Would it be possible to lock an account to an IP? For example, each user has an "IP Pool" that is allowed to access their account. For example, if I tried to login from a friend's house using my l/p, it would deny the access. However, from a legit IP, I could add my friend's IP to the IP Pool, thus allowing me access from his home.
Unfortunately, I've had to resort to such drastic ideas/measures to try to find the leak in my moderating team. Plus, I think it could help deter future issues.
Is this possible? Is anyone willing to undertake this task? There has to be a few security nuts out there who would get use out of this as well.