That does sound handy.

As for the bespoke app not only as you mention is it very very slim that someone will exploit it especially as its not out in the public for anyone to find but with our one it only accepts pre-programmend commands and not scripts or windows commands etc.

For instance it is programmed to accept the commands

SCAN
LOCATE
UPATE
AVSCAN
MESSAGE

etc

But I couldn't say run the following:

C:\tmp\MyScript.bat

My program would just see that as an error and disconnect the session.