Slashdot Mirror
Not-So-Clean Hard Drives For Sale
Saeed al-Sahaf writes "The Register is running a story about a security consulting company that as part of a study bought hard drives and laptops on eBay, and then was able to recover highly sensitive data including customer databases, financial information, payroll records, personnel details, login codes, and admin passwords for their secure Intranet site. This is a bit scary considering all of these drives were supposedly formatted and sold for surplus by major companies (although few of us actually use the multiple formatting standards of the DoD). Looks like it's hardly necessary for crooks to get at your private information, although I sure industrial espionage spooks have probably done this for awhile." Shades of the recent post about recovering sensitive contents from swap partitions.
Is a low level format really all that hard to do?
I got a +5, Troll
To whoever bought my old hard drive on eBay, those pictures were all for research purposes only.
Sincerely
Peter Townshend
You know, there are signs on pools for this very reason.
I hate sigs.
http://www.killdisk.com/eraser.htm
Its worth its weight in gold.
Is the juice worth the sqeeze?
Didn't I read about this in Jurassic Park?
Check out my sysadmin blog!
Perhaps more useful than yet another pointless scaremongering exercise would be for the company that now owns the drives to go back to the companies that they bought them off to find out how they were erased so we could find out how not to do it, and where they were not successful in recovering info to go back to those companies to find out how they did wipe that info properly.
The point is to learn something from it.
If you're really paranoid about your data then don't sell your hard drives, even if you have used US DoD-levels of formatting. Duh.
Rather than make a few tens of dollars selling an old drive, take it apart, and burn the platters until they're nothing more than dust. Problem solved.
"Accept that some days you are the pigeon, and some days you are the statue." - David Brent, Wernham Hogg
And you thought your home made pr0n was safe.
-kc
Personally speaking, I've never given away or sold a HD in my life... not that I'm paranoid about what might be on it, I find it a good practice to use em until they die, even if it's only a few extra gigs.
Help Brendan pay off his student loans
has taken a "hard dive".
We were somewhere around Barstow on the edge of the desert when the drugs began to take hold. - HST
Step2: ???
Step3: profit
let's discuss Step2
This is my Sig, this is my Gun. One is for Slashdot and one is for Fun.
This reminds me a lot of this story.
Simplified summary of both: buy some hard drives on eBay and you could end up with some cool data!
At least post some backup or I've gotta call bs on that one.
I bought a old computer once that had a database of about 200 names, address, phone numbers, DOBs and SSNs. They didn't delete anything on the hard drive. It had NT on it, I just used linux to check what was on it for grits and shingles. That company is lucky that I'm not evil...any opening bids?
and say that if your company's secrets are that valuable, the safest way to get rid of hard drives is just to scrap them. Laptops are a slightly different story, but how much can one actually expect to get off an auction of an old hard drive off of ebay? By the time you figure in all the auction fees, labor to ship them etc, I would bet that the companies probably don't make that much. It might just be safer to eat the cost than to try to sell them. It all really depends on the value of your secrets.
Stop, timothy... we've heard this joke before. In fact, you seem to post this same story every nine months or so.
Circa September 2003... nine months ago.
Circa January 2003... eighteen months ago.
Then again, we've been talking about this problem for a year and a half, yet there still are people stupid enough to be selling HDs with readable data that should be kept secret on them without doing DOD-level formatting.
Just Destroy The fucking Things! Are companies really so desperate for money that they need the revenue from used hard drives? It seems to me that the cost of making sure the thing is really clean is more than the thing is worth, so why not just pay someone to destroy them?
In other news, SCO recently purchased a used PC from eBay containing its IP and e-mails sent by Linus Torvalds proving that he stole SCO's IP for the linux kernel, and that he didn't actually write the linux kernel.
What? Troll, am I? Well, it's slashdot. Someone had to poke fun at SCO. Sue me.
The Yasashii Syndicate ||
I guess i am going to keep my hard drives when i get a new computer, I dont want anyone to find out about all of that stuff that i "didn't" do...
He say 1 and 1 and 1 is 3, got to be good lookin' cause hes so hard to see...
timothy... you just took one buddy.
The reason girls and Windows users don't understand UNIX is because all the documentation is in Man files.
Stories like this really scare me, but I know I'm ok - I format my hard drive with my licenced Microsoft Windows XP CD, so I know there's no sensitive data left to be found! That's one of the many benefits of running secure and professionally developed software like windows.
to sell old hard drives on eBay? I would think the cost of handling the entire transaction would cost more than the selling price of some old drive.
My organization disassembles the drives and incinerates the platters. I'd like to see anyone get data from them.
- Get a Torx screwdriver set from your local hardware store.
- Open the hd. Save the cool looking screws.
- Turn the platters into coasters.
- Just make sure you don't hurt yourself when playing with the magnets.
Maybe someone bought the old hard drives from a /. server, grabbed the admin passwords for the site, and keeps posting the old articles they recover!
It makes perfect sense. Surely the admins can't keep making these mistakes over and over...
err, nebbermind.
kM
-- You can't drink all day. (Unless you start in the morning...)
I thought I read this before... Though the story is new, it looks this is a private company essentially duplicating (copying?) the earlier work of the MIT guys to reach... gasp... the same conclusion.
