ops: add auth IP and stale session audit

docs/server-management.md

@@ -34,12 +34,14 @@ The Debian deployment installs:
 
 - showing an operational summary
 - showing recent auth success/failure activity
+- showing auth activity grouped by source IP
 - viewing inventory
 - listing managed units
 - checking service status
 - listing declared ports
 - listing recent auth failures
 - listing recent login sessions
+- listing stale open sessions without logout
 - restarting the whole stack or specific channels/instances
 - viewing logs
 - listing core files in the runtime tree
@@ -91,6 +93,12 @@ Show only recent auth failures including smoke tests:
 metinctl auth-activity --status failure --include-smoke
 ```
 
+Show auth activity grouped by IP:
+
+```bash
+metinctl auth-ips
+```
+
 Include smoke-test failures too:
 
 ```bash
@@ -109,6 +117,18 @@ Show only sessions that still have no recorded logout:
 metinctl sessions --active-only
 ```
 
+Show stale open sessions older than 30 minutes:
+
+```bash
+metinctl session-audit
+```
+
+Use a different stale threshold:
+
+```bash
+metinctl session-audit --stale-minutes 10
+```
+
 Restart only channel 1 cores:
 
 ```bash