From owner-freebsd-questions@freebsd.org Fri Jul 14 17:03:06 2017 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 0F8E4DA8011 for ; Fri, 14 Jul 2017 17:03:06 +0000 (UTC) (envelope-from wblock@wonkity.com) Received: from wonkity.com (wonkity.com [67.158.26.137]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "wonkity.com", Issuer "wonkity.com" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 9B1DF6E3CF for ; Fri, 14 Jul 2017 17:03:05 +0000 (UTC) (envelope-from wblock@wonkity.com) Received: from wonkity.com (localhost [127.0.0.1]) by wonkity.com (8.15.2/8.15.2) with ESMTPS id v6EH33b2049074 (version=TLSv1.2 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO); Fri, 14 Jul 2017 11:03:04 -0600 (MDT) (envelope-from wblock@wonkity.com) Received: from localhost (wblock@localhost) by wonkity.com (8.15.2/8.15.2/Submit) with ESMTP id v6EH33xR049071; Fri, 14 Jul 2017 11:03:03 -0600 (MDT) (envelope-from wblock@wonkity.com) Date: Fri, 14 Jul 2017 11:03:03 -0600 (MDT) From: Warren Block To: Arthur Chance cc: Doug Hardie , David Christensen , freebsd-questions@freebsd.org Subject: Re: Unusual Question In-Reply-To: <0ccfaae9-6fdb-adfa-71b2-5dd3978f41b3@qeng-ho.org> Message-ID: References: <888578F8-AD68-4993-823C-152789F3C929@mail.sermon-archive.info> <0ccfaae9-6fdb-adfa-71b2-5dd3978f41b3@qeng-ho.org> User-Agent: Alpine 2.21 (BSF 202 2017-01-01) MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII; format=flowed X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.6.2 (wonkity.com [127.0.0.1]); Fri, 14 Jul 2017 11:03:04 -0600 (MDT) X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Jul 2017 17:03:06 -0000 On Fri, 14 Jul 2017, Arthur Chance wrote: > On 14/07/2017 07:11, Doug Hardie wrote: >> >>> On 13 July 2017, at 21:44, David Christensen wrote: >>> >>> On 07/09/17 02:57, Doug Hardie wrote: >>>> I have a FreeBSD 9.3 remote server that needs to be purged. I know that rm -rf / will remove all the directory entries, but I need to write over the drive. I thought that dd if=/dev/zero of=/dev/ada0 might do the trick, but it gives an not permitted error. The whole thing can crash and burn at the end. This is an unmanned site so moving drives is not viable. >>> >>> If the machine has BIOS and the system drive isn't too large, write an assembly program that fits into the MBR bootstrap code area to wipe the rest of the drive, assemble the program, write it into the MBR, and reboot. >>> >>> >>> Bonus: the program deletes the MBR when done wiping the rest of the drive. >> >> Neat idea, but I have a number of these systems and they all use different disk drives. That would be a lot of work writing drivers for each type. > > How about using the BIOS extended write sector call (INT 13h, AH=43h) in > your code? That should be portable. Won't that choke after 2TB? It might wrap around to the start of the drive after the 2TB mark, or just fail. Failure would be better, at least it would mean that half of a 4TB drive might be left intact without notice. But this idea of having a self-destructive boot block has some other problems. A tiny space for code, a dangerous thing to have lying around, and if you have to reboot into it, might as well reboot into mfsBSD (http://mfsbsd.vx.sk/) and be sure that it works. For SSDs, the Secure Erase option might be viable. I have not yet had that work in the couple of times I've tried it, but that could be due to improper usage or possibly lack of support on the old SSDs being used.