Complete wiping of hard drive - shred, wipe or dd?

linux dd wipe shred

I need to wipe all data of a number of hard drives, from Ubuntu Linux. I have found three command line tools: shred, wipe and dd. It seems kind of random what people recommend. Sometimes someone recommends one over the other, but they don't really specify why.

What are the advantages / disadvantages when comparing these tools?


What are the advantages / disadvantages when comparing these tools?

It depends on your goals:

  1. Are you wiping really sensitive data none should ever see (e.g. medical information)?
  2. Are you just following a 'I should do this because it is right'?
  3. Or the even weaker 'I have to wipe to be rules compliant'.

In the last case (3: rules) add the requirements to your post so we can factor those in.

In case 2: For rotating HDDs I just tend to wipe the disks once and then whack them with a hammer. The last is mostly just so people do not grab them from the waste bins and then come back for support.

In case 1: (a secure wipe) I will try two things:

  • If it is a SSD then I will tell the drive to secure erase itself. This is quick and safe. (Data on SSD's tend to be encrypted. Throwing away the key to that encryption makes the data worthless).
  • If it is a rotating harddisk I will try the same (some model support the command, some do not). If it is not supported I'll use whatever tool I have at hand. Until now that mostly was dd because I am more familiar with it and it always was preinstalled,

Shred seems to be for wiping files. Which means it might well wipe the file but not previously deleted information on the disk. In which case I would not use it to wipe whole disks.

Disclaimer: I have not tried it It can shred /dev/sdb or other block devices. In which case it might well work.

The same is true for wipe.


That leaves 'dd', (or the not mentioned badblock) and secure erase by the drive itself.

The last can be done with a single command issued to the drive via hdparm or by booting from this liveCD. In the last case make sure that you wipe the right disk (e.g. only put the disk to wipe in the computer, then boot from the CD).


shred can random wipe full drives or partitions and much, much, much more quickly than with dd.

shred -vn 1 /dev/sdxx

Related

How Does a VPN Manage Local IP Addresses
Is there a way of uploading to box.com storage via the command line?
Chrome instances move to same virtual desktop after sleep or hibernate in Windows 10
Can Robocopy monitor files on a time increment of less than one minute?
Can a website see/know my MAC address even if I use a VPN? [duplicate]
How to disable Spotlight in Snow Leopard?
Explain why .bash_logout won't run commands?
Why are things like Gnome Terminal called "Terminal Emulators" instead of just "Terminals"?
Reverse Touchpad 4-Finger Swipe
Alternative to PuTTY Connection Manager? [closed]
how to use codefolding feature of notepad++ for normal text documents
samba sync password with unix password on debian wheezy