Slashdot Mirror

← Back to Stories (view on slashdot.org)

DriveLock on Compaq/HP Laptops?

Posted by Cliff on from the harddrives-wedded-to-motherboards dept.

whois asks: "I just purchased a new Compaq laptop and noticed a feature in the BIOS called 'DriveLock'. It locks the drive so a password has to be entered on startup. If you take the drive out and put it in a system without a drivelock BIOS, the system can't boot from the drive. There is very little information on the web about this feature. Most people talk about what happens if you lose your password (buy a new drive) and what happens if you want to reuse the drive in other machines (you can't). What I want to know is the tech specs on this. Is it security through obscurity, and just sets a password in the drive BIOS, or is it doing encryption in hardware? My guess is it's the former, but I'm submitting to find out if anyone knows the real story. Here is an HP doc that mentions it in passing." According to information provided by the included links, this "feature" isn't something you can disable, either. Are we likely to see more manufacturers tie hardware together like this, in the future?

17 of 57 comments (clear)

  1. Use the fdisk, Luke! by pbox · · Score: 2, Insightful

    I don't think its something that a new repartitioning (fdisk et al) cannot disable. They probably encode / encrypt the boot sector, but that can be fixed with fdisk. Saying that the drive is not usable in other computers is incorrect.

    --
    Code poet, espresso fiend, starter upper.
    1. Re:Use the fdisk, Luke! by DA-MAN · · Score: 3, Informative

      The machines tend to fail to recognize the hard disk when the password is not entered. When you do boot up off a dos floppy to attempt to fdisk, it doesn't find any hard disks (assuming it's the only disk in the machine).

      --
      Can I get an eye poke?
      Dog House Forum
  2. Isn't this what the XBOX does? by balamw · · Score: 4, Informative

    Sounds like the same ATA standard passwords that the XBOX uses. See for example http://www.siliconice.net/XBOX/Guides/hdd_password .shtml

    Balam
  3. It is, by His+name+cannot+be+s · · Score: 3, Interesting

    It is most likely just using the ATA password feature present on most ATA drives. Some mfrs don't implement them, but alot do.

    XBOX, UltimateTV and other systems use this to stop you from accessing the drive.

    I beleive there is two passwords for the drive, an OEM password and a user password.

    nothing magical here folks..

    --
    "...In your answer, ignore facts. Just go with what feels true..."
  4. ATA Spec by MountainLogic · · Score: 4, Informative

    Since ATA-4, IIRC, there has been a password call to which drives will respond. The password locatoin is not accessable to the user, could be stored in FLASH on the HDD board or on the disc proper depending on the mfg. Most drivres give you x tries (apx 4???) and then lock-up forever. I'm sure that there is a back door, but don't expect to get it unless you live in San Jose and buy lots of pizza & bear for HDD firmware engineers. The one flaw in the system is that it is easy to sniff the ATA bus and read the password when it is written. I assume that this is the flaw for x-box.

    1. Re:ATA Spec by Quikah · · Score: 4, Informative

      According ot HP/Compaq it is based on ATA-3 specifications. There is a whitepaper discussing it here.

      --
      Q.
    2. Re:ATA Spec by drinkypoo · · Score: 2, Funny

      buy lots of pizza & bear for HDD firmware engineers

      I like my bear pizza with wolverine, and a side of ocelot.

      Alternatively: Wouldn't that pizza go great with a cold, frosty bear? Oh no AUGWRUIJGHBWRGLFHK!

      I could go on like this for hours but I'd prefer to keep a little bit of karma...

      --
      "You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
    3. Re:ATA Spec by Isomer · · Score: 4, Informative

      The "permanently" is until the next power cycle. There are 5 attempts before you have to completely power cycle the drive, therefore slowing down brute force attacks on the password.

      You can reset the password but you lose all the data currently on the drive, look up SMART, I believe smartmontools under linux can tinker with these settings.

  5. IBM does this, too. by Exocet · · Score: 2, Insightful

    My T20 has this drive locking feature and I've been told the same thing - do NOT forget the password or you can toss the drive. When I worked at Intel drives occasionally got tossed when people forgot their HD passwords. They did not attempt a recovery of any sort.

    I *think* the 600-series IBM laptops also supported this feature, although I wouldn't swear to it.