Perhaps advice for anyone planning to let go of a hard drive:
Use the shred utility, with a good number of iterations (25 sounds good). Go to the root directory and issue
shred -n 25 -u -v *
Then when you're done with that, low level format the drive using a disk utility such as the ones that come with Maxtors and Western Digital drives.
$cat
The findings seem similar to this slashdot article referencing this article about the findings of Garfinkel and Shelat.
from Scott Richter? I want to find out which credit card he uses to buy the pills to make his girlfriend THANK HIM TON1GHT!@!
Seriously though. If I could get a dirty hard drive, getting a spammer's drive would be a fun project...as long as I could figure out his favorite personal email address.
What they should have used: Secure Harddisk Eraser
The Secure harddisk eraser is a Linux boot floppy that overwrites your drive with random bits. Comes in a 3-pass and a 35-pass version. Insert, boot, wait for beep. Free as in GPL.
Any sufficiently advanced libertarian utopia is indistinguishable from government.
I mean, I just keep cycling slow / error-prone ones to slower and more corner-case servers until they quite literally become doorstops. I have never considered even the slightest bit of resale value out of HDs.
That is only gratis software, so you really don't know how well it works, if at all.
A better choice is Eraser, it is GPLed.
http://sourceforge.net/projects/eraser/
You can also make a nuke boot disk with this program that automatically starts erasing everything upon start up. Don't forget to clearly label it ;).
3dinfo@maficstudios.com
http://staff.washington.edu/jdlarios/autoclave/
Works like a charm. And it has various levels of paranoia to choose from.
Happened to me once. My brother in law worked for a Large Multinational Bank and he new that I liked old computer junk. So he gave me a bunch of old 2/3/486 computers that were surplused from his job. They gave them to him because they didn't know how to get rid of them. Here was the catch . . . they didn't even format the things
So I had their FedEx programs, account numbers, their in-house banking programs and a sweet little windows 3.1 interface. Needless to say I disposed of the information properly. But I told my brother in law. He said "Oh, really" and just forgot about it. Go figure.
It is far too easy for those who would take advantage of sensitive information to exploit it for their own gain. They are quite fortunate someone like me got their hard drives and not someone bent on robbing them blind.
http://cincyboys.blogspot.com/ Everything Cincinnati. Including the word 'Finnih'
using a state of the art solution from JBoss, otherwise they would not have been in this situation in the first place. Only with patented technology from JBoss can you truly get rid of sensitive data on your hard drive. No competition can compare to the advanced solutions offered by JBoss. Nothing even comes close. I do not work for JBoss.
- remove drive from machine,
- remove screws from drive,
- split HD case open,
- smash to bits.
No data leaks. Really! Kind of brings a tear to the eye of the guy with the screwdriver and hammer though.You meant... TRIP!
Spoon not. Fork, or fork not. There is no spoon.
They think once it is formated evrything is gone but not so...I think HD manufacturers should put warning labels on there hds, They already provide Free utils to write zeros to the hd for that purpose.
Some of us prefer to write out our sigs manually each time we post
"Oh dear, she's stuck in an infinite loop and he's an idiot" -Prof. Farnsworth (Futurama)
With a different name and a different consulting company every 3 or 4 months with the 'we found some great stuff on these drives'. Oi vey.
A while back, I picked up a used X-box which had a CD ripped to the hard drive. They didn't even bother to format it.
So I was thinking--if I needed a secure channel to transfer data, I might sell an X-box and then tell the intended recipient to buy an X-box from that shop.
I wipe all my spare disk space with 35 wipes of random data every weekend. I also go through a proxy and have anti-virus, Spybot S&D, spyware prevention tools, and use Mozilla. I also have ZoneAlarm set to high with all programs locked down, the Windows XP firewall, and my router's firewall. All unneeded services are DISABLED.
I also monitor my TCP connections periodicly with TCPview from SYSinternals.
Of course I could just use Linux, but whats the fun in that?
I work for a security concerned organization... :) And all the hard disks that leave the house go through Expert Eraser (commercial product), seven cycles of writing erasing patterns into them. Failed drives go into big magnetic oven and get crunched into pieces. It's not expensive if you consider the value of your data.
I think the danger lies when company X's IT department sells their old computers on ebay and doesn't protect your info for your medical insurance, 401k, social security number, CC number etc. I think it's more worrysome at the enterprise level rather than the individual level. It's not very pratical to go through all that effort to recover one CC number from somone's computer or their web logs just to see that the spend all day on the Jelly of the Month Club Web Forums. But if you got yourself Visa'a database...$
meep
the company i work for actually goes to the point of making sure they keep the hdd's that are previousely used from old employee's these hard disk drives are never thrown out or sold. it's bad practice. have an it guy, saying "yeah that's ok to sell" is probably the it guy thinking, "oh who cares, the ebay loser buying it doesn't know how to do what i know how to do".
Wasn't the guys who did the CG for lord of the rings selling off their machines or something? I think I read something like that on Slashdot. Would be extremely intresting if true. You could in theory (and some luck) view things which they left out the film (who knows what animations they made but never used for people. I can't think of many places which don't have inside jokes and make easteggs based on them. There could be anything from Gollum dancing to hot Legolas sex).
I might be wrong but if I'm not would be worth trying to get hold of one of said machines and have a little play with the old memory box.
--- [Insert intresting Sig here]
I work for a large manufacturing company in the US. The facility I'm in has an interesting approach. First they format... Then they drop a 20 pound weight on it. Usually a few times. I'm sure if someone really wanted the data they could get it, but it's raises the bar a little.
