Re: MAC-based ssh
On Fri, 02 May 2003 at 12:26:04PM +0200, Hans van Leeuwen wrote:
> I have decided to do this thrue SSH by putting the client key in
> authorized_keys2. But this seems a little risky, so I was wondering if
> it was possible to get sshd to only allow the client MAC-address.
SSHD cannot do what you are asking it to do, in fact I don't think there
are many TCP/IP Applications that can. The MAC address is WELL below
the layer 5,6,7 that most internet applications reside in.
Many applications can pick up layer 3 and 4 data (IP Address and port)
but the layer 2 information (MAC) is usually only a concern for the O/S
Kernel.
Some of the other options discussed in this thread might be a better
solution.
--
Phillip Hofmeister
Network Administrator/Systems Engineer
IP3 Inc.
http://www.ip3security.com
PGP/GPG Key:
http://www.zionlth.org/~plhofmei/
wget -O - http://www.zionlth.org/~plhofmei/key.txt | gpg --import
--
Excuse #163: RPC_PMAP_FAILURE
Reply to: