ADP Payroll - Security through obscurity?
More interesting questions from the FW-Wiz mailing list...
The post goes on and, in-general (and IMO) makes ADP look pretty, ummm... not sure "stupid" is quite the right word, but...
I'm looking for people with experience using a particular ADP
payroll software package. This software runs under MS Windows and
connects to ADP's servers over the Internet. ADP support has been
unable to provide the information necessary to do a risk analysis.
These are the only details I've been able to gather after almost
two weeks and over a dozen calls:
1) ADP asks clients to open their firewall ports 80, 443, 6847,
6848, 6849, and 5282, bi-directionally.
The client computer, normally a Windows PC, becomes a server when
ADP's payroll software is installed and will accept connections from
any IP addresses.