From owner-freebsd-questions Fri Feb 28 22:09:17 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id WAA13167 for questions-outgoing; Fri, 28 Feb 1997 22:09:17 -0800 (PST) Received: from mail.webspan.net ([206.154.70.7]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id WAA13159 for ; Fri, 28 Feb 1997 22:09:12 -0800 (PST) Received: from rjb (usr3-16.pat.nj.webspan.net [206.152.175.62]) by mail.webspan.net (WEBSPAN/970116) with SMTP id BAA07127 for ; Sat, 1 Mar 1997 01:08:46 -0500 (EST) Message-ID: <3317C933.7C74@webspan.net> Date: Sat, 01 Mar 1997 01:14:11 -0500 From: Bob Badaracco X-Mailer: Mozilla 3.0 (Win95; I) MIME-Version: 1.0 To: questions@freebsd.org Subject: Security and operation of rcmd function... Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-questions@freebsd.org X-Loop: FreeBSD.org Precedence: bulk I'm hoping that a Unix RPC programming expert can shed some light on using the rcmd() function call. The man page on this function states that you must have super user priviledges in order to envoke it as a client. Does the iruserok() function that controls client validation at the server allow rcmd to be used by clients other than the super user? If access to the rcmd() can be lowered so anobody other than the SU can use it, how would I use iruserok() to do this? Basically, I need to use the rcmd() function to execute a program on a remote server without requiring super user priviledges to do so. Can this be done?