This is the mail archive of the
mailing list for the Cygwin project.
Windows Defender Exploit Guard
- From: Erik Bray <erik dot m dot bray at gmail dot com>
- To: cygwin at cygwin dot com
- Date: Wed, 10 Jan 2018 11:47:41 +0100
- Subject: Windows Defender Exploit Guard
- Authentication-results: sourceware.org; auth=none
I've seen some reports, and encountered some problems myself, with the
new "Windows Defender Exploit Guard"  w.r.t. Cygwin. This enables
a number of anti-exploit protections, at least some of which might be
a problem for Cygwin--in particular "Force randomization for images
(Mandatory ASLR)" as the name suggests forces address space
randomization even for DLLs, for example, with a fixed image base.
Possibly some others are also a problem for Cygwin but I'm not sure.
Fortunately, these settings can be customized on a per-executable
basis, and this can be done programmatically with powershell:
Maybe for Cygwin we will want to include something like a companion
script to rebase that applies the necessary exploit protection
exceptions for Cygwin binaries... :(
Problem reports: http://cygwin.com/problems.html
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple