I’m suggesting either using the secure erase utility built into your efi if available or using hdparm and calling secure erase.

https://grok.lsu.edu/article.aspx?articleid=16716

I suggest calling these utilities with no other drives connected.

True, but it’s not clear to me that both drives are exhibiting the behavior and it sounds more like a copy between two drives. I wouldn’t rule it out and do think it is a possibility, but in my professional experience drives fail much more frequently than controllers.

It makes sense to me to test the drives individually, in another system preferably, using smart long test, which is non-destructive. Next test other drives in this system. If there are errors, try changing out the SATA cables, too. If you can shuffle the data off the drives, do so and then try running them through a secure erase in another system. A bad drive should fail the same way in another system.

My other thought for probably not being the controller is that 4TB is a very long time for a sustained transfer to fail on a flakey component. Also, there are no reports of other errors.

Sounds like a bad drive, TBH. Not as much the platters but the electronics.

If you can move all the data off and do a secure erase on it, it will tell you all lot.

The last board suggested with 5 ports would handle 4 drives in raidz2.

This is smaller even. https://pcpartpicker.com/product/hRBrxr/asrock-motherboard-970mpro3

I would prefer having the smaller board with the hba and putting 8-10 smaller drives in raidz3. That would give you 6 TB with three drives for failure to prevent loss.

Outside the drives, the cost would be under $200 for the board and the hba.

If you have an old system with two PCI-e 16 ports, then your cost is about $90 before you start buying drives.

I’m doing similar with a DDR3 system and spinning 1 TB disks. It’s fast enough to serve video streams.

Ok, so if you want to do a bunch of drives in a box:

https://pcpartpicker.com/product/FhPzK8/gigabyte-mw50-sv0-atx-lga2011-3-motherboard-mw50-sv0

https://pcpartpicker.com/product/yFWJ7P/crucial-bx500-4-tb-25-solid-state-drive-ct4000bx500ssd1

However, that’s expensive. I would go with spinning disks.

https://pcpartpicker.com/product/9wVmP6/western-digital-wd-blue-4-tb-35-5400rpm-internal-hard-drive-wd40ezaz

If you want to bring the cost down more,

https://pcpartpicker.com/product/4bqPxr/asus-prime-b550-plus-ac-hes-atx-am4-motherboard-prime-b550-plus-ac-hes

https://ebay.us/m/kmgfao

You can drive the price down more by buying a used system.

The pile of SSDs will be easiest to stuff into a box.

You will need to get creative with cooling.

I read through it!

I think the video card is giving you hell here. Is it an old ATI?

If you get stuck, reply to this comment with pics of your bios settings screens. I HAVE put Linux on a couple pavilion machines, and the bios screens are sometimes a bit tricky.

Conversely, you can mount the drive in a different machine and use virtual box to install Linux. You can then move the drive to the HP. I had to do this once with a Dell that was slowly failing and the USB ports stopped working.

It might not support secure but at all, which makes sense and isn’t necessary for Linux anyway.

Also, according to some posts, you may need to format your USB as MBR instead of GPT. Rufus has a drop down and Ventoy hides it in a menu

Check the bios settings to see if it is set to boot Windows or other.

Also, there is a chance that you can change the boot order in bios. You might need to change the targeted hard drive to the flash drive.

Probably needs more sugar.

They recently had an update and my potato PC that was struggling to play it on Linux suddenly was able to play it on low moderate settings.

I then bought a video card and it is smooth AF, but that was a long-planned purchase.

Games about BBC and other fetishes were recently removed? It’s a guess, no snark.

Op, I have half a pallet. I could ship you one… From the middle of USA. It’s probably not worth the cost in shipping.

Aren’t German government agencies moving away from Windows? The lack of forced waste might be driving prices up.

So, the difference with no numbers and special characters is 52^20 (2x10^34) versus 95^20 (3.6x10^39). There are three reasons this runs into issues.

Pure math indicates that a 20 digit alpha only password with caps sprinkled in is slightly stronger than 12-13 digits of alphanumeric plus caps and specials.

