| WIKI | FAQ | Tech FAQ | |
 http://csua.com/feed/ | |
| ||||||
| 5/24 |
| 2005/8/23-24 [Computer/SW/Security] UID:39233 Activity:low |
8/23 Hi motd. I recently got a Dell Latitude D610 from work. There is a
"Hard Drive Password" feature in BIOS. After setting it, now every
time I boot it asks me for this before it loads the OS.
Does anyone know if this password is stored on the drive or on the
mobo? E.g., if the latter, I can just put the drive in an external
enclosure and access all files. Thanks. I suspect the latter.
Okay, I see here it looks like the former:
http://www.pcreview.co.uk/forums/thread-1942031.php
\_ Depends on the make & model. A lot of mfgrs deal with the password
with a combination of bios and either an eeprom or a reserved area
on the drive. Generally it's some variant of the bios being a
sort of "handler" for the password info which is stored elsewhere.
The good news is, there are ways of breaking this with some
understanding of electronics diagrams and a degree of proficiency
with a soldering iron. With some IBMs, for example, you need to
nuke the password on the particular laptop it was set on before you
can use it for something else (unless of course you break it, which
is difficult-but-not-impossible.) I did some research on this a
while ago for a project, but my info may be out of date. -John
\_ fyi, I downloaded the spec doc for the Hitachi 5K80 Travelstar,
and there's a whole section on this, which leads with: "With a
device lock password, a user can prevent unauthorized access to a
device even if it is removed from the computer." It sounds like
\_ fyi, I downloaded the spec doc for the Hitachi 7K100 Travelstar,
and there's oodles about password set/clear/change. Presumably
this is all stored on the HD.
Upon further reading, it looks like the drive supports a Master
Password and User Password. Presumably the Master Password is
known only to Dell and is different for different service tags,
and is used to unlock the drive if the user forgets the User
Password that he or she used to lock the drive.
Unfortunately it looks like all you need is a keygen program
to get the Master Password for Dell Latitudes:
http://www.techspot.com/vb/topic18780-pg4.html&pp=20
Doh! -op
I do agree that if you speak with Dell they'll probably tell
you a special way of clearing the "Hard Drive Password" if
you authenticate with them completely. And DriveSavers probably
knows exactly how to do it without any trouble.
After googling for a while, it looks like this is the only way to
clear the hard drive password: http://dp.allhyper.com
Much easier to clear the non-hard-drive passwords. -op
\_ OK the mechanism I found consisted of soldering together a
bit of electronic gymcrackery according to a set of wiring
specs I found, which would slurp the password hash off the
laptop via serial and let you dump it on a PC in order to
crack it. I'd be very interested in what you find, so if you
would like to look at the bit of poking around that I did,
drop me a mail (non-bouncing email in my .plan) -John
\_ Oh, it's just the link I posted -- run the keygen
against the reported hard drive code, obtain the password
which clears the other passwords. Apparently another
mechanism involves a paperclip shorting some pins. -op
\_ Good news. That keygen only works for old service tags
(ending with extension -D35B). Then, I e-mailed the owner of
the document that describes how to unlock passwords using
a paperclip (shorting some pins). He says his method is
only for the BIOS passwords, and there is nothing he knows
of that can unlock the "hard drive password". Yay. -op
\_ See above, offer still stands (dunno if it'll be of any use
but might give you some pointers of where to look.) -John |
| 5/24 |
|
| www.pcreview.co.uk/forums/thread-1942031.php a friend bought a used Dell laptop last week, but when she started it up she got a message that says the ahrd drive has password protection on it. she cannot get past that message to do anyting with the drive or the computer. If it were an ordinary desktop drive I could just configure it as a slave and (hopefully) format it. If so, how do I make it a slave, and how do I connect it to the laptop? she cannot get past that message to do anyting with the drive or > the computer. If it were an ordinary desktop drive I could just > configure it as a slave and (hopefully) format it. If so, how do I make it a slave, and how do I > connect it to the laptop? thanks, Short of getting the password from the previous owner you might be hosed. I have been researching this issue after an experience with a friend, and my Laptop. What I've discovered is that if the Laptop writes the password to the hard drive, and stores it in non-volatile ram in the Laptop Motherboa rd, you either obtain the correct password, or the Laptop is useless. If the Laptop is one that writes the password only to the drive, you can replace the drive, and be in business again. As to the password protected