons, the Chair of Recent Units announced a new measurement to describe the common phenomenon of news stories getting published repeatedly on internet news sites.

1 Taco = 3 dpm (dupes per minute)

The unit was named after "Cmdr Taco", founder of internet geek news site Slashdot. Mr. Pons is requesting a federal grant to study a phenomenon observed only on Slashdot, where duplicate stories are somehow posted before the original. I refer to individuals with such prescient news power as "pre-dupes" said Culbert. The Philip K. Dick estate was unavailable for comment.

--

When I started writing this, it was an homage to the original post. Then I hit the snag of mild inspiration.

Arthur Andersen

[Spazmania]

Lots of good stuff.

I picked up a half a dozen or so old Pentium computers for dirt at the Arthur Andersen asset auction in DC last year. You know, the guys who audited Enron.

I figured they'd have removed the drives. Nope! Blanked them? Nope! In several cases, the PCs' former users had left only a few megs free on the 1.2 gig drives.

Now, I wouldn't know an incriminating document if hit me in the ass. Nevertheless, if my company's books were audited by Arthur Andersen, I'd be pissed off that they didn't clear those drives.

Never mind the drives....

[pbuxton]

Asking people (as opposed to corporations) to actively wipe their HD's seems ineffective when most people don't even practice safe data, anyway.

I inherited some PC's at one site I support. One such PC had the previous IT contractor's personal Hotmail folder downloaded to Outlook Express. I had no idea whose mail this was, so I had to look at it (I was about to wipe and reinstall Windows to get rid of IPX/SPX). It was, ah, personal mail... indeed. The contractor... their spouse... a third party.... I wiped it and kept my mouth shut. Don't trashtalk competitors; it's unprofessional. :)

Secure Harddisk Eraser (boot floppy, GPL)

[infolib]

Secure Harddisk Eraser is a Linux floppy that overwrites the HD several times with different patterns. Just boot from the floppy, wait 60 seconds and the harddisk will start to erase.

The homepage

Oh yes, I've posted on this before, but that doesn't seem to matter...

It's a Karma Pyramid Scheme

[raehl]

Taco posts a dupe, and those that get in early pointing it out get Karma, those that point out the dupes pointing out the dupe get some Karma, and those who point out the dupes pointing out the dupes pointing out the dupes get some karma, but if you get into the pyramid too late, you get screwed with -1 Redundant.

How to destroy all that data???

[Richard_Davies]

My mum recently asked me how they could reliably destroy all the data on a hard disk they are throwing away. I suggested baking it in the oven for a while. Does anyone know what temperature would be good and for how long? Or suggest an alternative that is cheap, easy and 100% effective?

Re:How to destroy all that data???

[karlandtanya]

See http://slashdot.org/askslashdot/01/02/21/1752256.s html

Need a new catagory called 'Dupes'

[wodelltech]

no message

No Kidding

[refrain]

I just thought I'd share a story. When I was a kid (like 15-ish, I guess), I worked at a local computer shop repairing people's PCs... upgrades, installs, that sort of thing. Being concious of the respect one must give to people's privacy, I never really looked into people's Internet caches, data directories, etc., until one day when I, for the purposes of what I was doing, was forced to...

Now this machine, if I remember correctly, was a "family" PC.. games for the kids, productivity software (I think it was used to run a small business as well), lots of garishly colored Win95 Plus! themes, etc. And there was porn in the cache...

Strange porn...

Involving animals...

And leather...

And other things I don't care to remember!

No Joke. *shudder* Who knows how normal I would have turned out if I had never seen that stuff? Being a bit shocked and embarassed, I never mentioned it to the customer... though I probably should have said something...? *shrug*

Re:No Kidding

[KshGoddess]

Slightly OT, since it wasn't on a hard drive, but in a user's email account they were "having trouble with"... back in the day, I worked for a mom-n-pop ISP. This was 96, before everyone and their cousin had any clue about what the internet was, how to use it, or that a dial-up connection was not the best way to surf.

User calls up, "I can't get my mail, Netscape just times out." I ask for the username, do a password lookup, and configure Netscape to get this user's mail. 200+ messages. All porn. I told him the number of messages, and calculated the time it would take to download them all over 28.8 ... yes, Netscape probably would time out, especially since this was POP. I asked him if he ever downloaded and kept the email, he said "No, I wanted to get the email at work and at home." He named the business he worked for and what he did there.

Now, I don't care what you do at home, in private, with any number of consenting adults, but ... work is where you, um, WORK. And if I were someone who took my computer in for someone else to work on, the last thing I'd want them to have is sticky fingers.

Moderation (On Topic in Thread, read the comment)

[The+Darkness]

Maybe I should post this as anonymous to avoid the Offtopic Karma hit. Nah, I'll just hit "No Karma Bonus" and feel the 2 point burn.

Or maybe the moderators who give "Offtopic" mods need to learn how to read the parent posts and see if the comment is really off topic or not.

Tangents can and do appear. While they may be "off topic" for the main heading they can be on topic for the context of the thread. For a bunch of people who gripe about context (benchmarks, blame for root exploits, etc) the "Offtopic" mod seems to be used improperly more often than not.

Re:You are in a maze of twisty little stories...

[hoggoth]

> George, is that you?

Nope.

Artoo Detoo, is that you?

