OK, anybody have any idea why I can't say that certain users are only allowed to log into my server from specific workstations? I'd really love to say that my web login (the logn my web site logs in with) can only log in from my web servers, and if any of my developers tried to use it they'd either get an error message or be electrocuted (preferably at random). I mean, come on, even a hosts.allow or hosts.deny set of files would be an easy to manage cheap to implement security layer. Otherwise, I've got to, what rely on a firewall or something and then have it filter by IP? Sucktastic.
Yeah, I can probably administer it from Windows (i.e. only allow the user to login to specific workstations) but then I have to have some system administrator deal with it, when it would be much easier if I could do it myself. Plus that would limit me to limiting only integrated security logins and not standard security ones.