OK so up till now I have always used a rule in IIS to block access to server admin, thus still allowing access to web admin.
A user on cfmldeveloper this week reports they were being denied remote access to their web admin.
After some investigation I discovered this was caused by a setting in BonCodeAJP13.settings which denied remote admin access.
I assume this setting has been added by a recent update since this was never there previously.
Unfortunately this setting also now overrides my request filtering rules in IIS, and so if I set it to true, access to the server admin is now also allowed on every site.
Any way to get this back to the way it worked before?