within a department it’s actually pretty good, as long as you know the limitations. I wouldn’t use it as my only security, but it’s a useful supplement to checking a key table.

On Oct 22, 2019, at 9:40 AM, Alexander Bokovoy <abokovoy@redhat.com> wrote:

Since IP addresses are practically spoofable or NATable, they don't make
a good source of policy decision.