CA ControlMinder maintains Stack Overflow Protection (STOP) settings it uses under the following key:
HKEY_LOCAL_MACHINE\SOFTWARE\ComputerAssociates\AccessControl\STOP
The STOP registry key contains the following registry entries:
Defines the full path and name of the STOP initialization file. This file contains the list of functions for which STOP is enabled.
Default: ACInstallDir\Data\stop.ini
Specifies whether STOP runs in a special learning mode. In this mode, incidents are logged but always permitted. That is, a denial incident is logged appropriately, but is permitted to continue.
Default: 0 (disabled)
Defines the full path and name of the dynamic incident database for stack overflow protection (STOP).
Default: ACInstallDir\Log\STOPRTEvents.dat
Specifies whether the STOP server module has trace logging enabled.
Default: 0 (disabled)
Defines the host name of the computer that (if defined) is used to retrieve STOP signatures database from.
No default.
Defines the full path and name of the STOP signature file (a trusted incident database).
Default: ACInstallDir\Data\stopsignature.dat
Defines the period of time, in minutes, between two consecutive attempts to update the STOP signatures database.
Default: 60
Specifies whether STOP should permit incidents with a zero-size code snapshot.
Default: 0 (not permitted)
|
Copyright © 2013 CA Technologies.
All rights reserved.
|
|