Date: Fri, 15 Jan 2010 14:35:55 +0000 From: David Southwell <david@vizion2000.net> To: freebsd-ports@freebsd.org Subject: authentication with hardware device identification?? Message-ID: <201001151435.55904.david@vizion2000.net>
next in thread | raw e-mail | index | archive | help
Hi I want to be able to permit ssh access to servers over the internet in a way that limits that access to specific hardware (i.e. laptops with known hardware configurations and devices). So I am looking for some additional layer of security on top of the normal private key & certificate system in a way that would enable me to configure a pf rule that would, as an addition to other rules, only pass external connections to ssh port from external systems having the correct hardware/device specifications. One way of doing this might be to filter looking for a packet containing the required information in encrypted form. If the data is valid then the originating IP address might (for example) be added for a limited time to a pass rule which would then enable the system to connect to the ssh port to login. Is this achievable? David
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201001151435.55904.david>