Prevent buffer overflows

Note If a management console is used to administer Sophos Endpoint Security and Control on this computer, it may override any changes you make here.

Buffer overflow detection dynamically analyzes the behavior of programs running on the system in order to detect when an attempt is made to exploit a running process using buffer overflow techniques.

If you are a member of the SophosAdministrator group, you can change the settings for detecting and reporting buffer overflows:

  1. Click Home > Anti-virus and HIPS > Configure anti-virus and HIPS > Configure > Behavior monitoring.
  2. In the Configure Behavior Monitoring dialog box, select the Enable behavior monitoring check box.
  3. To alert the administrator and block buffer overflows, select the Detect buffer overflows check box.
  4. To alert the administrator, but not block buffer overflows, select the Alert only, do not block check box.