[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: NX on x86_64

From: Stephen Smoogen <smoogen lanl gov>
To: "Discussion of Red Hat Enterprise Linux 3 (Taroon)" <taroon-list redhat com>
Subject: Re: NX on x86_64
Date: Wed, 23 Jun 2004 14:39:06 -0600 (MDT)

On Wed, 23 Jun 2004, Jay Lee wrote:

>Does anyone have hard numbers on how effective NX has been in preventing
>exploits?  RHEL3 seems like a good platform to compare NX to non-NX.  So
>in terms of vulnerabilities discovered and patched on RHEL3 how many have
>been exploitable on x86 but not x86-64 because of the NX feature?  Hard
>numbers would be great but even an informed guess would help.  I know it's
>not the end all/be all security solution but I'd like to start pushing for
>it here if there's even a 10% decrease in effective exploits with it. 
>Thanks for any info you can provide or point to.
>

I am not sure that NX has been enabled long enough that accurate numbers 
would be available. I would say that it would take at least a years 
worth of data to get enough statistical error and time into the exploit 
process to get good data. 

-- 
Stephen John Smoogen		smoogen lanl gov
Los Alamos National Lab  CCN-5 Sched 5/40  PH: 4-0645
Ta-03 SM-1498 MailStop B255 DP 10S  Los Alamos, NM 87545
-- Please, I have had too much of the stupid today. Please wait until
-- tomorrow to say these things so my tolerance has refreshed.

References:
- NX on x86_64
  - From: Jay Lee

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]