From: "Willie" <tumbleweed@fastmail.net>
To: dm-crypt@saout.de
Subject: Re: [dm-crypt] Hosed encrypted drive. Is disaster recovery possible?
Date: Sun, 01 Aug 2010 16:20:38 -0700 [thread overview]
Message-ID: <1280704838.643.1387808231@webmail.messagingengine.com> (raw)
In-Reply-To: <20100801230113.GA14693@tansi.org>
On Mon, 02 Aug 2010 01:01 +0200, "Arno Wagner" <arno@wagner.name> wrote:
> On Sun, Aug 01, 2010 at 02:11:36PM -0700, Willie wrote:
> > Evening all,
> >
> > I'm not very hopeful of a positive response, but having just made my
> > worst mistake in thirty years of computing I thought this would be where
> > most of the relevant knowledge is.
> >
> > I have an external 1.5TB Seagate drive, encrypted with dm-crypt/luks and
> > formatted xfs.
> >
> > In a state of dog-tiredness, thinking I was pointing at a USB stick, I
> > have inadvertently wiped a few hundred MB of the beginning of this disk
> > with:
> >
> > dd if=./archlinux-2010.05-netinstall-i686.iso of=/dev/sdc
> >
> > My question, as you might guess - is there any possibility of recovering
> > the vast amount of data still on the drive? I could do it with an
> > unencrypted disk, but I have no idea how to proceed in this case.
> >
> > Thanks for any suggestions. (I've managed not to cry so far...)
> >
> > Willie
>
> Hi Willie,
>
> sorry, but you will have wiped the salt in the header, which
> makes recovery impossible. You will also have wiped all keys
> (they take about the first 8.5MB), which again does make recovery
> impossible. In fact, any recovery from this would mean that
> LUKS is badly broken security-wise.
>
> The only protection against this type of error is (besides a
> conventional backup), a header backup, see the FAQ at
> http://code.google.com/p/cryptsetup/wiki/FrequentlyAskedQuestions
>
> I did something similar recently, (tired and thinking I was blanking
> an USB stick), fortunately I had a backup of the whole disk. But the
> lession to me was: Hands away from dd and family when tired.
>
> Arno
>
Oh well. Some you lose. Chin up. Onward and upward, etc etc...
Thanks for the replies lads.
--
http://www.fastmail.fm - IMAP accessible web-mail
next prev parent reply other threads:[~2010-08-01 23:20 UTC|newest]
Thread overview: 12+ messages / expand[flat|nested] mbox.gz Atom feed top
2010-08-01 21:11 [dm-crypt] Hosed encrypted drive. Is disaster recovery possible? Willie
2010-08-01 21:26 ` Christoph Anton Mitterer
2010-08-01 23:01 ` Arno Wagner
2010-08-01 23:20 ` Willie [this message]
2010-08-02 0:27 ` Arno Wagner
2010-08-02 8:38 ` Willie
2010-08-02 9:05 ` Arno Wagner
2010-08-02 9:58 ` Milan Broz
2010-08-02 10:21 ` Mikko Rauhala
2010-08-02 13:43 ` [dm-crypt] How to gather LUKS parameters from active device (if LUKS header lost) Milan Broz
2010-08-02 17:33 ` Willie
2010-08-02 17:36 ` Arno Wagner
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=1280704838.643.1387808231@webmail.messagingengine.com \
--to=tumbleweed@fastmail.net \
--cc=dm-crypt@saout.de \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.