Slashdot Mirror
Not-So-Clean Hard Drives For Sale
Saeed al-Sahaf writes "The Register is running a story about a security consulting company that as part of a study bought hard drives and laptops on eBay, and then was able to recover highly sensitive data including customer databases, financial information, payroll records, personnel details, login codes, and admin passwords for their secure Intranet site. This is a bit scary considering all of these drives were supposedly formatted and sold for surplus by major companies (although few of us actually use the multiple formatting standards of the DoD). Looks like it's hardly necessary for crooks to get at your private information, although I sure industrial espionage spooks have probably done this for awhile." Shades of the recent post about recovering sensitive contents from swap partitions.
To whoever bought my old hard drive on eBay, those pictures were all for research purposes only.
Sincerely
Peter Townshend
You know, there are signs on pools for this very reason.
I hate sigs.
http://www.killdisk.com/eraser.htm
Its worth its weight in gold.
Is the juice worth the sqeeze?
Dumpster diving ( just doing to my local dump and pulling shit from the stack of electronics) i've gotten social security numbers, credit card data, grading data from various area High Schools...
Don't worry - its just stigmata. Pass me a napkin and don't you dare tell my mother.
Perhaps more useful than yet another pointless scaremongering exercise would be for the company that now owns the drives to go back to the companies that they bought them off to find out how they were erased so we could find out how not to do it, and where they were not successful in recovering info to go back to those companies to find out how they did wipe that info properly.
The point is to learn something from it.
If you're really paranoid about your data then don't sell your hard drives, even if you have used US DoD-levels of formatting. Duh.
Rather than make a few tens of dollars selling an old drive, take it apart, and burn the platters until they're nothing more than dust. Problem solved.
"Accept that some days you are the pigeon, and some days you are the statue." - David Brent, Wernham Hogg
Personally speaking, I've never given away or sold a HD in my life... not that I'm paranoid about what might be on it, I find it a good practice to use em until they die, even if it's only a few extra gigs.
Help Brendan pay off his student loans
has taken a "hard dive".
We were somewhere around Barstow on the edge of the desert when the drugs began to take hold. - HST
Step2: ???
Step3: profit
let's discuss Step2
This is my Sig, this is my Gun. One is for Slashdot and one is for Fun.
This reminds me a lot of this story.
Simplified summary of both: buy some hard drives on eBay and you could end up with some cool data!
At least post some backup or I've gotta call bs on that one.
I bought a old computer once that had a database of about 200 names, address, phone numbers, DOBs and SSNs. They didn't delete anything on the hard drive. It had NT on it, I just used linux to check what was on it for grits and shingles. That company is lucky that I'm not evil...any opening bids?
and say that if your company's secrets are that valuable, the safest way to get rid of hard drives is just to scrap them. Laptops are a slightly different story, but how much can one actually expect to get off an auction of an old hard drive off of ebay? By the time you figure in all the auction fees, labor to ship them etc, I would bet that the companies probably don't make that much. It might just be safer to eat the cost than to try to sell them. It all really depends on the value of your secrets.
Stop, timothy... we've heard this joke before. In fact, you seem to post this same story every nine months or so.
Circa September 2003... nine months ago.
Circa January 2003... eighteen months ago.
Then again, we've been talking about this problem for a year and a half, yet there still are people stupid enough to be selling HDs with readable data that should be kept secret on them without doing DOD-level formatting.
In other news, SCO recently purchased a used PC from eBay containing its IP and e-mails sent by Linus Torvalds proving that he stole SCO's IP for the linux kernel, and that he didn't actually write the linux kernel.
What? Troll, am I? Well, it's slashdot. Someone had to poke fun at SCO. Sue me.
The Yasashii Syndicate ||
My homemade pr0n is very unsafe. Don't try this one at home unless you're a trained professional!
When they came for the communists, I said "He's next door. Take him away. Goddam commies."
Stories like this really scare me, but I know I'm ok - I format my hard drive with my licenced Microsoft Windows XP CD, so I know there's no sensitive data left to be found! That's one of the many benefits of running secure and professionally developed software like windows.
to sell old hard drives on eBay? I would think the cost of handling the entire transaction would cost more than the selling price of some old drive.
My organization disassembles the drives and incinerates the platters. I'd like to see anyone get data from them.
- Get a Torx screwdriver set from your local hardware store.
