If you *are* a sysadmin you should already be aware that users can send data over any port without administrative privileges, and can listen on any port >=1024 without administrative privileges. This isn't an mIRC thing, this applies to just about any application. If you want to lock down your system properly, you should take into account this fact.