Lots of Lovely Bank data

[valisk]

I bought a bunch of SS20s which once belonged to a major bank, I won't name names so Morgan Stanley don't need to worry that I have tons of data belonging to their customers, which they left incompetantly left on these machines.
Lucky for this un-named bank that I am an honest kind of guy and llfed the drives without looking.

Re:A simple script - done the hard way!

[NTSwerver]

AFAIK, the only way to completely erase everything from a hard disk is to smash it into little pieces with a hammer. Even after a format data is accessable, if you know how to get it.

My company does work for the Ministry of Defence in the UK, if we have to swap out a NIC, for example, they won't release the dead card for at least two weeks so that any residual charge dissipates, otherwise information can be gleaned from the chips on the card!

Re:Moderation (On Topic in Thread, read the commen

[selderrr]

"Offtopic" mod seems to be used improperly more often than not.

very true indeed.
This whole little subdiscussion is very likely to get moderated as offtopic, whereas the only consistent topic in the entire comments is the fact that it's a dupe, which is offtopic.
The whole issue basically comes down to wether slashdot is a "discussion site" or an "information site based on comments". If the main purpose of slashdot is to create a vast and useful archive of comments that can enlighten a visitor seraching for info on a "news for nerd" subject, then indeed we are offtopic. If on the other hand, slashdot is a forum in which nerds can discuss anything they consider nerdstuff, almost everything is on topic !

I suppose the best way is something in between, but right now, I have the impression the balance is shifted way to much towards the first type. Plus, as many of us have said, the biggest problem is the fact that due to the recursive nature of the problem, the problem itself can't be discussed on slashdot.

And that attitude is what we usually call censorship. Slashdot is more and more becoming a selfcensoring community. I've tried to find analogies in the real world, but fail to see one so far. The only thing I'm sure of, is that it is not a GoodThing(tm)

Re:A simple script - done the hard way!

[rot26]

AFAIK, the only way to completely erase everything from a hard disk is to smash it into little pieces with a hammer. Even after a format data is accessable, if you know how to get it.

Even after smashing it with a hammer, I wouldn't be surprised if the right people with the right equipment (tunneling scanning electron microscope possibly) could still read it. I recall a few years back some kiddy pr0n guy erased a bunch of his floppy disks with a magnet, then cut them up with scissors, and the FBI still managed to retrieve enough data to prosecute him.

securing old drives

[forkboy]

Well, here's what we do around these parts with old hard drives....take em up to the range and put a clip of .762 into each one. (or .223, depends on whether the AK or the AR15 is out that day)

I promise you, you will NOT have to worry about someone getting your data after that.

Re:securing old drives

[digitalhermit]

Yup. We can't take old equipment to the range (they won't allow non-paper targets) but we can drive about an hour up north to Central Florida and open up a few ports with the Remington 700 in .223 or 22-250. I also have a couple Winchester Model 70s in .270 that are quite effective at remotely securing the drive.

What everyone dreams of

[scout.finch]

On a mac SE/30 from Salvation Army I found intimate IM's between two lesbians.

mmm.. cinemaxy

Re:Saw 2 HP machines

[theguru]

>who knows what was on those machines!

Well, nobody does now! You people and your morals. You could have at least lied and told me it was something juicy. :)

Burglary Recovery!

[KC7GR]

Back in the late 90's, when I was still doing PC service work for folks, I had a pretty wild experience in terms of recovery. I ran into this cab driver at CompUSA who was in the process of picking up a whole bunch of power cords and other basic accessories. We got to talking, and he said he was new to computers, and had just gotten a whole bunch of hardware from the local swap meet.

We talked a while longer, and he ended up agreeing to pay my hourly rate to look the machines over, clean them up, and wipe the drives so he could use 'em. What he had was a full-tower Pentium 166 (big stuff back then), and a smaller external drive that had a security key lock on it.

So, I vacuum the system's guts (had a ton of dust-bunnies in there), reseat the memory, and fire it up. It boots into Win95. First thing I notice is a TON of very high-end graphics-manipulation and publishing software installed, including packages like Adobe PageMaker, a full version of Acrobat, PhotoShop, etc. There was also the (then) current version of Visual Basic and Visual C (both Enterprise-class editions).

This set off some alarm bells in my head. The combined software on that system was worth at least as much as the hardware. I started digging a bit deeper. I found a couple of Word documents (yes, the system had a full version of MS Office and MS Exchange on it as well) with the name of a graphics-and-advertising company barely 30 miles away.

I called said company, and got hold of the admin assistant for the programmer who's name was all over the system. Turns out that the entirety of what that cabbie had delivered to me had all been stolen in a burglary the same day it showed up at the swap meet!

You can probably guess the rest. The cabbie, once he learned what was going on, and not wanting any trouble with the King County Sheriffs, agreed to just leave the equipment with me in return for anonymity. The system, as it turned out, belonged to one of their senior developer/programmers who, along with their system, had lost about seven years worth of intense work.

The company involved was so delighted to get everything back intact (yep, every byte of that work was recovered) that they not only paid me for my time involved in cleaning the stuff up, but they also gave me a $50.00 certificate for one of the best restaurants in town. My wife and I had a nice dinner with that one.

The moral of the story: Pay VERY close attention to what may be left on any hard drive or system you get, and follow your instincts if you're the least bit suspicious! You could end up saving someone a ton of grief and lost hours.

Re:Burglary Recovery!

