We have a RHEL6 system backed up with TSM with some unique security. Basically 
we
need some way for us to disable the ability for the server to cause the
client to run arbitrary commands via a scheduled event. All we want the
client to do is run an incremental backup, without any way for the server
to have the client do the following:

* Run COMMAND or MACRO schedules
* Run PRESCHEDULECMD or POSTSCHEDULECMD
* Run any other arbitrary command from the server

Currently we're backing the system up with dsmc fired from cron, but it
makes error checking a little more difficult.

Now I imagine if I were really motivated I could solve this with SELinux,
but if there were some way to do this within TSM itself that would save
some work.

Thanks!

--
-- Skylar Thompson (skylar2 AT u.washington DOT edu)
-- Genome Sciences Department, System Administrator
-- Foege Building S046, (206)-685-7354
-- University of Washington School of Medicine