hard drive, there are two possible password protection configurations, Master & User. Either way the average user wont be able to access the drive unless the password is known. I have confirmed that the data recove ry services can bypass the hard drive password protection on a hard drive (I haven't discovered how yet), but it can be rather expensive. I have confirmed that the password is written to the hard drive firmware, and unavailable to the average user, but there is some indication that th e password is also written to the platter (I haven't confirmed that one way or the other). You will be unable to format, or access the drive in the Laptop, or a desktop, as a slave or master without special software. In most Laptops y ou would be prompted for the password. In the desktop the drive would be reported as a failed drive. Your best bet is to try a new hard drive in the Laptop to see if it will operate, or obtain the password from the previous owner. she cannot get > past that message to do anyting with the drive or the > computer. If it were an ordinary desktop drive I could > just configure it as a slave and (hopefully) format it. Depends on whether the drive has been set on the drive itself, or just the laptop. The format ATA standard drive password is very secure and stays with the drive even when moved between laptops. If the master password has not been changed, it can be used to erase the drive if its a drive password. You can get a cheap adapter that allows the drive to be plugged into a desktop as slave, but that wont fix the problem if the drive password has been set. One obvious approach is to ask the previous owner for the password. |
| www.techspot.com/vb/topic18780-pg4.html&pp=20 Welcome to TechSpot, one of the most popular independent PC information r esources on the net! You are currently viewing our boards as a guest which gives you limited a ccess to view most discussions, articles and photo galleries. By joining our free community you will have access to post topics, communicate pri vately with other users (PM), respond to polls, upload your own photo ga llery and access many other special features. Secondgunman Secondgunman is offline TechSpot Member Join Date: Mar 2005 Location: Edmonton Alberta Canada Posts: 193 Arrow Wow... you learn something new everyday, I am going to take nots on this as I get stuck with Dells all the time. Baldanders Baldanders is offline Newcomer, in training Join Date: Jun 2005 Location: Norman, OK Posts: 14 Quote: Originally Posted by ironman86 Success! The master password worked this time and I have full access to t he computer again. I hope this thread will be of some help to other people who run across it. I got my diskette drive yesterday and fi nished installing the OS and drivers. Baldanders Baldanders is offline Newcomer, in training Join Date: Jun 2005 Location: Norman, OK Posts: 14 Flying Dell Quote: Originally Posted by Secondgunman WOW! you learn something new everyday, I am going to take nots on this as I get stuck with Dells all the time. I'm guessing it would drop like a rock, but I'm not going to try it. Just my luck it would land on someones head, and my fingerprints are all ove r it inside and out. GodOffsck GodOffsck is offline Newcomer, in training Join Date: Jul 2005 Posts: 1 I found this page with the help of Google, I just want to say thankyou to all of you. Last time I had to reset the passwords of a Dell laptop I h ad to use the paperclip method. exe t o generate the master password, holding control and hitting enter twice, then using it again to generate the HD password, I now have a working l aptop. Baldanders Baldanders is offline Newcomer, in training Join Date: Jun 2005 Location: Norman, OK Posts: 14 Quote: Originally Posted by GodOffsck I found this page with the help of Google, I just want to say thankyou to all of you. Last time I had to reset the passwords of a Dell laptop I h ad to use the paperclip method. exe t o generate the master password, holding control and hitting enter twice, then using it again to generate the HD password, I now have a working l aptop. I was hoping a few people would run across th is page through their web searches. I spent so many hours gathering all the info I needed, sifting through the useless stuff, trying things that didn't work -- I figured it would be nice to post a mini-faq on how to use the password generator. I never figured out the paperclip method (unless it is similar to shortin g out the third and sixth pins with wires). The sites I checked were no longer available or wanted payment for instructions. I guess you have to do a hardware fix on the later model Dell notebooks, so it is probably a handy method to know. halfmachine71 halfmachine71 is offline Newcomer, in training Join Date: Jul 2005 Posts: 1 Smile Latitude_MasterPW... After searching and searching and searching the net, I thought my case is hopeless... But thanks to this forum, I now can access my