On Fri, 02 May 2003 at 12:26:04PM +0200, Hans van Leeuwen wrote: > I have decided to do this thrue SSH by putting the client key in > authorized_keys2. But this seems a little risky, so I was wondering if > it was possible to get sshd to only allow the client MAC-address.
SSHD cannot do what you are asking it to do, in fact I don't think there are many TCP/IP Applications that can. The MAC address is WELL below the layer 5,6,7 that most internet applications reside in. Many applications can pick up layer 3 and 4 data (IP Address and port) but the layer 2 information (MAC) is usually only a concern for the O/S Kernel. Some of the other options discussed in this thread might be a better solution. -- Phillip Hofmeister Network Administrator/Systems Engineer IP3 Inc. http://www.ip3security.com PGP/GPG Key: http://www.zionlth.org/~plhofmei/ wget -O - http://www.zionlth.org/~plhofmei/key.txt | gpg --import -- Excuse #163: RPC_PMAP_FAILURE
