Very Computer

Can anyone suggest a secure method (outside of using secure rsh/rshd) that
will allow a client running on one Unix machine A to execute a remote program
or function across a network on Unix machine B? The output of the remote
program must be sent back as a stream to the client as a result.

The problem with rsh, rcmd(), etc., and the idea of using a shell to execute a
remote program scares me. Of course you can use Kerberos to authenticate the
client to the server, but, from what I've been reading, doesn't seem very
secure.

I'm open to any and all suggestions.

        - nobody but authorized accounts can run commands;
        - an intruder snooping the wire can't steal the credentials of an
          authorized user;
        - such an intruder also cannot interpret the data stream travelling
          over the wire; and
        - even if the TCP connection is stolen, the intruder cannot inject
          data into it and have it accepted.

Ssh does these things wonderfully. If your needs aren't as strong, you may be
able to find a lighter-weight protocol. But I bet you can't find one that's
easier to install and use. Ssh is a major win.

-Bennett

I can't say I've done it (I use ssh but not the secure r commands),
though a collegue does and the manual describes it's installation
(which is a very simple process)

Sean