Enables the stack to be marked as nonexecutable, which helps make buffer-overflow attacks more difficult.
An Oracle Solaris system running a 64-bit kernel makes the stacks of all 64-bit applications nonexecutable by default. Setting this parameter is necessary to make 32-bit applications nonexecutable.
Signed integer
0 (disabled)
0 (disabled) or 1 (enabled)
Toggle (on/off)
Yes. Does not affect currently running processes, only processes created after the value is set.
None
Should be enabled at all times unless applications are deliberately placing executable code on the stack without using mprotect to make the stack executable. For more information, see mprotect (2) .
Unstable