There's an interesting (almost parallel) discussion thread.Encryption / piping...
On the topic of piping, this too parallels the client/server idea mentioned here. Mainly that the client would have instructions "piped" to it from the server.
The "client" could be running in the user's context or a spawned script running in the local admin context.
The server-side script could handle admin-like functions not available to the user or local admin. Security checks would need to be instituted to prevent spoofing.
_________________________
Give a man a fish and he will be back for more. Slap him with a fish and he will go away forever.
