Thinkpads Forum

Est. 1995 - Copyright © 1995-2017 (see FAQ for details)
https://forum.thinkpads.com/

T61 HDD Password Security

https://forum.thinkpads.com/viewtopic.php?f=18&t=70799

Page 1 of 1

T61 HDD Password Security

Posted: Fri Dec 12, 2008 1:48 pm
by eecon
I use my docked T61 without the Security Chip enabled or CSS installed (it seems to work better after I uninstalled CSS and RR long ago). I never travel with the docked T61 (I use my older T42 for trips). I use Acronis TI for backups.

My question is:

If set my startup User PW in BIOS to "match" the HDD PW (also in BIOS), will the HDD PW remain secure from an average user (i.e. not a security or data recovery expert) if the HDD is swapped into another unit in an attempt to access the HDD contents?

I recently discovered that when I set both passwords the same, I do not have to go through the extra step of also entering the HDD PW upon a cold startup ..... I just need to enter the User PW and then I see it also automatically accepts the HDD PW a moment or two later.

Thanks!

Posted: Sat Dec 13, 2008 7:14 am
by RealBlackStuff
Two things here:

First: Only the original HD-password will work, so make sure you NEVER forget it!.
A HD PW can NOT be recovered, unless by a forensic expert or for a charge of $200.- and up by a specialized company.
(Cheaper to buy a new HD.)

Second: the power-on-password can be 'undone' by removing the CMOS battery.
A supervisor PW can be recovered IF one has the proper equipment for it.
If the HD PW is the same as the supervisor PW, a "new owner" would have full use of the "new laptop", because that's what they'll try first.
It will save entering 2 passwords on the same machine.
But without PW, the HD cannot be used anywhere else, so it's OK to swap that HD into another laptop, as long as you remember the PW.

Posted: Sat Dec 13, 2008 9:55 pm
by eecon
Okay thanks RealBlackStuff ..... now let me see if I understand your helpful comments correctly:

If I make my HDD PW the same as my User startup PW and my Bios/Supervisor PW (where I only have to enter and remember one PW), the HDD will still remain secure (inaccessible to the average user) if it is ever removed by others to another machine ..... correct?

Posted: Sat Dec 13, 2008 10:07 pm
by RealBlackStuff
If there is a PW on the hard disk, it will stop anyone from using that HD unless they also know the PW.
This applies to any computer/laptop you would try that HD in: without PW, NO go.

Posted: Sat Dec 13, 2008 10:10 pm
by eecon
RealBlackStuff wrote:If there is a PW on the hard disk, it will stop anyone from using that HD unless they also know the PW.
This applies to any computer/laptop you would try that HD in: without PW, NO go.
Okay great .... so I can simply use one PW for everything .... thanks!
All times are UTC-05:00
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/