Well, that's BS. Nothing even remotely important gets put into a PowerPoint presentation.
I know, I've been to meetings. God, have I been to meetings...
Show me on the doll where his noodly appendage touched you.
I think that for the really sensitive data, having any unencrypted data written to the hard drive can be a problem. Aftera all, what is the point of encrypting a file it gets written disk as part of the swap file, or even as a temp file in /tmp?
If I really wanted a secure system, I would have a Unix system with hard disk partitions mounted read-only and a RAM disk for writable use.
I remember this being done several years ago. Did they repeat the same project?
Okay, so people selling drives should delete the data. No news there.
What about people -buying- the drives? What happens if for some reason a government agency is searching your stuff, and finds the echos of child porn/other illegal data on the drive? How do you prove it's not yours?
I have seen customers [of mine] buy a refurbished drive that came direct from a major harddrive maker that had not even been formatted let alone really cleaned. This knowledge would make me wary of taking a busted drive in for an exchange if I'd already wrote some of my data to it before it failed.
At what price learning? At what cost wisdom? The price is a man's peace of mind, and the cost is his life.
I like Darik's Boot and Nuke, also a Sourceforge project that is GPL. Bootable Linux floppy, has purged any drive I have thrown at it - windows, Unix, and BeOS partitions.
http://dban.sourceforge.net/
I was lucky enough to never have to worry about this sort of problem when I worked for Uncle Sam. We had to take the actual platters out of our discarded hard disks and grind them down with a belt sander. No recyling either. Once we had a pile of dust, we had to dump the remains in a drum of some sort of acidic crap (usually used to destroy reams of sensitive print material). I always found it funny to see a few nice, shiny disks in the bottom of the safe with a classification label on them awaiting their demise.
Perhaps there's money to be made in performing this sort of destructive service for banks and other entities handling sensitive customer information.
-- Stu
/. ID under 2,000. I feel old now.
Click here
The floppy disk I created is red and I went so far as to draw a skull and crossbones on it, knowing full well what booting this thing does to a PC. A disk like this is an essential little tool to any geek's arsenal.... alongside Knoppix and tomsrtbt.
The only thing is it takes HOURS to DoD wipe a hard disk. It took 15 hours for me to fully DoD a 40GB drive.
READY.
PRINT ""+-0
Not sure if this actually works (don't want to try it out now :), but can't one do shred /dev/hdX to "wipe" a hard drive? I'm sure this would make it quite safe to give away, although I still wouldn't recommend corporations doing so.
I remember when legal used to mean lawful, now it means some kind of loophole. - Leo Kessler
Even better - use Darik's Boot and Nuke, also a Sourceforge project that is GPL. Bootable Linux floppy, has purged any drive I have thrown at it - windows, Unix, and BeOS partitions. You also get to select how many passess you want, instead of being stuck at a 3 or 35 pass version.
http://dban.sourceforge.net/
a) boot 2 linux cd
b) dd if=/dev/urandom of=/dev/hda (sda, whatever)
c) do it a few times if it makes you feel better, but the first pass is likely more than enough
It'd figure other industries would do the same. Heck it's your business, your data, your life (well, only of part of it hopefully!) you have on these disk. Why bother with selling them? To get 20$ 50$? The way i see it, selling hard drives is equal to selling random filing cabinet without making sure they're empty.
slightly off-topic side note: :-D
/slightly off-topic side note
Some officers here are so tight about security: One of out tech went out to replace a fried power supply. When walking out with the roasted one, one guy asked: "Hey couldn't there be data on there?" the tech answered a polite "no" with a smile. The guy handed him a pair of cutter and said:"Well why don't you cut-off those wires just to make sure" !!
-- If you actually say LOL instead of laughing, maybe it's time to go outside! --
My dad did computer forensics for 10 years in the air force and i know for a fact that it takes a lot of work to completely format a drive. Even measures that people take to destroy a drive (i.e. drilling a hole thru the platters) arent entirely effective. With the right tools you can recover data from all but the most carefully destroyed or formated drives.
So everyone talked about what programs people should use to get rid of the data, but what i want to know is what program did this firm use to extract all this data off the drives? Id like to test this out on my own and see if i can recover some stuff off a recently formatted laptop!
... usually with running hard drives. I've bought $2 pentiums, one of the latest is 400MHz. A 486 machine I bought solely for its tall case has Autocad R13 and a bunch of drawings on it. It just happens to be configured for a graphics tablet I have (a separate thrift store purchase).
I never "dispose" of old drives, I like taking them apart. They have excellent Neodynm {sp} magnets in them, and other fun parts. Hang the platters outside to make a wind chime - I doubt the data would be recoverable for very long out in the weather.
Tag lost or not installed.
Put in knoppix CD
for(( i=1; $i20; $((i++)) )); do
# Do something to seed random number generator, probably involving the clock
echo Erasing cycle $i;
dd if=/dev/urandom of=/dev/hda;
done
"Nine times out of ten, starting a fire is not the best way to solve the problem." - my wife
Sometimes, for portability between machines I use PGP file systems (using separate PGP software).
Also, I NEVER throw out hard drives without physically destoying them. And I never sell used PCs with hard drives in them. They all get sledged.
Best Buy can have you arrested
Horses don't normally wear clothes, you know.
