[nflug] After many, many google searches, I have to admit defeat and ask for help...

Brad Bartram brad.bartram at gmail.com
Fri Sep 14 09:44:46 EDT 2007 

Thanks for all the input guys.  After looking into the leads y'all gave me,
I decided to go with wipe.  I had seen it before, but completely missed the
part of being able to sanitize block devices.

Just as a little further explanation, because of the work I do, when I
forensically sanitize storage media, I have to be able to testify to the
accuracy, not only of the data contained on the media but also to the
preparation methods.  Part of the accuracy is having to use accepted
standards-based methods and techniques.  A simple error such as this can
compromise the reliability of the data being written to the media.  It's a
pain, but unfortunately those are the rules I live with.

Normally, when dealing with normal configurations, I would just pop in the
boot disk, fire up my tool of choice, which my office has many to choose
from, and be done with it.  This particular system is a special config that
is not really accounted for in the normal boot cd.

So, now I've got a wipe going on a very large drive array partition and
based on the size of the array and the time it's taken to get this far, I
figure it should be sanitized sometime early next week.  (Glad I'm not in a
rush!)

Once again, thanks for all the help and input.

Brad

On 9/13/07, joshj at linuxmail.org <joshj at linuxmail.org> wrote:
>
> If you need multiple passes, couldn't you just:
>
> for i in `seq 20`; do
>         dd if=/dev/urandom of=/dev/partitionorwhatever
> done
>
> ...and then get something to eat? I don't see the problem with
> "scripting" it. I don't know what "certified" would be, but this is as
> good as it gets without destroying the disk.
>
> Thus spake Brad Bartram:
>
> > The problem with dd is that - although it's standalone, and I could run
> it
> > through multiple passes,  I would have to manually run it through those
> > passes - or script something to do it automatically.  I'm dealing with
> > multiple terabytes of data that I need to certify as being forensically
> > sanitized on disk. That's why I was looking to something that already
> > performed the operations to DoD spec.
> >
> > Ncrypt looks interesting.
> >
> > Thanks
> >
> > On 9/13/07, mark k <mkopenski at gmail.com> wrote:
> >>
> >> I was thinking the same thing dd a few times on the partition should do
> >> it.
> >>
> >> On 9/13/07, Cyber Source <peter at thecybersource.com > wrote:
> >>>
> >>> Am I missing something here or wouldn't dd do the trick?
> >>>
> >>> Darin Perusich wrote:
> >>>> Have you looked at ncrypt? I think it will provide what you're
> looking
> >>>> for.
> >>>>
> >>>> http://ncrypt.sourceforge.net/
> >>>> http://linux.die.net/man/8/ncrypt
> >>>>
> >>>> Brad Bartram wrote:
> >>>>> Hey guys (and girls);
> >>>>>
> >>>>> I'm looking for a utility that will run under linux.  Preferably
> >>>>> command-line, rather than GUI.
> >>>>>
> >>>>> I need a utility that will wipe a partition, of my choosing, of all
> >>>>> data to DoD spec.
> >>>>>
> >>>>> Here are my limitations -
> >>>>>
> >>>>>   as I said, it has to be a standalone utility or some obscure
> option
> >>>
> >>>>> to an existing utility
> >>>>>   it has to be to a verifiable specification - i.e., write with 0,
> >>>>> then with 1, then with FF and repeat several times (DoD spec)
> >>>>>
> >>>>> I've looked high and low and can find windows utilities from now
> >>>>> until next week that do what I need but I'm having a beast of a time
> >>>>> finding a utility in linux that doesn't want to do an automated
> >>>>> thrashing of my entire system on boot or anything I don't want.
> >>>>>
> >>>>> Thanks in advance.
> >>>>>
> >>>>> Brad
> >>>>>
> >>>>>
> >>>>>
> >>>
> ------------------------------------------------------------------------
> >>>>>
> >>>>> _______________________________________________
> >>>>> nflug mailing list
> >>>>> nflug at nflug.org
> >>>>> http://www.nflug.org/mailman/listinfo/nflug
> >>>>
> >>> _______________________________________________
> >>> nflug mailing list
> >>> nflug at nflug.org
> >>> http://www.nflug.org/mailman/listinfo/nflug
> >>>
> >>
> >>
> >>
> >> --
> >> 43.036801, -78.948532
> >> _______________________________________________
> >> nflug mailing list
> >> nflug at nflug.org
> >> http://www.nflug.org/mailman/listinfo/nflug
> >>
> >>
> >
> _______________________________________________
> nflug mailing list
> nflug at nflug.org
> http://www.nflug.org/mailman/listinfo/nflug
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://www.nflug.org/pipermail/nflug/attachments/20070914/f71b90b9/attachment-0001.html

More information about the nflug mailing list