- Open the hd. Save the cool looking screws.
- Turn the platters into coasters.
- Just make sure you don't hurt yourself when playing with the magnets.
Maybe someone bought the old hard drives from a /. server, grabbed the admin passwords for the site, and keeps posting the old articles they recover!
It makes perfect sense. Surely the admins can't keep making these mistakes over and over...
err, nebbermind.
kM
-- You can't drink all day. (Unless you start in the morning...)
Perhaps advice for anyone planning to let go of a hard drive:
Use the shred utility, with a good number of iterations (25 sounds good). Go to the root directory and issue
shred -n 25 -u -v *
Then when you're done with that, low level format the drive using a disk utility such as the ones that come with Maxtors and Western Digital drives.
$cat
What they should have used: Secure Harddisk Eraser
The Secure harddisk eraser is a Linux boot floppy that overwrites your drive with random bits. Comes in a 3-pass and a 35-pass version. Insert, boot, wait for beep. Free as in GPL.
Any sufficiently advanced libertarian utopia is indistinguishable from government.
That is only gratis software, so you really don't know how well it works, if at all.
A better choice is Eraser, it is GPLed.
http://sourceforge.net/projects/eraser/
You can also make a nuke boot disk with this program that automatically starts erasing everything upon start up. Don't forget to clearly label it ;).
3dinfo@maficstudios.com
http://staff.washington.edu/jdlarios/autoclave/
Works like a charm. And it has various levels of paranoia to choose from.
Happened to me once. My brother in law worked for a Large Multinational Bank and he new that I liked old computer junk. So he gave me a bunch of old 2/3/486 computers that were surplused from his job. They gave them to him because they didn't know how to get rid of them. Here was the catch . . . they didn't even format the things
So I had their FedEx programs, account numbers, their in-house banking programs and a sweet little windows 3.1 interface. Needless to say I disposed of the information properly. But I told my brother in law. He said "Oh, really" and just forgot about it. Go figure.
It is far too easy for those who would take advantage of sensitive information to exploit it for their own gain. They are quite fortunate someone like me got their hard drives and not someone bent on robbing them blind.
http://cincyboys.blogspot.com/ Everything Cincinnati. Including the word 'Finnih'
Why destroy something that is perfectly reusable? We waste enough resources as it is. If anything, give them away to low-budget institutions in need. I'm sure the cost of low-level formatting a bunch of drives really isn't all that high.
Waste = bad.
-- n
No, because these days you're not supposed to do the low-level formatting yourself. That's done by the manufacturer.
- remove drive from machine,
- remove screws from drive,
- split HD case open,
- smash to bits.
No data leaks. Really! Kind of brings a tear to the eye of the guy with the screwdriver and hammer though.I guess that depends on the context. I mean, if you are a large company reselling entire PCs that were scrapped due to a recent departmental upgrade, then you might recover some value. Those PCs that were sold still contain information on their HDDs. Here in AZ, there are many auctions every weekend where one can purchase used PCs that were scrapped by some company by the pallet load. I'm sure if one wanted to spend the time, then one coudl obtain a wealth of information from the drives contained therein.
Be Safe! Sleep with a Marine. Semper Fi!
Well that depends on what you mean by 'low level format'.
Re-formatting ata hard drives at a truly low level can mess the disk organisation in ways that seriously degrade performance.
If your referring to a 'full' format with does more than the 'quick' format that mearly marks the drive as empty, well it's easy, and of very little use in this case.
Simply writing zeros to every location on the hard drive that stores data doesn't completely erase the data. That is the magnetic field of the bits are not set at exactly '0'. Slight variations in the magnetic material, write head field strength, and positioning all contribute to increase the odds of data being recoverable.
One way to improve your odds is to repeatedly write a series of 1's and 0's to a location to help average out these variables as well as use the hysteresis(sp?) effect to 'degause' the location, this is what 'shredder' programs do (the ones that aren't crap).
Some programs even go so far as to not simply write 11111111 then 00000000 over and over to the same byte, but to use other patterns so that the fields of niegboring bits add to the deguas effect in destroying the data.
At one time (and probably to this day) the US DOD specs used to require a certain number of passes of 0 and 1 bits followed by the writing of a specific bit pattern before a hard drive was considered to have been properly erased.
