I think the link below relates to what you are seeing. Check what software
you are running on your network, perhaps it is coming from what OptOut calls
Spyware.
http://grc.com/optout.htm
Brett Peterson
Security Analyst
> -----Original Message-----
> From: Greg Poirier [SMTP:[EMAIL PROTECTED]]
> Sent: Wednesday, August 16, 2000 8:34 AM
> To: [EMAIL PROTECTED]
> Cc: [EMAIL PROTECTED]
> Subject: Re: Port 1975
>
> I know that CuteFTP sends data to Aureate about applications installed on
> your machine, directory struction, operating system, version,
> history.. etc..
>
> We installed CuteFTP on one of our machines behind our firewall at home
> and sniffed all the traffic.. It gets pretty detailed. There is software
> to disable these features. And since this incident I've learned to read
> end user license agreements very closely.
>
> *grin*
>
>
> Greg Poirier Network Abuse Onion
> ---------------------------------------
> 3y3 4m 4 3r337 |-|.\><0r! PH34R M3!!!!
>
>
> On Wed, 16 Aug 2000 [EMAIL PROTECTED] wrote:
>
> > Hi all:
> >
> > I am experiencing a plethora of no rule drops from port 1975 - because
> of
> > course there is no rule to permit that traffic through the firewall. It
> > seems, from analyis, to be IE5 clients that are attempting to respond to
> > aureate, abovenet communications, whatsuch.
> >
> > Anyone aware if this is hard-coded banner adds in IE5, or is this a myth
> > become reality. I heard that these advertizing companies, were gathering
> > workstation data secretly via the use of this outbound port.
> >
> > Can anyone shed any light on this?
> >
> > Thanks in advance
> >
> >
> > Daniel Duguay
> > Systems Administrator
> > Firewall and Secure Systems Development
> > * Tel: (613) 944-2351
> > * Fax: (613) 944-0044
> > * Email: [EMAIL PROTECTED]
> >
> >
> > -
> > [To unsubscribe, send mail to [EMAIL PROTECTED] with
> > "unsubscribe firewalls" in the body of the message.]
> >
>
>
> -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
