cancel
Showing results for 
Search instead for 
Did you mean: 
avilt
Level 7
Report Inappropriate Content
Message 1 of 4

Buffer overflow Protection on 64-bit systems.

According to McAfee VSE best practices guide, Buffer overflow Protection is not installed on 64-bit systems. What is the reason for not providing this feature for 64 bit OS. For example I am using Windows 7, 2008 R2 which are 64 bit OS. Can I disable Memory Protection in ePO if I am using only 64 bit OS?

3 Replies
wwarren
Level 15
Report Inappropriate Content
Message 2 of 4

Re: Buffer overflow Protection on 64-bit systems.

BOP is not installed on x64 because the feature cannot work on x64.

x64 is a more secure operating system environment, thanks to a feature called "Patch Guard".

If your environment is x64 only then you do not need to have the BOP feature enabled in policy.

William W. Warren | S.I.R.R. | Customer Success Group | McAfee
avilt
Level 7
Report Inappropriate Content
Message 3 of 4

Re: Buffer overflow Protection on 64-bit systems.

The reason I asked is Memory Protection is enabled by default in Solidcore. So I would like to disable it in ePO for VSE and enable it for Solidcore.

I believe Patch Guard is OS feature, so can I disable memory protection in Solidcore as well? I have seen performance degradation with SC.

wwarren
Level 15
Report Inappropriate Content
Message 4 of 4

Re: Buffer overflow Protection on 64-bit systems.

I'm not familiar with SolidCore's memory protection functionality. Perhaps there's a spot in the forum for them too.

I can tell you that VSE's BOP and SolidCore's memory protection functionality should _not_ be enabled at the same time on a system; their technologies are not compatible.

William W. Warren | S.I.R.R. | Customer Success Group | McAfee