At the Pacific Northwest Natinonal Laboratory every machine excessed for schools, non-profits, or for public auction has its hard drive removed and then subjected to a machine similar to this bugger.
Believe me, no data is going to survive the bearing press.
"Rocky Rococo, at your cervix!"
... had this problem with military laptops. What to do if they get invaded and need to dump their data before getting captured lest their tactical data fall into enemy hands?
They tried hotkey combinations, which would trigger a script to delete the hard drive, but they were either too complex to remember, or too easy to accidentally hit.
In the end, they painted a big red 'X' on the underside of the laptop right where the hard drive sits, and instructed the operator "point gun here".
"Nine times out of ten, starting a fire is not the best way to solve the problem." - my wife
Geek hint: Do this in that mythical place called "outide", unless you have a very understanding landlord/mother.
Engineering is the art of compromise.
Partly for this reason I've never sold a hard drive, and now I think I never will.
It's nice and swell that a good number of utilities exist that can create a DoD caliber wipe of the data, however, more and more computers are being sold without floppy drives (since Microsoft did away with requiring a floppy drive for a system to be Windows compatible), specially laptops (if you're selling a laptop HD, it's either new, or attached to the remainder of the laptop parts, rarely used laptop drives alone), what do you do when all you have is an optical drive of some type and the hard drive itself?
Perhaps this is a queue to someone to create/build a bootable CD ISO image that can perform the wipe, as well as perhaps other hardware utilities and diagnostic tools.
I have 1 million monkeys on a million year contract to make me a better sig.
If you use RAID 0, just sell them to different people and you'll be set...
Besides, odds are that by the time you're selling them, you'll have screwed up your stripe set from playing around so you can't read your stuff anyway.
1. Take your HD apart. 2. Save the cool magnets. 3. Toss platters in the fireplace! If you can still recover data from that I'm impressed! Oh and thoes magnets are dangerous. Becareful with them. :)
Spice with -v and -z options as desired.
[100% ISO 646 Compliant]
SVM, ERGO MONSTRO.
The US Gov't takes the whole drive (screws and all) and tosses it into a shredder. They have special shredders that will cut the whole drive to bits (no pun intended)...
... even those that have been shattered (just need enough of the pieces...
The police can recover a drive after it has had zeros written to the drive up to 7 times, and the higher levels of the gov't probably can recover data after it's even further gone. Not only that, but they can recover CeeDees
cat /dev/urandom > /dev/hda
Take it apart and play with the magnets or something.
If someone will be using the drive, running destructive write badblocks would be a good idea to test the drive's integrity. If you don't particularly care about the drive's integrity, writing zeroes to all of the drive will make it more trouble than it's worth to recover anything from it.
I've seen "consultants" "erase" a disk by just destroying the partition table. And at the time they were making a whole lot more money than me.
If you can sell your hard disk on eBay, you're lucky. Mine usually don't live long enough to be properly retired.
Please correct me if I got my facts wrong.
maybe horse porn lovers like garage sales? or, much more worrying, a much larger % of the pop than we thought. is into horse porn. thanks for the comic goldmine of a post btw.
This is my Sig, this is my Gun. One is for Slashdot and one is for Fun.
Boot into Knoppix, run shred.
"A great democracy must be progressive or it will soon cease to be a great democracy." --Theodore Roosevelt
I had a moronic friend who gave me his FireWire drive that he thought was broken. It turns out it was just the IDE-FireWire bridge that was toast, and the drive worked fine once I put it in my tower. Along with a nice collection of his MP3s I found a nude picture of him. DOH! Never again.
-tom
Why waste hours of wiping when a much better method is to encrypt the entire disk before ever installing any software on it or using it. Fancy new PCs don't blink when encrypting 100MB/sec, fast enough for any hard disk except RAID devices. I'm sure you can buy nice encryption hardware for RAID devices as well.
It helps to read every word, one at a time, with a pause after each word, before hitting the submit button.
Or you can do the following:
(1) wipe the drive with ones
(2) wipe the drive with zeroes
(3) fill the drive with p0rn
(4) wipe the drive with ones
(5) wipe the drive with zeroes
When they get to the p0rn layer, the chances are good that they will stop looking further. Once they find all those goodies you planted at step 3, they won't look for all those financial records.
The only thing necessary for the triumph of evil is for good men to do nothing. - Edmund Burke
"The sad consequence is that many potentially useful machines will now be destroyed out of paranoia and cosntribute to computer waste"
There's no need to "destroy" anything. There's a very big name company here that sells the machine, and keeps the hard drives.
--
"Sorry, but according to our tests [Guverment gave'em to us], you are trying to post from an open HTTP proxy [that has naked Cowboy Neal pictures]."
- for N in 1 2 3 4 5 6 ; do
(- echo pass $N
.. `date`
donedd if=/dev/urand of=/dev/hdc
For those of you who don't have Linux, a copy of Knoppix will do fine, as will using the first install disk of most distributions, and going 'Linux Rescue"
(i've tried this on RedHat.. I'll presume that others have something similar).
Many distributions now also have the 'shred' command which does a (much) more organized version of the same thing.
Oh, and did I mention "Backup any data you want to keep before trying this"?
Free Software: Like love, it grows best when given away.
I've never understood why once isn't sufficent. And if once isn't, can 35 guarantee it or is it the more the pass the less like they can retrieve data, but I guess I don't understand to what end.
