[c-nsp] Restricting VPN connections to company hardware?
Gert Doering
gert at greenie.muc.de
Fri Nov 6 04:56:27 EST 2009
Hi,
On Fri, Nov 06, 2009 at 11:10:14AM +0800, mark [at] edgewire wrote:
> Why is it not possible to check it against the MAC address of the
> connecting device? Log incoming connections and their MAC address and
> match it against a list of hardware that has been assigned to the users.
What's a MAC address?
Seriously: if someone is trying to play tricks with your security policy,
why are you assuming that he is not going to enter whatever MAC address
you want to see into his client?
gert
--
USENET is *not* the non-clickable part of WWW!
//www.muc.de/~gert/
Gert Doering - Munich, Germany gert at greenie.muc.de
fax: +49-89-35655025 gert at net.informatik.tu-muenchen.de
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 305 bytes
Desc: not available
URL: <https://puck.nether.net/pipermail/cisco-nsp/attachments/20091106/e7aa5333/attachment.bin>
More information about the cisco-nsp
mailing list