Ethical Hacking Training at InfoSec Institute

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Computer Forensics Computer-Forensics
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Linux HPA status

from [Greg Freemyer] Network Security [Permanent Link]
Subject: Linux HPA status
Date: Wed, 14 Sep 2005 09:23:58 -0400 
All,

There have been discussions on this list before about how Linux treats HPAs.

There was a recent (long) thread on LKML about changing the behavior.

http://testing.lkml.org/slashdot.php?mid=600133

Nothing was resolved, but it looks like a boot option to allow access
to the normal disk space and the hpa space independently may be
forthcoming.

If nothing else, it was interesting to read of some of the various
uses of HPAs (and some of the problems having an HPA causes).

I was especially surprised to read that the IBM Thinkpad has a BIOS
option to enable/disable the HPA on the internal disk. (I have not
verified that.)

It also appears that certain computers routinely disable the HPA
protection, so an image of these sysmtems should be viewed as the
entire disk.

In other cases (more often?), the computer leaves the HPA in place and
the normal and HPA space should be treated as seperate images.

Greg
-- 
Greg Freemyer
The Norcross Group
Forensics for the 21st Century
[More with this subject...]


<Prev in Thread] Current Thread [Next in Thread>
  • Linux HPA status, Greg Freemyer <=
Previous by Date:  Digital Investigation 2004: Articles of the year, Eoghan Casey
Next by Date:  Two Windows questions, keydet89
Previous by Thread:  Digital Investigation 2004: Articles of the year, Eoghan Casey
Next by Thread:  Two Windows questions, keydet89
Indexes:  [Date] [Thread] [Top] [All Lists]