CompTIA
220-1002 · Question #4
220-1002 Question #4: Real Exam Question with Answer & Explanation
The correct answer is C: Ensure the server is patched with the latest security updates. Ensuring the server has the latest security patches is the most critical step because unpatched vulnerabilities are the primary attack vector that remote browsing activity can exploit.
Question
A manager requests remote access to a server after hours and on weekends to check data. The manager insists on using the server. Before granting the access, which of the following is the MOST important step a technician can take to protect against possible infection?
Options
- ACreate a policy to remove Internet access from the server during off hours
- BSet the local antivirus software on the server to update and scan daily
- CEnsure the server is patched with the latest security updates
- DEducate the manager on safe Internet browsing practices
Explanation
Ensuring the server has the latest security patches is the most critical step because unpatched vulnerabilities are the primary attack vector that remote browsing activity can exploit.
Common mistakes.
- A. Removing Internet access during off hours is impractical because it prevents the manager from performing the very remote data checks that were requested.
- B. Keeping antivirus updated and scanning daily is a good practice but is a compensating control - it is less effective than eliminating the underlying vulnerabilities through patching.
- D. Educating the manager on safe browsing is a useful long-term measure but does not technically protect the server and does not address existing unpatched vulnerabilities.
Concept tested. Server hardening through patch management
Reference. https://learn.microsoft.com/en-us/windows/security/threat-protection/windows-security-baselines
Community Discussion
No community discussion yet for this question.