Add a supported way to lock out other controllers
From time to time people have wanted a way for one and only one controller to be allowed to authenticate to Tor at a time.
There are a few hacky ways to do this now: you can RESETCONF ControlPort, or set the __HashedControlSessionPassword to something random.
First of all, though, we should want a usecase for this.