2 relatively lesser know security features in Vista.

anandk · 12-08-2007, 10:56 AM

ReDirection Of Data to a Virtual Store.

Under a normal/standard User Account, any application that tries to write to a protected system folder like C\Program Files or C\Windows, gets automatically redirected to a Virtual File Store, which is situated within the particular users profile.

In the same fashion, if an application attempts to write to areas/keys of the registry which have System wide ramnifications, like the HKEY_LOCAL_MACHINE hive, it gets re-directed to Virtual Keys within the users section of the registry.

Applications that attempt to read from these protected file & registry locations look first in the virtual stores.

Such an action prevents malicious applications from writing to areas that could bring down the entire system.

Buffer Over-run Protection.

Address Space Layout Randomization (ASLR) is another technology, new in Vista, that defend against the buffer overrun exploits.

Each time you boot Vista, the system code is loaded into different locations of the memory.

This seemingly simple change thwarts a class of well-known attacks in which the exploit code attempts to call a system function from a known location.

Just some little tidbits...

casanova · 12-08-2007, 12:48 PM

Thx for sharing.

First one is well known. Dint knew about buffer over-run protection.

12-08-2007, 10:56 AM	#1 (permalink)
anandk Distinguished Member Join Date: Mar 2005 Location: Pune Posts: 3,783	2 relatively lesser know security features in Vista. ReDirection Of Data to a Virtual Store. Under a normal/standard User Account, any application that tries to write to a protected system folder like C\Program Files or C\Windows, gets automatically redirected to a Virtual File Store, which is situated within the particular users profile. In the same fashion, if an application attempts to write to areas/keys of the registry which have System wide ramnifications, like the HKEY_LOCAL_MACHINE hive, it gets re-directed to Virtual Keys within the users section of the registry. Applications that attempt to read from these protected file & registry locations look first in the virtual stores. Such an action prevents malicious applications from writing to areas that could bring down the entire system. Buffer Over-run Protection. Address Space Layout Randomization (ASLR) is another technology, new in Vista, that defend against the buffer overrun exploits. Each time you boot Vista, the system code is loaded into different locations of the memory. This seemingly simple change thwarts a class of well-known attacks in which the exploit code attempts to call a system function from a known location. Just some little tidbits... __________________ > www.TheWindowsClub.com < = www.WinVistaClub.com = Microsoft® MVP

12-08-2007, 12:48 PM	#2 (permalink)
casanova The Frozen Nova Join Date: Sep 2004 Location: Trespasser in Virtual Land Posts: 1,641	Re: 2 relatively lesser know security features in Vista. Thx for sharing. First one is well known. Dint knew about buffer over-run protection. __________________ I dream of a better tomorrow... where chickens can cross roads and not have their motives questioned. www.nerdweed.blogspot.com

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
All Vista interface and features queries here	Arsenal_Gunners	Software Q&A	39	01-03-2007 06:44 PM
some lesser known XP SECRETS !	anandk	Tutorials	6	17-02-2007 06:27 AM
Features of Norton Internet security 2006:	rajas700	Software Q&A	3	07-09-2005 11:59 AM
FOR ALL U LESSER MORTALS STILL USING INTERNET EXPLORER !!!!	mariner	Internet & WWW	6	29-11-2004 10:24 PM

Popular Categories

Popular Articles

Content Categories

Sister Sites

Follow Us

Facebook Channels

Digit Magazine

	Advertisements. Register and be a member of the community to get rid of them.
Advertisement