And yes each pass does put a little wear and tear on the drive, not enough to worry about unless your 'shredding' the drive quite a few times, but still worth noting.
The number of passes used and what if any special patterns are used determine the amount of effort it would take to recover the data, kind of like key length in cryptography. Adjust paranoi settings apropriately. (note: the anology is imperfect as hell, 1024 might be a mediocre key length, but thats enough shred passes to noticeably shorten drive lifespan.)
Mycroft
https://signup.leagueoflegends.com/?ref=4c3ed6600b6ea
They think once it is formated evrything is gone but not so...I think HD manufacturers should put warning labels on there hds, They already provide Free utils to write zeros to the hd for that purpose.
so instead of fixing a drive thats realy screwed up by doing a llf i should send it back for an RMA? doesnt sound like the best solution to me
Are companies really so desperate for money that they need the revenue from used hard drives?
You mean the same type of company that would lay off an employee and hire the employee back as a contractor at 1.5x's the employees original salary to avoid paying health insurance premiums and so they don't have to pay as much to the employees pension???
*choke* Bwahahahahahahaha
It is easier to build strong children than to repair broken men. -Frederick Douglass
I work for a large manufacturing company in the US. The facility I'm in has an interesting approach. First they format... Then they drop a 20 pound weight on it. Usually a few times. I'm sure if someone really wanted the data they could get it, but it's raises the bar a little.
Well, that's BS. Nothing even remotely important gets put into a PowerPoint presentation.
I know, I've been to meetings. God, have I been to meetings...
Show me on the doll where his noodly appendage touched you.
There is a good program called DBAN available from dban.sourceforge.net which is linux-based boot disk that does a good job overwriting to at least one of the DoD specs.
Properly shredding data on disk requires writing known values that also set the ECC bits to all possible values. That requires knowledge of the ECC being used on the disk. Many disk scrubbers actually write so many known vlues because they are attempting to catch all of the common ECCs.
I was lucky enough to never have to worry about this sort of problem when I worked for Uncle Sam. We had to take the actual platters out of our discarded hard disks and grind them down with a belt sander. No recyling either. Once we had a pile of dust, we had to dump the remains in a drum of some sort of acidic crap (usually used to destroy reams of sensitive print material). I always found it funny to see a few nice, shiny disks in the bottom of the safe with a classification label on them awaiting their demise.
Perhaps there's money to be made in performing this sort of destructive service for banks and other entities handling sensitive customer information.
-- Stu
/. ID under 2,000. I feel old now.
Click here
The floppy disk I created is red and I went so far as to draw a skull and crossbones on it, knowing full well what booting this thing does to a PC. A disk like this is an essential little tool to any geek's arsenal.... alongside Knoppix and tomsrtbt.
The only thing is it takes HOURS to DoD wipe a hard disk. It took 15 hours for me to fully DoD a 40GB drive.
READY.
PRINT ""+-0
Gotta watch out for those pesky journalled filesystems though! I don't think a typical shred program does anything useful on an ext3 filesystem, for example. IIRC you can't be sure that you are really overwriting the physical location of the the orignal data (especially if the file has grown over time) and the journalling will (presumably for files below a certain size) just optimise away the intermediate disk writes and just write the final bunch of 0's ...
I guess you really need to repartition the drive using non-journalled filesystems only and shred all the free space.
Disclaimer: I don't claim to be a fs expert - I just remember looking for a shred application a few months back and being dissapointed that none of them worked with ext3.
It'd figure other industries would do the same. Heck it's your business, your data, your life (well, only of part of it hopefully!) you have on these disk. Why bother with selling them? To get 20$ 50$? The way i see it, selling hard drives is equal to selling random filing cabinet without making sure they're empty.
slightly off-topic side note: :-D
/slightly off-topic side note
Some officers here are so tight about security: One of out tech went out to replace a fried power supply. When walking out with the roasted one, one guy asked: "Hey couldn't there be data on there?" the tech answered a polite "no" with a smile. The guy handed him a pair of cutter and said:"Well why don't you cut-off those wires just to make sure" !!
-- If you actually say LOL instead of laughing, maybe it's time to go outside! --
At one time (and probably to this day) the US DOD specs used to require a certain number of passes of 0 and 1 bits followed by the writing of a specific bit pattern before a hard drive was considered to have been properly erased.