[TheTick]

The system, as it turned out, belonged to one of their senior developer/programmers who, along with their system, had lost about seven years worth of intense work.

[...]

The moral of the story: Pay VERY close attention to what may be left on any hard drive[...]You could end up saving someone a ton of grief and lost hours.

It's an interesting story, I agree, but the real moral ought to be make backups! There's no excuse for losing years of work just because a box was stolen. Some negligent sysadmin should've been canned over that.

Re:Burglary Recovery!

[mousse-man]

And that senior developer didn't have a backup of his machine?

Re:Burglary Recovery!

[pi_rules]

Some negligent sysadmin should've been canned over that.

Whoop! It's not the sysadmin's job to make sure you do backups properly -- unless you've got a desktop system constantly conected to the network, and I think the poster clearly stated that the issue at hand was a laptop.

This is where source control and versioning control comes into play, and yes, it does apply to your graphis people. Every CVS shop I've been employed at, and involved in develpment with, I kept myself on "watch" to see who checked in code. I didn't really care about productivity really, as I knew people were doing their job, I just wanted to see who was making marginal gains and actively checking in good code. I'd track down people and ask them to check even non-working but compilable code at times, when they hadn't made an update in a few days.

The last shop I was at, which I wasn't a manger in at all, I'd see people with things in Visual Source Safe (there's an oxymoron for you) checked out for 2 weeks without a single update to their major components. That's just not good. I sure as heck don't trust code on my machine to stay put for any given time. I develop on my local box and generally checkin with every minor milestone I complete. Not only does this guarantee safety on my part, but it gives the company a good log of what I have been working on in case somebody else needs to take my place.

This -does- go for graphics designers too -- source control and versioning control should be a part of your daily routine. Get used to it.

Re:Burglary Recovery!

[KC7GR]

You wrote...

"Whoop! It's not the sysadmin's job to make sure you do backups properly -- unless you've got a desktop system constantly conected to the network, and I think the poster clearly stated that the issue at hand was a laptop."

-=-=-=-

Pardon me for following up on my own post, but... Not so! The system in question was anything but a laptop. It was a full-tower case, with a P166 (current for the time). There was a network card, so it must have been hitched to a LAN, but the developer obviously had no backups -- then!

I would be very surprised if they didn't start making backups soon after they got their system back.

Found some really embarassing stuff...

[Doug+Merritt]

What's the strangest thing readers have found, or left, on a hard drive?"

True story: some years back my wife was doing web design for various clients, one of whom had a graphic artist on staff, who gave her a Mac 100M Zip disk that supposedly had some nice artwork on it for my wife to put on the client's web site.

But the disk appeared to be completely empty, so my wife gave it to me to try to recover the missing files.

No problem under Linux...I recovered a full 100 megabytes of files...but they were all kinky porn!!!

We decided to let the guy off easy and didn't tell his employers what he was doing with company computers and media, but my wife was always a bit leery of working with that guy after that.

(Yes, I did of course save the more, ah, artistic images for, um, later personal, uh, research. ;-)

This kind of amusing leftovers on media is probably extremely common, but most people don't have any motivation to pry around into deleted files. As I recall, this particular disk just had a bit of file system damage that made it appear empty at first, rather than literally having deleted files, so file system repair was enough to get all of the originals back.

Re:Found some really embarassing stuff...

[Old+Wolf]

I bought a HD once and ran unformat.. got some porn... and got covered in Junkie virus. Serves me right

Re:Found some really embarassing stuff...

[jamesh]

she was 'a bit leery' about working with someone who had porn like that. and yet she was married to you who had porn like that. funny old world isn't it :)

kinky: what i do.
perverted: what you do that i don't

Re:Found some really embarassing stuff...

[Doug+Merritt]

Humor, d00d, it was humor. You don't have to check your sense of humor at the door...oh wait, you're kidding too? Ah, good.

Re:Found some really embarassing stuff...

[jamesh]

on the internet, nobody can hear your sarcasm.

It's a dupe

[Fr33z0r]

It's a dupe, and in other news - UFO stands for UNIDENTIFIED flying object. I don't mind duplicate stories, of which we see one or two occasionally, but 300 people posting the same comment in a row... How hypocritical can you get?

ACME

[Tablizer]

Time to look for giant magnets on ebay also.

how to elimiate dupe stories..

[cheesyfru]

Let the users do it. When an admin approves and posts a story, it must first be screened by the community. Anyone with sufficiently positive karma can vote on the pending stories, and if a certain story has enough votes marking it as a dupe, the admins are notified and it isn't posted without a manual override.

It could be a selection right below the metamoderation - "Review Pending Stories". Assuming it waits for 100 votes before deciding what to do, this would only delay the posting process by a few minutes, and it'd make for a much better Slashdot.

Re:how to elimiate dupe stories..

[addps4cat]

That is nothing like kuro5hin.org. What a great idea!

Re:how to elimiate dupe stories..

[SoupIsGoodFood_42]

Too much work for them ;)

If you want to see how it should be done, take a look here (need an account if you want to see how it works, or just read their FAQ etc).

Talk about Second hand

[lyoz]

phew... a friend of mine got a brand new computer, with a zero meter hard disk. And he got loads and loads of data on it. Some coy called Microsoft is selling used disks as new. And ppl tell me they are earning a lot of money too.

