From owner-freebsd-security@FreeBSD.ORG Thu Mar 29 22:52:46 2007 Return-Path: X-Original-To: freebsd-security@freebsd.org Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 5FC4516A405 for ; Thu, 29 Mar 2007 22:52:46 +0000 (UTC) (envelope-from cswiger@mac.com) Received: from mail-out4.apple.com (mail-out4.apple.com [17.254.13.23]) by mx1.freebsd.org (Postfix) with ESMTP id 48E6813C4C1 for ; Thu, 29 Mar 2007 22:52:46 +0000 (UTC) (envelope-from cswiger@mac.com) Received: from relay7.apple.com (relay7.apple.com [17.128.113.37]) by mail-out4.apple.com (8.13.8/8.13.8) with ESMTP id l2TM8VEP013475; Thu, 29 Mar 2007 15:08:31 -0700 (PDT) Received: from relay7.apple.com (unknown [127.0.0.1]) by relay7.apple.com (Symantec Mail Security) with ESMTP id 2133130435; Thu, 29 Mar 2007 15:08:31 -0700 (PDT) X-AuditID: 11807125-ae661bb00000538d-15-460c38df0c6b Received: from [17.214.13.96] (cswiger1.apple.com [17.214.13.96]) (using TLSv1 with cipher AES128-SHA (128/128 bits)) (No client certificate requested) by relay7.apple.com (Apple SCV relay) with ESMTP id 0ABD93005F; Thu, 29 Mar 2007 15:08:31 -0700 (PDT) In-Reply-To: <86648johpj.fsf@dwp.des.no> References: <86648johpj.fsf@dwp.des.no> Mime-Version: 1.0 (Apple Message framework v752.2) Content-Type: text/plain; charset=ISO-8859-1; delsp=yes; format=flowed Message-Id: <790D20BF-A432-454A-B203-AD7A901B1309@mac.com> Content-Transfer-Encoding: quoted-printable From: Chuck Swiger Date: Thu, 29 Mar 2007 15:08:30 -0700 To: =?ISO-8859-1?Q?Dag-Erling_Sm=F8rgrav?= X-Mailer: Apple Mail (2.752.2) X-Brightmail-Tracker: AAAAAA== Cc: freebsd-security@freebsd.org, Igor Subject: Re: nx-bit and TPM X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 29 Mar 2007 22:52:46 -0000 On Mar 29, 2007, at 2:36 PM, Dag-Erling Sm=F8rgrav wrote: >> I'm was looking through handbook and wikipedia and it appears FreeBSD >> doesn't support hardware (nor software) nx bit. >> There also doesn't seem to be any support for TPM (Trusted =20 >> Platform Module). > > I believe NX support was never implemented because Intel's version of > AMD64 didn't support it. As for TPM, I don't see the point. Intel supports the same capability in newer revisions of their EM64T =20 CPUs, but they call it the "XD" bit instead (for eXecute Disabled). =20 There's a reasonable set of documentation here: http://en.wikipedia.org/wiki/NX_bit#FreeBSD --=20 -Chuck