An anonymous reader writes: Isn't it great when suppliers of management tools use your client sites for free advertising and interfere with sites — all without your knowledge or consent? Then, when you complain, they are nonplussed and explain that this is the software's normal behaviour.
We started using TeamViewer a few months ago for remote support. It's a great tool and we've been very happy with it. Yesterday, a client had a website hacked, which brought IIS down. Next thing, their website displayed a page of advertising for TeamViewer, stating that the machine was managed with TeamViewer and giving a link back to TeamViewer's sales site. This prevented IIS from restarting and led to an upset customer, who thought this was part of the hack. We then found that every machine that does not have a web server that grabs port 80 before TeamViewer can, displays this advertising.
TeamViewer support initially said that this is how the software works and you just have to make sure you don't release port 80. On their website, they specifically say there is only outbound traffic on two ports, and says nothing about inbound traffic.
(http://support.teamviewer.com/index.php?_m=knowledgebase&_a=viewarticle&kbarticleid=10&nav=0,13)
Tech support's response to our complaint was total lack of interest and certainly nothing like an apology. After a long phone call they admitted that customers who don't appreciate being used as free advertising can hack the registry, which will mean putting hands on every machine we manage.
This is the registry hack:
In HKLM\Software\TeamViewer\Version4 set GatewayAllowed to 0 and ListenHttp to 0.
Senior management were not available to speak to mere customers.
In our book this is unacceptable and unethical behaviour. It also raises trust issues, because suddenly you don't know what else these guys are doing in the background. Since TV had no interest in rectifying the situation, we thought we'd get the word out.