Can't happen in DoD

[AnalogDiehard]

I did some software development for a Department of Defense project, all classified secret. Computer security is taken very seriously on those projects. No connection to the outside world whatsoever, portable media and devices are tightly controlled, and it's a PC roach motel; if you bring your desktop PC in the secured area, it won't come out. There were even strict policies on phone use, especially to the outside world.

Whenever a PC changed hands, the IT folks did a complete 100% wipe on the hard drive before installing an image, but not before scanning the drive for security violations. I don't know what their disposition policy was, but it's a safe bet that dead media was definitely not going to be recovered.

Re:Can't happen in DoD

[Suicyco]

I've done work in this regard and what happened to faulty hardware that needed to be replaced was hilarious. So, usually, you ship back dead hardware when you need a new harddrive, etc. These are major accounts so they have quick turnaround on these things, and they had this lengthy procedure for sending out any material like this. For your typical harddrive, they would: wipe the disk with various data dumps, ie. write all 1's, all 0's, random noice, rinse repeat a few thousand times. Then, degauss the harddrive in a huge magnetic enclosure. After that, we start to really wipe data. Open the hard drive, remove the platters. Grind them platters with a sander and dispose of the dust. Then, drill several large holes through the platter. Then melt the thing in an oven so all the plastic is nice and runny and let it cool off. Then ship the whole messy pile back to the manufacturer and ask for a replacement. So, while the pc roach motel is kinda true, hardware DOES leave classified areas at times. Just not in any shape to ever have any data recovered from them. Takes a couple of days to wipe a drive to security's satisfaction.

Re:Can't happen in DoD

[1u3hr]

Yeah, right. A former head of the CIA was busted for copying stuff to his home PC/laptop. Not to mention the Chinese scientist accused of espionage for circumventing rules similarly and exposing nuclear secrets (details -- see Google, but I'm pretty sure). Rules on paper are much dfferent than rules in practice.

Re:Number 8? Number 8? Your order is up

[DrewCapu]

"(never can have enough screws)"

Although after 8 in any given 24 hour period, I'm usually exhausted.

Oh, so we're talking about hard disks?

the sixth hard disk

[technoCon]

i see dead files

Strangest thing...

[AtariDatacenter]

...a Slashdot reader has LEFT on a hard drive? Oh, that's easy! It would have to be several gigabytes of Young Tentacle Rape Hentai, judging from some of the comments I've read here over the past few months.

IQs droping around here

The average IQ seems to be taking a plunge at /. and its Almost getting to be a waste of time reading replys.

This IS NOT a repeat of the other story
THIS ONE ask readers what THEY have found on old drives, not what the MIT gang found.

Duh.......

Things a Typo Makes Me Visualize

> Apperantly, the previous owner was your average college drunkard and basically rapped this girl.

Gimmee a beat, Irwin . . .

Hey, woman, I'm talkin to you,
If you don't gimme any lovin', then we're thru!
So I drink a lot of beer, so I drink a lot of whiskey,
You got no cause to be cold when I'm feelin' frisky --
So I'm standing here right outside yo' door,
And I'll keep poppin' these rhymes at cha, even though I'm a bore.

Speaking of all this data recovery

[MATTtheROGUE]

Speaking of all this data recovery, I began to think. And what did i think of, you might ask. How would I retrieve deleted data? I have absolutly no clue how to. How would YOU suggest?

Re:Speaking of all this data recovery

[MrResistor]

Open the Recycle Bin and start browsing...

Re:Speaking of all this data recovery

[MATTtheROGUE]

Ok, maybe I didnt make myself clear. In one of the earlier posts they mentioned even after reformating a harddrive it was possible to retrieve the information previously on the disk. What could I use to retrieve that type of information, or file that had been deleted from the recycle bin?

Theory about resubmitted articles

[Anonym0us+Cow+Herd]

Here is my theory about how the same article appears on slashdot multiple times.

First, the article appears on slashdot. It is very interesting.

Because the article appears on slashdot, it then appears elsewhere like CNet, CNN, etc. (Please no flames for beginning a sentence with a conjunction.)

Now that the news item, especially one like this, appears everywhere, now even the BBC, it gets noticed by editors, submitted, and accpeted in an expidited manner, because an editor submits it the second (third, fourth) time.

However, this is purely speculative on my part.

Strangest thing..

[krin]

I'd have to say the strangest thing I ever found was on a 486 someone gave me. There were seemingly endless folders eached named, and together forming a word in a sentence. Jack/and/jill/went/up/a/hill as an example. It was almost like the person was trying to write a book like that, like they didn't know about word processors or something.

Re:Strangest thing..

[Carrot007]

I once saw a folder heirarchy ike that, had porn right at the end though....

Re:Strangest thing..

[hhknighter]

the strangest thing I found was on some study aboard guy's computer. It was running some Chinese/Japanese/Thai version of windows or something. ALL folders and files were in non-English. Upon clicking what I thought was his virus scanner, a cartoon girl popped up and asked for my 'manly' stick.

I just told him to reinstall English windows or find a translator, cuz basically anything I clicked on resulted in something I rather not see. (I never knew Aladdin did pr0n)

Funny Cat Scream Impression .avi's

[planckscale]

I found an old PII450 in my old fraternity. I found some funny .avi movies of these guys doing impressions of a Screaming Cat.

Re:A simple script - done the hard way!

[GigsVT]

Floppy disk data is many orders of magnitude less dense than a hard drive, let alone a modern one.

