Re: Advice regarding servers and Wiping Drives after testing

["Kelly Keeton" <kellyrkeeton () gmail com>]

In my organization I have taken a simple Rubber maid tub with a hole
and it is the media destroy bin. Obviously i don't have breaking data
that could be stolen. In your organization you could use a locking
file cabinet with a hole in the top for example.   Once a month i take
all the media out of it and physically destroy the media. I am not the
DoD and don't need to smelter things, but if i just ran a drill thru
the platters a few times I am confident in my work (as well as
corporate policy from top level) that my media is destroyed. sure some
lab geek could rebuild that, but thats not a risk I have.

On 9/13/07, dave kleiman <dave () davekleiman com> wrote:
> Steve,
>
> That is not "wiped/overwritten" data.  That is simply deleted, formatted, or
> damaged drive.  We are all well aware that is possible, some of us do this
> for a living.
>
>
> Respectfully,
>
> Dave Kleiman - http://www.davekleiman.com/about.php
>
>
>
>
>       -----Original Message-----
>       From: listbounce () securityfocus com
> [mailto:listbounce () securityfocus com] On
>       Behalf Of Steve Olive
>       Sent: Thursday, September 13, 2007 02:33
>       To: security-basics () securityfocus com
>       Subject: Re: Advice regarding servers and Wiping Drives after testing
>
>       On Wed, 5 Sep 2007 04:03:17 am Ansgar -59cobalt- Wiechers wrote:
>       > On 2007-09-01 gjgowey () tmo blackberry net wrote:
>       > > A since pass with all zero's really won't protect your data from
> being
>       > > recovered by more advanced data recovery software let alone alone
>       > > hardware.
>       >
>       > I'd like to see a single case where someone was able to recover data
>       > from an overwritten harddisk, even after a single pass with zeroes.
>       >
>       > > Multiple passes isn't much better, but if that's all you got...
>       > >
>       > > You would be better off looking at better utilities if you really
> need
>       > > to keep the data from being recovered.
>       >
>       > Nonsense. If you're worried about the zeroes just replace /dev/zero
> with
>       > /dev/urandom. Your "better utilites" don't work any different from
> that.
>       >
>       > Regards
>       > Ansgar Wiechers
>
>       Hi,
>
>       I'd say it is very possible, otherwise organisations would not be
> offering
>       these services, with "No Fix, No Fee Policies", at confirmed prices.
> There
>       are a number of testimonials from existing customers:
>
>       http://www.payam.com.au/hard-disk-data-recovery.htm
>
>       If this is possible in Australia, I'm sure that the rest of the world
> has
>       access to similar organisations ;-)
>
>       Note: I'm not in any way associated with this business, other than
>       recommending people contact them directly if they need data recovery
>       services.
>
>       --
>       Regards,
>
>       Steve
>       Bathurst Computer Solutions
>       URL: www.bathurstcomputers.com.au
>       e-mail: steve () bathurstcomputers com au
>       Mobile: 0407 224 251
>       .... _
>       ... (0)>
>       ... / / \
>       .. / / . )
>       .. V_/_
>       Linux Powered!
>       Registered Linux User #355382
>       *********************************************
>       "If you read the same things as others
>       and say the same things they say, then
>       you're perceived as intelligent. I'm a
>       bit more independent and radical and
>       consider intelligence the ability to
>       think about matters on your own and
>       ask a lot of skeptical questions to
>       get at the real truth, not just what
>       you're told it is."
>       Apple's Inventor - Steve Wozniak 2006
>       *********************************************