Endpoint Administration Guide for WindowsGeneral Security FeaturesStack Overflow Protection › Enable STOP

Previous Topic: Stack Overflow Protection

Next Topic: Configure STOP for Receiving Signature File Updates

Enable STOP

STOP lets you prevent hackers from creating and exploiting stack overflow to break into your systems. You can enable STOP when installing CA Access Control. Alternatively, you can enable STOP manually.

To enable STOP

  1. Enter the following command: 
    secons -s

    CA Access Control shuts down.

  2. Set the STOP OperationMode registry entry to 1.

    The registry entry can be found in the following key:

    HKEY_LOCAL_MACHINE\SOFTWARE\ComputerAssociates\AccessControl\Instrumentation\PlugIns\StopPlg

    When CA Access Control is started, STOP modules will load and STOP will be enabled on the computer.

  3. (Optional) Adjust STOP configuration using registry entries in the following keys: 
    HKEY_LOCAL_MACHINE\SOFTWARE\ComputerAssociates\AccessControl\Instrumentation\PlugIns\StopPlg

    HKEY_LOCAL_MACHINE\Software\ComputerAssociates\AccessControl\STOP

    Note: For more information about STOP registry settings, see the Reference Guide.

  4. the following command: 
    seosd -start

    CA Access Control starts up.