[AusNOG] disposal of equipment
Peter Tonoli
peter at medstv.unimelb.edu.au
Mon Feb 10 12:08:07 EST 2014
The question is how 'sure' you want to be that the data has been 'erased'?
CF cards and the like do reallocate data blocks through their wear levelling and similar processes; which means that there is a small chance that a determined adversary may be able to access credentials stored in blocks which have moved to the 'free space' blocks of the CF card. The best way to ensure that this doesn't occur is to physically destroy the CF card. Obviously, this is a lot hard to do with soldered in flash.
Peter.
----- Original Message -----
> From: "Alex Samad - Yieldbroker" <Alex.Samad at yieldbroker.com>
> To: "Chris Gibbs" <Chris.Gibbs at gosford.nsw.gov.au>, ausnog at lists.ausnog.net
> Sent: Monday, 10 February, 2014 11:45:28 AM
> Subject: Re: [AusNOG] disposal of equipment
> So at what point do you destroy and not sell.
>
> So I am thinking inbuilt cmos/flash in a closed box, I could write a
> file over the config file, but does that really work, you need
> multiple write over the same blocks on HDs. Do flash/cmos have the
> same issue.
>
> I am thinking about password for OSPF or BGP setups, all the per
> device password .... ie enable login die with the device..
>
> A
>
>
> > -----Original Message-----
> > From: AusNOG [mailto:ausnog-bounces at lists.ausnog.net] On Behalf Of
> > Chris Gibbs
> > Sent: Monday, 10 February 2014 11:32 AM
> > To: ausnog at lists.ausnog.net
> > Subject: Re: [AusNOG] disposal of equipment
> >
> > Are you kidding?
> >
> > Secure disposal of networking equipment is the responsibility of a
> > network
> > engineer. Why the hell would sys admin care?????
> >
> > We use a DSD wipe method though a live CD called boot and nuke. If
> > we can't
> > find a way to securely delete (i.e. onboard flash) and it is a high
> > risk device,
> > we smash! Lots of fun.
> >
> > Chris Gibbs
> > Network and Security Engineer | Information Management & Technology
> > Gosford City Council P (02) 43258888 M 0408 222 496 E
> > Chris.Gibbs at gosford.nsw.gov.au
> >
> > -----Original Message-----
> > From: AusNOG [mailto:ausnog-bounces at lists.ausnog.net] On Behalf Of
> > Daniel Watson
> > Sent: Monday, 10 February 2014 11:24 AM
> > To: Alex Samad - Yieldbroker
> > Cc: ausnog at lists.ausnog.net
> > Subject: Re: [AusNOG] disposal of equipment
> >
> > Hey Alex
> >
> > This post would be more suited over at AusSAG.net
> >
> > Please register over there and feel free to post this again to the
> > SAG.
> >
> > D.
> >
> > ________________________________________
> > From: AusNOG [ausnog-bounces at lists.ausnog.net] on behalf of Alex
> > Samad
> > - Yieldbroker [Alex.Samad at yieldbroker.com]
> > Sent: Monday, February 10, 2014 11:22 AM
> > To: ausnog at lists.ausnog.net
> > Subject: [AusNOG] disposal of equipment
> >
> > Hi
> >
> > So there are programs for wiping hard drives, but what about flash
> > drives in
> > networking devices (or inbuilt storage) is a simple del of files
> > acceptable or
> > writing over the file with ?
> >
> > What process are people using to clean their equipment before
> > selling
> >
> > Alex
> > _______________________________________________
> > AusNOG mailing list
> > AusNOG at lists.ausnog.net
> > http://lists.ausnog.net/mailman/listinfo/ausnog
> > _______________________________________________
> > AusNOG mailing list
> > AusNOG at lists.ausnog.net
> > http://lists.ausnog.net/mailman/listinfo/ausnog
> >
> > The information contained in this email may be confidential.
> > You should only disclose, re-transmit, copy, distribute, act in
> > reliance on or
> > commercialise the information if you are authorised to do so.
> > Gosford City
> > Council does not represent, warrant or guarantee that the
> > communication is
> > free of errors, virus or interference.
> >
> > Gosford City Council complies with the Privacy and Personal
> > Information
> > Protection Act (1998).
> > See Council's Privacy Statement at
> > http://www.gosford.nsw.gov.au/council/privacy.html
> > _______________________________________________
> > AusNOG mailing list
> > AusNOG at lists.ausnog.net
> > http://lists.ausnog.net/mailman/listinfo/ausnog
> _______________________________________________
> AusNOG mailing list
> AusNOG at lists.ausnog.net
> http://lists.ausnog.net/mailman/listinfo/ausnog
--
Peter Tonoli < peter at medstv.unimelb.edu.au > +61-3-9288-2399
IT Manager
The University of Melbourne - Eastern Hill Academic Centre, St. Vincent's Institute and O'Brien Institute
More information about the AusNOG
mailing list