I find it hard to believe the US DoD is this lax on security. I used to work for the Canadian government, and we had to hammer a nail through the drive a certain number of times "according to the specs" to consider it properly erased.
My dad did computer forensics for 10 years in the air force and i know for a fact that it takes a lot of work to completely format a drive. Even measures that people take to destroy a drive (i.e. drilling a hole thru the platters) arent entirely effective. With the right tools you can recover data from all but the most carefully destroyed or formated drives.
Eraser actually uses Darik's Boot and Nuke when you use it to wipe an entire drive. See the features page.
For this reason, I believe the DOD reccomends writing random data to the disk 7 times, to guarentee that it is destroyed.
Remember, however, that any overwriting makes it impossible to recover data except by special means far beyond that of a normal file recovery program. Tools that recover data after it has been overwritten are not easy to make, and I'm not even sure that they would run on computer hardware. It's possible that such recovery would require special ATA firmware, or even replacing the hard disk firmware.
I'm not an expert, but that is what I've been able to grok from casual reading on the subjectt.
The Cheese Stands Alone.
Put in knoppix CD
for(( i=1; $i20; $((i++)) )); do
# Do something to seed random number generator, probably involving the clock
echo Erasing cycle $i;
dd if=/dev/urandom of=/dev/hda;
done
"Nine times out of ten, starting a fire is not the best way to solve the problem." - my wife
Horses don't normally wear clothes, you know.
... had this problem with military laptops. What to do if they get invaded and need to dump their data before getting captured lest their tactical data fall into enemy hands?
They tried hotkey combinations, which would trigger a script to delete the hard drive, but they were either too complex to remember, or too easy to accidentally hit.
In the end, they painted a big red 'X' on the underside of the laptop right where the hard drive sits, and instructed the operator "point gun here".
"Nine times out of ten, starting a fire is not the best way to solve the problem." - my wife
Geek hint: Do this in that mythical place called "outide", unless you have a very understanding landlord/mother.
Engineering is the art of compromise.
A few years ago, DoD spec for erasing info classifed "Confidential" was a minimum of seven passes with varying strings of 1's and 0's. DoD "erasure" for a drive that has held "Secret" data involved opening the case and applying a power sander to each surface until ALL the magnetic media has been sanded off, or in a combat situation where the destroying authority was prepared to sign that time was absolutely critical, thermite or white phosporous grenades. I don't remember offhand what the spec was for Top-Secret, as I never had to know that one.
Who is John Cabal?
Well I imagine random data would probably be 'good enough'.
The use of specific patterns, especially alternating 1's and 0's, is to take advantage of known effects such as degausing. There is also the matter of modern hard-drives and ecc data that a poster below kindly pointed out. My last dealings with such data-erasure techniques was a few (8-10?) years ago. My appologies for not pointing out that my info might be a tad dated.
Mycroft
https://signup.leagueoflegends.com/?ref=4c3ed6600b6ea
DoD 5220.22-M, 1995. This is probably outdated by now, but the standard at that time was to overwrite all addressable locations with a single character to clear the disk, or overwrite each address with a character, its compliment, and a random character to "sanitize" the disk.
Note that these procedures only apply(ed) to every-day harddrives, not anything containing sensitive information. For the drives with classified information, 5220.22-M gives you a list of things you can do: "Disintegrate, incinerate, pulverize, shred, or smelt." There is no acceptable method of sanitizing a disk with classified information on it.
And for the poster below who said that overwriting the data seven times would guarantee that the data was gone... not true, though the data is almost certainly out of reach for the average Joe. NSA is by no means the average Joe, of course, but they have successfully recovered data from a drive that has been overwritten at least a hundred times.
2-cents
maybe horse porn lovers like garage sales? or, much more worrying, a much larger % of the pop than we thought. is into horse porn. thanks for the comic goldmine of a post btw.
This is my Sig, this is my Gun. One is for Slashdot and one is for Fun.
If the drive needs a low-level format, it SHOULD be sent back. A modern hard drive should never need a field reformat within it's design lifetime.
(If you disable thermal recalibration on the drive, you'll get what you asked for. I don't know if you can even do that anymore -- "AV" drives used to have that as an "option" for bursts of increased speed.)
Boot into Knoppix, run shred.
