Re: can you make a hard disk read-only?

From: Nico Kadel-Garcia (nkadel_at_comcast.net)
Date: 10/09/03 

Date: Wed, 08 Oct 2003 20:41:33 -0400

Andy Baxter wrote:

> I'm wondering if there's some way of making a hard disk drive read-only
> using a hardware device which would go between the cable and the drive data
> connector, with a switch you could use to make it writeable only under user
> control?

Not they way they're built. There are some hard-drives with jumpers that
can be set to read-only, but I'd be *extremely* reluctant to enable such
a configuration without forcing a powerdown to make the change.

> I was thinking this might be useful in building a cheap, relatively secure
> linux system. The way I'm thinking this could work, for a debian system is
> like this:
> -install a base system from woody CDs with the switch set to writeable.
> -Then you'd close the switch and set up a firewall which only allowed access
> to security.debian.org and download the security updates to a seperate
> read-write partition.

Heh. Since you're talking about a stripped down system, most of it can
go onto CD or DVD's, particularly /usr. /var and /tmp *must* allow write
with most configurations.

> -Then reboot again, check them against debian's gpg key, and install them.
> -Then you set the switch to read-only and open the firewall to all IPs.
> For a small server or firewall, you could have all the binaries run from
> this disk, or else just use it as a secure basis from which to check all
> the other files on the system at boot time using md5sums or similar.
>
> This wouldn't stop someone from breaking in altogether, as they could still
> modify code and data structures in the memory, but it would stop them
> modifying key system files, and as long as you didn't mind rebooting and
> repeating the above process fairly often it would either lock them out
> again after the reboot, or else if parts of the system were run from a
> normal disk, these could at least be checked automatically from a secure
> basis to warn you that you had been cracked.

Hmm. May I suggest that a potentially more managable technique is to
always scrub the partitions and install the contents of things like /usr
from a known-good write-only source repository, such as a CD?

> You could even do this semi-automatically, if the hardware was designed so
> that the disk was always read-write on bootup, but could be switched
> irreversibly to read-only mode by a software command, e.g. through the
> serial port, or trying to write to a sector that doesn't exist. Then all
> the above steps would happen automatically on bootup, and the only thing
> you'd have to do is make sure it really was rebooting when it was meant to.

In software, such things are usually done by remounting partitions in
read-only mode. That is defeatable once the hacker is in with root
privilege, but it takes a lot more work than most script kiddies can
waddle out of their grease-covered overstuffed chairs and reach the
keyboard to do....

> The reason I'm asking, is I've had a look at the specs for ATA version 2,
> and from my limited knowledge of electronics it looks like you could do
> this for these older drives just by preventing the DIOW- (write data) line
> being asserted when the register address was set to 0 (data transfer).
> However, I don't think I know enough to be sure I wouldn't damage the
> computer building something like this, and for the newer ATA specs it gets
> much more complex, so I'd like to know if there is anything like this you
> can buy, or an open hardware design which I could build myself?

Hmm. Interesting. I rather like it. I'd look at the old drives with the
"read-only" jumper.

Relevant Pages

  • Re: New build - halt on ACPI Controller
    ... first I could boot from a cdrom no problem. ... on the hdd from a previous install attempt. ... to do was leave any such drives disconnected from the MoBo and verify ... landed up using the rear panel mains isolator switch to switch it off as ...
    (uk.comp.homebuilt)
  • Re: ad0 READ_DMA TIMEOUT errors on install of 7.0-RELEASE
    ... It does not matter how new/old the disk is, ... I always figured it was due to the rotational speed increase in commodity drives. ... I'm assuming that it is total power on time since the drive was manufactured. ... Help me or I switch to DragonFly BSD/Desktop BSD/Linux which is perfect and has no problems!" ...
    (freebsd-stable)
  • Re: Switching Power of hard drives ON and Off
    ... In front of it was a shelf of various harddrives with a switch ... Windows and is called" Power Manage something" and it will work on the ... We can do it today with the drives connected to the USB port but as ... > Vl> allowe me to power OFF any of my hard drives. ...
    (sci.electronics.repair)
  • Re: External hard drive
    ... is busy. ... because the "safely remove hardware" tool would always ... That's why I began to think it was correct to just flick the off switch. ... because it has no effect on NTFS formatted drives. ...
    (microsoft.public.windowsxp.basics)
  • Re: C/Skill interface sample
    ... but changes apears only when I changed back cellview to "... ... that I must to switch every time before executing c/c++ to ... read-only mode, and after to "editable", ...
    (comp.cad.cadence)