On 2006/05/06 11:49, S t i n g r a y wrote: > & as i am using a network in which i dont have control > over users PC & cannot use service authentication i am > stuck with ip & mac filtering.
Look at authpf(8), it's much _much_ safer than what you suggest (unless you have enough control to lock switch ports down by MAC address and you trust your switches). If users can run an ssh client (including Mindterm, so all they need is a Java-capable web browser, or PuTTY for a simple Windows-based option that you can easily document) then you win...