I mean, 200 GB in three platters these days. That's about 138,888 floppy disks, in about the surface area of 6 floppies. That's 23 thousand times more dense.

I've never found any accounts on the web of anyone doing magnetic analysis of platter surfaces with modern hard disk, with any amount of equipment, only seen some proposed methods in papers, and even then, they admit it would take weeks to get more than a few kilobytes.

Re:Saw 2 HP machines

[PotatoHead]

Hey, maybe it is better not knowing. We imagine all kinds of good stuff, truth is likely to be something a lot more boring...

I am not sure morals had anything to do with it. It was liability and risk to be sure. We worked in the same building as the other company did.

Either way, I know somebody very happy right now with two machines and nice DLT backup for nothing but a little work (and smell!)

Comerica Banks and your data

[inertself]

I once received a handful of 486 machines from Comerica bank. They were throwing the old out and my uncle told me to grab em before they hit the garbage. Amazingly enough I found out that each one contained customer account information. Since I never intended a life on petty crime I erased the disks, but stuff like that has to make you wonder.

Safty tips for selling drives.

[McFly69]

Any drive I sell or put up on an auction, I make sure I do one or all of these things. Any of these will ensure the data can not be retreived from the drive.

I drop it, on the floor, a few times.
Open the unit up and pour cement/paint inside.
Use a paperclip and touch random metal parts together
Soak it in water for 30 minutes
Put it in the microwave for 30 seconds
Put it in water and microwave for 30 seconds
Play football with it
Attached it to your car muffler for a day or two
Take a shower with it
Take a bath with it
Give it to a child, for a crib toy, for a week
Drop it into the shitter while taking a dump!
Use it as a freezz-bee
Put it in the mover, for a few hours, at max


I am sure you can think of more exciting way to ensure data cleaning. If so, please add to this list!!

The world is't flat!?!?

[E1v!$]

Dude, when I was 4 I was wondering why the world looked round, when everyone else said it looked flat.

ACK.

Re:The world is't flat!?!?

[wkitchen]

Dude, when I was 4 I was wondering why the world looked round, when everyone else said it looked flat.

How thick are your glasses?

It's not with just used hard drives.

[PyrotekNX]

Several years ago i bought a huge box of used floppy disks. They were all supposed to be erased but instead it was tons of software with another blank label on the top of it. Over 90% of the floppies were original diskettes and I ended up with an entire new suite of corel and lotus apps.

Re:solution to this

[brunson]

Fuck you, you no talent assclown! Butterscotch rules! Vanilla sucks! Where did you go to school, SEARS? Anyone who would say that about butterscotch clearly has Oedipal issues, do you kiss you mother with that mouth? Probably, french kiss. French VANILLA, that is!!!!

Big shots?

[E1v!$]

A couple years ago my company purchased some computers from a defunct Psych clinic. There were records for a large number of government and business heavyweights in my area. Enough to do some serious damage. (and get in serious sh!znit)

The drives were low leveled, blasted, etc. Too bad. It would have been good bedtime reading. (morals suck)

Nicest surprise on a "purchased" drive

[haggar]

Actually, I got it for free. The guy thought it had only about 100 MB, while in fact it was a 1 GB+ SCSI drive. The fact was that it had NetWare (3.11 I think) installed, which is installed mostly on a separate, NetWare partition, which this guy didn't apparently notice.

There was this one time...

[apexchin]

I had a drive come to me, work for about 48 hours (just long enough for me to load all my data on it) and then had a head crash. Of course, I was able to return the drive for a replacement, but not before a buddy of mine at a speaker manufacturing plant demagnitized it for me :) Find something on that, MIT boy! Jeff

at least

[_avs_007]

At least it wasn't an article submitted like:

According to this article posted on slashdot, HP released some.......

I'd like to see if something like that can slip through the filters :p

Re:Number 8? Number 8? Your order is up

[Mike1024]

Hey,

never can have enough screws

You got that right.

Michael

Top Secret Project Hard Drives

[InfraMan]

We didn't bother with wiping the drives.

After the end of a project or if a drive went bad, the drive platter was physically removed from the hd, smashed and then finally burned!
( Ob. M.P. quote : "burned down, fell over, then sank into the swamp" )

Better than what they used to do: destroy the ENTIRE PC too!

Re:Top Secret Project Hard Drives

[hhknighter]

Wow, amazing

Same thing happened to me, too. I was installing Windows 95 A version on my oldie 486 DX50 a long time ago, and upon completion, it just clinked and destroyed itself.

I was a kid so I told my dad that windows 95 is electronic version of a paper shredder

Be careful, you don't know what you might find...

[Lord+Prox]

I have one for ya'all...

I was working at a small local computer shop and one day a machine comes in for service. If I remember the guy wanted a new drive put in because he ever so brilliantly deduced that the old one was not working.

OK no prob...

After looking into the old one I saw his stash of pr0n. I was bored, so I rummaged through it...
Hmmmm he likes teens. OK it looks like poloroids on a flatbed scanner. Young teens.

sicko...

The next day he came in to pick up his box, so I carried it out to him and that is when I saw her. I froze, jaw on the ground. I just stood there not knowing what to do... It was his DAUGHTER!

After he left I notified my boss and stopped looking through "bad" or "old" hard drives for some time.

For those lost souls using Windows XP...

[mattACK]

...wiping the free space on a drive is built into the OS.

cipher /w:[path]

where [path]= any location on the drive in question.

