Any metal working shop will be able to help you.

If the data is not encrypted, the only real way to securely delete it is
physical destruction. My personal preferred method is a magazine full of
5.56 NATO in my ar-15 at 50 yards. A .50BMG would certainly do it in one
shot. If you have the means available, and it's not illegal where you
live, it can be quite fun.

Of course, if you're not worried about someone going all out with an MRI
to retreive the data on the drive, a standard magentic media bulk eraser
should work. The only caveat is that it will certainly fry the drive
heads in the process.

--
Joseph

Mark Grimes used to have a patch for OpenBSD 3.2 that added an '-s'
option that would perform secure deletion. The file is named
rm_gutmann-3.2.diff, you might find it with google, since Mark has
pulled it from his website at http://www.packetninja.net/.

But again, melting a disk is better.

Have a nice day
Morten

I had the very same problem, and if you would like to reuse the hard
drive, or sell it, and not destroy it, you can try out this program I
wrote, that will COMPLETELY erase the data on the drive. It polarizes the
disk which causes all the bits to be zero'd then one'd (0x00 then 0xff)
then writes a random character to the disk (in the case of my program,
0xf6) and this will erase all data securely. In fact, this is how the
United States government removes Secret classified data from hard drives,
I just wrote a free program, licensed under BSD, to do it.

URL: http://www.sourceforge.net/projects/disc-wipe/

Jason

I had someone from NSA tell me how they removed secret classified data
(data classified higher than that was degaused) and I had a forensics guy
tell me the most secure way to delete data from a drive, while still being
able to use it. He said, using the method I used in my program, that some
data bits would be recoverable, however, no full bytes, and he is
currently testing it now. Please feel free to test my program, use it
however you want, and please give me feedback on whether it worked at all
for you, what you did with it, etc... I would be very interested to get
the opinion from as many people as possible
With all due respect, that is most certainly not how the US government
removes secret classified data from magnetic media. First, let me forward
you to a link from this mailing list we had last year discussing the
topic:

http://www.sigmasoft.com/cgi-bin/wilma_hiliter/openbsd-misc/200211/msg01399.html

I'll reiterate from my previous posting that modern hard drive write
heads are unable to put the magnetic media back in a median state,
therefore software methods of removing data are less than foolproof. An
audit of the DoD by the Inspector General found that it was indeed
possible to recover sensitive data from drives that had been certified as
being wiped. That's why in all cases the current operating procedure of
the DoD is to destroy all hard drives from all systems, regardless of the
classification of the data on them.

And to reinforce that, take a look at this letter sent out in 2001 by
Deputy Secretary of Defense Rudy de Leon about the ability to recover
sensitive data off of magnetic media believed to be "sanitized."

http://www.c3i.osd.mil/org/cio/doc/computerdisposal.doc

Granted, as it has already been mentioned by others, it begs the question
of how important the information is you're trying to get rid of, who might
want the information, and how far they are willing to go to get it?

Have you tried your program against any of the available free and
commercial forensics programs out there to verify your claims? The
software that was previously considered acceptable by DoD standards used
the same scheme as you claim.

Regards,
--
Joseph

Sorry for not responding earlier work seems to get in the way sometimes.
When I say 'destroy the drive' I am talking about a situation where the
drive is going to be disposed of. If the drive is going to be reused in
my company, then for most cases just zeroing the drive is sufficient.
If there is data that I don't want to take any chances of it being
recovered (and is still going to be reused), then I'll overwrite the
drive with the 3 pass method.

Tim Donahue
http://dban.sourceforge.net/
http://www.heidi.ie/eraser/


dumb yahoo tag follows
Yahoo! Mail Plus - Powerful. Affordable. Sign up now.
http://mailplus.yahoo.com

sorry for reviving an old topic but i just have a quick question, most seem
to be of the opinion that data can be recoverd as long as the disk isn't
ashes, does anyone know of any articles or faq's on how data is recoverd
from dead disks? i'd be intrested in reading them. sorry if it's a bit off
topic, but your all so smart and likely to know this stuff ( shameless
flattery )
cheers
Tim Smith

A commercial recovery service: http://www.drivesavers.com/

I haven't seen any good links on the recovery of data, but this is a
couple cool picutres and a bunch of links that might be of interest:
http://www.spmtips.com/app/Subjects/datastorage.htm

Tim Donahue

-----Original Message-----
From: Scott Francis [mailto:***@darkuncle.net]
Sent: Tuesday, February 18, 2003 10:19 PM
To: tim smith
Cc: ***@openbsd.org
Subject: Re: Removing data in a secure manner?
I have not personally done much in the way of forensics of this type,
but you should probably check out The Coroner's Toolkit, and read the
background info on that same site.
http://www.porcupine.org/forensics/tct.html

--
--
Scott Francis || darkuncle (at) darkuncle (dot) net
illum oportet crescere me autem minui

[demime 0.98d removed an attachment of type application/pgp-signature]