SP2 - Binaries protected by default by DEP

J

Jon

A quote from the SP2 documentation.......
"By default, software-enforced DEP only protects limited system binaries, .........."



Does anyone which particular system binaries have the Data Execution Prevention feature enabled by default, with the /optin switch in boot.ini ?

ie it looks like svchost.exe related services are included (?), but does it say include lsass.exe, spoolsv.exe, mdm.exe, explorer.exe, iexplore.exe .......... ?

Also if you use the /optout switch does that mean the feature will apply to EVERY invoked executable / dll (unless specified otherwise) ?

Thanks for any responses

Jon
 
J

Jon

(correction)

Switches should have read
/NoExecute=OptIn
& /NoExecute=OptOut

Jon
A quote from the SP2 documentation.......
"By default, software-enforced DEP only protects limited system binaries, .........."



Does anyone which particular system binaries have the Data Execution Prevention feature enabled by default, with the /optin switch in boot.ini ?

ie it looks like svchost.exe related services are included (?), but does it say include lsass.exe, spoolsv.exe, mdm.exe, explorer.exe, iexplore.exe .......... ?

Also if you use the /optout switch does that mean the feature will apply to EVERY invoked executable / dll (unless specified otherwise) ?

Thanks for any responses

Jon
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

DEP settings change in the Boot.ini 5
Fixed SP2 slow boot but..... 1
How to disable DEP (Data Execution Prevention)? 3
Crashes after SP2 / Boot.ini 7
Data Execution Prevention not working 1
Caution, When upgrading Avg 6 free to Avg 7 free or pro with xp sp2 6
Windows XP SP2 DEP / Pax 1
Windows Explorer crashes in several circumstances 6

Top