EC-Council
312-50V11 · Question #308
312-50V11 Question #308: Real Exam Question with Answer & Explanation
The correct answer is C: Run services with least privileged accounts and implement multi-factor authentication and. Running services under least-privilege accounts limits the blast radius of a successful privilege escalation and MFA reduces the chance of credential-based escalation.
System Hacking
Question
What is the best defense against privilege escalation vulnerability?
Options
- APatch systems regularly and upgrade interactive login privileges at the system administrator level.
- BRun administrator and applications on least privileges and use a content registry for tracking.
- CRun services with least privileged accounts and implement multi-factor authentication and
- DReview user roles and administrator privileges for maximum utilization of automation services.
Explanation
Running services under least-privilege accounts limits the blast radius of a successful privilege escalation and MFA reduces the chance of credential-based escalation.
Common mistakes.
- A. Patching is a valid mitigation, but 'upgrading interactive login privileges at the system administrator level' contradicts the principle of least privilege and would worsen exposure to escalation.
- B. Running applications with least privileges is correct, but 'content registry for tracking' is not a recognized or standard defense against privilege escalation vulnerabilities.
- D. Reviewing roles for 'maximum utilization of automation services' prioritizes operational efficiency over security and does not directly address reducing privilege escalation risk.
Concept tested. Privilege escalation mitigation using least privilege and MFA
Reference. https://learn.microsoft.com/en-us/security/compass/privileged-access-overview
Topics
#privilege escalation#least privilege#multi-factor authentication#defense
Community Discussion
No community discussion yet for this question.