"They think once it is formated evrything is gone but not so...I think HD manufacturers should put warning labels on there hds, They already provide Free utils to write zeros to the hd for that purpose."
If they're IBM Deskstars, then they don't need a utility to destroy the data. One comes built in.
---
"Please [button your] proxy or ask your [BOFH] or [MPAA/RIAA run] ISP to do so, [else we're sending our rent-a-goons over to make your Happy Hacker keyboard, very unhappy!]"
Generally only for admin machines, but there are 2 advantages:
a) Nobody getting our data
b) Nifty rare-earth magnets (3 on my fridge at the moment, and various others given to friends).
It's always bothered me that companies that do warranty or repair service never seem to have a public policy on protecting their customer's data.
Mea navis aericumbens anguillis abundat
Did the article mention anything about one of those hard drives having about 20 or so episodes of "Bang Bus" on it?
Because if it did, it wasn't mine.
My "low-level" formats involve a power drill and a hammer. That platter shall spin nevermore.
when disposing of some of the old macs used at the high school where I work, I usually mash the hell outta the drives with a big hammer, especially the connectors and controllers
beating up apple II's with a hammer is great fun too! although that metal coated plastic is very tough
for the counsellors rental laptop that he traded in i used some sort of linux bootdisk that did the DoD overwriting biz, don't remember it's name
log out, go kiting.
This guy who does research on hard drive technology gives away a freeware Secure Erase HDDerase utility that just calls the HARDWARE-BASED Secure Erase capability that is ALREADY BUILT INTO all recent ATA-type hard drives!
We just need to figure out how to get Linux/*BSD/*NIX/Apple/Microsoft to make this an option at the OS or fdisk/format/Disk Utility/Volume Manager utility level so we can all use it easily.
...taking out screws, carefully making coasters.....blah blah bleh!
I had a 40GB hard disk that I'd paid a bit more for at the time because it was from a large reliable company (which I won't name) and had decent performance. It had a short life - maybe 2 years before it started playing up. Within 3 or 4 it was unusable even as a backup disk.
I took a great deal of pleasure in "opening it up" with a hammer. The screws were star shaped (torque screws??). The platter actually shatterred into dust and some larger shards. Don't know how safe it was doing this in my backyard, but it was a lot of fun. (Remember the scene from Office Space where they smashed the printer into tiny bits). Good therapy.
These posts express my own personal views, not those of my employer
A torx screwdriver followed by a sledge hammer.
You may not be overwriting all of the data. Many (most?) modern drives will silently replace flakey blocks with spare blocks when they detect problems with a section of the disk. When you overwrite the data, you're overwriting the spare block, not the original block.
Mea navis aericumbens anguillis abundat
Must have been five years ago, a friend of mine aquired some old hard drives from systems that once belonged to adobe. He was able to recover some interesting historical data. One of the drives even had what appeared to be the first PDF file ever generated. He sold copies of the drive's contents on Zip disk. Never did get around to getting one.
This signature has Super Cow Powers
Easy(I hope)support request:
/. hordes!
I recently mangled the MBR of the drive that holds 80% of my audio collection. What is the simplest way to restore or at least retrieve the data? I have access to linux (novice-level) or windows. Is there a golden app for this?
I was re-installing win2k over itself, when I painfully learned (midway through) that my 2k cd was fubar. After the aborted re-install, I recieved an error about the boot area. Now, the bios will not usually recognize the drive. Unfortuately, the windows partition was also my a/v files partitition.
Everybody here would probably agree that the data is still on the drive, and should be fetchable. And I didin't overwrite it, either. Thanks,
Looks good for your age..
When I worked for Compaq, they had a contract with the MoD in the U.K. and the only way to distroy sensitive data on a drive was to distroy the drive itself. They would drill holes.. and then take the drives out and blow them up... it was pritty cool..as they would hand them back to Compay and say its not working...
...I buy used DLT-IV tapes off ebay and found a lot of uhm, "interesting" stuff on some of them.
About 1 out of 10 tapes I buy has stuff like source code for commercial closed source applications, confidential customer data, etc.
It's scary how lax people are with this shit.
Symantec's Ghost 2003 has a command line utility for erasing your HD, allowing the user to select HD, select the amount of passes and various other options, includes a one word switch.
/dodwipe
At least some companies don't take any kind of risks. A friend of mine, who works in a security complany, told me he often get assigned to take a big load of computers, often fairly new ones, to the dump, and there, using a sledge hammer, destroy all components in the computers, including the hard drives.
Hearing about such things makes me angry, since all those computers could have been put to good use. If sensitive information really has to be stored in a computer, then they should take the precautions first, and use good encrypted file systems.
Lucky for these guys that they are not in the USA, otherwise they would be breaking the DMCA.
A pizza of radius z and thickness a has a volume of pi z z a
Some friends of mine bought a Cisco router that still had the original owners' configuration on the flash memory. The original owner was the DoD, and we guessed they probably wouldn't have been keen to see all the information that was stored therein to enter the public domain.