Out of the various people within various organizations I have supported, people have disclosed their passwords to me a breathtaking number of times. It is quite common for people to create a password with only lower characters. That would be 4x10^27, about the same as 14 characters using the full qwerty set.

Either way, we are discussing a password cracking tool running locally attempting to hash your password. You do have a point that 12 thousand years is a very long time to arbitrarily guess a password. Unless something changes where someone can easily access ten thousand cores at a reasonable utility, you are pretty much safe from anyone except state level threats. That would be full time use of that many cores for 37 days at 10k cores, or 9 hours access to a million cores. We just aren’t there yet. No clue if this would work better with GPU time, but that would still be a serious system.

Now, I am stepping into old lessons from 2011, and I can’t find a great source to back myself up. If I’m wrong, then I have been operating off this misinformation for 15 years and I’d gladly appreciate better information.

The final issue is that since passwords are hashed in chunks, parts of the password could become visible while the rest is being worked on. This could lead to the attacker guessing the rest of the password.

I want to be clear that what I’m about to say only refers to compromised systems where the password database has already been exfiltrated and systems that do not lock or otherwise slow down attackers.

A system where the passwords are inaccessible, requires periodic password changes, enforces complexity, and locks out invalid attempts probably is fine, but I’ll get there.

A password cracking tool will typically start with lists of known passwords, then it will move on to dictionary words. If the attacker has any personal information, and the means to add it, they will give priority to that information. Phrases with multiple words are more likely, and will be tested next. These dictionary attacks are run first because on a fast enough system they can crack a password in weeks. Munging standard spelling increases the entropy here, increasing the number of attempts to guess a password.

From here, an attacker must start brute force, which tries to decipher your password one character at a time. Adding uppercase characters doubles the number of characters, but that is still super quick to crack. Adding numbers begins to increase the time, but all this is going to be checked within hours or days depending on the length of the password and the resources the attacker is committing.

Adding special characters significantly increases the amount of time because just the standard (33?) characters characters easily accessible on a common US Qwerty keyboard multiples the checks that many times, per each character in the password.

So, uncommonly misspelled words and sprinkled in characters increase the security of your accounts over just dictionary words. This would guard a person’s reputation at work if anyone got their company’s AD password file out without notice, as well as one’s security if their browser’s password store is compromised. Also, some people refuse to follow proper security for convenience, and it is sometimes possible to find a service that will allow rapid password attempts.

I didn’t type this right in the first place, but it DOES bring up a point.

Substituting symbols for letters, we always called it leet speak—but Wikipedia calls it munged—used to be considered safe quite some time ago.

It’s better not to use real words because it makes it easier for password cracking tools. If you have to, it is better to mung them, but also misspell them.

pY@zvvuD is much stronger than p@55w0rd, even if it is harder to remember. In the same vein, my bunged password would have been slightly more secure, even if someone had found my pass phrase. But in my case, my password sucked because I would have probably come back trying to put a k at the end. I have munged them like that in the past, but it is extra to remember.

If you have a password vault, use the vault first.

For rotating PC login credentials, I use codified passphrases. They typically meet security needs, are unique and nearly unguessable because it could be ANYTHING in your office, and don’t contain dictionary words. Example:

Annual evaluations are due before summer. Be sure to mention the Grodsky project! aeadB4S.Bs2mtGp.

Where did Julie’s candy go? I ate it! She’ll never know >:D

WdJcg?I8i!Snn>:D

Even if I had a perfectly secure connection, I’m still getting a password from a service that could be tracking me.

The two reasons to run proxmox here are one, to create external snapshots and two, to allow multiple operating systems to share your workstation. I keep a virtual Windows install for random windows os stuff on the same server.

If you are not getting the benefits of virtualization, then it makes sense to run bare metal.

I bought my power supplies off temu. One way or another, someone is getting hurt.

Hah, yeah, this is very far from my specialty, fixing computers. I only felt empowered by my many trips to the zoo and Google-fu.