Disk wiping: Difference between revisions

From Notes to self
Jump to navigation Jump to search
← Older editNewer edit →
Verbovet (talk | contribs)
Bureaucrats, Interface administrators, Administrators
2,689 edits
No edit summary
No edit summary
Line 9: Line 9:
* To wipe a SSD by the ATA Security Erase command:
* To wipe a SSD by the ATA Security Erase command:
#Delete all partitions and destroy the partitioning scheme
#Delete all partitions and destroy the partitioning scheme
#:gpart destroy -F adaX
#:<code>gpart destroy -F adaX</code>
#Make sure the drive is not frozen and support "enhanced erase":
#Make sure the drive is not frozen and support "enhanced erase":
#:<code># camcontrol security adaX</code>
#:<code># camcontrol security adaX</code>
Line 26: Line 26:
         [...]
         [...]
</pre>
</pre>
#Set a user password (this password will be cleared on the next step, so the exact choice does not matter):
#:<code># hdparm --user-master u --security-set-pass foo /dev/sdX</code>
#Issue the ATA Secure Erase command:
#Issue the ATA Secure Erase command:
#:<code># hdparm --user-master u --security-erase foo /dev/sdX</code>
#:<code># camcontrol security adaX -U user -s Erase -h Erase</code>
#Check that security is disabled:
[[Category: FreeBSD]]
#:<code># hdparm -I /dev/sdX
#:[...]
#:Security:
#::        Master password revision code = 65534
#:::                supported
#::        <span style="background:#ffff00">not    enabled</span>
#::        not    locked
#::        not    frozen
#::        not    expired: security count
#:::                supported: enhanced erase
#::        3min for SECURITY ERASE UNIT. 3min for ENHANCED SECURITY ERASE UNIT.
#:[...]</code>
[[Category: Linux]]
[[Category: Linux]]
[[Category: Hardware]]
[[Category: Hardware]]

Revision as of 20:29, 15 May 2026

  • To wipe an HDD by writing zeros to it:
# ddrescue -f /dev/zero /dev/addX
The average speed is above 100 MB/s, so 1 TB takes about 2-3 hours.
  1. Delete all partitions
  2. # sst delete --ssd <index>
The <index> can be found by using the command
# sst show --ssd
  • To wipe a SSD by the ATA Security Erase command:
  1. Delete all partitions and destroy the partitioning scheme
    gpart destroy -F adaX
  2. Make sure the drive is not frozen and support "enhanced erase":
    # camcontrol security adaX
        [...]
        Security Option           Value
        supported                 yes
        enabled                   no
        drive locked              no
        security config frozen    no
        count expired             no
        security level            high
        enhanced erase supported  yes
        erase time                4 min
        enhanced erase time       4 min
        [...]
  1. Issue the ATA Secure Erase command:
    # camcontrol security adaX -U user -s Erase -h Erase
Retrieved from "https://alik.ejik.org/index.php?title=Disk_wiping&oldid=2755"