Nothing new. This is just replay of old stories. And not very comprehensive research either.
s k_ risk.htm
It's a known fact that used hard drives are good source for personal information. See Simson Garfinkel's (more extensive) research from 2003:
http://www.simson.net/clips/2003.CSO.04.Hard_di
We do not resell our drives for exactly this reason. We destroy them. And we are actually trying to figure out the most cost-and-simplicity effective way to do so... So far, we tear them apart and keep the platters, but we are not to sure how to destroy the platters simply... Any advice ? :)
the multiple formatting standards of the DoD
Seems you and others know a lot. Which is probably why they were able to recover so much. Read a bit, OK? A few years back, anyone could be excused for not using their noggins. But you're saying that the most security paranoid nation on the planet is going to publish their techniques - the ones they really use, and these are basically 'wipe with a random number, its complement, then all zeroes'?
Egads. And the Apple people here are worried their users are still too naive...
...and we're not military, we're just a large corporation, is we use the simplest solution that definitely works. you can mess around with disk wipers, but if there's the tiniest chance it won't work then it's easier, quicker and cheaper to take it down to engineering and get them to put it under a pillar drill. *no-one's* getting data off a platter that's had a 12mm drillbit go through it.
The British Army decommision hard drives using an angle grinder. The US use thermite.
That said, for most purposes programs like Eraser will make data recovery so expensive and ineffective that for the data most of us have, nobody will bother. In fact, that's probably true even of less effective measures such as "dd if=/dev/zero of=/dev/hdb".
Xenu loves you!
I've read some posts here which states that if you overwrite data on a drive, it's possible to recover it. Well, it's NOT. Not according to Ibas, a large data recovery company here in Europe anyway.
The problem with all these so called reasers and such is that they often try to write a continous stream of zeroes for example. The hardware in that case will compress the information, leaving only a small footprint on the storage media itself. That makes it very hard to securily erase a harddrive.
Some people claim that one can read out already overwritten bits from magnetic media. Well, no, you can't. Sure, maybe one can read back a bit or two if you analyze the physical structure of the disk itself. But getting some real data back from overwritten bits is quite impossible, with todays technology.
If you want to securily erase a drive, use a big magnet. I mean big as in the ones used for lifting cars on the junkyard! There are some special tools out in the market for that purpose.
One other way is probably just to remove the platters and crush them into dust.
... fell on its face on this count. After the German reunification the Bundesnachrichtendienst, (German Intelligence sercvice, BND for short) combed East Germany for hard drives because the STASI used to pass used ones on to state businesses and institutions. Apparently they were able to recover a fair amount of documentation this way. But the real score was that they found a set of tapes (the famous SIRA tapes) with backups of among other things an index linking agents to the STASI's library of coded agent activity reports which somebody had forgotten to flag for deletion. The problem was of course that the CIA had stolen the directory containing the codename key ie. directory of codename=agents-real-name (aka. "Rosenholz" files) before the BND got to it. So now the CIA knew who all the agents were but no more and the Germans knew how to find out what they were upto. Of course the CIA insisted that the BND hand over the database but refused to trade it for the codename key. Last I knew that request was flatly denied they have now settled on some sort of tit for tat exchange.
So the lesson is, after you whipe your disk, DON'T FORGET THE BACKUP MEDIA!
Only to idiots, are orders laws.
-- Henning von Tresckow
Shred is only for the real paranoid. Recovering overwritten data from a magnetic medium is theoretically possible, but there is no evidence that anyone actually succeeded in doing that in a practical situation. It would require a scanning-tunneling microscope (about $100,000) and the bitrate would (my guess) be in the kbit/s range, so recovering a 40 GB harddisk would take about 1 year, assuming 10 kbit/sec. With this,
oryou will just write zeros and it will be 25 times faster than using shred.Avantslash: low-bandwidth mobile slashdot.
You can usually get some fairly random data from
A "1 that used to be a 0, and before that a 1" and a "1 that used to be a 0, and before that a 0" are almost certainly indistinguible. One write ago you might be able to recover, but two writes ago you haven't got much chance. Perhaps if you extracted the platters, you might be able to find some remnants of data on them
Once the data is as close to unrecoverable as won't make much difference, any extra effort you make is wasted. Sure, there are going to be one or two gems out there; but most people's data isn't that valuable, or can be had elsewhere for less effort. Think about it: Names and addresses are published in phone books and electoral registers. Identity numbers / SSNs are not secret. Nor are bank account numbers -- they're on every cheque you write. Credit card numbers are only valid for two years. Medical records of strangers are an interesting read, but not terrifically useful for anything interesting. If you're utterly paranoid, it might be worth doing partial random writes before storing any data on a new drive -- so if someone really can determine the first thing ever written to the drive, it would be nonsense. "Underwrite" each sector a random number of times, of course. Of course, if you have an encrypted file system, only the encryption key need be erased securely.
So, having applied the laws of physics and seen that getting rid of data isn't that hard (and could be implemented almost trivially at the OS level; but not being able to recover data might conceivably be worse than being able to recover it, what with everyone getting used to the idea of a magical 'undo' button), let's turn the question around and look at it from the other side:
Who gets fat on persuading people that they need to physically destroy used hard disk drives? And why? Let's see
Anyway, if recovering overwritten data really worked -- or even only half-worked -- someone would, by now, have tried to use it for a "drive space expander" utility. The kind of thing that would probably be advertised by SPAM.
Je fume. Tu fumes. Nous fûmes!
Or, simply bury a bunch of hard drives, and chuck a layer of radioactive crap on top of them. The radioactivity should slowly degauss the platters, and time will take care of the validity of whatever's left. In the meantime, anybody coming into hospital with radiation poisoning is a suspect data thief.
