Services.exe Security (Windows CE 5.0)
If you are running a service using services.exe, your service is running in a trusted process. However, you need to be aware that untrusted processes can call your service. For restricted operations, you need to make sure that the calling process is trusted.
To ensure that a specific service can only be called by a trusted process, you need to set the DEVFLAGS_TRUSTEDCALLERONLY flag in the registry for that service. For more information, see Services.exe Registry Settings.
Best Practices
Disable the command-line parsing option
To prevent untrusted applications from calling services.exe command-line options, set the AllowCmdLine value in the registry to 0. For more information, see Services.exe Registry Settings.
For more information about Windows CE security services, see Enhancing the Security of a Device.
See Also
Services.exe | Services.exe Registry Settings
Send Feedback on this topic to the authors