Disk wiping: Difference between revisions

From Notes to self
Jump to navigation Jump to search
← Older editNewer edit →
Verbovet (talk | contribs)
Bureaucrats, Interface administrators, Administrators
2,627 edits
No edit summary
No edit summary
Line 12: Line 12:


#Make sure the drive is not frozen and support "enhanced erase":
#Make sure the drive is not frozen and support "enhanced erase":
:<code># hdparm -I /dev/sdX
#:<code># hdparm -I /dev/sdX
:[...]
#:[...]
:Security:  
#:Security:  
::        Master password revision code = 65534
#::        Master password revision code = 65534
::                supported
#::                supported
::        not    enabled
#::        not    enabled
::        not    locked
#::        not    locked
::        <span style="background:#ffff00">not    frozen</span>
#::        <span style="background:#ffff00">not    frozen</span>
::        not    expired: security count
#::        not    expired: security count
:::                <span style="background:#ffff00">supported: enhanced erase</span>
#:::                <span style="background:#ffff00">supported: enhanced erase</span>
::        3<span style="background:#ffff00">min for SECURITY ERASE UNIT</span>. 3min for ENHANCED SECURITY ERASE UNIT.
#::        3<span style="background:#ffff00">min for SECURITY ERASE UNIT</span>. 3min for ENHANCED SECURITY ERASE UNIT.
:[...]</code>
#:[...]</code>
:Check that <code>hdparm</code> prints "XXXmin for SECURITY ERASE UNIT".
#:Check that <code>hdparm</code> prints "XXXmin for SECURITY ERASE UNIT".
 
#Set a user password (this password will be cleared on the next step, so the exact choice does not matter):
#Set a user password (this password will be cleared on the next step, so the exact choice does not matter):
:<code># hdparm --user-master u --security-set-pass foo /dev/sdX</code>
#:<code># hdparm --user-master u --security-set-pass foo /dev/sdX</code>
 
#Issue the ATA Secure Erase command:
#Issue the ATA Secure Erase command:
:<code># hdparm hdparm --user-master u --security-erase foo /dev/sdX</code>
#:<code># hdparm hdparm --user-master u --security-erase foo /dev/sdX</code>


[[Category: Debian GNU/Linux]]
[[Category: Debian GNU/Linux]]

Revision as of 15:38, 20 September 2014

  • To wipe an HDD by writing zeros to it:
# dd if=/dev/zero of=/dev/sdX iflag=nocache oflag=direct bs=4M
The average speed is above 100 MB/s, so 1 TB takes about 2-3 hours.
To print transfer statistics (to stderr):
# killall -USR1 dd
  1. Make sure the drive is not frozen and support "enhanced erase":
    # hdparm -I /dev/sdX
    [...]
    Security:
    Master password revision code = 65534
    supported
    not enabled
    not locked
    not frozen
    not expired: security count
    supported: enhanced erase
    3min for SECURITY ERASE UNIT. 3min for ENHANCED SECURITY ERASE UNIT.
    [...]
    Check that hdparm prints "XXXmin for SECURITY ERASE UNIT".
  2. Set a user password (this password will be cleared on the next step, so the exact choice does not matter):
    # hdparm --user-master u --security-set-pass foo /dev/sdX
  3. Issue the ATA Secure Erase command:
    # hdparm hdparm --user-master u --security-erase foo /dev/sdX
Retrieved from "https://alik.ejik.org/index.php?title=Disk_wiping&oldid=1040"