Change whitelist defination.
IPs listed in whitelist will ignore user/passwd, make it easier for local connections.
IPs out of whitelist, must use user/passwd auth to login.
add another setting variable, so called "rpc-ip-allow", which will instead old "rpc-whitelist".