Disk wiping: Difference between revisions

• To wipe an HDD by writing zeros to it:

# ddrescue -f /dev/zero /dev/addX

The average speed is above 100 MB/s, so 1 TB takes about 2-3 hours.

• To wipe an Intel/Solidigm Data Center SSD by the Solidigm Storage Tool:

1. Delete all partitions
2. # sst delete --ssd <index>

The <index> can be found by using the command

# sst show --ssd

• To wipe a SSD by the ATA Security Erase command:

1. Make sure the drive is not frozen and support "enhanced erase":

   # camcontrol security adaX

        [...]
        Security Option           Value
        supported                 yes
        enabled                   no
        drive locked              no
        security config frozen    no
        count expired             no
        security level            high
        enhanced erase supported  yes
        erase time                4 min
        enhanced erase time       4 min
        [...]

1. Set a user password (this password will be cleared on the next step, so the exact choice does not matter):

   # hdparm --user-master u --security-set-pass foo /dev/sdX

2. Issue the ATA Secure Erase command:

   # hdparm --user-master u --security-erase foo /dev/sdX

3. Check that security is disabled:

   # hdparm -I /dev/sdX

   [...]

   Security:

   Master password revision code = 65534

   supported

   not enabled

   not locked

   not frozen

   not expired: security count

   supported: enhanced erase

   3min for SECURITY ERASE UNIT. 3min for ENHANCED SECURITY ERASE UNIT.

   [...]