CPx H500GT la ptop... That is not par t of the password, but all the rest of the characters are. If you just e nter 6GBEN it will give you a Master password, but it won't work. Enter 6GBEN**-D35B and you should get a Master (Primary) password that reads: qb80eycj. When you type it in the first time, I would suggest that you o nly strike the Enter key (don't hold down control), because if you have a Hard Drive lock password, that screen will come up next. exe, and it will give you the Hard Drive Master Password. The HD D Master password will permanently disable the password and unlock your hard drive (I suppose you could enter a new one later). The Master (Prim ary) password will have to be entered each time, until you do the Contro l/Enter thing to completely clear it. Perhaps someone can clarify the password entry procedur e As I understand it there are four different passwords. In my case, I have a Dell Latitude CPi D266XT with a locked hard disk. I would just li ke to retrieve the data - the laptop has a broken screen (but I can cabl e to another monitor to see what is on the screen). I am able get into t he BIOS to change the boot drive assignments, so I don't think the BIOS is locked. After I get past the BIOS settings, I don't see a HDD service tag on the screen (as quoted above). I see eleven stars, followed by -D 35B (some of the stars are letters, and the letters change on each reboo t - but there are always eleven of them). However this is apparently the wrong password, since neit her it, nor the form 953N6R4E***-D35B would unlock the hard drive. exe progra m, which yielded 2ryp5k3v or (for older BIOS's) rvfuebti as passwords. N either of these seemed to unlock the hard drive either. exe asked for HDD serial numbers as an option, but it rejected all the numbers I could find as being the improper format. Baldanders Baldanders is offline Newcomer, in training Join Date: Jun 2005 Location: Norman, OK Posts: 14 I'm a new poster. Perhaps someone can clarify the password entry procedur e As I understand it there are four different passwords. In my case, I have a Dell Latitude CPi D266XT with a locked hard disk. I would just li ke to retrieve the data - the laptop has a broken screen (but I can cabl e to another monitor to see what is on the screen). I am able get into t he BIOS to change the boot drive assignments, so I don't think the BIOS is locked. After I get past the BIOS settings, I don't see a HDD service tag on the screen (as quoted above). I see eleven stars, followed by -D 35B (some of the stars are letters, and the letters change on each reboo t - but there are always eleven of them). However this is apparently the wrong password, since neit her it, nor the form 953N6R4E***-D35B would unlock the hard drive. exe progra m, which yielded 2ryp5k3v or (for older BIOS's) rvfuebti as passwords. N either of these seemed to unlock the hard drive either. exe asked for HDD serial numbers as an option, but it rejected all the numbers I could find as being the improper format. After I got past the BIOS passwor d screen, another screen popped up asking me to enter the HDD password. exe util ity) exactly as they appeared on the notebook screen (without the # sign ), and the generated password I received cleared out the HDD master pass word (after entering it into the notebook password screen and striking t he Enter key, of course). Evidently this does not work for everyone, bec ause another poster had a problem similar to yours. You don't use the se rvice tag numbers, by the way -- in your case ZXDNF**-D35B -- except for generating the BIOS password. The HDD character string I got on the not ebook (at the HDD password Enter screen) was a very long series of lette rs and numbers. If you are able to change boot order, you are not locked out of the BIOS configuration. I don't have any idea why your numbers are changing on th e HDD password screen, but I'm no expert on this stuff. Wish I could be of more help, but that about taps me out. exe util ity) exactly as they appeared on the notebook screen (without the # sign ), and the generated password I received cleared out the HDD master pass word (after entering it into the notebook password screen and striking t he Enter key, of course). You don't use the service tag numbers, by the way -- in your case ZXDNF**-D35B -- except for generating the BI OS password. The HDD character string I got on the notebook (at the HDD password Enter screen) was a very long series of letters and numbers." "If you are able to change boot order, you are not locked out of the BIOS configuration. I don't have any idea why your numbers are changing on t he HDD password screen, but I'm no expert on this stuff." I found by trial and error of inserting a string of 1's, that the Latitud e_MasterPW program responds to either a 5 character string or an 11 char acter string (or 11 characters with -D35B tacked on). This apparently co ... |