This tool doesn't delete files that are present, but simply clears space already marked as "empty". It was included to augment the functionality of EFS. If you encrypt a file, you don't want vestiges of the file from before you encrypted it lingering.

Complete Oracle DB.

[MKalus]

We got a couple of used Sun A1000 Disk Arrays in. When we hooked everything up I looked if I could find any file systems on it, and lo and behold I did. We mounted them and found two complete oracle DBs on it. The DBA was even able to open them up and we were able to look into it.

I never understand why people don't scrub disks, Sun even has a document on this on their blueprints website.

M.

much, much scarier

[zyqqh]

A roommate of mine once worked at the Berkeley admissions office. Once, he showed up with a stack of ~15 floppies that he said were placed in the trash bin and were completely clean and usable when he tried them. Noticing a cryptic sticker with some numbers and the letters "ETS" on it, I got him to let me take a look at them. Took a raw disk dump. Hmm. Looks like ascii-ish data, as if from a flat database file, unencrypted. And hey, here're names... addresses... social security numbers... and a few more odd 4-digit numbers. about 30 minutes later, having figured out where the fields are, it dawns upon me that i had come upon the ETS test records (SAT I/SAT II) for the '97-'98 incoming applicant class at berkeley (some of the '96-'97 data too). Scarily enough, this also included DOB, SSN, addr, phone number, etc. Apparently the people in charge of processing the data did a quickformat or something and threw the disks right out thinking they're clean.

The data has since been destroyed for good, but not until after I spent weeks drooling about the hypothetical possibilities that this could've yielded =)

I always leave this on old hard drives...

[pilot1]

This is what I *always* leave on my old hard drives, yes I know the syntax isn't correct, it isn't supposed to be completely correct, it's just supposed to be semi-easy to understand for whoever gets my hard drive. It's a file name PlansForWorldDomination.sh and here's what it contains.. #!/bin/bash # Looking at MY files are you?! # Tsk.. Tsk.. like my plans for world domination # would be plaintext.. # The REAL ones are encrypted. : "check" if intruder > 0 "remove" goto "check" # This moves the intruder who dared to look at my # files to death row.. : "remove" mv -Rf /usr/annoyingintruder /usr/local/deathrow goto "check" # This checks the time, and if it's after or #equal to 12:00 it # removes everyone on death row : "time" TIME=getthetime if TIME > 11:59 goto "nightnight" goto "time" : "nightnight" echo Nice knowing ya.. mv -Rf /usr/local/deathrow/ /dev/null/ goto "check"

Re:I always leave this on old hard drives...

[pilot1]

Er.. sorry, I forgot to add the HTML.. here is a cleaned up version..

#!/bin/bash

# Looking at MY files are you?!
# Tsk.. Tsk.. like my plans for world domination # would be plaintext..
# The REAL ones are encrypted.

: "check"
if intruder > 0 "remove"
goto "check

# This moves the intruder who dared to look at my # files to death row..
: "remove"
mv -Rf /usr/annoyingintruder /usr/local/deathrow
goto "check"

# This checks the time, and if it's after or #equal to 12:00 it
# removes everyone on death row
: "time"
TIME=getthetime
if TIME > 11:59 goto "nightnight"
goto "time"

: "nightnight"
echo Nice knowing ya..
mv -Rf /usr/local/deathrow/ /dev/null/
goto "check"

Re:Offtopic, but more interesting than this thread

[Panoramix]

Pretty funny, indeed. But...

Pictures of a web page? C'mon, couldn't they save quite a bit of work, and bandwidth, by just writing their stuff in HTML, instead of photoshopping it? I think it was JWZ who once said something like "the web is full of pictures of text, which is kinda sad."

And yes, I do realize the irony of this being the first impression I got from their comments.

Just like in office space.

[moroderzone]

My brother works at a marketing research company. They value thier data so much that instead of selling off thier old computers, they physically destroy them.

Re: snooping as an Admin

[sakshale]

Actually, when I am asked to retire a system, it is my job to "snoop through the files" and insure nothing of value is lost, prior to scrubbing the disk drives. So, failure to snoop can also be grounds for dismissal.

If I was confronted with something equivalent to this, obviously contrived, situation, I would scrub the drives, without comment, and move on. The only time I would report something is if it would impact on the corporation. For example. correspondance related to misuse of corporate IP would be reported immediately.

Sakshale

I have a serious question

[oooga]

My computer crashed a few weeks ago, with years worth of school work and mp3s on it. In the process of trying to recover it I accidentally... started reformating. Yes, I know, I'm an idiot. It only got to about 2% before I shut it off. Anyway, how do I retrieve the data on the disk? Can I send it somewhere? Can I do it myself? How? How much will it cost?

Re:I have a serious question

[1u3hr]

Try testdisk. Free. Recoverd a disk with a gig of downloads for me when Windows trashed the partition table. It takes a long time to analyse a disk, so be patient, then it presents what it thinks the partition table should be, you accept it and it writes it. Obviously, can't run this from the damaged disk itself.

Teach non-techies to wipe their drives

[failedlogic]

I think time has arrived for techices to tell the general public and the companies they work for to wipe their drives before disposing or giving them away. People should be told to encrypt sensitive info and wipe drives. Heck, it should even come w/ the computer manuals IMO with the necessary software.

I think it just goes to show how much people depend on their computers for too many things. Only a matter of 10 years ago, people had financial information, documents, addresses and contacts and any other personal information under lock and key in a filing cabintet.

