FreeBSD and DEP aka "NX bit"?
Matthew Macy
mat.macy at gmail.com
Sun Aug 24 00:43:02 UTC 2008
On Sat, Aug 23, 2008 at 5:04 PM, Ivan Voras <ivoras at freebsd.org> wrote:
> I stumbled upon this Wikipedia page:
> http://en.wikipedia.org/wiki/Comparison_of_BSD_operating_systems#Security_features
> and it mentions NX bit is supported in FreeBSD. Is this true? Is it
> enabled by default?
Yes. However, it is in the upper word so it only works with PAE or
amd64. "jemalloc" maps the heap NX and thread stacks are mapped NX.
The default process stack currently needs to be executable because
sigcode is placed at the start of the stack at the time of process
creation.
-Kip
More information about the freebsd-arch
mailing list