| dp.allhyper.com Read the EEPROM of your Dell by JHassel 18-06-2005 Here is one technique that works with the latitude series. First, disassemble the laptop until the motherboard is free. Here is a picture of one with the relevant pins labelled. Make sure there ar e no solder bridges and try and do a better job than the one in the pict ure. Assemble the laptop again but you do not have to put all the screws back. Usually if something is metal it will need to be scr ewed back in. As you can see it is very simple, you do not even need a board. All the components can be soldered directly onto the serial connector. R1 = R2 = 4k7 (4700 ohms) Z1 = Z2 = 51 Volt Zener Diode schematic Take the wires that you soldered onto the EEPROM chip and solder them ont o the circuit you have made. circuit To take a reading of the EEPROM you need some software for the working co mputer. Select your EEPROM device, it should be obvious from looking at the chip. Have Ponyprog open with the circuit plugged into the serial port of the working computer. Get ready to read the chip under Ponyprog but don't do it yet. Comments Flea Posted on 20-06-2005 05:00:27 My computer works now, cool. p_u Posted on 20-06-2005 09:48:21 this works not only on dell machines! feel free to contact me, if you have a ny futher questions. de KenM Posted on 20-06-2005 21:17:51 Thanks for taking the time out to share this top-secret double nought spy clearance, eyes only info. onewattbulb Posted on 23-06-2005 20:00:26 glad to see some webspace dedicated to this topic.. took me three days of bangin my head against the wall to finnaly get my pass cleared using th e shorting pins method... now depending on the legality of owning the machine, you may want the service tag remove d (untraceable), but then you can't set a bios admin or configure passwo rd(only a HD password can be set).. if i had known i w ould have done it this way, but hey.. and if you know how i can setup a generi c service tag, and flash it onto the chip, please let me know... hoping there might be a function to set the tag in there somehow... p_u Posted on 23-06-2005 23:12:45 1 watt bulb, are you able to build the hardware? JHassel Posted on 24-06-2005 04:49:30 Onewattbulb, I spent a few days banging my head against the wall too but i still could not get the shorting method to work. This way worked, so i thought it would be a g ood idea to make a page about it. it would be great if you could make the circuit shown and email p_u the d ump, he may be able to analyse it further. p_u Posted on 24-06-2005 12:27:11 @onewattbulb we need an dump taken from exactly same machine type. Ron Posted on 07-07-2005 23:01:26 Hello, I have build the connection, but if I connect it to the 24C02 even without connecting the COM1 (still hanging loss), the LED's on the DELL latitude CPx go off (after some seconds) and it is not possible to powe r on the DELL PC. After disconnecting the wire to pin5 (SDA) the DELL PC works normal again. Ron Posted on 10-07-2005 22:43:39 I'm afraid that the data in the eeprom is aready a bit damaged. What I di d different than above is that I took the GND from the rear instead via a wire from the 24C02. following message is displayed: "Hard-disk #***********-595B, the system Primary HDD, is protected by a password authentication system. You cannot access data on this hard driv e without the correct password." JHassel Posted on 10-07-2005 04:02:11 the laptop should be turned on just before reading with ponyprog. infact 'read' should be attempted almost immediately after the laptop's power i s connected. good luck p_u Posted on 12-07-2005 18:34:30 @ron: so it is when doing shortcut and loosing service tag. if there is no service tag, you won't have pos sibility to bring a new hdd in. a write to it with a working dump (from same machine type t aken) should fix your problem. DeepWater Posted on 13-08-2005 03:02:35 I got a Dell latitude c840 dismantled but I can't find the friggin securi ty chip. DeepWater Posted on 13-08-2005 04:02:39 I've looked everywhere. If one of you could by any chance post a picture of one of these motherboards with chip circled, I'd real ly, really appreciate it. p_u Posted on 14-08-2005 12:29:08 look under pcmcia slot, remove thin plastic, that is sticking on mainboar d DeepWater Posted on 14-08-2005 23:47:15 Hey, p_u I found a chip thats got the serial # 24C02W6, is this the one. And if it is that one could you tell me how to short out the chip or read it. I have NO plans on phoning dell and saying "Hi got a laptop of f the street, need a password. i have tryed to shortcut a c610, but have had no success with the shortcut, i read out the eeprom by the way i give john. net DeepWater Posted on 15-08-2005 04:16:58 Hey p_u thanks a million. Hey P_U if you can, could you tell me how to fry the fu**in g chip instead of trying to read it. p_u Posted on 15-08-2005 06:36:55 @deepwater: sorry, can't help that way... DeepWater Posted on 15-08-2005 08:03:03 Ok p_u you hooked me. |