On 5/6/06, S t i n g r a y <[EMAIL PROTECTED]> wrote:
Hello there
i am looking for a solution that lets me have some
sort of allow mac address & ipaddress that will be
able to access my server or servers & use what ever
service they are offering.
& as i am using a network in which i dont have control
over users PC & cannot use service authentication i am
stuck with ip & mac filtering.
what do you recommend, at this time all my network is
on a single subnet.
Don't filter on IP or MAC. It is trivial for an attacker to set their
own IP or MAC to whatever it needs to be. Use SSH or IPSEC for the
things you must protect, and for the rest just make sure there aren't
any exploits open.
-Nick