"A great democracy must be progressive or it will soon cease to be a great democracy." --Theodore Roosevelt
Yeah, back about 20 years ago I got so much stuff doing the same thing. My friend and I had a large moving box full of floppies we recoverd, stacks of drives, old backup tapes, credit card numbers, SSNs, vendor statements and account numbers, complete and functional PCs, etc.
For others who plan on trying this out: Don't worry, dumpsters for your average company is clean with no gross shit in it. Oh, and regarding the police.. Wear nasty looking clothes.. I mean, really look like a dirt bag. If you go looking like geekboy from a middle income family, you'll get a trespassing charge against you. If you look like a rat, they will leave you alone. We only had a couple of run-ins with the cops and tenants. They all went pretty well, as we said we were looking for things to sell at the pawn shop.
The key, I have found, when performing a social hack is to always pretend like you recognize authority. Cops will quit caring about pointing out your trespass, real fast, when they manage to get a self-esteem boost by picking on a poor person. The little guilty voice in the back of their head will say "Leave the poor slob alone.. AlooOoone!"
Warning: This will not work if you park your new Volvo next to the dumpster. Park around other cars, if there are any, and be prepared to abandon your vehicle a few hours if you are told to leave by the cops. Oh, and get some strong fabric laundry bags to carry your loot.
Or you can do the following:
(1) wipe the drive with ones
(2) wipe the drive with zeroes
(3) fill the drive with p0rn
(4) wipe the drive with ones
(5) wipe the drive with zeroes
When they get to the p0rn layer, the chances are good that they will stop looking further. Once they find all those goodies you planted at step 3, they won't look for all those financial records.
The only thing necessary for the triumph of evil is for good men to do nothing. - Edmund Burke
- for N in 1 2 3 4 5 6 ; do
(- echo pass $N
.. `date`
donedd if=/dev/urand of=/dev/hdc
For those of you who don't have Linux, a copy of Knoppix will do fine, as will using the first install disk of most distributions, and going 'Linux Rescue"
(i've tried this on RedHat.. I'll presume that others have something similar).
Many distributions now also have the 'shred' command which does a (much) more organized version of the same thing.
Oh, and did I mention "Backup any data you want to keep before trying this"?
Free Software: Like love, it grows best when given away.
I've never understood why once isn't sufficent. And if once isn't, can 35 guarantee it or is it the more the pass the less like they can retrieve data, but I guess I don't understand to what end.
I believe the problem is that the journal still exists, after shredding the file content. Ie the file contents are shredded, but journalled entries for file creation still exist, thus unless you create the file while the fs is mounted as ext2, you still have the problem..
i hate pansy republicans
It is still possible to recover data from a physically damaged disk which will no longer work in a machine.
Data can be obtained from the undamaged (or less damaged) portions of platter, which is usually still a lot of the disc, of course this requires MUCH more low level tools than overwriting with data. Best effort is 25 overwrites, combined with a large nail.
i hate pansy republicans
One could always use this
zap!
This guy who does research on hard drive technology gives away a freeware Secure Erase HDDerase utility that just calls the HARDWARE-BASED Secure Erase capability that is ALREADY BUILT INTO all recent ATA-type hard drives!
We just need to figure out how to get Linux/*BSD/*NIX/Apple/Microsoft to make this an option at the OS or fdisk/format/Disk Utility/Volume Manager utility level so we can all use it easily.
...taking out screws, carefully making coasters.....blah blah bleh!
I had a 40GB hard disk that I'd paid a bit more for at the time because it was from a large reliable company (which I won't name) and had decent performance. It had a short life - maybe 2 years before it started playing up. Within 3 or 4 it was unusable even as a backup disk.
I took a great deal of pleasure in "opening it up" with a hammer. The screws were star shaped (torque screws??). The platter actually shatterred into dust and some larger shards. Don't know how safe it was doing this in my backyard, but it was a lot of fun. (Remember the scene from Office Space where they smashed the printer into tiny bits). Good therapy.
These posts express my own personal views, not those of my employer
Diabetes, either type, cannot be spread to another person by blood contact.
...
...I buy used DLT-IV tapes off ebay and found a lot of uhm, "interesting" stuff on some of them.
About 1 out of 10 tapes I buy has stuff like source code for commercial closed source applications, confidential customer data, etc.
It's scary how lax people are with this shit.
Symantec's Ghost 2003 has a command line utility for erasing your HD, allowing the user to select HD, select the amount of passes and various other options, includes a one word switch.
/dodwipe
At least some companies don't take any kind of risks. A friend of mine, who works in a security complany, told me he often get assigned to take a big load of computers, often fairly new ones, to the dump, and there, using a sledge hammer, destroy all components in the computers, including the hard drives.
Hearing about such things makes me angry, since all those computers could have been put to good use. If sensitive information really has to be stored in a computer, then they should take the precautions first, and use good encrypted file systems.
most diabetics i know use sharps containers or gallon jugs to hold their used needles before they're properly disposed of. i also make a point of gloves, heavy shirt or hoody, work pants, and boots when diving.
Don't worry - its just stigmata. Pass me a napkin and don't you dare tell my mother.
...and we're not military, we're just a large corporation, is we use the simplest solution that definitely works. you can mess around with disk wipers, but if there's the tiniest chance it won't work then it's easier, quicker and cheaper to take it down to engineering and get them to put it under a pillar drill. *no-one's* getting data off a platter that's had a 12mm drillbit go through it.
The British Army decommision hard drives using an angle grinder. The US use thermite.
That said, for most purposes programs like Eraser will make data recovery so expensive and ineffective that for the data most of us have, nobody will bother. In fact, that's probably true even of less effective measures such as "dd if=/dev/zero of=/dev/hdb".
Xenu loves you!
I've read some posts here which states that if you overwrite data on a drive, it's possible to recover it. Well, it's NOT. Not according to Ibas, a large data recovery company here in Europe anyway.
The problem with all these so called reasers and such is that they often try to write a continous stream of zeroes for example. The hardware in that case will compress the information, leaving only a small footprint on the storage media itself. That makes it very hard to securily erase a harddrive.
Some people claim that one can read out already overwritten bits from magnetic media. Well, no, you can't. Sure, maybe one can read back a bit or two if you analyze the physical structure of the disk itself. But getting some real data back from overwritten bits is quite impossible, with todays technology.
If you want to securily erase a drive, use a big magnet. I mean big as in the ones used for lifting cars on the junkyard! There are some special tools out in the market for that purpose.
One other way is probably just to remove the platters and crush them into dust.
... fell on its face on this count. After the German reunification the Bundesnachrichtendienst, (German Intelligence sercvice, BND for short) combed East Germany for hard drives because the STASI used to pass used ones on to state businesses and institutions. Apparently they were able to recover a fair amount of documentation this way. But the real score was that they found a set of tapes (the famous SIRA tapes) with backups of among other things an index linking agents to the STASI's library of coded agent activity reports which somebody had forgotten to flag for deletion. The problem was of course that the CIA had stolen the directory containing the codename key ie. directory of codename=agents-real-name (aka. "Rosenholz" files) before the BND got to it. So now the CIA knew who all the agents were but no more and the Germans knew how to find out what they were upto. Of course the CIA insisted that the BND hand over the database but refused to trade it for the codename key. Last I knew that request was flatly denied they have now settled on some sort of tit for tat exchange.
So the lesson is, after you whipe your disk, DON'T FORGET THE BACKUP MEDIA!
Only to idiots, are orders laws.
-- Henning von Tresckow
You can usually get some fairly random data from
A "1 that used to be a 0, and before that a 1" and a "1 that used to be a 0, and before that a 0" are almost certainly indistinguible. One write ago you might be able to recover, but two writes ago you haven't got much chance. Perhaps if you extracted the platters, you might be able to find some remnants of data on them
Once the data is as close to unrecoverable as won't make much difference, any extra effort you make is wasted. Sure, there are going to be one or two gems out there; but most people's data isn't that valuable, or can be had elsewhere for less effort. Think about it: Names and addresses are published in phone books and electoral registers. Identity numbers / SSNs are not secret. Nor are bank account numbers -- they're on every cheque you write. Credit card numbers are only valid for two years. Medical records of strangers are an interesting read, but not terrifically useful for anything interesting. If you're utterly paranoid, it might be worth doing partial random writes before storing any data on a new drive -- so if someone really can determine the first thing ever written to the drive, it would be nonsense. "Underwrite" each sector a random number of times, of course. Of course, if you have an encrypted file system, only the encryption key need be erased securely.