Now can I patent this idea?
Yeah, what's wrong with dd(1)?
I hadn't the slightest objection to his spending his time planning massacres for the bourgeoisie... (P.G. Wodehouse)
The oft-cited DOD specs aren't. When the military wants to make sure a drive cannot be read, the procedure is physical destruction of the media, not wiping the disk.
Trust me, I've had plenty of fun with sledge hammers, sandpaper, and degaussing magnets over the years.
Peace.
Hey:
I'm an ignoramous, so forgive me if this is a silly question. I seem to recall hearing that IDE drives couldn't be low-level formatted to the degree that SCSI drives could.
True? False? Part true but wrong-headed?
Thanks.
Why destroy the network cards and motherboards?
I bought a SparcStation off of eBay a little while ago. Upon receiving the workstation, I popped the top to discover a hard drive with an orange Top Secret sticker affixed. I have yet to hook the thing up to a monitor and see if there really is anything on the drive.
wipe.sf.net
I work for a hospital, so we have to satisfy HIPAA regulations when disposing of hard drives. When a PC is junked, we ship it to the warehouse, where it is stripped of RAM, if it is still useful, and the hard drive. The hard drives are then fdisked, formatted, and put in a cardboard box. Once we get over twenty hard drives, out come the hammers, and there go the drives. It is overwhelmingly satisfying to hit a "fragile!" sticker with a hammer. Once the platters are cracked through or shattered, the drives are reboxed, the box is taped, and it goes out with the rest of the computer trash (perhaps to recycling.) Though this isn't perfect, anyone who gets the data off of those platters is likely to get it no matter what we do.
This is common sense. Maybe stating the obvious but not a troll.
Joe Llywelyn Griffith Blakesley
[This post is in the public domain (copyright-free) unless otherwise stated]
Drives leaving our site go through the drill press before exiting the doors.
may be a dupe. It's not that hard to do a wipe of the HD.. I use a nice little utility on a floppy called Autoclave The only down-side is that it takes a while to do a high level over write of a large drive. If you're in a hurry, then take the sledge hammer approach...literally.
"Do the Right Thing. It will gratify some people and astound the rest." - Mark Twain
"Do the Right Thing. It will gratify some people and astound the rest." - Mark Twain
The new DoD standard is that no wipe software is good enough, you've got to destroy the hard drives if they contain anything sensitive and above. Basically, that's everything the DoD or DHS does. So, when machines are turned in now, hard drives are degaussed and then put in a shredder. And I've got to tell you, the hard drive shredder is one cool thing. It makes hard drive confetti.
diabetic
adj.
1. Of, relating to, having, or resulting from
diabetes: diabetic patients; a diabetic coma.
2. Intended for use by a person with diabetes:
diabetic candy.
n.
A person who has diabetes.
You are a diabetic.
Is there a way of telling which sub-genre of pr0n a second-hand hard-drive seller is into just by looking at them or geting to know them? Armed with this knowledge, I don't have to bother with any downloads and save loads of time and money.
Comment removed based on user account deletion
Just boot from a Knoppix CD, and shred your hard drive from there.
I had a windows 2000 laptop with a bad hard drive that would no longer even boot. I had to send the old hard drive back to Dell. I used this method to securely erase it before I sent it back.
I was pretty impressed that shred could still do its thing without crashing even though the drive was having continuous write failures. There was probably some data left in the bad sectors, though, but that's much better than sending back a drive full of my data!
Just so you know, the study was conducted by Pointsec, who make a fair bit of money selling software which encrypts the entire hard drive. So, it wasn't exactly an impartial study!
Check out our infosecurity industry blog: http://securitymusings.com/
That's no code. Due to this week's increase in onald Reagan headlines and stories, the^e's been a sho#tage of the letta 'R'. Please limit use until p*oduction meets demand.
Well the problem is the process is NOT trivial. To do a multipass wipe that meets DOD or better standards is very time consuming. I DOD wiped my 40gb harddrive using Boot'N Nuke and it took 18 hours to complete. In house IT staff must be able to setup, wipe, and then dispose of the system. If this is part of a workstation rollout that could mean hundreds of extra man-hours to secure the data. At that rate it becomes cheaper to simply physically destroy the hard drives or at least outsoure the job to a company that does this kind of work. But you risk trusting the data to third parties.
Slashdot, home of supporters of free software, free music, and free speech.Except for Moderators that disagree with you.
I used to work at a huge break-fix operation, we got refurbished drives from IBM and other companies that would boot up an OS when we plugged them in.
No need to shoot, drop or drive over your hard drive. The simple solution is found by physics, not engineering. All you need to do to erase any magnetic media is heat it above its Curie temperature. This is the temperature at which thermal fluctuations destroy any magnetic order in the material. All magnetic information is completely destroyed.
From nosing around Google, it seems that the Curie temperature for most hard drive platters is around 200C (392F). A domestic oven can manage that easily. So just take out the platters from your hard drive (leave out plastic bits which might melt) and stick them in the oven for an hour.
If someone came up with a HD with heat-resistant, removable platters, you could just bake them to erase, then replace them and have a completely balnk, unformatted drive again.
The author of this post asserts his moral rights.
My Solution
We use a program at my work called autoclave that is DoD compliant. It boots linux on a single floppy and erases the entire hard drive. Works on very old machines, too.
http://staff.washington.edu/jdlarios/autoclave/
Fred
"A fool and his freedom are soon parted"
-RMS
You are an anal rententive douchebag. Who cares?
