User Manager Pro

Secure Home | Search | About

Lost Password?

Microsoft Applications Security

get this group's latest topics as an RSS feed

add this group's latest topics to your My MSN content

add this group's latest topics to your My Yahoo content

add this group's latest topics to your Google content

Subject

Author

Date

User Manager Pro

06-07-2006

Re: User Manager Pro

06-07-2006

chris

chris

Aaron Korge

Posted by JP on June 7, 2006, 4:12 pm

If you were Registered and logged in, you could reply and use other advanced thread options

Can someone clarify something for us In running User Manager Pro
(http://www.liebsoft.com/index.cfm/products/ump), we noticed that this
software retrieves information from our domain including machine info and
transfers it back to their IP location via HTTP. Doesn't that constitute as
SPYWARE or a class of software (control of a computer's operation without
the informed consent of that machine's owner or legitimate user - per
Wikipedia)?

For a company that is suppose to be a MS Gold Partner and is in the security
field, this sure seems to go against the rules.

Thanks.

Posted by JP on June 7, 2006, 4:17 pm

If you were Registered and logged in, you could reply and use other advanced thread options

Sorry, the reason we ask in this forums is because we are doing a security
audit test - AD / Exchange.

> Can someone clarify something for us In running User Manager Pro

> (http://www.liebsoft.com/index.cfm/products/ump), we noticed that this

> software retrieves information from our domain including machine info and

> transfers it back to their IP location via HTTP. Doesn't that constitute

> as SPYWARE or a class of software (control of a computer's operation

> without the informed consent of that machine's owner or legitimate user -

> per Wikipedia)?

> For a company that is suppose to be a MS Gold Partner and is in the

> security field, this sure seems to go against the rules.

> Thanks.

Posted by on June 7, 2006, 9:07 pm

If you were Registered and logged in, you could reply and use other advanced thread options

JP,

The User Manager Pro software sends back information to Lieberman
Software under three circumstances. The first two circumstances can be
identified in item 4 of the EULA which you can access during install or
post install from the install directory of User Manager Pro, typically
%programfiles%\User Manager Pro, by looking at the file called
"license.txt"; The entire EULA is slightly more than one page printed
on 8.5"x11" paper with standard margins in courier 10pt font. Item
number four can be found halfway down the page.

Item number 4 states:

4. Notice: This software contains functionality designed to
periodically notify Lieberman Software Corporation of demo usage and of
the detection of suspected pirated license keys. By using this
software, you consent to allow the software to send information to
Lieberman Software Corporation under these circumstances, and you agree
to not hold Lieberman Software Corporation responsible for the use of
any or all of the information by Lieberman Software Corporation or any
third party.

The third time not referenced in the EULA is directly under user
control and can be enabled or disabled (default) at any time. From the
"License Token Management" dialogue available under HELP, if you select
the "Automatically manage license tokens option", as is stated in the
text underneath that option, User Manager Pro will contact Lieberman
Software for the purposes of managing your licenses.

So to answer your question, this is not spyware and you did consent to
this when you accepted the EULA.

Conversely to item number 4, when you do register with a legal license
key (assuming you do not enamble automatic license token management)
User Manager Pro will not contact Lieberman Software.

JP wrote:

> Sorry, the reason we ask in this forums is because we are doing a security

> audit test - AD / Exchange.

> > Can someone clarify something for us In running User Manager Pro

> > (http://www.liebsoft.com/index.cfm/products/ump), we noticed that this

> > software retrieves information from our domain including machine info and

> > transfers it back to their IP location via HTTP. Doesn't that constitute

> > as SPYWARE or a class of software (control of a computer's operation

> > without the informed consent of that machine's owner or legitimate user -

> > per Wikipedia)?

> >

> > For a company that is suppose to be a MS Gold Partner and is in the

> > security field, this sure seems to go against the rules.

> >

> > Thanks.

> >

Posted by on June 7, 2006, 9:18 pm

If you were Registered and logged in, you could reply and use other advanced thread options

Lieberman Software does not record nor report any operational
information; only license compliance information for the tool is
returned during a demo period.

JP wrote:

> Sorry, the reason we ask in this forums is because we are doing a security

> audit test - AD / Exchange.

> > Can someone clarify something for us In running User Manager Pro

> > (http://www.liebsoft.com/index.cfm/products/ump), we noticed that this

> > software retrieves information from our domain including machine info and

> > transfers it back to their IP location via HTTP. Doesn't that constitute

> > as SPYWARE or a class of software (control of a computer's operation

> > without the informed consent of that machine's owner or legitimate user -

> > per Wikipedia)?

> >

> > For a company that is suppose to be a MS Gold Partner and is in the

> > security field, this sure seems to go against the rules.

> >

> > Thanks.

> >

Posted by Aaron Korge on June 9, 2006, 11:06 pm

If you were Registered and logged in, you could reply and use other advanced thread options

Our sniffer confirms the same issue. This is SPYWARE in nature regardless
what Liegsoft says, and no matter what your licensing says. Check out the
broad definition of Spyware. Maybe we should get Winternals folks to
"technically" confirm for us.

> Lieberman Software does not record nor report any operational

> information; only license compliance information for the tool is

> returned during a demo period.

> JP wrote:

>> Sorry, the reason we ask in this forums is because we are doing a

>> security

>> audit test - AD / Exchange.

>> > Can someone clarify something for us In running User Manager Pro

>> > (http://www.liebsoft.com/index.cfm/products/ump), we noticed that this

>> > software retrieves information from our domain including machine info

>> > and

>> > transfers it back to their IP location via HTTP. Doesn't that

>> > constitute

>> > as SPYWARE or a class of software (control of a computer's operation

>> > without the informed consent of that machine's owner or legitimate

>> > user -

>> > per Wikipedia)?

>> >

>> > For a company that is suppose to be a MS Gold Partner and is in the

>> > security field, this sure seems to go against the rules.

>> >

>> > Thanks.

>> >

Similar Threads	Posted
Authorization Manager	January 16, 2006, 4:23 pm
Failure Event ID 560 on SC Manager	October 6, 2005, 8:40 am
Failure Event ID 560 on SC Manager	October 6, 2005, 8:43 am
microbillsys / MBS Account Manager	May 8, 2007, 8:59 am
Task manager is disabled	May 29, 2008, 6:23 pm
A new service in my task manager CAPMSRSK.EXE	February 7, 2006, 2:34 pm
Task manager and regedit not working	August 22, 2006, 12:44 am
no access to the security log (of the event manager)!	September 20, 2006, 10:35 am
persistent pop-up, "sonic manager update"	December 21, 2006, 9:55 am
Attachment Manager Problem in Windows 2003	July 3, 2006, 10:08 am

The site map in XML format XML site map