On 3/21/22, Damian Weber wrote:
> https://lists.freebsd.org/archives/freebsd-security/2022-March/22.html
> I'd like to have an answer on a secure FreeBSD way to erase
> SSDs before giving these away to someone for reusing it.
https://lists.freebsd.org/archives/freebsd-security/2022-January/00
In message <12d76150-d3e8-a31b-c67d-c9c8e0a9b...@grosbein.net>, you wrote:
>First, there is a command trim(8) that is easier to use but it gives no guaran
>tee of "secure erase" in TRIM.
>Second, there is "camcontrol security -e" for secure erase, see camcontrol(8)
>manual page, EXAMPLES section.
Royce Williams
> To: freebsd-secur...@freebsd.org
> Subject: Re: SSD erase question
>
> Even multi-pass overwrite of SSDs is not a sufficient purge, due to how
> writing is distributed / optimized on SSDs. So dd / dc3dd is insufficient.
> Only invoking the on-controller ATA Secure
Even multi-pass overwrite of SSDs is not a sufficient purge, due to how
writing is distributed / optimized on SSDs. So dd / dc3dd is insufficient.
Only invoking the on-controller ATA Secure Erase / sanitize command (using
'camcontrol security -e' as Eugene said elsewhere in the thread) is the
val
On and SSD if you have erased everything ssd “garbage collection” should help
you if the drive it powered on.
But if you want to overwrite the drive
A simple overwrite with a text pattern with dc3dd.
dc3dd wipe=/dev/sdb tpat=nothingtoseehere
However if you are still worried that some controller op
Think I've mistaken dc3dd for bcwipe from ports. See bcwipe instead...
https://www.jetico.com/news/jetico-delivers-new-bcwipe-solution-wipe-drives-supporting-mac-nvme-secure-boot
--
J. Hellenthal
The fact that there's a highway to Hell but only a stairway to Heaven says a
lot about anticipate
Personally I would use dc3dd from ports and you'll be plenty alright.
While dd would be enough in most occasions I won't assume your data is of a
typical user. It only writes the random bits to the disk once. In some
scenarios it's possible to reverse that. dc3dd takes care of that by writing
m
21.03.2022 19:14, Damian Weber wrote:
>
> Hi all,
>
> I'd like to have an answer on a secure FreeBSD way to erase
> SSDs before giving these away to someone for reusing it.
>
> Is the following enough to protect confidential data
> previously stored there?
>
> 1) dd : overwriting with rando
Hi all,
I'd like to have an answer on a secure FreeBSD way to erase
SSDs before giving these away to someone for reusing it.
Is the following enough to protect confidential data
previously stored there?
1) dd : overwriting with random bits (complete capacity)
2) gpart create
3) gpart add
