Re: How Can I Securely Execute Script on Remote Windows Host?
- From: Nico <nkadel@xxxxxxxxx>
- Date: Sun, 16 Sep 2007 01:00:00 -0700
On 16 Sep, 05:38, "Will" <westes-...@xxxxxxxxxxxxxx> wrote:
What are the most secure options to allow a command line script written on
machine A to synchronously execute another command line script written on
machine B, wait on response, and retrieve return code at the end of
execution. Assume client machine A is UNIX and server machine B is
Windows.
If the command line script on machine B can be well defined, take a
good look at NRPE. It's a plug-in for Nagios targets that executes
arbitrary scripts and responds in a reasonably well thought out way
for low risk operations, such as "du" commands or mysql queries.
SSH has an issue in that its operations are tough to limit to only a
few commands. There are ways involving the use of SSH keys with
defined operations permitted. on the target, which are used for ssh
+svnserve setups. But that SSH client account is tough to keep in a
specific target directory, without allowing access to the rest of the
filesystem.
What kind of "command line script" do you want to run? Arbitrary ones?
Then SSH might work well, but with the automatic security risks of
providing shell access on the target host. For better defined ones
where you don't worry about the result, you can use NRPE or even a
webserver that responds with an output code to a specific query.
.
- References:
- Prev by Date: Re: private key with no passphrase detection
- Next by Date: Quick question | Hummingbird Connectivity Secure Shell Version 12.00
- Previous by thread: How Can I Securely Execute Script on Remote Windows Host?
- Next by thread: Quick question | Hummingbird Connectivity Secure Shell Version 12.00
- Index(es):
Relevant Pages
|
