> I think I can convince the admin to remove the terminal-only access if a > user must log in from a certain IP address verified by the specific MAC > address of their NIC. MAC addresses are trivially rewritable or fakeable. That wont give you security. Similarly if the terminal servers are over ethernet then decnet is also trivially spoofable - : send the line "unsubscribe linux-net" in the body of a message to majordomo@vger.rutgers.edu
