Bugtraq mailing list archives
Re: RealPlayer and Comet Cursor
From: pedward () WEBCOM COM (pedward () WEBCOM COM)
Date: Thu, 9 Mar 2000 19:23:46 -0800
Keela, Thank you for your message. I went back and looked at the download page again, and read every link from it. It is clear *now* that the CC bundled with RP7 is an innocuous version. I, like many of the people who have replied to me, glossed over the marketroid table and just clicked "full download". Now that the disposition of the CC software is clear, I'd like to ask another question: Why wasn't the software removed from my system after I clicked the "Add/Remove Software" button? My original message details the leftovers after removing the software. I believe it would be a good addition to the download page if you stated "This version does not contains GUID tracking abilities", because it is only after reading the fine print that this is clear. Also, you should update the privacy policy link on the "Comet Cursor" decscription page, to reflect the RP specific version. Thank you, --Perry
Mr. Harrington, I wanted to respond directly to your concerns regarding RealPlayer and privacy. First to set the record straight, the version of Comet Cursor distributed with RealPlayer does NOT transmit GUIDs. RealNetworks is committed to protecting privacy, and we specifically worked with Comet Systems to ensure that their software met our standards for informed consent. We decided along with Comet Systems to remove any GUID from the version distributed by RealNetworks. As a result, the Cursor software distributed with RealPlayer 7 could not be used in any way to track any individuals' behavior. In addition, it is very important to understand that selecting the RealPlayer version with Comet Cursor is entirely optional during the download process and that Comet Cursor's existence as part of some RealPlayer bundles is clearly disclosed when you download, along with links to Comet's privacy statement. The privacy policy that you quote in your post is not accurate for the RealPlayer version; please refer to the privacy policy that Comet Cursor has posted relating to the version bundled with RealPlayer, and to which we link from our Web site: http://www.cometsystems.com/help/real_privacy.shtml. I hope that this addresses your questions. RealNetworks is very concerned that our privacy practices are accurately described; if you have any further questions about our privacy policies or practices, please email us at privacy () real com. Regards, Keela Robison Product Manager, RealNetworks Consumer Products
-- Perry Harrington Director of zelur xuniL () perry () webcom com System Architecture Think Blue. /\
Current thread:
- PGP Signatures security BUG! Povl H. Pedersen (Mar 07)
- Re: PGP Signatures security BUG! Tobias Haustein (Mar 08)
- Re: PGP Signatures security BUG! Werner Koch (Mar 08)
- RealServer exposes internal IP addresses tschweikle () FIDUCIA DE (Mar 08)
- Re: PGP Signatures security BUG! Eric Murray (Mar 08)
- [ Hackerslab bug_paper ] Linux printtool get printer password Sheshep ankh Dubhe (Mar 08)
- Re: [ Hackerslab bug_paper ] Linux printtool get printer password Tuomas Jormola (Mar 09)
- RealPlayer and Comet Cursor Keela Robison (Mar 09)
- Fwd: ircii-4.4 buffer overflow bladi (Feb 07)
- Re: Fwd: ircii-4.4 buffer overflow Derek Callaway (Mar 11)
- Re: RealPlayer and Comet Cursor pedward () WEBCOM COM (Mar 09)
- The Comet Cursor Sarah MacArthur (Mar 09)
- Network File Resource Vulnerability Eric Hacker (Mar 09)
- Re: Network File Resource Vulnerability David LeBlanc (Mar 11)
- misc. cross site scripting issues Marc Slemko (Mar 12)
- a few bugs ... Maurycy Prodeus (Mar 13)
- Re: a few bugs ... Thomas Roessler (Mar 15)
- Re: a few bugs ... Michal Zalewski (Mar 17)
- Patch: ip_masq_ftp / Linux 2.2.x (extended FTP ALG vulnerabilty) Bjarni R. Einarsson (Mar 20)
- Microsoft Security Bulletin (MS00-018 Microsoft Product Security (Mar 20)
- Re: a few bugs ... Coke (Mar 20)