Are File System Filters nerby has questions

Discussion in 'Windows Vista Drivers' started by Luis Miguel Huapaya, Oct 20, 2005.

  1. Hi all,

    I am designing a secure file system architecture and the File System Filters
    (i.e. minidrivers) look promising. I've never done kernel level stuff before
    or drivers for that matter. Here are some questions:

    1) What is the best way (for a noob) to get started with the development of
    File System Filter Drivers?
    2) Can File System Filter Drivers be loaded/unloaded dynamically while the
    OS is running or do you need to reboot the machine in order for the File
    System Filter Driver to take effect?
    3) Can kernel level code such as the File System Filter Driver dynamically
    load code (i.e. DLL's or something likewise)?

    I know a lot of you have heard the "Please help the noob" questions before,
    but everyone has to start somewhere and all of us were noobs once :)

    cheers,
    Luis
     
    Luis Miguel Huapaya, Oct 20, 2005
    #1
    1. Advertisements

  2. 1) What is the best way (for a noob) to get started with the development of
    Minifilters (plugins to FltMgr) are the best, but they require w2k with the
    latest rollup fix pack (post SP4) or later.

    SFILTER-based filters are more old-style, but provide the OS support from NT4
    up.
    Minifilters can, SFILTER-based require reboot. Anyway this is not an issue -
    you can put the filter to do-nothing mode instead.
    By using undocumented stuff only, and surely no user-mode DLLs can be loaded,
    you will need the special kernel-mode DLL.
     
    Maxim S. Shatskih, Oct 20, 2005
    #2
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.