Slashdot Mirror
"Smash Your Hard Drive" To Fight Identity Theft
Will Do This For Free writes "BBC News has a story about the only fireproof way of safeguarding your personal information when dumping your old computer: 'It sounds extreme, but the only way to be 100% safe is to smash your hard drive into smithereens. [...] The more thoroughly the better.'
This sounds like so much fun that I almost feel like doing it right now. Let me press Submit Story first."
I have a heavy duty magnet that when placed on the top of the drive makes the drive completely useless.
I doubt anyone could recover data from it, as it is surely scrambled.
and just use dBan, Derrick's Boot and Nuke.
Nothing beats an afternoon of watching dBan and a comfy chair. Beer or whisky optional.
import system.cool.Sig;
This recommendation from Which? magazine has incensed me today. They're reported as saying "It sounds extreme, but the only way to be 100% safe is to smash your hard drive into smithereens.". There's no need to do this if you use disk wiping software, which is probably even better than a hammer; as the BBC article points out. Darik's Boot And Nuke is perfect for this. It's environmentally criminal to be suggesting the best way to wipe a disk is to smash it.
Pete Boyd
Revision3's Systm show had an episode that suggested some ways for destroying a hard drive yourself. They took the position that using a program like Boot'nNuke, which overwrites data 1-N times at your choosing, is sufficient to sanitize data without destroying the drive.
If you want to go the nuclear option, they demonstrated some favorites: mangling the platters in a vice, dremel or hand grinder, propane or cutting torch, melting it in thermite, etc.
A hospital I worked for once, when decommissioning old computers, would take the hard drive over to a drill press and put a couple holes through it. Nowadays I think they've bought a drive shredder.
The platters don't have to be melted, they only need to be heated to the Curie point to loose all their information. Of course, that would still take a pretty hot fire.
Really, there's no need to wipe it more than once unless you honestly think it will matter. At least these guys think so:
http://16systems.com/zero
In other news: people still stupid. Has anyone here actually TRIED to get stuff back off a Guttmann wiped drive? Or even a DoD 7 wiped drive?
My class in computer security had some time to kill and someone brought that up so the teacher said "Well, we've got a bunch of PCs from last upgrade waiting to be re-imaged and given away to students...let me see what I can score us!". He ended up getting us a half a dozen PCs set up in the back of the class with 2 HDDs set up in each so we could run plenty of different tests. We did everything from MSFT format to one pass to three pass to DoD 7 to Guttman. We researched and then used every piece of freeware and trialware that we could get our little hands on. Here is our findings:
MSFT format is of course pointless, as everyone knows. 1 pass of zeroes we got around,sorry but it has been awhile, but we got around 80% IIRC. 3 pass was lower(0,1,random), somewhere in the 10-20% range, depending on the software used, but most of the "recovered" data was garbled beyond use, DoD-7 made it pretty much impossible, I think we got 2 .txt files and they were so garbled we couldn't decide if it had actually recovered ANYTHING, certainly nothing you could use, and finally Guttmann we got squat.
So if someone were to spend the $$$$ to have the drive taken apart in a clean room and analyzed and you only used one or two pass of predictable patterns then yeah, I might see wanting to destroy. But I haven't seen anyone bragging about beating D0D-7 with what the average hacker would have access to, much less Guttmann. So frankly unless someone here has a citation I have to call bullshit. Frankly it makes me wonder if this kind of stuff isn't cooked up by the HDD manufacturers. I can just imagine them spinning this- "Before giving away that machine destroy the hard drive first!(so they'll have to buy a new one from us! Yay!)"
ACs don't waste your time replying, your posts are never seen by me.
I read years ago (and I'm sure it was made up) of a memo sent out to IT managers in the DOD (United States Department Of Defense). It went.
To properly dispose of hard drives which may contain Top secret information is a 5 step process to be performed in the order specified and by competent engineers.
1. Perform a triple overwrite security erase on the entire disk.
2. Use a bulk degausser (AKA a powerful electro magnet).
3. Crush the drive under a roller or tank tracks, whichever is more convenient.
4. Melt the scrap into slag.
5. Bury that Slag in a toxic waste dump to deter any attempts at data recovery.
That's not exactly how it went but I think this is pretty close. Can anyone find the original?
--= Isn't it surprising how badly I spell ?
Hard drives are cheap. If you have any data that you absolutely don't want to get out...EVER...physical destruction is the 100% solution.
And, in terms of practicality, running DoD-7 takes about 1000 times longer than whipping out the old Sledge-O-Matic. If you're retiring a few dozen computers, even that gets old, and you start looking for the thermite.
ad logicam Claiming a proposition is false because it was presented as the conclusion of a fallacious argument.
You are spot on and I would mod you up if I had points. I don't think the HDD manufacturers are behind this though. The simpler (and I think correct) reason is that older media used to be easier to recover data from. Newer hardware is different and the old methods do not apply. http://shsc.info/DataRecovery#titelanker5
Do really dense people warp space more than others?
Heating a destroys the magnetic domain's long before it melts. As density increases the ability to do data recovery when things go bad keeps decreasing.
Whoosh!
The point was that they said this is a "fireproof" way of restoring your data - which is basically saying that throwing the hard drive into a fire would somehow recover the data.
Foolproof would have been a better word to use; as in "even a fool could protect their data using this method".
which is totally what she said
Don't forget to harvest the handy magnets if you bother to do it that way.
Some hard disk platters are glass, so be careful!
"This post is an artistic work of fiction and falsehood. Only a fool would take anything posted here as fact."
Five shots from a .458 Winchester Magnum firing soft-points really wrecks a drive into smithereens. It's actually hard to find a spot on the platters that isn't either punched through or scratched to near-oblivion by tiny fragments bouncing around inside the thing. Really, they look almost sandblasted where not outright gone.
And it is a lot of fun, too.
There's no original because that's not the spec.
The real spec is DoD 5220.22-M, available at http://www.dtic.mil/whs/directives/corres/html/522022m.htm.
The DoD standard has been superceded by NIST Special Publication 800-88:
http://csrc.nist.gov/publications/nistpubs/800-88/NISTSP800-88_rev1.pdf
http://en.wikipedia.org/wiki/Data_remanence
The drive's firmware is what keeps track of where the "good" and "bad" sectors are on the drive. Presumably, if you took the platters out, and put them in a different drive, it would have no idea which were the good or bad sectors, and therefore WOULD let you read those sectors. No guarantees that what it reads was what was originally there, but I'd be surprised if it didn't let you read them.
Yup, my work donates newer stuff to local school board but all they get is case/logic board/processor/powersupply. They pull ram/drives/video cards. Can also pick up older stuff at auction but it's sold by the pallet, usually for under $100.00. Got a load of old Mac stuff this way but had two nice G5's in there.
I drank what? -- Socrates