Compaq xw4200 Page 12 Frequently Asked Questions Manual Download | Manualshive

Page: 12 / 21

background image

12

Advantages of using XD/NX

Enabling XD/NX provides increased protection against viruses that use buffer overflow attacks. This

increased protection provides the benefit of increased network security as malicious code cannot propa-

gate or spread to infect more computers. Support staff also benefits from much improved containment and

easier eradication of unwanted software.

Disadvantages of using XD/NX

XD/NX compatibility issues can occur for both applications and drivers. Applications that perform

dynamic code generation, such as just-in-time (JIT) code generation, that do not mark the generated code

with Execute permission, will experience compatibility issues.
Drivers can encounter compatibility issues when running on 32-bit systems with PAE mode enabled. There

are several reasons for this:

•

Driver does not load because it cannot perform 64-bit addressing.

•

Driver does not load because it assumes PAE mode requires more than 4-GB of memory.

•

Driver causes problem when it expects a 32-bit PTE, but instead gets a 64-bit PTE.

•

Driver cannot DMA properly with a 64-bit physical addresses.

To a lesser extent, some drivers create code in real time. These drivers encounter the same problem as

applications that create code in real time as mentioned above.

Conclusion and Recommendation

XD/NX is a useful computer architecture innovation that will reduce the number of viruses that exploit

buffer overruns. HP encourages customers who use custom images or third-party software to test software

for XD/NX compatibility. Customers have full control as to whether to use XD/NX, either by enabling or

disabling XD/NX from the BIOS (F10 Setup), or from the operating system (BOOT.INI).
HP is shipping the following for which the noexecute policy level in BOOT.INI will remain at the default

state of OptIn:

•

i915 chipset desktop systems with XD disabled in F10 Setup.

•

i945 desktop systems with XD enabled by default in F10 Setup.

•

Transmeta processor bc1000 computers with NX disabled by default in BIOS.

•

AMD processor-based ATI desktop computers with NX enabled by default in BIOS.

To manually turn off DEP, change the state to

/alwaysoff

in the BOOT.INI.

«
...
10
11
12
13
14
...
»

Summary of Contents for xw4200

Page 1: ...om virus attacks 5 What are the required components for XD NX to function 5 How do I control the DEP functionality on my computer 8 DEP Level Chart 9 Data Execution Prevention Tab No XD NX Processor 1...

Page 2: ...e European Commission in Brussels to name a few Microsoft s Windows XP Service Pack 2 includes multiple security improvements Network protection Memory protection Email handling Web browsing security...

Page 3: ...helps prevent these attacks by intercepting them and displaying the DEP message box Hardware enforced DEP relies on processor hardware to mark memory with an attribute that indicates that code should...

Page 4: ...ed for arith metic calculations or to keep track of internal operations In normal system operations code is not typically executed from the default heap and stack Hardware enforced DEP detects code th...

Page 5: ...essors for the desktop market starting with the E0 stepping of the Prescott Pentium 4 processor Both Intel Pentium 4 and Celeron processors have XD support Using Intel s new pro cessor naming scheme a...

Page 6: ...stems Default NX support is disabled for Transmeta systems The BIOS for Intel 915 and Intel 945 based desktop systems uses the CPUID instruction to look for the Exe cute Disable bit to determine if XD...

Page 7: ...essors in the following product line not all systems available in all regions dx5150 The BIOS for the bc1000 disables NX support for the Transmeta processor There is no option to enable NX The followi...

Page 8: ...d to a program to provide an enhancement and installing it with the application All program and services except those I select This option equates to the OptOut policy which allows a user to select ap...

Page 9: ...Off No hardware or software enforced DEP is available for any part of the system The processor will not run in PAE mode unless a PAE switch is present in the BOOT INI OptIn Default Hardware and softw...

Page 10: ...event Windows XP SP2 from using DEP set the operating system to alwaysoff in the BOOT INI file Software Enforced DEP Software enforced DEP is a set of DEP security checks built into Windows XP SP2 tha...

Page 11: ...nd software enforced DEP Unfortunately at this time you can only test hardware enforced DEP because Microsoft has not yet supplied the tools to test software enforced DEP You can test hardware enforce...

Page 12: ...em when it expects a 32 bit PTE but instead gets a 64 bit PTE Driver cannot DMA properly with a 64 bit physical addresses To a lesser extent some drivers create code in real time These drivers encount...

Page 13: ...ATI Catalyst Control Center Exception error Add to exclusion list ATI Driver Setup exe Exception error during installation Add to exclusion list Broadcom Management Apps Exception error Add to exclusi...

Page 14: ...Add to exclusion list Microsoft Office Pro 2003 Exception error Add to exclusion list Microsoft Office SB 2003 Exception error Add to exclusion list Norton Anti Virus Exception error Add to exclusion...

Page 15: ...ve afterwards Windows Catalog Exception error Add to exclusion list Driver Effect Creative Audigy 2NX Exception error during installation Add to exclusion list HP Deskjet 450ci Driver Prints out blank...

Page 16: ...ns a buffer with code and then executes this code Unlike a firewall or antivirus program DEP does not help prevent harmful programs from being installed on your computer Instead it monitors your progr...

Page 17: ...applications or drivers that attempt to execute out of data memory You should test your images before deploying XD NX If a problem does occur with an application driver associated with a trusted softw...

Page 18: ...e same methods you use to protect all operating system and BIOS settings For example you can use Setup passwords to control who can change items in F10 Setup Also you can allow only users with adminis...

Page 19: ...nging is the chipset changing as well For Intel based systems newer chipsets starting with the i915 chipset provide support for XD Will the system board change with the processor change Intel chipset...

Page 20: ...ly test software enforced DEP HP encourages you to perform your own validation if you plan to use your own image or proprietary software What does it mean when XD NX is disabled but the DEP is set for...

Page 21: ...vices Nothing herein should be construed as constituting an additional warranty HP shall not be liable for technical or editorial errors or omissions contained herein HP Hewlett Packard and the Hewlet...

Reviews:

No comments

Related manuals for xw4200

Brand: Cobalt Digital Inc Pages: 54

Brand: Gateway Pages: 96

Brand: Gateway Pages: 144

Brand: Warner Communications Pages: 50

Brand: Dell Pages: 84

VAIO SVL24145CXB

Brand: Sony Pages: 2

VAIO SVL24145CXB

Brand: Sony Pages: 2

VAIO SVL241290X

Brand: Sony Pages: 2

VAIO SVL24125CXW

Brand: Sony Pages: 2

VAIO SVL24127CXB

Brand: Sony Pages: 3

VAIO SVL2411AFYB

Brand: Sony Pages: 2

VAIO SVL24118FXB

Brand: Sony Pages: 2

Vaio SVL24116FXW

Brand: Sony Pages: 2

VAIO SVL24116FXB

Brand: Sony Pages: 2

VAIO SVS131 Series

Brand: Sony Pages: 16

VAIO SVL24114FXW

Brand: Sony Pages: 2

VAIO SVL24112FXW

Brand: Sony Pages: 2

VAIO SVL24114FXB

Brand: Sony Pages: 2

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

Load more brands