So, having applied the laws of physics and seen that getting rid of data isn't that hard (and could be implemented almost trivially at the OS level; but not being able to recover data might conceivably be worse than being able to recover it, what with everyone getting used to the idea of a magical 'undo' button), let's turn the question around and look at it from the other side:
Who gets fat on persuading people that they need to physically destroy used hard disk drives? And why? Let's see
Anyway, if recovering overwritten data really worked -- or even only half-worked -- someone would, by now, have tried to use it for a "drive space expander" utility. The kind of thing that would probably be advertised by SPAM.
Je fume. Tu fumes. Nous fûmes!
A Windows crash screwed up my partition table, eventually I found Testdisk, a marvellous free utility that analysed the disk for an hour then rewrote the tables, and brought it back to life with my data (unbacked) all there.
Last think I want is HIV or some nasty cuts from broken glass or metal shit.
Phone handsets or doorknobs are generally *far* worse from a sanitary perspective than just about anything else. All the communicable respiratory diseases have been nicely cultured on the doorknobs by people sneezing on their hands and then operating the knob.
Heck, your ancestors survived tromping around in the mud, barefoot, getting stabbed, clawed, bitten, stung, and so forth. You have an immune system and regenerative abilities that are awfully tough to muck with. Now, *cars*...*cars* are scary. Not many people die each year from scorpion bites, but tens of thousands of people die each year from auto accidents in the United States. And you probably have a road out right in front of your house!
As Neal Stephenson put it -- you're a stupendeous badass. You come from a long line of stupendous badasses. Anything that wasn't a stupendous badass is now dead.
May we never see th
I work for a hospital, so we have to satisfy HIPAA regulations when disposing of hard drives. When a PC is junked, we ship it to the warehouse, where it is stripped of RAM, if it is still useful, and the hard drive. The hard drives are then fdisked, formatted, and put in a cardboard box. Once we get over twenty hard drives, out come the hammers, and there go the drives. It is overwhelmingly satisfying to hit a "fragile!" sticker with a hammer. Once the platters are cracked through or shattered, the drives are reboxed, the box is taped, and it goes out with the rest of the computer trash (perhaps to recycling.) Though this isn't perfect, anyone who gets the data off of those platters is likely to get it no matter what we do.
The new DoD standard is that no wipe software is good enough, you've got to destroy the hard drives if they contain anything sensitive and above. Basically, that's everything the DoD or DHS does. So, when machines are turned in now, hard drives are degaussed and then put in a shredder. And I've got to tell you, the hard drive shredder is one cool thing. It makes hard drive confetti.
Fred
"A fool and his freedom are soon parted"
-RMS
My friends and I take our old drives out for target practice. Some .357 and .308 usually do the trick. If someone can get my chat logs off of that then more power to them.
That's what I call a format.
I just had an idea: If the data is so incredibly vital, if the data would cost a company millions if released, if the passwords would let anyone gain access to the system... why not just lock up the hard drives in a vault, or perhaps physically DESTROY them. After all, the cost of not selling those drives compared to the prevention of secrets/passwords being released is minimal! Then again, if someone wants your data, they'll get it by any means possible, so you are screwed either way.
No kidding! I once read about the population of an entire planet that was killed off due to a particularly nasty virus contracted from a filthy telephone, embarassingly after they had sent off all of their telephone sanitizers to colonize a new world.
You can't make stuff like that up...
Outside of a dog, a book is man's best friend. Inside a dog it's too dark to read. - Groucho Marx
Pages 14 and 15 note methods "a, b, d, and m" sanitizing fixed drives, and continues:
Note this applies to DOD contractors, and other rules probably apply to DOD, military, and the CIA/NSA/NRO/etc intelligence community.
The obvious implication is that the 3 verified passes are sufficient to render the information not worth recovering for Confidential and Secret, but that Top Secret info is still potentially recoverable within cost/benefit constraints for the opponent. Remember - for many things (except possibly some weapons systems info) you don't need to guarantee the opponent can't recover the information, you merely have to make the cost of recovery greater than the benefit they gain from the secret.
Oh, and the Canadian RCMP TSSIT OPS-II says: "Must first be checked for correct functioning and then have all storage areas overwritten once with the binary digit ONE, once with the binary digit ZERO and once with a single numeric, alphabetic or special character, " and again, not for Top Secret - for that, they recommend contacting somebody for special instructions/handling.