As long as someone doesn't snoop through their garbage bags, someone would probably not want to go to the local garbage dump to get personal information. Now many simply give old, working hard drives to charitable organizations or friends w/o even reformatting them. In the age of identity theft, I think its safe to say that most in the general public shred paper documents before disposal.

Mac II fraud?

[whitefox]

True story: years back, a friend of still in high school was working at Subway when he got into a conversation with some lady. She claimed to be a landlord and offered to sell him some deliquent renter's Mac II for $150 (incl. CPU, 19" monitor, and 9,600 modem). He took her up on the offer and bought it. When the hard drive wouldn't boot up, he asked me to look at it.

Never having dealt with a Mac before, I did some research and managed to reset the BIOS. Boom, there's the hard drive with some small local publishing company's (think brochures &amp pamphlets) data on it.

I called him over and he flipped when he saw the contents. As it so happens, he worked a second job at this same publishing company!

Next day, he goes in tells his boss he's got their computer. She tells him they reported it stolen and got a new one with the insurance compensation - and here's some money to keep it hush-hush.

To this day, I don't know if the Mac was stolen from the company or not but definitely a weird situation.

Re:A simple script (grr)

[Eil]

On a GNU system, just "shred /dev/hda".

Suggestion

[Dr.+Cody]

In all seriousness, it would do Slashdot a world of good if "Boobies" was under the topics menu.

Are you kidding?

[UnixRevolution]

Soviet Russia doesn't exist anymore? well then..

In Soviet Russia, *YOU* cease to exist.

why? Because the hard drives wipe YOU!!

Comment thief!!!

[wirelessbuzzers]

You, sir, have reposted my comment, without so much as reading it. This should be evident from the bullets beneath it. That was a very naughty thing to do, and I request that you immediately cease and desist.

Re:Comment thief!!!

[wirelessbuzzers]

No harm. Just cite if you quote someone: as irritated as I am at Taco for handing out free karma, I'm more irritated when people capitalize and take that karma.

They don't dare whack the dupe.

[Dthoma]

That would mean deleting the story. Slashdot runs on MySQL. When you delete a row from a table in a MySQL database, that row's now empty slot cannot be reused until you do the command "OPTIMIZE TABLE whatever". Unfortunately, the table is locked during this time. So deleting a story would waste DB space which couldn't be regained until (annual?) maintenance.

In addition to this, you'd also lose all the comments which have been posted with the dupe.

Re:They don't dare whack the dupe.

[1u3hr]

That would mean deleting the story.

No, all you need to do is make it so it doesn't normally display on the front page. Such as changing the date to 1980. Or using users' preferences that build each page to order -- add a "dupe" pref normally set to "don't show", that perverse users can change.

not precisely used HD

[chloroquine]

I worked for a professor doing workstudy for about three years who consistantly sexually harassed me - looking down shirt, trying to ask me to spend a weekend in the city with him, etc. One day while doing some word processing I happened upon a file with a few pieces of poetry. One was about the arrogance of american women, and another was about impotence. That almost made up for having to deal with his idiocy for all that time. I debated for a while printing them out and then using the departmental photocopier and posting them all around campus. I should have done that as a going away present to myself.

Re:Offtopic, but more interesting than this thread

[xombo]

I think that this just says it all. I also think boobies should be one of the topics, CmdrTaco's wife wouldn't like that though, and they wouldn't get to make icky geek sex ;P

Duplication

[dna_(c)(tm)(r)]

That Anonymous Coward story is duplicated a lot too. Must be a troll account for CmdrTaco

Interesting stuff I once found

[rongage]

I used to buy "dead" hard drives from a local retailer. Drives he pulled from systems that were supposedly dead drives.

Most interesting find: A full copy of AutoCAD 12, with several part prints for automotive components for GM. Hard drive appeared to be pulled from a system belonging to Eaton Automotive. When I got it , it didn't spin up. One quick slam to the desk got it spinning (remember the old Conner 40 meg drives). It wasn't like I was concerned about breaking the drive - it was already "dead" when I got it.

Re:Your sig

[The_dev0]

Yep. Robert Heinlein. Time Enough For Love, in fact.

What I found once

[/Idiot\]

I picked up a HDD that had a full installed OS running HURD /me ducks

Well, since this discussion was going no where... at least I didn't mention the lovely Ms. Portman - DOH!

[OT] Serious answer to serious question

[achurch]

Anyway, how do I retrieve the data on the disk? Can I send it somewhere?

Yes, there are a number of companies that specialize in this (google for "data recovery" or the like)--but it's not cheap: data recovery for an entire drive can easily run into the thousands of dollars.

Can I do it myself? How?

Yes, if you have the technical knowledge and a lot of time on your hands. You'll essentially be searching for a needle (your data) in a gigantic haystack (the disk), and since files are often scattered across several parts of the disk you may not be able to recover them completely. The actual procedure varies depending on the filesystem type, but in general you have to search the raw disk image for phrases or strings of bytes that were in a particular file you're looking for, and then look before and after that location to see how much of your file is stored there. As searching an entire hard disk takes time, and you have to go through this process (possibly multiple times) for each file, this isn't really practical for recovering more than a few important files.

