• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

Possible to execute local files via website?

Druidx

Druidx

Platinum Member
I'm running several game servers on a Win2000 server using IIS.
I have 5 people who need access to start and stop the servers.
Each game server is setup to run as a service and can be stopped and started by batchfiles.

My problem is, the only way I can give them access with remote desktop is if I give all 5 people Administrator status, which I would prefer not to do. Without a license for Terminal Services I'm limited to only giving access to people with admin privileges.

Is there anyway to easily setup something on a website to allow people to execute local files on the server?
Or does anyone know of any software I can use to allow someone to login but restrict their access to just executing the files to stop and start the game servers?

I've searched through the scripts on http://www.hotscripts.com but couldn't find anything useful.

If a mod sees this and thinks I would get a better response in another forum, please feel free to move it.
 
As I recall, there's a telnet server built into Windows 2000. IF you just need batch file execution, this would probably be fine to use for this purpose. YOu can even adjust the port that it listens on to something obscure. Wouldn't stop someone from finding it with a portscan and you'd be relying on basic password authentication, but that's no less secure that doing it via HTTP with some kind of basic password auth (other than they can do a lot MORE stuff with the telnet server access).

You could try to enable the telnet server and see if it works. You could also create a test user that is totally locked down except executing the batch file and maybe listing the directory it's in. Only catch is that the batch file would probably be owned by that user when it executed and might not be able to do what it needs to do with the user restrictions.

You might also look at some other options.. Setup a specific mail account for this machine and run a mail client on the server. Write a rule that says "when message from john@doe.com with Y text is received, execute this batch file." Lacking in grace, but it would probably do the trick and give you a much higher level of security than a www or telnet solution.

- G
 
You must log in or register to reply here.

TRENDING THREADS

Back
Top