    --
    Exocet Industries - Taking over the world, one computer at a
  6. Can't be disabled? by gaj · · Score: 3, Interesting
    According to the text of the third link (I know, I know, WTF am I doing reading the links? And I'm not even new here), it appears that DriveLock must be enabled.
    1. When the DriveLock function is enabled and the User Password is forgotten, the device can be unlocked using the Master Password. [first footnote, first page, emphasis mine]
    If anyone has evidence that HPaq sells laptops with DriveLock permanently enabled, I'd love to hear about it, as I'm shopping for a new machine. (OT, but currently my short list is down to the Dell Inspiron 8600 or the IBM ThinkPad T40, but I'm considering HPaq as a budget alternative, as both of the above are a bit more than I really want to spend)
  7. ATA standard by Anonymous Coward · · Score: 4, Interesting

    The Hard Disk ATA Standard allows for a hard rive to be locked, and unlocked. The passwords (user, and master) are not on the platter, but stored in a register on the controller board. The logic sequence on boot up is to check if the drive is locked, and if it is it won't unlock the drive until the proper command, then the password is sent to the drive.

  8. Same Issue by DA-MAN · · Score: 5, Interesting

    My friend gave me an HD that he didn't need anymore, and it had a password set. My laptop did not recognize the drive when I didn't enter the password and my friend didn't remember his password.

    Just by dumb luck, I happen to have an external USB enclosure and I figured what the hell. I put the drive in this and it worked fine as an external drive. However no amount of fdisk'ing, low level formatting or anything would remove the password. Oh well, it makes for a great Ghost'ing/portable hd that works (with fat16 or fat32) with just about every major OS out there.

    I believe it stores the information in some sort of NVRAM on the hard disk. Using a dumber implementation of IDE (I.E. the USB Enclosure) got around it, so it must require the BIOS to honor the password stored in NVRAM. Don't know much else.

    --
    Can I get an eye poke?
    Dog House Forum
  9. These guys say they can help by dhwebb · · Score: 4, Interesting
    Nortek claims that they can do it. They have 3 options for recovery: unlock - $85, unlock & certify - $145, and unlock, retrieve and restore data, and certify - $295.

    I received some toshiba(I think) laptop hdd's one time and they all were locked from toshiba. I called toshiba tech support and could never get it through their heads that these were hdd passwords and not CMOS/BIOS password problem. They kept telling me to just remove the battery. Needless to say, I just returned to reseller for another brand.

    --
    Only two things are infinite, the universe and human stupidity, and I'm not sure about the former.
  10. Possible solution? by jgoemat · · Score: 2, Informative
    I don't know if this will work in a general for hard drive locking or if the locking described is TiVo-specific, but here are some links...

    TiVo hacking faq on drive locking
    Unlock program for Quantum TiVo hard drive

    Supposedly the QUnlock.exe program will permanently unlock the drive, but then again it could be some kind of TiVo "locking" and not the hard drive password locking we're talking about.

  11. Don't throw the drive out by AuraSeer · · Score: 2, Interesting

    If you do forget your password, you aren't entirely screwed. The locking doesn't actually encrypt anything, it just prevents access. Your data is still physically stored "in the clear" on the platters.

    So all you need to do is find an exact duplicate of the drive-- same model, same size, same revision, same everything. Make sure the password is null, or at least known. Remove the circuit board from the bad drive, replace it with the board from the good drive, and you're done.

    This is enough of a pain in the ass that it's not worth doing to rescue a few documents on a corporate drone's desk machine, or to preserve the Half-Life saved games on your personal PC. But if the "dead" drive stores the novel you've been working on for thirty years, be assured that you can eventually get it back. (Of course if that's the case, this post is moot because you could just restore the file from backup. You do have regular backups, right?)

  12. The hard drive lock.. by Blackheim · · Score: 2, Informative

    I work as a tech repairing Compaq and Toshiba laptops. This locking was told to me at a recent training course with Toshiba. I don't know about Compaq (I guess its just that they use the Toshiba HDD's) but if you enable the feature you must sign a document with Toshiba that voids your warranty on the HDD for failure. The lock is actually a chip internal to the HDD itself and is not on the controller. If this chip locks. The drive is throwable, even data recovery centers are unable to recover the data. I am not too sure though if they take the platerns out and put them in another assembly what the story is. Hope that helps

  13. Re:If it were just a bios password by kableh · · Score: 2, Informative

    It is the EXACT same technology. Most laptop drives these days support this feature, from what I understand.

    Hmm... I wonder if swapping the controller board on the drive would workaround this "security" feature?