Alexandre Benson Smith wrote:

>>It's a question of control. With coteries you can let less privileged
>>users come in from anywhere but restrict SYSDBA (or whatever) to
>>specific hosts or hosts strictly behind the firewall.
>>
>>
>Another thing I have not considered, it could be easily managed by less
>privileged users than the firewall rules (and I think more dinamically).
>
>

May be even user himself can manage his own coteries. Like change own
password.