One other thing you should investigate is how much of your data you can reconstruct from another source. As always, backups are the number one option, but even if you don't have a full backup of your disk, some of your data might still be saved in other locations. For example, did you save any of your schoolwork on floppy disks to take to school? If so, you can restore that data without having to search the hard disk for it. Did you save any data on the school computers? Might your instructors have copies of your work? Alternatively, how much of the lost data did you actually write, and how much is automatically generated by a program? For example, if you have the source code to a program, you don't need to try and recover the executable as well--you can just recompile it.

As an anecdote, a bug in a script I wrote recently ended up doing an "rm -rf /" on my server at home. The only backup I had was 10 months old, but since it was a server system, it was fairly simple to just reinstall Linux and restore the few actual data files (logs, etc.) from the backup. In the end, all I ended up losing was 10 months' worth of logs and about half a day's worth of spooled mail.

urban legend, rescuing HDs, Lady Luck's a wierdo

[jago25_98]

It's a wonderful story because it grabs the imagination so well, unlike other geek stories we picture the sense of adventure, curiosity, opportunity and pressure of rumaging though some skip for sensitive data. Then there's the element of luck in the stories. Interest in luck makes so many things popular.

There's no limit to what you _might_ find. You could base a film on it. It's a revelation in Keano Reeves' life when he discovers a letter from the Queen of England to Hitler during the 2nd world war, then realises that governments all over the world are controlled not by people but stratigically planted by aliens in a bid to mine our lives as a model to learn from. Desperate he kills himself. It's a short film.

Harddrives aren't the best thing to buy 2nd hand of course.

- rescuing really old HardDrives:

remember the ones that didn't have pins but rather the type that doesn't break so easily? the ones where the connection was protruding PCB with metal on both sides? same type of connector as 5 & 1/4" floppy drives.

- how do we identify a filesystem? Partition flags?

pps Partly Offtopic but a wierd coinsidance of sensitive data:

- was working at a Junk Mail distro warehouse sending out magasines too. I'd ordered a new computer setup, I forget what. My order was a balls-up and it had been delayed etc; all the usual crap you get every now and then. On one of the many thousands of address labels I stuck onto the envelopes I
FOUND THE HOME ADDRESS of the managing director for the company I'd ordered it from. Although I didn't act on it in the end what are the chances of that?

- he lived the otherside of England
- I knew and actually remembered his name from a circular
- I rarely look at the labels on those address labels I came to hate
- I only ordered it a month beforehand

odd.

Re:Offtopic, but more interesting than this thread

[SirCrashALot]

Not to be picky.... They are missing a space in "a lot".

Army Surplus Drives

[MasterMynd]

About 10 years ago my boss at the time bought a GRID laptop from an Army auction. Interestingly, there was still the fire control system to an artillery field cannon loaded on the drive. I was surprised as was he.

Porn, porn, and more porn

[RallyDriver]

On more than one occasion an outgoing member of our sales force has returned a laptop with pr0n all over it.

We once received a CD-ROM of artwork from a client where they accidentally included some nasty hardcore stuff involving farm animals (bonus points - it was sent to a female staff member at our company).

The best one however was from an IT guy at a place I used to work - the company bought IBM laptops in large batches, and the IT guys would provide preconfigured Windows NT4 network install images (using Norton Ghost or similar) for each model (I dual booted and mostly used Red Hat, but the corporate email and expense reporting system was Lotus Domino R4, and the applet client sucked big time :-)

One hapless IT chap released a Norton image where he'd been testing the browser using various, ahem, websites, complete with all the cookies to prove it stored under his NT domain login in WinNT/Profiles/r****

Luckily for him it was a laid back place, and no-one lost any sleep over it.

Re:Porn, porn, and more porn

[tbj61898]

Hey :)
Actually the worst thing about p0rn happened to me is:

a friend ask to me to configure some internet program, mostly to enable webcam for live chat.

Well, as soon as I started the application provided with webcam, just to test if he was able to insert the provided CD and click next I agree next next OK YES Finish. Well, what's the worst thing one can take a shot of himself? no, it's not the face.

Strange, as soon as I get this pics-populated-screen I took my hand off the keyboard, ask yourself why.

Ugly.

From the hasn't-anyone-heard-of-search-dept

[dszd0g]

Come on Taco. I love the site, but is searching previous articles before submitting really that hard?

Lately, we should rename him CmdrDuplicate.

Good stuff - if I can access it

[irish_spic]

I have a bunch of IBM Travelstar drives (for laptops) with potentially a lot good stuff in them; the problem is that most are locked with a hd user password (not a POP or a supervisor pwd). How could I retrieve the password or hack the locked drives?

cheers,
Frank

p.s. you can email info to elfmaloney@yahoo.NOT.ca
(w/o the negative word)

You paid $60 bucks for that legal advice?

[serutan]

I agree with your lawyer that you have no problem, and everything is ok.
That'll be $85 (my rates are higher).

Re:Saw 2 HP machines

[n1ywb]

Heh. One time I found a laptop in a garbage can at the South Street Seaport in NYC. It was a 486 DX2-50 with 16 megs of ram, VGA active matrix LCD, and onboard SCSI of all things. All in all a nice machine once I wiped off the mustard. Until I found out that the hard drive was riddled with bad blocks and scandisk found more every time I ran it. And of course it's a SCSI disk so $$ to replace. I guess that's why it was in the garbage can.

Oh but what data I DID check out on the hard drive revealed that it had belonged to one of the tour boat companies at the seaport there.