Install Windows ME on the hard drive, when people see it on boot up, they will automatically wipe the drive.
Step 1: Remove hard drive Step 2: Place hard drive on hard surface Step 3: Procure hammer Step 4: Repeatedly bang hammer on hard drive until only small pieces are left Step 5: Security problem solved In all seriousness, I do not sell or surplus hard drives. I physically destroy them. With the low cost of large drives now days, there is no reason to resell them. Plus if you destroy them, you get the added benefit of letting off some frustration. "Teach them to open brittenynudeshots.jpg.pif AGAIN...."
The case in point that I heard about involved an individual who got raided for other reasons, when the authorities seized his equipment they didn't find what they expected to find, however they did find this other drive with kiddie porn on it and they put him in jail because of it.
Its not just privacy issues that I would be worried about....once you buy the disk you are legally responsible for its contents.
Gives a whole new meaning to buyer beware.
why I'm not even surprised...
If builders built buildings the way programmers wrote programs, then the first woodpecker would destroy civilization.
This is just one of the problems. One problem which is really insurmountable with software is what to do about data that is, during the life of the drive:
1) Written to a sector of the disk
2) said sector is discovered by the drive electronics to be going flaky
3) the drive moves the data to a new sector, for safety
4) the old sector(s) are marked bad and no longer used by the drive
5) the data is now inaccessible
If you're paranoid enough to use the methods of wiping that ostensibly go beyond what recovery is possible with software and are meant to protect against recovery with special equipment, well, you need to just destroy the drive and skip the whole software wiping rigamarole, since it will never accomplish what you want 100%. If you've got access to replacement drive firmware maybe you've got some other options...
Now before I get modded down, I be to remind whoever might read this that what I am saying is FACT. - bogaboga
Not sure about just touching the blood, but if it enters your bloodstream you are definitely at risk. ./ IDIOTS.
ASK A DOCTOR ABOUT THIS! BUT DO NOT BELIEVE UNINFORMED
Has always worked well for me. Whip it up, pour it on, stick in the fuse, and light! Presto instant slag and unreadable HD. Please try and ensure that you don't burn through anything valuable below said HD.
You might want to check and see if there are some caps going bad on the MoBo. If one of them is starting to go, then chances are that some of the others are probably going to start going soon as well. Better to catch it now IMHO.
Yes, this has happened to me before. It also does assume you are talking about an onboard controller on the MoBo, and not an add-on card.
So that this isn't completely off topic. I still have all the drives I have ever owned as well. Including a 90 Gig Conner that came out of a (at the time) new 386DX 33MHz machine that had a Math Co. It still amazes me that I paid 3,500 USD for that machine. I will say this though, after all these years, that drive STILL works, slowly, but it still works.
Who cares?
It looks like three of us care enough to post a comment.
Pages 14 and 15 note methods "a, b, d, and m" sanitizing fixed drives, and continues:
Note this applies to DOD contractors, and other rules probably apply to DOD, military, and the CIA/NSA/NRO/etc intelligence community.
The obvious implication is that the 3 verified passes are sufficient to render the information not worth recovering for Confidential and Secret, but that Top Secret info is still potentially recoverable within cost/benefit constraints for the opponent. Remember - for many things (except possibly some weapons systems info) you don't need to guarantee the opponent can't recover the information, you merely have to make the cost of recovery greater than the benefit they gain from the secret.
Oh, and the Canadian RCMP TSSIT OPS-II says: "Must first be checked for correct functioning and then have all storage areas overwritten once with the binary digit ONE, once with the binary digit ZERO and once with a single numeric, alphabetic or special character, " and again, not for Top Secret - for that, they recommend contacting somebody for special instructions/handling.
Ack!!! You're one of them!!
"mispellings" indeed!
Including the Sun systems, which they thought were PC's.
Oh yeah, and including the Mac systems, which they advertised were made by "DELL".
One employee bought their machine back... not a thing had been done to it. The consultants just get paid big bucks to say they did it.
CC numbers is not the only thing recoverable... In Fact that is where i got my first VIRUS ! Doh! Yup, got a pallet of old computers and was putting parts together to make a couple complete ones. Most of the drives werent even formatted. I got shipping programs and stuff too like someone else. BUT, one of them seemed to have the michelanglo virus. Found it when i took a boot or data transfer disk back to main computer and norton threw a fit. Of course by then it was on all the drives and floppies i was building :(
So, if ya all are gonna dumpster dive watch what you plug the stuff into :)
Wouldn't you rather zero-fill it? I know Seagate has a tool for this (and other functions), and I'm sure Maxtor and Western Digital do as well.
Founder & COO, Hayai India (hayai.in) / USA (hayaibroadband.com)
What do you think "diabetic" means? It means a person with diabetes. It's not like you have to walk around with a white sticker saying, "diabetic," is it? So why complain? If it's medically necessary let whoever needs to know know that you're a diabetic, otherwise who cares?
You mean 90MB drive, right? I don't think Conner as a company made it past the 1GB or so mark ;)
How do I go about checking capacitors? I know theres equipment out there to test them when they're not attached to anything, but is there some way to tell when they're still attached to the motherboard?
If I have been able to see further than others, it is because I bought a pair of binoculars.